openssh-9.9p2-1.1 on GA media SUSE Patch security@suse.de SUSE Security Team openSUSE-SU-2025:15882 Final 1 1 2025-02-18T00:00:00Z current 2025-02-18T00:00:00Z 2025-02-18T00:00:00Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z openssh-9.9p2-1.1 on GA media These are all security issues fixed in the openssh-9.9p2-1.1 package on the GA media of openSUSE Tumbleweed. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). openSUSE-Tumbleweed-2025-15882 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/security/rating/ SUSE Security Ratings https://www.suse.com/security/cve/CVE-2025-26465/ SUSE CVE CVE-2025-26465 page https://www.suse.com/security/cve/CVE-2025-26466/ SUSE CVE CVE-2025-26466 page openSUSE Tumbleweed openssh-9.9p2-1.1 openssh-cavs-9.9p2-1.1 openssh-clients-9.9p2-1.1 openssh-common-9.9p2-1.1 openssh-fips-9.9p2-1.1 openssh-helpers-9.9p2-1.1 openssh-server-9.9p2-1.1 openssh-server-config-rootlogin-9.9p2-1.1 openssh-9.9p2-1.1 as a component of openSUSE Tumbleweed openssh-cavs-9.9p2-1.1 as a component of openSUSE Tumbleweed openssh-clients-9.9p2-1.1 as a component of openSUSE Tumbleweed openssh-common-9.9p2-1.1 as a component of openSUSE Tumbleweed openssh-fips-9.9p2-1.1 as a component of openSUSE Tumbleweed openssh-helpers-9.9p2-1.1 as a component of openSUSE Tumbleweed openssh-server-9.9p2-1.1 as a component of openSUSE Tumbleweed openssh-server-config-rootlogin-9.9p2-1.1 as a component of openSUSE Tumbleweed A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. For an attack to be considered successful, the attacker needs to manage to exhaust the client's memory resource first, turning the attack complexity high. CVE-2025-26465 openSUSE Tumbleweed:openssh-9.9p2-1.1 openSUSE Tumbleweed:openssh-cavs-9.9p2-1.1 openSUSE Tumbleweed:openssh-clients-9.9p2-1.1 openSUSE Tumbleweed:openssh-common-9.9p2-1.1 openSUSE Tumbleweed:openssh-fips-9.9p2-1.1 openSUSE Tumbleweed:openssh-helpers-9.9p2-1.1 openSUSE Tumbleweed:openssh-server-9.9p2-1.1 openSUSE Tumbleweed:openssh-server-config-rootlogin-9.9p2-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-26465.html CVE-2025-26465 https://bugzilla.suse.com/1237040 SUSE Bug 1237040 https://bugzilla.suse.com/1237041 SUSE Bug 1237041 A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to an uncontrolled increase in memory consumption on the server side. Consequently, the server may become unavailable, resulting in a denial of service attack. CVE-2025-26466 openSUSE Tumbleweed:openssh-9.9p2-1.1 openSUSE Tumbleweed:openssh-cavs-9.9p2-1.1 openSUSE Tumbleweed:openssh-clients-9.9p2-1.1 openSUSE Tumbleweed:openssh-common-9.9p2-1.1 openSUSE Tumbleweed:openssh-fips-9.9p2-1.1 openSUSE Tumbleweed:openssh-helpers-9.9p2-1.1 openSUSE Tumbleweed:openssh-server-9.9p2-1.1 openSUSE Tumbleweed:openssh-server-config-rootlogin-9.9p2-1.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/security/cve/CVE-2025-26466.html CVE-2025-26466 https://bugzilla.suse.com/1237041 SUSE Bug 1237041