Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-0495 (GCVE-0-2025-0495)
Vulnerability from cvelistv5 – Published: 2025-03-17 19:21 – Updated: 2025-03-18 16:25
VLAI
EPSS
Title
Secrets leakage to telemetry endpoint via cache backend configuration via buildx
Summary
Buildx is a Docker CLI plugin that extends build capabilities using BuildKit.
Cache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command. OpenTelemetry traces are also saved in BuildKit daemon's history records.
This vulnerability does not impact secrets passed to the Github cache backend via environment variables or registry authentication.
Severity
CWE
- CWE-532 - Insertion of Sensitive Information into Log File
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://github.com/docker/buildx |
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-0495",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-03-18T16:25:23.455442Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-03-18T16:25:42.668Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"defaultStatus": "unaffected",
"packageName": "buildx",
"product": "buildx",
"repo": "https://github.com/docker/buildx",
"vendor": "docker",
"versions": [
{
"lessThanOrEqual": "0.21.2",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "\u003cp\u003eBuildx is a Docker CLI plugin that extends build capabilities using BuildKit.\u003c/p\u003e\u003cp\u003eCache backends support credentials by setting secrets directly as attribute values in \u003ccode\u003ecache-to/cache-from\u003c/code\u003e\u0026nbsp;configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command.\u0026nbsp;OpenTelemetry traces are also saved in BuildKit daemon\u0027s history records.\u003cbr\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eThis vulnerability does not impact secrets passed to the Github cache backend\u0026nbsp;\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003evia environment variables or registry authentication\u003c/span\u003e.\u003c/span\u003e\u003cbr\u003e\u003c/p\u003e\u003cbr\u003e"
}
],
"value": "Buildx is a Docker CLI plugin that extends build capabilities using BuildKit.\n\nCache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from\u00a0configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command.\u00a0OpenTelemetry traces are also saved in BuildKit daemon\u0027s history records.\n\n\nThis vulnerability does not impact secrets passed to the Github cache backend\u00a0via environment variables or registry authentication."
}
],
"impacts": [
{
"capecId": "CAPEC-21",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-21 Exploitation of Trusted Identifiers"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NOT_DEFINED",
"Recovery": "NOT_DEFINED",
"Safety": "NOT_DEFINED",
"attackComplexity": "LOW",
"attackRequirements": "NONE",
"attackVector": "LOCAL",
"baseScore": 4.1,
"baseSeverity": "MEDIUM",
"privilegesRequired": "LOW",
"providerUrgency": "NOT_DEFINED",
"subAvailabilityImpact": "NONE",
"subConfidentialityImpact": "HIGH",
"subIntegrityImpact": "NONE",
"userInteraction": "PASSIVE",
"valueDensity": "NOT_DEFINED",
"vectorString": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:N/VA:N/SC:H/SI:N/SA:N",
"version": "4.0",
"vulnAvailabilityImpact": "NONE",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "NONE",
"vulnerabilityResponseEffort": "NOT_DEFINED"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-532",
"description": "CWE-532 Insertion of Sensitive Information into Log File",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-03-17T19:21:11.295Z",
"orgId": "686469e6-3ff6-451b-ab8b-cf5b9e89401e",
"shortName": "Docker"
},
"references": [
{
"url": "https://github.com/docker/buildx"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Secrets leakage to telemetry endpoint via cache backend configuration via buildx",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "686469e6-3ff6-451b-ab8b-cf5b9e89401e",
"assignerShortName": "Docker",
"cveId": "CVE-2025-0495",
"datePublished": "2025-03-17T19:21:11.295Z",
"dateReserved": "2025-01-15T15:26:40.672Z",
"dateUpdated": "2025-03-18T16:25:42.668Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2025-0495",
"date": "2026-05-29",
"epss": "0.00059",
