vulnerability
SUSE: CVE-2025-22870: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 3 | (AV:L/AC:L/Au:S/C:P/I:N/A:P) | Mar 6, 2025 | Mar 10, 2025 | Dec 5, 2025 |
Severity
3
CVSS
(AV:L/AC:L/Au:S/C:P/I:N/A:P)
Published
Mar 6, 2025
Added
Mar 10, 2025
Modified
Dec 5, 2025
Description
Matching of hosts against proxy patterns can improperly treat an IPv6 zone ID as a hostname component. For example, when the NO_PROXY environment variable is set to "*.example.com", a request to "[::1%25.example.com]:80` will incorrectly match and not be proxied.
Solutions
suse-upgrade-amazon-ssm-agentsuse-upgrade-apptainersuse-upgrade-apptainer-leapsuse-upgrade-apptainer-sle15_5suse-upgrade-apptainer-sle15_6suse-upgrade-cosignsuse-upgrade-cosign-bash-completionsuse-upgrade-cosign-zsh-completionsuse-upgrade-firewalld-prometheus-configsuse-upgrade-go1-23suse-upgrade-go1-23-docsuse-upgrade-go1-23-opensslsuse-upgrade-go1-23-openssl-docsuse-upgrade-go1-23-openssl-racesuse-upgrade-go1-23-racesuse-upgrade-go1-24suse-upgrade-go1-24-docsuse-upgrade-go1-24-libstdsuse-upgrade-go1-24-opensslsuse-upgrade-go1-24-openssl-racesuse-upgrade-go1-24-racesuse-upgrade-golang-github-prometheus-alertmanagersuse-upgrade-golang-github-prometheus-node_exportersuse-upgrade-golang-github-prometheus-prometheussuse-upgrade-govulncheck-vulndbsuse-upgrade-grafanasuse-upgrade-helmsuse-upgrade-helm-bash-completionsuse-upgrade-helm-fish-completionsuse-upgrade-helm-zsh-completionsuse-upgrade-ignitionsuse-upgrade-ignition-dracut-grub2suse-upgrade-prometheus-blackbox_exportersuse-upgrade-rclonesuse-upgrade-rclone-bash-completionsuse-upgrade-rclone-zsh-completionsuse-upgrade-skopeosuse-upgrade-skopeo-bash-completionsuse-upgrade-skopeo-fish-completionsuse-upgrade-skopeo-zsh-completionsuse-upgrade-warewulf4suse-upgrade-warewulf4-dracutsuse-upgrade-warewulf4-mansuse-upgrade-warewulf4-overlaysuse-upgrade-warewulf4-overlay-slurmsuse-upgrade-warewulf4-reference-doc
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.