Alerts This Week
Warning Icon 1 714
Alerts This Week
Warning Icon 1 714

SUSE: Critical Denial of Service Security Update for Multi-Linux Manager

suse
Calendar Grey July 31, 2025
Dist Suse Esm H88
A vital patch for the Multi-Linux Manager User Utilities fixes various security flaws to bolster defenses.
* bsc#1236621 * bsc#1243009 * bsc#1243105 * bsc#1243268 * bsc#1243274

Summary

## This update fixes the following issues: spacecmd: * Version update from 5.1.6-0 to 5.1.8-0 with the following key change: * Update translation strings uyuni-tools: * Version 5.1.14-0: * Fix mgradm backup create handling of images and systemd files (bsc#1244563) * migrate existing TLS certificates from 4.3 systems (bsc#1244847) * Use FQDN of the source to generate certificates during migration * Version 5.1.13-0: * Update translation strings * Version 5.1.12-0: * Add the info message about End User License Agreement * Remove duplicate parameters in mgradm install podman --help * Change the first message of each tool to include the full command and parameters * support: don't dump files in bound folders (bsc#1243297) * Extract the version number from /etc/susemanager-release only if that config file exists

Topics%20covered

Topics Covered

security advisory denial of service security issue SuSE important Multi-Linux Manager

References

* bsc#1236621

* bsc#1243009

* bsc#1243105

* bsc#1243268

* bsc#1243274

* bsc#1243297

* bsc#1243329

* bsc#1243359

* bsc#1243396

* bsc#1243402

* bsc#1243725

* bsc#1243802

* bsc#1244023

* bsc#1244127

* bsc#1244561

* bsc#1244563

* bsc#1244564

* bsc#1244565

* bsc#1244566

* bsc#1244567

* bsc#1244568

* bsc#1244570

* bsc#1244571

* bsc#1244572

* bsc#1244574

* bsc#1244575

* bsc#1244847

* jsc#MSQA-995

Cross-

* CVE-2024-38822

* CVE-2024-38823

* CVE-2024-38824

* CVE-2024-38825

* CVE-2025-22236

* CVE-2025-22237

* CVE-2025-22238

* CVE-2025-22239

* CVE-2025-22240

* CVE-2025-22241

* CVE-2025-22242

* CVE-2025-47287

CVSS scores:

* CVE-2024-38822 ( SUSE ): 5.1

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N

* CVE-2024-38822 ( SUSE ): 2.7 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:N

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2025:02577-1
Release Date: 2025-07-31T10:35:58Z
Rating: important

Topics%20covered

Topics Covered

security advisory denial of service security issue SuSE important Multi-Linux Manager

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here