Upstream information

CVE-2025-22869 at MITRE

Description

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted.

SUSE information

Overall state of this security issue: New

This issue is currently rated as having important severity.

No SUSE Bugzilla entries cross referenced.

No SUSE Security Announcements cross referenced.

List of released packages

Product(s) Fixed package version(s) References
openSUSE Tumbleweed
  • govulncheck-vulndb >= 0.0.20250226T025151-1.1
  • teleport >= 17.2.9-1.1
  • teleport-bash-completion >= 17.2.9-1.1
  • teleport-fdpass-teleport >= 17.2.9-1.1
  • teleport-tbot >= 17.2.9-1.1
  • teleport-tbot-bash-completion >= 17.2.9-1.1
  • teleport-tbot-zsh-completion >= 17.2.9-1.1
  • teleport-tctl >= 17.2.9-1.1
  • teleport-tctl-bash-completion >= 17.2.9-1.1
  • teleport-tctl-zsh-completion >= 17.2.9-1.1
  • teleport-tsh >= 17.2.9-1.1
  • teleport-tsh-bash-completion >= 17.2.9-1.1
  • teleport-tsh-zsh-completion >= 17.2.9-1.1
  • teleport-zsh-completion >= 17.2.9-1.1
 Patchnames:
openSUSE-Tumbleweed-2025-14839
openSUSE-Tumbleweed-2025-14843

SUSE Timeline for this CVE

CVE page created: Wed Feb 26 16:00:37 2025
CVE page last modified: Fri Feb 28 01:03:15 2025