suse-su-2025:20474-1
Vulnerability from csaf_suse
Published
2025-07-10 14:27
Modified
2025-07-10 14:27
Summary
Security update for afterburn
Notes
Title of the patch
Security update for afterburn
Description of the patch
This update for afterburn fixes the following issues:
- Update to version 5.8.2:
* cargo: Afterburn release 5.8.2
* docs/release-notes: update for release 5.8.2
* cargo: update dependencies
* packit: add initial support
- Update to version 5.7.0:
* build(deps): bump crossbeam-channel from 0.5.13 to 0.5.15
* build(deps): bump tokio from 1.40.0 to 1.44.2
* CVE-2025-3416: openssl: Fixed Use-After-Free in Md::fetch and
Cipher::fetch in rust-openssl crate (bsc#1242665)
* build(deps): bump zbus from 4.4.0 to 5.5.0
* mod.rs: Fix clippy lint errors
* release-notes.md: add release notes for rust version update
* Cargo.toml: bump MSRV to 1.84.1
* build(deps): bump mockito from 1.6.1 to 1.7.0
* build(deps): bump serde_json from 1.0.139 to 1.0.140
* build(deps): bump tempfile from 3.17.1 to 3.19.1
* build(deps): bump clap from 4.5.31 to 4.5.35
* build(deps): bump reqwest from 0.12.12 to 0.12.15
* Update release notes.
* proxmoxve: Add more context to log messages.
* proxmoxve: Remove unneeded fields
* proxmoxve: Add tests for static network configuration from cloud-init.
* proxmoxve: Add support for static network configuration from cloud-init.
* build(deps): bump mailparse from 0.15.0 to 0.16.1
* build(deps): bump ring from 0.17.8 to 0.17.13
* build(deps): bump anyhow from 1.0.95 to 1.0.96
* release notes: add notes for tempfile bump from 3.16.0 to 3.17.1
* build(deps): bump serde from 1.0.217 to 1.0.218
* build(deps): bump openssl from 0.10.70 to 0.10.71
* build(deps): bump tempfile from 3.16.0 to 3.17.1
* build(deps): bump serde_json from 1.0.138 to 1.0.139
* build(deps): bump clap from 4.5.27 to 4.5.31
* add makefile targets for fmt,lint and test
* providers/openstack: ignore ec2 metadata if not present
* build(deps): bump ipnetwork from 0.20.0 to 0.21.1
* build(deps): bump reqwest from 0.12.7 to 0.12.12
* docs: add changelog entry
* proxmox: use noop provider if no configdrive
* add noop provider
* release-notes: remove "upcoming"
- Update to version 5.7.0:
* cargo: Afterburn release 5.7.0
* docs/release-notes: update for release 5.7.0
* cargo: update dependencies
* dhcp: replace dbus_proxy with proxy, and zbus traits
* build(deps): bump zbus from 3.15.2 to 4.4.0
* build(deps): bump tempfile from 3.10.1 to 3.12.0
* build(deps): bump serde from 1.0.205 to 1.0.210
* build(deps): bump serde_json from 1.0.121 to 1.0.127
* build(deps): bump reqwest from 0.12.5 to 0.12.7
* build(deps): bump uzers from 0.12.0 to 0.12.1
* build(deps): bump clap from 4.5.13 to 4.5.16
* build(deps): bump serde from 1.0.203 to 1.0.205
* build(deps): bump serde_json from 1.0.119 to 1.0.121
* build(deps): bump mockito from 1.4.0 to 1.5.0
* build(deps): bump openssh-keys from 0.6.3 to 0.6.4
* build(deps): bump clap from 4.5.8 to 4.5.13
* build(deps): bump openssl from 0.10.64 to 0.10.66
* providers/hetzner: private ipv4 addresses in attributes
* openstack: Document the two platforms
* build(deps): bump zerovec-derive from 0.10.2 to 0.10.3
* build(deps): bump zerovec from 0.10.2 to 0.10.4
* build(deps): bump nix from 0.27.1 to 0.29.0
* microsoft/azure: allow empty certificate chain in PKCS12 file
* proxmoxve: implement proxmoxve provider
* providers/hetzner: fix duplicate attribute prefix
* build(deps): bump pnet_base from 0.34.0 to 0.35.0
* cargo: Afterburn release 5.6.0
* docs/release-notes: update for release 5.6.0
* cargo: update dependencies
* build(deps): bump libflate from 1.4.0 to 2.1.0
