Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-45288 (GCVE-0-2023-45288)
Vulnerability from cvelistv5 – Published: 2024-04-04 20:37 – Updated: 2025-11-04 18:17
VLAI
EPSS
Title
HTTP/2 CONTINUATION flood in net/http
Summary
An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request's headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.
Severity
7.5 (High)
SSVC
Exploitation: none
Automatable: yes
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-400 - Uncontrolled Resource Consumption
Assigner
References
9 references
Impacted products
4 products
| Vendor | Product | Version | |
|---|---|---|---|
| Go standard library | net/http |
Affected:
0 , < 1.21.9
(semver)
Affected: 1.22.0-0 , < 1.22.2 (semver) |
|
| golang.org/x/net | golang.org/x/net/http2 |
Affected:
0 , < 0.23.0
(semver)
|
|
| go_standard_library | net\/http |
Affected:
0 , < 1.21.9
(custom)
Affected: 1.22.0-0 , < 1.22.2 (custom) cpe:2.3:a:go_standard_library:net\/http:*:*:*:*:*:*:*:* |
|
| golang | http2 |
Affected:
0 , < 0.23.0
(custom)
cpe:2.3:a:golang:http2:*:*:*:*:*:*:*:* |
Credits
Bartek Nowotarski (https://nowotarski.info/)
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2025-11-04T18:17:43.583Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://go.dev/issue/65051"
},
{
"tags": [
"x_transferred"
],
"url": "https://go.dev/cl/576155"
},
{
"tags": [
"x_transferred"
],
"url": "https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M"
},
{
"tags": [
"x_transferred"
],
"url": "https://pkg.go.dev/vuln/GO-2024-2687"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240419-0009/"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT/"
},
{
"tags": [
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2024/04/05/4"
},
{
"tags": [
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2024/04/03/16"
},
{
"url": "https://www.kb.cert.org/vuls/id/421644"
}
],
"title": "CVE Program Container"
},
{
"affected": [
{
"cpes": [
"cpe:2.3:a:go_standard_library:net\\/http:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "net\\/http",
"vendor": "go_standard_library",
"versions": [
{
"lessThan": "1.21.9",
"status": "affected",
"version": "0",
"versionType": "custom"
},
{
"lessThan": "1.22.2",
"status": "affected",
"version": "1.22.0-0",
"versionType": "custom"
}
]
},
{
"cpes": [
"cpe:2.3:a:golang:http2:*:*:*:*:*:*:*:*"
],
"defaultStatus": "unknown",
"product": "http2",
"vendor": "golang",
"versions": [
{
"lessThan": "0.23.0",
"status": "affected",
"version": "0",
"versionType": "custom"
}
]
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
},
{
"other": {
"content": {
"id": "CVE-2023-45288",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-04-05T17:08:42.212936Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-08-26T20:40:01.996Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "net/http",
"product": "net/http",
"programRoutines": [
{
"name": "http2Framer.readMetaFrame"
},
{
"name": "CanonicalHeaderKey"
},
{
"name": "Client.CloseIdleConnections"
},
{
"name": "Client.Do"
},
{
"name": "Client.Get"
},
{
"name": "Client.Head"
},
{
"name": "Client.Post"
},
{
"name": "Client.PostForm"
},
{
"name": "Cookie.String"
},
{
"name": "Cookie.Valid"
},
{
"name": "Dir.Open"
},
{
"name": "Error"
},
{
"name": "Get"
},
{
"name": "HandlerFunc.ServeHTTP"
},
{
"name": "Head"
},
{
"name": "Header.Add"
},
{
"name": "Header.Del"
},
{
"name": "Header.Get"
},
{
"name": "Header.Set"
},
{
"name": "Header.Values"
},
{
"name": "Header.Write"
},
{
"name": "Header.WriteSubset"
},
{
"name": "ListenAndServe"
},
{
"name": "ListenAndServeTLS"
},
{
"name": "NewRequest"
},
{
"name": "NewRequestWithContext"
},
{
"name": "NotFound"
},
{
"name": "ParseTime"
},
{
"name": "Post"
},
{
"name": "PostForm"
},
{
"name": "ProxyFromEnvironment"
},
{
"name": "ReadRequest"
},
{
"name": "ReadResponse"
},
{
"name": "Redirect"
},
{
"name": "Request.AddCookie"
},
{
"name": "Request.BasicAuth"
},
{
"name": "Request.FormFile"
},
{
"name": "Request.FormValue"
},
{
"name": "Request.MultipartReader"
},
{
"name": "Request.ParseForm"
},
{
"name": "Request.ParseMultipartForm"
},
{
"name": "Request.PostFormValue"
},
{
"name": "Request.Referer"
},
{
"name": "Request.SetBasicAuth"
},
{
"name": "Request.UserAgent"
},
{
"name": "Request.Write"
},
{
"name": "Request.WriteProxy"
},
{
"name": "Response.Cookies"
},
{
"name": "Response.Location"
},
{
"name": "Response.Write"
},
{
"name": "ResponseController.EnableFullDuplex"
},
{
"name": "ResponseController.Flush"
},
{
"name": "ResponseController.Hijack"
},
{
"name": "ResponseController.SetReadDeadline"
},
{
"name": "ResponseController.SetWriteDeadline"
},
{
"name": "Serve"
},
{
"name": "ServeContent"
},
{
"name": "ServeFile"
},
{
"name": "ServeMux.ServeHTTP"
},
{
"name": "ServeTLS"
},
{
"name": "Server.Close"
},
{
"name": "Server.ListenAndServe"
},
{
"name": "Server.ListenAndServeTLS"
},
{
"name": "Server.Serve"
},
{
"name": "Server.ServeTLS"
},
{
"name": "Server.SetKeepAlivesEnabled"
},
{
"name": "Server.Shutdown"
},
{
"name": "SetCookie"
},
{
"name": "Transport.CancelRequest"
},
{
"name": "Transport.Clone"
},
{
"name": "Transport.CloseIdleConnections"
},
{
"name": "Transport.RoundTrip"
},
{
"name": "body.Close"
},
{
"name": "body.Read"
},
{
"name": "bodyEOFSignal.Close"
},
{
"name": "bodyEOFSignal.Read"
},
{
"name": "bodyLocked.Read"
},
{
"name": "bufioFlushWriter.Write"
},
{
"name": "cancelTimerBody.Close"
},
{
"name": "cancelTimerBody.Read"
},
{
"name": "checkConnErrorWriter.Write"
},
{
"name": "chunkWriter.Write"
},
{
"name": "connReader.Read"
},
{
"name": "connectMethodKey.String"
},
{
"name": "expectContinueReader.Close"
},
{
"name": "expectContinueReader.Read"
},
{
"name": "extraHeader.Write"
},
{
"name": "fileHandler.ServeHTTP"
},
{
"name": "fileTransport.RoundTrip"
},
{
"name": "globalOptionsHandler.ServeHTTP"
},
{
"name": "gzipReader.Close"
},
{
"name": "gzipReader.Read"
},
{
"name": "http2ClientConn.Close"
},
{
"name": "http2ClientConn.Ping"
},
{
"name": "http2ClientConn.RoundTrip"
},
{
"name": "http2ClientConn.Shutdown"
},
{
"name": "http2ConnectionError.Error"
},
{
"name": "http2ErrCode.String"
},
{
"name": "http2FrameHeader.String"
},
{
"name": "http2FrameType.String"
},
{
"name": "http2FrameWriteRequest.String"
},
{
"name": "http2Framer.ReadFrame"
},
{
"name": "http2Framer.WriteContinuation"
},
{
"name": "http2Framer.WriteData"
},
{
"name": "http2Framer.WriteDataPadded"
},
{
"name": "http2Framer.WriteGoAway"
},
{
"name": "http2Framer.WriteHeaders"
},
{
"name": "http2Framer.WritePing"
},
{
"name": "http2Framer.WritePriority"
},
{
"name": "http2Framer.WritePushPromise"
},
{
"name": "http2Framer.WriteRSTStream"
},
{
"name": "http2Framer.WriteRawFrame"
},
{
"name": "http2Framer.WriteSettings"
},
{
"name": "http2Framer.WriteSettingsAck"
},
{
"name": "http2Framer.WriteWindowUpdate"
},
{
"name": "http2GoAwayError.Error"
},
{
"name": "http2Server.ServeConn"
},
{
"name": "http2Setting.String"
},
{
"name": "http2SettingID.String"
},
{
"name": "http2SettingsFrame.ForeachSetting"
},
{
"name": "http2StreamError.Error"
},
{
"name": "http2Transport.CloseIdleConnections"
},
{
"name": "http2Transport.NewClientConn"
},
{
"name": "http2Transport.RoundTrip"
},
{
"name": "http2Transport.RoundTripOpt"
},
{
"name": "http2bufferedWriter.Flush"
},
{
"name": "http2bufferedWriter.Write"
},
{
"name": "http2chunkWriter.Write"
},
{
"name": "http2clientConnPool.GetClientConn"
},
{
"name": "http2connError.Error"
},
{
"name": "http2dataBuffer.Read"
},
{
"name": "http2duplicatePseudoHeaderError.Error"
},
{
"name": "http2gzipReader.Close"
},
{
"name": "http2gzipReader.Read"
},
{
"name": "http2headerFieldNameError.Error"
},
{
"name": "http2headerFieldValueError.Error"
},
{
"name": "http2noDialClientConnPool.GetClientConn"
},
{
"name": "http2noDialH2RoundTripper.RoundTrip"
},
{
"name": "http2pipe.Read"
},
{
"name": "http2priorityWriteScheduler.CloseStream"
},
{
"name": "http2priorityWriteScheduler.OpenStream"
},
{
"name": "http2pseudoHeaderError.Error"
},
{
"name": "http2requestBody.Close"
},
{
"name": "http2requestBody.Read"
},
{
"name": "http2responseWriter.Flush"
},
{
"name": "http2responseWriter.FlushError"
},
{
"name": "http2responseWriter.Push"
},
{
"name": "http2responseWriter.SetReadDeadline"
},
{
"name": "http2responseWriter.SetWriteDeadline"
},
{
"name": "http2responseWriter.Write"
},
{
"name": "http2responseWriter.WriteHeader"
},
{
"name": "http2responseWriter.WriteString"
},
{
"name": "http2roundRobinWriteScheduler.OpenStream"
},
{
"name": "http2serverConn.CloseConn"
},
{
"name": "http2serverConn.Flush"
},
{
"name": "http2stickyErrWriter.Write"
},
{
"name": "http2transportResponseBody.Close"
},
{
"name": "http2transportResponseBody.Read"
},
{
"name": "http2writeData.String"
},
{
"name": "initALPNRequest.ServeHTTP"
},
{
"name": "loggingConn.Close"
},
{
"name": "loggingConn.Read"
},
{
"name": "loggingConn.Write"
},
{
"name": "maxBytesReader.Close"
},
{
"name": "maxBytesReader.Read"
},
{
"name": "onceCloseListener.Close"
},
{
"name": "persistConn.Read"
},
{
"name": "persistConnWriter.ReadFrom"
},
{
"name": "persistConnWriter.Write"
},
{
"name": "populateResponse.Write"
},
{
"name": "populateResponse.WriteHeader"
},
{
"name": "readTrackingBody.Close"
},
{
"name": "readTrackingBody.Read"
},
{
"name": "readWriteCloserBody.Read"
},
{
"name": "redirectHandler.ServeHTTP"
},
{
"name": "response.Flush"
},
{
"name": "response.FlushError"
},
{
"name": "response.Hijack"
},
{
"name": "response.ReadFrom"
},
{
"name": "response.Write"
},
{
"name": "response.WriteHeader"
},
{
"name": "response.WriteString"
},
{
"name": "serverHandler.ServeHTTP"
},
{
"name": "socksDialer.DialWithConn"
},
{
"name": "socksUsernamePassword.Authenticate"
},
{
"name": "stringWriter.WriteString"
},
{
"name": "timeoutHandler.ServeHTTP"
},
{
"name": "timeoutWriter.Write"
},
{
"name": "timeoutWriter.WriteHeader"
},
{
"name": "transportReadFromServerError.Error"
}
],
"vendor": "Go standard library",
"versions": [
{
"lessThan": "1.21.9",
"status": "affected",
"version": "0",
"versionType": "semver"
},
{
"lessThan": "1.22.2",
"status": "affected",
"version": "1.22.0-0",
"versionType": "semver"
}
]
},
{
"collectionURL": "https://pkg.go.dev",
"defaultStatus": "unaffected",
"packageName": "golang.org/x/net/http2",
"product": "golang.org/x/net/http2",
"programRoutines": [
{
"name": "Framer.readMetaFrame"
},
{
"name": "ClientConn.Close"
},
{
"name": "ClientConn.Ping"
},
{
"name": "ClientConn.RoundTrip"
},
{
"name": "ClientConn.Shutdown"
},
{
"name": "ConfigureServer"
},
{
"name": "ConfigureTransport"
},
{
"name": "ConfigureTransports"
},
{
"name": "ConnectionError.Error"
},
{
"name": "ErrCode.String"
},
{
"name": "FrameHeader.String"
},
{
"name": "FrameType.String"
},
{
"name": "FrameWriteRequest.String"
},
{
"name": "Framer.ReadFrame"
},
{
"name": "Framer.WriteContinuation"
},
{
"name": "Framer.WriteData"
},
{
"name": "Framer.WriteDataPadded"
},
{
"name": "Framer.WriteGoAway"
},
{
"name": "Framer.WriteHeaders"
},
{
"name": "Framer.WritePing"
},
{
"name": "Framer.WritePriority"
},
{
"name": "Framer.WritePushPromise"
},
{
"name": "Framer.WriteRSTStream"
},
{
"name": "Framer.WriteRawFrame"
},
{
"name": "Framer.WriteSettings"
},
{
"name": "Framer.WriteSettingsAck"
},
{
"name": "Framer.WriteWindowUpdate"
},
{
"name": "GoAwayError.Error"
},
{
"name": "ReadFrameHeader"
},
{
"name": "Server.ServeConn"
},
{
"name": "Setting.String"
},
{
"name": "SettingID.String"
},
{
"name": "SettingsFrame.ForeachSetting"
},
{
"name": "StreamError.Error"
},
{
"name": "Transport.CloseIdleConnections"
},
{
"name": "Transport.NewClientConn"
},
{
"name": "Transport.RoundTrip"
},
{
"name": "Transport.RoundTripOpt"
},
{
"name": "bufferedWriter.Flush"
},
{
"name": "bufferedWriter.Write"
},
{
"name": "chunkWriter.Write"
},
{
"name": "clientConnPool.GetClientConn"
},
{
"name": "connError.Error"
},
{
"name": "dataBuffer.Read"
},
{
"name": "duplicatePseudoHeaderError.Error"
},
{
"name": "gzipReader.Close"
},
{
"name": "gzipReader.Read"
},
{
"name": "headerFieldNameError.Error"
},
{
"name": "headerFieldValueError.Error"
},
{
"name": "noDialClientConnPool.GetClientConn"
},
{
"name": "noDialH2RoundTripper.RoundTrip"
},
{
"name": "pipe.Read"
},
{
"name": "priorityWriteScheduler.CloseStream"
},
{
"name": "priorityWriteScheduler.OpenStream"
},
{
"name": "pseudoHeaderError.Error"
},
{
"name": "requestBody.Close"
},
{
"name": "requestBody.Read"
},
{
"name": "responseWriter.Flush"
},
{
"name": "responseWriter.FlushError"
},
{
"name": "responseWriter.Push"
},
{
"name": "responseWriter.SetReadDeadline"
},
{
"name": "responseWriter.SetWriteDeadline"
},
{
"name": "responseWriter.Write"
},
{
"name": "responseWriter.WriteHeader"
},
{
"name": "responseWriter.WriteString"
},
{
"name": "roundRobinWriteScheduler.OpenStream"
},
{
"name": "serverConn.CloseConn"
},
{
"name": "serverConn.Flush"
},
{
"name": "stickyErrWriter.Write"
},
{
"name": "transportResponseBody.Close"
},
{
"name": "transportResponseBody.Read"
},
{
"name": "writeData.String"
}
],
"vendor": "golang.org/x/net",
"versions": [
{
"lessThan": "0.23.0",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Bartek Nowotarski (https://nowotarski.info/)"
}
],
"descriptions": [
{
"lang": "en",
"value": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "CWE-400: Uncontrolled Resource Consumption",
"lang": "en"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-05-01T17:10:07.754Z",
"orgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"shortName": "Go"
},
"references": [
{
"url": "https://go.dev/issue/65051"
},
{
"url": "https://go.dev/cl/576155"
},
{
"url": "https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M"
},
{
"url": "https://pkg.go.dev/vuln/GO-2024-2687"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240419-0009/"
},
{
"url": "https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT/"
},
{
"url": "http://www.openwall.com/lists/oss-security/2024/04/05/4"
},
{
"url": "http://www.openwall.com/lists/oss-security/2024/04/03/16"
}
],
"title": "HTTP/2 CONTINUATION flood in net/http"
}
},
"cveMetadata": {
"assignerOrgId": "1bb62c36-49e3-4200-9d77-64a1400537cc",
"assignerShortName": "Go",
"cveId": "CVE-2023-45288",
"datePublished": "2024-04-04T20:37:30.714Z",
"dateReserved": "2023-10-06T17:06:26.221Z",
"dateUpdated": "2025-11-04T18:17:43.583Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-45288",
"date": "2026-07-01",
"epss": "0.91969",
"percentile": "0.99806"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-45288\",\"sourceIdentifier\":\"security@golang.org\",\"published\":\"2024-04-04T21:15:16.113\",\"lastModified\":\"2026-06-17T06:28:35.580\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.\"},{\"lang\":\"es\",\"value\":\"Un atacante puede hacer que un endpoint HTTP/2 lea cantidades arbitrarias de datos de encabezado enviando una cantidad excesiva de tramas de CONTINUACI\u00d3N. Mantener el estado de HPACK requiere analizar y procesar todos los encabezados y tramas de CONTINUACI\u00d3N en una conexi\u00f3n. Cuando los encabezados de una solicitud exceden MaxHeaderBytes, no se asigna memoria para almacenar los encabezados sobrantes, pero a\u00fan as\u00ed se analizan. Esto permite a un atacante hacer que un endpoint HTTP/2 lea cantidades arbitrarias de datos de encabezado, todos asociados con una solicitud que ser\u00e1 rechazada. Estos encabezados pueden incluir datos codificados por Huffman, cuya decodificaci\u00f3n es significativamente m\u00e1s costosa para el receptor que para el atacante. La soluci\u00f3n establece un l\u00edmite en la cantidad de fotogramas de encabezado excedentes que procesaremos antes de cerrar una conexi\u00f3n.\"}],\"affected\":[{\"source\":\"security@golang.org\",\"affectedData\":[{\"vendor\":\"Go standard library\",\"product\":\"net/http\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"net/http\",\"programRoutines\":[{\"name\":\"http2Framer.readMetaFrame\"},{\"name\":\"CanonicalHeaderKey\"},{\"name\":\"Client.CloseIdleConnections\"},{\"name\":\"Client.Do\"},{\"name\":\"Client.Get\"},{\"name\":\"Client.Head\"},{\"name\":\"Client.Post\"},{\"name\":\"Client.PostForm\"},{\"name\":\"Cookie.String\"},{\"name\":\"Cookie.Valid\"},{\"name\":\"Dir.Open\"},{\"name\":\"Error\"},{\"name\":\"Get\"},{\"name\":\"HandlerFunc.ServeHTTP\"},{\"name\":\"Head\"},{\"name\":\"Header.Add\"},{\"name\":\"Header.Del\"},{\"name\":\"Header.Get\"},{\"name\":\"Header.Set\"},{\"name\":\"Header.Values\"},{\"name\":\"Header.Write\"},{\"name\":\"Header.WriteSubset\"},{\"name\":\"ListenAndServe\"},{\"name\":\"ListenAndServeTLS\"},{\"name\":\"NewRequest\"},{\"name\":\"NewRequestWithContext\"},{\"name\":\"NotFound\"},{\"name\":\"ParseTime\"},{\"name\":\"Post\"},{\"name\":\"PostForm\"},{\"name\":\"ProxyFromEnvironment\"},{\"name\":\"ReadRequest\"},{\"name\":\"ReadResponse\"},{\"name\":\"Redirect\"},{\"name\":\"Request.AddCookie\"},{\"name\":\"Request.BasicAuth\"},{\"name\":\"Request.FormFile\"},{\"name\":\"Request.FormValue\"},{\"name\":\"Request.MultipartReader\"},{\"name\":\"Request.ParseForm\"},{\"name\":\"Request.ParseMultipartForm\"},{\"name\":\"Request.PostFormValue\"},{\"name\":\"Request.Referer\"},{\"name\":\"Request.SetBasicAuth\"},{\"name\":\"Request.UserAgent\"},{\"name\":\"Request.Write\"},{\"name\":\"Request.WriteProxy\"},{\"name\":\"Response.Cookies\"},{\"name\":\"Response.Location\"},{\"name\":\"Response.Write\"},{\"name\":\"ResponseController.EnableFullDuplex\"},{\"name\":\"ResponseController.Flush\"},{\"name\":\"ResponseController.Hijack\"},{\"name\":\"ResponseController.SetReadDeadline\"},{\"name\":\"ResponseController.SetWriteDeadline\"},{\"name\":\"Serve\"},{\"name\":\"ServeContent\"},{\"name\":\"ServeFile\"},{\"name\":\"ServeMux.ServeHTTP\"},{\"name\":\"ServeTLS\"},{\"name\":\"Server.Close\"},{\"name\":\"Server.ListenAndServe\"},{\"name\":\"Server.ListenAndServeTLS\"},{\"name\":\"Server.Serve\"},{\"name\":\"Server.ServeTLS\"},{\"name\":\"Server.SetKeepAlivesEnabled\"},{\"name\":\"Server.Shutdown\"},{\"name\":\"SetCookie\"},{\"name\":\"Transport.CancelRequest\"},{\"name\":\"Transport.Clone\"},{\"name\":\"Transport.CloseIdleConnections\"},{\"name\":\"Transport.RoundTrip\"},{\"name\":\"body.Close\"},{\"name\":\"body.Read\"},{\"name\":\"bodyEOFSignal.Close\"},{\"name\":\"bodyEOFSignal.Read\"},{\"name\":\"bodyLocked.Read\"},{\"name\":\"bufioFlushWriter.Write\"},{\"name\":\"cancelTimerBody.Close\"},{\"name\":\"cancelTimerBody.Read\"},{\"name\":\"checkConnErrorWriter.Write\"},{\"name\":\"chunkWriter.Write\"},{\"name\":\"connReader.Read\"},{\"name\":\"connectMethodKey.String\"},{\"name\":\"expectContinueReader.Close\"},{\"name\":\"expectContinueReader.Read\"},{\"name\":\"extraHeader.Write\"},{\"name\":\"fileHandler.ServeHTTP\"},{\"name\":\"fileTransport.RoundTrip\"},{\"name\":\"globalOptionsHandler.ServeHTTP\"},{\"name\":\"gzipReader.Close\"},{\"name\":\"gzipReader.Read\"},{\"name\":\"http2ClientConn.Close\"},{\"name\":\"http2ClientConn.Ping\"},{\"name\":\"http2ClientConn.RoundTrip\"},{\"name\":\"http2ClientConn.Shutdown\"},{\"name\":\"http2ConnectionError.Error\"},{\"name\":\"http2ErrCode.String\"},{\"name\":\"http2FrameHeader.String\"},{\"name\":\"http2FrameType.String\"},{\"name\":\"http2FrameWriteRequest.String\"},{\"name\":\"http2Framer.ReadFrame\"},{\"name\":\"http2Framer.WriteContinuation\"},{\"name\":\"http2Framer.WriteData\"},{\"name\":\"http2Framer.WriteDataPadded\"},{\"name\":\"http2Framer.WriteGoAway\"},{\"name\":\"http2Framer.WriteHeaders\"},{\"name\":\"http2Framer.WritePing\"},{\"name\":\"http2Framer.WritePriority\"},{\"name\":\"http2Framer.WritePushPromise\"},{\"name\":\"http2Framer.WriteRSTStream\"},{\"name\":\"http2Framer.WriteRawFrame\"},{\"name\":\"http2Framer.WriteSettings\"},{\"name\":\"http2Framer.WriteSettingsAck\"},{\"name\":\"http2Framer.WriteWindowUpdate\"},{\"name\":\"http2GoAwayError.Error\"},{\"name\":\"http2Server.ServeConn\"},{\"name\":\"http2Setting.String\"},{\"name\":\"http2SettingID.String\"},{\"name\":\"http2SettingsFrame.ForeachSetting\"},{\"name\":\"http2StreamError.Error\"},{\"name\":\"http2Transport.CloseIdleConnections\"},{\"name\":\"http2Transport.NewClientConn\"},{\"name\":\"http2Transport.RoundTrip\"},{\"name\":\"http2Transport.RoundTripOpt\"},{\"name\":\"http2bufferedWriter.Flush\"},{\"name\":\"http2bufferedWriter.Write\"},{\"name\":\"http2chunkWriter.Write\"},{\"name\":\"http2clientConnPool.GetClientConn\"},{\"name\":\"http2connError.Error\"},{\"name\":\"http2dataBuffer.Read\"},{\"name\":\"http2duplicatePseudoHeaderError.Error\"},{\"name\":\"http2gzipReader.Close\"},{\"name\":\"http2gzipReader.Read\"},{\"name\":\"http2headerFieldNameError.Error\"},{\"name\":\"http2headerFieldValueError.Error\"},{\"name\":\"http2noDialClientConnPool.GetClientConn\"},{\"name\":\"http2noDialH2RoundTripper.RoundTrip\"},{\"name\":\"http2pipe.Read\"},{\"name\":\"http2priorityWriteScheduler.CloseStream\"},{\"name\":\"http2priorityWriteScheduler.OpenStream\"},{\"name\":\"http2pseudoHeaderError.Error\"},{\"name\":\"http2requestBody.Close\"},{\"name\":\"http2requestBody.Read\"},{\"name\":\"http2responseWriter.Flush\"},{\"name\":\"http2responseWriter.FlushError\"},{\"name\":\"http2responseWriter.Push\"},{\"name\":\"http2responseWriter.SetReadDeadline\"},{\"name\":\"http2responseWriter.SetWriteDeadline\"},{\"name\":\"http2responseWriter.Write\"},{\"name\":\"http2responseWriter.WriteHeader\"},{\"name\":\"http2responseWriter.WriteString\"},{\"name\":\"http2roundRobinWriteScheduler.OpenStream\"},{\"name\":\"http2serverConn.CloseConn\"},{\"name\":\"http2serverConn.Flush\"},{\"name\":\"http2stickyErrWriter.Write\"},{\"name\":\"http2transportResponseBody.Close\"},{\"name\":\"http2transportResponseBody.Read\"},{\"name\":\"http2writeData.String\"},{\"name\":\"initALPNRequest.ServeHTTP\"},{\"name\":\"loggingConn.Close\"},{\"name\":\"loggingConn.Read\"},{\"name\":\"loggingConn.Write\"},{\"name\":\"maxBytesReader.Close\"},{\"name\":\"maxBytesReader.Read\"},{\"name\":\"onceCloseListener.Close\"},{\"name\":\"persistConn.Read\"},{\"name\":\"persistConnWriter.ReadFrom\"},{\"name\":\"persistConnWriter.Write\"},{\"name\":\"populateResponse.Write\"},{\"name\":\"populateResponse.WriteHeader\"},{\"name\":\"readTrackingBody.Close\"},{\"name\":\"readTrackingBody.Read\"},{\"name\":\"readWriteCloserBody.Read\"},{\"name\":\"redirectHandler.ServeHTTP\"},{\"name\":\"response.Flush\"},{\"name\":\"response.FlushError\"},{\"name\":\"response.Hijack\"},{\"name\":\"response.ReadFrom\"},{\"name\":\"response.Write\"},{\"name\":\"response.WriteHeader\"},{\"name\":\"response.WriteString\"},{\"name\":\"serverHandler.ServeHTTP\"},{\"name\":\"socksDialer.DialWithConn\"},{\"name\":\"socksUsernamePassword.Authenticate\"},{\"name\":\"stringWriter.WriteString\"},{\"name\":\"timeoutHandler.ServeHTTP\"},{\"name\":\"timeoutWriter.Write\"},{\"name\":\"timeoutWriter.WriteHeader\"},{\"name\":\"transportReadFromServerError.Error\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.21.9\",\"versionType\":\"semver\",\"status\":\"affected\"},{\"version\":\"1.22.0-0\",\"lessThan\":\"1.22.2\",\"versionType\":\"semver\",\"status\":\"affected\"}]},{\"vendor\":\"golang.org/x/net\",\"product\":\"golang.org/x/net/http2\",\"defaultStatus\":\"unaffected\",\"collectionURL\":\"https://pkg.go.dev\",\"packageName\":\"golang.org/x/net/http2\",\"programRoutines\":[{\"name\":\"Framer.readMetaFrame\"},{\"name\":\"ClientConn.Close\"},{\"name\":\"ClientConn.Ping\"},{\"name\":\"ClientConn.RoundTrip\"},{\"name\":\"ClientConn.Shutdown\"},{\"name\":\"ConfigureServer\"},{\"name\":\"ConfigureTransport\"},{\"name\":\"ConfigureTransports\"},{\"name\":\"ConnectionError.Error\"},{\"name\":\"ErrCode.String\"},{\"name\":\"FrameHeader.String\"},{\"name\":\"FrameType.String\"},{\"name\":\"FrameWriteRequest.String\"},{\"name\":\"Framer.ReadFrame\"},{\"name\":\"Framer.WriteContinuation\"},{\"name\":\"Framer.WriteData\"},{\"name\":\"Framer.WriteDataPadded\"},{\"name\":\"Framer.WriteGoAway\"},{\"name\":\"Framer.WriteHeaders\"},{\"name\":\"Framer.WritePing\"},{\"name\":\"Framer.WritePriority\"},{\"name\":\"Framer.WritePushPromise\"},{\"name\":\"Framer.WriteRSTStream\"},{\"name\":\"Framer.WriteRawFrame\"},{\"name\":\"Framer.WriteSettings\"},{\"name\":\"Framer.WriteSettingsAck\"},{\"name\":\"Framer.WriteWindowUpdate\"},{\"name\":\"GoAwayError.Error\"},{\"name\":\"ReadFrameHeader\"},{\"name\":\"Server.ServeConn\"},{\"name\":\"Setting.String\"},{\"name\":\"SettingID.String\"},{\"name\":\"SettingsFrame.ForeachSetting\"},{\"name\":\"StreamError.Error\"},{\"name\":\"Transport.CloseIdleConnections\"},{\"name\":\"Transport.NewClientConn\"},{\"name\":\"Transport.RoundTrip\"},{\"name\":\"Transport.RoundTripOpt\"},{\"name\":\"bufferedWriter.Flush\"},{\"name\":\"bufferedWriter.Write\"},{\"name\":\"chunkWriter.Write\"},{\"name\":\"clientConnPool.GetClientConn\"},{\"name\":\"connError.Error\"},{\"name\":\"dataBuffer.Read\"},{\"name\":\"duplicatePseudoHeaderError.Error\"},{\"name\":\"gzipReader.Close\"},{\"name\":\"gzipReader.Read\"},{\"name\":\"headerFieldNameError.Error\"},{\"name\":\"headerFieldValueError.Error\"},{\"name\":\"noDialClientConnPool.GetClientConn\"},{\"name\":\"noDialH2RoundTripper.RoundTrip\"},{\"name\":\"pipe.Read\"},{\"name\":\"priorityWriteScheduler.CloseStream\"},{\"name\":\"priorityWriteScheduler.OpenStream\"},{\"name\":\"pseudoHeaderError.Error\"},{\"name\":\"requestBody.Close\"},{\"name\":\"requestBody.Read\"},{\"name\":\"responseWriter.Flush\"},{\"name\":\"responseWriter.FlushError\"},{\"name\":\"responseWriter.Push\"},{\"name\":\"responseWriter.SetReadDeadline\"},{\"name\":\"responseWriter.SetWriteDeadline\"},{\"name\":\"responseWriter.Write\"},{\"name\":\"responseWriter.WriteHeader\"},{\"name\":\"responseWriter.WriteString\"},{\"name\":\"roundRobinWriteScheduler.OpenStream\"},{\"name\":\"serverConn.CloseConn\"},{\"name\":\"serverConn.Flush\"},{\"name\":\"stickyErrWriter.Write\"},{\"name\":\"transportResponseBody.Close\"},{\"name\":\"transportResponseBody.Read\"},{\"name\":\"writeData.String\"}],\"versions\":[{\"version\":\"0\",\"lessThan\":\"0.23.0\",\"versionType\":\"semver\",\"status\":\"affected\"}]}]},{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"affectedData\":[{\"vendor\":\"go_standard_library\",\"product\":\"net\\\\/http\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:2.3:a:go_standard_library:net\\\\/http:*:*:*:*:*:*:*:*\"],\"versions\":[{\"version\":\"0\",\"lessThan\":\"1.21.9\",\"versionType\":\"custom\",\"status\":\"affected\"},{\"version\":\"1.22.0-0\",\"lessThan\":\"1.22.2\",\"versionType\":\"custom\",\"status\":\"affected\"}]},{\"vendor\":\"golang\",\"product\":\"http2\",\"defaultStatus\":\"unknown\",\"cpes\":[\"cpe:2.3:a:golang:http2:*:*:*:*:*:*:*:*\"],\"versions\":[{\"version\":\"0\",\"lessThan\":\"0.23.0\",\"versionType\":\"custom\",\"status\":\"affected\"}]}]}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":3.6}],\"ssvcV203\":[{\"source\":\"134c704f-9b21-4f2e-91b3-4a467353bcc0\",\"ssvcData\":{\"timestamp\":\"2024-04-05T17:08:42.212936Z\",\"id\":\"CVE-2023-45288\",\"options\":[{\"exploitation\":\"none\"},{\"automatable\":\"yes\"},{\"technicalImpact\":\"partial\"}],\"role\":\"CISA Coordinator\",\"version\":\"2.0.3\"}}]},\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2024/04/03/16\",\"source\":\"security@golang.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/04/05/4\",\"source\":\"security@golang.org\"},{\"url\":\"https://go.dev/cl/576155\",\"source\":\"security@golang.org\"},{\"url\":\"https://go.dev/issue/65051\",\"source\":\"security@golang.org\"},{\"url\":\"https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M\",\"source\":\"security@golang.org\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT/\",\"source\":\"security@golang.org\"},{\"url\":\"https://pkg.go.dev/vuln/GO-2024-2687\",\"source\":\"security@golang.org\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20240419-0009/\",\"source\":\"security@golang.org\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/04/03/16\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.openwall.com/lists/oss-security/2024/04/05/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://go.dev/cl/576155\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://go.dev/issue/65051\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://pkg.go.dev/vuln/GO-2024-2687\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.netapp.com/advisory/ntap-20240419-0009/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.kb.cert.org/vuls/id/421644\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://go.dev/issue/65051\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://go.dev/cl/576155\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://pkg.go.dev/vuln/GO-2024-2687\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240419-0009/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT/\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/04/05/4\", \"tags\": [\"x_transferred\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/04/03/16\", \"tags\": [\"x_transferred\"]}, {\"url\": \"https://www.kb.cert.org/vuls/id/421644\"}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2025-11-04T18:17:43.583Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}, {\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-45288\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-04-05T17:08:42.212936Z\"}}}], \"affected\": [{\"cpes\": [\"cpe:2.3:a:go_standard_library:net\\\\/http:*:*:*:*:*:*:*:*\"], \"vendor\": \"go_standard_library\", \"product\": \"net\\\\/http\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.21.9\", \"versionType\": \"custom\"}, {\"status\": \"affected\", \"version\": \"1.22.0-0\", \"lessThan\": \"1.22.2\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:2.3:a:golang:http2:*:*:*:*:*:*:*:*\"], \"vendor\": \"golang\", \"product\": \"http2\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"0.23.0\", \"versionType\": \"custom\"}], \"defaultStatus\": \"unknown\"}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-26T20:39:55.687Z\"}}], \"cna\": {\"title\": \"HTTP/2 CONTINUATION flood in net/http\", \"credits\": [{\"lang\": \"en\", \"value\": \"Bartek Nowotarski (https://nowotarski.info/)\"}], \"affected\": [{\"vendor\": \"Go standard library\", \"product\": \"net/http\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"1.21.9\", \"versionType\": \"semver\"}, {\"status\": \"affected\", \"version\": \"1.22.0-0\", \"lessThan\": \"1.22.2\", \"versionType\": \"semver\"}], \"packageName\": \"net/http\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"http2Framer.readMetaFrame\"}, {\"name\": \"CanonicalHeaderKey\"}, {\"name\": \"Client.CloseIdleConnections\"}, {\"name\": \"Client.Do\"}, {\"name\": \"Client.Get\"}, {\"name\": \"Client.Head\"}, {\"name\": \"Client.Post\"}, {\"name\": \"Client.PostForm\"}, {\"name\": \"Cookie.String\"}, {\"name\": \"Cookie.Valid\"}, {\"name\": \"Dir.Open\"}, {\"name\": \"Error\"}, {\"name\": \"Get\"}, {\"name\": \"HandlerFunc.ServeHTTP\"}, {\"name\": \"Head\"}, {\"name\": \"Header.Add\"}, {\"name\": \"Header.Del\"}, {\"name\": \"Header.Get\"}, {\"name\": \"Header.Set\"}, {\"name\": \"Header.Values\"}, {\"name\": \"Header.Write\"}, {\"name\": \"Header.WriteSubset\"}, {\"name\": \"ListenAndServe\"}, {\"name\": \"ListenAndServeTLS\"}, {\"name\": \"NewRequest\"}, {\"name\": \"NewRequestWithContext\"}, {\"name\": \"NotFound\"}, {\"name\": \"ParseTime\"}, {\"name\": \"Post\"}, {\"name\": \"PostForm\"}, {\"name\": \"ProxyFromEnvironment\"}, {\"name\": \"ReadRequest\"}, {\"name\": \"ReadResponse\"}, {\"name\": \"Redirect\"}, {\"name\": \"Request.AddCookie\"}, {\"name\": \"Request.BasicAuth\"}, {\"name\": \"Request.FormFile\"}, {\"name\": \"Request.FormValue\"}, {\"name\": \"Request.MultipartReader\"}, {\"name\": \"Request.ParseForm\"}, {\"name\": \"Request.ParseMultipartForm\"}, {\"name\": \"Request.PostFormValue\"}, {\"name\": \"Request.Referer\"}, {\"name\": \"Request.SetBasicAuth\"}, {\"name\": \"Request.UserAgent\"}, {\"name\": \"Request.Write\"}, {\"name\": \"Request.WriteProxy\"}, {\"name\": \"Response.Cookies\"}, {\"name\": \"Response.Location\"}, {\"name\": \"Response.Write\"}, {\"name\": \"ResponseController.EnableFullDuplex\"}, {\"name\": \"ResponseController.Flush\"}, {\"name\": \"ResponseController.Hijack\"}, {\"name\": \"ResponseController.SetReadDeadline\"}, {\"name\": \"ResponseController.SetWriteDeadline\"}, {\"name\": \"Serve\"}, {\"name\": \"ServeContent\"}, {\"name\": \"ServeFile\"}, {\"name\": \"ServeMux.ServeHTTP\"}, {\"name\": \"ServeTLS\"}, {\"name\": \"Server.Close\"}, {\"name\": \"Server.ListenAndServe\"}, {\"name\": \"Server.ListenAndServeTLS\"}, {\"name\": \"Server.Serve\"}, {\"name\": \"Server.ServeTLS\"}, {\"name\": \"Server.SetKeepAlivesEnabled\"}, {\"name\": \"Server.Shutdown\"}, {\"name\": \"SetCookie\"}, {\"name\": \"Transport.CancelRequest\"}, {\"name\": \"Transport.Clone\"}, {\"name\": \"Transport.CloseIdleConnections\"}, {\"name\": \"Transport.RoundTrip\"}, {\"name\": \"body.Close\"}, {\"name\": \"body.Read\"}, {\"name\": \"bodyEOFSignal.Close\"}, {\"name\": \"bodyEOFSignal.Read\"}, {\"name\": \"bodyLocked.Read\"}, {\"name\": \"bufioFlushWriter.Write\"}, {\"name\": \"cancelTimerBody.Close\"}, {\"name\": \"cancelTimerBody.Read\"}, {\"name\": \"checkConnErrorWriter.Write\"}, {\"name\": \"chunkWriter.Write\"}, {\"name\": \"connReader.Read\"}, {\"name\": \"connectMethodKey.String\"}, {\"name\": \"expectContinueReader.Close\"}, {\"name\": \"expectContinueReader.Read\"}, {\"name\": \"extraHeader.Write\"}, {\"name\": \"fileHandler.ServeHTTP\"}, {\"name\": \"fileTransport.RoundTrip\"}, {\"name\": \"globalOptionsHandler.ServeHTTP\"}, {\"name\": \"gzipReader.Close\"}, {\"name\": \"gzipReader.Read\"}, {\"name\": \"http2ClientConn.Close\"}, {\"name\": \"http2ClientConn.Ping\"}, {\"name\": \"http2ClientConn.RoundTrip\"}, {\"name\": \"http2ClientConn.Shutdown\"}, {\"name\": \"http2ConnectionError.Error\"}, {\"name\": \"http2ErrCode.String\"}, {\"name\": \"http2FrameHeader.String\"}, {\"name\": \"http2FrameType.String\"}, {\"name\": \"http2FrameWriteRequest.String\"}, {\"name\": \"http2Framer.ReadFrame\"}, {\"name\": \"http2Framer.WriteContinuation\"}, {\"name\": \"http2Framer.WriteData\"}, {\"name\": \"http2Framer.WriteDataPadded\"}, {\"name\": \"http2Framer.WriteGoAway\"}, {\"name\": \"http2Framer.WriteHeaders\"}, {\"name\": \"http2Framer.WritePing\"}, {\"name\": \"http2Framer.WritePriority\"}, {\"name\": \"http2Framer.WritePushPromise\"}, {\"name\": \"http2Framer.WriteRSTStream\"}, {\"name\": \"http2Framer.WriteRawFrame\"}, {\"name\": \"http2Framer.WriteSettings\"}, {\"name\": \"http2Framer.WriteSettingsAck\"}, {\"name\": \"http2Framer.WriteWindowUpdate\"}, {\"name\": \"http2GoAwayError.Error\"}, {\"name\": \"http2Server.ServeConn\"}, {\"name\": \"http2Setting.String\"}, {\"name\": \"http2SettingID.String\"}, {\"name\": \"http2SettingsFrame.ForeachSetting\"}, {\"name\": \"http2StreamError.Error\"}, {\"name\": \"http2Transport.CloseIdleConnections\"}, {\"name\": \"http2Transport.NewClientConn\"}, {\"name\": \"http2Transport.RoundTrip\"}, {\"name\": \"http2Transport.RoundTripOpt\"}, {\"name\": \"http2bufferedWriter.Flush\"}, {\"name\": \"http2bufferedWriter.Write\"}, {\"name\": \"http2chunkWriter.Write\"}, {\"name\": \"http2clientConnPool.GetClientConn\"}, {\"name\": \"http2connError.Error\"}, {\"name\": \"http2dataBuffer.Read\"}, {\"name\": \"http2duplicatePseudoHeaderError.Error\"}, {\"name\": \"http2gzipReader.Close\"}, {\"name\": \"http2gzipReader.Read\"}, {\"name\": \"http2headerFieldNameError.Error\"}, {\"name\": \"http2headerFieldValueError.Error\"}, {\"name\": \"http2noDialClientConnPool.GetClientConn\"}, {\"name\": \"http2noDialH2RoundTripper.RoundTrip\"}, {\"name\": \"http2pipe.Read\"}, {\"name\": \"http2priorityWriteScheduler.CloseStream\"}, {\"name\": \"http2priorityWriteScheduler.OpenStream\"}, {\"name\": \"http2pseudoHeaderError.Error\"}, {\"name\": \"http2requestBody.Close\"}, {\"name\": \"http2requestBody.Read\"}, {\"name\": \"http2responseWriter.Flush\"}, {\"name\": \"http2responseWriter.FlushError\"}, {\"name\": \"http2responseWriter.Push\"}, {\"name\": \"http2responseWriter.SetReadDeadline\"}, {\"name\": \"http2responseWriter.SetWriteDeadline\"}, {\"name\": \"http2responseWriter.Write\"}, {\"name\": \"http2responseWriter.WriteHeader\"}, {\"name\": \"http2responseWriter.WriteString\"}, {\"name\": \"http2roundRobinWriteScheduler.OpenStream\"}, {\"name\": \"http2serverConn.CloseConn\"}, {\"name\": \"http2serverConn.Flush\"}, {\"name\": \"http2stickyErrWriter.Write\"}, {\"name\": \"http2transportResponseBody.Close\"}, {\"name\": \"http2transportResponseBody.Read\"}, {\"name\": \"http2writeData.String\"}, {\"name\": \"initALPNRequest.ServeHTTP\"}, {\"name\": \"loggingConn.Close\"}, {\"name\": \"loggingConn.Read\"}, {\"name\": \"loggingConn.Write\"}, {\"name\": \"maxBytesReader.Close\"}, {\"name\": \"maxBytesReader.Read\"}, {\"name\": \"onceCloseListener.Close\"}, {\"name\": \"persistConn.Read\"}, {\"name\": \"persistConnWriter.ReadFrom\"}, {\"name\": \"persistConnWriter.Write\"}, {\"name\": \"populateResponse.Write\"}, {\"name\": \"populateResponse.WriteHeader\"}, {\"name\": \"readTrackingBody.Close\"}, {\"name\": \"readTrackingBody.Read\"}, {\"name\": \"readWriteCloserBody.Read\"}, {\"name\": \"redirectHandler.ServeHTTP\"}, {\"name\": \"response.Flush\"}, {\"name\": \"response.FlushError\"}, {\"name\": \"response.Hijack\"}, {\"name\": \"response.ReadFrom\"}, {\"name\": \"response.Write\"}, {\"name\": \"response.WriteHeader\"}, {\"name\": \"response.WriteString\"}, {\"name\": \"serverHandler.ServeHTTP\"}, {\"name\": \"socksDialer.DialWithConn\"}, {\"name\": \"socksUsernamePassword.Authenticate\"}, {\"name\": \"stringWriter.WriteString\"}, {\"name\": \"timeoutHandler.ServeHTTP\"}, {\"name\": \"timeoutWriter.Write\"}, {\"name\": \"timeoutWriter.WriteHeader\"}, {\"name\": \"transportReadFromServerError.Error\"}]}, {\"vendor\": \"golang.org/x/net\", \"product\": \"golang.org/x/net/http2\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"0.23.0\", \"versionType\": \"semver\"}], \"packageName\": \"golang.org/x/net/http2\", \"collectionURL\": \"https://pkg.go.dev\", \"defaultStatus\": \"unaffected\", \"programRoutines\": [{\"name\": \"Framer.readMetaFrame\"}, {\"name\": \"ClientConn.Close\"}, {\"name\": \"ClientConn.Ping\"}, {\"name\": \"ClientConn.RoundTrip\"}, {\"name\": \"ClientConn.Shutdown\"}, {\"name\": \"ConfigureServer\"}, {\"name\": \"ConfigureTransport\"}, {\"name\": \"ConfigureTransports\"}, {\"name\": \"ConnectionError.Error\"}, {\"name\": \"ErrCode.String\"}, {\"name\": \"FrameHeader.String\"}, {\"name\": \"FrameType.String\"}, {\"name\": \"FrameWriteRequest.String\"}, {\"name\": \"Framer.ReadFrame\"}, {\"name\": \"Framer.WriteContinuation\"}, {\"name\": \"Framer.WriteData\"}, {\"name\": \"Framer.WriteDataPadded\"}, {\"name\": \"Framer.WriteGoAway\"}, {\"name\": \"Framer.WriteHeaders\"}, {\"name\": \"Framer.WritePing\"}, {\"name\": \"Framer.WritePriority\"}, {\"name\": \"Framer.WritePushPromise\"}, {\"name\": \"Framer.WriteRSTStream\"}, {\"name\": \"Framer.WriteRawFrame\"}, {\"name\": \"Framer.WriteSettings\"}, {\"name\": \"Framer.WriteSettingsAck\"}, {\"name\": \"Framer.WriteWindowUpdate\"}, {\"name\": \"GoAwayError.Error\"}, {\"name\": \"ReadFrameHeader\"}, {\"name\": \"Server.ServeConn\"}, {\"name\": \"Setting.String\"}, {\"name\": \"SettingID.String\"}, {\"name\": \"SettingsFrame.ForeachSetting\"}, {\"name\": \"StreamError.Error\"}, {\"name\": \"Transport.CloseIdleConnections\"}, {\"name\": \"Transport.NewClientConn\"}, {\"name\": \"Transport.RoundTrip\"}, {\"name\": \"Transport.RoundTripOpt\"}, {\"name\": \"bufferedWriter.Flush\"}, {\"name\": \"bufferedWriter.Write\"}, {\"name\": \"chunkWriter.Write\"}, {\"name\": \"clientConnPool.GetClientConn\"}, {\"name\": \"connError.Error\"}, {\"name\": \"dataBuffer.Read\"}, {\"name\": \"duplicatePseudoHeaderError.Error\"}, {\"name\": \"gzipReader.Close\"}, {\"name\": \"gzipReader.Read\"}, {\"name\": \"headerFieldNameError.Error\"}, {\"name\": \"headerFieldValueError.Error\"}, {\"name\": \"noDialClientConnPool.GetClientConn\"}, {\"name\": \"noDialH2RoundTripper.RoundTrip\"}, {\"name\": \"pipe.Read\"}, {\"name\": \"priorityWriteScheduler.CloseStream\"}, {\"name\": \"priorityWriteScheduler.OpenStream\"}, {\"name\": \"pseudoHeaderError.Error\"}, {\"name\": \"requestBody.Close\"}, {\"name\": \"requestBody.Read\"}, {\"name\": \"responseWriter.Flush\"}, {\"name\": \"responseWriter.FlushError\"}, {\"name\": \"responseWriter.Push\"}, {\"name\": \"responseWriter.SetReadDeadline\"}, {\"name\": \"responseWriter.SetWriteDeadline\"}, {\"name\": \"responseWriter.Write\"}, {\"name\": \"responseWriter.WriteHeader\"}, {\"name\": \"responseWriter.WriteString\"}, {\"name\": \"roundRobinWriteScheduler.OpenStream\"}, {\"name\": \"serverConn.CloseConn\"}, {\"name\": \"serverConn.Flush\"}, {\"name\": \"stickyErrWriter.Write\"}, {\"name\": \"transportResponseBody.Close\"}, {\"name\": \"transportResponseBody.Read\"}, {\"name\": \"writeData.String\"}]}], \"references\": [{\"url\": \"https://go.dev/issue/65051\"}, {\"url\": \"https://go.dev/cl/576155\"}, {\"url\": \"https://groups.google.com/g/golang-announce/c/YgW0sx8mN3M\"}, {\"url\": \"https://pkg.go.dev/vuln/GO-2024-2687\"}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240419-0009/\"}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/QRYFHIQ6XRKRYBI2F5UESH67BJBQXUPT/\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/04/05/4\"}, {\"url\": \"http://www.openwall.com/lists/oss-security/2024/04/03/16\"}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"CWE-400: Uncontrolled Resource Consumption\"}]}], \"providerMetadata\": {\"orgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"shortName\": \"Go\", \"dateUpdated\": \"2024-05-01T17:10:07.754Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-45288\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-11-04T18:17:43.583Z\", \"dateReserved\": \"2023-10-06T17:06:26.221Z\", \"assignerOrgId\": \"1bb62c36-49e3-4200-9d77-64a1400537cc\", \"datePublished\": \"2024-04-04T20:37:30.714Z\", \"assignerShortName\": \"Go\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
SUSE-SU-2026:20483-1
Vulnerability from csaf_suse - Published: 2026-02-17 09:37 - Updated: 2026-02-17 09:37Summary
Security update for google-guest-agent
Severity
Moderate
Notes
Title of the patch: Security update for google-guest-agent
Description of the patch: This update for google-guest-agent fixes the following issues:
- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).
Patchnames: SUSE-SLE-Micro-6.1-400
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-guest-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-guest-agent fixes the following issues:\n\n- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-400",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20483-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20483-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620483-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20483-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024487.html"
},
{
"category": "self",
"summary": "SUSE Bug 1236533",
"url": "https://bugzilla.suse.com/1236533"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
}
],
"title": "Security update for google-guest-agent",
"tracking": {
"current_release_date": "2026-02-17T09:37:33Z",
"generator": {
"date": "2026-02-17T09:37:33Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20483-1",
"initial_release_date": "2026-02-17T09:37:33Z",
"revision_history": [
{
"date": "2026-02-17T09:37:33Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64",
"product": {
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64",
"product_id": "google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le",
"product": {
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le",
"product_id": "google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.s390x",
"product": {
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.s390x",
"product_id": "google-guest-agent-20250116.00-slfo.1.1_2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64",
"product": {
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64",
"product_id": "google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64"
},
"product_reference": "google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le"
},
"product_reference": "google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.s390x"
},
"product_reference": "google-guest-agent-20250116.00-slfo.1.1_2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64"
},
"product_reference": "google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:google-guest-agent-20250116.00-slfo.1.1_2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-17T09:37:33Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
}
]
}
SUSE-SU-2026:20486-1
Vulnerability from csaf_suse - Published: 2026-02-17 09:38 - Updated: 2026-02-17 09:38Summary
Security update for google-osconfig-agent
Severity
Moderate
Notes
Title of the patch: Security update for google-osconfig-agent
Description of the patch: This update for google-osconfig-agent fixes the following issues:
- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).
Patchnames: SUSE-SLE-Micro-6.1-401
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-osconfig-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-osconfig-agent fixes the following issues:\n\n- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-401",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_20486-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:20486-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202620486-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:20486-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024484.html"
},
{
"category": "self",
"summary": "SUSE Bug 1236533",
"url": "https://bugzilla.suse.com/1236533"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
}
],
"title": "Security update for google-osconfig-agent",
"tracking": {
"current_release_date": "2026-02-17T09:38:09Z",
"generator": {
"date": "2026-02-17T09:38:09Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:20486-1",
"initial_release_date": "2026-02-17T09:38:09Z",
"revision_history": [
{
"date": "2026-02-17T09:38:09Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64",
"product": {
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64",
"product_id": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le",
"product": {
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le",
"product_id": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x",
"product": {
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x",
"product_id": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64",
"product": {
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64",
"product_id": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64"
},
"product_reference": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le"
},
"product_reference": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x"
},
"product_reference": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64"
},
"product_reference": "google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20250416.02-slfo.1.1_2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-02-17T09:38:09Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
}
]
}
SUSE-SU-2026:21319-1
Vulnerability from csaf_suse - Published: 2026-04-22 10:58 - Updated: 2026-04-22 10:58Summary
Security update for google-guest-agent
Severity
Important
Notes
Title of the patch: Security update for google-guest-agent
Description of the patch: This update for google-guest-agent fixes the following issues:
Update to version 20250506.01 (bsc#1243254, bsc#1243505).
Security issues fixed:
- CVE-2024-45337: golang.org/x/crypto/ssh: misuse of the ServerConfig.PublicKeyCallback callback can lead to
authorization bypass in applications (bsc#1234563).
- CVE-2023-45288: golang.org/x/net/http2: no limit set for number of HTTP/2 CONTINUATION frames that can be read for an
HTTP/2 request can lead to excessive CPU consumption and a DoS (bsc#1236533).
Other updates and bugfixes:
- Version 20250506.01:
* Make sure agent added connections are activated by NM (#534)
- Version 20250506.00:
* Wrap NSS cache refresh in a goroutine (#533)
- Version 20250502.01:
* Wicked: Only reload interfaces for which configurations are written or changed. (#524)
- Version 20250502.00:
* Add AuthorizedKeysCompat to windows packaging (#530)
* Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)
* Update guest-logging-go dependency (#526)
* Add 'created-by' metadata, and pass it as option to logging library (#508)
* Revert "oslogin: Correctly handle newlines at the end of modified files (#520)" (#523)
* Re-enable disabled services if the core plugin was enabled (#522)
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
- Version 20250418.00:
* Re-enable disabled services if the core plugin was enabled (#521)
- Version 20250414.00:
* Add AuthorizedKeysCompat to windows packaging (#530)
* Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)
* Update guest-logging-go dependency (#526)
* Add 'created-by' metadata, and pass it as option to logging library (#508)
* Revert "oslogin: Correctly handle newlines at the end of modified files (#520)" (#523)
* Re-enable disabled services if the core plugin was enabled (#522)
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
- Version 20250327.01 (bsc#1239763, bsc#1239866):
* Remove error messages from gce_workload_cert_refresh and
metadata script runner (#527)
- Version 20250327.00:
* Update guest-logging-go dependency (#526)
* Add 'created-by' metadata, and pass it as option to logging library (#508)
* Revert "oslogin: Correctly handle newlines at the end of
modified files (#520)" (#523)
* Re-enable disabled services if the core plugin was enabled (#522)
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
- Version 20250326.00:
* Re-enable disabled services if the core plugin was enabled (#521)
- Version 20250324.00:
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
* Revert bundling new binaries in the package (#509)
* Fix typo in windows build script (#501)
* Include core plugin binary for all packages (#500)
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250317.00:
* Revert "Revert bundling new binaries in the package (#509)" (#511)
* Revert bundling new binaries in the package (#509)
* Fix typo in windows build script (#501)
* Include core plugin binary for all packages (#500)
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250312.00:
* Revert bundling new binaries in the package (#509)
* Fix typo in windows build script (#501)
* Include core plugin binary for all packages (#500)
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250305.00:
* Revert bundling new binaries in the package (#509)
* Fix typo in windows build script (#501)
* Include core plugin binary for all packages (#500)
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250304.01:
* Fix typo in windows build script (#501)
- Version 20250214.01:
* Include core plugin binary for all packages (#500)
- Version 20250212.00:
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
- Version 20250211.00:
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250207.00:
* vlan: toggle vlan configuration in debian packaging (#495)
* vlan: move config out of unstable section (#494)
* Add clarification to comments regarding invalid NICs and the
`invalid` tag. (#493)
* Include interfaces in lists even if it has an invalid MAC. (#489)
* Fix windows package build failures (#491)
* vlan: don't index based on the vlan ID (#486)
* Revert PR #482 (#488)
* Remove Amy and Zach from OWNERS (#487)
* Skip interfaces in interfaceNames() instead of erroring if there is an (#482)
* Fix Debian packaging if guest agent manager is not checked out (#485)
- Version 20250204.02:
* force concourse to move version forward.
- Version 20250204.01:
* vlan: toggle vlan configuration in debian packaging (#495)
- Version 20250204.00:
* vlan: move config out of unstable section (#494)
* Add clarification to comments regarding invalid NICs and the
`invalid` tag. (#493)
- Version 20250203.01:
* Include interfaces in lists even if it has an invalid MAC. (#489)
- Version 20250203.00:
* Fix windows package build failures (#491)
* vlan: don't index based on the vlan ID (#486)
* Revert PR #482 (#488)
* Remove Amy and Zach from OWNERS (#487)
* Skip interfaces in interfaceNames() instead of erroring if there is an (#482)
* Fix Debian packaging if guest agent manager is not checked out (#485)
- Version 20250122.00:
* networkd(vlan): remove the interface in addition to config (#468)
* Implement support for vlan dynamic removal, update dhclient to
remove only if configured (#465)
* Update logging library (#479)
* Remove Pat from owners file. (#478)
Patchnames: SUSE-SLE-Micro-6.0-682
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
16 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-guest-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-guest-agent fixes the following issues:\n\nUpdate to version 20250506.01 (bsc#1243254, bsc#1243505).\n\nSecurity issues fixed:\n\n- CVE-2024-45337: golang.org/x/crypto/ssh: misuse of the ServerConfig.PublicKeyCallback callback can lead to\n authorization bypass in applications (bsc#1234563).\n- CVE-2023-45288: golang.org/x/net/http2: no limit set for number of HTTP/2 CONTINUATION frames that can be read for an\n HTTP/2 request can lead to excessive CPU consumption and a DoS (bsc#1236533).\n\nOther updates and bugfixes:\n\n- Version 20250506.01:\n * Make sure agent added connections are activated by NM (#534)\n- Version 20250506.00:\n * Wrap NSS cache refresh in a goroutine (#533)\n- Version 20250502.01:\n * Wicked: Only reload interfaces for which configurations are written or changed. (#524)\n- Version 20250502.00:\n * Add AuthorizedKeysCompat to windows packaging (#530)\n * Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)\n * Update guest-logging-go dependency (#526)\n * Add \u0027created-by\u0027 metadata, and pass it as option to logging library (#508)\n * Revert \"oslogin: Correctly handle newlines at the end of modified files (#520)\" (#523)\n * Re-enable disabled services if the core plugin was enabled (#522)\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n- Version 20250418.00:\n * Re-enable disabled services if the core plugin was enabled (#521)\n- Version 20250414.00:\n * Add AuthorizedKeysCompat to windows packaging (#530)\n * Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)\n * Update guest-logging-go dependency (#526)\n * Add \u0027created-by\u0027 metadata, and pass it as option to logging library (#508)\n * Revert \"oslogin: Correctly handle newlines at the end of modified files (#520)\" (#523)\n * Re-enable disabled services if the core plugin was enabled (#522)\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n- Version 20250327.01 (bsc#1239763, bsc#1239866):\n * Remove error messages from gce_workload_cert_refresh and\n metadata script runner (#527)\n- Version 20250327.00:\n * Update guest-logging-go dependency (#526)\n * Add \u0027created-by\u0027 metadata, and pass it as option to logging library (#508)\n * Revert \"oslogin: Correctly handle newlines at the end of\n modified files (#520)\" (#523)\n * Re-enable disabled services if the core plugin was enabled (#522)\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n- Version 20250326.00:\n * Re-enable disabled services if the core plugin was enabled (#521)\n- Version 20250324.00:\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n * Revert bundling new binaries in the package (#509)\n * Fix typo in windows build script (#501)\n * Include core plugin binary for all packages (#500)\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250317.00:\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n * Revert bundling new binaries in the package (#509)\n * Fix typo in windows build script (#501)\n * Include core plugin binary for all packages (#500)\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250312.00:\n * Revert bundling new binaries in the package (#509)\n * Fix typo in windows build script (#501)\n * Include core plugin binary for all packages (#500)\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250305.00:\n * Revert bundling new binaries in the package (#509)\n * Fix typo in windows build script (#501)\n * Include core plugin binary for all packages (#500)\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250304.01:\n * Fix typo in windows build script (#501)\n- Version 20250214.01:\n * Include core plugin binary for all packages (#500)\n- Version 20250212.00:\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n- Version 20250211.00:\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250207.00:\n * vlan: toggle vlan configuration in debian packaging (#495)\n * vlan: move config out of unstable section (#494)\n * Add clarification to comments regarding invalid NICs and the\n `invalid` tag. (#493)\n * Include interfaces in lists even if it has an invalid MAC. (#489)\n * Fix windows package build failures (#491)\n * vlan: don\u0027t index based on the vlan ID (#486)\n * Revert PR #482 (#488)\n * Remove Amy and Zach from OWNERS (#487)\n * Skip interfaces in interfaceNames() instead of erroring if there is an (#482)\n * Fix Debian packaging if guest agent manager is not checked out (#485)\n- Version 20250204.02:\n * force concourse to move version forward.\n- Version 20250204.01:\n * vlan: toggle vlan configuration in debian packaging (#495)\n- Version 20250204.00:\n * vlan: move config out of unstable section (#494)\n * Add clarification to comments regarding invalid NICs and the\n `invalid` tag. (#493)\n- Version 20250203.01:\n * Include interfaces in lists even if it has an invalid MAC. (#489)\n- Version 20250203.00:\n * Fix windows package build failures (#491)\n * vlan: don\u0027t index based on the vlan ID (#486)\n * Revert PR #482 (#488)\n * Remove Amy and Zach from OWNERS (#487)\n * Skip interfaces in interfaceNames() instead of erroring if there is an (#482)\n * Fix Debian packaging if guest agent manager is not checked out (#485)\n- Version 20250122.00:\n * networkd(vlan): remove the interface in addition to config (#468)\n * Implement support for vlan dynamic removal, update dhclient to\n remove only if configured (#465)\n * Update logging library (#479)\n * Remove Pat from owners file. (#478)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-682",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_21319-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:21319-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621319-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:21319-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/045998.html"
},
{
"category": "self",
"summary": "SUSE Bug 1234563",
"url": "https://bugzilla.suse.com/1234563"
},
{
"category": "self",
"summary": "SUSE Bug 1236533",
"url": "https://bugzilla.suse.com/1236533"
},
{
"category": "self",
"summary": "SUSE Bug 1239763",
"url": "https://bugzilla.suse.com/1239763"
},
{
"category": "self",
"summary": "SUSE Bug 1239866",
"url": "https://bugzilla.suse.com/1239866"
},
{
"category": "self",
"summary": "SUSE Bug 1243254",
"url": "https://bugzilla.suse.com/1243254"
},
{
"category": "self",
"summary": "SUSE Bug 1243505",
"url": "https://bugzilla.suse.com/1243505"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45337 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45337/"
}
],
"title": "Security update for google-guest-agent",
"tracking": {
"current_release_date": "2026-04-22T10:58:34Z",
"generator": {
"date": "2026-04-22T10:58:34Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:21319-1",
"initial_release_date": "2026-04-22T10:58:34Z",
"revision_history": [
{
"date": "2026-04-22T10:58:34Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20250506.01-1.1.aarch64",
"product": {
"name": "google-guest-agent-20250506.01-1.1.aarch64",
"product_id": "google-guest-agent-20250506.01-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20250506.01-1.1.s390x",
"product": {
"name": "google-guest-agent-20250506.01-1.1.s390x",
"product_id": "google-guest-agent-20250506.01-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20250506.01-1.1.x86_64",
"product": {
"name": "google-guest-agent-20250506.01-1.1.x86_64",
"product_id": "google-guest-agent-20250506.01-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250506.01-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.aarch64"
},
"product_reference": "google-guest-agent-20250506.01-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250506.01-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.s390x"
},
"product_reference": "google-guest-agent-20250506.01-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250506.01-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.x86_64"
},
"product_reference": "google-guest-agent-20250506.01-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-22T10:58:34Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-45337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45337"
}
],
"notes": [
{
"category": "general",
"text": "Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that \"A call to this function does not guarantee that the key offered is in fact used to authenticate.\" Specifically, the SSH protocol allows clients to inquire about whether a public key is acceptable before proving control of the corresponding private key. PublicKeyCallback may be called with multiple keys, and the order in which the keys were provided cannot be used to infer which key the client successfully authenticated with, if any. Some applications, which store the key(s) passed to PublicKeyCallback (or derived information) and make security relevant determinations based on it once the connection is established, may make incorrect assumptions. For example, an attacker may send public keys A and B, and then authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B for which the attacker does not actually control the private key. Since this API is widely misused, as a partial mitigation golang.org/x/cry...@v0.31.0 enforces the property that, when successfully authenticating via public key, the last key passed to ServerConfig.PublicKeyCallback will be the key used to authenticate the connection. PublicKeyCallback will now be called multiple times with the same key, if necessary. Note that the client may still not control the last key passed to PublicKeyCallback if the connection is then authenticated with a different method, such as PasswordCallback, KeyboardInteractiveCallback, or NoClientAuth. Users should be using the Extensions field of the Permissions return value from the various authentication callbacks to record data associated with the authentication attempt instead of referencing external state. Once the connection is established the state corresponding to the successful authentication attempt can be retrieved via the ServerConn.Permissions field. Note that some third-party libraries misuse the Permissions type by sharing it across authentication attempts; users of third-party libraries should refer to the relevant projects for guidance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45337",
"url": "https://www.suse.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "SUSE Bug 1234482 for CVE-2024-45337",
"url": "https://bugzilla.suse.com/1234482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-guest-agent-20250506.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-22T10:58:34Z",
"details": "important"
}
],
"title": "CVE-2024-45337"
}
]
}
SUSE-SU-2026:21376-1
Vulnerability from csaf_suse - Published: 2026-04-22 10:23 - Updated: 2026-04-22 10:23Summary
Security update for google-guest-agent
Severity
Important
Notes
Title of the patch: Security update for google-guest-agent
Description of the patch: This update for google-guest-agent fixes the following issues:
Update to version 20250506.01 (bsc#1243254, bsc#1243505).
Security issues fixed:
- CVE-2024-45337: golang.org/x/crypto/ssh: misuse of the ServerConfig.PublicKeyCallback callback can lead to
authorization bypass in applications (bsc#1234563).
- CVE-2023-45288: golang.org/x/net/http2: no limit set for number of HTTP/2 CONTINUATION frames that can be read for an
HTTP/2 request can lead to excessive CPU consumption and a DoS (bsc#1236533).
