SUSE Linux 內核多個漏洞
發佈日期:
2022年09月15日
1614
觀看次數
風險: 中度風險
類型: 操作系統 - LINUX
於 SUSE Products 發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、遠端執行任意程式碼及洩露敏感資料。
影響
- 阻斷服務
- 遠端執行程式碼
- 資料洩露
受影響之系統或技術
- SUSE Linux Enterprise Desktop 12-SP5
- SUSE Linux Enterprise Desktop 15-SP3
- SUSE Linux Enterprise High Availability 12-SP4
- SUSE Linux Enterprise High Availability 12-SP5
- SUSE Linux Enterprise High Availability 15-SP3
- SUSE Linux Enterprise High Performance Computing
- SUSE Linux Enterprise High Performance Computing 12-SP4
- SUSE Linux Enterprise High Performance Computing 12-SP5
- SUSE Linux Enterprise High Performance Computing 15-SP3
- SUSE Linux Enterprise Live Patching 12-SP4
- SUSE Linux Enterprise Live Patching 12-SP5
- SUSE Linux Enterprise Micro 5.1
- SUSE Linux Enterprise Micro 5.2
- SUSE Linux Enterprise Module for Basesystem 15-SP3
- SUSE Linux Enterprise Module for Development Tools 15-SP3
- SUSE Linux Enterprise Module for Legacy Software 15-SP3
- SUSE Linux Enterprise Module for Live Patching 15-SP3
- SUSE Linux Enterprise Server
- SUSE Linux Enterprise Server 12-SP3-BCL
- SUSE Linux Enterprise Server 12-SP4
- SUSE Linux Enterprise Server 12-SP4-LTSS
- SUSE Linux Enterprise Server 12-SP5
- SUSE Linux Enterprise Server 15-SP3
- SUSE Linux Enterprise Server for SAP Applications
- SUSE Linux Enterprise Server for SAP Applications 12-SP5
- SUSE Linux Enterprise Server for SAP Applications 15-SP3
- SUSE Linux Enterprise Server for SAP 12-SP4
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Storage 7.1
- SUSE Linux Enterprise Workstation Extension 12-SP5
- SUSE Linux Enterprise Workstation Extension 15-SP3
- SUSE Manager Proxy 4.2
- SUSE Manager Retail Branch Server 4.2
- SUSE Manager Server 4.2
- SUSE OpenStack Cloud 9
- SUSE OpenStack Cloud Crowbar 9
- openSUSE Leap 15.3
- openSUSE Leap 15.4
- openSUSE Leap Micro 5.2
解決方案
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
安裝供應商提供的修補程式:
- https://www.suse.com/support/update/announcement/2022/suse-su-20223274-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223264-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223265-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223263-1
漏洞識別碼
- CVE-2016-3695
- CVE-2019-3900
- CVE-2020-27784
- CVE-2020-36516
- CVE-2020-36557
- CVE-2020-36558
- CVE-2021-4155
- CVE-2021-4203
- CVE-2022-2588
- CVE-2022-2639
- CVE-2022-2663
- CVE-2022-2905
- CVE-2022-2977
- CVE-2022-2991
- CVE-2022-3028
- CVE-2022-20166
- CVE-2022-20368
- CVE-2022-20369
- CVE-2022-21385
- CVE-2022-26373
- CVE-2022-29581
- CVE-2022-36879
- CVE-2022-36946
- CVE-2022-39188
- CVE-2022-39190
資料來源
相關連結
- https://www.auscert.org.au/bulletins/ESB-2022.4580
- https://www.auscert.org.au/bulletins/ESB-2022.4579
- https://www.auscert.org.au/bulletins/ESB-2022.4577
- https://www.auscert.org.au/bulletins/ESB-2022.4574
- https://www.suse.com/support/update/announcement/2022/suse-su-20223274-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223264-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223265-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20223263-1
分享至