CVE-2015-4646 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2015-4646 Interim 1 61 2025-11-05T04:48:36Z current 2021-05-30T13:30:58Z 2025-11-05T04:48:36Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2015-4646 (1) unsquash-1.c, (2) unsquash-2.c, (3) unsquash-3.c, and (4) unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a denial of service (application crash) via a crafted input. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/sle-security-updates/2023-November/017023.html E-Mail link for SUSE-SU-2023:4424-1 https://lists.suse.com/pipermail/sle-security-updates/2023-November/017236.html E-Mail link for SUSE-SU-2023:4591-1 https://lists.suse.com/pipermail/sle-updates/2024-July/035988.html E-Mail link for SUSE-SU-2024:2463-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings Container bci/kiwi:9.24.43-10.1 Container suse/sle-micro-rancher/5.2:latest Container suse/sle-micro-rancher/5.3:latest Container suse/sle-micro-rancher/5.4:latest Container suse/sle-micro/base-5.5:2.0.4-5.8.118 SUSE Enterprise Storage 7.1 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Enterprise Micro 5.1 SUSE Linux Enterprise Micro 5.2 SUSE Linux Enterprise Micro 5.3 SUSE Linux Enterprise Micro 5.4 SUSE Linux Enterprise Micro 5.5 SUSE Linux Enterprise Real Time 15 SP3 SUSE Linux Enterprise Server 12 SP3-LTSS-TERADATA SUSE Linux Enterprise Server 12 SP3-TERADATA SUSE Linux Enterprise Server 12 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Server 15 SP3-LTSS SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Server 15 SP4-TERADATA SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Enterprise Server 16.0 SUSE Linux Enterprise Server Business Critical Linux 15 SP3 SUSE Linux Enterprise Server for SAP Applications 12 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Linux Enterprise Server for SAP Applications 15 SP3 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP5 SUSE Linux Enterprise Module for Basesystem 15 SP6 SUSE Linux Enterprise Module for Basesystem 15 SP7 SUSE Linux Micro 6.0 SUSE Linux Micro 6.1 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Manager Proxy 4.2 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Manager Retail Branch Server 4.2 SUSE Linux Enterprise Module for Basesystem 15 SP4 SUSE Linux Enterprise Module for Basesystem 15 SP3 SUSE Manager Server 4.2 SUSE Linux Enterprise Module for Basesystem 15 SP4 openSUSE Leap 15.3 openSUSE Leap 15.4 openSUSE Leap 15.5 openSUSE Leap Micro 5.3 openSUSE Leap Micro 5.4 openSUSE Leap Micro 5.5 squashfs squashfs-4.4-1.1 squashfs-4.6.1-150300.3.3.1 squashfs-4.6.1-160000.2.2 squashfs-4.6.1-3.7 squashfs-4.6.1-8.3.2 squashfs-4.6.1-slfo.1.1_1.2 squashfs-4.6.1-150300.3.3.1 as a component of Container bci/kiwi:9.24.43-10.1 squashfs-4.6.1-150300.3.3.1 as a component of Container suse/sle-micro-rancher/5.2:latest squashfs-4.6.1-150300.3.3.1 as a component of Container suse/sle-micro-rancher/5.3:latest squashfs-4.6.1-150300.3.3.1 as a component of Container suse/sle-micro-rancher/5.4:latest squashfs-4.6.1-150300.3.3.1 as a component of Container suse/sle-micro/base-5.5:2.0.4-5.8.118 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Enterprise Storage 7.1 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Micro 5.1 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Micro 5.2 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Micro 5.3 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Micro 5.4 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Micro 5.5 squashfs-4.4-1.