CVE-2025-61909 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2025-61909 Interim 1 1 2025-11-01T00:15:07Z current 2025-11-01T00:15:07Z 2025-11-01T00:15:07Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2025-61909 Icinga 2 is an open source monitoring system. From 2.10.0 to before 2.15.1, 2.14.7, and 2.13.13, the safe-reload script (also used during systemctl reload icinga2) and logrotate configuration shipped with Icinga 2 read the PID of the main Icinga 2 process from a PID file writable by the daemon user, but send the signal as the root user. This can allow the Icinga user to send signals to processes it would otherwise not permitted to. A fix is included in the following Icinga 2 versions: 2.15.1, 2.14.7, and 2.13.13. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 SUSE Linux Enterprise Module for HPC 12 openSUSE Tumbleweed icinga2 icinga2-2.15.1-1.1 icinga2-bin icinga2-bin-2.15.1-1.1 icinga2-common icinga2-common-2.15.1-1.1 icinga2-doc icinga2-doc-2.15.1-1.1 icinga2-ido-mysql icinga2-ido-mysql-2.15.1-1.1 icinga2-ido-pgsql icinga2-ido-pgsql-2.15.1-1.1 icinga2-libs nano-icinga2-2.15.1-1.1 vim-icinga2 vim-icinga2-2.15.1-1.1 icinga2-2.15.1-1.1 as a component of openSUSE Tumbleweed icinga2-bin-2.15.1-1.1 as a component of openSUSE Tumbleweed icinga2-common-2.15.1-1.1 as a component of openSUSE Tumbleweed icinga2-doc-2.15.1-1.1 as a component of openSUSE Tumbleweed icinga2-ido-mysql-2.15.1-1.1 as a component of openSUSE Tumbleweed icinga2-ido-pgsql-2.15.1-1.1 as a component of openSUSE Tumbleweed nano-icinga2-2.15.1-1.1 as a component of openSUSE Tumbleweed vim-icinga2-2.15.1-1.1 as a component of openSUSE Tumbleweed icinga2 as a component of SUSE Linux Enterprise Module for HPC 12 icinga2-bin as a component of SUSE Linux Enterprise Module for HPC 12 icinga2-common as a component of SUSE Linux Enterprise Module for HPC 12 icinga2-doc as a component of SUSE Linux Enterprise Module for HPC 12 icinga2-ido-mysql as a component of SUSE Linux Enterprise Module for HPC 12 icinga2-ido-pgsql as a component of SUSE Linux Enterprise Module for HPC 12 icinga2-libs as a component of SUSE Linux Enterprise Module for HPC 12 vim-icinga2 as a component of SUSE Linux Enterprise Module for HPC 12 Icinga 2 is an open source monitoring system. From 2.10.0 to before 2.15.1, 2.14.7, and 2.13.13, the safe-reload script (also used during systemctl reload icinga2) and logrotate configuration shipped with Icinga 2 read the PID of the main Icinga 2 process from a PID file writable by the daemon user, but send the signal as the root user. This can allow the Icinga user to send signals to processes it would otherwise not permitted to. A fix is included in the following Icinga 2 versions: 2.15.1, 2.14.7, and 2.13.13. CVE-2025-61909 openSUSE Tumbleweed:icinga2-2.15.1-1.1 openSUSE Tumbleweed:icinga2-bin-2.15.1-1.1 openSUSE Tumbleweed:icinga2-common-2.15.1-1.1 openSUSE Tumbleweed:icinga2-doc-2.15.1-1.1 openSUSE Tumbleweed:icinga2-ido-mysql-2.15.1-1.1 openSUSE Tumbleweed:icinga2-ido-pgsql-2.15.1-1.1 openSUSE Tumbleweed:nano-icinga2-2.15.1-1.1 openSUSE Tumbleweed:vim-icinga2-2.15.1-1.1 SUSE Linux Enterprise Module for HPC 12:icinga2 SUSE Linux Enterprise Module for HPC 12:icinga2-bin SUSE Linux Enterprise Module for HPC 12:icinga2-common SUSE Linux Enterprise Module for HPC 12:icinga2-doc SUSE Linux Enterprise Module for HPC 12:icinga2-ido-mysql SUSE Linux Enterprise Module for HPC 12:icinga2-ido-pgsql SUSE Linux Enterprise Module for HPC 12:icinga2-libs SUSE Linux Enterprise Module for HPC 12:vim-icinga2 moderate 6 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H