Security update 5.0.5.1 for for Multi-Linux Manager

Announcement ID:	SUSE-SU-2025:3825-1
Release Date:	2025-10-28T07:26:10Z
Rating:	important
References:	bsc#1227577 bsc#1231150 bsc#1231157 bsc#1246277 bsc#1246421 bsc#1246439 bsc#1248085 bsc#1248252 bsc#1250911 jsc#MSQA-1026
Cross-References:	CVE-2025-53192 CVE-2025-53880 CVE-2025-53883
CVSS scores:	CVE-2025-53192 ( SUSE ): 8.6 CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-53192 ( SUSE ): 8.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L CVE-2025-53192 ( NVD ): 8.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H CVE-2025-53880 ( SUSE ): 8.7 CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N CVE-2025-53880 ( SUSE ): 8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected Products:	SUSE Linux Enterprise Micro 5.5 SUSE Linux Enterprise Server 15 SP6 SUSE Manager Proxy 5.0 Extension SUSE Manager Retail Branch Server 5.0 Extension SUSE Manager Server 5.0 Extension

An update that solves three vulnerabilities, contains one feature and has six security fixes can now be installed.

Security update 5.0.5.1 for Multi-Linux Manager Retail Branch Server

Description:

This update fixes the following issues:

proxy-helm, proxy-httpd-image, proxy-salt-broker-image, proxy-squid-image, proxy-ssh-image, proxy-tftpd-image:

• Images rebuilt to the newest version and updated build dependencies

Security update 5.0.5.1 for Multi-Linux Manager Proxy

Description:

This update fixes the following issues:

proxy-helm, proxy-httpd-image, proxy-salt-broker-image, proxy-squid-image, proxy-ssh-image, proxy-tftpd-image:

• Images rebuilt to the newest version and updated build dependencies

Recommended update 5.0.5.1 for Multi-Linux Manager Server

Description:

This update fixes the following issues:

server-attestation-image:

• CVE-2025-53192: Do not use apache-commons-ognl but its successor ognl (bsc#1248252)
• Image rebuilt to the newest version and updated build dependencies

server-hub-xmlrpc-api-image, server-image, server-migration-14-16-image:

• Images rebuilt to the newest version and updated build dependencies

Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:

• SUSE Manager Retail Branch Server 5.0 Extension
  zypper in -t patch SUSE-SUSE-Manager-Retail-Branch-Server-5.0-2025-3825=1
• SUSE Manager Server 5.0 Extension
  zypper in -t patch SUSE-SUSE-Manager-Server-5.0-2025-3825=1
• SUSE Manager Proxy 5.0 Extension
  zypper in -t patch SUSE-SUSE-Manager-Proxy-5.0-2025-3825=1

Package List:

