Security update 4.3.16.2 for Multi-Linux Manager Server LTS SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2025:4479-1 Final 1 1 2025-12-18T12:15:07Z current 2025-12-18T12:15:07Z 2025-12-18T12:15:07Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update 4.3.16.2 for Multi-Linux Manager Server LTS This update fixes the following issues: release-notes-susemanager: - Update to SUSE Manager 4.3.16.2 * SUSE Linux Enterprise Server 15 SP6 LTSS channels enabled * CVEs Fixed: CVE-2025-11065, CVE-2025-64751, CCVE-2025-47911, CVE-2025-58190 CVE-2025-62349, CVE-2025-62348 * Bugs mentioned: bsc#1237060, bsc#1241455, bsc#1250911, bsc#1251864, bsc#1253024 The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). Container suse/manager/4.3/proxy-httpd:latest-2025-4479,SUSE-2025-4479,SUSE-SLE-Product-SUSE-Manager-Proxy-4.3-LTS-2025-4479,SUSE-SLE-Product-SUSE-Manager-Server-4.3-LTS-2025-4479 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2025/suse-su-20254479-1/ Link for SUSE-SU-2025:4479-1 https://lists.suse.com/pipermail/sle-security-updates/2025-December/023616.html E-Mail link for SUSE-SU-2025:4479-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1237060 SUSE Bug 1237060 https://bugzilla.suse.com/1241455 SUSE Bug 1241455 https://bugzilla.suse.com/1250911 SUSE Bug 1250911 https://bugzilla.suse.com/1251864 SUSE Bug 1251864 https://bugzilla.suse.com/1253024 SUSE Bug 1253024 https://www.suse.com/security/cve/CVE-2025-11065/ SUSE CVE CVE-2025-11065 page https://www.suse.com/security/cve/CVE-2025-47911/ SUSE CVE CVE-2025-47911 page https://www.suse.com/security/cve/CVE-2025-58190/ SUSE CVE CVE-2025-58190 page https://www.suse.com/security/cve/CVE-2025-62348/ SUSE CVE CVE-2025-62348 page https://www.suse.com/security/cve/CVE-2025-62349/ SUSE CVE CVE-2025-62349 page https://www.suse.com/security/cve/CVE-2025-64751/ SUSE CVE CVE-2025-64751 page Container suse/manager/4.3/proxy-httpd:latest SUSE Manager Proxy LTS 4.3 SUSE Manager Server LTS 4.3 release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 release-notes-susemanager-4.3.16.2-150400.3.148.1 release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 as a component of Container suse/manager/4.3/proxy-httpd:latest release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 as a component of SUSE Manager Proxy LTS 4.3 release-notes-susemanager-4.3.16.2-150400.3.148.1 as a component of SUSE Manager Server LTS 4.3 unknown CVE-2025-11065 Container suse/manager/4.3/proxy-httpd:latest:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Proxy LTS 4.3:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Server LTS 4.3:release-notes-susemanager-4.3.16.2-150400.3.148.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254479-1/ https://www.suse.com/security/cve/CVE-2025-11065.html CVE-2025-11065 https://bugzilla.suse.com/1250608 SUSE Bug 1250608 unknown CVE-2025-47911 Container suse/manager/4.3/proxy-httpd:latest:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Proxy LTS 4.3:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Server LTS 4.3:release-notes-susemanager-4.3.16.2-150400.3.148.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254479-1/ https://www.suse.com/security/cve/CVE-2025-47911.html CVE-2025-47911 https://bugzilla.suse.com/1251308 SUSE Bug 1251308 unknown CVE-2025-58190 Container suse/manager/4.3/proxy-httpd:latest:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Proxy LTS 4.3:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Server LTS 4.3:release-notes-susemanager-4.3.16.2-150400.3.148.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254479-1/ https://www.suse.com/security/cve/CVE-2025-58190.html CVE-2025-58190 https://bugzilla.suse.com/1251309 SUSE Bug 1251309 unknown CVE-2025-62348 Container suse/manager/4.3/proxy-httpd:latest:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Proxy LTS 4.3:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Server LTS 4.3:release-notes-susemanager-4.3.16.2-150400.3.148.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254479-1/ https://www.suse.com/security/cve/CVE-2025-62348.html CVE-2025-62348 https://bugzilla.suse.com/1254256 SUSE Bug 1254256 unknown CVE-2025-62349 Container suse/manager/4.3/proxy-httpd:latest:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Proxy LTS 4.3:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Server LTS 4.3:release-notes-susemanager-4.3.16.2-150400.3.148.1 moderate To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254479-1/ https://www.suse.com/security/cve/CVE-2025-62349.html CVE-2025-62349 https://bugzilla.suse.com/1254257 SUSE Bug 1254257 OpenFGA is a high-performance and flexible authorization/permission engine built for developers and inspired by Google Zanzibar. OpenFGA v1.4.0 to v1.11.0 ( openfga-0.1.34 <= Helm chart <= openfga-0.2.48, v.1.4.0 <= docker <= v.1.11.0) are vulnerable to improper policy enforcement when certain Check and ListObject calls are executed. This issue has been patched in version 1.11.1. CVE-2025-64751 Container suse/manager/4.3/proxy-httpd:latest:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Proxy LTS 4.3:release-notes-susemanager-proxy-4.3.16.2-150400.3.104.2 SUSE Manager Server LTS 4.3:release-notes-susemanager-4.3.16.2-150400.3.148.1 important To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2025/suse-su-20254479-1/ https://www.suse.com/security/cve/CVE-2025-64751.html CVE-2025-64751 https://bugzilla.suse.com/1254112 SUSE Bug 1254112