OPENSUSE-SU-2022:0040-1

Advisory lineage Upstream: 1 Downstream: 0

Upstream

CVE-2021-43565

Published: 10 Jan 2022, 09:45

Last modified:04 Feb 2026, 02:42

Vulnerability Summary

Overall Risk (default)

minimal

0/100

CVSS Score

No data

EPSS Score

No data

KEV

Not listed

Ransomware

No reports

Public exploits

None found

Dark Web

Not detected

Timeline

10 Jan 2022, 09:45

Published

Vulnerability first disclosed

04 Feb 2026, 02:42

Last Modified

Vulnerability information updated

Description

Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container fixes the following issues: - CVE-2021-43565: Fixes a vulnerability in the golang.org/x/crypto/ssh package which allowed unauthenticated clients to cause a panic in SSH servers. (bsc#1193930)

Affected Systems

opensuse•kubevirt&distro=openSUSE Leap 15.3
< 0.45.0-8.7.1
suse•kafka-kit&distro=SUSE Package Hub 15 SP2
< 2.1.0-bp152.2.3.1
suse•kafka&distro=SUSE Package Hub 15 SP2
< 2.1.0-bp152.2.3.1

OPENSUSE-SU-2022:0040-1

Vulnerability Summary

Timeline

Description

Affected Systems

References (5)