• SUSE Manager Retail Branch Server 5.0 Extension (aarch64)
  • suse-manager-5.0-aarch64-proxy-tftpd-image-5.0.5.1-7.24.7
  • suse-manager-5.0-aarch64-proxy-salt-broker-image-5.0.5.1-7.26.21
  • suse-manager-5.0-aarch64-proxy-httpd-image-5.0.5.1-7.24.21
  • suse-manager-5.0-aarch64-proxy-squid-image-5.0.5.1-7.24.7
  • suse-manager-5.0-aarch64-proxy-ssh-image-5.0.5.1-7.24.7
• SUSE Manager Retail Branch Server 5.0 Extension (ppc64le)
  • suse-manager-5.0-ppc64le-proxy-httpd-image-5.0.5.1-7.24.21
  • suse-manager-5.0-ppc64le-proxy-salt-broker-image-5.0.5.1-7.26.21
  • suse-manager-5.0-ppc64le-proxy-squid-image-5.0.5.1-7.24.7
  • suse-manager-5.0-ppc64le-proxy-ssh-image-5.0.5.1-7.24.7
  • suse-manager-5.0-ppc64le-proxy-tftpd-image-5.0.5.1-7.24.7
• SUSE Manager Retail Branch Server 5.0 Extension (s390x)
  • suse-manager-5.0-s390x-proxy-squid-image-5.0.5.1-7.24.7
  • suse-manager-5.0-s390x-proxy-salt-broker-image-5.0.5.1-7.26.21
  • suse-manager-5.0-s390x-proxy-ssh-image-5.0.5.1-7.24.7
  • suse-manager-5.0-s390x-proxy-httpd-image-5.0.5.1-7.24.21
  • suse-manager-5.0-s390x-proxy-tftpd-image-5.0.5.1-7.24.7
• SUSE Manager Retail Branch Server 5.0 Extension (x86_64)
  • suse-manager-5.0-x86_64-proxy-ssh-image-5.0.5.1-7.24.7
  • suse-manager-5.0-x86_64-proxy-tftpd-image-5.0.5.1-7.24.7
  • suse-manager-5.0-x86_64-proxy-httpd-image-5.0.5.1-7.24.21
  • suse-manager-5.0-x86_64-proxy-salt-broker-image-5.0.5.1-7.26.21
  • suse-manager-5.0-x86_64-proxy-squid-image-5.0.5.1-7.24.7
• SUSE Manager Server 5.0 Extension (aarch64)
  • suse-manager-5.0-aarch64-server-migration-14-16-image-5.0.5.1-7.24.12
  • suse-manager-5.0-aarch64-server-hub-xmlrpc-api-image-5.0.5.1-6.24.9
  • suse-manager-5.0-aarch64-server-image-5.0.5.1-7.31.17
  • suse-manager-5.0-aarch64-server-attestation-image-5.0.5.1-6.28.7
• SUSE Manager Server 5.0 Extension (ppc64le)
  • suse-manager-5.0-ppc64le-server-attestation-image-5.0.5.1-6.28.7
  • suse-manager-5.0-ppc64le-server-image-5.0.5.1-7.31.17
  • suse-manager-5.0-ppc64le-server-hub-xmlrpc-api-image-5.0.5.1-6.24.9
  • suse-manager-5.0-ppc64le-server-migration-14-16-image-5.0.5.1-7.24.12
• SUSE Manager Server 5.0 Extension (s390x)
  • suse-manager-5.0-s390x-server-attestation-image-5.0.5.1-6.28.7
  • suse-manager-5.0-s390x-server-migration-14-16-image-5.0.5.1-7.24.12
  • suse-manager-5.0-s390x-server-image-5.0.5.1-7.31.17
  • suse-manager-5.0-s390x-server-hub-xmlrpc-api-image-5.0.5.1-6.24.9
• SUSE Manager Server 5.0 Extension (x86_64)
  • suse-manager-5.0-x86_64-server-attestation-image-5.0.5.1-6.28.7
  • suse-manager-5.0-x86_64-server-migration-14-16-image-5.0.5.1-7.24.12
  • suse-manager-5.0-x86_64-server-hub-xmlrpc-api-image-5.0.5.1-6.24.9
  • suse-manager-5.0-x86_64-server-image-5.0.5.1-7.31.17
• SUSE Manager Proxy 5.0 Extension (aarch64)
  • suse-manager-5.0-aarch64-proxy-tftpd-image-5.0.5.1-7.24.7
  • suse-manager-5.0-aarch64-proxy-salt-broker-image-5.0.5.1-7.26.21
  • suse-manager-5.0-aarch64-proxy-httpd-image-5.0.5.1-7.24.21
  • suse-manager-5.0-aarch64-proxy-squid-image-5.0.5.1-7.24.7
  • suse-manager-5.0-aarch64-proxy-ssh-image-5.0.5.1-7.24.7
• SUSE Manager Proxy 5.0 Extension (ppc64le)
  • suse-manager-5.0-ppc64le-proxy-httpd-image-5.0.5.1-7.24.21
  • suse-manager-5.0-ppc64le-proxy-salt-broker-image-5.0.5.1-7.26.21
  • suse-manager-5.0-ppc64le-proxy-squid-image-5.0.5.1-7.24.7
  • suse-manager-5.0-ppc64le-proxy-ssh-image-5.0.5.1-7.24.7
  • suse-manager-5.0-ppc64le-proxy-tftpd-image-5.0.5.1-7.24.7
• SUSE Manager Proxy 5.0 Extension (s390x)
  • suse-manager-5.0-s390x-proxy-squid-image-5.0.5.1-7.24.7
  • suse-manager-5.0-s390x-proxy-salt-broker-image-5.0.5.1-7.26.21
  • suse-manager-5.0-s390x-proxy-ssh-image-5.0.5.1-7.24.7
  • suse-manager-5.0-s390x-proxy-httpd-image-5.0.5.1-7.24.21
  • suse-manager-5.0-s390x-proxy-tftpd-image-5.0.5.1-7.24.7
• SUSE Manager Proxy 5.0 Extension (x86_64)
  • suse-manager-5.0-x86_64-proxy-ssh-image-5.0.5.1-7.24.7
  • suse-manager-5.0-x86_64-proxy-tftpd-image-5.0.5.1-7.24.7
  • suse-manager-5.0-x86_64-proxy-httpd-image-5.0.5.1-7.24.21
  • suse-manager-5.0-x86_64-proxy-salt-broker-image-5.0.5.1-7.26.21
  • suse-manager-5.0-x86_64-proxy-squid-image-5.0.5.1-7.24.7

References:

• https://www.suse.com/security/cve/CVE-2025-53192.html
• https://www.suse.com/security/cve/CVE-2025-53880.html
• https://www.suse.com/security/cve/CVE-2025-53883.html
• https://bugzilla.suse.com/show_bug.cgi?id=1227577
• https://bugzilla.suse.com/show_bug.cgi?id=1231150
• https://bugzilla.suse.com/show_bug.cgi?id=1231157
• https://bugzilla.suse.com/show_bug.cgi?id=1246277
• https://bugzilla.suse.com/show_bug.cgi?id=1246421
• https://bugzilla.suse.com/show_bug.cgi?id=1246439
• https://bugzilla.suse.com/show_bug.cgi?id=1248085
• https://bugzilla.suse.com/show_bug.cgi?id=1248252
• https://bugzilla.suse.com/show_bug.cgi?id=1250911
• https://jira.suse.com/browse/MSQA-1026