SUSE-SU-2025:20009-1
Advisory lineage Upstream: 4 Downstream: 0
Published: 03 Feb 2025, 08:47
Last modified:23 Mar 2026, 04:50
Vulnerability Summary
Overall Risk (default)
minimal
0/100 CVSS Score
No data
EPSS Score
No data
KEV
Not listed
Ransomware
No reports
Public exploits
None found
Dark Web
Not detected
Timeline
03 Feb 2025, 08:47
Published
Vulnerability first disclosed
23 Mar 2026, 04:50
Last Modified
Vulnerability information updated
Description
Security update for openssh This update for openssh fixes the following issues: - CVE-2024-39894: Fixed timing attacks against echo-off password entry (bsc#1227318) - CVE-2024-6387: Fixed race condition in a signal handler (bsc#1226642).
Affected Systems
- suse•openssh&distro=SUSE Linux Micro 6.0
< 9.6p1-2.1
References (9)
- https://www.suse.com/support/update/announcement/2025/suse-su-202520009-1/
- https://bugzilla.suse.com/1217950
- https://bugzilla.suse.com/1218215
- https://bugzilla.suse.com/1226642
- https://bugzilla.suse.com/1227318
- https://www.suse.com/security/cve/CVE-2023-48795
- https://www.suse.com/security/cve/CVE-2023-51385
- https://www.suse.com/security/cve/CVE-2024-39894
- https://www.suse.com/security/cve/CVE-2024-6387