BugZero | Veeam BugID kb3109 - List of Security Fixes and Improvements in Veeam A...

Veeam - Defect ID: kb3109

List of Security Fixes and Improvements in Veeam Agent for Linux

Veeam - Defect ID: kb3109

List of Security Fixes and Improvements in Veeam Agent for Linux

Last updated on November 19th, 2025

BugZero Risk Score
6.2 Medium

Overall: 6.2

Severity: 6.4

Community: 7.5

What is the BugZero Risk Score?

Veeam Integration

Learn more about where this data comes from

Veeam Integration

Learn more

Bug Scrub Advisor

Streamline upgrades with automated vendor bug scrubs

Bug Scrub Advisor

Learn more

BugZero Enterprise

Wish you caught this bug sooner? Get proactive today.

BugZero Enterprise

Learn more

Bug Details

Priority: Informational
Status: Unspecified
Views: 4

Description

Purpose

This article describes all security-related fixes and improvements introduced in each release or update of Veeam Agent for Linux. The goal of this article is to provide our customers' security and compliance teams with the detailed information on security improvements between releases, in order to help them make an informed decision on whether it is critical to upgrade from their current Veeam Agent for Linux version to a latter one.

Security Fixes and Improvements

13.0.1.94 OpenSSL upgraded to version 3.0.17 13.0.0.0.772 OpenSSL upgraded to version 3.0.8 6.2.0.101 CVE-2024-40709 vulnerability was fixed. 6.1.0.1498 OpenSSL library updated to 1.0.2zi. LZ4 library updated to 1.9.4. Updated zlib library to 1.2.13. Stronger backup encryption. - (See pg. 7 of Veeam Backup & Replication 12.1 What's New PDF) 6.0.2.1168 OpenSSL Library updated to the newest version (1.0.2zg). 5.0.2.4707 OpenSSL was updated to v1.0.2zi. liblz4 was updated to v1.9.4. zlib was updated to v1.2.13. PuTTY was updated to 0.80. 5.0.0.4318 Addressed an issue with insecure default permissions of files created in /tmp LZ4 compression library version has been updated to version 1.9.2. 4.0.1.2365 Sensitive information used by managed Linux agent may get logged in the Linux operating system logs. Creating an SMB repository using CLI command causes plain text password to be logged in the Veeam debug log. 4.0.0.1961 An issue of insecure file permissions was addressed (vulnerability reported by RACK911 Labs). OpenSSL was updated to version 1.0.2t.

More Information

As we're establishing this new process, we appreciate any feedback on the content or format of this KB article. Please let us know in the corresponding topic on the Veeam Community Forums. If your feedback is too sensitive to be shared publicly, please submit it by opening a support case. We highly appreciate your collaboration!

Change history

2025-11-19 Added: 13

2025-09-03 Added: 13

No changes to display

2025-03-28 Added: 6.2, 6.3.2, 4.0, 6.3.1, 5.0, 6.3, 6.1, 6.0

Relevant Products

Click on a version to see all relevant bugs

Affected versions:6.2, 5.0, 13, 6.3.1, 6.3.2, 4.0, 6.1, 6.0, 6.3

Fixed versions: No known fixed versions

Relevant Products

Click on a version to see all relevant bugs

Affected versions:6.2, 5.0, 13, 6.3.1, 6.3.2, 4.0, 6.1, 6.0, 6.3

Fixed versions: No known fixed versions

Top Veeam Defects

9.9Defect ID: kb4470
Increase in API Calls when Performing Direct Backups to Immutable Object Storage
9.8Defect ID: kb2744
Volume groups created by proxy got stuck in UI
9.8Defect ID: kb4781
Impact of Domain name or Hostname Change on Veeam Appliances
9.7Defect ID: kb1094
Veeam vPower NFS Service fails to start
9.7Defect ID: kb4130
Managed Veeam Backup Agents are offline after Veeam Service Provider Console upgrade

Ready to prevent the next vendor outage?

Get a demo

Veeam - Defect ID: kb3109

List of Security Fixes and Improvements in Veeam Agent for Linux

Veeam - Defect ID: kb3109

List of Security Fixes and Improvements in Veeam Agent for Linux

Last updated on November 19th, 2025

BugZero Risk Score6.2 Medium

Bug Details

Purpose

Security Fixes and Improvements

More Information

Top Veeam Defects

Ready to prevent the next vendor outage?

Links

BugZero Risk Score
6.2 Medium