* build(deps): bump base64 from 0.21.7 to 0.22.1
* build(deps): bump uzers from 0.11.3 to 0.12.0
* build(deps): bump pnet_datalink from 0.34.0 to 0.35.0
* build(deps): bump nix from 0.28.0 to 0.29.0
* lint: silence deadcode warnings
* lint: address latest lint's from msrv update
* workflows/rust: directly update toolchain to 1.75.0
* cargo: update msrv to 1.75
* build(deps): bump reqwest from 0.12.2 to 0.12.4
* build(deps): bump serde from 1.0.197 to 1.0.200
* build(deps): bump anyhow from 1.0.81 to 1.0.82
* build(deps): bump mailparse from 0.14.1 to 0.15.0
* build(deps): bump serde_json from 1.0.115 to 1.0.116
* providers: Add "akamai" provider
* build(deps): bump h2 from 0.3.24 to 0.3.26
* build(deps): bump anyhow from 1.0.79 to 1.0.81
* build(deps): bump serde_json from 1.0.113 to 1.0.115
* build(deps): bump reqwest from 0.11.24 to 0.12.2
* build(deps): bump serde_yaml from 0.9.32 to 0.9.34+deprecated
* build(deps): bump mio from 0.8.10 to 0.8.11
* build(deps): bump mailparse from 0.14.0 to 0.14.1
* build(deps): bump openssl from 0.10.62 to 0.10.64
* build(deps): bump nix from 0.27.1 to 0.28.0
* build(deps): bump mockito from 1.2.0 to 1.4.0
* build(deps): bump tempfile from 3.9.0 to 3.10.1
* build(deps): bump serde_yaml from 0.9.31 to 0.9.32
* build(deps): bump serde from 1.0.195 to 1.0.197
* build(deps): bump h2 from 0.3.23 to 0.3.24
* build(deps): bump slog-term from 2.9.0 to 2.9.1
* build(deps): bump serde_yaml from 0.9.30 to 0.9.31
* build(deps): bump serde_json from 1.0.111 to 1.0.113
* build(deps): bump clap from 4.4.16 to 4.4.18
* build(deps): bump reqwest from 0.11.23 to 0.11.24
* cargo: Afterburn release 5.5.1
* docs/release-notes: update for release 5.5.1
* cargo: update dependencies
* build(deps): bump anyhow from 1.0.75 to 1.0.78
* build(deps): bump serde_yaml from 0.9.27 to 0.9.29
* build(deps): bump reqwest from 0.11.22 to 0.11.23
* build(deps): bump serde_json from 1.0.108 to 1.0.109
* build(deps): bump openssl from 0.10.60 to 0.10.62
* build(deps): bump tempfile from 3.8.1 to 3.9.0
* build(deps): bump clap from 4.4.10 to 4.4.12
* build(deps): bump unsafe-libyaml from 0.2.9 to 0.2.10
* providers/vmware: add missing public functions for non-amd64
* build(deps): bump clap from 4.4.8 to 4.4.10
* cargo: Afterburn release 5.5.0
* build(deps): bump openssl from 0.10.59 to 0.10.60
* docs/release-notes: update for release 5.5.0
* cargo: update dependencies
* ci: cancel previous build on PR update
* build(deps): allow building with libsystemd 0.7.0
* providers/vmware: Process guestinfo.metadata netplan configuration
* kubevirt: Run afterburn-hostname service
* build(deps): bump reqwest from 0.11.20 to 0.11.22
* build(deps): bump tempfile from 3.8.0 to 3.8.1
* build(deps): bump clap from 4.4.6 to 4.4.7
* build(deps): bump serde_json from 1.0.107 to 1.0.108
* build(deps): bump serde_yaml from 0.9.25 to 0.9.27
* build(deps): bump rustix from 0.37.19 to 0.37.25
* build(deps): bump clap from 4.4.2 to 4.4.6
* build(deps): bump serde_json from 1.0.105 to 1.0.107
* build(deps): bump mockito from 1.1.0 to 1.2.0
* providers: add support for scaleway
* Move away from deprecated `users` to `uzers`
* providers/hetzner: add support for Hetzner Cloud
* build(deps): bump clap from 4.4.1 to 4.4.2
* cargo: update MSRV to 1.71
* build(deps): bump clap from 4.3.19 to 4.4.1
* chore: Get rid of Clippy warnings
* cargo: specify required features for nix dependency
* build(deps): bump nix from 0.26.2 to 0.27.1
* build(deps): bump slog-async from 2.7.0 to 2.8.0
* build(deps): bump openssl from 0.10.56 to 0.10.57
* build(deps): bump reqwest from 0.11.18 to 0.11.20
* build(deps): bump serde from 1.0.185 to 1.0.188
* build(deps): bump tempfile from 3.7.1 to 3.8.0
* build(deps): bump serde from 1.0.183 to 1.0.185
* build(deps): bump anyhow from 1.0.72 to 1.0.75
* build(deps): bump serde_json from 1.0.104 to 1.0.105
* build(deps): bump openssl from 0.10.55 to 0.10.56
* build(deps): bump tempfile from 3.7.0 to 3.7.1
* build(deps): bump serde from 1.0.180 to 1.0.183
* build(deps): bump serde from 1.0.179 to 1.0.180
* build(deps): bump serde_json from 1.0.103 to 1.0.104
* build(deps): bump serde from 1.0.175 to 1.0.179
* build(deps): bump pnet_datalink from 0.33.0 to 0.34.0
* build(deps): bump serde from 1.0.171 to 1.0.175
* build(deps): bump clap from 4.3.14 to 4.3.19
* build(deps): bump pnet_base from 0.33.0 to 0.34.0
* build(deps): bump serde_yaml from 0.9.23 to 0.9.25
* build(deps): bump tempfile from 3.6.0 to 3.7.0
* build(deps): bump clap from 4.3.11 to 4.3.14
* build(deps): bump serde_yaml from 0.9.22 to 0.9.23
* build(deps): bump anyhow from 1.0.71 to 1.0.72
* build(deps): bump serde_json from 1.0.100 to 1.0.103
* build(deps): bump clap from 4.3.10 to 4.3.11
* build(deps): bump serde_json from 1.0.99 to 1.0.100
* build(deps): bump openssh-keys from 0.6.1 to 0.6.2
* build(deps): bump zbus from 3.13.1 to 3.14.1
* build(deps): bump clap from 4.3.8 to 4.3.10
* build(deps): bump serde from 1.0.164 to 1.0.165
* build(deps): bump serde_json from 1.0.96 to 1.0.99
* build(deps): bump clap from 4.3.3 to 4.3.8
* build(deps): bump serde_yaml from 0.9.21 to 0.9.22
* build(deps): bump openssl from 0.10.54 to 0.10.55
* build(deps): bump mockito from 1.0.2 to 1.1.0
* openstack: Add attribute OPENSTACK_INSTANCE_UUID
* build(deps): bump serde from 1.0.163 to 1.0.164
* build(deps): bump clap from 4.3.2 to 4.3.3
* build(deps): bump tempfile from 3.5.0 to 3.6.0
* cargo: Afterburn release 5.4.3
* docs/release-notes: update for release 5.4.3
* cargo: update dependencies
* cargo: allow openssl 0.10.46
* build(deps): bump openssl from 0.10.52 to 0.10.54
* build(deps): bump openssh-keys from 0.6.0 to 0.6.1
* build(deps): bump vmw_backdoor from 0.2.3 to 0.2.4
* ci: strip debug symbols
* build-sys: Use new tier = 2 for cargo-vendor-filterer
* build(deps): bump reqwest from 0.11.17 to 0.11.18
* cargo: Afterburn release 5.4.2
* docs/release-notes: update for release
* docs/release-notes: note Azure SSH regression fix with new openssl
* cargo: fix minimum version of openssl crate
* build(deps): bump serde from 1.0.162 to 1.0.163
* build(deps): bump zbus from 3.12.0 to 3.13.1
* build(deps): bump serde from 1.0.160 to 1.0.162
* build(deps): bump anyhow from 1.0.70 to 1.0.71
* build(deps): bump openssl from 0.10.51 to 0.10.52
* build(deps): bump reqwest from 0.11.16 to 0.11.17
* build(deps): bump openssl from 0.10.50 to 0.10.51
* build(deps): bump enumflags2 from 0.7.5 to 0.7.7
* build(deps): bump openssl from 0.10.48 to 0.10.50
* build(deps): bump zbus from 3.11.1 to 3.12.0
* build(deps): bump serde_json from 1.0.95 to 1.0.96
* build(deps): bump h2 from 0.3.15 to 0.3.17
* build(deps): bump openssl from 0.10.47 to 0.10.48
* microsoft/crypto/mod: replace deprecated function `parse` with `parse2`
* build(deps): bump serde from 1.0.159 to 1.0.160
* build(deps): bump serde_yaml from 0.9.19 to 0.9.21
* build(deps): bump tempfile from 3.4.0 to 3.5.0
* build(deps): bump serde from 1.0.158 to 1.0.159
* build(deps): bump mockito from 1.0.1 to 1.0.2
* Update mockito to 1.0.1
* build(deps): bump reqwest from 0.11.15 to 0.11.16
* build(deps): bump serde_json from 1.0.94 to 1.0.95
* cli: switch to clap derive
