SUSE Updates
2988Warning Date
Severity Level
Warning Number
Target Sector
24 December, 2019
● High
2019-764
All
Description:
SUSE has released security updates to address vulnerabilities in the following products: SUSE Linux Enterprise Module for Server Applications 15, 15-SP1
- SUSE Linux Enterprise Module for HPC 12
- SUSE Linux Enterprise Workstation Extension 15
- SUSE Linux Enterprise High Availability 15
- SUSE Linux Enterprise Module for Development Tools 15
- SUSE Linux Enterprise Module for Basesystem 15
- SUSE Linux Enterprise Module for Live Patching 15
- SUSE Linux Enterprise Module for Legacy Software 15
- SUSE Linux Enterprise Module for Open Buildservice Development Tools 15
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Unauthorized disclosure of information
- Escalation of privilege
- Denial of service attack (DoS) - remotely
- Execute arbitrary code - remotely
Best practice and Recommendations:
The CERT team encourages users to review SUSE security advisory and apply the necessary updates: