SUSE-SU-2025:02244-1

CVE-2025-4598: Fixed race condition that allows a local attacker to crash a SUID program and gain read access to the resulting core dump (bsc#1243935).

Other bugfixes:

logs-show: get timestamp and boot ID only when necessary (bsc#1242827).

References

Affected packages

SUSE:Linux Enterprise Module for Basesystem 15 SP6 / systemd

Package

Name: systemd
Purl: pkg:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

254.25-150600.4.40.1

Ecosystem specific

{
    "binaries": [
        {
            "systemd-devel": "254.25-150600.4.40.1",
            "systemd-container": "254.25-150600.4.40.1",
            "systemd-lang": "254.25-150600.4.40.1",
            "libudev1-32bit": "254.25-150600.4.40.1",
            "libsystemd0": "254.25-150600.4.40.1",
            "libsystemd0-32bit": "254.25-150600.4.40.1",
            "systemd-sysvcompat": "254.25-150600.4.40.1",
            "systemd": "254.25-150600.4.40.1",
            "systemd-32bit": "254.25-150600.4.40.1",
            "systemd-doc": "254.25-150600.4.40.1",
            "systemd-journal-remote": "254.25-150600.4.40.1",
            "libudev1": "254.25-150600.4.40.1",
            "udev": "254.25-150600.4.40.1",
            "systemd-coredump": "254.25-150600.4.40.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Basesystem 15 SP7 / systemd

Package

Name: systemd
Purl: pkg:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

254.25-150600.4.40.1

Ecosystem specific

{
    "binaries": [
        {
            "systemd-devel": "254.25-150600.4.40.1",
            "systemd-container": "254.25-150600.4.40.1",
            "systemd-lang": "254.25-150600.4.40.1",
            "libudev1-32bit": "254.25-150600.4.40.1",
            "libsystemd0": "254.25-150600.4.40.1",
            "libsystemd0-32bit": "254.25-150600.4.40.1",
            "systemd-sysvcompat": "254.25-150600.4.40.1",
            "systemd": "254.25-150600.4.40.1",
            "systemd-32bit": "254.25-150600.4.40.1",
            "systemd-doc": "254.25-150600.4.40.1",
            "systemd-journal-remote": "254.25-150600.4.40.1",
            "libudev1": "254.25-150600.4.40.1",
            "udev": "254.25-150600.4.40.1",
            "systemd-coredump": "254.25-150600.4.40.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Package Hub 15 SP6 / systemd

Package

Name: systemd
Purl: pkg:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

254.25-150600.4.40.1

Ecosystem specific

{
    "binaries": [
        {
            "systemd-network": "254.25-150600.4.40.1"
        }
    ]
}

SUSE:Linux Enterprise Module for Package Hub 15 SP7 / systemd

Package

Name: systemd
Purl: pkg:rpm/suse/systemd&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Package%20Hub%2015%20SP7

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

254.25-150600.4.40.1

Ecosystem specific

{
    "binaries": [
        {
            "systemd-network": "254.25-150600.4.40.1"
        }
    ]
}

openSUSE:Leap 15.6 / systemd

Package

Name: systemd
Purl: pkg:rpm/opensuse/systemd&distro=openSUSE%20Leap%2015.6

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

254.25-150600.4.40.1

Ecosystem specific

{
    "binaries": [
        {
            "libsystemd0-32bit": "254.25-150600.4.40.1",
            "systemd-sysvcompat": "254.25-150600.4.40.1",
            "systemd-portable": "254.25-150600.4.40.1",
            "systemd-network": "254.25-150600.4.40.1",
            "systemd-container": "254.25-150600.4.40.1",
            "udev": "254.25-150600.4.40.1",
            "systemd-devel": "254.25-150600.4.40.1",
            "systemd-experimental": "254.25-150600.4.40.1",
            "systemd-lang": "254.25-150600.4.40.1",
            "libudev1-32bit": "254.25-150600.4.40.1",
            "systemd-testsuite": "254.25-150600.4.40.1",
            "libsystemd0": "254.25-150600.4.40.1",
            "systemd": "254.25-150600.4.40.1",
            "systemd-homed": "254.25-150600.4.40.1",
            "systemd-doc": "254.25-150600.4.40.1",
            "systemd-journal-remote": "254.25-150600.4.40.1",
            "systemd-boot": "254.25-150600.4.40.1",
            "systemd-32bit": "254.25-150600.4.40.1",
            "libudev1": "254.25-150600.4.40.1",
            "systemd-coredump": "254.25-150600.4.40.1"
        }
    ]
}