Other updates and bugfixes:
- Version 20250506.01:
* Make sure agent added connections are activated by NM (#534)
- Version 20250506.00:
* Wrap NSS cache refresh in a goroutine (#533)
- Version 20250502.01:
* Wicked: Only reload interfaces for which configurations are written or changed. (#524)
- Version 20250502.00:
* Add AuthorizedKeysCompat to windows packaging (#530)
* Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)
* Update guest-logging-go dependency (#526)
* Add 'created-by' metadata, and pass it as option to logging library (#508)
* Revert "oslogin: Correctly handle newlines at the end of modified files (#520)" (#523)
* Re-enable disabled services if the core plugin was enabled (#522)
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
- Version 20250418.00:
* Re-enable disabled services if the core plugin was enabled (#521)
- Version 20250414.00:
* Add AuthorizedKeysCompat to windows packaging (#530)
* Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)
* Update guest-logging-go dependency (#526)
* Add 'created-by' metadata, and pass it as option to logging library (#508)
* Revert "oslogin: Correctly handle newlines at the end of modified files (#520)" (#523)
* Re-enable disabled services if the core plugin was enabled (#522)
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
- Version 20250327.01 (bsc#1239763, bsc#1239866):
* Remove error messages from gce_workload_cert_refresh and
metadata script runner (#527)
- Version 20250327.00:
* Update guest-logging-go dependency (#526)
* Add 'created-by' metadata, and pass it as option to logging library (#508)
* Revert "oslogin: Correctly handle newlines at the end of
modified files (#520)" (#523)
* Re-enable disabled services if the core plugin was enabled (#522)
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
- Version 20250326.00:
* Re-enable disabled services if the core plugin was enabled (#521)
- Version 20250324.00:
* Enable guest services on package upgrade (#519)
* oslogin: Correctly handle newlines at the end of modified files (#520)
* Fix core plugin path (#518)
* Fix package build issues (#517)
* Fix dependencies ran go mod tidy -v (#515)
* Fix debian build path (#514)
* Bundle compat metadata script runner binary in package (#513)
* Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)
* Update startup/shutdown services to launch compat manager (#503)
* Bundle new gce metadata script runner binary in agent package (#502)
* Revert "Revert bundling new binaries in the package (#509)" (#511)
* Revert bundling new binaries in the package (#509)
* Fix typo in windows build script (#501)
* Include core plugin binary for all packages (#500)
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250317.00:
* Revert "Revert bundling new binaries in the package (#509)" (#511)
* Revert bundling new binaries in the package (#509)
* Fix typo in windows build script (#501)
* Include core plugin binary for all packages (#500)
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250312.00:
* Revert bundling new binaries in the package (#509)
* Fix typo in windows build script (#501)
* Include core plugin binary for all packages (#500)
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250305.00:
* Revert bundling new binaries in the package (#509)
* Fix typo in windows build script (#501)
* Include core plugin binary for all packages (#500)
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250304.01:
* Fix typo in windows build script (#501)
- Version 20250214.01:
* Include core plugin binary for all packages (#500)
- Version 20250212.00:
* Start packaging compat manager (#498)
* Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)
- Version 20250211.00:
* scripts: introduce a wrapper to locally build deb package (#490)
* Introduce compat-manager systemd unit (#497)
- Version 20250207.00:
* vlan: toggle vlan configuration in debian packaging (#495)
* vlan: move config out of unstable section (#494)
* Add clarification to comments regarding invalid NICs and the
`invalid` tag. (#493)
* Include interfaces in lists even if it has an invalid MAC. (#489)
* Fix windows package build failures (#491)
* vlan: don't index based on the vlan ID (#486)
* Revert PR #482 (#488)
* Remove Amy and Zach from OWNERS (#487)
* Skip interfaces in interfaceNames() instead of erroring if there is an (#482)
* Fix Debian packaging if guest agent manager is not checked out (#485)
- Version 20250204.02:
* force concourse to move version forward.
- Version 20250204.01:
* vlan: toggle vlan configuration in debian packaging (#495)
- Version 20250204.00:
* vlan: move config out of unstable section (#494)
* Add clarification to comments regarding invalid NICs and the
`invalid` tag. (#493)
- Version 20250203.01:
* Include interfaces in lists even if it has an invalid MAC. (#489)
- Version 20250203.00:
* Fix windows package build failures (#491)
* vlan: don't index based on the vlan ID (#486)
* Revert PR #482 (#488)
* Remove Amy and Zach from OWNERS (#487)
* Skip interfaces in interfaceNames() instead of erroring if there is an (#482)
* Fix Debian packaging if guest agent manager is not checked out (#485)
- Version 20250122.00:
* networkd(vlan): remove the interface in addition to config (#468)
* Implement support for vlan dynamic removal, update dhclient to
remove only if configured (#465)
* Update logging library (#479)
* Remove Pat from owners file. (#478)
Patchnames: SUSE-SLES-16.0-621
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
16 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-guest-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-guest-agent fixes the following issues:\n\nUpdate to version 20250506.01 (bsc#1243254, bsc#1243505).\n\nSecurity issues fixed:\n\n- CVE-2024-45337: golang.org/x/crypto/ssh: misuse of the ServerConfig.PublicKeyCallback callback can lead to\n authorization bypass in applications (bsc#1234563).\n- CVE-2023-45288: golang.org/x/net/http2: no limit set for number of HTTP/2 CONTINUATION frames that can be read for an\n HTTP/2 request can lead to excessive CPU consumption and a DoS (bsc#1236533).\n\nOther updates and bugfixes:\n\n- Version 20250506.01:\n * Make sure agent added connections are activated by NM (#534)\n- Version 20250506.00:\n * Wrap NSS cache refresh in a goroutine (#533)\n- Version 20250502.01:\n * Wicked: Only reload interfaces for which configurations are written or changed. (#524)\n- Version 20250502.00:\n * Add AuthorizedKeysCompat to windows packaging (#530)\n * Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)\n * Update guest-logging-go dependency (#526)\n * Add \u0027created-by\u0027 metadata, and pass it as option to logging library (#508)\n * Revert \"oslogin: Correctly handle newlines at the end of modified files (#520)\" (#523)\n * Re-enable disabled services if the core plugin was enabled (#522)\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n- Version 20250418.00:\n * Re-enable disabled services if the core plugin was enabled (#521)\n- Version 20250414.00:\n * Add AuthorizedKeysCompat to windows packaging (#530)\n * Remove error messages from gce_workload_cert_refresh and metadata script runner (#527)\n * Update guest-logging-go dependency (#526)\n * Add \u0027created-by\u0027 metadata, and pass it as option to logging library (#508)\n * Revert \"oslogin: Correctly handle newlines at the end of modified files (#520)\" (#523)\n * Re-enable disabled services if the core plugin was enabled (#522)\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n- Version 20250327.01 (bsc#1239763, bsc#1239866):\n * Remove error messages from gce_workload_cert_refresh and\n metadata script runner (#527)\n- Version 20250327.00:\n * Update guest-logging-go dependency (#526)\n * Add \u0027created-by\u0027 metadata, and pass it as option to logging library (#508)\n * Revert \"oslogin: Correctly handle newlines at the end of\n modified files (#520)\" (#523)\n * Re-enable disabled services if the core plugin was enabled (#522)\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n- Version 20250326.00:\n * Re-enable disabled services if the core plugin was enabled (#521)\n- Version 20250324.00:\n * Enable guest services on package upgrade (#519)\n * oslogin: Correctly handle newlines at the end of modified files (#520)\n * Fix core plugin path (#518)\n * Fix package build issues (#517)\n * Fix dependencies ran go mod tidy -v (#515)\n * Fix debian build path (#514)\n * Bundle compat metadata script runner binary in package (#513)\n * Bump golang.org/x/net from 0.27.0 to 0.36.0 (#512)\n * Update startup/shutdown services to launch compat manager (#503)\n * Bundle new gce metadata script runner binary in agent package (#502)\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n * Revert bundling new binaries in the package (#509)\n * Fix typo in windows build script (#501)\n * Include core plugin binary for all packages (#500)\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250317.00:\n * Revert \"Revert bundling new binaries in the package (#509)\" (#511)\n * Revert bundling new binaries in the package (#509)\n * Fix typo in windows build script (#501)\n * Include core plugin binary for all packages (#500)\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250312.00:\n * Revert bundling new binaries in the package (#509)\n * Fix typo in windows build script (#501)\n * Include core plugin binary for all packages (#500)\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250305.00:\n * Revert bundling new binaries in the package (#509)\n * Fix typo in windows build script (#501)\n * Include core plugin binary for all packages (#500)\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250304.01:\n * Fix typo in windows build script (#501)\n- Version 20250214.01:\n * Include core plugin binary for all packages (#500)\n- Version 20250212.00:\n * Start packaging compat manager (#498)\n * Start bundling ggactl_plugin_cleanup binary in all agent packages (#492)\n- Version 20250211.00:\n * scripts: introduce a wrapper to locally build deb package (#490)\n * Introduce compat-manager systemd unit (#497)\n- Version 20250207.00:\n * vlan: toggle vlan configuration in debian packaging (#495)\n * vlan: move config out of unstable section (#494)\n * Add clarification to comments regarding invalid NICs and the\n `invalid` tag. (#493)\n * Include interfaces in lists even if it has an invalid MAC. (#489)\n * Fix windows package build failures (#491)\n * vlan: don\u0027t index based on the vlan ID (#486)\n * Revert PR #482 (#488)\n * Remove Amy and Zach from OWNERS (#487)\n * Skip interfaces in interfaceNames() instead of erroring if there is an (#482)\n * Fix Debian packaging if guest agent manager is not checked out (#485)\n- Version 20250204.02:\n * force concourse to move version forward.\n- Version 20250204.01:\n * vlan: toggle vlan configuration in debian packaging (#495)\n- Version 20250204.00:\n * vlan: move config out of unstable section (#494)\n * Add clarification to comments regarding invalid NICs and the\n `invalid` tag. (#493)\n- Version 20250203.01:\n * Include interfaces in lists even if it has an invalid MAC. (#489)\n- Version 20250203.00:\n * Fix windows package build failures (#491)\n * vlan: don\u0027t index based on the vlan ID (#486)\n * Revert PR #482 (#488)\n * Remove Amy and Zach from OWNERS (#487)\n * Skip interfaces in interfaceNames() instead of erroring if there is an (#482)\n * Fix Debian packaging if guest agent manager is not checked out (#485)\n- Version 20250122.00:\n * networkd(vlan): remove the interface in addition to config (#468)\n * Implement support for vlan dynamic removal, update dhclient to\n remove only if configured (#465)\n * Update logging library (#479)\n * Remove Pat from owners file. (#478)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-621",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_21376-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:21376-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621376-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:21376-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-April/046065.html"
},
{
"category": "self",
"summary": "SUSE Bug 1234563",
"url": "https://bugzilla.suse.com/1234563"
},
{
"category": "self",
"summary": "SUSE Bug 1236533",
"url": "https://bugzilla.suse.com/1236533"
},
{
"category": "self",
"summary": "SUSE Bug 1239763",
"url": "https://bugzilla.suse.com/1239763"
},
{
"category": "self",
"summary": "SUSE Bug 1239866",
"url": "https://bugzilla.suse.com/1239866"
},
{
"category": "self",
"summary": "SUSE Bug 1243254",
"url": "https://bugzilla.suse.com/1243254"
},
{
"category": "self",
"summary": "SUSE Bug 1243505",
"url": "https://bugzilla.suse.com/1243505"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45337 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45337/"
}
],
"title": "Security update for google-guest-agent",
"tracking": {
"current_release_date": "2026-04-22T10:23:05Z",
"generator": {
"date": "2026-04-22T10:23:05Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:21376-1",
"initial_release_date": "2026-04-22T10:23:05Z",
"revision_history": [
{
"date": "2026-04-22T10:23:05Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20250506.01-160000.1.1.aarch64",
"product": {
"name": "google-guest-agent-20250506.01-160000.1.1.aarch64",
"product_id": "google-guest-agent-20250506.01-160000.1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20250506.01-160000.1.1.x86_64",
"product": {
"name": "google-guest-agent-20250506.01-160000.1.1.x86_64",
"product_id": "google-guest-agent-20250506.01-160000.1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250506.01-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64"
},
"product_reference": "google-guest-agent-20250506.01-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250506.01-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64"
},
"product_reference": "google-guest-agent-20250506.01-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250506.01-160000.1.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64"
},
"product_reference": "google-guest-agent-20250506.01-160000.1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20250506.01-160000.1.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64"
},
"product_reference": "google-guest-agent-20250506.01-160000.1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-22T10:23:05Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-45337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45337"
}
],
"notes": [
{
"category": "general",
"text": "Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that \"A call to this function does not guarantee that the key offered is in fact used to authenticate.\" Specifically, the SSH protocol allows clients to inquire about whether a public key is acceptable before proving control of the corresponding private key. PublicKeyCallback may be called with multiple keys, and the order in which the keys were provided cannot be used to infer which key the client successfully authenticated with, if any. Some applications, which store the key(s) passed to PublicKeyCallback (or derived information) and make security relevant determinations based on it once the connection is established, may make incorrect assumptions. For example, an attacker may send public keys A and B, and then authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B for which the attacker does not actually control the private key. Since this API is widely misused, as a partial mitigation golang.org/x/cry...@v0.31.0 enforces the property that, when successfully authenticating via public key, the last key passed to ServerConfig.PublicKeyCallback will be the key used to authenticate the connection. PublicKeyCallback will now be called multiple times with the same key, if necessary. Note that the client may still not control the last key passed to PublicKeyCallback if the connection is then authenticated with a different method, such as PasswordCallback, KeyboardInteractiveCallback, or NoClientAuth. Users should be using the Extensions field of the Permissions return value from the various authentication callbacks to record data associated with the authentication attempt instead of referencing external state. Once the connection is established the state corresponding to the successful authentication attempt can be retrieved via the ServerConn.Permissions field. Note that some third-party libraries misuse the Permissions type by sharing it across authentication attempts; users of third-party libraries should refer to the relevant projects for guidance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45337",
"url": "https://www.suse.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "SUSE Bug 1234482 for CVE-2024-45337",
"url": "https://bugzilla.suse.com/1234482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-guest-agent-20250506.01-160000.1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-04-22T10:23:05Z",
"details": "important"
}
],
"title": "CVE-2024-45337"
}
]
}
SUSE-SU-2026:21849-1
Vulnerability from csaf_suse - Published: 2026-05-26 12:20 - Updated: 2026-05-26 12:20Summary
Security update for google-osconfig-agent
Severity
Important
Notes
Title of the patch: Security update for google-osconfig-agent
Description of the patch: This update for google-osconfig-agent fixes the following issues
- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo-
header (bsc#1260264).
Patchnames: SUSE-SLES-16.0-805
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
12 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-osconfig-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-osconfig-agent fixes the following issues\n\n- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2: path pseudo-\n header (bsc#1260264).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLES-16.0-805",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_21849-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:21849-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202621849-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:21849-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/046925.html"
},
{
"category": "self",
"summary": "SUSE Bug 1236533",
"url": "https://bugzilla.suse.com/1236533"
},
{
"category": "self",
"summary": "SUSE Bug 1260264",
"url": "https://bugzilla.suse.com/1260264"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
}
],
"title": "Security update for google-osconfig-agent",
"tracking": {
"current_release_date": "2026-05-26T12:20:11Z",
"generator": {
"date": "2026-05-26T12:20:11Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:21849-1",
"initial_release_date": "2026-05-26T12:20:11Z",
"revision_history": [
{
"date": "2026-05-26T12:20:11Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"product": {
"name": "google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"product_id": "google-osconfig-agent-20250416.02-160000.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"product": {
"name": "google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"product_id": "google-osconfig-agent-20250416.02-160000.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 16.0",
"product": {
"name": "SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16.0"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product": {
"name": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:16:16.0:server-sap"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-160000.3.1.aarch64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64"
},
"product_reference": "google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-160000.3.1.x86_64 as component of SUSE Linux Enterprise Server 16.0",
"product_id": "SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64"
},
"product_reference": "google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-160000.3.1.aarch64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64"
},
"product_reference": "google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20250416.02-160000.3.1.x86_64 as component of SUSE Linux Enterprise Server for SAP applications 16.0",
"product_id": "SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64"
},
"product_reference": "google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP applications 16.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T12:20:11Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.aarch64",
"SUSE Linux Enterprise Server for SAP applications 16.0:google-osconfig-agent-20250416.02-160000.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-05-26T12:20:11Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
}
]
}
SUSE-SU-2026:22242-1
Vulnerability from csaf_suse - Published: 2026-06-22 09:09 - Updated: 2026-06-22 09:09Summary
Security update for google-osconfig-agent
Severity
Important
Notes
Title of the patch: Security update for google-osconfig-agent
Description of the patch: This update for google-osconfig-agent fixes the following issues
- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).
- CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents
(bsc#1251453).
- CVE-2025-58190: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially
crafted input (bsc#1251704).
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-
header (bsc#1260264).
- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE
(bsc#1265762).
- CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of
service (bsc#1262926).
- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation
bypass and privilege escalation (bsc#1266603).
- CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent
(bsc#1266171).
- CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266171).
- CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts
(bsc#1266171).
- CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266171).
- CVE-2026-41506: github.com/go-git/go-git/v5: HTTP authentication credential leak when following redirects during
smart-HTTP clone and fetch operations (bsc#1264923).
Changes for google-osconfig-agent:
- Update to version 20260615.01
* Upgrade golang.org/x/crypto & golang.org/x/net (#1006)
- from version 20260615.00
* Add unit tests for ospatch_apt_upgrade.go (#938)
- Update to version 20260611.00
* Add unit tests for policies/policies.go PART 5 (#998)
- from version 20260610.00
* Add unit tests for policies/policies.go PART 4 (#997)
- from version 20260609.02
* squash commits (#936)
- from version 20260609.01
* Add unit tests for policies/policies.go PART 3 (#996)
- from version 20260609.00
* Add unit tests for policies/policies.go PART 2 (#991)
- from version 20260602.01
* Align format of dates and timestamp collected across Windows packages (#973)
- from version 20260602.00
* Add unit tests for config/config,go (#979)
- from version 20260528.00
* Bump github.com/containerd/containerd (#990)
- from version 20260521.00
* Cover agentconfig functionality by unit tests (#925)
- from version 20260520.04
* Add unit tests for policies/googet.go (#961)
* Bump github.com/go-git/go-git/v5 (#987)
- from version 20260520.02
* Add unit tests for policies/yum.go (#952)
* Add unit tests for policies/apt.go PART 3 (#951)
- from version 20260520.00
* Add unit tests for policies/zypper.go (#953)
- from version 20260519.00
* Add unit tests for policies/policies.go PART 1 (#949)
- from version 20260513.01
* Bump github.com/go-git/go-git/v5 (#981), this also updates
golang.org/x/net to v0.53.0 (bsc#1265762, CVE-2026-33814)
- from version 20260513.00
* upgrade a few packages (#980)
- from version 20260512.02
* Add/improve unit tests for agentendpoint/exec_task.go (#933)
- from version 20260512.01
* Cover google_update.go by unit tests (#941)
- from version 20260512.00
* Change zone for arm64 builds because of stockout (#978)
- Update to version 20260511.00
* switch to t2a-standard-2 on ARM package build (#977)
- from version 20260505.03
* Cover zypper_patch by unit tests (#958)
- from version 20260505.02
* Remove unused functions DisableAutoUpdates (#970)
- from version 20260505.01
* Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#966)
- from version 20260505.00
* Upgrade a few dependencies across the repo (#968)
+ github.com/go-git/go-git/v5 5.16.2->5.18.0 (bsc#1264923, CVE-2026-41506)
+ github.com/go-jose/go-jose/v4 4.1.3->4.1.4 (bsc#1262926, CVE-2026-34986)
+ github.com/go-viper/mapstructure/v2 2.3.0->2.4.0
+ go.opentelemetry.io/otel 1.40.0->1.41.0
+ go.opentelemetry.io/otel/sdk 1.39.0->1.43.0
- from version 20260504.01
* bump github.com/docker/cli to 29.2.0 (#962)
- from version 20260504.00
* Bump github.com/opencontainers/selinux (#960)
- Update to version 20260428.00
* Add/improve unit tests for agentendpoint/agentendpoint.go (#930)
- from version 20260427.03
* Cover config/file.go by unit tests (#935)
- from version 20260422.01
* Cover patch_linux.go by unit tests (#932)
- from version 20260422.00
* upgrade grpc package in main package and e2e tests (#959)
(bsc#1260264, CVE-2026-33186)
- from version 20260417.04
* Bump OSV-Scalibr version to v0.4.3 (#956)
- from version 20260417.03
* Add unit tests for updates_linux.go (#937)
- from version 20260417.02
* Add zone to CreateDisk step (#955)
- from version 20260417.01
* Change disk type for deb11 (#954)
- from version 20260417.00
* Add unit tests for policies/apt.go PART 1 (#950)
- from version 20260410.02
* Add unit tests for packages/pty_linux.go (#943)
- from version 20260410.01
* fix disk type for arm workflows (#948)
- from version 20260410.00
* Change machine type for arm based workflows (#946)
- Update to version 20260330.00
* bump timeouts for all workflows (#940)
- from version 20260326.00
* Cover exec_resource.go by unit tests (#934)
- from version 20260318.00
* Integrate OSConfig agent with ReportVmInventory (#923)
- from version 20260313.02
* remove cacheonly flag from yum upgrade (#924)
- from version 20260313.01
* conditions python version override (#927)
- from version 20260313.00
* Fix presubmits by explicitly set python version for rpm based systems (#926)
- from version 20260311.00
* Bump osconfig version (#922)
- from version 20260309.02
* Extend OSV scalibr extractor (#921)
- from version 20260309.01
* upgrade golang.org/x/crypto and it's transitive deps (#918)
- from version 20260309.00
* Add purl to pkg info (#920)
- from version 20260306.00
* Add 'Type' field to PkgInfo (#919)
- from version 20260303.01
* Upgrade go.opentelemetry.io/otel/sdk (#913)
- from version 20260303.00
* Bump github.com/vbatts/tar-split from 0.11.5 to 0.12.2 (#908)
- from version 20260302.00
* Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.7 (#906)
- from version 20260126.00
* Bump go.opentelemetry.io/otel/sdk from 1.38.0 to 1.39.0 (#905)
* Bump github.com/sirupsen/logrus (#894)
- Update to version 20260119.00
* Bump cloud.google.com/go/storage from 1.56.0 to 1.58.0 (#899)
- Update to version 20251230.00
* chore: Migrate gsutil usage to gcloud storage (#904)
- from version 20251223.00
* fix e2e tests for report inventory (#903)
- from version 20251222.01
* Revert "Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)" (#902)
- from version 20251222.00
* Bump golang to the new version (#900)
- from version 20251218.00
* add new CODEOWNERS (#901)
- from version 20251217.00
* Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)
- Bump the golang compiler version to 1.24.5
- Update to version 20251202.00
* Revert "Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)" (#893)
- Update to version 20251201.00
* Revert "Bump github.com/containerd/containerd (#890)" (#892)
- Update to version 20251126.00
* Bump github.com/containerd/containerd (#890)
* Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)
- Update to version 20251028.00
* Bump go.opentelemetry.io/otel/sdk/metric from 1.35.0 to 1.38.0 (#886)
* Bump github.com/tidwall/pretty from 1.2.0 to 1.2.1 (#880)
- from version 20251023.02
* Create multiple_os.yaml (#883)
- from version 20251023.00
* Bump github.com/docker/go-connections from 0.4.0 to 0.6.0 (#877)
* Add test runner for e2e tests (#876)
- Update to version 20250925.00
* Bump cloud.google.com/go/auth/oauth2adapt from 0.2.7 to 0.2.8 (#870)
* Bump google.golang.org/protobuf from 1.36.6 to 1.36.9 (#874)
* Bump go.opentelemetry.io/otel from 1.35.0 to 1.38.0 (#872)
* Bump github.com/golang/glog from 1.2.4 to 1.2.5 (#830)
- Update to version 20250902.01
* Bump github.com/googleapis/enterprise-certificate-proxy (#829)
- from version 20250902.00
* update github.com/go-jose/go-jose/v4 (#869)
* Upgrade scalibr and other deps (#866)
- from version 20250901.00
* Fix possibility of path traversal for zip and tar archival (#868)
- from version 20250825.00
* set CODEOWNERS file as required by org (#863)
- from version 20250819.00
* Fix/rhel10 build centos image (#860)
- from version 20250814.00
* Fix/rhel10 build image (#859)
- from version 20250813.00
* Fix: Add RHEL 10 support to RPM startup script (#858)
- from version 20250811.00
* Remove old/sles-15-sp4-sap as image is deprecated (#857)
- Update to version 20250806.00
* Fixed JSON identifier for the universe domain (#855)
- from version 20250729.00
* Bump github.com/google/s2a-go from 0.1.8 to 0.1.9 (#828)
- from version 20250725.02
* Update utils.go (#854)
* Upgrade golang.org/x/oauth2 package to the latest. (#853)
* Bump golang.org/x/time from 0.9.0 to 0.12.0 (#839)
- from version 20250725.01
* Bump golang.org/x/oauth2 (#848)
* Port fix for debian 11 to goo package manager. (#852)
- from version 20250725.00
* Update Golang version in common.sh and skip backports
repo for debian 11 (#850)
- from version 20250723.01
* Add workflows to build package for el10 (#849)
- from version 20250721.00
* Make OS Config agent TPC aware (#846)
- from version 20250718.00
* Create workflows for new Debian 13. (#847)
- Update to version 20250703.00
* Fix sles images (#844)
- from version 20250702.00
* Remove rhel-sap 8-4 add rhel-sap 8-10 (#843)
- from version 20250701.00
* Bump the go_modules group across 1 directory with 2 updates (#840)
- Update to version 20250606.00
* Change base docker images Google's official base images. (#838)
- Update to version 20250523.01
* Add a simple no-op OS policy for user testing (#837)
- from version 20250523.00
* Introduce scalibr inventory extractor for dpkg/rpm/cos
os/filesystem extractors (linux) (#834)
* Trace GetInstalledPackages memory levels (#835)
- from version 20250520.00
- Update to version 20250513.00
* Fix rpm extractor, handle (none) value correctly. (#833)
- from version 20250512.01
* Bump github.com/envoyproxy/go-control-plane from 0.13.1 to 0.13.4 (#816)
- from version 20250512.00
* Bump golang.org/x/net from 0.39.0 to 0.40.0 (#819)
- from version 20250508.01
* cosmetic refactoring to osinfo package (#826)
- from version 20250508.00
* Refactor /inventory with dependency injection (#825)
* Add debian, ubuntu (InstalledDebPackages) snapshots (#821)
* cover packages_linux.go file with tests (#824)
* Add debian (10,11,12) GetPackageUpdates output snapshots (#822)
- from version 20250507.00
* Add InstalledRPMPackages snapshot tests (#823)
- from version 20250506.02
* Yum tests: simplify initialization of exit errors (#820)
- from version 20250506.01
* Improve test coverage for gem package manager (#818)
- from version 20250506.00
* after go/x/crypto update 0.32.0 -> 0.37.0 (#817)
- from version 20250505.01
* Improve packages package coverage (#814)
* Bump golang.org/x/net from 0.34.0 to 0.39.0 (#807)
- from version 20250505.00
* Bump golang.org/x/crypto from 0.32.0 to 0.37.0 (#806)
- from version 20250430.00
* Snapshot YumUpdates (GetPackageUpdates) output (#813)
- from version 20250428.00
* Snapshot ZypperPatches, ZypperUpdates (GetPackageUpdates) output
for sles 12, 15 testdata (#812)
- from version 20250423.00
* Introduce MatchSnapshot large test results matcher function, snapshot
apt-deb GetPackageUpdates (#811)
- from version 20250416.02
* defaultSleeper: tolerate 10% difference to reduce test flakiness (#810)
* Add output of some packagemanagers to the testdata (#808)
- from version 20250416.01
* Refactor OS Info package (#809)
- from version 20250416.00
* Report RPM inventory as YUM instead of empty SoftwarePackage
when neither Zypper nor YUM are installed. (#805)
- from version 20250414.00
* Update hash computation algorithm (#799)
- Update to version 20250320.00
* Bump github.com/envoyproxy/protoc-gen-validate from 1.1.0 to 1.2.1 (#797)
- from version 20250318.00
* Bump go.opentelemetry.io/otel/sdk/metric from 1.32.0 to 1.35.0 (#793)
- from version 20250317.02
* Bump cel.dev/expr from 0.18.0 to 0.22.0 (#792)
* Bump github.com/golang/glog from 1.2.3 to 1.2.4 in the go_modules group (#785)
- from version 20250317.01
* Bump cloud.google.com/go/logging from 1.12.0 to 1.13.0 (#774)
- from version 20250317.00
* Add tests for retryutil package. (#795)
- from version 20250306.00
* Update OWNERS (#794)
- from version 20250206.01
* Use separate counters for pre- and post-patch reboots. (#788)
- from version 20250206.00
* Update owners (#789)
- from version 20250203.00
* Fix the vet errors for contants in logging (#786)
- from version 20250122.00
* change available package check (#783)
- from version 20250121.00
* Fix Inventory reporting e2e tests. (#782)
- from version 20250120.00
* fix e2e tests (#781)
- Add -buildmode=pie to go build command line (bsc#1239948)
- from version 20240501.00 (bsc#1236533, CVE-2023-45288)
Patchnames: SUSE-SLE-Micro-6.0-764
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.4 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.7 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
89 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-osconfig-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-osconfig-agent fixes the following issues\n\n- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers (bsc#1236533).\n- CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents\n (bsc#1251453).\n- CVE-2025-58190: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially\n crafted input (bsc#1251704).\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-\n header (bsc#1260264).\n- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE\n (bsc#1265762).\n- CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of\n service (bsc#1262926).\n- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation\n bypass and privilege escalation (bsc#1266603).\n- CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent \n (bsc#1266171).\n- CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266171).\n- CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts\n (bsc#1266171).\n- CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266171).\n- CVE-2026-41506: github.com/go-git/go-git/v5: HTTP authentication credential leak when following redirects during\n smart-HTTP clone and fetch operations (bsc#1264923).\n\nChanges for google-osconfig-agent:\n\n- Update to version 20260615.01\n * Upgrade golang.org/x/crypto \u0026 golang.org/x/net (#1006)\n- from version 20260615.00\n * Add unit tests for ospatch_apt_upgrade.go (#938)\n- Update to version 20260611.00\n * Add unit tests for policies/policies.go PART 5 (#998)\n- from version 20260610.00\n * Add unit tests for policies/policies.go PART 4 (#997)\n- from version 20260609.02\n * squash commits (#936)\n- from version 20260609.01\n * Add unit tests for policies/policies.go PART 3 (#996)\n- from version 20260609.00\n * Add unit tests for policies/policies.go PART 2 (#991)\n- from version 20260602.01\n * Align format of dates and timestamp collected across Windows packages (#973)\n- from version 20260602.00\n * Add unit tests for config/config,go (#979)\n- from version 20260528.00\n * Bump github.com/containerd/containerd (#990)\n- from version 20260521.00\n * Cover agentconfig functionality by unit tests (#925)\n- from version 20260520.04\n * Add unit tests for policies/googet.go (#961)\n * Bump github.com/go-git/go-git/v5 (#987)\n- from version 20260520.02\n * Add unit tests for policies/yum.go (#952)\n * Add unit tests for policies/apt.go PART 3 (#951)\n- from version 20260520.00\n * Add unit tests for policies/zypper.go (#953)\n- from version 20260519.00\n * Add unit tests for policies/policies.go PART 1 (#949)\n- from version 20260513.01\n * Bump github.com/go-git/go-git/v5 (#981), this also updates\n golang.org/x/net to v0.53.0 (bsc#1265762, CVE-2026-33814)\n- from version 20260513.00\n * upgrade a few packages (#980)\n- from version 20260512.02\n * Add/improve unit tests for agentendpoint/exec_task.go (#933)\n- from version 20260512.01\n * Cover google_update.go by unit tests (#941)\n- from version 20260512.00\n * Change zone for arm64 builds because of stockout (#978)\n- Update to version 20260511.00\n * switch to t2a-standard-2 on ARM package build (#977)\n- from version 20260505.03\n * Cover zypper_patch by unit tests (#958)\n- from version 20260505.02\n * Remove unused functions DisableAutoUpdates (#970)\n- from version 20260505.01\n * Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#966)\n- from version 20260505.00\n * Upgrade a few dependencies across the repo (#968)\n + github.com/go-git/go-git/v5 5.16.2-\u003e5.18.0 (bsc#1264923, CVE-2026-41506)\n + github.com/go-jose/go-jose/v4 4.1.3-\u003e4.1.4 (bsc#1262926, CVE-2026-34986)\n + github.com/go-viper/mapstructure/v2 2.3.0-\u003e2.4.0\n + go.opentelemetry.io/otel 1.40.0-\u003e1.41.0\n + go.opentelemetry.io/otel/sdk 1.39.0-\u003e1.43.0\n- from version 20260504.01\n * bump github.com/docker/cli to 29.2.0 (#962)\n- from version 20260504.00\n * Bump github.com/opencontainers/selinux (#960)\n- Update to version 20260428.00\n * Add/improve unit tests for agentendpoint/agentendpoint.go (#930)\n- from version 20260427.03\n * Cover config/file.go by unit tests (#935)\n- from version 20260422.01\n * Cover patch_linux.go by unit tests (#932)\n- from version 20260422.00\n * upgrade grpc package in main package and e2e tests (#959)\n (bsc#1260264, CVE-2026-33186)\n- from version 20260417.04\n * Bump OSV-Scalibr version to v0.4.3 (#956)\n- from version 20260417.03\n * Add unit tests for updates_linux.go (#937)\n- from version 20260417.02\n * Add zone to CreateDisk step (#955)\n- from version 20260417.01\n * Change disk type for deb11 (#954)\n- from version 20260417.00\n * Add unit tests for policies/apt.go PART 1 (#950)\n- from version 20260410.02\n * Add unit tests for packages/pty_linux.go (#943)\n- from version 20260410.01\n * fix disk type for arm workflows (#948)\n- from version 20260410.00\n * Change machine type for arm based workflows (#946)\n- Update to version 20260330.00\n * bump timeouts for all workflows (#940)\n- from version 20260326.00\n * Cover exec_resource.go by unit tests (#934)\n- from version 20260318.00\n * Integrate OSConfig agent with ReportVmInventory (#923)\n- from version 20260313.02\n * remove cacheonly flag from yum upgrade (#924)\n- from version 20260313.01\n * conditions python version override (#927)\n- from version 20260313.00\n * Fix presubmits by explicitly set python version for rpm based systems (#926)\n- from version 20260311.00\n * Bump osconfig version (#922)\n- from version 20260309.02\n * Extend OSV scalibr extractor (#921)\n- from version 20260309.01\n * upgrade golang.org/x/crypto and it\u0027s transitive deps (#918)\n- from version 20260309.00\n * Add purl to pkg info (#920)\n- from version 20260306.00\n * Add \u0027Type\u0027 field to PkgInfo (#919)\n- from version 20260303.01\n * Upgrade go.opentelemetry.io/otel/sdk (#913)\n- from version 20260303.00\n * Bump github.com/vbatts/tar-split from 0.11.5 to 0.12.2 (#908)\n- from version 20260302.00\n * Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.7 (#906)\n- from version 20260126.00\n * Bump go.opentelemetry.io/otel/sdk from 1.38.0 to 1.39.0 (#905)\n * Bump github.com/sirupsen/logrus (#894)\n- Update to version 20260119.00\n * Bump cloud.google.com/go/storage from 1.56.0 to 1.58.0 (#899)\n- Update to version 20251230.00\n * chore: Migrate gsutil usage to gcloud storage (#904)\n- from version 20251223.00\n * fix e2e tests for report inventory (#903)\n- from version 20251222.01\n * Revert \"Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)\" (#902)\n- from version 20251222.00\n * Bump golang to the new version (#900)\n- from version 20251218.00\n * add new CODEOWNERS (#901)\n- from version 20251217.00\n * Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)\n- Bump the golang compiler version to 1.24.5\n- Update to version 20251202.00\n * Revert \"Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)\" (#893)\n- Update to version 20251201.00\n * Revert \"Bump github.com/containerd/containerd (#890)\" (#892)\n- Update to version 20251126.00\n * Bump github.com/containerd/containerd (#890)\n * Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)\n- Update to version 20251028.00\n * Bump go.opentelemetry.io/otel/sdk/metric from 1.35.0 to 1.38.0 (#886)\n * Bump github.com/tidwall/pretty from 1.2.0 to 1.2.1 (#880)\n- from version 20251023.02\n * Create multiple_os.yaml (#883)\n- from version 20251023.00\n * Bump github.com/docker/go-connections from 0.4.0 to 0.6.0 (#877)\n * Add test runner for e2e tests (#876)\n- Update to version 20250925.00\n * Bump cloud.google.com/go/auth/oauth2adapt from 0.2.7 to 0.2.8 (#870)\n * Bump google.golang.org/protobuf from 1.36.6 to 1.36.9 (#874)\n * Bump go.opentelemetry.io/otel from 1.35.0 to 1.38.0 (#872)\n * Bump github.com/golang/glog from 1.2.4 to 1.2.5 (#830)\n- Update to version 20250902.01\n * Bump github.com/googleapis/enterprise-certificate-proxy (#829)\n- from version 20250902.00\n * update github.com/go-jose/go-jose/v4 (#869)\n * Upgrade scalibr and other deps (#866)\n- from version 20250901.00\n * Fix possibility of path traversal for zip and tar archival (#868)\n- from version 20250825.00\n * set CODEOWNERS file as required by org (#863)\n- from version 20250819.00\n * Fix/rhel10 build centos image (#860)\n- from version 20250814.00\n * Fix/rhel10 build image (#859)\n- from version 20250813.00\n * Fix: Add RHEL 10 support to RPM startup script (#858)\n- from version 20250811.00\n * Remove old/sles-15-sp4-sap as image is deprecated (#857)\n- Update to version 20250806.00\n * Fixed JSON identifier for the universe domain (#855)\n- from version 20250729.00\n * Bump github.com/google/s2a-go from 0.1.8 to 0.1.9 (#828)\n- from version 20250725.02\n * Update utils.go (#854)\n * Upgrade golang.org/x/oauth2 package to the latest. (#853)\n * Bump golang.org/x/time from 0.9.0 to 0.12.0 (#839)\n- from version 20250725.01\n * Bump golang.org/x/oauth2 (#848)\n * Port fix for debian 11 to goo package manager. (#852)\n- from version 20250725.00\n * Update Golang version in common.sh and skip backports\n repo for debian 11 (#850)\n- from version 20250723.01\n * Add workflows to build package for el10 (#849)\n- from version 20250721.00\n * Make OS Config agent TPC aware (#846)\n- from version 20250718.00\n * Create workflows for new Debian 13. (#847)\n- Update to version 20250703.00\n * Fix sles images (#844)\n- from version 20250702.00\n * Remove rhel-sap 8-4 add rhel-sap 8-10 (#843)\n- from version 20250701.00\n * Bump the go_modules group across 1 directory with 2 updates (#840)\n- Update to version 20250606.00\n * Change base docker images Google\u0027s official base images. (#838)\n- Update to version 20250523.01\n * Add a simple no-op OS policy for user testing (#837)\n- from version 20250523.00\n * Introduce scalibr inventory extractor for dpkg/rpm/cos\n os/filesystem extractors (linux) (#834)\n * Trace GetInstalledPackages memory levels (#835)\n- from version 20250520.00\n- Update to version 20250513.00\n * Fix rpm extractor, handle (none) value correctly. (#833)\n- from version 20250512.01\n * Bump github.com/envoyproxy/go-control-plane from 0.13.1 to 0.13.4 (#816)\n- from version 20250512.00\n * Bump golang.org/x/net from 0.39.0 to 0.40.0 (#819)\n- from version 20250508.01\n * cosmetic refactoring to osinfo package (#826)\n- from version 20250508.00\n * Refactor /inventory with dependency injection (#825)\n * Add debian, ubuntu (InstalledDebPackages) snapshots (#821)\n * cover packages_linux.go file with tests (#824)\n * Add debian (10,11,12) GetPackageUpdates output snapshots (#822)\n- from version 20250507.00\n * Add InstalledRPMPackages snapshot tests (#823)\n- from version 20250506.02\n * Yum tests: simplify initialization of exit errors (#820)\n- from version 20250506.01\n * Improve test coverage for gem package manager (#818)\n- from version 20250506.00\n * after go/x/crypto update 0.32.0 -\u003e 0.37.0 (#817)\n- from version 20250505.01\n * Improve packages package coverage (#814)\n * Bump golang.org/x/net from 0.34.0 to 0.39.0 (#807)\n- from version 20250505.00\n * Bump golang.org/x/crypto from 0.32.0 to 0.37.0 (#806)\n- from version 20250430.00\n * Snapshot YumUpdates (GetPackageUpdates) output (#813)\n- from version 20250428.00\n * Snapshot ZypperPatches, ZypperUpdates (GetPackageUpdates) output\n for sles 12, 15 testdata (#812)\n- from version 20250423.00\n * Introduce MatchSnapshot large test results matcher function, snapshot\n apt-deb GetPackageUpdates (#811)\n- from version 20250416.02\n * defaultSleeper: tolerate 10% difference to reduce test flakiness (#810)\n * Add output of some packagemanagers to the testdata (#808)\n- from version 20250416.01\n * Refactor OS Info package (#809)\n- from version 20250416.00\n * Report RPM inventory as YUM instead of empty SoftwarePackage\n when neither Zypper nor YUM are installed. (#805)\n- from version 20250414.00\n * Update hash computation algorithm (#799)\n- Update to version 20250320.00\n * Bump github.com/envoyproxy/protoc-gen-validate from 1.1.0 to 1.2.1 (#797)\n- from version 20250318.00\n * Bump go.opentelemetry.io/otel/sdk/metric from 1.32.0 to 1.35.0 (#793)\n- from version 20250317.02\n * Bump cel.dev/expr from 0.18.0 to 0.22.0 (#792)\n * Bump github.com/golang/glog from 1.2.3 to 1.2.4 in the go_modules group (#785)\n- from version 20250317.01\n * Bump cloud.google.com/go/logging from 1.12.0 to 1.13.0 (#774)\n- from version 20250317.00\n * Add tests for retryutil package. (#795)\n- from version 20250306.00\n * Update OWNERS (#794)\n- from version 20250206.01\n * Use separate counters for pre- and post-patch reboots. (#788)\n- from version 20250206.00\n * Update owners (#789)\n- from version 20250203.00\n * Fix the vet errors for contants in logging (#786)\n- from version 20250122.00\n * change available package check (#783)\n- from version 20250121.00\n * Fix Inventory reporting e2e tests. (#782)\n- from version 20250120.00\n * fix e2e tests (#781)\n- Add -buildmode=pie to go build command line (bsc#1239948)\n- from version 20240501.00 (bsc#1236533, CVE-2023-45288)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-764",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_22242-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:22242-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622242-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:22242-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047622.html"