"percentile": "0.18587"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2025-0495\",\"sourceIdentifier\":\"security@docker.com\",\"published\":\"2025-03-17T20:15:13.737\",\"lastModified\":\"2025-03-17T20:15:13.737\",\"vulnStatus\":\"Awaiting Analysis\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buildx is a Docker CLI plugin that extends build capabilities using BuildKit.\\n\\nCache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from\u00a0configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command.\u00a0OpenTelemetry traces are also saved in BuildKit daemon\u0027s history records.\\n\\n\\nThis vulnerability does not impact secrets passed to the Github cache backend\u00a0via environment variables or registry authentication.\"},{\"lang\":\"es\",\"value\":\"Buildx es un complemento de Docker CLI que ampl\u00eda las capacidades de compilaci\u00f3n mediante BuildKit. Los backends de cach\u00e9 admiten credenciales configurando secretos directamente como valores de atributo en la configuraci\u00f3n de cach\u00e9 de origen/destino. Al proporcionarse como entrada del usuario, estos valores seguros pueden capturarse accidentalmente en los seguimientos de OpenTelemetry como parte de los argumentos y marcas del comando CLI rastreado. Los seguimientos de OpenTelemetry tambi\u00e9n se guardan en los registros hist\u00f3ricos del demonio de BuildKit. Esta vulnerabilidad no afecta a los secretos transferidos al backend de cach\u00e9 de Github mediante variables de entorno ni autenticaci\u00f3n de registro.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"security@docker.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:N/VA:N/SC:H/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X\",\"baseScore\":4.1,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"attackRequirements\":\"NONE\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"PASSIVE\",\"vulnConfidentialityImpact\":\"LOW\",\"vulnIntegrityImpact\":\"NONE\",\"vulnAvailabilityImpact\":\"NONE\",\"subConfidentialityImpact\":\"HIGH\",\"subIntegrityImpact\":\"NONE\",\"subAvailabilityImpact\":\"NONE\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NOT_DEFINED\",\"Automatable\":\"NOT_DEFINED\",\"Recovery\":\"NOT_DEFINED\",\"valueDensity\":\"NOT_DEFINED\",\"vulnerabilityResponseEffort\":\"NOT_DEFINED\",\"providerUrgency\":\"NOT_DEFINED\"}}]},\"weaknesses\":[{\"source\":\"security@docker.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-532\"}]}],\"references\":[{\"url\":\"https://github.com/docker/buildx\",\"source\":\"security@docker.com\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-0495\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-03-18T16:25:23.455442Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-03-18T16:25:37.470Z\"}}], \"cna\": {\"title\": \"Secrets leakage to telemetry endpoint via cache backend configuration via buildx\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"impacts\": [{\"capecId\": \"CAPEC-21\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-21 Exploitation of Trusted Identifiers\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NOT_DEFINED\", \"version\": \"4.0\", \"Recovery\": \"NOT_DEFINED\", \"baseScore\": 4.1, \"Automatable\": \"NOT_DEFINED\", \"attackVector\": \"LOCAL\", \"baseSeverity\": \"MEDIUM\", \"valueDensity\": \"NOT_DEFINED\", \"vectorString\": \"CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:P/VC:L/VI:N/VA:N/SC:H/SI:N/SA:N\", \"providerUrgency\": \"NOT_DEFINED\", \"userInteraction\": \"PASSIVE\", \"attackComplexity\": \"LOW\", \"attackRequirements\": \"NONE\", \"privilegesRequired\": \"LOW\", \"subIntegrityImpact\": \"NONE\", \"vulnIntegrityImpact\": \"NONE\", \"subAvailabilityImpact\": \"NONE\", \"vulnAvailabilityImpact\": \"NONE\", \"subConfidentialityImpact\": \"HIGH\", \"vulnConfidentialityImpact\": \"LOW\", \"vulnerabilityResponseEffort\": \"NOT_DEFINED\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"repo\": \"https://github.com/docker/buildx\", \"vendor\": \"docker\", \"product\": \"buildx\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"versionType\": \"semver\", \"lessThanOrEqual\": \"0.21.2\"}], \"packageName\": \"buildx\", \"defaultStatus\": \"unaffected\"}], \"references\": [{\"url\": \"https://github.com/docker/buildx\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Buildx is a Docker CLI plugin that extends build capabilities using BuildKit.