تنبيه SUSE

تم ارسال تقييمك بنجاح.

تنبيه SUSE

2771

التصنيفات

تنبيه أمني

● عالٍ جدًا

● عالي

● متوسط

● منخفض

تاريخ التحذير

مستوى الخطورة

رقم التحذير

القطاع المستهدف

7 سبتمبر, 2022

● عالي

2022-5201

الكل

الوصف:

أصدرت SUSE عدّة تحديثات لمعالجة عددٍ من الثغرات في المنتجات التالية:

python-Flask-Security-Too
- SUSE Enterprise Storage 7
- SUSE Linux Enterprise Desktop 15-SP3
- SUSE Linux Enterprise Desktop 15-SP4
- SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS
- SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS
- SUSE Linux Enterprise High Performance Computing 15-SP3
- SUSE Linux Enterprise High Performance Computing 15-SP4
- SUSE Linux Enterprise Module for Basesystem 15-SP3
- SUSE Linux Enterprise Module for Basesystem 15-SP4
- SUSE Linux Enterprise Server 15-SP2-BCL
- SUSE Linux Enterprise Server 15-SP2-LTSS
- SUSE Linux Enterprise Server 15-SP3
- SUSE Linux Enterprise Server 15-SP4
- SUSE Linux Enterprise Server for SAP 15-SP2
- SUSE Linux Enterprise Server for SAP Applications 15-SP3
- SUSE Linux Enterprise Server for SAP Applications 15-SP4
- SUSE Linux Enterprise Storage 7.1
- SUSE Manager Proxy 4.1
- SUSE Manager Proxy 4.2
- SUSE Manager Proxy 4.3
- SUSE Manager Retail Branch Server 4.1
- SUSE Manager Retail Branch Server 4.2
- SUSE Manager Retail Branch Server 4.3
- SUSE Manager Server 4.1
- SUSE Manager Server 4.2
- SUSE Manager Server 4.3
- openSUSE Leap 15.3
- openSUSE Leap 15.4
libostree
- SUSE Linux Enterprise Desktop 15-SP4
- SUSE Linux Enterprise High Performance Computing 15-SP4
- SUSE Linux Enterprise Module for Basesystem 15-SP4
- SUSE Linux Enterprise Module for Desktop Applications 15-SP4
- SUSE Linux Enterprise Server 15-SP4
- SUSE Linux Enterprise Server for SAP Applications 15-SP4
- SUSE Manager Proxy 4.3
- SUSE Manager Retail Branch Server 4.3
- SUSE Manager Server 4.3
- openSUSE Leap 15.4
python-bottle
- SUSE CaaS Platform 4.0
- SUSE Enterprise Storage 6
- SUSE Enterprise Storage 7
- SUSE Linux Enterprise Desktop 15-SP3
- SUSE Linux Enterprise Desktop 15-SP4
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS
- SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS
- SUSE Linux Enterprise High Performance Computing 15-SP2-ESPOS
- SUSE Linux Enterprise High Performance Computing 15-SP2-LTSS
- SUSE Linux Enterprise High Performance Computing 15-SP3
- SUSE Linux Enterprise High Performance Computing 15-SP4
- SUSE Linux Enterprise Module for Desktop Applications 15-SP3
- SUSE Linux Enterprise Module for Desktop Applications 15-SP4
- SUSE Linux Enterprise Module for Python2 15-SP3
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Server 15-SP1-BCL
- SUSE Linux Enterprise Server 15-SP1-LTSS
- SUSE Linux Enterprise Server 15-SP2-BCL
- SUSE Linux Enterprise Server 15-SP2-LTSS
- SUSE Linux Enterprise Server 15-SP3
- SUSE Linux Enterprise Server 15-SP4
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server for SAP 15-SP1
- SUSE Linux Enterprise Server for SAP 15-SP2
- SUSE Linux Enterprise Server for SAP Applications 15-SP3
- SUSE Linux Enterprise Server for SAP Applications 15-SP4
- SUSE Linux Enterprise Storage 7.1
- SUSE Manager Proxy 4.1
- SUSE Manager Proxy 4.2
- SUSE Manager Proxy 4.3
- SUSE Manager Retail Branch Server 4.1
- SUSE Manager Retail Branch Server 4.2
- SUSE Manager Retail Branch Server 4.3
- SUSE Manager Server 4.1
- SUSE Manager Server 4.2
- SUSE Manager Server 4.3
- openSUSE Leap 15.3
- openSUSE Leap 15.4
Linux Kernel (Live Patch 0 for SLE 15 SP4)
- SUSE Linux Enterprise High Performance Computing 15-SP4
- SUSE Linux Enterprise Module for Live Patching 15-SP4
- SUSE Linux Enterprise Server 15-SP4
- SUSE Linux Enterprise Server for SAP Applications 15-SP4
ruby
- SUSE Webyast 1.3
Linux Kernel (Live Patch 30 for SLE 15 SP1)
- SUSE Linux Enterprise High Performance Computing 15
- SUSE Linux Enterprise High Performance Computing 15-SP1
- SUSE Linux Enterprise High Performance Computing 15-SP2
- SUSE Linux Enterprise High Performance Computing 15-SP3
- SUSE Linux Enterprise Live Patching 12-SP4
- SUSE Linux Enterprise Live Patching 12-SP5
- SUSE Linux Enterprise Micro 5.1
- SUSE Linux Enterprise Module for Live Patching 15
- SUSE Linux Enterprise Module for Live Patching 15-SP1
- SUSE Linux Enterprise Module for Live Patching 15-SP2
- SUSE Linux Enterprise Module for Live Patching 15-SP3
- SUSE Linux Enterprise Server 15
- SUSE Linux Enterprise Server 15-SP1
- SUSE Linux Enterprise Server 15-SP2
- SUSE Linux Enterprise Server 15-SP3
- SUSE Linux Enterprise Server for SAP Applications 15
- SUSE Linux Enterprise Server for SAP Applications 15-SP1
- SUSE Linux Enterprise Server for SAP Applications 15-SP2
- SUSE Linux Enterprise Server for SAP Applications 15-SP3
Linux Kernel (Live Patch 2 for SLE 15 SP4)
- SUSE Linux Enterprise High Performance Computing 15-SP4
- SUSE Linux Enterprise Module for Live Patching 15-SP4
- SUSE Linux Enterprise Server 15-SP4
- SUSE Linux Enterprise Server for SAP Applications 15-SP4
clamav

SUSE Linux Enterprise Server 12-SP5

التهديدات:

يمكن للمهاجم استغلال هذه الثغرات وتنفيذ ما يلي:

هجمة حجب الخدمة (DoS attack)
تزوير الطلب عبر المواقع Cross-site request forgery (CSRF)
أعطال في الذاكرة
رفع الصلاحيات لزيادة قدرته على التعديل في النظام

الاجراءات الوقائية:

يوصي المركز بتحديث النسخ المتأثرة حيث أصدرتSUSE توضيحًا لهذه التحديثات:

آخر تحديث في 7 سبتمبر, 2022

تنبيه SUSE

التصنيفات

التحذيرات الأكثر مشاهدة