},
{
"category": "self",
"summary": "SUSE Bug 1210938",
"url": "https://bugzilla.suse.com/1210938"
},
{
"category": "self",
"summary": "SUSE Bug 1236533",
"url": "https://bugzilla.suse.com/1236533"
},
{
"category": "self",
"summary": "SUSE Bug 1239948",
"url": "https://bugzilla.suse.com/1239948"
},
{
"category": "self",
"summary": "SUSE Bug 1244304",
"url": "https://bugzilla.suse.com/1244304"
},
{
"category": "self",
"summary": "SUSE Bug 1244503",
"url": "https://bugzilla.suse.com/1244503"
},
{
"category": "self",
"summary": "SUSE Bug 1251453",
"url": "https://bugzilla.suse.com/1251453"
},
{
"category": "self",
"summary": "SUSE Bug 1251704",
"url": "https://bugzilla.suse.com/1251704"
},
{
"category": "self",
"summary": "SUSE Bug 1260264",
"url": "https://bugzilla.suse.com/1260264"
},
{
"category": "self",
"summary": "SUSE Bug 1262926",
"url": "https://bugzilla.suse.com/1262926"
},
{
"category": "self",
"summary": "SUSE Bug 1264923",
"url": "https://bugzilla.suse.com/1264923"
},
{
"category": "self",
"summary": "SUSE Bug 1265762",
"url": "https://bugzilla.suse.com/1265762"
},
{
"category": "self",
"summary": "SUSE Bug 1266171",
"url": "https://bugzilla.suse.com/1266171"
},
{
"category": "self",
"summary": "SUSE Bug 1266603",
"url": "https://bugzilla.suse.com/1266603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45339 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45339/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47911 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39821 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39827 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39828 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39830 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39831 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39832 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39833 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39834 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39835 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41506 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42508 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46595 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46597 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46598 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46598/"
}
],
"title": "Security update for google-osconfig-agent",
"tracking": {
"current_release_date": "2026-06-22T09:09:04Z",
"generator": {
"date": "2026-06-22T09:09:04Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:22242-1",
"initial_release_date": "2026-06-22T09:09:04Z",
"revision_history": [
{
"date": "2026-06-22T09:09:04Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-1.1.aarch64",
"product": {
"name": "google-osconfig-agent-20260615.01-1.1.aarch64",
"product_id": "google-osconfig-agent-20260615.01-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-1.1.s390x",
"product": {
"name": "google-osconfig-agent-20260615.01-1.1.s390x",
"product_id": "google-osconfig-agent-20260615.01-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-1.1.x86_64",
"product": {
"name": "google-osconfig-agent-20260615.01-1.1.x86_64",
"product_id": "google-osconfig-agent-20260615.01-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-1.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64"
},
"product_reference": "google-osconfig-agent-20260615.01-1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-1.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x"
},
"product_reference": "google-osconfig-agent-20260615.01-1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-1.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
},
"product_reference": "google-osconfig-agent-20260615.01-1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-45339",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45339"
}
],
"notes": [
{
"category": "general",
"text": "When logs are written to a widely-writable directory (the default), an unprivileged attacker may predict a privileged process\u0027s log file path and pre-create a symbolic link to a sensitive file in its place. When that privileged process runs, it will follow the planted symlink and overwrite that sensitive file. To fix that, glog now causes the program to exit (with status code 2) when it finds that the configured log file already exists.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45339",
"url": "https://www.suse.com/security/cve/CVE-2024-45339"
},
{
"category": "external",
"summary": "SUSE Bug 1236541 for CVE-2024-45339",
"url": "https://bugzilla.suse.com/1236541"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2024-45339"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-47911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47911"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47911",
"url": "https://www.suse.com/security/cve/CVE-2025-47911"
},
{
"category": "external",
"summary": "SUSE Bug 1251308 for CVE-2025-47911",
"url": "https://bugzilla.suse.com/1251308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "moderate"
}
],
"title": "CVE-2025-47911"
},
{
"cve": "CVE-2025-58190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58190"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58190",
"url": "https://www.suse.com/security/cve/CVE-2025-58190"
},
{
"category": "external",
"summary": "SUSE Bug 1251309 for CVE-2025-58190",
"url": "https://bugzilla.suse.com/1251309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "moderate"
}
],
"title": "CVE-2025-58190"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "external",
"summary": "SUSE Bug 1268758 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1268758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-39821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39821"
}
],
"notes": [
{
"category": "general",
"text": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39821",
"url": "https://www.suse.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "SUSE Bug 1266474 for CVE-2026-39821",
"url": "https://bugzilla.suse.com/1266474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39821"
},
{
"cve": "CVE-2026-39827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39827"
}
],
"notes": [
{
"category": "general",
"text": "An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection\u0027s internal state and released for garbage collection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39827",
"url": "https://www.suse.com/security/cve/CVE-2026-39827"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39827",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39827"
},
{
"cve": "CVE-2026-39828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39828"
}
],
"notes": [
{
"category": "general",
"text": "When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39828",
"url": "https://www.suse.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39828",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39828"
},
{
"cve": "CVE-2026-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39829"
}
],
"notes": [
{
"category": "general",
"text": "The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39829",
"url": "https://www.suse.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39829",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39829"
},
{
"cve": "CVE-2026-39830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39830"
}
],
"notes": [
{
"category": "general",
"text": "A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection\u0027s read loop. The blocked goroutine could not be released by calling Close(), resulting in a resource leak per connection. Unsolicited global responses are now discarded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39830",
"url": "https://www.suse.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39830",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39830"
},
{
"cve": "CVE-2026-39831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39831"
}
],
"notes": [
{
"category": "general",
"text": "The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nistp256@openssh.com, sk-ssh-ed25519@openssh.com) did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior, return a \"no-touch-required\" extension in Permissions.Extensions from PublicKeyCallback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39831",
"url": "https://www.suse.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39831",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39831"
},
{
"cve": "CVE-2026-39832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39832"
}
],
"notes": [
{
"category": "general",
"text": "When adding a key to a remote agent constraint extensions such as restrict-destination-v00@openssh.com were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all constraint extensions. Additionally, the in-memory keyring returned by NewKeyring() now rejects keys with unsupported constraint extensions instead of silently ignoring them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39832",
"url": "https://www.suse.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39832",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39832"
},
{
"cve": "CVE-2026-39833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39833"
}
],
"notes": [
{
"category": "general",
"text": "The in-memory keyring returned by NewKeyring() silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring() now returns an error when unsupported constraints are requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39833",
"url": "https://www.suse.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39833",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39833"
},
{
"cve": "CVE-2026-39834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39834"
}
],
"notes": [
{
"category": "general",
"text": "When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39834",
"url": "https://www.suse.com/security/cve/CVE-2026-39834"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39834",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39834"
},
{
"cve": "CVE-2026-39835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39835"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39835",
"url": "https://www.suse.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39835",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-39835"
},
{
"cve": "CVE-2026-41506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41506"
}
],
"notes": [
{
"category": "general",
"text": "go-git is an extensible git implementation library written in pure Go. Prior to versions 5.18.0 and 6.0.0-alpha.2, go-git may leak HTTP authentication credentials when following redirects during smart-HTTP clone and fetch operations. This issue has been patched in versions 5.18.0 and 6.0.0-alpha.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41506",
"url": "https://www.suse.com/security/cve/CVE-2026-41506"
},
{
"category": "external",
"summary": "SUSE Bug 1264854 for CVE-2026-41506",
"url": "https://bugzilla.suse.com/1264854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "moderate"
}
],
"title": "CVE-2026-41506"
},
{
"cve": "CVE-2026-42508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42508"
}
],
"notes": [
{
"category": "general",
"text": "Previously, a revoked \u0027SignatureKey\u0027 belonging to a CA was not correctly checked for revocation. Now, both the \u0027key\u0027 and \u0027key.SignatureKey\u0027 are checked for @revoked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42508",
"url": "https://www.suse.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-42508",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-42508"
},
{
"cve": "CVE-2026-46595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46595"
}
],
"notes": [
{
"category": "general",
"text": "Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46595",
"url": "https://www.suse.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46595",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-46595"
},
{
"cve": "CVE-2026-46597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46597"
}
],
"notes": [
{
"category": "general",
"text": "An incorrectly placed cast from bytes to int allowed for server-side panic in the AES-GCM packet decoder for well-crafted inputs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46597",
"url": "https://www.suse.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46597",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-46597"
},
{
"cve": "CVE-2026-46598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46598"
}
],
"notes": [
{
"category": "general",
"text": "For certain crafted inputs, a \u0027ed25519.PrivateKey\u0027 was created by casting malformed wire bytes, leading to a panic when used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46598",
"url": "https://www.suse.com/security/cve/CVE-2026-46598"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46598",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.aarch64",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.s390x",
"SUSE Linux Micro 6.0:google-osconfig-agent-20260615.01-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:09:04Z",
"details": "important"
}
],
"title": "CVE-2026-46598"
}
]
}
SUSE-SU-2026:22249-1
Vulnerability from csaf_suse - Published: 2026-06-22 09:04 - Updated: 2026-06-22 09:04Summary
Security update for google-osconfig-agent
Severity
Important
Notes
Title of the patch: Security update for google-osconfig-agent
Description of the patch: This update for google-osconfig-agent fixes the following issues
- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers.
- CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents
(bsc#1251453).
- CVE-2025-58190: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially
crafted input (bsc#1251704).
- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-
header (bsc#1260264).
- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE
(bsc#1265762).
- CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of
service (bsc#1262926).
- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation
bypass and privilege escalation (bsc#1266603).
- CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent
(bsc#1266171).
- CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266171).
- CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts
(bsc#1266171).
- CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh
(bsc#1266171).
- CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266171).
- CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266171).
- CVE-2026-41506: github.com/go-git/go-git/v5: HTTP authentication credential leak when following redirects during
smart-HTTP clone and fetch operations (bsc#1264923).
Changes for google-osconfig-agent:
- Update to version 20260615.01
* Upgrade golang.org/x/crypto & golang.org/x/net (#1006)
- from version 20260615.00
* Add unit tests for ospatch_apt_upgrade.go (#938)
- Update to version 20260611.00
* Add unit tests for policies/policies.go PART 5 (#998)
- from version 20260610.00
* Add unit tests for policies/policies.go PART 4 (#997)
- from version 20260609.02
* squash commits (#936)
- from version 20260609.01
* Add unit tests for policies/policies.go PART 3 (#996)
- from version 20260609.00
* Add unit tests for policies/policies.go PART 2 (#991)
- from version 20260602.01
* Align format of dates and timestamp collected across Windows packages (#973)
- from version 20260602.00
* Add unit tests for config/config,go (#979)
- from version 20260528.00
* Bump github.com/containerd/containerd (#990)
- from version 20260521.00
* Cover agentconfig functionality by unit tests (#925)
- from version 20260520.04
* Add unit tests for policies/googet.go (#961)
* Bump github.com/go-git/go-git/v5 (#987)
- from version 20260520.02
* Add unit tests for policies/yum.go (#952)
* Add unit tests for policies/apt.go PART 3 (#951)
- from version 20260520.00
* Add unit tests for policies/zypper.go (#953)
- from version 20260519.00
* Add unit tests for policies/policies.go PART 1 (#949)
- from version 20260513.01
* Bump github.com/go-git/go-git/v5 (#981), this also updates
golang.org/x/net to v0.53.0 (bsc#1265762, CVE-2026-33814)
- from version 20260513.00
* upgrade a few packages (#980)
- from version 20260512.02
* Add/improve unit tests for agentendpoint/exec_task.go (#933)
- from version 20260512.01
* Cover google_update.go by unit tests (#941)
- from version 20260512.00
* Change zone for arm64 builds because of stockout (#978)
- Update to version 20260511.00
* switch to t2a-standard-2 on ARM package build (#977)
- from version 20260505.03
* Cover zypper_patch by unit tests (#958)
- from version 20260505.02
* Remove unused functions DisableAutoUpdates (#970)
- from version 20260505.01
* Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#966)
- from version 20260505.00
* Upgrade a few dependencies across the repo (#968)
+ github.com/go-git/go-git/v5 5.16.2->5.18.0 (bsc#1264923, CVE-2026-41506)
+ github.com/go-jose/go-jose/v4 4.1.3->4.1.4 (bsc#1262926, CVE-2026-34986)
+ github.com/go-viper/mapstructure/v2 2.3.0->2.4.0
+ go.opentelemetry.io/otel 1.40.0->1.41.0
+ go.opentelemetry.io/otel/sdk 1.39.0->1.43.0
- from version 20260504.01
* bump github.com/docker/cli to 29.2.0 (#962)
- from version 20260504.00
* Bump github.com/opencontainers/selinux (#960)
- Update to version 20260428.00
* Add/improve unit tests for agentendpoint/agentendpoint.go (#930)
- from version 20260427.03
* Cover config/file.go by unit tests (#935)
- from version 20260422.01
* Cover patch_linux.go by unit tests (#932)
- from version 20260422.00
* upgrade grpc package in main package and e2e tests (#959)
(bsc#1260264, CVE-2026-33186)
- from version 20260417.04
* Bump OSV-Scalibr version to v0.4.3 (#956)
- from version 20260417.03
* Add unit tests for updates_linux.go (#937)
- from version 20260417.02
* Add zone to CreateDisk step (#955)
- from version 20260417.01
* Change disk type for deb11 (#954)
- from version 20260417.00
* Add unit tests for policies/apt.go PART 1 (#950)
- from version 20260410.02
* Add unit tests for packages/pty_linux.go (#943)
- from version 20260410.01
* fix disk type for arm workflows (#948)
- from version 20260410.00
* Change machine type for arm based workflows (#946)
- Update to version 20260330.00
* bump timeouts for all workflows (#940)
- from version 20260326.00
* Cover exec_resource.go by unit tests (#934)
- from version 20260318.00
* Integrate OSConfig agent with ReportVmInventory (#923)
- from version 20260313.02
* remove cacheonly flag from yum upgrade (#924)
- from version 20260313.01
* conditions python version override (#927)
- from version 20260313.00
* Fix presubmits by explicitly set python version for rpm based systems (#926)
- from version 20260311.00
* Bump osconfig version (#922)
- from version 20260309.02
* Extend OSV scalibr extractor (#921)
- from version 20260309.01
* upgrade golang.org/x/crypto and it's transitive deps (#918)
- from version 20260309.00
* Add purl to pkg info (#920)
- from version 20260306.00
* Add 'Type' field to PkgInfo (#919)
- from version 20260303.01
* Upgrade go.opentelemetry.io/otel/sdk (#913)
- from version 20260303.00
* Bump github.com/vbatts/tar-split from 0.11.5 to 0.12.2 (#908)
- from version 20260302.00
* Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.7 (#906)
- from version 20260126.00
* Bump go.opentelemetry.io/otel/sdk from 1.38.0 to 1.39.0 (#905)
* Bump github.com/sirupsen/logrus (#894)
- Update to version 20260119.00
* Bump cloud.google.com/go/storage from 1.56.0 to 1.58.0 (#899)
- Update to version 20251230.00
* chore: Migrate gsutil usage to gcloud storage (#904)
- from version 20251223.00
* fix e2e tests for report inventory (#903)
- from version 20251222.01
* Revert "Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)" (#902)
- from version 20251222.00
* Bump golang to the new version (#900)
- from version 20251218.00
* add new CODEOWNERS (#901)
- from version 20251217.00
* Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)
- Bump the golang compiler version to 1.24.5
- Update to version 20251202.00
* Revert "Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)" (#893)
- Update to version 20251201.00
* Revert "Bump github.com/containerd/containerd (#890)" (#892)
- Update to version 20251126.00
* Bump github.com/containerd/containerd (#890)
* Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)
- Update to version 20251028.00
* Bump go.opentelemetry.io/otel/sdk/metric from 1.35.0 to 1.38.0 (#886)
* Bump github.com/tidwall/pretty from 1.2.0 to 1.2.1 (#880)
- from version 20251023.02
* Create multiple_os.yaml (#883)
- from version 20251023.00
* Bump github.com/docker/go-connections from 0.4.0 to 0.6.0 (#877)
* Add test runner for e2e tests (#876)
- Update to version 20250925.00
* Bump cloud.google.com/go/auth/oauth2adapt from 0.2.7 to 0.2.8 (#870)
* Bump google.golang.org/protobuf from 1.36.6 to 1.36.9 (#874)
* Bump go.opentelemetry.io/otel from 1.35.0 to 1.38.0 (#872)
* Bump github.com/golang/glog from 1.2.4 to 1.2.5 (#830)
- Update to version 20250902.01
* Bump github.com/googleapis/enterprise-certificate-proxy (#829)
- from version 20250902.00
* update github.com/go-jose/go-jose/v4 (#869)
* Upgrade scalibr and other deps (#866)
- from version 20250901.00
* Fix possibility of path traversal for zip and tar archival (#868)
- from version 20250825.00
* set CODEOWNERS file as required by org (#863)
- from version 20250819.00
* Fix/rhel10 build centos image (#860)
- from version 20250814.00
* Fix/rhel10 build image (#859)
- from version 20250813.00
* Fix: Add RHEL 10 support to RPM startup script (#858)
- from version 20250811.00
* Remove old/sles-15-sp4-sap as image is deprecated (#857)
- Update to version 20250806.00
* Fixed JSON identifier for the universe domain (#855)
- from version 20250729.00
* Bump github.com/google/s2a-go from 0.1.8 to 0.1.9 (#828)
- from version 20250725.02
* Update utils.go (#854)
* Upgrade golang.org/x/oauth2 package to the latest. (#853)
* Bump golang.org/x/time from 0.9.0 to 0.12.0 (#839)
- from version 20250725.01
* Bump golang.org/x/oauth2 (#848)
* Port fix for debian 11 to goo package manager. (#852)
- from version 20250725.00
* Update Golang version in common.sh and skip backports
repo for debian 11 (#850)
- from version 20250723.01
* Add workflows to build package for el10 (#849)
- from version 20250721.00
* Make OS Config agent TPC aware (#846)
- from version 20250718.00
* Create workflows for new Debian 13. (#847)
- Update to version 20250703.00
* Fix sles images (#844)
- from version 20250702.00
* Remove rhel-sap 8-4 add rhel-sap 8-10 (#843)
- from version 20250701.00
* Bump the go_modules group across 1 directory with 2 updates (#840)
- Update to version 20250606.00
* Change base docker images Google's official base images. (#838)
- Update to version 20250523.01
* Add a simple no-op OS policy for user testing (#837)
- from version 20250523.00
* Introduce scalibr inventory extractor for dpkg/rpm/cos
os/filesystem extractors (linux) (#834)
* Trace GetInstalledPackages memory levels (#835)
- from version 20250520.00
- Update to version 20250513.00
* Fix rpm extractor, handle (none) value correctly. (#833)
- from version 20250512.01
* Bump github.com/envoyproxy/go-control-plane from 0.13.1 to 0.13.4 (#816)
- from version 20250512.00
* Bump golang.org/x/net from 0.39.0 to 0.40.0 (#819)
- from version 20250508.01
* cosmetic refactoring to osinfo package (#826)
- from version 20250508.00
* Refactor /inventory with dependency injection (#825)
* Add debian, ubuntu (InstalledDebPackages) snapshots (#821)
* cover packages_linux.go file with tests (#824)
* Add debian (10,11,12) GetPackageUpdates output snapshots (#822)
- from version 20250507.00
* Add InstalledRPMPackages snapshot tests (#823)
- from version 20250506.02
* Yum tests: simplify initialization of exit errors (#820)
- from version 20250506.01
* Improve test coverage for gem package manager (#818)
- from version 20250506.00
* after go/x/crypto update 0.32.0 -> 0.37.0 (#817)
- from version 20250505.01
* Improve packages package coverage (#814)
* Bump golang.org/x/net from 0.34.0 to 0.39.0 (#807)
- from version 20250505.00
* Bump golang.org/x/crypto from 0.32.0 to 0.37.0 (#806)
- from version 20250430.00
* Snapshot YumUpdates (GetPackageUpdates) output (#813)
- from version 20250428.00
* Snapshot ZypperPatches, ZypperUpdates (GetPackageUpdates) output
for sles 12, 15 testdata (#812)
- from version 20250423.00
* Introduce MatchSnapshot large test results matcher function, snapshot
apt-deb GetPackageUpdates (#811)
- from version 20250416.02
Patchnames: SUSE-SLE-Micro-6.1-587
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.4 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.7 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
82 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-osconfig-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-osconfig-agent fixes the following issues\n\n- CVE-2023-45288: golang.org/x/net/http2: close connections when receiving too many headers.\n- CVE-2025-47911: golang.org/x/net/html: various algorithms with quadratic complexity when parsing HTML documents\n (bsc#1251453).\n- CVE-2025-58190: golang.org/x/net/html: excessive memory consumption by `html.ParseFragment` when processing specially\n crafted input (bsc#1251704).\n- CVE-2026-33186: google.golang.org/grpc: authorization bypass due to improper validation of the HTTP/2 :path pseudo-\n header (bsc#1260264).\n- CVE-2026-33814: golang.org/x/net/http2: infinite loop in HTTP/2 transport when given bad SETTINGS_MAX_FRAME_SIZE\n (bsc#1265762).\n- CVE-2026-34986: github.com/go-jose/go-jose/v4: crafted JWE input with a missing encrypted key can lead to a denial of\n service (bsc#1262926).\n- CVE-2026-39821: golang.org/x/net/idna: failure to reject ASCII-only Punycode-encoded labels allows for validation\n bypass and privilege escalation (bsc#1266603).\n- CVE-2026-39827: Invoking memory leak when rejecting channels can lead to DoS in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39828: Invoking bypass of certificate restrictions in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39829: Invoking pathological RSA/DSA parameters may cause DoS in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39830: Invoking client can cause server deadlock on unexpected responses in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-39831: Invoking bypass of FIDO/U2F security keys physical interaction in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-39832: Invoking agent constraints dropped when forwarding keys in golang.org/x/crypto/ssh/agent\n (bsc#1266171).\n- CVE-2026-39833: Invoking key constraints not enforced in golang.org/x/crypto/ssh/agent (bsc#1266171).\n- CVE-2026-39834: Invoking infinite loop on large channel writes in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-39835: Invoking server panic during CheckHostKey/Authenticate in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-42508: Invoking auth bypass via unenforced @revoked status in golang.org/x/crypto/ssh/knownhosts\n (bsc#1266171).\n- CVE-2026-46595: Invoking VerifiedPublicKeyCallback permissions skip enforcement in golang.org/x/crypto/ssh\n (bsc#1266171).\n- CVE-2026-46597: Invoking byte arithmetic causes underflow and panic in golang.org/x/crypto/ssh (bsc#1266171).\n- CVE-2026-46598: Invoking pathological inputs can lead to client panic in golang.org/x/crypto/ssh/agent (bsc#1266171).\n - CVE-2026-41506: github.com/go-git/go-git/v5: HTTP authentication credential leak when following redirects during\n smart-HTTP clone and fetch operations (bsc#1264923).\n\nChanges for google-osconfig-agent:\n\n- Update to version 20260615.01\n * Upgrade golang.org/x/crypto \u0026 golang.org/x/net (#1006)\n- from version 20260615.00\n * Add unit tests for ospatch_apt_upgrade.go (#938)\n- Update to version 20260611.00\n * Add unit tests for policies/policies.go PART 5 (#998)\n- from version 20260610.00\n * Add unit tests for policies/policies.go PART 4 (#997)\n- from version 20260609.02\n * squash commits (#936)\n- from version 20260609.01\n * Add unit tests for policies/policies.go PART 3 (#996)\n- from version 20260609.00\n * Add unit tests for policies/policies.go PART 2 (#991)\n- from version 20260602.01\n * Align format of dates and timestamp collected across Windows packages (#973)\n- from version 20260602.00\n * Add unit tests for config/config,go (#979)\n- from version 20260528.00\n * Bump github.com/containerd/containerd (#990)\n- from version 20260521.00\n * Cover agentconfig functionality by unit tests (#925)\n- from version 20260520.04\n * Add unit tests for policies/googet.go (#961)\n * Bump github.com/go-git/go-git/v5 (#987)\n- from version 20260520.02\n * Add unit tests for policies/yum.go (#952)\n * Add unit tests for policies/apt.go PART 3 (#951)\n- from version 20260520.00\n * Add unit tests for policies/zypper.go (#953)\n- from version 20260519.00\n * Add unit tests for policies/policies.go PART 1 (#949)\n- from version 20260513.01\n * Bump github.com/go-git/go-git/v5 (#981), this also updates\n golang.org/x/net to v0.53.0 (bsc#1265762, CVE-2026-33814)\n- from version 20260513.00\n * upgrade a few packages (#980)\n- from version 20260512.02\n * Add/improve unit tests for agentendpoint/exec_task.go (#933)\n- from version 20260512.01\n * Cover google_update.go by unit tests (#941)\n- from version 20260512.00\n * Change zone for arm64 builds because of stockout (#978)\n- Update to version 20260511.00\n * switch to t2a-standard-2 on ARM package build (#977)\n- from version 20260505.03\n * Cover zypper_patch by unit tests (#958)\n- from version 20260505.02\n * Remove unused functions DisableAutoUpdates (#970)\n- from version 20260505.01\n * Bump go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc (#966)\n- from version 20260505.00\n * Upgrade a few dependencies across the repo (#968)\n + github.com/go-git/go-git/v5 5.16.2-\u003e5.18.0 (bsc#1264923, CVE-2026-41506)\n + github.com/go-jose/go-jose/v4 4.1.3-\u003e4.1.4 (bsc#1262926, CVE-2026-34986)\n + github.com/go-viper/mapstructure/v2 2.3.0-\u003e2.4.0\n + go.opentelemetry.io/otel 1.40.0-\u003e1.41.0\n + go.opentelemetry.io/otel/sdk 1.39.0-\u003e1.43.0\n- from version 20260504.01\n * bump github.com/docker/cli to 29.2.0 (#962)\n- from version 20260504.00\n * Bump github.com/opencontainers/selinux (#960)\n- Update to version 20260428.00\n * Add/improve unit tests for agentendpoint/agentendpoint.go (#930)\n- from version 20260427.03\n * Cover config/file.go by unit tests (#935)\n- from version 20260422.01\n * Cover patch_linux.go by unit tests (#932)\n- from version 20260422.00\n * upgrade grpc package in main package and e2e tests (#959)\n (bsc#1260264, CVE-2026-33186)\n- from version 20260417.04\n * Bump OSV-Scalibr version to v0.4.3 (#956)\n- from version 20260417.03\n * Add unit tests for updates_linux.go (#937)\n- from version 20260417.02\n * Add zone to CreateDisk step (#955)\n- from version 20260417.01\n * Change disk type for deb11 (#954)\n- from version 20260417.00\n * Add unit tests for policies/apt.go PART 1 (#950)\n- from version 20260410.02\n * Add unit tests for packages/pty_linux.go (#943)\n- from version 20260410.01\n * fix disk type for arm workflows (#948)\n- from version 20260410.00\n * Change machine type for arm based workflows (#946)\n- Update to version 20260330.00\n * bump timeouts for all workflows (#940)\n- from version 20260326.00\n * Cover exec_resource.go by unit tests (#934)\n- from version 20260318.00\n * Integrate OSConfig agent with ReportVmInventory (#923)\n- from version 20260313.02\n * remove cacheonly flag from yum upgrade (#924)\n- from version 20260313.01\n * conditions python version override (#927)\n- from version 20260313.00\n * Fix presubmits by explicitly set python version for rpm based systems (#926)\n- from version 20260311.00\n * Bump osconfig version (#922)\n- from version 20260309.02\n * Extend OSV scalibr extractor (#921)\n- from version 20260309.01\n * upgrade golang.org/x/crypto and it\u0027s transitive deps (#918)\n- from version 20260309.00\n * Add purl to pkg info (#920)\n- from version 20260306.00\n * Add \u0027Type\u0027 field to PkgInfo (#919)\n- from version 20260303.01\n * Upgrade go.opentelemetry.io/otel/sdk (#913)\n- from version 20260303.00\n * Bump github.com/vbatts/tar-split from 0.11.5 to 0.12.2 (#908)\n- from version 20260302.00\n * Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.7 (#906)\n- from version 20260126.00\n * Bump go.opentelemetry.io/otel/sdk from 1.38.0 to 1.39.0 (#905)\n * Bump github.com/sirupsen/logrus (#894)\n- Update to version 20260119.00\n * Bump cloud.google.com/go/storage from 1.56.0 to 1.58.0 (#899)\n- Update to version 20251230.00\n * chore: Migrate gsutil usage to gcloud storage (#904)\n- from version 20251223.00\n * fix e2e tests for report inventory (#903)\n- from version 20251222.01\n * Revert \"Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)\" (#902)\n- from version 20251222.00\n * Bump golang to the new version (#900)\n- from version 20251218.00\n * add new CODEOWNERS (#901)\n- from version 20251217.00\n * Bump cloud.google.com/go/longrunning from 0.6.3 to 0.7.0 (#882)\n- Bump the golang compiler version to 1.24.5\n- Update to version 20251202.00\n * Revert \"Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)\" (#893)\n- Update to version 20251201.00\n * Revert \"Bump github.com/containerd/containerd (#890)\" (#892)\n- Update to version 20251126.00\n * Bump github.com/containerd/containerd (#890)\n * Bump github.com/spdx/tools-golang from 0.5.3 to 0.5.5 (#887)\n- Update to version 20251028.00\n * Bump go.opentelemetry.io/otel/sdk/metric from 1.35.0 to 1.38.0 (#886)\n * Bump github.com/tidwall/pretty from 1.2.0 to 1.2.1 (#880)\n- from version 20251023.02\n * Create multiple_os.yaml (#883)\n- from version 20251023.00\n * Bump github.com/docker/go-connections from 0.4.0 to 0.6.0 (#877)\n * Add test runner for e2e tests (#876)\n- Update to version 20250925.00\n * Bump cloud.google.com/go/auth/oauth2adapt from 0.2.7 to 0.2.8 (#870)\n * Bump google.golang.org/protobuf from 1.36.6 to 1.36.9 (#874)\n * Bump go.opentelemetry.io/otel from 1.35.0 to 1.38.0 (#872)\n * Bump github.com/golang/glog from 1.2.4 to 1.2.5 (#830)\n- Update to version 20250902.01\n * Bump github.com/googleapis/enterprise-certificate-proxy (#829)\n- from version 20250902.00\n * update github.com/go-jose/go-jose/v4 (#869)\n * Upgrade scalibr and other deps (#866)\n- from version 20250901.00\n * Fix possibility of path traversal for zip and tar archival (#868)\n- from version 20250825.00\n * set CODEOWNERS file as required by org (#863)\n- from version 20250819.00\n * Fix/rhel10 build centos image (#860)\n- from version 20250814.00\n * Fix/rhel10 build image (#859)\n- from version 20250813.00\n * Fix: Add RHEL 10 support to RPM startup script (#858)\n- from version 20250811.00\n * Remove old/sles-15-sp4-sap as image is deprecated (#857)\n- Update to version 20250806.00\n * Fixed JSON identifier for the universe domain (#855)\n- from version 20250729.00\n * Bump github.com/google/s2a-go from 0.1.8 to 0.1.9 (#828)\n- from version 20250725.02\n * Update utils.go (#854)\n * Upgrade golang.org/x/oauth2 package to the latest. (#853)\n * Bump golang.org/x/time from 0.9.0 to 0.12.0 (#839)\n- from version 20250725.01\n * Bump golang.org/x/oauth2 (#848)\n * Port fix for debian 11 to goo package manager. (#852)\n- from version 20250725.00\n * Update Golang version in common.sh and skip backports\n repo for debian 11 (#850)\n- from version 20250723.01\n * Add workflows to build package for el10 (#849)\n- from version 20250721.00\n * Make OS Config agent TPC aware (#846)\n- from version 20250718.00\n * Create workflows for new Debian 13. (#847)\n- Update to version 20250703.00\n * Fix sles images (#844)\n- from version 20250702.00\n * Remove rhel-sap 8-4 add rhel-sap 8-10 (#843)\n- from version 20250701.00\n * Bump the go_modules group across 1 directory with 2 updates (#840)\n- Update to version 20250606.00\n * Change base docker images Google\u0027s official base images. (#838)\n- Update to version 20250523.01\n * Add a simple no-op OS policy for user testing (#837)\n- from version 20250523.00\n * Introduce scalibr inventory extractor for dpkg/rpm/cos\n os/filesystem extractors (linux) (#834)\n * Trace GetInstalledPackages memory levels (#835)\n- from version 20250520.00\n- Update to version 20250513.00\n * Fix rpm extractor, handle (none) value correctly. (#833)\n- from version 20250512.01\n * Bump github.com/envoyproxy/go-control-plane from 0.13.1 to 0.13.4 (#816)\n- from version 20250512.00\n * Bump golang.org/x/net from 0.39.0 to 0.40.0 (#819)\n- from version 20250508.01\n * cosmetic refactoring to osinfo package (#826)\n- from version 20250508.00\n * Refactor /inventory with dependency injection (#825)\n * Add debian, ubuntu (InstalledDebPackages) snapshots (#821)\n * cover packages_linux.go file with tests (#824)\n * Add debian (10,11,12) GetPackageUpdates output snapshots (#822)\n- from version 20250507.00\n * Add InstalledRPMPackages snapshot tests (#823)\n- from version 20250506.02\n * Yum tests: simplify initialization of exit errors (#820)\n- from version 20250506.01\n * Improve test coverage for gem package manager (#818)\n- from version 20250506.00\n * after go/x/crypto update 0.32.0 -\u003e 0.37.0 (#817)\n- from version 20250505.01\n * Improve packages package coverage (#814)\n * Bump golang.org/x/net from 0.34.0 to 0.39.0 (#807)\n- from version 20250505.00\n * Bump golang.org/x/crypto from 0.32.0 to 0.37.0 (#806)\n- from version 20250430.00\n * Snapshot YumUpdates (GetPackageUpdates) output (#813)\n- from version 20250428.00\n * Snapshot ZypperPatches, ZypperUpdates (GetPackageUpdates) output\n for sles 12, 15 testdata (#812)\n- from version 20250423.00\n * Introduce MatchSnapshot large test results matcher function, snapshot\n apt-deb GetPackageUpdates (#811)\n- from version 20250416.02\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-587",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_22249-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:22249-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-202622249-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:22249-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047615.html"