\\n\\nCache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from\\u00a0configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command.\\u00a0OpenTelemetry traces are also saved in BuildKit daemon\u0027s history records.\\n\\n\\nThis vulnerability does not impact secrets passed to the Github cache backend\\u00a0via environment variables or registry authentication.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"\u003cp\u003eBuildx is a Docker CLI plugin that extends build capabilities using BuildKit.\u003c/p\u003e\u003cp\u003eCache backends support credentials by setting secrets directly as attribute values in \u003ccode\u003ecache-to/cache-from\u003c/code\u003e\u0026nbsp;configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command.\u0026nbsp;OpenTelemetry traces are also saved in BuildKit daemon\u0027s history records.\u003cbr\u003e\u003c/p\u003e\u003cp\u003e\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003eThis vulnerability does not impact secrets passed to the Github cache backend\u0026nbsp;\u003cspan style=\\\"background-color: rgb(255, 255, 255);\\\"\u003evia environment variables or registry authentication\u003c/span\u003e.\u003c/span\u003e\u003cbr\u003e\u003c/p\u003e\u003cbr\u003e\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-532\", \"description\": \"CWE-532 Insertion of Sensitive Information into Log File\"}]}], \"providerMetadata\": {\"orgId\": \"686469e6-3ff6-451b-ab8b-cf5b9e89401e\", \"shortName\": \"Docker\", \"dateUpdated\": \"2025-03-17T19:21:11.295Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-0495\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-03-18T16:25:42.668Z\", \"dateReserved\": \"2025-01-15T15:26:40.672Z\", \"assignerOrgId\": \"686469e6-3ff6-451b-ab8b-cf5b9e89401e\", \"datePublished\": \"2025-03-17T19:21:11.295Z\", \"assignerShortName\": \"Docker\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
SUSE-SU-2025:1344-1
Vulnerability from csaf_suse - Published: 2025-04-17 15:14 - Updated: 2025-04-17 15:14Summary
Security update for docker-stable
Severity
Moderate
Notes
Title of the patch: Security update for docker-stable
Description of the patch: This update for docker-stable fixes the following issues:
- CVE-2025-0495: buildx: Fixed credential leakage to telemetry endpoints when
credentials allowed to be set as attribute values in cache-to/cache-from configuration (bsc#1239765)
Other fixes:
- Update to docker-buildx v0.22.0.
- Disable transparent SUSEConnect support for SLE-16. (jsc#PED-12534)
- Now that the only blocker for docker-buildx support was removed for SLE-16,
enable docker-buildx for SLE-16 as well. (jsc#PED-8905)
Patchnames: SUSE-2025-1344,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-1344
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-24.0.9_ce-1.14.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch | — |
Vendor Fix
|
Threats
Impact
moderate
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for docker-stable",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for docker-stable fixes the following issues:\n\n- CVE-2025-0495: buildx: Fixed credential leakage to telemetry endpoints when\n credentials allowed to be set as attribute values in cache-to/cache-from configuration (bsc#1239765)\n\nOther fixes:\n\n- Update to docker-buildx v0.22.0. \n- Disable transparent SUSEConnect support for SLE-16. (jsc#PED-12534)\n- Now that the only blocker for docker-buildx support was removed for SLE-16,\n enable docker-buildx for SLE-16 as well. (jsc#PED-8905)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2025-1344,SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-1344",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_1344-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:1344-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-20251344-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:1344-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-April/039061.html"
},
{
"category": "self",
"summary": "SUSE Bug 1239765",
"url": "https://bugzilla.suse.com/1239765"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-0495 page",
"url": "https://www.suse.com/security/cve/CVE-2025-0495/"
}
],
"title": "Security update for docker-stable",
