Linux 內核多個漏洞
最後更新
2022年04月21日
發佈日期:
2022年04月20日
1546
觀看次數
風險: 中度風險
類型: 操作系統 - LINUX
於 Linux 內核發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發權限提升、遠端執行任意程式碼、洩露敏感資料及資料篡改。
影響
- 資料洩露
- 權限提升
- 篡改
- 遠端執行程式碼
受影響之系統或技術
- openSUSE Leap 15.3
- openSUSE Leap 15.4
- SUSE CaaS Platform 4.0
- SUSE Enterprise Storage 6
- SUSE Enterprise Storage 7
- SUSE Linux Enterprise Desktop 12-SP5
- SUSE Linux Enterprise Desktop 15-SP3
- SUSE Linux Enterprise High Availability 12-SP4
- SUSE Linux Enterprise High Availability 12-SP5
- SUSE Linux Enterprise High Availability 15
- SUSE Linux Enterprise High Availability 15-SP1
- SUSE Linux Enterprise High Availability 15-SP2
- SUSE Linux Enterprise High Availability 15-SP3
- SUSE Linux Enterprise High Performance Computing
- SUSE Linux Enterprise High Performance Computing 12-SP4
- SUSE Linux Enterprise High Performance Computing 12-SP5
- SUSE Linux Enterprise High Performance Computing 15
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-SP1
- SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS
- SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS
- SUSE Linux Enterprise High Performance Computing 15-SP2
- SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS
- SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS
- SUSE Linux Enterprise High Performance Computing 15-SP3
- SUSE Linux Enterprise Live Patching 12-SP4
- SUSE Linux Enterprise Live Patching 12-SP5
- SUSE Linux Enterprise Micro 5.0
- SUSE Linux Enterprise Micro 5.1
- SUSE Linux Enterprise Micro 5.2
- SUSE Linux Enterprise Module for Basesystem 15-SP3
- SUSE Linux Enterprise Module for Development Tools 15-SP3
- SUSE Linux Enterprise Module for Legacy Software 15-SP3
- SUSE Linux Enterprise Module for Live Patching 15
- SUSE Linux Enterprise Module for Live Patching 15-SP1
- SUSE Linux Enterprise Module for Live Patching 15-SP2
- SUSE Linux Enterprise Module for Live Patching 15-SP3
- SUSE Linux Enterprise Module for Realtime 15-SP2
- SUSE Linux Enterprise Real Time 15-SP2
- SUSE Linux Enterprise Realtime Extension 15-SP2
- SUSE Linux Enterprise Server
- SUSE Linux Enterprise Server 12-SP4
- SUSE Linux Enterprise Server 12-SP4-LTSS
- SUSE Linux Enterprise Server 12-SP5
- SUSE Linux Enterprise Server 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Server 15-SP1
- SUSE Linux Enterprise Server 15-SP1-BCL
- SUSE Linux Enterprise Server 15-SP1-LTSS
- SUSE Linux Enterprise Server 15-SP2
- SUSE Linux Enterprise Server 15-SP2-BCL
- SUSE Linux Enterprise Server 15-SP2-LTSS
- SUSE Linux Enterprise Server 15-SP3
- SUSE Linux Enterprise Server for SAP 12-SP4
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server for SAP 15-SP1
- SUSE Linux Enterprise Server for SAP 15-SP2
- SUSE Linux Enterprise Server for SAP Applications
- SUSE Linux Enterprise Server for SAP Applications 12-SP5
- SUSE Linux Enterprise Server for SAP Applications 15
- SUSE Linux Enterprise Server for SAP Applications 15-SP1
- SUSE Linux Enterprise Server for SAP Applications 15-SP2
- SUSE Linux Enterprise Server for SAP Applications 15-SP3
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Workstation Extension 12-SP5
- SUSE Linux Enterprise Workstation Extension 15-SP3
- SUSE Manager Proxy 4.0
- SUSE Manager Proxy 4.1
- SUSE Manager Proxy 4.2
- SUSE Manager Retail Branch Server 4.0
- SUSE Manager Retail Branch Server 4.1
- SUSE Manager Retail Branch Server 4.2
- SUSE Manager Server 4.0
- SUSE Manager Server 4.1
- SUSE Manager Server 4.2
- SUSE OpenStack Cloud 9
- SUSE OpenStack Cloud Crowbar 9
解決方案
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
安裝供應商提供的修補程式:
- https://www.suse.com/support/update/announcement/2022/suse-su-20221197-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221196-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221183-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221223-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221224-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221194-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221246-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221256-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221257-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221266-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221267-1
漏洞識別碼
- CVE-2021-0920
- CVE-2021-39698
- CVE-2021-39713
- CVE-2021-45868
- CVE-2022-0001
- CVE-2022-0002
- CVE-2022-0812
- CVE-2022-0850
- CVE-2022-0854
- CVE-2022-1011
- CVE-2022-1016
- CVE-2022-1048
- CVE-2022-1055
- CVE-2022-1195
- CVE-2022-1198
- CVE-2022-1199
- CVE-2022-1205
- CVE-2022-22942
- CVE-2022-23036
- CVE-2022-23037
- CVE-2022-23038
- CVE-2022-23039
- CVE-2022-23040
- CVE-2022-23041
- CVE-2022-23042
- CVE-2022-23960
- CVE-2022-26490
- CVE-2022-26966
- CVE-2022-27666
- CVE-2022-28388
- CVE-2022-28389
- CVE-2022-28390
- CVE-2022-28748
資料來源
相關連結
- https://www.auscert.org.au/bulletins/ESB-2022.1664
- https://www.auscert.org.au/bulletins/ESB-2022.1663
- https://www.auscert.org.au/bulletins/ESB-2022.1662
- https://www.auscert.org.au/bulletins/ESB-2022.1661
- https://www.auscert.org.au/bulletins/ESB-2022.1660
- https://www.auscert.org.au/bulletins/ESB-2022.1659
- https://www.auscert.org.au/bulletins/ESB-2022.1649
- https://www.auscert.org.au/bulletins/ESB-2022.1689
- https://www.auscert.org.au/bulletins/ESB-2022.1690
- https://www.auscert.org.au/bulletins/ESB-2022.1691
- https://www.auscert.org.au/bulletins/ESB-2022.1692
- https://www.auscert.org.au/bulletins/ESB-2022.1693
- https://www.suse.com/support/update/announcement/2022/suse-su-20221197-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221196-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221183-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221223-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221224-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221194-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221246-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221255-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221256-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221257-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221266-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221267-1
分享至