الموقع الرسمي للمركز الوطني الإرشادي للأمن السيبراني
تحديثات SUSE
2562
تاريخ التحذير
مستوى الخطورة
رقم التحذير
القطاع المستهدف
8 يوليو, 2020
● متوسط
2020-1463
الكل
الوصف:
أصدرت SUSE عدّة تحديثات لمعالجة عددًا من الثغرات في المنتجات التالية:
- LibVNCServer
- SUSE Linux Enterprise Workstation Extension 15-SP2
- SUSE Linux Enterprise Workstation Extension 15-SP1
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP2
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- librsvg
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP2
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- php7
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- gstreamer-plugins-base
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- perl
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- ffmpeg
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- gd
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- java-11-openjdk
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- SDL2
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- djvulibre
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- Mesa
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- nasm
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Module for Development Tools 15-SP2
- SUSE Linux Enterprise Module for Development Tools 15-SP1
- permissions
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- SUSE Linux Enterprise Server 12-SP4
- openldap2
- SUSE OpenStack Cloud Crowbar 8
- SUSE OpenStack Cloud 8
- SUSE OpenStack Cloud 7
- SUSE Linux Enterprise Server 11-SP4-LTSS
- SUSE Linux Enterprise Server 11-SECURITY
- SUSE Linux Enterprise Point of Sale 11-SP3
- SUSE Linux Enterprise Debuginfo 11-SP4
- SUSE Linux Enterprise Debuginfo 11-SP3
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Software Development Kit 12-SP4
- SUSE Linux Enterprise Server for SAP 12-SP3
- SUSE Linux Enterprise Server for SAP 12-SP2
- SUSE Linux Enterprise Server 12-SP5
- SUSE Linux Enterprise Server 12-SP4
- SUSE Linux Enterprise Server 12-SP3-LTSS
- SUSE Linux Enterprise Server 12-SP3-BCL
- SUSE Linux Enterprise Server 12-SP2-LTSS
- SUSE Linux Enterprise Server 12-SP2-BCL
- SUSE Enterprise Storage 5
- HPE Helion Openstack 8
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Module for Legacy Software 15-SP2
- SUSE Linux Enterprise Module for Legacy Software 15-SP1
- SUSE Linux Enterprise Module for Development Tools 15-SP2
- SUSE Linux Enterprise Module for Development Tools 15-SP1
- SUSE Linux Enterprise Module for Basesystem 15-SP2
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- mozilla-nspr
- SUSE Linux Enterprise Server 11-SP4-LTSS
- mozilla-nss
- SUSE Linux Enterprise Server 11-SP4-LTSS
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Module for Server Applications 15-SP2
- SUSE Linux Enterprise Module for Server Applications 15-SP1
- SUSE Linux Enterprise Module for Basesystem 15-SP2
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- libjpeg-turbo
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP2
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- SUSE Linux Enterprise Module for Desktop Applications 15-SP2
- SUSE Linux Enterprise Module for Basesystem 15-SP2
التهديدات:
يمكن للمهاجم استغلال الثغرات وتنفيذ ما يلي:
- أعطال بالذاكرة.
- حجب الخدمة (DoS).
- الكشف والإفصاح عن المعلومات.
- رفع وترقية الصلاحيات.
- تجاوز سعة مخزن الذاكرة المؤقت.
الإجراءات الوقائية:
- يوصي المركز بتحديث المنتجات المتأثرة، حيث أصدرت SUSE توضيحًا لهذه التحديثات:
- https://www.suse.com/support/update/announcement/2020/suse-su-20201873-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20200629-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201661-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201300-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201682-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201164-2/
- https://www.suse.com/support/update/announcement/2019/suse-su-20193184-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20200594-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201511-2/
- https://www.suse.com/support/update/announcement/2019/suse-su-20192463-2/
- https://www.suse.com/support/update/announcement/2019/suse-su-20193033-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20200111-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20200111-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201864-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201860-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201859-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201858-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201857-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201856-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201855-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-202014419-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-202014418-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201850-1/
- https://www.suse.com/support/update/announcement/2019/suse-su-20192971-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201843-1/
قيم المحتوى
شارك الصفحة
