SUSE CVE-2025-8941

🗓️ 14 Aug 2025 02:55:46Reported by Suse CVEType

susecve

susecve🔗 www.suse.com👁 1 Views

A linux-pam pam_namespace flaw lets local users escalate to root via symlink and race attacks.

Reporter	Title	Published	Views	Family All 115
IBM Security Bulletins	Security Bulletin: Vulnerabilities in pam library (CVE-2025-6020, CVE-2025-8941) affect Power HMC.	19 Nov 202508:44	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in IBM MQ Operator and Queue manager container images	25 Sep 202506:49	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities have been identified with the DS8900F and DS8A00 Hardware Management Console (HMC)	3 Mar 202600:44	–	ibm
IBM Security Bulletins	Security Bulletin:Vulnerability in pam affects IBM Netezza Appliance	14 Jan 202609:36	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Instana Observability has addressed Multiple Vulnerabilities within Instana Agent container image	18 Sep 202507:50	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in linux-pam affects IBM Netezza Appliance	16 Dec 202510:05	–	ibm
Tenable Nessus	Amazon Linux 2023 : pam, pam-devel (ALAS2023-2025-1257)	11 Nov 202500:00	–	nessus
Tenable Nessus	Amazon Linux 2 : pam, --advisory ALAS2-2025-3057 (ALAS-2025-3057)	11 Nov 202500:00	–	nessus
Tenable Nessus	AlmaLinux 8 : pam (ALSA-2025:14557)	4 Sep 202500:00	–	nessus
Tenable Nessus	AlmaLinux 9 : pam (ALSA-2025:15099)	3 Sep 202500:00	–	nessus

Source	Link
suse	www.suse.com/security/cve/CVE-2025-8941
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1248073
lists	www.lists.suse.com/pipermail/suse-liberty-linux-updates/2025-September/001966.html
lists	www.lists.suse.com/pipermail/suse-liberty-linux-updates/2025-September/001982.html

09 Dec 2025 00:27Current

6.5Medium risk

Vulners AI Score6.5

CVSS 3.17

EPSS0.00254

linux-pam pam_namespace symlink attacks race conditions local users root privileges