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP3 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP4 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP5 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP6 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Module for Basesystem 15 SP7 squashfs-4.6.1-8.3.2 as a component of SUSE Linux Enterprise Server 12 SP3-LTSS-TERADATA squashfs-4.6.1-8.3.2 as a component of SUSE Linux Enterprise Server 12 SP3-TERADATA squashfs-4.6.1-8.3.2 as a component of SUSE Linux Enterprise Server 12 SP5 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Server 15 SP3-LTSS squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Server 15 SP4-TERADATA squashfs-4.6.1-160000.2.2 as a component of SUSE Linux Enterprise Server 16.0 squashfs-4.6.1-8.3.2 as a component of SUSE Linux Enterprise Server for SAP Applications 12 SP5 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Linux Enterprise Server for SAP Applications 15 SP3 squashfs-4.6.1-3.7 as a component of SUSE Linux Micro 6.0 squashfs-4.6.1-slfo.1.1_1.2 as a component of SUSE Linux Micro 6.1 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Manager Proxy 4.2 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Manager Retail Branch Server 4.2 squashfs-4.6.1-150300.3.3.1 as a component of SUSE Manager Server 4.2 squashfs-4.4-1.1 as a component of openSUSE Leap 15.3 squashfs-4.4-1.1 as a component of openSUSE Leap 15.4 squashfs-4.6.1-150300.3.3.1 as a component of openSUSE Leap 15.5 squashfs-4.6.1-150300.3.3.1 as a component of openSUSE Leap Micro 5.3 squashfs-4.6.1-150300.3.3.1 as a component of openSUSE Leap Micro 5.4 squashfs-4.6.1-150300.3.3.1 as a component of openSUSE Leap Micro 5.5 squashfs as a component of SUSE Linux Enterprise Module for Basesystem 15 SP3 squashfs as a component of SUSE Linux Enterprise Real Time 15 SP3 squashfs as a component of SUSE Linux Enterprise Server Business Critical Linux 15 SP3 (1) unsquash-1.c, (2) unsquash-2.c, (3) unsquash-3.c, and (4) unsquash-4.c in Squashfs and sasquatch allow remote attackers to cause a denial of service (application crash) via a crafted input. CVE-2015-4646 Container bci/kiwi:9.24.43-10.1:squashfs-4.6.1-150300.3.3.1 Container suse/sle-micro-rancher/5.2:latest:squashfs-4.6.1-150300.3.3.1 Container suse/sle-micro-rancher/5.3:latest:squashfs-4.6.1-150300.3.3.1 Container suse/sle-micro-rancher/5.4:latest:squashfs-4.6.1-150300.3.3.1 Container suse/sle-micro/base-5.5:2.0.4-5.8.118:squashfs-4.6.1-150300.3.3.1 SUSE Enterprise Storage 7.1:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP3-ESPOS:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Micro 5.1:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Micro 5.2:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Micro 5.3:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Micro 5.4:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Micro 5.5:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Module for Basesystem 15 SP3:squashfs-4.4-1.1 SUSE Linux Enterprise Module for Basesystem 15 SP4:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Module for Basesystem 15 SP5:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Module for Basesystem 15 SP6:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Module for Basesystem 15 SP7:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Server 12 SP3-LTSS-TERADATA:squashfs-4.6.1-8.3.2 SUSE Linux Enterprise Server 12 SP3-TERADATA:squashfs-4.6.1-8.3.2 SUSE Linux Enterprise Server 12 SP5:squashfs-4.6.1-8.3.2 SUSE Linux Enterprise Server 15 SP3-LTSS:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Server 15 SP4-TERADATA:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Server 16.0:squashfs-4.6.1-160000.2.2 SUSE Linux Enterprise Server for SAP Applications 12 SP5:squashfs-4.6.1-8.3.2 SUSE Linux Enterprise Server for SAP Applications 15 SP3:squashfs-4.6.1-150300.3.3.1 SUSE Linux Micro 6.0:squashfs-4.6.1-3.7 SUSE Linux Micro 6.1:squashfs-4.6.1-slfo.1.1_1.2 SUSE Manager Proxy 4.2:squashfs-4.6.1-150300.3.3.1 SUSE Manager Retail Branch Server 4.2:squashfs-4.6.1-150300.3.3.1 SUSE Manager Server 4.2:squashfs-4.6.1-150300.3.3.1 openSUSE Leap 15.3:squashfs-4.4-1.1 openSUSE Leap 15.4:squashfs-4.4-1.1 openSUSE Leap 15.5:squashfs-4.6.1-150300.3.3.1 openSUSE Leap Micro 5.3:squashfs-4.6.1-150300.3.3.1 openSUSE Leap Micro 5.4:squashfs-4.6.1-150300.3.3.1 openSUSE Leap Micro 5.5:squashfs-4.6.1-150300.3.3.1 SUSE Linux Enterprise Module for Basesystem 15 SP3:squashfs SUSE Linux Enterprise Real Time 15 SP3:squashfs SUSE Linux Enterprise Server Business Critical Linux 15 SP3:squashfs moderate 5 AV:N/AC:L/Au:N/C:N/I:N/A:P 5.5 CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H