"tracking": {
"current_release_date": "2025-04-17T15:14:06Z",
"generator": {
"date": "2025-04-17T15:14:06Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:1344-1",
"initial_release_date": "2025-04-17T15:14:06Z",
"revision_history": [
{
"date": "2025-04-17T15:14:06Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "docker-stable-24.0.9_ce-1.14.1.aarch64",
"product": {
"name": "docker-stable-24.0.9_ce-1.14.1.aarch64",
"product_id": "docker-stable-24.0.9_ce-1.14.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-stable-24.0.9_ce-1.14.1.i586",
"product": {
"name": "docker-stable-24.0.9_ce-1.14.1.i586",
"product_id": "docker-stable-24.0.9_ce-1.14.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch",
"product": {
"name": "docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch",
"product_id": "docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-stable-fish-completion-24.0.9_ce-1.14.1.noarch",
"product": {
"name": "docker-stable-fish-completion-24.0.9_ce-1.14.1.noarch",
"product_id": "docker-stable-fish-completion-24.0.9_ce-1.14.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-stable-rootless-extras-24.0.9_ce-1.14.1.noarch",
"product": {
"name": "docker-stable-rootless-extras-24.0.9_ce-1.14.1.noarch",
"product_id": "docker-stable-rootless-extras-24.0.9_ce-1.14.1.noarch"
}
},
{
"category": "product_version",
"name": "docker-stable-zsh-completion-24.0.9_ce-1.14.1.noarch",
"product": {
"name": "docker-stable-zsh-completion-24.0.9_ce-1.14.1.noarch",
"product_id": "docker-stable-zsh-completion-24.0.9_ce-1.14.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-stable-24.0.9_ce-1.14.1.ppc64le",
"product": {
"name": "docker-stable-24.0.9_ce-1.14.1.ppc64le",
"product_id": "docker-stable-24.0.9_ce-1.14.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-stable-24.0.9_ce-1.14.1.s390x",
"product": {
"name": "docker-stable-24.0.9_ce-1.14.1.s390x",
"product_id": "docker-stable-24.0.9_ce-1.14.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-stable-24.0.9_ce-1.14.1.x86_64",
"product": {
"name": "docker-stable-24.0.9_ce-1.14.1.x86_64",
"product_id": "docker-stable-24.0.9_ce-1.14.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles-ltss-extended-security:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-stable-24.0.9_ce-1.14.1.x86_64 as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-24.0.9_ce-1.14.1.x86_64"
},
"product_reference": "docker-stable-24.0.9_ce-1.14.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch as component of SUSE Linux Enterprise Server LTSS Extended Security 12 SP5",
"product_id": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch"
},
"product_reference": "docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server LTSS Extended Security 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-0495",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-0495"
}
],
"notes": [
{
"category": "general",
"text": "Buildx is a Docker CLI plugin that extends build capabilities using BuildKit.\n\nCache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command. OpenTelemetry traces are also saved in BuildKit daemon\u0027s history records.\n\n\nThis vulnerability does not impact secrets passed to the Github cache backend via environment variables or registry authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-24.0.9_ce-1.14.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-0495",
"url": "https://www.suse.com/security/cve/CVE-2025-0495"
},
{
"category": "external",
"summary": "SUSE Bug 1239765 for CVE-2025-0495",
"url": "https://bugzilla.suse.com/1239765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-24.0.9_ce-1.14.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-24.0.9_ce-1.14.1.x86_64",
"SUSE Linux Enterprise Server LTSS Extended Security 12 SP5:docker-stable-bash-completion-24.0.9_ce-1.14.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-04-17T15:14:06Z",
"details": "moderate"
}
],
"title": "CVE-2025-0495"
}
]
}
SUSE-SU-2025:20205-1
Vulnerability from csaf_suse - Published: 2025-04-24 14:50 - Updated: 2025-04-24 14:50Summary
Security update for docker
Severity
Important
Notes
Title of the patch: Security update for docker
Description of the patch: This update for docker fixes the following issues:
- Updated to docker-buildx v0.22.0.
