SUSE-RU-2025:4332-1: important: Recommended update for libnvme, nvme-cli
SLE-UPDATES
null at suse.de
Tue Dec 9 13:47:46 UTC 2025
# Recommended update for libnvme, nvme-cli
Announcement ID: SUSE-RU-2025:4332-1
Release Date: 2025-12-09T11:57:09Z
Rating: important
References:
* bsc#1246914
Affected Products:
* Basesystem Module 15-SP6
* openSUSE Leap 15.6
* SUSE Linux Enterprise Desktop 15 SP6
* SUSE Linux Enterprise Real Time 15 SP6
* SUSE Linux Enterprise Server 15 SP6
* SUSE Linux Enterprise Server for SAP Applications 15 SP6
An update that has one fix can now be installed.
## Description:
This update for libnvme, nvme-cli fixes the following issues:
Fix: libnvme/nvme-cli TLS PSK generation logic not compliant to RFC 8446:
(bsc#1246914) * linux: use EVP_PKEY_CTX_add1_hkdf_info only once in compat
function * nvme/linux: check for empty digest in gen_tls_identity() *
nvme/linux: add fallback implementation for nvme_insert_tls_key_compat() *
linux: fix HKDF TLS key derivation back to OpenSSL 3.0.8 * libnvme: TLS PSK
derivation fixes * linux: rename __nvme_insert_tls_key_versioned() to
__nvme_insert_tls_key() * linux: rename __nvme_insert_tls_key() to
__nvme_import_tls_key() * test/psk: add testcase for TLS identity derivation *
linux: set errno when nvme_generate_tls_key_identity() fails * nvme: add
--compat flag for 'gen-tls-key' and 'check-tls-key'
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.6
zypper in -t patch SUSE-2025-4332=1 openSUSE-SLE-15.6-2025-4332=1
* Basesystem Module 15-SP6
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2025-4332=1
## Package List:
* openSUSE Leap 15.6 (aarch64 ppc64le s390x x86_64 i586)
* libnvme-devel-1.8+93.g5986a5a7-150600.3.21.1
* nvme-cli-debuginfo-2.8+95.g1a0c2083-150600.3.24.1
* nvme-cli-2.8+95.g1a0c2083-150600.3.24.1
* python3-libnvme-debuginfo-1.8+93.g5986a5a7-150600.3.21.1
* libnvme1-debuginfo-1.8+93.g5986a5a7-150600.3.21.1
* libnvme-mi1-debuginfo-1.8+93.g5986a5a7-150600.3.21.1
* libnvme-debuginfo-1.8+93.g5986a5a7-150600.3.21.1
* libnvme-mi1-1.8+93.g5986a5a7-150600.3.21.1
* python3-libnvme-1.8+93.g5986a5a7-150600.3.21.1
* libnvme-debugsource-1.8+93.g5986a5a7-150600.3.21.1
* nvme-cli-debugsource-2.8+95.g1a0c2083-150600.3.24.1
* libnvme1-1.8+93.g5986a5a7-150600.3.21.1
* openSUSE Leap 15.6 (noarch)
* nvme-cli-zsh-completion-2.8+95.g1a0c2083-150600.3.24.1
* nvme-cli-bash-completion-2.8+95.g1a0c2083-150600.3.24.1
* nvme-cli-regress-script-2.8+95.g1a0c2083-150600.3.24.1
* Basesystem Module 15-SP6 (aarch64 ppc64le s390x x86_64)
* libnvme-devel-1.8+93.g5986a5a7-150600.3.21.1
* nvme-cli-debuginfo-2.8+95.g1a0c2083-150600.3.24.1
* nvme-cli-2.8+95.g1a0c2083-150600.3.24.1
* python3-libnvme-debuginfo-1.8+93.g5986a5a7-150600.3.21.1
* libnvme1-debuginfo-1.8+93.g5986a5a7-150600.3.21.1
* libnvme-mi1-debuginfo-1.8+93.g5986a5a7-150600.3.21.1
* libnvme-debuginfo-1.8+93.g5986a5a7-150600.3.21.1
* libnvme-mi1-1.8+93.g5986a5a7-150600.3.21.1
* python3-libnvme-1.8+93.g5986a5a7-150600.3.21.1
* libnvme-debugsource-1.8+93.g5986a5a7-150600.3.21.1
* nvme-cli-debugsource-2.8+95.g1a0c2083-150600.3.24.1
* libnvme1-1.8+93.g5986a5a7-150600.3.21.1
* Basesystem Module 15-SP6 (noarch)
* nvme-cli-zsh-completion-2.8+95.g1a0c2083-150600.3.24.1
* nvme-cli-bash-completion-2.8+95.g1a0c2083-150600.3.24.1
## References:
* https://bugzilla.suse.com/show_bug.cgi?id=1246914
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.suse.com/pipermail/sle-updates/attachments/20251209/4899dfc4/attachment.htm>
More information about the sle-updates
mailing list