Alerts This Week
Warning Icon 1 758
Alerts This Week
Warning Icon 1 758

SUSE: Chrony Moderate Privilege Escalation Fix 2025:3868-1

suse
Calendar Grey October 30, 2025
Dist Suse Esm H88
SUSE updates chrony to fix four moderate-level security issues, including privilege escalation vulnerabilities.
* bsc#1194220 * bsc#1194229 * bsc#1213551 * bsc#1246544

Summary

## This update for chrony fixes the following issues: Security issues fixed: \- Race condition during socket creation by chronyc allows privilege escalation from user chrony to root (bsc#1246544). Other issues fixed: \- Improve connection retry intervals when facing NTS-KE related issues (bsc#1213551). * nts: use shorter NTS-KE retry interval when network is down. * ntp: don't adjust poll interval when waiting for NTS-KE. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security zypper in -t patch SUSE-SLE-SERVER-12-SP5-LTSS-EXTENDED-SECURITY-2025-3868=1 ## Package List:

References

* bsc#1194220

* bsc#1194229

* bsc#1213551

* bsc#1246544

Affected Products:

* SUSE Linux Enterprise Server 12 SP5

* SUSE Linux Enterprise Server 12 SP5 LTSS Extended Security

* SUSE Linux Enterprise Server for SAP Applications 12 SP5

An update that has four security fixes can now be installed.

##

* https://bugzilla.suse.com/show_bug.cgi?id=1194220

* https://bugzilla.suse.com/show_bug.cgi?id=1194229

* https://bugzilla.suse.com/show_bug.cgi?id=1213551

* https://bugzilla.suse.com/show_bug.cgi?id=1246544

Announcement ID: SUSE-SU-2025:3868-1
Release Date: 2025-10-30T13:44:59Z
Rating: moderate

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here