},
{
"category": "self",
"summary": "SUSE Bug 1210938",
"url": "https://bugzilla.suse.com/1210938"
},
{
"category": "self",
"summary": "SUSE Bug 1251453",
"url": "https://bugzilla.suse.com/1251453"
},
{
"category": "self",
"summary": "SUSE Bug 1251704",
"url": "https://bugzilla.suse.com/1251704"
},
{
"category": "self",
"summary": "SUSE Bug 1260264",
"url": "https://bugzilla.suse.com/1260264"
},
{
"category": "self",
"summary": "SUSE Bug 1262926",
"url": "https://bugzilla.suse.com/1262926"
},
{
"category": "self",
"summary": "SUSE Bug 1264923",
"url": "https://bugzilla.suse.com/1264923"
},
{
"category": "self",
"summary": "SUSE Bug 1265762",
"url": "https://bugzilla.suse.com/1265762"
},
{
"category": "self",
"summary": "SUSE Bug 1266171",
"url": "https://bugzilla.suse.com/1266171"
},
{
"category": "self",
"summary": "SUSE Bug 1266603",
"url": "https://bugzilla.suse.com/1266603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-47911 page",
"url": "https://www.suse.com/security/cve/CVE-2025-47911/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58190 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58190/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39821 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39827 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39828 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39830 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39831 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39832 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39833 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39834 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39835 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-41506 page",
"url": "https://www.suse.com/security/cve/CVE-2026-41506/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42508 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46595 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46597 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46598 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46598/"
}
],
"title": "Security update for google-osconfig-agent",
"tracking": {
"current_release_date": "2026-06-22T09:04:46Z",
"generator": {
"date": "2026-06-22T09:04:46Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:22249-1",
"initial_release_date": "2026-06-22T09:04:46Z",
"revision_history": [
{
"date": "2026-06-22T09:04:46Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"product": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"product_id": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"product": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"product_id": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"product": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"product_id": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64",
"product": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64",
"product_id": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64"
},
"product_reference": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le"
},
"product_reference": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x"
},
"product_reference": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
},
"product_reference": "google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-47911",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-47911"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has quadratic parsing complexity when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-47911",
"url": "https://www.suse.com/security/cve/CVE-2025-47911"
},
{
"category": "external",
"summary": "SUSE Bug 1251308 for CVE-2025-47911",
"url": "https://bugzilla.suse.com/1251308"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-47911"
},
{
"cve": "CVE-2025-58190",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58190"
}
],
"notes": [
{
"category": "general",
"text": "The html.Parse function in golang.org/x/net/html has an infinite parsing loop when processing certain inputs, which can lead to denial of service (DoS) if an attacker provides specially crafted HTML content.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58190",
"url": "https://www.suse.com/security/cve/CVE-2025-58190"
},
{
"category": "external",
"summary": "SUSE Bug 1251309 for CVE-2025-58190",
"url": "https://bugzilla.suse.com/1251309"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "moderate"
}
],
"title": "CVE-2025-58190"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "external",
"summary": "SUSE Bug 1268758 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1268758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-39821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39821"
}
],
"notes": [
{
"category": "general",
"text": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39821",
"url": "https://www.suse.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "SUSE Bug 1266474 for CVE-2026-39821",
"url": "https://bugzilla.suse.com/1266474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39821"
},
{
"cve": "CVE-2026-39827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39827"
}
],
"notes": [
{
"category": "general",
"text": "An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection\u0027s internal state and released for garbage collection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39827",
"url": "https://www.suse.com/security/cve/CVE-2026-39827"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39827",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39827"
},
{
"cve": "CVE-2026-39828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39828"
}
],
"notes": [
{
"category": "general",
"text": "When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39828",
"url": "https://www.suse.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39828",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39828"
},
{
"cve": "CVE-2026-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39829"
}
],
"notes": [
{
"category": "general",
"text": "The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39829",
"url": "https://www.suse.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39829",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39829"
},
{
"cve": "CVE-2026-39830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39830"
}
],
"notes": [
{
"category": "general",
"text": "A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection\u0027s read loop. The blocked goroutine could not be released by calling Close(), resulting in a resource leak per connection. Unsolicited global responses are now discarded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39830",
"url": "https://www.suse.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39830",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39830"
},
{
"cve": "CVE-2026-39831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39831"
}
],
"notes": [
{
"category": "general",
"text": "The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nistp256@openssh.com, sk-ssh-ed25519@openssh.com) did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior, return a \"no-touch-required\" extension in Permissions.Extensions from PublicKeyCallback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39831",
"url": "https://www.suse.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39831",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39831"
},
{
"cve": "CVE-2026-39832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39832"
}
],
"notes": [
{
"category": "general",
"text": "When adding a key to a remote agent constraint extensions such as restrict-destination-v00@openssh.com were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all constraint extensions. Additionally, the in-memory keyring returned by NewKeyring() now rejects keys with unsupported constraint extensions instead of silently ignoring them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39832",
"url": "https://www.suse.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39832",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39832"
},
{
"cve": "CVE-2026-39833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39833"
}
],
"notes": [
{
"category": "general",
"text": "The in-memory keyring returned by NewKeyring() silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring() now returns an error when unsupported constraints are requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39833",
"url": "https://www.suse.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39833",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39833"
},
{
"cve": "CVE-2026-39834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39834"
}
],
"notes": [
{
"category": "general",
"text": "When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39834",
"url": "https://www.suse.com/security/cve/CVE-2026-39834"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39834",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39834"
},
{
"cve": "CVE-2026-39835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39835"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39835",
"url": "https://www.suse.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39835",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-39835"
},
{
"cve": "CVE-2026-41506",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-41506"
}
],
"notes": [
{
"category": "general",
"text": "go-git is an extensible git implementation library written in pure Go. Prior to versions 5.18.0 and 6.0.0-alpha.2, go-git may leak HTTP authentication credentials when following redirects during smart-HTTP clone and fetch operations. This issue has been patched in versions 5.18.0 and 6.0.0-alpha.2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-41506",
"url": "https://www.suse.com/security/cve/CVE-2026-41506"
},
{
"category": "external",
"summary": "SUSE Bug 1264854 for CVE-2026-41506",
"url": "https://bugzilla.suse.com/1264854"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "moderate"
}
],
"title": "CVE-2026-41506"
},
{
"cve": "CVE-2026-42508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42508"
}
],
"notes": [
{
"category": "general",
"text": "Previously, a revoked \u0027SignatureKey\u0027 belonging to a CA was not correctly checked for revocation. Now, both the \u0027key\u0027 and \u0027key.SignatureKey\u0027 are checked for @revoked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42508",
"url": "https://www.suse.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-42508",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-42508"
},
{
"cve": "CVE-2026-46595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46595"
}
],
"notes": [
{
"category": "general",
"text": "Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46595",
"url": "https://www.suse.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46595",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-46595"
},
{
"cve": "CVE-2026-46597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46597"
}
],
"notes": [
{
"category": "general",
"text": "An incorrectly placed cast from bytes to int allowed for server-side panic in the AES-GCM packet decoder for well-crafted inputs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46597",
"url": "https://www.suse.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46597",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-46597"
},
{
"cve": "CVE-2026-46598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46598"
}
],
"notes": [
{
"category": "general",
"text": "For certain crafted inputs, a \u0027ed25519.PrivateKey\u0027 was created by casting malformed wire bytes, leading to a panic when used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46598",
"url": "https://www.suse.com/security/cve/CVE-2026-46598"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46598",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.ppc64le",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.s390x",
"SUSE Linux Micro 6.1:google-osconfig-agent-20260615.01-slfo.1.1_1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-22T09:04:46Z",
"details": "important"
}
],
"title": "CVE-2026-46598"
}
]
}
SUSE-SU-2026:2254-1
Vulnerability from csaf_suse - Published: 2026-06-03 14:18 - Updated: 2026-06-03 14:18Summary
Security update 5.0.8 for Multi-Linux Manager Client Tools
Severity
Important
Notes
Title of the patch: Security update 5.0.8 for Multi-Linux Manager Client Tools
Description of the patch: This update fixes the following issues:
golang-github-QubitProducts-exporter_exporter:
- Security Fixes:
- CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707)
golang-github-prometheus-node_exporter was updated from version 1.5.0 to 1.10.2:
- Security Fixes:
- Version 1.9.1:
- CVE-2025-22870: Fixed potential proxy bypass using IPv6 zone IDs (bsc#1238686)
- Version 1.9.0:
- CVE-2023-45288: Close connections when receiving too many headers (bsc#1236516)
- Highlights of other changes and bug fixes:
- Backward Compatibility and packaging changes:
- Added compatibility for Go 1.22/1.23 needed in older RHEL toolchains
- Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility
- Version 1.10.2:
- Fixed typo in Zswap metric name (meminfo)
- Version 1.10.1:
- Fixed mount points being collected multiple times (filesystem)
- Refactored mountinfo parsing (bsc#1261810)
- Added Zswap/Zswapped metrics (meminfo)
- Version 1.10.0:
- New collectors: PCIe devices, swaps
- Added systemd virtualization metrics, AIX metrics
- WiFi packet metrics, additional PCIe and TLB metrics
- Changed mdadm to use sysfs, added erofs to excluded filesystems
- Fixed bugs: cpufreq collector, ethtool metrics
- Version 1.9.1:
- Fixed missing IRQ on older kernels (pressure)
- Version 1.9.0 (jsc#PED-12485):
- Switched to Go log/slog for logging
- Converted meminfo to use procfs library
- New features: filesystem mount info, Btrfs commit stats, interrupt filtering, slabinfo filters, IRQ PSI metrics,
hwmon filtering, network interface alias labels, GPU clock frequencies, AIX support,
- Enhancements: TCP receive queue drop, block device rotational status, CPU online status, performance
optimizations
- Fixed: ZFS integer underflow, CPU pressure on limited systems, dataset name parsing
- Version 1.8.x:
- Fixed CPU pressure metric collection, CPU seconds on Solaris, pressure collector nil reference
- Version 1.8.0:
- New collectors: xfrm (IPsec), watchdog
- Added CPU vulnerability mitigation labels, TCP out-of-order queue metrics, filesystem device error surfacing
- Removed caching of os-release file modtime/filename
- Fixed: hwmon nil pointer, ethtool metric sanitization, NetClass data race
- Version 1.7.0 (jsc#PED-7893, jsc#PED-7928):
- New: CPU vulnerabilities reporting from sysfs
- Enhancements: parallelized filesystem stat calls, missing link speeds in ethtool, CPU MHz values,
qdisc performance, hwmon filtering, rtnetlink for ARP stats
- Fixed: netdev 32-bit fallback, btrfs handle leaks, NFSd v4 index
- Version 1.6.0:
- Deprecated ntp and supervisord collectors
- Removed bcache cache_readaheads_totals metrics
- Improved offline CPU handling (removed metrics for offline CPUs)
- New: softirqs collector
- Enhancements: ZFS zpool states and memory metrics, network interface admin state, CPU frequency governor, reduced
btrfs privileges
- Fixed: perf tracefs detection, thermal zone noise, Linux aarch64 interrupts
prometheus-postgres_exporter:
- Security Fixes:
- CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699)
scap-security-guide:
- Update the SSG package description
- Add SLE16 profiles to the build
- Updated to 0.1.79 (jsc#ECO-3319)
- Create SLE16 HIPAA profile
- Create SLE16 PCI DSS 4 profile
- Use Sequoia in RHEL 10 instead of GPG
- New Profile for RHEL10: BSI
- Move RHEL Control files to product files
- Update RHEL 9 CCN profile
- Various updates for SLE 12/15
spacecmd:
- Version 5.0.16-0
* Update translation strings
uyuni-tools:
- Version 0.1.39-0
* mgrpxy ssh tuning should happen before crypto policies (bsc#1254619)
* Fix default value for helm registry (bsc#1258927).
* Use static supportconfig name to avoid dynamic search
(bsc#1257941)
* Do not nest multiple tarball files and instead collect
all files into one tarball (bsc#1252964)
* Show where final tarball was generated (bsc#1259208)
Patchnames: SUSE-2026-2254,SUSE-EL-9-CLIENT-TOOLS-2026-2254
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
4.4 (Medium)
Affected products
Recommended
54 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
References
25 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update 5.0.8 for Multi-Linux Manager Client Tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update fixes the following issues:\n\ngolang-github-QubitProducts-exporter_exporter:\n\n- Security Fixes:\n\n - CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707)\n\ngolang-github-prometheus-node_exporter was updated from version 1.5.0 to 1.10.2:\n\n- Security Fixes:\n\n - Version 1.9.1:\n - CVE-2025-22870: Fixed potential proxy bypass using IPv6 zone IDs (bsc#1238686)\n\n - Version 1.9.0:\n - CVE-2023-45288: Close connections when receiving too many headers (bsc#1236516)\n\n- Highlights of other changes and bug fixes:\n\n - Backward Compatibility and packaging changes:\n - Added compatibility for Go 1.22/1.23 needed in older RHEL toolchains\n - Pinned golang.org/x/net to v0.37.0 for Go 1.22 compatibility\n\n - Version 1.10.2:\n - Fixed typo in Zswap metric name (meminfo)\n\n - Version 1.10.1:\n - Fixed mount points being collected multiple times (filesystem)\n - Refactored mountinfo parsing (bsc#1261810)\n - Added Zswap/Zswapped metrics (meminfo)\n\n - Version 1.10.0:\n - New collectors: PCIe devices, swaps\n - Added systemd virtualization metrics, AIX metrics\n - WiFi packet metrics, additional PCIe and TLB metrics\n - Changed mdadm to use sysfs, added erofs to excluded filesystems\n - Fixed bugs: cpufreq collector, ethtool metrics\n\n - Version 1.9.1:\n - Fixed missing IRQ on older kernels (pressure)\n\n - Version 1.9.0 (jsc#PED-12485):\n - Switched to Go log/slog for logging\n - Converted meminfo to use procfs library\n - New features: filesystem mount info, Btrfs commit stats, interrupt filtering, slabinfo filters, IRQ PSI metrics,\n hwmon filtering, network interface alias labels, GPU clock frequencies, AIX support,\n - Enhancements: TCP receive queue drop, block device rotational status, CPU online status, performance \n optimizations\n - Fixed: ZFS integer underflow, CPU pressure on limited systems, dataset name parsing\n\n - Version 1.8.x:\n - Fixed CPU pressure metric collection, CPU seconds on Solaris, pressure collector nil reference\n\n - Version 1.8.0:\n - New collectors: xfrm (IPsec), watchdog\n - Added CPU vulnerability mitigation labels, TCP out-of-order queue metrics, filesystem device error surfacing\n - Removed caching of os-release file modtime/filename\n - Fixed: hwmon nil pointer, ethtool metric sanitization, NetClass data race\n\n - Version 1.7.0 (jsc#PED-7893, jsc#PED-7928):\n - New: CPU vulnerabilities reporting from sysfs\n - Enhancements: parallelized filesystem stat calls, missing link speeds in ethtool, CPU MHz values,\n qdisc performance, hwmon filtering, rtnetlink for ARP stats\n - Fixed: netdev 32-bit fallback, btrfs handle leaks, NFSd v4 index\n\n - Version 1.6.0:\n - Deprecated ntp and supervisord collectors\n - Removed bcache cache_readaheads_totals metrics\n - Improved offline CPU handling (removed metrics for offline CPUs)\n - New: softirqs collector\n - Enhancements: ZFS zpool states and memory metrics, network interface admin state, CPU frequency governor, reduced\n btrfs privileges\n - Fixed: perf tracefs detection, thermal zone noise, Linux aarch64 interrupts\n\nprometheus-postgres_exporter:\n\n- Security Fixes:\n\n - CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699) \n \nscap-security-guide:\n\n- Update the SSG package description \n- Add SLE16 profiles to the build\n- Updated to 0.1.79 (jsc#ECO-3319)\n - Create SLE16 HIPAA profile\n - Create SLE16 PCI DSS 4 profile\n - Use Sequoia in RHEL 10 instead of GPG\n - New Profile for RHEL10: BSI\n - Move RHEL Control files to product files\n - Update RHEL 9 CCN profile\n - Various updates for SLE 12/15\n\nspacecmd:\n\n- Version 5.0.16-0\n * Update translation strings\n\nuyuni-tools:\n\n- Version 0.1.39-0\n * mgrpxy ssh tuning should happen before crypto policies (bsc#1254619)\n * Fix default value for helm registry (bsc#1258927).\n * Use static supportconfig name to avoid dynamic search\n (bsc#1257941)\n * Do not nest multiple tarball files and instead collect\n all files into one tarball (bsc#1252964)\n * Show where final tarball was generated (bsc#1259208)\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2254,SUSE-EL-9-CLIENT-TOOLS-2026-2254",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2254-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2254-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262254-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2254-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2026-June/047074.html"
},
{
"category": "self",
"summary": "SUSE Bug 1236516",
"url": "https://bugzilla.suse.com/1236516"
},
{
"category": "self",
"summary": "SUSE Bug 1238686",
"url": "https://bugzilla.suse.com/1238686"
},
{
"category": "self",
"summary": "SUSE Bug 1248699",
"url": "https://bugzilla.suse.com/1248699"
},
{
"category": "self",
"summary": "SUSE Bug 1248707",
"url": "https://bugzilla.suse.com/1248707"
},
{
"category": "self",
"summary": "SUSE Bug 1252964",
"url": "https://bugzilla.suse.com/1252964"
},
{
"category": "self",
"summary": "SUSE Bug 1254619",
"url": "https://bugzilla.suse.com/1254619"
},
{
"category": "self",
"summary": "SUSE Bug 1257941",
"url": "https://bugzilla.suse.com/1257941"
},
{
"category": "self",
"summary": "SUSE Bug 1258927",
"url": "https://bugzilla.suse.com/1258927"
},
{
"category": "self",
"summary": "SUSE Bug 1259208",
"url": "https://bugzilla.suse.com/1259208"
},
{
"category": "self",
"summary": "SUSE Bug 1261810",
"url": "https://bugzilla.suse.com/1261810"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2022-21698 page",
"url": "https://www.suse.com/security/cve/CVE-2022-21698/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22870 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22870/"
}
],
"title": "Security update 5.0.8 for Multi-Linux Manager Client Tools",
"tracking": {
"current_release_date": "2026-06-03T14:18:09Z",
"generator": {
"date": "2026-06-03T14:18:09Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2254-1",
"initial_release_date": "2026-06-03T14:18:09Z",
"revision_history": [
{
"date": "2026-06-03T14:18:09Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64"
}
},
{
"category": "product_version",
"name": "mgradm-0.1.39-1.32.1.aarch64",
"product": {
"name": "mgradm-0.1.39-1.32.1.aarch64",
"product_id": "mgradm-0.1.39-1.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-1.32.1.aarch64",
"product": {
"name": "mgrctl-0.1.39-1.32.1.aarch64",
"product_id": "mgrctl-0.1.39-1.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "mgrpxy-0.1.39-1.32.1.aarch64",
"product": {
"name": "mgrpxy-0.1.39-1.32.1.aarch64",
"product_id": "mgrpxy-0.1.39-1.32.1.aarch64"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"product_id": "prometheus-postgres_exporter-0.10.1-1.15.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "mgradm-bash-completion-0.1.39-1.32.1.noarch",
"product": {
"name": "mgradm-bash-completion-0.1.39-1.32.1.noarch",
"product_id": "mgradm-bash-completion-0.1.39-1.32.1.noarch"
}
},
{
"category": "product_version",
"name": "mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"product": {
"name": "mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"product_id": "mgradm-zsh-completion-0.1.39-1.32.1.noarch"
}
},
{
"category": "product_version",
"name": "mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"product": {
"name": "mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"product_id": "mgrctl-bash-completion-0.1.39-1.32.1.noarch"
}
},
{
"category": "product_version",
"name": "mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"product": {
"name": "mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"product_id": "mgrctl-zsh-completion-0.1.39-1.32.1.noarch"
}
},
{
"category": "product_version",
"name": "mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"product": {
"name": "mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"product_id": "mgrpxy-bash-completion-0.1.39-1.32.1.noarch"
}
},
{
"category": "product_version",
"name": "mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"product": {
"name": "mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"product_id": "mgrpxy-zsh-completion-0.1.39-1.32.1.noarch"
}
},
{
"category": "product_version",
"name": "scap-security-guide-0.1.80-1.44.1.noarch",
"product": {
"name": "scap-security-guide-0.1.80-1.44.1.noarch",
"product_id": "scap-security-guide-0.1.80-1.44.1.noarch"
}
},
{
"category": "product_version",
"name": "scap-security-guide-debian-0.1.80-1.44.1.noarch",
"product": {
"name": "scap-security-guide-debian-0.1.80-1.44.1.noarch",
"product_id": "scap-security-guide-debian-0.1.80-1.44.1.noarch"
}
},
{
"category": "product_version",
"name": "scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"product": {
"name": "scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"product_id": "scap-security-guide-redhat-0.1.80-1.44.1.noarch"
}
},
{
"category": "product_version",
"name": "scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"product": {
"name": "scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"product_id": "scap-security-guide-ubuntu-0.1.80-1.44.1.noarch"
}
},
{
"category": "product_version",
"name": "spacecmd-5.0.16-1.61.1.noarch",
"product": {
"name": "spacecmd-5.0.16-1.61.1.noarch",
"product_id": "spacecmd-5.0.16-1.61.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le"
}
},
{
"category": "product_version",
"name": "mgradm-0.1.39-1.32.1.ppc64le",
"product": {
"name": "mgradm-0.1.39-1.32.1.ppc64le",
"product_id": "mgradm-0.1.39-1.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-1.32.1.ppc64le",
"product": {
"name": "mgrctl-0.1.39-1.32.1.ppc64le",
"product_id": "mgrctl-0.1.39-1.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "mgrpxy-0.1.39-1.32.1.ppc64le",
"product": {
"name": "mgrpxy-0.1.39-1.32.1.ppc64le",
"product_id": "mgrpxy-0.1.39-1.32.1.ppc64le"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"product_id": "prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x"
}
},
{
"category": "product_version",
"name": "mgradm-0.1.39-1.32.1.s390x",
"product": {
"name": "mgradm-0.1.39-1.32.1.s390x",
"product_id": "mgradm-0.1.39-1.32.1.s390x"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-1.32.1.s390x",
"product": {
"name": "mgrctl-0.1.39-1.32.1.s390x",
"product_id": "mgrctl-0.1.39-1.32.1.s390x"
}
},
{
"category": "product_version",
"name": "mgrpxy-0.1.39-1.32.1.s390x",
"product": {
"name": "mgrpxy-0.1.39-1.32.1.s390x",
"product_id": "mgrpxy-0.1.39-1.32.1.s390x"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"product_id": "prometheus-postgres_exporter-0.10.1-1.15.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"product": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"product_id": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64"
}
},
{
"category": "product_version",
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"product": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"product_id": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64"
}
},
{
"category": "product_version",
"name": "mgradm-0.1.39-1.32.1.x86_64",
"product": {
"name": "mgradm-0.1.39-1.32.1.x86_64",
"product_id": "mgradm-0.1.39-1.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "mgrctl-0.1.39-1.32.1.x86_64",
"product": {
"name": "mgrctl-0.1.39-1.32.1.x86_64",
"product_id": "mgrctl-0.1.39-1.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "mgrpxy-0.1.39-1.32.1.x86_64",
"product": {
"name": "mgrpxy-0.1.39-1.32.1.x86_64",
"product_id": "mgrpxy-0.1.39-1.32.1.x86_64"
}
},
{
"category": "product_version",
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"product": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"product_id": "prometheus-postgres_exporter-0.10.1-1.15.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE:EL-9:Update:Products:ManagerTools:Update",
"product": {
"name": "SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update"
}
},
{
"category": "product_name",
"name": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product": {
"name": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgradm-0.1.39-1.32.1.aarch64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64"
},
"product_reference": "mgradm-0.1.39-1.32.1.aarch64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgradm-0.1.39-1.32.1.ppc64le as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le"
},
"product_reference": "mgradm-0.1.39-1.32.1.ppc64le",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgradm-0.1.39-1.32.1.s390x as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x"
},
"product_reference": "mgradm-0.1.39-1.32.1.s390x",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgradm-0.1.39-1.32.1.x86_64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64"
},
"product_reference": "mgradm-0.1.39-1.32.1.x86_64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgradm-bash-completion-0.1.39-1.32.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch"
},
"product_reference": "mgradm-bash-completion-0.1.39-1.32.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgradm-zsh-completion-0.1.39-1.32.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch"
},
"product_reference": "mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-1.32.1.aarch64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64"
},
"product_reference": "mgrctl-0.1.39-1.32.1.aarch64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-1.32.1.ppc64le as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le"
},
"product_reference": "mgrctl-0.1.39-1.32.1.ppc64le",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-1.32.1.s390x as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x"
},
"product_reference": "mgrctl-0.1.39-1.32.1.s390x",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-1.32.1.x86_64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64"
},
"product_reference": "mgrctl-0.1.39-1.32.1.x86_64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-bash-completion-0.1.39-1.32.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch"
},
"product_reference": "mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-zsh-completion-0.1.39-1.32.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch"
},
"product_reference": "mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrpxy-0.1.39-1.32.1.aarch64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64"
},
"product_reference": "mgrpxy-0.1.39-1.32.1.aarch64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrpxy-0.1.39-1.32.1.ppc64le as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le"
},
"product_reference": "mgrpxy-0.1.39-1.32.1.ppc64le",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrpxy-0.1.39-1.32.1.s390x as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x"
},
"product_reference": "mgrpxy-0.1.39-1.32.1.s390x",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrpxy-0.1.39-1.32.1.x86_64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64"
},
"product_reference": "mgrpxy-0.1.39-1.32.1.x86_64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrpxy-bash-completion-0.1.39-1.32.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch"
},
"product_reference": "mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrpxy-zsh-completion-0.1.39-1.32.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch"
},
"product_reference": "mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.aarch64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.s390x as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.x86_64 as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "scap-security-guide-0.1.80-1.44.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch"
},
"product_reference": "scap-security-guide-0.1.80-1.44.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "scap-security-guide-debian-0.1.80-1.44.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch"
},
"product_reference": "scap-security-guide-debian-0.1.80-1.44.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "scap-security-guide-redhat-0.1.80-1.44.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch"
},
"product_reference": "scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "scap-security-guide-ubuntu-0.1.80-1.44.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch"
},
"product_reference": "scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-5.0.16-1.61.1.noarch as component of SUSE:EL-9:Update:Products:ManagerTools:Update",
"product_id": "SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
},
"product_reference": "spacecmd-5.0.16-1.61.1.noarch",
"relates_to_product_reference": "SUSE:EL-9:Update:Products:ManagerTools:Update"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64 as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64 as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64"
},
"product_reference": "golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64 as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64 as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64"
},
"product_reference": "golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-1.32.1.aarch64 as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64"
},
"product_reference": "mgrctl-0.1.39-1.32.1.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-1.32.1.ppc64le as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le"
},
"product_reference": "mgrctl-0.1.39-1.32.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-1.32.1.s390x as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x"
},
"product_reference": "mgrctl-0.1.39-1.32.1.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-0.1.39-1.32.1.x86_64 as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64"
},
"product_reference": "mgrctl-0.1.39-1.32.1.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-bash-completion-0.1.39-1.32.1.noarch as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch"
},
"product_reference": "mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mgrctl-zsh-completion-0.1.39-1.32.1.noarch as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch"
},
"product_reference": "mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.aarch64 as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.s390x as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "prometheus-postgres_exporter-0.10.1-1.15.1.x86_64 as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64"
},
"product_reference": "prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "scap-security-guide-redhat-0.1.80-1.44.1.noarch as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch"
},
"product_reference": "scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "spacecmd-5.0.16-1.61.1.noarch as component of SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS",
"product_id": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch"
},
"product_reference": "spacecmd-5.0.16-1.61.1.noarch",
"relates_to_product_reference": "SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2022-21698",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2022-21698"
}
],
"notes": [
{
"category": "general",
"text": "client_golang is the instrumentation library for Go applications in Prometheus, and the promhttp package in client_golang provides tooling around HTTP servers and clients. In client_golang prior to version 1.11.1, HTTP server is susceptible to a Denial of Service through unbounded cardinality, and potential memory exhaustion, when handling requests with non-standard HTTP methods. In order to be affected, an instrumented software must use any of `promhttp.InstrumentHandler*` middleware except `RequestsInFlight`; not filter any specific methods (e.g GET) before middleware; pass metric with `method` label name to our middleware; and not have any firewall/LB/proxy that filters away requests with unknown `method`. client_golang version 1.11.1 contains a patch for this issue. Several workarounds are available, including removing the `method` label name from counter/gauge used in the InstrumentHandler; turning off affected promhttp handlers; adding custom middleware before promhttp handler that will sanitize the request method given by Go http.Request; and using a reverse proxy or web application firewall, configured to only allow a limited set of methods.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2022-21698",
"url": "https://www.suse.com/security/cve/CVE-2022-21698"
},
{
"category": "external",
"summary": "SUSE Bug 1196338 for CVE-2022-21698",
"url": "https://bugzilla.suse.com/1196338"
},
{
"category": "external",
"summary": "SUSE Bug 1248689 for CVE-2022-21698",
"url": "https://bugzilla.suse.com/1248689"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:18:09Z",
"details": "important"
}
],
"title": "CVE-2022-21698"
},
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:18:09Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2025-22870",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22870"
}
],
"notes": [
{
"category": "general",
"text": "Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to \"*.example.com\", a request to \"[::1%25.example.com]:80` will incorrectly match and not be proxied.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22870",
"url": "https://www.suse.com/security/cve/CVE-2025-22870"
},
{
"category": "external",
"summary": "SUSE Bug 1238572 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238572"
},
{
"category": "external",
"summary": "SUSE Bug 1238611 for CVE-2025-22870",
"url": "https://bugzilla.suse.com/1238611"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE Manager Client Tools for RHEL, Liberty and Clones 9-CLIENT-TOOLS:spacecmd-5.0.16-1.61.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-QubitProducts-exporter_exporter-0.4.0-1.9.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:golang-github-prometheus-node_exporter-1.10.2-1.12.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgradm-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrctl-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-0.1.39-1.32.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-bash-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:mgrpxy-zsh-completion-0.1.39-1.32.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.aarch64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.ppc64le",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.s390x",
"SUSE:EL-9:Update:Products:ManagerTools:Update:prometheus-postgres_exporter-0.10.1-1.15.1.x86_64",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-debian-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-redhat-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:scap-security-guide-ubuntu-0.1.80-1.44.1.noarch",
"SUSE:EL-9:Update:Products:ManagerTools:Update:spacecmd-5.0.16-1.61.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-03T14:18:09Z",
"details": "moderate"
}
],
"title": "CVE-2025-22870"
}
]
}
SUSE-SU-2026:2581-1
Vulnerability from csaf_suse - Published: 2026-06-23 13:25 - Updated: 2026-06-23 13:25Summary
Security update for google-guest-agent
Severity
Important
Notes
Title of the patch: Security update for google-guest-agent
Description of the patch: This update for google-guest-agent fixes the following issues:
- CVE-2026-39827: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39828: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39829: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39830: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39831: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39832: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39833: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39834: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-39835: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-42508: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-46595: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-46597: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2026-46598: Update golang.org/x/crypto dependency (bsc#1266171).
