CVE-2025-65637 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-65637 Interim 1 1 2026-03-05T00:26:39Z current 2026-03-05T00:26:39Z 2026-03-05T00:26:39Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-65637 A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving Writer() unusable and causing application unavailability (DoS). This affects versions < 1.8.3, 1.9.0, and 1.9.2. The issue is fixed in 1.8.3, 1.9.1, and 1.9.3+, where the input is chunked and the writer continues to function even if an error is logged. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.suse.com/pipermail/suse-liberty-linux-updates/2026-February/002535.html E-Mail link for RHSA-2026:3428 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Liberty Linux 8 aardvark-dns-1.10.1-2.module+el8.10.0+23963+b64d8032 buildah-1.33.14-2.module+el8.10.0+23963+b64d8032 buildah-tests-1.33.14-2.module+el8.10.0+23963+b64d8032 cockpit-podman-84.1-1.module+el8.10.0+23963+b64d8032 conmon-2.1.10-1.module+el8.10.0+23963+b64d8032 container-selinux-2.229.0-2.module+el8.10.0+23963+b64d8032 containernetworking-plugins-1.4.0-7.module+el8.10.0+23963+b64d8032 containers-common-1-82.module+el8.10.0+23963+b64d8032 crit-3.18-5.module+el8.10.0+23963+b64d8032 criu-3.18-5.module+el8.10.0+23963+b64d8032 criu-devel-3.18-5.module+el8.10.0+23963+b64d8032 criu-libs-3.18-5.module+el8.10.0+23963+b64d8032 crun-1.14.3-2.module+el8.10.0+23963+b64d8032 fuse-overlayfs-1.13-1.module+el8.10.0+23963+b64d8032 libslirp-4.4.0-2.module+el8.10.0+23963+b64d8032 libslirp-devel-4.4.0-2.module+el8.10.0+23963+b64d8032 netavark-1.10.3-1.module+el8.10.0+23963+b64d8032 oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+23963+b64d8032 podman-4.9.4-28.module+el8.10.0+23963+b64d8032 podman-catatonit-4.9.4-28.module+el8.10.0+23963+b64d8032 podman-docker-4.9.4-28.module+el8.10.0+23963+b64d8032 podman-gvproxy-4.9.4-28.module+el8.10.0+23963+b64d8032 podman-plugins-4.9.4-28.module+el8.10.0+23963+b64d8032 podman-remote-4.9.4-28.module+el8.10.0+23963+b64d8032 podman-tests-4.9.4-28.module+el8.10.0+23963+b64d8032 python3-criu-3.18-5.module+el8.10.0+23963+b64d8032 python3-podman-4.9.0-3.module+el8.10.0+23963+b64d8032 runc-1.2.9-3.module+el8.10.0+23963+b64d8032 skopeo-1.14.5-6.module+el8.10.0+23963+b64d8032 skopeo-tests-1.14.5-6.module+el8.10.0+23963+b64d8032 slirp4netns-1.2.3-1.module+el8.10.0+23963+b64d8032 toolbox-0.0.99.5.1-1.module+el8.10.0+23963+b64d8032 toolbox-tests-0.0.99.5.1-1.module+el8.10.0+23963+b64d8032 udica-0.2.6-21.module+el8.10.0+23963+b64d8032 aardvark-dns-1.10.1-2.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 buildah-1.33.14-2.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 buildah-tests-1.33.14-2.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 cockpit-podman-84.1-1.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 conmon-2.1.10-1.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 container-selinux-2.229.0-2.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 containernetworking-plugins-1.4.0-7.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 containers-common-1-82.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 crit-3.18-5.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 criu-3.18-5.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 criu-devel-3.18-5.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 criu-libs-3.18-5.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 crun-1.14.3-2.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 fuse-overlayfs-1.13-1.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 libslirp-4.4.0-2.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 libslirp-devel-4.4.0-2.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 netavark-1.10.3-1.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 podman-4.9.4-28.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 podman-catatonit-4.9.4-28.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 podman-docker-4.9.4-28.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 podman-gvproxy-4.9.4-28.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 podman-plugins-4.9.4-28.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 podman-remote-4.9.4-28.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 podman-tests-4.9.4-28.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 python3-criu-3.18-5.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 python3-podman-4.9.0-3.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 runc-1.2.9-3.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 skopeo-1.14.5-6.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 skopeo-tests-1.14.5-6.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 slirp4netns-1.2.3-1.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 toolbox-0.0.99.5.1-1.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 toolbox-tests-0.0.99.5.1-1.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 udica-0.2.6-21.module+el8.10.0+23963+b64d8032 as a component of SUSE Liberty Linux 8 A denial-of-service vulnerability exists in github.com/sirupsen/logrus when using Entry.Writer() to log a single-line payload larger than 64KB without newline characters. Due to limitations in the internal bufio.Scanner, the read fails with "token too long" and the writer pipe is closed, leaving Writer() unusable and causing application unavailability (DoS). This affects versions < 1.8.3, 1.9.0, and 1.9.2. The issue is fixed in 1.8.3, 1.9.1, and 1.9.3+, where the input is chunked and the writer continues to function even if an error is logged. CVE-2025-65637 SUSE Liberty Linux 8:aardvark-dns-1.10.1-2.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:buildah-1.33.14-2.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:buildah-tests-1.33.14-2.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:cockpit-podman-84.1-1.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:conmon-2.1.10-1.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:container-selinux-2.229.0-2.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:containernetworking-plugins-1.4.0-7.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:containers-common-1-82.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:crit-3.18-5.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:criu-3.18-5.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:criu-devel-3.18-5.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:criu-libs-3.18-5.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:crun-1.14.3-2.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:fuse-overlayfs-1.13-1.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:libslirp-4.4.0-2.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:libslirp-devel-4.4.0-2.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:netavark-1.10.3-1.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:oci-seccomp-bpf-hook-1.2.10-1.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:podman-4.9.4-28.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:podman-catatonit-4.9.4-28.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:podman-docker-4.9.4-28.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:podman-gvproxy-4.9.4-28.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:podman-plugins-4.9.4-28.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:podman-remote-4.9.4-28.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:podman-tests-4.9.4-28.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:python3-criu-3.18-5.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:python3-podman-4.9.0-3.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:runc-1.2.9-3.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:skopeo-1.14.5-6.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:skopeo-tests-1.14.5-6.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:slirp4netns-1.2.3-1.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:toolbox-0.0.99.5.1-1.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:toolbox-tests-0.0.99.5.1-1.module+el8.10.0+23963+b64d8032 SUSE Liberty Linux 8:udica-0.2.6-21.module+el8.10.0+23963+b64d8032 important