* cli: add descriptive value names for option arguments in --help
* build(deps): bump zbus from 3.11.0 to 3.11.1
* build(deps): bump openssl from 0.10.45 to 0.10.47
* build(deps): bump reqwest from 0.11.14 to 0.11.15
* build(deps): bump serde from 1.0.155 to 1.0.158
* build(deps): bump anyhow from 1.0.69 to 1.0.70
* cli: have clap require exactly one of --cmdline/--provider
* providers/*: move endpoint mocking into retry::Client
* retry/client: move URL parsing into helper function
* providers/microsoft: import crate::retry
* providers/microsoft: use stored client for all fetches
* providers/packet: use stored client for boot checkin
* build(deps): bump zbus from 3.10.0 to 3.11.0
* build(deps): bump serde from 1.0.152 to 1.0.155
* docs: Use upstream theme & update to 0.4.1
* build(deps): bump serde_json from 1.0.93 to 1.0.94
* build(deps): bump serde_yaml from 0.9.17 to 0.9.19
* build(deps): bump mockito from 0.32.3 to 0.32.4
* build(deps): bump tempfile from 3.3.0 to 3.4.0
* initrd: remember to write trailing newline to network kargs file
* util: drop obsolete "OEM" terminology
* Update to clap 4
* build(deps): bump mockito from 0.31.1 to 0.32.3
* workflows: update clippy to 1.67
* Fix clippy lints
* Inline variables into format strings
* build(deps): bump zbus from 3.9.0 to 3.10.0
* build(deps): bump serde_json from 1.0.92 to 1.0.93
Patchnames
SUSE-SLE-Micro-6.1-175
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for afterburn",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for afterburn fixes the following issues:\n\n- Update to version 5.8.2:\n * cargo: Afterburn release 5.8.2\n * docs/release-notes: update for release 5.8.2\n * cargo: update dependencies\n * packit: add initial support\n\n- Update to version 5.7.0:\n * build(deps): bump crossbeam-channel from 0.5.13 to 0.5.15\n * build(deps): bump tokio from 1.40.0 to 1.44.2\n * CVE-2025-3416: openssl: Fixed Use-After-Free in Md::fetch and \n Cipher::fetch in rust-openssl crate (bsc#1242665) \n * build(deps): bump zbus from 4.4.0 to 5.5.0\n * mod.rs: Fix clippy lint errors\n * release-notes.md: add release notes for rust version update\n * Cargo.toml: bump MSRV to 1.84.1\n * build(deps): bump mockito from 1.6.1 to 1.7.0\n * build(deps): bump serde_json from 1.0.139 to 1.0.140\n * build(deps): bump tempfile from 3.17.1 to 3.19.1\n * build(deps): bump clap from 4.5.31 to 4.5.35\n * build(deps): bump reqwest from 0.12.12 to 0.12.15\n * Update release notes.\n * proxmoxve: Add more context to log messages.\n * proxmoxve: Remove unneeded fields\n * proxmoxve: Add tests for static network configuration from cloud-init.\n * proxmoxve: Add support for static network configuration from cloud-init.\n * build(deps): bump mailparse from 0.15.0 to 0.16.1\n * build(deps): bump ring from 0.17.8 to 0.17.13\n * build(deps): bump anyhow from 1.0.95 to 1.0.96\n * release notes: add notes for tempfile bump from 3.16.0 to 3.17.1\n * build(deps): bump serde from 1.0.217 to 1.0.218\n * build(deps): bump openssl from 0.10.70 to 0.10.71\n * build(deps): bump tempfile from 3.16.0 to 3.17.1\n * build(deps): bump serde_json from 1.0.138 to 1.0.139\n * build(deps): bump clap from 4.5.27 to 4.5.31\n * add makefile targets for fmt,lint and test\n * providers/openstack: ignore ec2 metadata if not present\n * build(deps): bump ipnetwork from 0.20.0 to 0.21.1\n * build(deps): bump reqwest from 0.12.7 to 0.12.12\n * docs: add changelog entry\n * proxmox: use noop provider if no configdrive\n * add noop provider\n * release-notes: remove \"upcoming\"\n\n- Update to version 5.7.0:\n * cargo: Afterburn release 5.7.0\n * docs/release-notes: update for release 5.7.0\n * cargo: update dependencies\n * dhcp: replace dbus_proxy with proxy, and zbus traits\n * build(deps): bump zbus from 3.15.2 to 4.4.0\n * build(deps): bump tempfile from 3.10.1 to 3.12.0\n * build(deps): bump serde from 1.0.205 to 1.0.210\n * build(deps): bump serde_json from 1.0.121 to 1.0.127\n * build(deps): bump reqwest from 0.12.5 to 0.12.7\n * build(deps): bump uzers from 0.12.0 to 0.12.1\n * build(deps): bump clap from 4.5.13 to 4.5.16\n * build(deps): bump serde from 1.0.203 to 1.0.205\n * build(deps): bump serde_json from 1.0.119 to 1.0.121\n * build(deps): bump mockito from 1.4.0 to 1.5.0\n * build(deps): bump openssh-keys from 0.6.3 to 0.6.4\n * build(deps): bump clap from 4.5.8 to 4.5.13\n * build(deps): bump openssl from 0.10.64 to 0.10.66\n * providers/hetzner: private ipv4 addresses in attributes\n * openstack: Document the two platforms\n * build(deps): bump zerovec-derive from 0.10.2 to 0.10.3\n * build(deps): bump zerovec from 0.10.2 to 0.10.4\n * build(deps): bump nix from 0.27.1 to 0.29.0\n * microsoft/azure: allow empty certificate chain in PKCS12 file\n * proxmoxve: implement proxmoxve provider\n * providers/hetzner: fix duplicate attribute prefix\n * build(deps): bump pnet_base from 0.34.0 to 0.35.0\n * cargo: Afterburn release 5.6.0\n * docs/release-notes: update for release 5.6.0\n * cargo: update dependencies\n * build(deps): bump libflate from 1.4.0 to 2.1.0\n * build(deps): bump base64 from 0.21.7 to 0.22.1\n * build(deps): bump uzers from 0.11.3 to 0.12.0\n * build(deps): bump pnet_datalink from 0.34.0 to 0.35.0\n * build(deps): bump nix from 0.28.0 to 0.29.0\n * lint: silence deadcode warnings\n * lint: address latest lint\u0027s from msrv update\n * workflows/rust: directly update toolchain to 1.75.0\n * cargo: update msrv to 1.75\n * build(deps): bump reqwest from 0.12.2 to 0.12.4\n * build(deps): bump serde from 1.0.197 to 1.0.200\n * build(deps): bump anyhow from 1.0.81 to 1.0.82\n * build(deps): bump mailparse from 0.14.1 to 0.15.0\n * build(deps): bump serde_json from 1.0.115 to 1.0.116\n * providers: Add \"akamai\" provider\n * build(deps): bump h2 from 0.3.24 to 0.3.26\n * build(deps): bump anyhow from 1.0.79 to 1.0.81\n * build(deps): bump serde_json from 1.0.113 to 1.0.115\n * build(deps): bump reqwest from 0.11.24 to 0.12.2\n * build(deps): bump serde_yaml from 0.9.32 to 0.9.34+deprecated\n * build(deps): bump mio from 0.8.10 to 0.8.11\n * build(deps): bump mailparse from 0.14.0 to 0.14.1\n * build(deps): bump openssl from 0.10.62 to 0.10.64\n * build(deps): bump nix from 0.27.1 to 0.28.0\n * build(deps): bump mockito from 1.2.0 to 1.4.0\n * build(deps): bump tempfile from 3.9.0 to 3.10.1\n * build(deps): bump serde_yaml from 0.9.31 to 0.9.32\n * build(deps): bump serde from 1.0.195 to 1.0.197\n * build(deps): bump h2 from 0.3.23 to 0.3.24\n * build(deps): bump slog-term from 2.9.0 to 2.9.1\n * build(deps): bump serde_yaml from 0.9.30 to 0.9.31\n * build(deps): bump serde_json from 1.0.111 to 1.0.113\n * build(deps): bump clap from 4.4.16 to 4.4.18\n * build(deps): bump reqwest from 0.11.23 to 0.11.24\n * cargo: Afterburn release 5.5.1\n * docs/release-notes: update for release 5.5.1\n * cargo: update dependencies\n * build(deps): bump anyhow from 1.0.75 to 1.0.78\n * build(deps): bump serde_yaml from 0.9.27 to 0.9.29\n * build(deps): bump reqwest from 0.11.22 to 0.11.23\n * build(deps): bump serde_json from 1.0.108 to 1.0.109\n * build(deps): bump openssl from 0.10.60 to 0.10.62\n * build(deps): bump tempfile from 3.8.1 to 3.9.0\n * build(deps): bump clap from 4.4.10 to 4.4.12\n * build(deps): bump unsafe-libyaml from 0.2.9 to 0.2.10\n * providers/vmware: add missing public functions for non-amd64\n * build(deps): bump clap from 4.4.8 to 4.4.10\n * cargo: Afterburn release 5.5.0\n * build(deps): bump openssl from 0.10.59 to 0.10.60\n * docs/release-notes: update for release 5.5.0\n * cargo: update dependencies\n * ci: cancel previous build on PR update\n * build(deps): allow building with libsystemd 0.7.0\n * providers/vmware: Process guestinfo.metadata netplan configuration\n * kubevirt: Run afterburn-hostname service\n * build(deps): bump reqwest from 0.11.20 to 0.11.22\n * build(deps): bump tempfile from 3.8.0 to 3.8.1\n * build(deps): bump clap from 4.4.6 to 4.4.7\n * build(deps): bump serde_json from 1.0.107 to 1.0.108\n * build(deps): bump serde_yaml from 0.9.25 to 0.9.27\n * build(deps): bump rustix from 0.37.19 to 0.37.25\n * build(deps): bump clap from 4.4.2 to 4.4.6\n * build(deps): bump serde_json from 1.0.105 to 1.0.107\n * build(deps): bump mockito from 1.1.0 to 1.2.0\n * providers: add support for scaleway\n * Move away from deprecated `users` to `uzers`\n * providers/hetzner: add support for Hetzner Cloud\n * build(deps): bump clap from 4.4.1 to 4.4.2\n * cargo: update MSRV to 1.71\n * build(deps): bump clap from 4.3.19 to 4.4.1\n * chore: Get rid of Clippy warnings\n * cargo: specify required features for nix dependency\n * build(deps): bump nix from 0.26.2 to 0.27.1\n * build(deps): bump slog-async from 2.7.0 to 2.8.0\n * build(deps): bump openssl from 0.10.56 to 0.10.57\n * build(deps): bump reqwest from 0.11.18 to 0.11.20\n * build(deps): bump serde from 1.0.185 to 1.0.188\n * build(deps): bump tempfile from 3.7.1 to 3.8.0\n * build(deps): bump serde from 1.0.183 to 1.0.185\n * build(deps): bump anyhow from 1.0.72 to 1.0.75\n * build(deps): bump serde_json from 1.0.104 to 1.0.105\n * build(deps): bump openssl from 0.10.55 to 0.10.56\n * build(deps): bump tempfile from 3.7.0 to 3.7.1\n * build(deps): bump serde from 1.0.180 to 1.0.183\n * build(deps): bump serde from 1.0.179 to 1.0.180\n * build(deps): bump serde_json from 1.0.103 to 1.0.104\n * build(deps): bump serde from 1.0.175 to 1.0.179\n * build(deps): bump pnet_datalink from 0.33.0 to 0.34.0\n * build(deps): bump serde from 1.0.171 to 1.0.175\n * build(deps): bump clap from 4.3.14 to 4.3.19\n * build(deps): bump pnet_base from 0.33.0 to 0.34.0\n * build(deps): bump serde_yaml from 0.9.23 to 0.9.25\n * build(deps): bump tempfile from 3.6.0 to 3.7.0\n * build(deps): bump clap from 4.3.11 to 4.3.14\n * build(deps): bump serde_yaml from 0.9.22 to 0.9.23\n * build(deps): bump anyhow from 1.0.71 to 1.0.72\n * build(deps): bump serde_json from 1.0.100 to 1.0.103\n * build(deps): bump clap from 4.3.10 to 4.3.11\n * build(deps): bump serde_json from 1.0.99 to 1.0.100\n * build(deps): bump openssh-keys from 0.6.1 to 0.6.2\n * build(deps): bump zbus from 3.13.1 to 3.14.1\n * build(deps): bump clap from 4.3.8 to 4.3.10\n * build(deps): bump serde from 1.0.164 to 1.0.165\n * build(deps): bump serde_json from 1.0.96 to 1.0.99\n * build(deps): bump clap from 4.3.3 to 4.3.8\n * build(deps): bump serde_yaml from 0.9.21 to 0.9.22\n * build(deps): bump openssl from 0.10.54 to 0.10.55\n * build(deps): bump mockito from 1.0.2 to 1.1.0\n * openstack: Add attribute OPENSTACK_INSTANCE_UUID\n * build(deps): bump serde from 1.0.163 to 1.0.164\n * build(deps): bump clap from 4.3.2 to 4.3.3\n * build(deps): bump tempfile from 3.5.0 to 3.6.0\n * cargo: Afterburn release 5.4.3\n * docs/release-notes: update for release 5.4.3\n * cargo: update dependencies\n * cargo: allow openssl 0.10.46\n * build(deps): bump openssl from 0.10.52 to 0.10.54\n * build(deps): bump openssh-keys from 0.6.0 to 0.6.1\n * build(deps): bump vmw_backdoor from 0.2.3 to 0.2.4\n * ci: strip debug symbols\n * build-sys: Use new tier = 2 for cargo-vendor-filterer\n * build(deps): bump reqwest from 0.11.17 to 0.11.18\n * cargo: Afterburn release 5.4.2\n * docs/release-notes: update for release\n * docs/release-notes: note Azure SSH regression fix with new openssl\n * cargo: fix minimum version of openssl crate\n * build(deps): bump serde from 1.0.162 to 1.0.163\n * build(deps): bump zbus from 3.12.0 to 3.13.1\n * build(deps): bump serde from 1.0.160 to 1.0.162\n * build(deps): bump anyhow from 1.0.70 to 1.0.71\n * build(deps): bump openssl from 0.10.51 to 0.10.52\n * build(deps): bump reqwest from 0.11.16 to 0.11.17\n * build(deps): bump openssl from 0.10.50 to 0.10.51\n * build(deps): bump enumflags2 from 0.7.5 to 0.7.7\n * build(deps): bump openssl from 0.10.48 to 0.10.50\n * build(deps): bump zbus from 3.11.1 to 3.12.0\n * build(deps): bump serde_json from 1.0.95 to 1.0.96\n * build(deps): bump h2 from 0.3.15 to 0.3.17\n * build(deps): bump openssl from 0.10.47 to 0.10.48\n * microsoft/crypto/mod: replace deprecated function `parse` with `parse2`\n * build(deps): bump serde from 1.0.159 to 1.0.160\n * build(deps): bump serde_yaml from 0.9.19 to 0.9.21\n * build(deps): bump tempfile from 3.4.0 to 3.5.0\n * build(deps): bump serde from 1.0.158 to 1.0.159\n * build(deps): bump mockito from 1.0.1 to 1.0.2\n * Update mockito to 1.0.1\n * build(deps): bump reqwest from 0.11.15 to 0.11.16\n * build(deps): bump serde_json from 1.0.94 to 1.0.95\n * cli: switch to clap derive\n * cli: add descriptive value names for option arguments in --help\n * build(deps): bump zbus from 3.11.0 to 3.11.1\n * build(deps): bump openssl from 0.10.45 to 0.10.47\n * build(deps): bump reqwest from 0.11.14 to 0.11.15\n * build(deps): bump serde from 1.0.155 to 1.0.158\n * build(deps): bump anyhow from 1.0.69 to 1.0.70\n * cli: have clap require exactly one of --cmdline/--provider\n * providers/*: move endpoint mocking into retry::Client\n * retry/client: move URL parsing into helper function\n * providers/microsoft: import crate::retry\n * providers/microsoft: use stored client for all fetches\n * providers/packet: use stored client for boot checkin\n * build(deps): bump zbus from 3.10.0 to 3.11.0\n * build(deps): bump serde from 1.0.152 to 1.0.155\n * docs: Use upstream theme \u0026 update to 0.4.1\n * build(deps): bump serde_json from 1.0.93 to 1.0.94\n * build(deps): bump serde_yaml from 0.9.17 to 0.9.19\n * build(deps): bump mockito from 0.32.3 to 0.32.4\n * build(deps): bump tempfile from 3.3.0 to 3.4.0\n * initrd: remember to write trailing newline to network kargs file\n * util: drop obsolete \"OEM\" terminology\n * Update to clap 4\n * build(deps): bump mockito from 0.31.1 to 0.32.3\n * workflows: update clippy to 1.67\n * Fix clippy lints\n * Inline variables into format strings\n * build(deps): bump zbus from 3.9.0 to 3.10.0\n * build(deps): bump serde_json from 1.0.92 to 1.0.93\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-Micro-6.1-175",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2025_20474-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2025:20474-1",
"url": "https://www.suse.com/support/update/announcement/2025/suse-su-202520474-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2025:20474-1",
"url": "https://lists.suse.com/pipermail/sle-updates/2025-July/040856.html"
},
{
"category": "self",
"summary": "SUSE Bug 1242665",