- CVE-2024-45337: Update golang.org/x/crypto/ssh dependency (bsc#1234563).
- CVE-2026-39821: Update golang.org/x/net dependency (bsc#1266603).
- CVE-2023-45288: Update golang.org/x/net/http2 dependency (bsc#1236533).
- CVE-2025-22869: Update golang.org/x/crypto dependency (bsc#1239334).
- CVE-2025-22869: Update golang.org/x/crypto dependency (bsc#1253889).
- CVE-2026-33814: Update golang.org/x/net/http2 dependency (bsc#1265762).
- CVE-2026-33186: Update google.golang.org/grpc dependency (bsc#1260264).
- CVE-2026-34986: Fix crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262926).
Bug fixes:
- Update to version 20260402.00 (bsc#1257010).
- Update to version 20250506.01 (bsc#1243254, bsc#1243505).
- Install google_metadata_script_runner_adapt script (bsc#1245759).
- Add -buildmode=pie to go build command line (bsc#1239944).
- Re-enable binary stripping and debuginfo (bsc#1210938).
Patchnames: SUSE-2026-2581,SUSE-SLE-Module-Public-Cloud-12-2026-2581
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.3 (Medium)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.3 (Medium)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.4 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.5 (Medium)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.4 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.7 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
8.1 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
40 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
88 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for google-guest-agent",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for google-guest-agent fixes the following issues:\n\n- CVE-2026-39827: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39828: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39829: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39830: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39831: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39832: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39833: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39834: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-39835: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-42508: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-46595: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-46597: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2026-46598: Update golang.org/x/crypto dependency (bsc#1266171).\n- CVE-2024-45337: Update golang.org/x/crypto/ssh dependency (bsc#1234563).\n- CVE-2026-39821: Update golang.org/x/net dependency (bsc#1266603).\n- CVE-2023-45288: Update golang.org/x/net/http2 dependency (bsc#1236533).\n- CVE-2025-22869: Update golang.org/x/crypto dependency (bsc#1239334).\n- CVE-2025-22869: Update golang.org/x/crypto dependency (bsc#1253889).\n- CVE-2026-33814: Update golang.org/x/net/http2 dependency (bsc#1265762).\n- CVE-2026-33186: Update google.golang.org/grpc dependency (bsc#1260264).\n- CVE-2026-34986: Fix crafted JWE input with a missing encrypted key can lead to a denial of service (bsc#1262926).\n\nBug fixes:\n\n- Update to version 20260402.00 (bsc#1257010).\n- Update to version 20250506.01 (bsc#1243254, bsc#1243505).\n- Install google_metadata_script_runner_adapt script (bsc#1245759).\n- Add -buildmode=pie to go build command line (bsc#1239944).\n- Re-enable binary stripping and debuginfo (bsc#1210938).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2026-2581,SUSE-SLE-Module-Public-Cloud-12-2026-2581",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2026_2581-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2026:2581-1",
"url": "https://www.suse.com/support/update/announcement/2026/suse-su-20262581-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2026:2581-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-June/026965.html"
},
{
"category": "self",
"summary": "SUSE Bug 1210938",
"url": "https://bugzilla.suse.com/1210938"
},
{
"category": "self",
"summary": "SUSE Bug 1234563",
"url": "https://bugzilla.suse.com/1234563"
},
{
"category": "self",
"summary": "SUSE Bug 1236533",
"url": "https://bugzilla.suse.com/1236533"
},
{
"category": "self",
"summary": "SUSE Bug 1239334",
"url": "https://bugzilla.suse.com/1239334"
},
{
"category": "self",
"summary": "SUSE Bug 1239944",
"url": "https://bugzilla.suse.com/1239944"
},
{
"category": "self",
"summary": "SUSE Bug 1243254",
"url": "https://bugzilla.suse.com/1243254"
},
{
"category": "self",
"summary": "SUSE Bug 1243505",
"url": "https://bugzilla.suse.com/1243505"
},
{
"category": "self",
"summary": "SUSE Bug 1245759",
"url": "https://bugzilla.suse.com/1245759"
},
{
"category": "self",
"summary": "SUSE Bug 1253889",
"url": "https://bugzilla.suse.com/1253889"
},
{
"category": "self",
"summary": "SUSE Bug 1257010",
"url": "https://bugzilla.suse.com/1257010"
},
{
"category": "self",
"summary": "SUSE Bug 1260264",
"url": "https://bugzilla.suse.com/1260264"
},
{
"category": "self",
"summary": "SUSE Bug 1262926",
"url": "https://bugzilla.suse.com/1262926"
},
{
"category": "self",
"summary": "SUSE Bug 1265762",
"url": "https://bugzilla.suse.com/1265762"
},
{
"category": "self",
"summary": "SUSE Bug 1266171",
"url": "https://bugzilla.suse.com/1266171"
},
{
"category": "self",
"summary": "SUSE Bug 1266603",
"url": "https://bugzilla.suse.com/1266603"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45288 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45288/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-45337 page",
"url": "https://www.suse.com/security/cve/CVE-2024-45337/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-58181 page",
"url": "https://www.suse.com/security/cve/CVE-2025-58181/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33186 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33186/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-33814 page",
"url": "https://www.suse.com/security/cve/CVE-2026-33814/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-34986 page",
"url": "https://www.suse.com/security/cve/CVE-2026-34986/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39821 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39821/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39827 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39827/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39828 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39828/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39829 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39829/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39830 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39830/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39831 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39831/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39832 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39832/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39833 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39833/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39834 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39834/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-39835 page",
"url": "https://www.suse.com/security/cve/CVE-2026-39835/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-42508 page",
"url": "https://www.suse.com/security/cve/CVE-2026-42508/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46595 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46595/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46597 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46597/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2026-46598 page",
"url": "https://www.suse.com/security/cve/CVE-2026-46598/"
}
],
"title": "Security update for google-guest-agent",
"tracking": {
"current_release_date": "2026-06-23T13:25:47Z",
"generator": {
"date": "2026-06-23T13:25:47Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2026:2581-1",
"initial_release_date": "2026-06-23T13:25:47Z",
"revision_history": [
{
"date": "2026-06-23T13:25:47Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.aarch64",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64",
"product_id": "google-guest-agent-20260529.00-1.61.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.i586",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.i586",
"product_id": "google-guest-agent-20260529.00-1.61.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"product_id": "google-guest-agent-20260529.00-1.61.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.s390x",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x",
"product_id": "google-guest-agent-20260529.00-1.61.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "google-guest-agent-20260529.00-1.61.1.x86_64",
"product": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64",
"product_id": "google-guest-agent-20260529.00-1.61.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product": {
"name": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-public-cloud:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12",
"product": {
"name": "SUSE Linux Enterprise Server 12",
"product_id": "SUSE Linux Enterprise Server 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise High Performance Computing 12",
"product": {
"name": "SUSE Linux Enterprise High Performance Computing 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle_hpc:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP3",
"product_id": "SUSE Linux Enterprise Server 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP4",
"product_id": "SUSE Linux Enterprise Server 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Module for Public Cloud 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise High Performance Computing 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.aarch64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.ppc64le as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.s390x as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "google-guest-agent-20260529.00-1.61.1.x86_64 as component of SUSE Linux Enterprise Module for Public Cloud 12",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64"
},
"product_reference": "google-guest-agent-20260529.00-1.61.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45288"
}
],
"notes": [
{
"category": "general",
"text": "An attacker may cause an HTTP/2 endpoint to read arbitrary amounts of header data by sending an excessive number of CONTINUATION frames. Maintaining HPACK state requires parsing and processing all HEADERS and CONTINUATION frames on a connection. When a request\u0027s headers exceed MaxHeaderBytes, no memory is allocated to store the excess headers, but they are still parsed. This permits an attacker to cause an HTTP/2 endpoint to read arbitrary amounts of header data, all associated with a request which is going to be rejected. These headers can include Huffman-encoded data which is significantly more expensive for the receiver to decode than for an attacker to send. The fix sets a limit on the amount of excess header frames we will process before closing a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45288",
"url": "https://www.suse.com/security/cve/CVE-2023-45288"
},
{
"category": "external",
"summary": "SUSE Bug 1221400 for CVE-2023-45288",
"url": "https://bugzilla.suse.com/1221400"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "moderate"
}
],
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-45337",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-45337"
}
],
"notes": [
{
"category": "general",
"text": "Applications and libraries which misuse connection.serverAuthenticate (via callback field ServerConfig.PublicKeyCallback) may be susceptible to an authorization bypass. The documentation for ServerConfig.PublicKeyCallback says that \"A call to this function does not guarantee that the key offered is in fact used to authenticate.\" Specifically, the SSH protocol allows clients to inquire about whether a public key is acceptable before proving control of the corresponding private key. PublicKeyCallback may be called with multiple keys, and the order in which the keys were provided cannot be used to infer which key the client successfully authenticated with, if any. Some applications, which store the key(s) passed to PublicKeyCallback (or derived information) and make security relevant determinations based on it once the connection is established, may make incorrect assumptions. For example, an attacker may send public keys A and B, and then authenticate with A. PublicKeyCallback would be called only twice, first with A and then with B. A vulnerable application may then make authorization decisions based on key B for which the attacker does not actually control the private key. Since this API is widely misused, as a partial mitigation golang.org/x/cry...@v0.31.0 enforces the property that, when successfully authenticating via public key, the last key passed to ServerConfig.PublicKeyCallback will be the key used to authenticate the connection. PublicKeyCallback will now be called multiple times with the same key, if necessary. Note that the client may still not control the last key passed to PublicKeyCallback if the connection is then authenticated with a different method, such as PasswordCallback, KeyboardInteractiveCallback, or NoClientAuth. Users should be using the Extensions field of the Permissions return value from the various authentication callbacks to record data associated with the authentication attempt instead of referencing external state. Once the connection is established the state corresponding to the successful authentication attempt can be retrieved via the ServerConn.Permissions field. Note that some third-party libraries misuse the Permissions type by sharing it across authentication attempts; users of third-party libraries should refer to the relevant projects for guidance.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-45337",
"url": "https://www.suse.com/security/cve/CVE-2024-45337"
},
{
"category": "external",
"summary": "SUSE Bug 1234482 for CVE-2024-45337",
"url": "https://bugzilla.suse.com/1234482"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2024-45337"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
},
{
"cve": "CVE-2025-58181",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-58181"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers parsing GSSAPI authentication requests do not validate the number of mechanisms specified in the request, allowing an attacker to cause unbounded memory consumption.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-58181",
"url": "https://www.suse.com/security/cve/CVE-2025-58181"
},
{
"category": "external",
"summary": "SUSE Bug 1253784 for CVE-2025-58181",
"url": "https://bugzilla.suse.com/1253784"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "moderate"
}
],
"title": "CVE-2025-58181"
},
{
"cve": "CVE-2026-33186",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33186"
}
],
"notes": [
{
"category": "general",
"text": "gRPC-Go is the Go language implementation of gRPC. Versions prior to 1.79.3 have an authorization bypass resulting from improper input validation of the HTTP/2 `:path` pseudo-header. The gRPC-Go server was too lenient in its routing logic, accepting requests where the `:path` omitted the mandatory leading slash (e.g., `Service/Method` instead of `/Service/Method`). While the server successfully routed these requests to the correct handler, authorization interceptors (including the official `grpc/authz` package) evaluated the raw, non-canonical path string. Consequently, \"deny\" rules defined using canonical paths (starting with `/`) failed to match the incoming request, allowing it to bypass the policy if a fallback \"allow\" rule was present. This affects gRPC-Go servers that use path-based authorization interceptors, such as the official RBAC implementation in `google.golang.org/grpc/authz` or custom interceptors relying on `info.FullMethod` or `grpc.Method(ctx)`; AND that have a security policy contains specific \"deny\" rules for canonical paths but allows other requests by default (a fallback \"allow\" rule). The vulnerability is exploitable by an attacker who can send raw HTTP/2 frames with malformed `:path` headers directly to the gRPC server. The fix in version 1.79.3 ensures that any request with a `:path` that does not start with a leading slash is immediately rejected with a `codes.Unimplemented` error, preventing it from reaching authorization interceptors or handlers with a non-canonical path string. While upgrading is the most secure and recommended path, users can mitigate the vulnerability using one of the following methods: Use a validating interceptor (recommended mitigation); infrastructure-level normalization; and/or policy hardening.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33186",
"url": "https://www.suse.com/security/cve/CVE-2026-33186"
},
{
"category": "external",
"summary": "SUSE Bug 1260085 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1260085"
},
{
"category": "external",
"summary": "SUSE Bug 1268676 for CVE-2026-33186",
"url": "https://bugzilla.suse.com/1268676"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-33186"
},
{
"cve": "CVE-2026-33814",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-33814"
}
],
"notes": [
{
"category": "general",
"text": "When processing HTTP/2 SETTINGS frames, transport will enter an infinite loop of writing CONTINUATION frames if it receives a SETTINGS_MAX_FRAME_SIZE with a value of 0.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-33814",
"url": "https://www.suse.com/security/cve/CVE-2026-33814"
},
{
"category": "external",
"summary": "SUSE Bug 1264506 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1264506"
},
{
"category": "external",
"summary": "SUSE Bug 1268758 for CVE-2026-33814",
"url": "https://bugzilla.suse.com/1268758"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-33814"
},
{
"cve": "CVE-2026-34986",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-34986"
}
],
"notes": [
{
"category": "general",
"text": "Go JOSE provides an implementation of the Javascript Object Signing and Encryption set of standards in Go, including support for JSON Web Encryption (JWE), JSON Web Signature (JWS), and JSON Web Token (JWT) standards. Prior to 4.1.4 and 3.0.5, decrypting a JSON Web Encryption (JWE) object will panic if the alg field indicates a key wrapping algorithm (one ending in KW, with the exception of A128GCMKW, A192GCMKW, and A256GCMKW) and the encrypted_key field is empty. The panic happens when cipher.KeyUnwrap() in key_wrap.go attempts to allocate a slice with a zero or negative length based on the length of the encrypted_key. This code path is reachable from ParseEncrypted() / ParseEncryptedJSON() / ParseEncryptedCompact() followed by Decrypt() on the resulting object. Note that the parse functions take a list of accepted key algorithms. If the accepted key algorithms do not include any key wrapping algorithms, parsing will fail and the application will be unaffected. This panic is also reachable by calling cipher.KeyUnwrap() directly with any ciphertext parameter less than 16 bytes long, but calling this function directly is less common. Panics can lead to denial of service. This vulnerability is fixed in 4.1.4 and 3.0.5.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-34986",
"url": "https://www.suse.com/security/cve/CVE-2026-34986"
},
{
"category": "external",
"summary": "SUSE Bug 1262805 for CVE-2026-34986",
"url": "https://bugzilla.suse.com/1262805"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-34986"
},
{
"cve": "CVE-2026-39821",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39821"
}
],
"notes": [
{
"category": "general",
"text": "The ToASCII and ToUnicode functions incorrectly accept Punycode-encoded labels that decode to an ASCII-only label. For example, ToUnicode(\"xn--example-.com\") incorrectly returns the name \"example.com\" rather than an error. This behavior can lead to privilege escalation in programs using the idna package. For example, a program which performs privilege checks on the ASCII hostname may reject \"example.com\" but permit \"xn--example-.com\". If that program subsequently converts the ASCII hostname to Unicode, it will inadvertently permits access to the Unicode name \"example.com\".",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39821",
"url": "https://www.suse.com/security/cve/CVE-2026-39821"
},
{
"category": "external",
"summary": "SUSE Bug 1266474 for CVE-2026-39821",
"url": "https://bugzilla.suse.com/1266474"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39821"
},
{
"cve": "CVE-2026-39827",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39827"
}
],
"notes": [
{
"category": "general",
"text": "An authenticated SSH client that repeatedly opened channels which were rejected by the server caused unbounded memory growth, eventually crashing the server process and affecting all connected users. Rejected channels are now properly removed from the connection\u0027s internal state and released for garbage collection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39827",
"url": "https://www.suse.com/security/cve/CVE-2026-39827"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39827",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39827"
},
{
"cve": "CVE-2026-39828",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39828"
}
],
"notes": [
{
"category": "general",
"text": "When an SSH server authentication callback returned PartialSuccessError with non-nil Permissions, those permissions were silently discarded, potentially dropping certificate restrictions such as force-command after a second factor succeeded. Returning non-nil Permissions with PartialSuccessError now results in a connection error.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39828",
"url": "https://www.suse.com/security/cve/CVE-2026-39828"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39828",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39828"
},
{
"cve": "CVE-2026-39829",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39829"
}
],
"notes": [
{
"category": "general",
"text": "The RSA and DSA public key parsers did not enforce size limits on key parameters. A crafted public key with an excessively large modulus or DSA parameter could cause several minutes of CPU consumption during signature verification. This could be triggered by unauthenticated clients during public key authentication. RSA moduli are now limited to 8192 bits, and DSA parameters are validated per FIPS 186-2.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39829",
"url": "https://www.suse.com/security/cve/CVE-2026-39829"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39829",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39829"
},
{
"cve": "CVE-2026-39830",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39830"
}
],
"notes": [
{
"category": "general",
"text": "A malicious SSH peer could send unsolicited global request responses to fill an internal buffer, blocking the connection\u0027s read loop. The blocked goroutine could not be released by calling Close(), resulting in a resource leak per connection. Unsolicited global responses are now discarded.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39830",
"url": "https://www.suse.com/security/cve/CVE-2026-39830"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39830",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39830"
},
{
"cve": "CVE-2026-39831",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39831"
}
],
"notes": [
{
"category": "general",
"text": "The Verify() method for FIDO/U2F security key types (sk-ecdsa-sha2-nistp256@openssh.com, sk-ssh-ed25519@openssh.com) did not check the User Presence flag. Signatures generated without physical touch were accepted, allowing unattended use of a hardware security key. To restore the previous behavior, return a \"no-touch-required\" extension in Permissions.Extensions from PublicKeyCallback.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39831",
"url": "https://www.suse.com/security/cve/CVE-2026-39831"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39831",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39831"
},
{
"cve": "CVE-2026-39832",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39832"
}
],
"notes": [
{
"category": "general",
"text": "When adding a key to a remote agent constraint extensions such as restrict-destination-v00@openssh.com were not serialized in the request. Destination restrictions were silently stripped when forwarding keys, allowing unrestricted use of the key on the remote host. The client now serializes all constraint extensions. Additionally, the in-memory keyring returned by NewKeyring() now rejects keys with unsupported constraint extensions instead of silently ignoring them.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39832",
"url": "https://www.suse.com/security/cve/CVE-2026-39832"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39832",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39832"
},
{
"cve": "CVE-2026-39833",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39833"
}
],
"notes": [
{
"category": "general",
"text": "The in-memory keyring returned by NewKeyring() silently accepted keys with the ConfirmBeforeUse constraint but never enforced it. The key would sign without any confirmation prompt, with no indication to the caller that the constraint was not in effect. NewKeyring() now returns an error when unsupported constraints are requested.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39833",
"url": "https://www.suse.com/security/cve/CVE-2026-39833"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39833",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39833"
},
{
"cve": "CVE-2026-39834",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39834"
}
],
"notes": [
{
"category": "general",
"text": "When writing data larger than 4GB in a single Write call on an SSH channel, an integer overflow in the internal payload size calculation caused the write loop to spin indefinitely, sending empty packets without making progress. The size comparison now uses int64 to prevent truncation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39834",
"url": "https://www.suse.com/security/cve/CVE-2026-39834"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39834",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39834"
},
{
"cve": "CVE-2026-39835",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-39835"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which use CertChecker as a public key callback without setting IsUserAuthority or IsHostAuthority could be caused to panic by a client presenting a certificate. CertChecker now returns an error instead of panicking when these callbacks are nil.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-39835",
"url": "https://www.suse.com/security/cve/CVE-2026-39835"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-39835",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-39835"
},
{
"cve": "CVE-2026-42508",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-42508"
}
],
"notes": [
{
"category": "general",
"text": "Previously, a revoked \u0027SignatureKey\u0027 belonging to a CA was not correctly checked for revocation. Now, both the \u0027key\u0027 and \u0027key.SignatureKey\u0027 are checked for @revoked.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-42508",
"url": "https://www.suse.com/security/cve/CVE-2026-42508"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-42508",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-42508"
},
{
"cve": "CVE-2026-46595",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46595"
}
],
"notes": [
{
"category": "general",
"text": "Previously, CVE-2024-45337 fixed an authorization bypass for misused ssh server configurations; if any other type of callback is passed other than public key, then the source-address validation would be skipped.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46595",
"url": "https://www.suse.com/security/cve/CVE-2026-46595"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46595",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-46595"
},
{
"cve": "CVE-2026-46597",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46597"
}
],
"notes": [
{
"category": "general",
"text": "An incorrectly placed cast from bytes to int allowed for server-side panic in the AES-GCM packet decoder for well-crafted inputs.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46597",
"url": "https://www.suse.com/security/cve/CVE-2026-46597"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46597",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-46597"
},
{
"cve": "CVE-2026-46598",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2026-46598"
}
],
"notes": [
{
"category": "general",
"text": "For certain crafted inputs, a \u0027ed25519.PrivateKey\u0027 was created by casting malformed wire bytes, leading to a panic when used.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2026-46598",
"url": "https://www.suse.com/security/cve/CVE-2026-46598"
},
{
"category": "external",
"summary": "SUSE Bug 1266049 for CVE-2026-46598",
"url": "https://bugzilla.suse.com/1266049"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise High Performance Computing 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Module for Public Cloud 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server 12:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP3:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP4:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:google-guest-agent-20260529.00-1.61.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.aarch64",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.ppc64le",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.s390x",
"SUSE Linux Enterprise Server for SAP Applications 12:google-guest-agent-20260529.00-1.61.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2026-06-23T13:25:47Z",
"details": "important"
}
],
"title": "CVE-2026-46598"
}
]
}
WID-SEC-W-2024-0789
Vulnerability from csaf_certbund - Published: 2024-04-03 22:00 - Updated: 2026-06-17 22:00Summary
HTTP/2: Mehrere Schwachstellen ermöglichen Denial of Service
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: http/2 ist das HyperText Transfer Protocol in Version 2.
Angriff: Ein entfernter, anonymer Angreifer kann eine Schwachstellen in verschiedenen http/2 Implementierungen ausnutzen, um einen Denial of Service Angriff durchzuführen.
Betroffene Betriebssysteme: - Appliance
- Linux
- Sonstiges
- UNIX
- Windows
Affected products
Known affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source nghttp2
Open Source
|
cpe:/a:nghttp2:nghttp2:-
|
— | |
|
Arista EOS
Arista
|
cpe:/o:arista:arista_eos:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform 4.14
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.14.4
|
Container Platform 4.14 | |
|
IBM QRadar SIEM <7.5.0 UP9
IBM / QRadar SIEM
|
<7.5.0 UP9 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Golang Go <1.22.2
Golang / Go
|
<1.22.2 | ||
|
Specification http/2
Specification
|
cpe:/a:ietf:http2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.14.24
Red Hat / OpenShift
|
Container Platform <4.14.24 | ||
|
IBM QRadar SIEM <7.5.0 UP10 IF01
IBM / QRadar SIEM
|
<7.5.0 UP10 IF01 | ||
|
Red Hat OpenShift Container Platform <4.15.12
Red Hat / OpenShift
|
Container Platform <4.15.12 | ||
|
Apache Traffic Server <9.2.4
Apache / Traffic Server
|
<9.2.4 | ||
|
IBM SAN Volume Controller
IBM
|
cpe:/a:ibm:san_volume_controller:-
|
— | |
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
IBM Rational Build Forge <8.0.0.27
IBM / Rational Build Forge
|
<8.0.0.27 | ||
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
IBM FlashSystem
IBM
|
cpe:/a:ibm:flashsystem:-
|
— | |
|
Apache HTTP Server <2.4.59
Apache / HTTP Server
|
<2.4.59 | ||
|
IBM DataPower Gateway <10.6.0.0
IBM / DataPower Gateway
|
<10.6.0.0 | ||
|
IBM Power Hardware Management Console v10
IBM / Power Hardware Management Console
|
cpe:/a:ibm:hardware_management_console:v10
|
v10 | |
|
Red Hat OpenShift Container Platform <4.15.14
Red Hat / OpenShift
|
Container Platform <4.15.14 | ||
|
Xerox FreeFlow Print Server v9 for Solaris
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9_for_solaris
|
v9 for Solaris | |
|
IBM DataPower Gateway <10.5.0.12
IBM / DataPower Gateway
|
<10.5.0.12 | ||
|
IBM MQ Operator <3.1.3
IBM / MQ
|
Operator <3.1.3 | ||
|
IBM MQ Operator <2.0.22 LTS
IBM / MQ
|
Operator <2.0.22 LTS | ||
|
Splunk Splunk Enterprise <9.3.1
Splunk / Splunk Enterprise
|
<9.3.1 | ||
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
IBM Spectrum Protect Plus <10.1.16.2
IBM / Spectrum Protect Plus
|
<10.1.16.2 | ||
|
Splunk Splunk Enterprise <9.2.3
Splunk / Splunk Enterprise
|
<9.2.3 | ||
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Splunk Splunk Enterprise <9.1.6
Splunk / Splunk Enterprise
|
<9.1.6 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Apache Traffic Server <8.1.10
Apache / Traffic Server
|
<8.1.10 | ||
|
IBM App Connect Enterprise
IBM
|
cpe:/a:ibm:app_connect_enterprise:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15
Red Hat / OpenShift
|
Container Platform <4.15 | ||
|
IBM Storwize
IBM
|
cpe:/a:ibm:storwize:-
|
— | |
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Dell NetWorker <19.10.0.5
Dell / NetWorker
|
<19.10.0.5 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
HPE HP-UX <11.31
HPE / HP-UX
|
<11.31 | ||
|
Red Hat OpenShift Virtualization 4.13
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:virtualization_4.13
|
Virtualization 4.13 |
Affected products
Known affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source nghttp2
Open Source
|
cpe:/a:nghttp2:nghttp2:-
|
— | |
|
Arista EOS
Arista
|
cpe:/o:arista:arista_eos:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform 4.14
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.14.4
|
Container Platform 4.14 | |
|
IBM QRadar SIEM <7.5.0 UP9
IBM / QRadar SIEM
|
<7.5.0 UP9 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Golang Go <1.22.2
Golang / Go
|
<1.22.2 | ||
|
Specification http/2
Specification
|
cpe:/a:ietf:http2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.14.24
Red Hat / OpenShift
|
Container Platform <4.14.24 | ||
|
IBM QRadar SIEM <7.5.0 UP10 IF01
IBM / QRadar SIEM
|
<7.5.0 UP10 IF01 | ||
|
Red Hat OpenShift Container Platform <4.15.12
Red Hat / OpenShift
|
Container Platform <4.15.12 | ||
|
Apache Traffic Server <9.2.4
Apache / Traffic Server
|
<9.2.4 | ||
|
IBM SAN Volume Controller
IBM
|
cpe:/a:ibm:san_volume_controller:-
|
— | |
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
IBM Rational Build Forge <8.0.0.27
IBM / Rational Build Forge
|
<8.0.0.27 | ||
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
IBM FlashSystem
IBM
|
cpe:/a:ibm:flashsystem:-
|
— | |
|
Apache HTTP Server <2.4.59
Apache / HTTP Server
|
<2.4.59 | ||
|
IBM DataPower Gateway <10.6.0.0
IBM / DataPower Gateway
|
<10.6.0.0 | ||
|
IBM Power Hardware Management Console v10
IBM / Power Hardware Management Console
|
cpe:/a:ibm:hardware_management_console:v10
|
v10 | |
|
Red Hat OpenShift Container Platform <4.15.14
Red Hat / OpenShift
|
Container Platform <4.15.14 | ||
|
Xerox FreeFlow Print Server v9 for Solaris
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9_for_solaris
|
v9 for Solaris | |
|
IBM DataPower Gateway <10.5.0.12
IBM / DataPower Gateway
|
<10.5.0.12 | ||
|
IBM MQ Operator <3.1.3
IBM / MQ
|
Operator <3.1.3 | ||
|
IBM MQ Operator <2.0.22 LTS
IBM / MQ
|
Operator <2.0.22 LTS | ||
|
Splunk Splunk Enterprise <9.3.1
Splunk / Splunk Enterprise
|
<9.3.1 | ||
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
IBM Spectrum Protect Plus <10.1.16.2
IBM / Spectrum Protect Plus
|
<10.1.16.2 | ||
|
Splunk Splunk Enterprise <9.2.3
Splunk / Splunk Enterprise
|
<9.2.3 | ||
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Splunk Splunk Enterprise <9.1.6
Splunk / Splunk Enterprise
|
<9.1.6 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Apache Traffic Server <8.1.10
Apache / Traffic Server
|
<8.1.10 | ||
|
IBM App Connect Enterprise
IBM
|
cpe:/a:ibm:app_connect_enterprise:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15
Red Hat / OpenShift
|
Container Platform <4.15 | ||
|
IBM Storwize
IBM
|
cpe:/a:ibm:storwize:-
|
— | |
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Dell NetWorker <19.10.0.5
Dell / NetWorker
|
<19.10.0.5 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
HPE HP-UX <11.31
HPE / HP-UX
|
<11.31 | ||
|
Red Hat OpenShift Virtualization 4.13
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:virtualization_4.13
|
Virtualization 4.13 |
Affected products
Known affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source nghttp2
Open Source
|
cpe:/a:nghttp2:nghttp2:-
|
— | |
|
Arista EOS
Arista
|
cpe:/o:arista:arista_eos:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform 4.14
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.14.4
|
Container Platform 4.14 | |
|
IBM QRadar SIEM <7.5.0 UP9
IBM / QRadar SIEM
|
<7.5.0 UP9 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Golang Go <1.22.2
Golang / Go
|
<1.22.2 | ||
|
Specification http/2
Specification
|
cpe:/a:ietf:http2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.14.24
Red Hat / OpenShift
|
Container Platform <4.14.24 | ||
|
IBM QRadar SIEM <7.5.0 UP10 IF01
IBM / QRadar SIEM
|
<7.5.0 UP10 IF01 | ||
|
Red Hat OpenShift Container Platform <4.15.12
Red Hat / OpenShift
|
Container Platform <4.15.12 | ||
|
Apache Traffic Server <9.2.4
Apache / Traffic Server
|
<9.2.4 | ||
|
IBM SAN Volume Controller
IBM
|
cpe:/a:ibm:san_volume_controller:-
|
— | |
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
IBM Rational Build Forge <8.0.0.27
IBM / Rational Build Forge
|
<8.0.0.27 | ||
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
IBM FlashSystem
IBM
|
cpe:/a:ibm:flashsystem:-
|
— | |
|
Apache HTTP Server <2.4.59
Apache / HTTP Server
|
<2.4.59 | ||
|
IBM DataPower Gateway <10.6.0.0
IBM / DataPower Gateway
|
<10.6.0.0 | ||
|
IBM Power Hardware Management Console v10
IBM / Power Hardware Management Console
|
cpe:/a:ibm:hardware_management_console:v10
|
v10 | |
|
Red Hat OpenShift Container Platform <4.15.14
Red Hat / OpenShift
|
Container Platform <4.15.14 | ||
|
Xerox FreeFlow Print Server v9 for Solaris
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9_for_solaris
|
v9 for Solaris | |
|
IBM DataPower Gateway <10.5.0.12
IBM / DataPower Gateway
|
<10.5.0.12 | ||
|
IBM MQ Operator <3.1.3
IBM / MQ
|
Operator <3.1.3 | ||
|
IBM MQ Operator <2.0.22 LTS
IBM / MQ
|
Operator <2.0.22 LTS | ||
|
Splunk Splunk Enterprise <9.3.1
Splunk / Splunk Enterprise
|
<9.3.1 | ||
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
IBM Spectrum Protect Plus <10.1.16.2
IBM / Spectrum Protect Plus
|
<10.1.16.2 | ||
|
Splunk Splunk Enterprise <9.2.3
Splunk / Splunk Enterprise
|
<9.2.3 | ||
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Splunk Splunk Enterprise <9.1.6
Splunk / Splunk Enterprise
|
<9.1.6 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Apache Traffic Server <8.1.10
Apache / Traffic Server
|
<8.1.10 | ||
|
IBM App Connect Enterprise
IBM
|
cpe:/a:ibm:app_connect_enterprise:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15
Red Hat / OpenShift
|
Container Platform <4.15 | ||
|
IBM Storwize
IBM
|
cpe:/a:ibm:storwize:-
|
— | |
