الوصف:

أصدرت SUSE عدّة تحديثات لمعالجة عددٍ من الثغرات في منتجاتها:

• xorg-x11-server
  • SUSE Linux Enterprise Software Development Kit 12-SP5
  • SUSE Linux Enterprise Server 12-SP5
  • SUSE OpenStack Cloud Crowbar 9
  • SUSE OpenStack Cloud 9
  • SUSE Linux Enterprise Server for SAP 12-SP4
  • SUSE Linux Enterprise Server 12-SP4-LTSS
  • SUSE Linux Enterprise Server for SAP 15
  • SUSE Linux Enterprise Server 15-LTSS
  • SUSE Linux Enterprise High Performance Computing 15-LTSS
  • SUSE Linux Enterprise High Performance Computing 15-ESPOS
  • SUSE Linux Enterprise Server for SAP 15-SP1
  • SUSE Linux Enterprise Server 15-SP1-LTSS
  • SUSE Linux Enterprise Server 15-SP1-BCL
  • SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS
  • SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS
  • SUSE Enterprise Storage 6
  • SUSE CaaS Platform 4.0
  • SUSE Linux Enterprise Server 11-SP4-LTSS
  • SUSE Linux Enterprise Point of Sale 11-SP3
  • SUSE Linux Enterprise Debuginfo 11-SP4
  • SUSE Linux Enterprise Debuginfo 11-SP3
  • SUSE OpenStack Cloud Crowbar 8
  • SUSE OpenStack Cloud 8
  • SUSE Linux Enterprise Server for SAP 12-SP3
  • SUSE Linux Enterprise Server 12-SP3-LTSS
  • SUSE Linux Enterprise Server 12-SP3-BCL
  • SUSE Linux Enterprise Server 12-SP2-BCL
  • HPE Helion Openstack 8

التهديدات:

يمكن للمهاجم استغلال هذه الثغرات وتنفيذ ما يلي:

• هجمة حجب الخدمة (DoS attack)

الإجراءات الوقائية:

يوصي المركز بتحديث المنتجات المتأثرة، حيث أصدرت SUSE توضيحًا لهذه التحديثات:

• https://www.suse.com/support/update/announcement/2021/suse-su-20214119-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20214120-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20214121-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20214122-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-202114867-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20214124-1/