rpm package
suse/openssh&distro=SUSE Manager Server LTS 4.3
pkg:rpm/suse/openssh&distro=SUSE%20Manager%20Server%20LTS%204.3
Vulnerabilities (2)
| CVE | Sev | CVSS | KEV | Affected versions | Fixed in | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2025-61985 | Low | 3.6 | < 8.4p1-150300.3.57.1 | 8.4p1-150300.3.57.1 | Oct 6, 2025 | ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used. | |
| CVE-2025-61984 | Low | 3.6 | < 8.4p1-150300.3.57.1 | 8.4p1-150300.3.57.1 | Oct 6, 2025 | ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrusted sources are the command line and %-sequence expansion of a configuration file |
- affected < 8.4p1-150300.3.57.1fixed 8.4p1-150300.3.57.1
ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used.
- affected < 8.4p1-150300.3.57.1fixed 8.4p1-150300.3.57.1
ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrusted sources are the command line and %-sequence expansion of a configuration file