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Dell NetWorker <19.10.0.5
Dell / NetWorker
|
<19.10.0.5 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
HPE HP-UX <11.31
HPE / HP-UX
|
<11.31 | ||
|
Red Hat OpenShift Virtualization 4.13
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:virtualization_4.13
|
Virtualization 4.13 |
Affected products
Known affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source nghttp2
Open Source
|
cpe:/a:nghttp2:nghttp2:-
|
— | |
|
Arista EOS
Arista
|
cpe:/o:arista:arista_eos:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform 4.14
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.14.4
|
Container Platform 4.14 | |
|
IBM QRadar SIEM <7.5.0 UP9
IBM / QRadar SIEM
|
<7.5.0 UP9 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Golang Go <1.22.2
Golang / Go
|
<1.22.2 | ||
|
Specification http/2
Specification
|
cpe:/a:ietf:http2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.14.24
Red Hat / OpenShift
|
Container Platform <4.14.24 | ||
|
IBM QRadar SIEM <7.5.0 UP10 IF01
IBM / QRadar SIEM
|
<7.5.0 UP10 IF01 | ||
|
Red Hat OpenShift Container Platform <4.15.12
Red Hat / OpenShift
|
Container Platform <4.15.12 | ||
|
Apache Traffic Server <9.2.4
Apache / Traffic Server
|
<9.2.4 | ||
|
IBM SAN Volume Controller
IBM
|
cpe:/a:ibm:san_volume_controller:-
|
— | |
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
IBM Rational Build Forge <8.0.0.27
IBM / Rational Build Forge
|
<8.0.0.27 | ||
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
IBM FlashSystem
IBM
|
cpe:/a:ibm:flashsystem:-
|
— | |
|
Apache HTTP Server <2.4.59
Apache / HTTP Server
|
<2.4.59 | ||
|
IBM DataPower Gateway <10.6.0.0
IBM / DataPower Gateway
|
<10.6.0.0 | ||
|
IBM Power Hardware Management Console v10
IBM / Power Hardware Management Console
|
cpe:/a:ibm:hardware_management_console:v10
|
v10 | |
|
Red Hat OpenShift Container Platform <4.15.14
Red Hat / OpenShift
|
Container Platform <4.15.14 | ||
|
Xerox FreeFlow Print Server v9 for Solaris
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9_for_solaris
|
v9 for Solaris | |
|
IBM DataPower Gateway <10.5.0.12
IBM / DataPower Gateway
|
<10.5.0.12 | ||
|
IBM MQ Operator <3.1.3
IBM / MQ
|
Operator <3.1.3 | ||
|
IBM MQ Operator <2.0.22 LTS
IBM / MQ
|
Operator <2.0.22 LTS | ||
|
Splunk Splunk Enterprise <9.3.1
Splunk / Splunk Enterprise
|
<9.3.1 | ||
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
IBM Spectrum Protect Plus <10.1.16.2
IBM / Spectrum Protect Plus
|
<10.1.16.2 | ||
|
Splunk Splunk Enterprise <9.2.3
Splunk / Splunk Enterprise
|
<9.2.3 | ||
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Splunk Splunk Enterprise <9.1.6
Splunk / Splunk Enterprise
|
<9.1.6 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Apache Traffic Server <8.1.10
Apache / Traffic Server
|
<8.1.10 | ||
|
IBM App Connect Enterprise
IBM
|
cpe:/a:ibm:app_connect_enterprise:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15
Red Hat / OpenShift
|
Container Platform <4.15 | ||
|
IBM Storwize
IBM
|
cpe:/a:ibm:storwize:-
|
— | |
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Dell NetWorker <19.10.0.5
Dell / NetWorker
|
<19.10.0.5 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
HPE HP-UX <11.31
HPE / HP-UX
|
<11.31 | ||
|
Red Hat OpenShift Virtualization 4.13
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:virtualization_4.13
|
Virtualization 4.13 |
Affected products
Known affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source nghttp2
Open Source
|
cpe:/a:nghttp2:nghttp2:-
|
— | |
|
Arista EOS
Arista
|
cpe:/o:arista:arista_eos:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform 4.14
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.14.4
|
Container Platform 4.14 | |
|
IBM QRadar SIEM <7.5.0 UP9
IBM / QRadar SIEM
|
<7.5.0 UP9 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Golang Go <1.22.2
Golang / Go
|
<1.22.2 | ||
|
Specification http/2
Specification
|
cpe:/a:ietf:http2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.14.24
Red Hat / OpenShift
|
Container Platform <4.14.24 | ||
|
IBM QRadar SIEM <7.5.0 UP10 IF01
IBM / QRadar SIEM
|
<7.5.0 UP10 IF01 | ||
|
Red Hat OpenShift Container Platform <4.15.12
Red Hat / OpenShift
|
Container Platform <4.15.12 | ||
|
Apache Traffic Server <9.2.4
Apache / Traffic Server
|
<9.2.4 | ||
|
IBM SAN Volume Controller
IBM
|
cpe:/a:ibm:san_volume_controller:-
|
— | |
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
IBM Rational Build Forge <8.0.0.27
IBM / Rational Build Forge
|
<8.0.0.27 | ||
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
IBM FlashSystem
IBM
|
cpe:/a:ibm:flashsystem:-
|
— | |
|
Apache HTTP Server <2.4.59
Apache / HTTP Server
|
<2.4.59 | ||
|
IBM DataPower Gateway <10.6.0.0
IBM / DataPower Gateway
|
<10.6.0.0 | ||
|
IBM Power Hardware Management Console v10
IBM / Power Hardware Management Console
|
cpe:/a:ibm:hardware_management_console:v10
|
v10 | |
|
Red Hat OpenShift Container Platform <4.15.14
Red Hat / OpenShift
|
Container Platform <4.15.14 | ||
|
Xerox FreeFlow Print Server v9 for Solaris
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9_for_solaris
|
v9 for Solaris | |
|
IBM DataPower Gateway <10.5.0.12
IBM / DataPower Gateway
|
<10.5.0.12 | ||
|
IBM MQ Operator <3.1.3
IBM / MQ
|
Operator <3.1.3 | ||
|
IBM MQ Operator <2.0.22 LTS
IBM / MQ
|
Operator <2.0.22 LTS | ||
|
Splunk Splunk Enterprise <9.3.1
Splunk / Splunk Enterprise
|
<9.3.1 | ||
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
IBM Spectrum Protect Plus <10.1.16.2
IBM / Spectrum Protect Plus
|
<10.1.16.2 | ||
|
Splunk Splunk Enterprise <9.2.3
Splunk / Splunk Enterprise
|
<9.2.3 | ||
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Splunk Splunk Enterprise <9.1.6
Splunk / Splunk Enterprise
|
<9.1.6 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Apache Traffic Server <8.1.10
Apache / Traffic Server
|
<8.1.10 | ||
|
IBM App Connect Enterprise
IBM
|
cpe:/a:ibm:app_connect_enterprise:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15
Red Hat / OpenShift
|
Container Platform <4.15 | ||
|
IBM Storwize
IBM
|
cpe:/a:ibm:storwize:-
|
— | |
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Dell NetWorker <19.10.0.5
Dell / NetWorker
|
<19.10.0.5 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
HPE HP-UX <11.31
HPE / HP-UX
|
<11.31 | ||
|
Red Hat OpenShift Virtualization 4.13
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:virtualization_4.13
|
Virtualization 4.13 |
Affected products
Known affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source nghttp2
Open Source
|
cpe:/a:nghttp2:nghttp2:-
|
— | |
|
Arista EOS
Arista
|
cpe:/o:arista:arista_eos:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform 4.14
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.14.4
|
Container Platform 4.14 | |
|
IBM QRadar SIEM <7.5.0 UP9
IBM / QRadar SIEM
|
<7.5.0 UP9 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Golang Go <1.22.2
Golang / Go
|
<1.22.2 | ||
|
Specification http/2
Specification
|
cpe:/a:ietf:http2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.14.24
Red Hat / OpenShift
|
Container Platform <4.14.24 | ||
|
IBM QRadar SIEM <7.5.0 UP10 IF01
IBM / QRadar SIEM
|
<7.5.0 UP10 IF01 | ||
|
Red Hat OpenShift Container Platform <4.15.12
Red Hat / OpenShift
|
Container Platform <4.15.12 | ||
|
Apache Traffic Server <9.2.4
Apache / Traffic Server
|
<9.2.4 | ||
|
IBM SAN Volume Controller
IBM
|
cpe:/a:ibm:san_volume_controller:-
|
— | |
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
IBM Rational Build Forge <8.0.0.27
IBM / Rational Build Forge
|
<8.0.0.27 | ||
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
IBM FlashSystem
IBM
|
cpe:/a:ibm:flashsystem:-
|
— | |
|
Apache HTTP Server <2.4.59
Apache / HTTP Server
|
<2.4.59 | ||
|
IBM DataPower Gateway <10.6.0.0
IBM / DataPower Gateway
|
<10.6.0.0 | ||
|
IBM Power Hardware Management Console v10
IBM / Power Hardware Management Console
|
cpe:/a:ibm:hardware_management_console:v10
|
v10 | |
|
Red Hat OpenShift Container Platform <4.15.14
Red Hat / OpenShift
|
Container Platform <4.15.14 | ||
|
Xerox FreeFlow Print Server v9 for Solaris
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9_for_solaris
|
v9 for Solaris | |
|
IBM DataPower Gateway <10.5.0.12
IBM / DataPower Gateway
|
<10.5.0.12 | ||
|
IBM MQ Operator <3.1.3
IBM / MQ
|
Operator <3.1.3 | ||
|
IBM MQ Operator <2.0.22 LTS
IBM / MQ
|
Operator <2.0.22 LTS | ||
|
Splunk Splunk Enterprise <9.3.1
Splunk / Splunk Enterprise
|
<9.3.1 | ||
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
IBM Spectrum Protect Plus <10.1.16.2
IBM / Spectrum Protect Plus
|
<10.1.16.2 | ||
|
Splunk Splunk Enterprise <9.2.3
Splunk / Splunk Enterprise
|
<9.2.3 | ||
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Splunk Splunk Enterprise <9.1.6
Splunk / Splunk Enterprise
|
<9.1.6 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Apache Traffic Server <8.1.10
Apache / Traffic Server
|
<8.1.10 | ||
|
IBM App Connect Enterprise
IBM
|
cpe:/a:ibm:app_connect_enterprise:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15
Red Hat / OpenShift
|
Container Platform <4.15 | ||
|
IBM Storwize
IBM
|
cpe:/a:ibm:storwize:-
|
— | |
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Dell NetWorker <19.10.0.5
Dell / NetWorker
|
<19.10.0.5 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
HPE HP-UX <11.31
HPE / HP-UX
|
<11.31 | ||
|
Red Hat OpenShift Virtualization 4.13
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:virtualization_4.13
|
Virtualization 4.13 |
Affected products
Known affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source nghttp2
Open Source
|
cpe:/a:nghttp2:nghttp2:-
|
— | |
|
Arista EOS
Arista
|
cpe:/o:arista:arista_eos:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform 4.14
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.14.4
|
Container Platform 4.14 | |
|
IBM QRadar SIEM <7.5.0 UP9
IBM / QRadar SIEM
|
<7.5.0 UP9 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Golang Go <1.22.2
Golang / Go
|
<1.22.2 | ||
|
Specification http/2
Specification
|
cpe:/a:ietf:http2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.14.24
Red Hat / OpenShift
|
Container Platform <4.14.24 | ||
|
IBM QRadar SIEM <7.5.0 UP10 IF01
IBM / QRadar SIEM
|
<7.5.0 UP10 IF01 | ||
|
Red Hat OpenShift Container Platform <4.15.12
Red Hat / OpenShift
|
Container Platform <4.15.12 | ||
|
Apache Traffic Server <9.2.4
Apache / Traffic Server
|
<9.2.4 | ||
|
IBM SAN Volume Controller
IBM
|
cpe:/a:ibm:san_volume_controller:-
|
— | |
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
IBM Rational Build Forge <8.0.0.27
IBM / Rational Build Forge
|
<8.0.0.27 | ||
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
IBM FlashSystem
IBM
|
cpe:/a:ibm:flashsystem:-
|
— | |
|
Apache HTTP Server <2.4.59
Apache / HTTP Server
|
<2.4.59 | ||
|
IBM DataPower Gateway <10.6.0.0
IBM / DataPower Gateway
|
<10.6.0.0 | ||
|
IBM Power Hardware Management Console v10
IBM / Power Hardware Management Console
|
cpe:/a:ibm:hardware_management_console:v10
|
v10 | |
|
Red Hat OpenShift Container Platform <4.15.14
Red Hat / OpenShift
|
Container Platform <4.15.14 | ||
|
Xerox FreeFlow Print Server v9 for Solaris
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9_for_solaris
|
v9 for Solaris | |
|
IBM DataPower Gateway <10.5.0.12
IBM / DataPower Gateway
|
<10.5.0.12 | ||
|
IBM MQ Operator <3.1.3
IBM / MQ
|
Operator <3.1.3 | ||
|
IBM MQ Operator <2.0.22 LTS
IBM / MQ
|
Operator <2.0.22 LTS | ||
|
Splunk Splunk Enterprise <9.3.1
Splunk / Splunk Enterprise
|
<9.3.1 | ||
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
IBM Spectrum Protect Plus <10.1.16.2
IBM / Spectrum Protect Plus
|
<10.1.16.2 | ||
|
Splunk Splunk Enterprise <9.2.3
Splunk / Splunk Enterprise
|
<9.2.3 | ||
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Splunk Splunk Enterprise <9.1.6
Splunk / Splunk Enterprise
|
<9.1.6 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Apache Traffic Server <8.1.10
Apache / Traffic Server
|
<8.1.10 | ||
|
IBM App Connect Enterprise
IBM
|
cpe:/a:ibm:app_connect_enterprise:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15
Red Hat / OpenShift
|
Container Platform <4.15 | ||
|
IBM Storwize
IBM
|
cpe:/a:ibm:storwize:-
|
— | |
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Dell NetWorker <19.10.0.5
Dell / NetWorker
|
<19.10.0.5 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
HPE HP-UX <11.31
HPE / HP-UX
|
<11.31 | ||
|
Red Hat OpenShift Virtualization 4.13
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:virtualization_4.13
|
Virtualization 4.13 |
Affected products
Known affected
48 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source nghttp2
Open Source
|
cpe:/a:nghttp2:nghttp2:-
|
— | |
|
Arista EOS
Arista
|
cpe:/o:arista:arista_eos:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform 4.14
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:container_platform_4.14.4
|
Container Platform 4.14 | |
|
IBM QRadar SIEM <7.5.0 UP9
IBM / QRadar SIEM
|
<7.5.0 UP9 | ||
|
IBM MQ Operator
IBM / MQ
|
cpe:/a:ibm:mq:operator
|
Operator | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— | |
|
Golang Go <1.22.2
Golang / Go
|
<1.22.2 | ||
|
Specification http/2
Specification
|
cpe:/a:ietf:http2:-
|
— | |
|
Red Hat OpenShift Container Platform <4.14.24
Red Hat / OpenShift
|
Container Platform <4.14.24 | ||
|
IBM QRadar SIEM <7.5.0 UP10 IF01
IBM / QRadar SIEM
|
<7.5.0 UP10 IF01 | ||
|
Red Hat OpenShift Container Platform <4.15.12
Red Hat / OpenShift
|
Container Platform <4.15.12 | ||
|
Apache Traffic Server <9.2.4
Apache / Traffic Server
|
<9.2.4 | ||
|
IBM SAN Volume Controller
IBM
|
cpe:/a:ibm:san_volume_controller:-
|
— | |
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
IBM Rational Build Forge <8.0.0.27
IBM / Rational Build Forge
|
<8.0.0.27 | ||
|
Dell NetWorker
Dell / NetWorker
|
cpe:/a:dell:networker:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
IBM FlashSystem
IBM
|
cpe:/a:ibm:flashsystem:-
|
— | |
|
Apache HTTP Server <2.4.59
Apache / HTTP Server
|
<2.4.59 | ||
|
IBM DataPower Gateway <10.6.0.0
IBM / DataPower Gateway
|
<10.6.0.0 | ||
|
IBM Power Hardware Management Console v10
IBM / Power Hardware Management Console
|
cpe:/a:ibm:hardware_management_console:v10
|
v10 | |
|
Red Hat OpenShift Container Platform <4.15.14
Red Hat / OpenShift
|
Container Platform <4.15.14 | ||
|
Xerox FreeFlow Print Server v9 for Solaris
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9_for_solaris
|
v9 for Solaris | |
|
IBM DataPower Gateway <10.5.0.12
IBM / DataPower Gateway
|
<10.5.0.12 | ||
|
IBM MQ Operator <3.1.3
IBM / MQ
|
Operator <3.1.3 | ||
|
IBM MQ Operator <2.0.22 LTS
IBM / MQ
|
Operator <2.0.22 LTS | ||
|
Splunk Splunk Enterprise <9.3.1
Splunk / Splunk Enterprise
|
<9.3.1 | ||
|
Xerox FreeFlow Print Server v9
Xerox / FreeFlow Print Server
|
cpe:/a:xerox:freeflow_print_server:v9
|
v9 | |
|
IBM Spectrum Protect Plus <10.1.16.2
IBM / Spectrum Protect Plus
|
<10.1.16.2 | ||
|
Splunk Splunk Enterprise <9.2.3
Splunk / Splunk Enterprise
|
<9.2.3 | ||
|
Gentoo Linux
Gentoo
|
cpe:/o:gentoo:linux:-
|
— | |
|
Splunk Splunk Enterprise <9.1.6
Splunk / Splunk Enterprise
|
<9.1.6 | ||
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Fedora Linux
Fedora
|
cpe:/o:fedoraproject:fedora:-
|
— | |
|
Apache Traffic Server <8.1.10
Apache / Traffic Server
|
<8.1.10 | ||
|
IBM App Connect Enterprise
IBM
|
cpe:/a:ibm:app_connect_enterprise:-
|
— | |
|
Red Hat OpenShift Container Platform <4.15
Red Hat / OpenShift
|
Container Platform <4.15 | ||
|
IBM Storwize
IBM
|
cpe:/a:ibm:storwize:-
|
— | |
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Broadcom Brocade SANnav
Broadcom
|
cpe:/a:broadcom:brocade_sannav:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Dell NetWorker <19.10.0.5
Dell / NetWorker
|
<19.10.0.5 | ||
|
SUSE openSUSE
SUSE
|
cpe:/o:suse:opensuse:-
|
— | |
|
HPE HP-UX <11.31
HPE / HP-UX
|
<11.31 | ||
|
Red Hat OpenShift Virtualization 4.13
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:virtualization_4.13
|
Virtualization 4.13 |
References
240 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "http/2 ist das HyperText Transfer Protocol in Version 2.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann eine Schwachstellen in verschiedenen http/2 Implementierungen ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Appliance\n- Linux\n- Sonstiges\n- UNIX\n- Windows",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-0789 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-0789.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-0789 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-0789"
},
{
"category": "external",
"summary": "CERT Coordination Center VU#421644 vom 2024-04-03",
"url": "https://kb.cert.org/vuls/id/421644"
},
{
"category": "external",
"summary": "Go Package net/http GO-2024-2687 vom 2024-04-03",
"url": "https://pkg.go.dev/vuln/GO-2024-2687"
},
{
"category": "external",
"summary": "Arista Security Advisory 0094 vom 2024-04-03",
"url": "https://www.arista.com/en/support/advisories-notices/security-advisory/19221-security-advisory-0094"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-A00DE83DE9 vom 2024-04-04",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-a00de83de9"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-DA8CDD8414 vom 2024-04-04",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-da8cdd8414"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-EC22E51EC2 vom 2024-04-04",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-ec22e51ec2"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-EPEL-2024-866AC60917 vom 2024-04-04",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2024-866ac60917"
},
{
"category": "external",
"summary": "Apache 2.4.59 Changes vom 2024-04-04",
"url": "https://downloads.apache.org/httpd/CHANGES_2.4.59"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-4812897DD1 vom 2024-04-05",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-4812897dd1"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-1F11550E31 vom 2024-04-05",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-1f11550e31"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-528301BAC2 vom 2024-04-05",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-528301bac2"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1121-1 vom 2024-04-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018259.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1122-1 vom 2024-04-05",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018261.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1683 vom 2024-04-08",
"url": "https://access.redhat.com/errata/RHSA-2024:1683"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1681 vom 2024-04-08",
"url": "https://access.redhat.com/errata/RHSA-2024:1681"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1161-1 vom 2024-04-08",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018265.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1167-1 vom 2024-04-08",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018298.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1156-1 vom 2024-04-08",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018269.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1160-1 vom 2024-04-08",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-April/018266.html"
},
{
"category": "external",
"summary": "Apache Traffic Server Announce",
"url": "https://lists.apache.org/thread/f9qh3g3jvy153wh82pz4onrfj1wh13kc"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1786 vom 2024-04-11",
"url": "https://access.redhat.com/errata/RHSA-2024:1786"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6729-1 vom 2024-04-11",
"url": "https://ubuntu.com/security/notices/USN-6729-1"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5659 vom 2024-04-14",
"url": "https://lists.debian.org/debian-security-announce/2024/msg00067.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1786 vom 2024-04-13",
"url": "https://linux.oracle.com/errata/ELSA-2024-1786.html"
},
{
"category": "external",
"summary": "Fedora Security Advisory FEDORA-2024-CE2EEFC399 vom 2024-04-16",
"url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-ce2eefc399"
},
{
"category": "external",
"summary": "Debian Security Advisory DSA-5662 vom 2024-04-16",
"url": "https://lists.debian.org/debian-security-announce/2024/msg00070.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6729-2 vom 2024-04-17",
"url": "https://ubuntu.com/security/notices/USN-6729-2"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1872 vom 2024-04-18",
"url": "https://access.redhat.com/errata/RHSA-2024:1872"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1872 vom 2024-04-19",
"url": "https://linux.oracle.com/errata/ELSA-2024-1872.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1963 vom 2024-04-23",
"url": "https://access.redhat.com/errata/RHSA-2024:1963"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1962 vom 2024-04-23",
"url": "https://access.redhat.com/errata/RHSA-2024:1962"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1963 vom 2024-04-24",
"url": "https://linux.oracle.com/errata/ELSA-2024-1963.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-1962 vom 2024-04-24",
"url": "http://linux.oracle.com/errata/ELSA-2024-1962.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2060 vom 2024-04-25",
"url": "https://access.redhat.com/errata/RHSA-2024:2060"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1892 vom 2024-04-25",
"url": "https://access.redhat.com/errata/RHSA-2024:1892"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2062 vom 2024-04-25",
"url": "https://access.redhat.com/errata/RHSA-2024:2062"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1899 vom 2024-04-25",
"url": "https://access.redhat.com/errata/RHSA-2024:1899"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2079 vom 2024-04-29",
"url": "https://access.redhat.com/errata/RHSA-2024:2079"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3799 vom 2024-04-28",
"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00021.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1897 vom 2024-04-26",
"url": "https://access.redhat.com/errata/RHSA-2024:1897"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2523 vom 2024-04-29",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2523.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6729-3 vom 2024-04-29",
"url": "https://ubuntu.com/security/notices/USN-6729-3"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3804 vom 2024-05-01",
"url": "https://lists.debian.org/debian-lts-announce/2024/04/msg00026.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2564 vom 2024-04-30",
"url": "https://access.redhat.com/errata/RHSA-2024:2564"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2562 vom 2024-04-30",
"url": "https://access.redhat.com/errata/RHSA-2024:2562"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2625 vom 2024-04-30",
"url": "https://access.redhat.com/errata/RHSA-2024:2625"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2047 vom 2024-05-02",
"url": "https://access.redhat.com/errata/RHSA-2024:2049"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2068 vom 2024-05-02",
"url": "https://access.redhat.com/errata/RHSA-2024:2068"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2699 vom 2024-05-06",
"url": "https://access.redhat.com/errata/RHSA-2024:2699"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:1786 vom 2024-05-06",
"url": "https://errata.build.resf.org/RLSA-2024:1786"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:1962 vom 2024-05-06",
"url": "https://errata.build.resf.org/RLSA-2024:1962"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2693 vom 2024-05-07",
"url": "https://access.redhat.com/errata/RHSA-2024:2693"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2694 vom 2024-05-07",
"url": "https://access.redhat.com/errata/RHSA-2024:2694"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2724 vom 2024-05-08",
"url": "https://linux.oracle.com/errata/ELSA-2024-2724.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2564 vom 2024-05-08",
"url": "https://linux.oracle.com/errata/ELSA-2024-2564.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2562 vom 2024-05-08",
"url": "https://linux.oracle.com/errata/ELSA-2024-2562.html"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:2778 vom 2024-05-09",
"url": "https://errata.build.resf.org/RLSA-2024:2778"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2664 vom 2024-05-09",
"url": "https://access.redhat.com/errata/RHSA-2024:2664"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2667 vom 2024-05-09",
"url": "https://access.redhat.com/errata/RHSA-2024:2667"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2668 vom 2024-05-09",
"url": "https://access.redhat.com/errata/RHSA-2024:2668"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2671 vom 2024-05-09",
"url": "https://access.redhat.com/errata/RHSA-2024:2671"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2672 vom 2024-05-09",
"url": "https://access.redhat.com/errata/RHSA-2024:2672"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:2699 vom 2024-05-09",
"url": "https://errata.build.resf.org/RLSA-2024:2699"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2779 vom 2024-05-09",
"url": "https://access.redhat.com/errata/RHSA-2024:2779"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2778 vom 2024-05-09",
"url": "https://access.redhat.com/errata/RHSA-2024:2778"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2780 vom 2024-05-09",
"url": "https://access.redhat.com/errata/RHSA-2024:2780"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:2779 vom 2024-05-09",
"url": "https://errata.build.resf.org/RLSA-2024:2779"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:2780 vom 2024-05-09",
"url": "https://errata.build.resf.org/RLSA-2024:2780"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2699 vom 2024-05-09",
"url": "https://linux.oracle.com/errata/ELSA-2024-2699.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2778 vom 2024-05-09",
"url": "https://linux.oracle.com/errata/ELSA-2024-2778.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2780 vom 2024-05-10",
"url": "https://linux.oracle.com/errata/ELSA-2024-2780.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1627-1 vom 2024-05-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018514.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-1935 vom 2024-05-13",
"url": "https://alas.aws.amazon.com/ALAS-2024-1935.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2779 vom 2024-05-15",
"url": "https://linux.oracle.com/errata/ELSA-2024-2779.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2773 vom 2024-05-15",
"url": "https://access.redhat.com/errata/RHSA-2024:2773"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2853 vom 2024-05-15",
"url": "https://access.redhat.com/errata/RHSA-2024:2853"
},
{
"category": "external",
"summary": "RedHat Security Advisory",
"url": "https://access.redhat.com/errata/RHSA-2024:2891"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2853 vom 2024-05-17",
"url": "https://linux.oracle.com/errata/ELSA-2024-2853.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2892 vom 2024-05-16",
"url": "https://access.redhat.com/errata/RHSA-2024:2892"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2782 vom 2024-05-16",
"url": "https://access.redhat.com/errata/RHSA-2024:2782"
},
{
"category": "external",
"summary": "XEROX Security Advisory XRX25-001 vom 2025-01-13",
"url": "https://securitydocs.business.xerox.com/wp-content/uploads/2025/01/Xerox-Security-Bulletin-XRX25-001-for-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2935 vom 2024-05-21",
"url": "https://access.redhat.com/errata/RHSA-2024:2935"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2907 vom 2024-05-20",
"url": "https://access.redhat.com/errata/RHSA-2024:2907"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2937 vom 2024-05-21",
"url": "https://access.redhat.com/errata/RHSA-2024:2937"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2936 vom 2024-05-21",
"url": "https://access.redhat.com/errata/RHSA-2024:2936"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2910 vom 2024-05-20",
"url": "https://access.redhat.com/errata/RHSA-2024:2910"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2865 vom 2024-05-21",
"url": "https://access.redhat.com/errata/RHSA-2024:2865"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2941 vom 2024-05-21",
"url": "https://access.redhat.com/errata/RHSA-2024:2941"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7154630 vom 2024-05-22",
"url": "https://www.ibm.com/support/pages/node/7154630"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3259 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:3259"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3315 vom 2024-05-23",
"url": "https://access.redhat.com/errata/RHSA-2024:3315"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-2910 vom 2024-05-23",
"url": "https://linux.oracle.com/errata/ELSA-2024-2910.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3346 vom 2024-05-23",
"url": "https://access.redhat.com/errata/RHSA-2024:3346"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3818 vom 2024-05-25",
"url": "https://lists.debian.org/debian-lts-announce/2024/05/msg00013.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1788-1 vom 2024-05-27",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-May/018605.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3417 vom 2024-05-28",
"url": "https://access.redhat.com/errata/RHSA-2024:3417"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3402 vom 2024-05-28",
"url": "https://access.redhat.com/errata/RHSA-2024:3402"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3331 vom 2024-05-30",
"url": "https://access.redhat.com/errata/RHSA-2024:3331"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3479 vom 2024-05-29",
"url": "https://access.redhat.com/errata/RHSA-2024:3479"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3467 vom 2024-05-29",
"url": "https://access.redhat.com/errata/RHSA-2024:3467"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3327 vom 2024-05-29",
"url": "https://access.redhat.com/errata/RHSA-2024:3327"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-3346 vom 2024-05-30",
"url": "http://linux.oracle.com/errata/ELSA-2024-3346.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3501 vom 2024-05-30",
"url": "https://access.redhat.com/errata/RHSA-2024:3501"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2728 vom 2024-05-29",
"url": "https://access.redhat.com/errata/RHSA-2024:2728"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2554 vom 2024-05-30",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2554.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASNITRO-ENCLAVES-2024-040 vom 2024-05-30",
"url": "https://alas.aws.amazon.com/AL2/ALASNITRO-ENCLAVES-2024-040.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2556 vom 2024-05-30",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2556.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2550 vom 2024-05-30",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2550.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2555 vom 2024-05-30",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2555.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-3259 vom 2024-06-01",
"url": "https://linux.oracle.com/errata/ELSA-2024-3259.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3544 vom 2024-06-03",
"url": "https://access.redhat.com/errata/RHSA-2024:3544"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASECS-2024-036 vom 2024-05-31",
"url": "https://alas.aws.amazon.com/AL2/ALASECS-2024-036.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3665 vom 2024-06-06",
"url": "https://access.redhat.com/errata/RHSA-2024:3665"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3701 vom 2024-06-06",
"url": "https://access.redhat.com/errata/RHSA-2024:3701"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3763 vom 2024-06-10",
"url": "https://access.redhat.com/errata/RHSA-2024:3763"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3523 vom 2024-06-10",
"url": "https://access.redhat.com/errata/RHSA-2024:3523"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1963-1 vom 2024-06-10",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018665.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2568 vom 2024-06-12",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2568.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3875 vom 2024-06-13",
"url": "https://access.redhat.com/errata/RHSA-2024:3875"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:2853 vom 2024-06-14",
"url": "https://errata.build.resf.org/RLSA-2024:2853"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:2910 vom 2024-06-14",
"url": "https://errata.build.resf.org/RLSA-2024:2910"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3885 vom 2024-06-19",
"url": "https://access.redhat.com/errata/RHSA-2024:3885"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:2108-1 vom 2024-06-20",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-June/018771.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4023 vom 2024-06-21",
"url": "https://access.redhat.com/errata/RHSA-2024:4023"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4034 vom 2024-06-21",
"url": "https://access.redhat.com/errata/RHSA-2024:4034"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-3501 vom 2024-06-21",
"url": "https://linux.oracle.com/errata/ELSA-2024-3501.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4010 vom 2024-06-26",
"url": "https://access.redhat.com/errata/RHSA-2024:4010"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4006 vom 2024-06-27",
"url": "https://access.redhat.com/errata/RHSA-2024:4006"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4041 vom 2024-06-26",
"url": "https://access.redhat.com/errata/RHSA-2024:4041"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4125 vom 2024-06-26",
"url": "https://access.redhat.com/errata/RHSA-2024:4125"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4146 vom 2024-06-27",
"url": "https://access.redhat.com/errata/RHSA-2024:4146"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4126 vom 2024-06-26",
"url": "https://access.redhat.com/errata/RHSA-2024:4126"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2524 vom 2024-06-28",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2524.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-1931 vom 2024-06-28",
"url": "https://alas.aws.amazon.com/ALAS-2024-1931.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4252 vom 2024-07-03",
"url": "https://access.redhat.com/errata/RHSA-2024:4252"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-4252 vom 2024-07-03",
"url": "https://linux.oracle.com/errata/ELSA-2024-4252.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4390 vom 2024-07-08",
"url": "https://access.redhat.com/errata/RHSA-2024:4390"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4392 vom 2024-07-09",
"url": "https://access.redhat.com/errata/RHSA-2024:4392"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7159857 vom 2024-07-09",
"url": "https://www.ibm.com/support/pages/node/7159857"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4321 vom 2024-07-10",
"url": "https://access.redhat.com/errata/RHSA-2024:4321"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4464 vom 2024-07-11",
"url": "https://access.redhat.com/errata/RHSA-2024:4464"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4520 vom 2024-07-11",
"url": "https://access.redhat.com/errata/RHSA-2024:4520"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7160134 vom 2024-07-12",
"url": "https://www.ibm.com/support/pages/node/7160134"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4545 vom 2024-07-15",
"url": "https://access.redhat.com/errata/RHSA-2024:4545"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4546 vom 2024-07-15",
"url": "https://access.redhat.com/errata/RHSA-2024:4546"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4543 vom 2024-07-15",
"url": "https://access.redhat.com/errata/RHSA-2024:4543"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4484 vom 2024-07-17",
"url": "https://access.redhat.com/errata/RHSA-2024:4484"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4576 vom 2024-07-17",
"url": "https://access.redhat.com/errata/RHSA-2024:4576"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4631 vom 2024-07-18",
"url": "https://access.redhat.com/errata/RHSA-2024:4631"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASECS-2024-039 vom 2024-07-23",
"url": "https://alas.aws.amazon.com/AL2/ALASECS-2024-039.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4721 vom 2024-07-23",
"url": "https://access.redhat.com/errata/RHSA-2024:4721"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4732 vom 2024-07-23",
"url": "https://access.redhat.com/errata/RHSA-2024:4732"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4677 vom 2024-07-25",
"url": "https://access.redhat.com/errata/RHSA-2024:4677"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4824 vom 2024-07-24",
"url": "https://access.redhat.com/errata/RHSA-2024:4824"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4922 vom 2024-07-31",
"url": "https://access.redhat.com/errata/RHSA-2024:4922"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7161954 vom 2024-07-30",
"url": "https://www.ibm.com/support/pages/node/7161954"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1167-2 vom 2024-07-31",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/019073.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4934 vom 2024-07-31",
"url": "https://access.redhat.com/errata/RHSA-2024:4934"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:1868-1 vom 2024-07-31",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-July/019070.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4933 vom 2024-07-31",
"url": "https://access.redhat.com/errata/RHSA-2024:4933"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4982 vom 2024-08-02",
"url": "https://access.redhat.com/errata/RHSA-2024:4982"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7162191 vom 2024-08-01",
"url": "https://www.ibm.com/support/pages/node/7162191"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2024-348 vom 2024-08-06",
"url": "https://www.dell.com/support/kbdoc/de-de/000227573/dsa-2024-348-security-update-for-dell-avamar-dell-networker-virtual-edition-nve-and-dell-powerprotect-dp-series-appliance-dell-integrated-data-protection-appliance-idpa-security-update-for-multiple-vulnerabilities"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA-202408-07 vom 2024-08-07",
"url": "https://security.gentoo.org/glsa/202408-07"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4960 vom 2024-08-07",
"url": "https://access.redhat.com/errata/RHSA-2024:4960"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA-202408-10 vom 2024-08-07",
"url": "https://security.gentoo.org/glsa/202408-10"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7162272 vom 2024-08-08",
"url": "https://www.ibm.com/support/pages/node/7162272"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5143 vom 2024-08-09",
"url": "https://access.redhat.com/errata/RHSA-2024:5143"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5144 vom 2024-08-09",
"url": "https://access.redhat.com/errata/RHSA-2024:5144"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5145 vom 2024-08-09",
"url": "https://access.redhat.com/errata/RHSA-2024:5145"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5147 vom 2024-08-09",
"url": "https://access.redhat.com/errata/RHSA-2024:5147"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7165265 vom 2024-08-12",
"url": "https://www.ibm.com/support/pages/node/7165265"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2618 vom 2024-08-13",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2618.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2024-5193 vom 2024-08-14",
"url": "https://linux.oracle.com/errata/ELSA-2024-5193.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASDOCKER-2024-042 vom 2024-08-21",
"url": "https://alas.aws.amazon.com/AL2/ALASDOCKER-2024-042.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASNITRO-ENCLAVES-2024-043 vom 2024-08-21",
"url": "https://alas.aws.amazon.com/AL2/ALASNITRO-ENCLAVES-2024-043.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:3098-1 vom 2024-09-03",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019363.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6004 vom 2024-09-04",
"url": "https://access.redhat.com/errata/RHSA-2024:6004"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:3089-1 vom 2024-09-03",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019369.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:3097-1 vom 2024-09-03",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019364.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6221 vom 2024-09-03",
"url": "https://access.redhat.com/errata/RHSA-2024:6221"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:3155-1 vom 2024-09-06",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/T5LFLVGNA2FSZS3KR7555733PGXOIY4S/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6409 vom 2024-09-11",
"url": "https://access.redhat.com/errata/RHSA-2024:6409"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6406 vom 2024-09-12",
"url": "https://access.redhat.com/errata/RHSA-2024:6406"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6642 vom 2024-09-18",
"url": "https://access.redhat.com/errata/RHSA-2024:6642"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:3344-1 vom 2024-09-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019471.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:3341-1 vom 2024-09-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019474.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:3343-1 vom 2024-09-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019472.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:3342-1 vom 2024-09-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-September/019473.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6811 vom 2024-09-25",
"url": "https://access.redhat.com/errata/RHSA-2024:6811"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7164 vom 2024-09-26",
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3898 vom 2024-09-27",
"url": "https://lists.debian.org/debian-lts-announce/2024/09/msg00041.html"
},
{
"category": "external",
"summary": "Gentoo Linux Security Advisory GLSA-202409-31 vom 2024-09-28",
"url": "https://security.gentoo.org/glsa/202409-31"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2645 vom 2024-10-02",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2645.html"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2024-422 vom 2024-10-10",
"url": "https://www.dell.com/support/kbdoc/de-de/000234730/dsa-2024-422-security-update-for-dell-networker-vproxy-multiple-component-vulnerabilities"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2024-423 vom 2024-10-11",
"url": "https://www.dell.com/support/kbdoc/de-de/000235068/dsa-2024-423-security-update-for-dell-networker-and-networker-management-console-nmc-multiple-component-vulnerabilities"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7173018 vom 2024-10-14",
"url": "https://www.ibm.com/support/pages/node/7173018"
},
{
"category": "external",
"summary": "Splunk Security Advisory SVD-2024-1012 vom 2024-10-14",
"url": "https://advisory.splunk.com//advisories/SVD-2024-1012"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2024:14399-1 vom 2024-10-15",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/4SYE7WTKUNXNTHQW42V7UBGJBEQBHRTP/"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2024:14400-1 vom 2024-10-15",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/4ZZCCVQLIJ7QABQ7SEQNIICQGIOXKWPA/"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7173744 vom 2024-10-22",
"url": "https://www.ibm.com/support/pages/node/7173744"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:3755-1 vom 2024-10-24",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/IDZD3NVTACJTTUYRJDCRM2C2RTOJVHD6/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8235 vom 2024-10-23",
"url": "https://access.redhat.com/errata/RHSA-2024:8235"
},
{
"category": "external",
"summary": "IBM Security Bulletin",
"url": "https://www.ibm.com/support/pages/node/7174634"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8692 vom 2024-11-07",
"url": "https://access.redhat.com/errata/RHSA-2024:8692"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7111-1 vom 2024-11-14",
"url": "https://ubuntu.com/security/notices/USN-7111-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7109-1 vom 2024-11-14",
"url": "https://ubuntu.com/security/notices/USN-7109-1"
},
{
"category": "external",
"summary": "XEROX Security Advisory XRX24-017 vom 2024-11-21",
"url": "https://securitydocs.business.xerox.com/wp-content/uploads/2024/11/Xerox-Security-Bulletin-XRX24-017-for-Xerox%C2%AE-FreeFlow%C2%AE-Print-Server-v9.pdf"
},
{
"category": "external",
"summary": "HPE Security Bulletin vom 2025-01-17",
"url": "https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbux04773en_us\u0026docLocale=en_US"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0299-1 vom 2025-01-30",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020247.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0295-1 vom 2025-01-30",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020241.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0306-1 vom 2025-01-31",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-January/020249.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0313-1 vom 2025-01-31",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/PGEHSUXB4DXDIUI45SBQ5DUH6KIZJAXC/"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:14714-1 vom 2025-01-31",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/NNZGCIESABPBXHMTGTQFNKICWRW67ACD/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0318-1 vom 2025-02-03",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020255.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0458-1 vom 2025-02-12",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/RW3FQOEYDWOKZM7Y3DHSXUJDMQA63WUT/"
},
{
"category": "external",
"summary": "Brocade Security Advisory BSA-2025-2895 vom 2025-02-13",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/25398"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0558-1 vom 2025-02-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020351.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0581-1 vom 2025-02-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020366.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0579-1 vom 2025-02-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-February/020368.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7183481 vom 2025-02-26",
"url": "https://www.ibm.com/support/pages/node/7183481"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:0813-1 vom 2025-03-10",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/3SEGQBW2MN3JHWVKFVC56BGPFDPRJISE/"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:14990-1 vom 2025-04-15",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/IC2EUYZRCX6GXM6Y26SHEX6QS2URIZ2I/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:4240 vom 2025-04-28",
"url": "https://access.redhat.com/errata/RHSA-2025:4240"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:15075-1 vom 2025-05-13",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/message/HCWJWNWXOFGQ73SBS66L5ZCYZ5J7FOQY/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:8274 vom 2025-05-29",
"url": "https://rhn.redhat.com/errata/RHSA-2025:8274.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:8274 vom 2025-05-28",
"url": "https://access.redhat.com/errata/RHSA-2025:8274"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20002-1 vom 2025-06-04",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021404.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:01990-1 vom 2025-06-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021557.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:01992-1 vom 2025-06-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021555.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:01988-1 vom 2025-06-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021559.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:16668 vom 2025-09-25",
"url": "https://access.redhat.com/errata/RHSA-2025:16668"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:16667 vom 2025-09-25",
"url": "https://access.redhat.com/errata/RHSA-2025:16667"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2025:0491-1 vom 2025-12-31",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/6Q5LREFQ65DZGIUYFCU2Y6USEM4PDCMI/"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2026:10090-1 vom 2026-01-27",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/UDDLYTH7KFNGQT7OUIWRTQFYV4WPWLHZ/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:21319-1 vom 2026-04-27",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-April/025673.html"
},
{
"category": "external",
"summary": "openSUSE Security Update OPENSUSE-SU-2026:10921-1 vom 2026-06-05",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/EFQITHNC7L7OCGIHU3ZTM3PZFHVW3KHV/"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2026-25090 vom 2026-06-17",
"url": "https://linux.oracle.com/errata/ELSA-2026-25090.html"
}
],
"source_lang": "en-US",
"title": "HTTP/2: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
"tracking": {
"current_release_date": "2026-06-17T22:00:00.000+00:00",
"generator": {
"date": "2026-06-18T08:30:05.535+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.6.0"
}
},
"id": "WID-SEC-W-2024-0789",
"initial_release_date": "2024-04-03T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-04-03T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-04-04T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Fedora aufgenommen"
},
{
"date": "2024-04-07T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Fedora und SUSE aufgenommen"
},
{
"date": "2024-04-08T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-04-10T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2024-04-11T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat und Ubuntu aufgenommen"
},
{
"date": "2024-04-14T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Debian und Oracle Linux aufgenommen"
},
{
"date": "2024-04-16T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Fedora aufgenommen"
},
{
"date": "2024-04-17T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Ubuntu und Red Hat aufgenommen"
},
{
"date": "2024-04-18T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-04-22T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-04-23T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-04-24T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-04-25T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-04-28T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat und Debian aufgenommen"
},
{
"date": "2024-04-29T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Amazon und Ubuntu aufgenommen"
},
{
"date": "2024-05-01T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Debian und Red Hat aufgenommen"
},
{
"date": "2024-05-02T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-05T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-06T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2024-05-07T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
},
{
"date": "2024-05-09T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Rocky Enterprise Software Foundation, Red Hat und Oracle Linux aufgenommen"
},
{
"date": "2024-05-12T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-05-13T22:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von SUSE und Amazon aufgenommen"
},
{
"date": "2024-05-14T22:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-05-15T22:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-16T22:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
},
{
"date": "2024-05-20T22:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-21T22:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-05-22T22:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-23T22:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-26T22:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2024-05-27T22:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-05-28T22:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-30T22:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
},
{
"date": "2024-06-02T22:00:00.000+00:00",
"number": "36",
"summary": "Neue Updates von Oracle Linux, Red Hat und Amazon aufgenommen"
},
{
"date": "2024-06-05T22:00:00.000+00:00",
"number": "37",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-06T22:00:00.000+00:00",
"number": "38",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-10T22:00:00.000+00:00",
"number": "39",
"summary": "Neue Updates von Red Hat und SUSE aufgenommen"
},
{
"date": "2024-06-11T22:00:00.000+00:00",
"number": "40",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-06-12T22:00:00.000+00:00",
"number": "41",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-16T22:00:00.000+00:00",
"number": "42",
"summary": "Neue Updates von Rocky Enterprise Software Foundation aufgenommen"
},
{
"date": "2024-06-18T22:00:00.000+00:00",
"number": "43",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-20T22:00:00.000+00:00",
"number": "44",
"summary": "Neue Updates von SUSE und Red Hat aufgenommen"
},
{
"date": "2024-06-25T22:00:00.000+00:00",
"number": "45",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-26T22:00:00.000+00:00",
"number": "46",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-30T22:00:00.000+00:00",
"number": "47",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-07-02T22:00:00.000+00:00",
"number": "48",
"summary": "Neue Updates von Red Hat und Oracle Linux aufgenommen"
},
{
"date": "2024-07-08T22:00:00.000+00:00",
"number": "49",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-09T22:00:00.000+00:00",
"number": "50",
"summary": "Neue Updates von IBM und IBM-APAR aufgenommen"
},
{
"date": "2024-07-10T22:00:00.000+00:00",
"number": "51",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-11T22:00:00.000+00:00",
"number": "52",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-15T22:00:00.000+00:00",
"number": "53",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-16T22:00:00.000+00:00",
"number": "54",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-18T22:00:00.000+00:00",
"number": "55",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-22T22:00:00.000+00:00",
"number": "56",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-07-23T22:00:00.000+00:00",
"number": "57",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-24T22:00:00.000+00:00",
"number": "58",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-30T22:00:00.000+00:00",
"number": "59",
"summary": "Neue Updates von Red Hat und IBM aufgenommen"
},
{
"date": "2024-07-31T22:00:00.000+00:00",
"number": "60",
"summary": "Neue Updates von SUSE und Red Hat aufgenommen"
},
{
"date": "2024-08-01T22:00:00.000+00:00",
"number": "61",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-05T22:00:00.000+00:00",
"number": "62",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2024-08-06T22:00:00.000+00:00",
"number": "63",
"summary": "Neue Updates von Gentoo aufgenommen"
},
{
"date": "2024-08-07T22:00:00.000+00:00",
"number": "64",
"summary": "Neue Updates von Red Hat und Gentoo aufgenommen"
},
{
"date": "2024-08-08T22:00:00.000+00:00",
"number": "65",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-11T22:00:00.000+00:00",
"number": "66",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-08-13T22:00:00.000+00:00",
"number": "67",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-08-14T22:00:00.000+00:00",
"number": "68",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2024-08-21T22:00:00.000+00:00",
"number": "69",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-09-03T22:00:00.000+00:00",
"number": "70",
"summary": "Neue Updates von SUSE und Red Hat aufgenommen"
},
{
"date": "2024-09-08T22:00:00.000+00:00",
"number": "71",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-09-11T22:00:00.000+00:00",
"number": "72",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-17T22:00:00.000+00:00",
"number": "73",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-19T22:00:00.000+00:00",
"number": "74",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-09-24T22:00:00.000+00:00",
"number": "75",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-25T22:00:00.000+00:00",
"number": "76",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-29T22:00:00.000+00:00",
"number": "77",
"summary": "Neue Updates von Debian und Gentoo aufgenommen"
},
{
"date": "2024-10-03T22:00:00.000+00:00",
"number": "78",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-10-09T22:00:00.000+00:00",
"number": "79",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2024-10-10T22:00:00.000+00:00",
"number": "80",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2024-10-13T22:00:00.000+00:00",
"number": "81",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-10-14T22:00:00.000+00:00",
"number": "82",
"summary": "Neue Updates von Splunk-SVD aufgenommen"
},
{
"date": "2024-10-15T22:00:00.000+00:00",
"number": "83",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2024-10-22T22:00:00.000+00:00",
"number": "84",
"summary": "Neue Updates von IBM und IBM-APAR aufgenommen"
},
{
"date": "2024-10-23T22:00:00.000+00:00",
"number": "85",
"summary": "Neue Updates von SUSE und Red Hat aufgenommen"
},
{
"date": "2024-10-31T23:00:00.000+00:00",
"number": "86",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-11-06T23:00:00.000+00:00",
"number": "87",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-14T23:00:00.000+00:00",
"number": "88",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-11-21T23:00:00.000+00:00",
"number": "89",
"summary": "Neue Updates von XEROX aufgenommen"
},
{
"date": "2024-12-15T23:00:00.000+00:00",
"number": "90",
"summary": "Referenz(en) aufgenommen: 7178947"
},
{
"date": "2025-01-12T23:00:00.000+00:00",
"number": "91",
"summary": "Neue Updates von XEROX aufgenommen"
},
{
"date": "2025-01-19T23:00:00.000+00:00",
"number": "92",
"summary": "Neue Updates von HP aufgenommen"
},
{
"date": "2025-01-30T23:00:00.000+00:00",
"number": "93",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-02-02T23:00:00.000+00:00",
"number": "94",
"summary": "Neue Updates von SUSE und openSUSE aufgenommen"
},
{
"date": "2025-02-12T23:00:00.000+00:00",
"number": "95",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-02-13T23:00:00.000+00:00",
"number": "96",
"summary": "Neue Updates von BROCADE aufgenommen"
},
{
"date": "2025-02-16T23:00:00.000+00:00",
"number": "97",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-02-18T23:00:00.000+00:00",
"number": "98",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-02-26T23:00:00.000+00:00",
"number": "99",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-03-10T23:00:00.000+00:00",
"number": "100",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-04-15T22:00:00.000+00:00",
"number": "101",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2025-04-27T22:00:00.000+00:00",
"number": "102",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-05-13T22:00:00.000+00:00",
"number": "103",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2025-05-29T22:00:00.000+00:00",
"number": "104",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-06-03T22:00:00.000+00:00",
"number": "105",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-06-17T22:00:00.000+00:00",
"number": "106",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-09-24T22:00:00.000+00:00",
"number": "107",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-12-30T23:00:00.000+00:00",
"number": "108",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2026-01-27T23:00:00.000+00:00",
"number": "109",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2026-04-26T22:00:00.000+00:00",
"number": "110",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-06-07T22:00:00.000+00:00",
"number": "111",
"summary": "Neue Updates von openSUSE aufgenommen"
},
{
"date": "2026-06-17T22:00:00.000+00:00",
"number": "112",
"summary": "Neue Updates von Oracle Linux aufgenommen"
}
],
"status": "final",
"version": "112"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c2.4.59",
"product": {
"name": "Apache HTTP Server \u003c2.4.59",
"product_id": "T033904"
}
},
{
"category": "product_version",
"name": "2.4.59",
"product": {
"name": "Apache HTTP Server 2.4.59",
"product_id": "T033904-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:apache:http_server:2.4.59"
}
}
}
],
"category": "product_name",
"name": "HTTP Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c8.1.10",
"product": {
"name": "Apache Traffic Server \u003c8.1.10",
"product_id": "T034079"
}
},
{
"category": "product_version",
"name": "8.1.10",
"product": {
"name": "Apache Traffic Server 8.1.10",
"product_id": "T034079-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:apache:traffic_server:8.1.10"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.2.4",
"product": {
"name": "Apache Traffic Server \u003c9.2.4",
"product_id": "T034080"
}
},
{
"category": "product_version",
"name": "9.2.4",
"product": {
"name": "Apache Traffic Server 9.2.4",
"product_id": "T034080-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:apache:traffic_server:9.2.4"
}
}
}
],
"category": "product_name",
"name": "Traffic Server"
}
],
"category": "vendor",
"name": "Apache"
},
{
"branches": [
{
"category": "product_name",
"name": "Arista EOS",
"product": {
"name": "Arista EOS",
"product_id": "T033896",
"product_identification_helper": {
"cpe": "cpe:/o:arista:arista_eos:-"
}
}
}
],
"category": "vendor",
"name": "Arista"
},
{
"branches": [
{
"category": "product_name",
"name": "Broadcom Brocade SANnav",
"product": {
"name": "Broadcom Brocade SANnav",
"product_id": "T034392",
"product_identification_helper": {
"cpe": "cpe:/a:broadcom:brocade_sannav:-"
}
}
}
],
"category": "vendor",
"name": "Broadcom"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Dell NetWorker",
"product": {
"name": "Dell NetWorker",
"product_id": "T024663",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:-"
}
}
},
{
"category": "product_version_range",
"name": "\u003c19.10.0.5",
"product": {
"name": "Dell NetWorker \u003c19.10.0.5",
"product_id": "T038270"
}
},
{
"category": "product_version",
"name": "19.10.0.5",
"product": {
"name": "Dell NetWorker 19.10.0.5",
"product_id": "T038270-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:19.10.0.5"
}
}
}
],
"category": "product_name",
"name": "NetWorker"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"category": "product_name",
"name": "EMC Avamar",
"product": {
"name": "EMC Avamar",
"product_id": "T014381",
"product_identification_helper": {
"cpe": "cpe:/a:emc:avamar:-"
}
}
}
],
"category": "vendor",
"name": "EMC"
},
{
"branches": [
{
"category": "product_name",
"name": "Fedora Linux",
"product": {
"name": "Fedora Linux",
"product_id": "74185",
"product_identification_helper": {
"cpe": "cpe:/o:fedoraproject:fedora:-"
}
}
}
],
"category": "vendor",
"name": "Fedora"
},
{
"branches": [
{
"category": "product_name",
"name": "Gentoo Linux",
"product": {
"name": "Gentoo Linux",
"product_id": "T012167",
"product_identification_helper": {
"cpe": "cpe:/o:gentoo:linux:-"
}
}
}
],
"category": "vendor",
"name": "Gentoo"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c1.22.2",
"product": {
"name": "Golang Go \u003c1.22.2",
"product_id": "T033893"
}
},
{
"category": "product_version",
"name": "1.22.2",
"product": {
"name": "Golang Go 1.22.2",
"product_id": "T033893-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:golang:go:1.22.2"
}
}
}
],
"category": "product_name",
"name": "Go"
}
],
"category": "vendor",
"name": "Golang"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c11.31",
"product": {
"name": "HPE HP-UX \u003c11.31",
"product_id": "T040402"
}
},
{
"category": "product_version",
"name": "11.31",
"product": {
"name": "HPE HP-UX 11.31",
"product_id": "T040402-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:hp:hp-ux:11.31"
}
}
}
],
"category": "product_name",
"name": "HP-UX"
}
],
"category": "vendor",
"name": "HPE"
},
{
"branches": [
{
"category": "product_name",
"name": "IBM App Connect Enterprise",
"product": {
"name": "IBM App Connect Enterprise",
"product_id": "T032495",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:-"
}
}
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.5.0.12",
"product": {
"name": "IBM DataPower Gateway \u003c10.5.0.12",
"product_id": "T035904"
}
},
{
"category": "product_version",
"name": "10.5.0.12",
"product": {
"name": "IBM DataPower Gateway 10.5.0.12",
"product_id": "T035904-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:datapower_gateway:10.5.0.12"
}
}
},
{
"category": "product_version_range",
"name": "\u003c10.6.0.0",
"product": {
"name": "IBM DataPower Gateway \u003c10.6.0.0",
"product_id": "T035905"
}
},
{
"category": "product_version",
"name": "10.6.0.0",
"product": {
"name": "IBM DataPower Gateway 10.6.0.0",
"product_id": "T035905-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:datapower_gateway:10.6.0.0"
}
}
}
],
"category": "product_name",
"name": "DataPower Gateway"
},
{
"category": "product_name",
"name": "IBM FlashSystem",
"product": {
"name": "IBM FlashSystem",
"product_id": "T025159",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:flashsystem:-"
}
}
},
{
"branches": [
{
"category": "product_version_range",
"name": "Operator \u003c3.1.3",
"product": {
"name": "IBM MQ Operator \u003c3.1.3",
"product_id": "T034999"
}
},
{
"category": "product_version",
"name": "Operator 3.1.3",
"product": {
"name": "IBM MQ Operator 3.1.3",
"product_id": "T034999-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:operator__3.1.3"
}
}
},
{
"category": "product_version_range",
"name": "Operator \u003c2.0.22 LTS",
"product": {
"name": "IBM MQ Operator \u003c2.0.22 LTS",
"product_id": "T035000"
}
},
{
"category": "product_version",
"name": "Operator 2.0.22 LTS",
"product": {
"name": "IBM MQ Operator 2.0.22 LTS",
"product_id": "T035000-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:operator__2.0.22_lts"
}
}
},
{
"category": "product_version",
"name": "Operator",
"product": {
"name": "IBM MQ Operator",
"product_id": "T036688",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:operator"
}
}
}
],
"category": "product_name",
"name": "MQ"
},
{
"branches": [
{
"category": "product_version",
"name": "v10",
"product": {
"name": "IBM Power Hardware Management Console v10",
"product_id": "T023373",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:hardware_management_console:v10"
}
}
}
],
"category": "product_name",
"name": "Power Hardware Management Console"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP9",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP9",
"product_id": "T036127"
}
},
{
"category": "product_version",
"name": "7.5.0 UP9",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP9",
"product_id": "T036127-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up9"
}
}
},
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP10 IF01",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP10 IF01",
"product_id": "T038741"
}
},
{
"category": "product_version",
"name": "7.5.0 UP10 IF01",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP10 IF01",
"product_id": "T038741-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up10_if01"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c8.0.0.27",
"product": {
"name": "IBM Rational Build Forge \u003c8.0.0.27",
"product_id": "T038286"
}
},
{
"category": "product_version",
"name": "8.0.0.27",
"product": {
"name": "IBM Rational Build Forge 8.0.0.27",
"product_id": "T038286-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:rational_build_forge:8.0.0.27"
}
}
}
],
"category": "product_name",
"name": "Rational Build Forge"
},
{
"category": "product_name",
"name": "IBM SAN Volume Controller",
"product": {
"name": "IBM SAN Volume Controller",
"product_id": "T020642",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:san_volume_controller:-"
}
}
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.1.16.2",
"product": {
"name": "IBM Spectrum Protect Plus \u003c10.1.16.2",
"product_id": "T036379"
}
},
{
"category": "product_version",
"name": "10.1.16.2",
"product": {
"name": "IBM Spectrum Protect Plus 10.1.16.2",
"product_id": "T036379-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:spectrum_protect_plus:10.1.16.2"
}
}
}
],
"category": "product_name",
"name": "Spectrum Protect Plus"
},
{
"category": "product_name",
"name": "IBM Storwize",
"product": {
"name": "IBM Storwize",
"product_id": "T021621",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:storwize:-"
}
}
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Open Source nghttp2",
"product": {
"name": "Open Source nghttp2",
"product_id": "T033895",
"product_identification_helper": {
"cpe": "cpe:/a:nghttp2:nghttp2:-"
}
}
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "Advanced Cluster Security for Kubernetes 4",
"product": {
"name": "Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4",
"product_id": "T027916",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "Virtualization 4.13",
"product": {
"name": "Red Hat OpenShift Virtualization 4.13",
"product_id": "T027763",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:virtualization_4.13"
}
}
},
{
"category": "product_version",
"name": "Container Platform 4.14",
"product": {
"name": "Red Hat OpenShift Container Platform 4.14",
"product_id": "T031393",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform_4.14.4"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.15",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.15",
"product_id": "T034232"
}
},
{
"category": "product_version",
"name": "Container Platform 4.15",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15",
"product_id": "T034232-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.15"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.15.12",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.15.12",
"product_id": "T034661"
}
},
{
"category": "product_version",
"name": "Container Platform 4.15.12",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15.12",
"product_id": "T034661-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.15.12"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.14.24",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.14.24",
"product_id": "T034662"
}
},
{
"category": "product_version",
"name": "Container Platform 4.14.24",
"product": {
"name": "Red Hat OpenShift Container Platform 4.14.24",
"product_id": "T034662-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.14.24"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.15.14",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.15.14",
"product_id": "T034932"
}
},
{
"category": "product_version",
"name": "Container Platform 4.15.14",
"product": {
"name": "Red Hat OpenShift Container Platform 4.15.14",
"product_id": "T034932-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.15.14"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
},
{
"category": "product_name",
"name": "SUSE openSUSE",
"product": {
"name": "SUSE openSUSE",
"product_id": "T027843",
"product_identification_helper": {
"cpe": "cpe:/o:suse:opensuse:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Specification http/2",
"product": {
"name": "Specification http/2",
"product_id": "T033894",
"product_identification_helper": {
"cpe": "cpe:/a:ietf:http2:-"
}
}
}
],
"category": "vendor",
"name": "Specification"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c9.3.1",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.3.1",
"product_id": "T038314"
}
},
{
"category": "product_version",
"name": "9.3.1",
"product": {
"name": "Splunk Splunk Enterprise 9.3.1",
"product_id": "T038314-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.3.1"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.2.3",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.2.3",
"product_id": "T038315"
}
},
{
"category": "product_version",
"name": "9.2.3",
"product": {
"name": "Splunk Splunk Enterprise 9.2.3",
"product_id": "T038315-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.2.3"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.1.6",
"product": {
"name": "Splunk Splunk Enterprise \u003c9.1.6",
"product_id": "T038316"
}
},
{
"category": "product_version",
"name": "9.1.6",
"product": {
"name": "Splunk Splunk Enterprise 9.1.6",
"product_id": "T038316-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:splunk:splunk:9.1.6"
}
}
}
],
"category": "product_name",
"name": "Splunk Enterprise"
}
],
"category": "vendor",
"name": "Splunk"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "v9",
"product": {
"name": "Xerox FreeFlow Print Server v9",
"product_id": "T015632",
"product_identification_helper": {
"cpe": "cpe:/a:xerox:freeflow_print_server:v9"
}
}
},
{
"category": "product_version",
"name": "v9 for Solaris",
"product": {
"name": "Xerox FreeFlow Print Server v9 for Solaris",
"product_id": "T028053",
"product_identification_helper": {
"cpe": "cpe:/a:xerox:freeflow_print_server:v9_for_solaris"
}
}
}
],
"category": "product_name",
"name": "FreeFlow Print Server"
}
],
"category": "vendor",
"name": "Xerox"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-45288",
"product_status": {
"known_affected": [
"T033895",
"T033896",
"67646",
"T031393",
"T036127",
"T036688",
"T004914",
"T033893",
"T033894",
"T034662",
"T038741",
"T034661",
"T034080",
"T020642",
"T027916",
"T038286",
"T024663",
"398363",
"T025159",
"T033904",
"T035905",
"T023373",
"T034932",
"T028053",
"T035904",
"T034999",
"T035000",
"T038314",
"T015632",
"T036379",
"T038315",
"T012167",
"T038316",
"T032255",
"74185",
"T034079",
"T032495",
"T034232",
"T021621",
"T014381",
"2951",
"T002207",
"T034392",
"T000126",
"T038270",
"T027843",
"T040402",
"T027763"
]
},
"release_date": "2024-04-03T22:00:00.000+00:00",
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2024-2653",
"product_status": {
"known_affected": [
"T033895",
"T033896",
"67646",
"T031393",
"T036127",
"T036688",
"T004914",
"T033893",
"T033894",
"T034662",
"T038741",
"T034661",
"T034080",
"T020642",
"T027916",
"T038286",
"T024663",
"398363",
"T025159",
"T033904",
"T035905",
"T023373",
"T034932",
"T028053",
"T035904",
"T034999",
"T035000",
"T038314",
"T015632",
"T036379",
"T038315",
"T012167",
"T038316",
"T032255",
"74185",
"T034079",
"T032495",
"T034232",
"T021621",
"T014381",
"2951",
"T002207",
"T034392",
"T000126",
"T038270",
"T027843",
"T040402",
"T027763"
]
},
"release_date": "2024-04-03T22:00:00.000+00:00",
"title": "CVE-2024-2653"
},
{
"cve": "CVE-2024-27316",
"product_status": {
"known_affected": [
"T033895",
"T033896",
"67646",
"T031393",
"T036127",
"T036688",
"T004914",
"T033893",
"T033894",
"T034662",
"T038741",
"T034661",
"T034080",
"T020642",
"T027916",
"T038286",
"T024663",
"398363",
"T025159",
"T033904",
"T035905",
"T023373",
"T034932",
"T028053",
"T035904",
"T034999",
"T035000",
"T038314",
"T015632",
"T036379",
"T038315",
"T012167",
"T038316",
"T032255",
"74185",
"T034079",
"T032495",
"T034232",
"T021621",
"T014381",
"2951",
"T002207",
"T034392",
"T000126",
"T038270",
"T027843",
"T040402",
"T027763"
]
},
"release_date": "2024-04-03T22:00:00.000+00:00",
"title": "CVE-2024-27316"
},
{
"cve": "CVE-2024-2758",
"product_status": {
"known_affected": [
"T033895",
"T033896",
"67646",
"T031393",
"T036127",
"T036688",
"T004914",
"T033893",
"T033894",
"T034662",
"T038741",
"T034661",
"T034080",
"T020642",
"T027916",
"T038286",
"T024663",
"398363",
"T025159",
"T033904",
"T035905",
"T023373",
"T034932",
"T028053",
"T035904",
"T034999",
"T035000",
"T038314",
"T015632",
"T036379",
"T038315",
"T012167",
"T038316",
"T032255",
"74185",
"T034079",
"T032495",
"T034232",
"T021621",
"T014381",
"2951",
"T002207",
"T034392",
"T000126",
"T038270",
"T027843",
"T040402",
"T027763"
]
},
"release_date": "2024-04-03T22:00:00.000+00:00",
"title": "CVE-2024-2758"
},
{
"cve": "CVE-2024-27919",
"product_status": {
"known_affected": [
"T033895",
"T033896",
"67646",
"T031393",
"T036127",
"T036688",
"T004914",
"T033893",
"T033894",
"T034662",
"T038741",
"T034661",
"T034080",
"T020642",
"T027916",
"T038286",
"T024663",
"398363",
"T025159",
"T033904",
"T035905",
"T023373",
"T034932",
"T028053",
"T035904",
"T034999",
"T035000",
"T038314",
"T015632",
"T036379",
"T038315",
"T012167",
"T038316",
"T032255",
"74185",
"T034079",
"T032495",
"T034232",
"T021621",
"T014381",
"2951",
"T002207",
"T034392",
"T000126",
"T038270",
"T027843",
"T040402",
"T027763"
]
},
"release_date": "2024-04-03T22:00:00.000+00:00",
"title": "CVE-2024-27919"
},
{
"cve": "CVE-2024-28182",
"product_status": {
"known_affected": [
"T033895",
"T033896",
"67646",
"T031393",
"T036127",
"T036688",
"T004914",
"T033893",
"T033894",
"T034662",
"T038741",
"T034661",
"T034080",
"T020642",
"T027916",
"T038286",
"T024663",
"398363",
"T025159",
"T033904",
"T035905",
"T023373",
"T034932",
"T028053",
"T035904",
"T034999",
"T035000",
"T038314",
"T015632",
"T036379",
"T038315",
"T012167",
"T038316",
"T032255",
"74185",
"T034079",
"T032495",
"T034232",
"T021621",
"T014381",
"2951",
"T002207",
"T034392",
"T000126",
"T038270",
"T027843",
"T040402",
"T027763"
]
},
"release_date": "2024-04-03T22:00:00.000+00:00",
"title": "CVE-2024-28182"
},
{
"cve": "CVE-2024-30255",
"product_status": {
"known_affected": [
"T033895",
"T033896",
"67646",
"T031393",
"T036127",
"T036688",
"T004914",
"T033893",
"T033894",
"T034662",
"T038741",
"T034661",
"T034080",
"T020642",
"T027916",
"T038286",
"T024663",
"398363",
"T025159",
"T033904",
"T035905",
"T023373",
"T034932",
"T028053",
"T035904",
"T034999",
"T035000",
"T038314",
"T015632",
"T036379",
"T038315",
"T012167",
"T038316",
"T032255",
"74185",
"T034079",
"T032495",
"T034232",
"T021621",
"T014381",
"2951",
"T002207",
"T034392",
"T000126",
"T038270",
"T027843",
"T040402",
"T027763"
]
},
"release_date": "2024-04-03T22:00:00.000+00:00",
"title": "CVE-2024-30255"
},
{
"cve": "CVE-2024-31309",
"product_status": {
"known_affected": [
"T033895",
"T033896",
"67646",
"T031393",
"T036127",
"T036688",
"T004914",
"T033893",
"T033894",
"T034662",
"T038741",
"T034661",
"T034080",
"T020642",
"T027916",
"T038286",
"T024663",
"398363",
"T025159",
"T033904",
"T035905",
"T023373",
"T034932",
"T028053",
"T035904",
"T034999",
"T035000",
"T038314",
"T015632",
"T036379",
"T038315",
"T012167",
"T038316",
"T032255",
"74185",
"T034079",
"T032495",
"T034232",
"T021621",
"T014381",
"2951",
"T002207",
"T034392",
"T000126",
"T038270",
"T027843",
"T040402",
"T027763"
]
},
"release_date": "2024-04-03T22:00:00.000+00:00",
"title": "CVE-2024-31309"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…