- Updated to Docker 27.5.1-ce.
- CVE-2025-0495: buildx: Fixed credential leakage to telemetry endpoints (bsc#1239765)
- CVE-2025-22868: Fixed golang.org/x/oauth2/jws: Unexpected memory
consumption during token parsing in golang.org/x/oauth2 (bsc#1239185)
- CVE-2025-22869: Fixed golang.org/x/crypto/ssh: Denial of Service in
the Key Exchange of golang.org/x/crypto/ssh (bsc#1239322).
- CVE-2024-29018:moby: external DNS requests from 'internal' networks could lead to data exfiltration (bsc#1234089)
- Make container-selinux requirement conditional on selinux-policy (bsc#1237367)
Patchnames: SUSE-SLE-Micro-6.0-301
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.9 (Medium)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
24 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for docker",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for docker fixes the following issues:\n\n- Updated to docker-buildx v0.22.0.\n- Updated to Docker 27.5.1-ce.\n- CVE-2025-0495: buildx: Fixed credential leakage to telemetry endpoints (bsc#1239765)\n- CVE-2025-22868: Fixed golang.org/x/oauth2/jws: Unexpected memory\n consumption during token parsing in golang.org/x/oauth2 (bsc#1239185)\n- CVE-2025-22869: Fixed golang.org/x/crypto/ssh: Denial of Service in\n the Key Exchange of golang.org/x/crypto/ssh (bsc#1239322).\n- CVE-2024-29018:moby: external DNS requests from \u0027internal\u0027 networks could lead to data exfiltration (bsc#1234089)\n- Make container-selinux requirement conditional on selinux-policy (bsc#1237367)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.0-301",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20205-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20205-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520205-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20205-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-June/021135.html"
},
{
"category": "self",
"summary": "SUSE Bug 1223409",
"url": "https://bugzilla.suse.com/1223409"
},
{
"category": "self",
"summary": "SUSE Bug 1234089",
"url": "https://bugzilla.suse.com/1234089"
},
{
"category": "self",
"summary": "SUSE Bug 1237335",
"url": "https://bugzilla.suse.com/1237335"
},
{
"category": "self",
"summary": "SUSE Bug 1237367",
"url": "https://bugzilla.suse.com/1237367"
},
{
"category": "self",
"summary": "SUSE Bug 1239185",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "self",
"summary": "SUSE Bug 1239322",
"url": "https://bugzilla.suse.com/1239322"
},
{
"category": "self",
"summary": "SUSE Bug 1239765",
"url": "https://bugzilla.suse.com/1239765"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2024-29018 page",
"url": "https://www.suse.com/security/cve/CVE-2024-29018/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-0495 page",
"url": "https://www.suse.com/security/cve/CVE-2025-0495/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
}
],
"title": "Security update for docker",
"tracking": {
"current_release_date": "2025-04-24T14:50:44Z",
"generator": {
"date": "2025-04-24T14:50:44Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20205-1",
"initial_release_date": "2025-04-24T14:50:44Z",
"revision_history": [
{
"date": "2025-04-24T14:50:44Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "docker-27.5.1_ce-2.1.aarch64",
"product": {
"name": "docker-27.5.1_ce-2.1.aarch64",
"product_id": "docker-27.5.1_ce-2.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-buildx-0.22.0-2.1.aarch64",
"product": {
"name": "docker-buildx-0.22.0-2.1.aarch64",
"product_id": "docker-buildx-0.22.0-2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-27.5.1_ce-2.1.s390x",
"product": {
"name": "docker-27.5.1_ce-2.1.s390x",
"product_id": "docker-27.5.1_ce-2.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-buildx-0.22.0-2.1.s390x",
"product": {
"name": "docker-buildx-0.22.0-2.1.s390x",
"product_id": "docker-buildx-0.22.0-2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-27.5.1_ce-2.1.x86_64",
"product": {
"name": "docker-27.5.1_ce-2.1.x86_64",
"product_id": "docker-27.5.1_ce-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-buildx-0.22.0-2.1.x86_64",
"product": {
"name": "docker-buildx-0.22.0-2.1.x86_64",
"product_id": "docker-buildx-0.22.0-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.0",
"product": {
"name": "SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.0"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-27.5.1_ce-2.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64"
},
"product_reference": "docker-27.5.1_ce-2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-27.5.1_ce-2.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x"
},
"product_reference": "docker-27.5.1_ce-2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-27.5.1_ce-2.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64"
},
