Back

openSUSE Tumbleweed Amazon SSM Agent Vulnerabilities Addressed

Severity: Medium (Score: 42.9)

Sources: Linuxsecurity

Published: 2026-06-10 · Updated: 2026-06-10

Keywords: opensuse, tumbleweed, amazon-ssm-agent, security, issues, fixed, amazon-ssm-agent-3

Severity indicators: issue, security issue, rat

Summary

openSUSE Tumbleweed released updates for the amazon-ssm-agent to address security vulnerabilities. The updates include fixes for multiple issues in the amazon-ssm-agent-3.3.4624.0-1.1 and amazon-ssm-agent-3.3.4624.0-2.1 packages. The vulnerabilities are categorized under CVE-2026, but specific CVE details were not provided in the articles. Users of openSUSE Tumbleweed are advised to update to the latest package versions to mitigate potential risks. The updates were published on June 7 and June 9, 2026, respectively, indicating a proactive response to security concerns. The affected systems are primarily those running openSUSE Tumbleweed with the specified amazon-ssm-agent versions. No active exploitation was reported at the time of the advisories. Key Points: • openSUSE Tumbleweed updated the amazon-ssm-agent to fix security vulnerabilities. • Users should upgrade to amazon-ssm-agent-3.3.4624.0-2.1 to ensure security. • No active exploitation of the vulnerabilities has been reported.

Detailed Analysis

**Impact** Users of openSUSE Tumbleweed running the amazon-ssm-agent are affected by multiple moderate security vulnerabilities. The scope includes all systems using the affected amazon-ssm-agent versions 3.3.4624.0-1.1 and 3.3.4624.0-2.1 packages. No specific sectors, geographies, or data at risk details are provided in the sources. **Technical Details** The vulnerabilities are addressed in the amazon-ssm-agent packages 3.3.4624.0-1.1 and 3.3.4624.0-2.1 for openSUSE Tumbleweed. No CVE identifiers beyond a general reference to CVE-2026 are specified. The articles do not provide information on attack vectors, TTPs, malware, infrastructure, kill chain stages, or IOCs. **Recommended Response** Apply the updated amazon-ssm-agent packages 3.3.4624.0-2.1 or 3.3.4624.0-1.1 on openSUSE Tumbleweed systems immediately. Monitor for unusual activity related to the amazon-ssm-agent process. No additional detection rules or configuration changes are detailed in the available information.

Source articles (2)

  • openSUSE Tumbleweed updates amazon-ssm-agent for CVE-2026 — Linuxsecurity · 2026-06-07
    These are all security issues fixed in the amazon-ssm-agent-3.3.4624.0-1.1 package on the GA media of openSUSE Tumbleweed. * openSUSE Tumbleweed: * amazon-ssm-agent 3.3.4624.0-1.1 * Get the latest Lin…
  • openSUSE Tumbleweed amazon-ssm-agent Moderate Vuln Advisory 2026-10966 — Linuxsecurity · 2026-06-09
    These are all security issues fixed in the amazon-ssm-agent-3.3.4624.0-2.1 package on the GA media of openSUSE Tumbleweed. * openSUSE Tumbleweed: * amazon-ssm-agent 3.3.4624.0-2.1 * * * * Get the late…

Timeline

  • 2026-06-07 — openSUSE Tumbleweed updates amazon-ssm-agent: The amazon-ssm-agent-3.3.4624.0-1.1 package was updated to address security issues.
  • 2026-06-09 — Second update for amazon-ssm-agent released: The amazon-ssm-agent-3.3.4624.0-2.1 package was released to fix additional vulnerabilities.

Related entities

  • Linux (Platform)
  • OpenSUSE (Company)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed