SUSE update for gdm

Published: 2025-06-19

Risk	Low
Patch available	YES
Number of vulnerabilities	1
CVE-ID	CVE-2025-6018
CWE-ID	CWE-16
Exploitation vector	Local
Public exploit	Public exploit code for vulnerability #1 is available.
Vulnerable software	Desktop Applications Module Operating systems & Components / Operating system SUSE Linux Enterprise Real Time 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise Desktop 15 Operating systems & Components / Operating system gdm-schema Operating systems & Components / Operating system package or component gdm-lang Operating systems & Components / Operating system package or component gdm-systemd Operating systems & Components / Operating system package or component gdmflexiserver Operating systems & Components / Operating system package or component gdm Operating systems & Components / Operating system package or component libgdm1 Operating systems & Components / Operating system package or component gdm-debugsource Operating systems & Components / Operating system package or component gdm-devel Operating systems & Components / Operating system package or component gdm-debuginfo Operating systems & Components / Operating system package or component typelib-1_0-Gdm-1_0 Operating systems & Components / Operating system package or component libgdm1-debuginfo Operating systems & Components / Operating system package or component
Vendor	SUSE

Security Bulletin

This security bulletin contains one low risk vulnerability.

1) Configuration

EUVDB-ID: #VU111387

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2025-6018

CWE-ID: CWE-16 - Configuration

Exploit availability: Yes

Description

The issue may allow a local user to escalate privileges on the system.

The issue exists due an error in the PAM configuration of openSUSE Leap 15 and SUSE Linux Enterprise 15. An unprivileged user who logs in via sshd can force the pam_env module to add arbitrary variables to PAM's environment, leading to arbitrary code execution as root.

Mitigation

Update the affected package gdm to the latest version.

Vulnerable software versions

Desktop Applications Module: 15-SP7

SUSE Linux Enterprise Real Time 15: SP7

SUSE Linux Enterprise Server for SAP Applications 15: SP7

SUSE Linux Enterprise Server 15: SP7

SUSE Linux Enterprise Desktop 15: SP7

gdm-schema: before 45.0.1-150700.12.5.1

gdm-lang: before 45.0.1-150700.12.5.1

gdm-systemd: before 45.0.1-150700.12.5.1

gdmflexiserver: before 45.0.1-150700.12.5.1

gdm: before 45.0.1-150700.12.5.1

libgdm1: before 45.0.1-150700.12.5.1

gdm-debugsource: before 45.0.1-150700.12.5.1

gdm-devel: before 45.0.1-150700.12.5.1

gdm-debuginfo: before 45.0.1-150700.12.5.1

typelib-1_0-Gdm-1_0: before 45.0.1-150700.12.5.1

libgdm1-debuginfo: before 45.0.1-150700.12.5.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2025/suse-su-202502005-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.