"product_reference": "docker-27.5.1_ce-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-buildx-0.22.0-2.1.aarch64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64"
},
"product_reference": "docker-buildx-0.22.0-2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-buildx-0.22.0-2.1.s390x as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x"
},
"product_reference": "docker-buildx-0.22.0-2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-buildx-0.22.0-2.1.x86_64 as component of SUSE Linux Micro 6.0",
"product_id": "SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
},
"product_reference": "docker-buildx-0.22.0-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-29018",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2024-29018"
}
],
"notes": [
{
"category": "general",
"text": "Moby is an open source container framework that is a key component of Docker Engine, Docker Desktop, and other distributions of container tooling or runtimes. Moby\u0027s networking implementation allows for many networks, each with their own IP address range and gateway, to be defined. This feature is frequently referred to as custom networks, as each network can have a different driver, set of parameters and thus behaviors. When creating a network, the `--internal` flag is used to designate a network as _internal_. The `internal` attribute in a docker-compose.yml file may also be used to mark a network _internal_, and other API clients may specify the `internal` parameter as well.\n\nWhen containers with networking are created, they are assigned unique network interfaces and IP addresses. The host serves as a router for non-internal networks, with a gateway IP that provides SNAT/DNAT to/from container IPs.\n\nContainers on an internal network may communicate between each other, but are precluded from communicating with any networks the host has access to (LAN or WAN) as no default route is configured, and firewall rules are set up to drop all outgoing traffic. Communication with the gateway IP address (and thus appropriately configured host services) is possible, and the host may communicate with any container IP directly.\n\nIn addition to configuring the Linux kernel\u0027s various networking features to enable container networking, `dockerd` directly provides some services to container networks. Principal among these is serving as a resolver, enabling service discovery, and resolution of names from an upstream resolver.\n\nWhen a DNS request for a name that does not correspond to a container is received, the request is forwarded to the configured upstream resolver. This request is made from the container\u0027s network namespace: the level of access and routing of traffic is the same as if the request was made by the container itself.\n\nAs a consequence of this design, containers solely attached to an internal network will be unable to resolve names using the upstream resolver, as the container itself is unable to communicate with that nameserver. Only the names of containers also attached to the internal network are able to be resolved.\n\nMany systems run a local forwarding DNS resolver. As the host and any containers have separate loopback devices, a consequence of the design described above is that containers are unable to resolve names from the host\u0027s configured resolver, as they cannot reach these addresses on the host loopback device. To bridge this gap, and to allow containers to properly resolve names even when a local forwarding resolver is used on a loopback address, `dockerd` detects this scenario and instead forward DNS requests from the host namework namespace. The loopback resolver then forwards the requests to its configured upstream resolvers, as expected.\n\nBecause `dockerd` forwards DNS requests to the host loopback device, bypassing the container network namespace\u0027s normal routing semantics entirely, internal networks can unexpectedly forward DNS requests to an external nameserver. By registering a domain for which they control the authoritative nameservers, an attacker could arrange for a compromised container to exfiltrate data by encoding it in DNS queries that will eventually be answered by their nameservers.\n\nDocker Desktop is not affected, as Docker Desktop always runs an internal resolver on a RFC 1918 address.\n\nMoby releases 26.0.0, 25.0.4, and 23.0.11 are patched to prevent forwarding any DNS requests from internal networks. As a workaround, run containers intended to be solely attached to internal networks with a custom upstream address, which will force all upstream DNS queries to be resolved from the container\u0027s network namespace.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2024-29018",
"url": "https://www.suse.com/security/cve/CVE-2024-29018"
},
{
"category": "external",
"summary": "SUSE Bug 1234089 for CVE-2024-29018",
"url": "https://bugzilla.suse.com/1234089"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-04-24T14:50:44Z",