"url": "https://bugzilla.suse.com/1242665"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-3416 page",
"url": "https://www.suse.com/security/cve/CVE-2025-3416/"
}
],
"title": "Security update for afterburn",
"tracking": {
"current_release_date": "2025-07-10T14:27:22Z",
"generator": {
"date": "2025-07-10T14:27:22Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2025:20474-1",
"initial_release_date": "2025-07-10T14:27:22Z",
"revision_history": [
{
"date": "2025-07-10T14:27:22Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.8.2-slfo.1.1_1.1.aarch64",
"product": {
"name": "afterburn-5.8.2-slfo.1.1_1.1.aarch64",
"product_id": "afterburn-5.8.2-slfo.1.1_1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-dracut-5.8.2-slfo.1.1_1.1.noarch",
"product": {
"name": "afterburn-dracut-5.8.2-slfo.1.1_1.1.noarch",
"product_id": "afterburn-dracut-5.8.2-slfo.1.1_1.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "afterburn-5.8.2-slfo.1.1_1.1.x86_64",
"product": {
"name": "afterburn-5.8.2-slfo.1.1_1.1.x86_64",
"product_id": "afterburn-5.8.2-slfo.1.1_1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Micro 6.1",
"product": {
"name": "SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sl-micro:6.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.8.2-slfo.1.1_1.1.aarch64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:afterburn-5.8.2-slfo.1.1_1.1.aarch64"
},
"product_reference": "afterburn-5.8.2-slfo.1.1_1.1.aarch64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-5.8.2-slfo.1.1_1.1.x86_64 as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:afterburn-5.8.2-slfo.1.1_1.1.x86_64"
},
"product_reference": "afterburn-5.8.2-slfo.1.1_1.1.x86_64",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "afterburn-dracut-5.8.2-slfo.1.1_1.1.noarch as component of SUSE Linux Micro 6.1",
"product_id": "SUSE Linux Micro 6.1:afterburn-dracut-5.8.2-slfo.1.1_1.1.noarch"
},
"product_reference": "afterburn-dracut-5.8.2-slfo.1.1_1.1.noarch",
"relates_to_product_reference": "SUSE Linux Micro 6.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-3416",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-3416"
}
],
"notes": [
{
"category": "general",
"text": "A flaw was found in OpenSSL\u0027s handling of the properties argument in certain functions. This vulnerability can allow use-after-free exploitation, which may result in undefined behavior or incorrect property parsing, leading to OpenSSL treating the input as an empty string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Micro 6.1:afterburn-5.8.2-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:afterburn-5.8.2-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:afterburn-dracut-5.8.2-slfo.1.1_1.1.noarch"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-3416",
"url": "https://www.suse.com/security/cve/CVE-2025-3416"
},
{
"category": "external",
"summary": "SUSE Bug 1242599 for CVE-2025-3416",
"url": "https://bugzilla.suse.com/1242599"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Micro 6.1:afterburn-5.8.2-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:afterburn-5.8.2-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:afterburn-dracut-5.8.2-slfo.1.1_1.1.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.7,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"SUSE Linux Micro 6.1:afterburn-5.8.2-slfo.1.1_1.1.aarch64",
"SUSE Linux Micro 6.1:afterburn-5.8.2-slfo.1.1_1.1.x86_64",
"SUSE Linux Micro 6.1:afterburn-dracut-5.8.2-slfo.1.1_1.1.noarch"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-10T14:27:22Z",
"details": "low"
}
],
"title": "CVE-2025-3416"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…