ESSA-2025:2889: Moderate: SUSE Liberty Linux Security update for openssh

[Update Advisories for SUSE Liberty Linux]

# Security update for openssh

Announcement ID: ESSA-2025:2889
Rating: Moderate

Cross-References:

  * CVE-2018-20685
  * CVE-2019-6109
  * CVE-2019-6110
  * CVE-2019-6111
  * CVE-2020-14145



CVSS scores:

  * CVE-2018-20685 ( SUSE ): 7.3 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H
  * CVE-2019-6109 ( SUSE ): 4.6 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
  * CVE-2019-6110 ( SUSE ): 4.6 CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:L
  * CVE-2019-6111 ( SUSE ): 4.8 CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N
  * CVE-2020-14145 ( SUSE ): 5.9 CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Affected Products:

  * SUSE Liberty Linux 7 LTSS


An update that solves 5 vulnerabilities can now be installed.

## Description:

CVE-2020-14145, CVE-2019-6109, CVE-2019-6110, CVE-2019-6111, CVE-2018-20685 for openssh

## Package List:

  * SUSE Liberty Linux 7 LTSS:
    * openssh 7.4p1-23.el7_9.3
    * openssh-askpass 7.4p1-23.el7_9.3
    * openssh-cavs 7.4p1-23.el7_9.3
    * openssh-clients 7.4p1-23.el7_9.3
    * openssh-keycat 7.4p1-23.el7_9.3
    * openssh-ldap 7.4p1-23.el7_9.3
    * openssh-server 7.4p1-23.el7_9.3
    * openssh-server-sysvinit 7.4p1-23.el7_9.3
    * pam_ssh_agent_auth 0.10.3-2.23.el7_9.3

## References:

  * https://www.suse.com/security/cve/CVE-2018-20685.html
  * https://www.suse.com/security/cve/CVE-2019-6109.html
  * https://www.suse.com/security/cve/CVE-2019-6110.html
  * https://www.suse.com/security/cve/CVE-2019-6111.html
  * https://www.suse.com/security/cve/CVE-2020-14145.html