الوصف:

أصدرت SUSE عدّة تحديثات لمعالجة عددٍ من الثغرات في منتجاتها، أبرزها:

• SUSE Linux Enterprise Workstation Extension 15-SP3
• SUSE Linux Enterprise Workstation Extension 15-SP2
• SUSE Linux Enterprise Module for Desktop Applications 15-SP3
• SUSE Linux Enterprise Module for Desktop Applications 15-SP2
• SUSE Linux Enterprise Server for SAP 12-SP3
• SUSE Linux Enterprise Server 12-SP3-LTSS
• SUSE Linux Enterprise Module for Live Patching 15-SP3
• SUSE Linux Enterprise Module for Legacy Software 15-SP3
• SUSE Linux Enterprise Module for Development Tools 15-SP3
• SUSE Linux Enterprise Module for Basesystem 15-SP3
• SUSE Linux Enterprise High Availability 15-SP3
• SUSE Linux Enterprise Workstation Extension 12-SP5
• SUSE Linux Enterprise Software Development Kit 12-SP5
• SUSE Linux Enterprise Server 12-SP5
• SUSE Linux Enterprise Live Patching 12-SP5
• SUSE Linux Enterprise High Availability 12-SP5
• SUSE MicroOS 5.0
• SUSE Linux Enterprise Module for Live Patching 15-SP2
• SUSE Linux Enterprise Module for Legacy Software 15-SP2
• SUSE Linux Enterprise Module for Development Tools 15-SP2
• SUSE Linux Enterprise Module for Basesystem 15-SP2
• SUSE Linux Enterprise High Availability 15-SP2
• SUSE Linux Enterprise Module for Web Scripting 15-SP3
• SUSE Linux Enterprise Module for Web Scripting 15-SP2
• SUSE Linux Enterprise Server for SAP 15-SP1
• SUSE Linux Enterprise Server for SAP 15
• SUSE Linux Enterprise Server 15-SP1-LTSS
• SUSE Linux Enterprise Server 15-SP1-BCL
• SUSE Linux Enterprise Server 15-LTSS
• SUSE Linux Enterprise High Performance Computing 15-SP1-LTSS
• SUSE Linux Enterprise High Performance Computing 15-SP1-ESPOS
• SUSE Linux Enterprise High Performance Computing 15-LTSS
• SUSE Linux Enterprise High Performance Computing 15-ESPOS
• SUSE Enterprise Storage 6
• SUSE CaaS Platform 4.0
• SUSE OpenStack Cloud Crowbar 8
• SUSE OpenStack Cloud 8
• SUSE Linux Enterprise Server for SAP 12-SP3
• SUSE Linux Enterprise Server 12-SP3-BCL
• HPE Helion Openstack 8
• SUSE Linux Enterprise Real Time Extension 12-SP5
• SUSE OpenStack Cloud Crowbar 9
• SUSE OpenStack Cloud 9
• SUSE Linux Enterprise Server for SAP 12-SP4
• SUSE Linux Enterprise Server 12-SP4-LTSS
• SUSE Linux Enterprise Server 12-SP2-BCL
• SUSE Linux Enterprise Workstation Extension 15-SP3
• SUSE Linux Enterprise Workstation Extension 15-SP2
• SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP3
• SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP2
• SUSE Linux Enterprise Module for Desktop Applications 15-SP3
• SUSE Linux Enterprise Module for Desktop Applications 15-SP2

التهديدات:

يمكن للمهاجم استغلال الثغرات وتنفيذ ما يلي:

• تجاوز سعة مخزن الذاكرة المؤقت

الإجراءات الوقائية:

يوصي المركز بتحديث المنتجات المتأثرة، حيث أصدرت SUSE توضيحًا لهذه التحديثات:

• https://www.suse.com/support/update/announcement/2021/suse-su-20213193-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213194-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213196-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213205-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213206-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213207-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213211-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213212-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213213-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213217-1/
• https://www.suse.com/support/update/announcement/2021/suse-su-20213215-1/