SUSE-SU-2025:20226-1

See a problem?
Please try reporting it to the source first.
Source
https://www.suse.com/support/update/announcement/2025/suse-su-202520226-1/
Import Source
https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:20226-1.json
JSON Data
https://api.osv.dev/v1/vulns/SUSE-SU-2025:20226-1
Upstream
Related
Published
2025-02-26T13:44:24Z
Modified
2026-03-23T04:48:12.459468Z
Summary
Security update for openssh
Details

This update for openssh fixes the following issues:

Security issues fixed:

  • CVE-2025-26465: Fixed a MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client (bsc#1237040)
  • CVE-2025-26466: Fixed a DoS attack against OpenSSH's client and server (bsc#1237041)

Other issues fixed:

  • Fix ssh client segfault with GSSAPIKeyExchange=yes in ssh_kex2 due to gssapi proposal not being correctly initialized (bsc#1236826).
  • Add a patch to fix a regression introduced in 9.6 that makes X11 forwarding very slow. (bsc#1229449)
  • Fixed RFC4256 implementation so that keyboard-interactive authentication method can send instructions and sshd shows them to users even before a prompt is requested. This fixes MFA push notifications (bsc#1229010).
  • Fix a dbus connection leaked in the logind patch that was missing a sdbusunref call
  • Add a patch that fixes a small memory leak when parsing the subsystem configuration option:
  • Remove empty line at the end of sshd-sle.pamd (bsc#1227456)
References

Affected packages

SUSE:Linux Micro 6.1 / openssh

Package

Name
openssh
Purl
pkg:rpm/suse/openssh&distro=SUSE%20Linux%20Micro%206.1

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
9.6p1-slfo.1.1_2.1

Ecosystem specific 

{
    "binaries": [
        {
            "openssh-server": "9.6p1-slfo.1.1_2.1",
            "openssh-clients": "9.6p1-slfo.1.1_2.1",
            "openssh": "9.6p1-slfo.1.1_2.1",
            "openssh-fips": "9.6p1-slfo.1.1_2.1",
            "openssh-server-config-rootlogin": "9.6p1-slfo.1.1_2.1",
            "openssh-common": "9.6p1-slfo.1.1_2.1"
        }
    ]
}

Database specific

source 
"https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2025:20226-1.json"