Linux 內核多個漏洞
發佈日期:
2022年09月08日
1513
觀看次數
風險: 中度風險
類型: 操作系統 - LINUX
於 Linux 內核發現多個漏洞。攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、權限提升、遠端執行任意程式碼及洩露敏感資料。
影響
- 阻斷服務
- 權限提升
- 遠端執行程式碼
- 資料洩露
受影響之系統或技術
- SUSE Linux Enterprise High Performance Computing 15
- SUSE Linux Enterprise High Performance Computing 15-SP1
- SUSE Linux Enterprise High Performance Computing 15-SP2
- SUSE Linux Enterprise High Performance Computing 15-SP3
- SUSE Linux Enterprise High Performance Computing 15-SP4
- SUSE Linux Enterprise Live Patching 12-SP4
- SUSE Linux Enterprise Live Patching 12-SP5
- SUSE Linux Enterprise Micro 5.1
- SUSE Linux Enterprise Module for Live Patching 15
- SUSE Linux Enterprise Module for Live Patching 15-SP1
- SUSE Linux Enterprise Module for Live Patching 15-SP2
- SUSE Linux Enterprise Module for Live Patching 15-SP3
- SUSE Linux Enterprise Module for Live Patching 15-SP4
- SUSE Linux Enterprise Server 15
- SUSE Linux Enterprise Server 15-SP1
- SUSE Linux Enterprise Server 15-SP2
- SUSE Linux Enterprise Server 15-SP3
- SUSE Linux Enterprise Server 15-SP4
- SUSE Linux Enterprise Server for SAP Applications 15
- SUSE Linux Enterprise Server for SAP Applications 15-SP1
- SUSE Linux Enterprise Server for SAP Applications 15-SP2
- SUSE Linux Enterprise Server for SAP Applications 15-SP3
- SUSE Linux Enterprise Server for SAP Applications 15-SP4
- Ubuntu 16.04 ESM
- Ubuntu 18.04 LTS
- Ubuntu 22.04 LTS
解決方案
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
對於 SUSE
安裝供應商提供的修補程式:
- https://www.suse.com/support/update/announcement/2022/suse-su-20223061-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223123-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223064-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223088-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223080-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223072-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223108-1
對於 Ubuntu
安裝供應商提供的修補程式:
- https://ubuntu.com/security/notices/USN-5597-1
- https://ubuntu.com/security/notices/USN-5599-1
- https://ubuntu.com/security/notices/USN-5598-1
- https://ubuntu.com/security/notices/USN-5600-1
漏洞識別碼
- CVE-2020-36516
- CVE-2021-33061
- CVE-2021-33656
- CVE-2021-39698
- CVE-2022-1012
- CVE-2022-1116
- CVE-2022-1729
- CVE-2022-1852
- CVE-2022-1943
- CVE-2022-1973
- CVE-2022-2503
- CVE-2022-2585
- CVE-2022-2873
- CVE-2022-2959
- CVE-2022-36946
資料來源
相關連結
- https://www.auscert.org.au/bulletins/ESB-2022.4448
- https://www.auscert.org.au/bulletins/ESB-2022.4447
- https://www.auscert.org.au/bulletins/ESB-2022.4430
- https://www.auscert.org.au/bulletins/ESB-2022.4426
- https://www.auscert.org.au/bulletins/ESB-2022.4425
- https://www.auscert.org.au/bulletins/ESB-2022.4424
- https://www.auscert.org.au/bulletins/ESB-2022.4423
- https://www.auscert.org.au/bulletins/ESB-2022.4429
- https://www.auscert.org.au/bulletins/ESB-2022.4428
- https://www.auscert.org.au/bulletins/ESB-2022.4427
- https://www.auscert.org.au/bulletins/ESB-2022.4400
- https://www.suse.com/support/update/announcement/2022/suse-su-20223061-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223123-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223064-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223088-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223080-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223072-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223108-1
- https://ubuntu.com/security/notices/USN-5597-1
- https://ubuntu.com/security/notices/USN-5599-1
- https://ubuntu.com/security/notices/USN-5598-1
- https://ubuntu.com/security/notices/USN-5600-1
分享至