SUSE Linux 內核多個漏洞

影響

• 阻斷服務
• 遠端執行程式碼
• 資料洩露

受影響之系統或技術

• SUSE Linux Enterprise Desktop 12-SP5
• SUSE Linux Enterprise Desktop 15-SP3 
• SUSE Linux Enterprise High Availability 12-SP4 
• SUSE Linux Enterprise High Availability 12-SP5
• SUSE Linux Enterprise High Availability 15-SP3 
• SUSE Linux Enterprise High Performance Computing 
• SUSE Linux Enterprise High Performance Computing 12-SP4
• SUSE Linux Enterprise High Performance Computing 12-SP5 
• SUSE Linux Enterprise High Performance Computing 15-SP3
• SUSE Linux Enterprise Live Patching 12-SP4 
• SUSE Linux Enterprise Live Patching 12-SP5
• SUSE Linux Enterprise Micro 5.1 
• SUSE Linux Enterprise Micro 5.2 
• SUSE Linux Enterprise Module for Basesystem 15-SP3 
• SUSE Linux Enterprise Module for Development Tools 15-SP3 
• SUSE Linux Enterprise Module for Legacy Software 15-SP3 
• SUSE Linux Enterprise Module for Live Patching 15-SP3 
• SUSE Linux Enterprise Server 
• SUSE Linux Enterprise Server 12-SP3-BCL 
• SUSE Linux Enterprise Server 12-SP4
• SUSE Linux Enterprise Server 12-SP4-LTSS 
• SUSE Linux Enterprise Server 12-SP5
• SUSE Linux Enterprise Server 15-SP3 
• SUSE Linux Enterprise Server for SAP Applications 
• SUSE Linux Enterprise Server for SAP Applications 12-SP5
• SUSE Linux Enterprise Server for SAP Applications 15-SP3
• SUSE Linux Enterprise Server for SAP 12-SP4 
• SUSE Linux Enterprise Software Development Kit 12-SP5 
• SUSE Linux Enterprise Storage 7.1
• SUSE Linux Enterprise Workstation Extension 12-SP5  
• SUSE Linux Enterprise Workstation Extension 15-SP3 
• SUSE Manager Proxy 4.2 
• SUSE Manager Retail Branch Server 4.2 
• SUSE Manager Server 4.2
• SUSE OpenStack Cloud 9 
• SUSE OpenStack Cloud Crowbar 9  
• openSUSE Leap 15.3 
• openSUSE Leap 15.4 
• openSUSE Leap Micro 5.2 

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

安裝供應商提供的修補程式：

• https://www.suse.com/support/update/announcement/2022/suse-su-20223274-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20223264-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20223265-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20223263-1

漏洞識別碼

• CVE-2016-3695
• CVE-2019-3900
• CVE-2020-27784
• CVE-2020-36516
• CVE-2020-36557
• CVE-2020-36558
• CVE-2021-4155
• CVE-2021-4203
• CVE-2022-2588
• CVE-2022-2639
• CVE-2022-2663
• CVE-2022-2905
• CVE-2022-2977
• CVE-2022-2991
• CVE-2022-3028
• CVE-2022-20166
• CVE-2022-20368
• CVE-2022-20369
• CVE-2022-21385
• CVE-2022-26373
• CVE-2022-29581
• CVE-2022-36879
• CVE-2022-36946
• CVE-2022-39188
• CVE-2022-39190

資料來源

• AusCERT
• SUSE

相關連結

• https://www.auscert.org.au/bulletins/ESB-2022.4580
• https://www.auscert.org.au/bulletins/ESB-2022.4579
• https://www.auscert.org.au/bulletins/ESB-2022.4577
• https://www.auscert.org.au/bulletins/ESB-2022.4574
• https://www.suse.com/support/update/announcement/2022/suse-su-20223274-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20223264-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20223265-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20223263-1