SUSE Linux 內核多個漏洞
最後更新
2023年05月19日
發佈日期:
2023年05月11日
540
觀看次數
風險: 中度風險
類型: 操作系統 - LINUX
於 SUSE Linux 內核發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、權限提升、遠端執行任意程式碼、繞過保安限制及洩露敏感資料。
[更新於 2023-05-12]
更新受影響之系統或技術、解決方案、漏洞識別碼及相關連結。
[更新於 2023-05-18]
更新受影響之系統或技術、解決方案及相關連結。
[更新於 2023-05-19]
更新影響、受影響之系統或技術、解決方案、漏洞識別碼及相關連結。
影響
- 阻斷服務
- 權限提升
- 遠端執行程式碼
- 資料洩露
- 繞過保安限制
受影響之系統或技術
- Basesystem Module 15-SP4
- Development Tools Module 15-SP4
- Legacy Module 15-SP4
- openSUSE Leap 15.4
- openSUSE Leap Micro 5.3
- Public Cloud Module 15-SP4
- SUSE CaaS Platform 4.0
- SUSE Enterprise Storage 7
- SUSE Enterprise Storage 7.1
- SUSE Linux Enterprise Desktop 15 SP4
- SUSE Linux Enterprise High Availability Extension 12 SP4
- SUSE Linux Enterprise High Availability Extension 12 SP5
- SUSE Linux Enterprise High Availability Extension 15 SP1
- SUSE Linux Enterprise High Availability Extension 15 SP2
- SUSE Linux Enterprise High Availability Extension 15 SP3
- SUSE Linux Enterprise High Availability Extension 15 SP4
- SUSE Linux Enterprise High Performance Computing 12 SP4
- SUSE Linux Enterprise High Performance Computing 12 SP5
- SUSE Linux Enterprise High Performance Computing 15 SP1
- SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1
- SUSE Linux Enterprise High Performance Computing 15 SP2
- SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
- SUSE Linux Enterprise High Performance Computing 15 SP3
- SUSE Linux Enterprise High Performance Computing 15 SP4
- SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3
- SUSE Linux Enterprise High Performance Computing LTSS 15 SP3
- SUSE Linux Enterprise Live Patching 12-SP4
- SUSE Linux Enterprise Live Patching 12-SP5
- SUSE Linux Enterprise Live Patching 15-SP1
- SUSE Linux Enterprise Live Patching 15-SP2
- SUSE Linux Enterprise Live Patching 15-SP3
- SUSE Linux Enterprise Live Patching 15-SP4
- SUSE Linux Enterprise Micro 5.1
- SUSE Linux Enterprise Micro 5.2
- SUSE Linux Enterprise Micro 5.3
- SUSE Linux Enterprise Micro 5.4
- SUSE Linux Enterprise Micro for Rancher 5.2
- SUSE Linux Enterprise Micro for Rancher 5.3
- SUSE Linux Enterprise Micro for Rancher 5.4
- SUSE Linux Enterprise Real Time 12 SP5
- SUSE Linux Enterprise Real Time 15 SP3
- SUSE Linux Enterprise Real Time 15 SP4
- SUSE Linux Enterprise Server 12 SP4
- SUSE Linux Enterprise Server 12 SP4 ESPOS 12-SP4
- SUSE Linux Enterprise Server 12 SP4 LTSS 12-SP4
- SUSE Linux Enterprise Server 12 SP5
- SUSE Linux Enterprise Server 15 SP1
- SUSE Linux Enterprise Server 15 SP1 Business Critical Linux 15-SP1
- SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1
- SUSE Linux Enterprise Server 15 SP2
- SUSE Linux Enterprise Server 15 SP2 Business Critical Linux 15-SP2
- SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
- SUSE Linux Enterprise Server 15 SP3
- SUSE Linux Enterprise Server 15 SP3 Business Critical Linux 15-SP3
- SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3
- SUSE Linux Enterprise Server 15 SP4
- SUSE Linux Enterprise Server for SAP Applications 12 SP4
- SUSE Linux Enterprise Server for SAP Applications 12 SP5
- SUSE Linux Enterprise Server for SAP Applications 15 SP1
- SUSE Linux Enterprise Server for SAP Applications 15 SP2
- SUSE Linux Enterprise Server for SAP Applications 15 SP3
- SUSE Linux Enterprise Server for SAP Applications 15 SP4
- SUSE Linux Enterprise Software Development Kit 12 SP5
- SUSE Linux Enterprise Workstation Extension 12 12-SP5
- SUSE Linux Enterprise Workstation Extension 15 SP4
- SUSE Manager Proxy 4.0
- SUSE Manager Proxy 4.1
- SUSE Manager Proxy 4.2
- SUSE Manager Proxy 4.3
- SUSE Manager Retail Branch Server 4.0
- SUSE Manager Retail Branch Server 4.1
- SUSE Manager Retail Branch Server 4.2
- SUSE Manager Retail Branch Server 4.3
- SUSE Manager Server 4.0
- SUSE Manager Server 4.1
- SUSE Manager Server 4.2
- SUSE Manager Server 4.3
- SUSE OpenStack Cloud 9
- SUSE OpenStack Cloud Crowbar 9
- SUSE Real Time Module 15-SP3
- SUSE Real Time Module 15-SP4
解決方案
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
安裝供應商提供的修補程式:
- https://www.suse.com/support/update/announcement/2023/suse-su-20232148-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232146-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232141-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232147-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232140-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232151-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232162-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232156-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232163-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232231-1/
- https://www.suse.com/support/update/announcement/2023/suse-su-20232232-1/
漏洞識別碼
- CVE-2017-5753
- CVE-2020-36691
- CVE-2021-3923
- CVE-2021-4203
- CVE-2022-2196
- CVE-2022-20567
- CVE-2022-43945
- CVE-2023-0386
- CVE-2023-0590
- CVE-2023-0597
- CVE-2023-1076
- CVE-2023-1095
- CVE-2023-1118
- CVE-2023-1390
- CVE-2023-1513
- CVE-2023-1611
- CVE-2023-1670
- CVE-2023-1838
- CVE-2023-1855
- CVE-2023-1872
- CVE-2023-1989
- CVE-2023-1990
- CVE-2023-1998
- CVE-2023-2008
- CVE-2023-2019
- CVE-2023-2124
- CVE-2023-2162
- CVE-2023-2176
- CVE-2023-2235
- CVE-2023-2483
- CVE-2023-23006
- CVE-2023-23454
- CVE-2023-23455
- CVE-2023-28328
- CVE-2023-28464
- CVE-2023-28772
- CVE-2023-30772
資料來源
相關連結
- https://www.auscert.org.au/bulletins/ESB-2023.2618
- https://www.auscert.org.au/bulletins/ESB-2023.2617
- https://www.auscert.org.au/bulletins/ESB-2023.2615
- https://www.auscert.org.au/bulletins/ESB-2023.2613
- https://www.auscert.org.au/bulletins/ESB-2023.2610
- https://www.auscert.org.au/bulletins/ESB-2023.2608
- https://www.auscert.org.au/bulletins/ESB-2023.2684
- https://www.auscert.org.au/bulletins/ESB-2023.2690
- https://www.auscert.org.au/bulletins/ESB-2023.2778
- https://www.suse.com/support/update/announcement/2023/suse-su-20232148-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232146-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232141-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232147-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232140-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232151-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232156-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232162-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232163-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20232231-1/
- https://www.suse.com/support/update/announcement/2023/suse-su-20232232-1/
分享至