"details": "moderate"
}
],
"title": "CVE-2024-29018"
},
{
"cve": "CVE-2025-0495",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-0495"
}
],
"notes": [
{
"category": "general",
"text": "Buildx is a Docker CLI plugin that extends build capabilities using BuildKit.\n\nCache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command. OpenTelemetry traces are also saved in BuildKit daemon\u0027s history records.\n\n\nThis vulnerability does not impact secrets passed to the Github cache backend via environment variables or registry authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-0495",
"url": "https://www.suse.com/security/cve/CVE-2025-0495"
},
{
"category": "external",
"summary": "SUSE Bug 1239765 for CVE-2025-0495",
"url": "https://bugzilla.suse.com/1239765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-04-24T14:50:44Z",
"details": "moderate"
}
],
"title": "CVE-2025-0495"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-04-24T14:50:44Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.s390x",
"SUSE Linux Micro 6.0:docker-27.5.1_ce-2.1.x86_64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.aarch64",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.s390x",
"SUSE Linux Micro 6.0:docker-buildx-0.22.0-2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-04-24T14:50:44Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
}
]
}
SUSE-SU-2025:20360-1
Vulnerability from csaf_suse - Published: 2025-05-27 08:59 - Updated: 2025-05-27 08:59Summary
Security update for docker
Severity
Important
Notes
Title of the patch: Security update for docker
Description of the patch: This update for docker fixes the following issues:
Update to docker-buildx v0.22.0:
- CVE-2025-0495: buildx: credential leakage to telemetry endpoints when credentials allowed to be set as attribute values in cache-to/cache-from configuration (bsc#1239765).
- CVE-2025-22868: golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2 (bsc#1239185).
- CVE-2025-22869: golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh (bsc#1239322).
Bug fixes:
- Fix unconditional container-selinux pull (bsc#1237367).
Patchnames: SUSE-SLE-Micro-6.1-121
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.9 (Medium)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.5 (High)
Affected products
Recommended
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
18 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for docker",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for docker fixes the following issues:\n\nUpdate to docker-buildx v0.22.0:\n\n- CVE-2025-0495: buildx: credential leakage to telemetry endpoints when credentials allowed to be set as attribute values in cache-to/cache-from configuration (bsc#1239765).\n- CVE-2025-22868: golang.org/x/oauth2/jws: Unexpected memory consumption during token parsing in golang.org/x/oauth2 (bsc#1239185).\n- CVE-2025-22869: golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh (bsc#1239322).\n\nBug fixes:\n\n- Fix unconditional container-selinux pull (bsc#1237367).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-121",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20360-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20360-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520360-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20360-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-June/039499.html"
},
{
"category": "self",
"summary": "SUSE Bug 1237367",
"url": "https://bugzilla.suse.com/1237367"
},
{
"category": "self",
"summary": "SUSE Bug 1239185",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "self",
"summary": "SUSE Bug 1239322",
"url": "https://bugzilla.suse.com/1239322"
},
{
"category": "self",
"summary": "SUSE Bug 1239765",
"url": "https://bugzilla.suse.com/1239765"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-0495 page",
"url": "https://www.suse.com/security/cve/CVE-2025-0495/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22868 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22868/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-22869 page",
"url": "https://www.suse.com/security/cve/CVE-2025-22869/"
}
],
"title": "Security update for docker",
"tracking": {
"current_release_date": "2025-05-27T08:59:26Z",
"generator": {
"date": "2025-05-27T08:59:26Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20360-1",
"initial_release_date": "2025-05-27T08:59:26Z",
"revision_history": [
{
"date": "2025-05-27T08:59:26Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"product": {
"name": "docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"product_id": "docker-27.5.1_ce-slfo.1.1_2.1.aarch64"
}
},
{
"category": "product_version",
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"product": {
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"product_id": "docker-buildx-0.22.0-slfo.1.1_2.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"product": {
"name": "docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"product_id": "docker-27.5.1_ce-slfo.1.1_2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"product": {
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"product_id": "docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"product": {
"name": "docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"product_id": "docker-27.5.1_ce-slfo.1.1_2.1.s390x"
}
},
{
"category": "product_version",
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"product": {
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"product_id": "docker-buildx-0.22.0-slfo.1.1_2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"product": {
"name": "docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"product_id": "docker-27.5.1_ce-slfo.1.1_2.1.x86_64"
}
},
{
"category": "product_version",
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.x86_64",
"product": {
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.x86_64",
"product_id": "docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-27.5.1_ce-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64"
},
"product_reference": "docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-27.5.1_ce-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le"
},
"product_reference": "docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-27.5.1_ce-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x"
},
"product_reference": "docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-27.5.1_ce-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64"
},
"product_reference": "docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64"
},
"product_reference": "docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le"
},
"product_reference": "docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.s390x as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x"
},
"product_reference": "docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "docker-buildx-0.22.0-slfo.1.1_2.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
},
"product_reference": "docker-buildx-0.22.0-slfo.1.1_2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-0495",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-0495"
}
],
"notes": [
{
"category": "general",
"text": "Buildx is a Docker CLI plugin that extends build capabilities using BuildKit.\n\nCache backends support credentials by setting secrets directly as attribute values in cache-to/cache-from configuration. When supplied as user input, these secure values may be inadvertently captured in OpenTelemetry traces as part of the arguments and flags for the traced CLI command. OpenTelemetry traces are also saved in BuildKit daemon\u0027s history records.\n\n\nThis vulnerability does not impact secrets passed to the Github cache backend via environment variables or registry authentication.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-0495",
"url": "https://www.suse.com/security/cve/CVE-2025-0495"
},
{
"category": "external",
"summary": "SUSE Bug 1239765 for CVE-2025-0495",
"url": "https://bugzilla.suse.com/1239765"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-05-27T08:59:26Z",
"details": "moderate"
}
],
"title": "CVE-2025-0495"
},
{
"cve": "CVE-2025-22868",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22868"
}
],
"notes": [
{
"category": "general",
"text": "An attacker can pass a malicious malformed token which causes unexpected memory to be consumed during parsing.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22868",
"url": "https://www.suse.com/security/cve/CVE-2025-22868"
},
{
"category": "external",
"summary": "SUSE Bug 1239185 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239185"
},
{
"category": "external",
"summary": "SUSE Bug 1239186 for CVE-2025-22868",
"url": "https://bugzilla.suse.com/1239186"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-05-27T08:59:26Z",
"details": "important"
}
],
"title": "CVE-2025-22868"
},
{
"cve": "CVE-2025-22869",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-22869"
}
],
"notes": [
{
"category": "general",
"text": "SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-22869",
"url": "https://www.suse.com/security/cve/CVE-2025-22869"
},
{
"category": "external",
"summary": "SUSE Bug 1239322 for CVE-2025-22869",
"url": "https://bugzilla.suse.com/1239322"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-27.5.1_ce-slfo.1.1_2.1.x86_64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.aarch64",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.ppc64le",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.s390x",
"SUSE Linux Micro 6.1:docker-buildx-0.22.0-slfo.1.1_2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-05-27T08:59:26Z",
"details": "important"
}
],
"title": "CVE-2025-22869"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…