SUSE Updates

Your review has been sent successfully

SUSE Updates

1725

Classification

Security Alert

● Critical

● High

● Medium

● Low

Warning Date

Severity Level

Warning Number

Target Sector

17 January, 2021

● High

2021-2334

All

Description:

SUSE has released security updates to address multiple vulnerabilities in the following products:

nodejs14
- SUSE Linux Enterprise Module for Web Scripting 12
Linux Kernel
- SUSE Linux Enterprise Module for Realtime 15-SP2
- SUSE Linux Enterprise Workstation Extension 15-SP2
- SUSE Linux Enterprise Module for Live Patching 15-SP2
- SUSE Linux Enterprise Module for Legacy Software 15-SP2
- SUSE Linux Enterprise Module for Development Tools 15-SP2
- SUSE Linux Enterprise Module for Basesystem 15-SP2
- SUSE Linux Enterprise High Availability 15-SP2
- SUSE Linux Enterprise Workstation Extension 15-SP1
- SUSE Linux Enterprise Module for Live Patching 15-SP1
- SUSE Linux Enterprise Module for Legacy Software 15-SP1
- SUSE Linux Enterprise Module for Development Tools 15-SP1
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Linux Enterprise High Availability 15-SP1
- SUSE Linux Enterprise Workstation Extension 12-SP5
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Server 12-SP5
- SUSE Linux Enterprise Live Patching 12-SP5
- SUSE Linux Enterprise High Availability 12-SP5
libzypp, zypper
- SUSE Linux Enterprise Module for Basesystem 15-SP2
- SUSE Linux Enterprise Installer 15-SP2
rubygem-archive-tar-minitar
- SUSE Linux Enterprise Module for Containers 12
nodejs8
- SUSE Linux Enterprise Module for Web Scripting 15-SP2
MozillaThunderbird
- SUSE Linux Enterprise Workstation Extension 15-SP1
- SUSE Linux Enterprise Workstation Extension 15-SP2
php7
- SUSE Linux Enterprise Module for Web Scripting 15-SP2
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP2
php72
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Module for Web Scripting 12
php74
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Module for Web Scripting 12
open-iscsi
- SUSE Linux Enterprise Module for Basesystem 15-SP2
openldap2
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Server 12-SP5
- SUSE Linux Enterprise Module for Legacy Software 15-SP2
- SUSE Linux Enterprise Module for Development Tools 15-SP2
- SUSE Linux Enterprise Module for Basesystem 15-SP2
- SUSE Linux Enterprise Server 11-SECURITY
- SUSE Linux Enterprise Server for SAP 12-SP5
- SUSE Linux Enterprise Server for SAP 12-SP4
- SUSE Linux Enterprise Server for SAP 12-SP3
- SUSE Linux Enterprise Server for SAP 12-SP2
- SUSE Linux Enterprise Module for Legacy Software 12
slurm_20_02
- SUSE Linux Enterprise Module for HPC 15-SP1
tcmu-runner
- SUSE Enterprise Storage 6
ImageMagick
- SUSE Linux Enterprise Server 11-SP4-LTSS
- SUSE Linux Enterprise Point of Sale 11-SP3
- SUSE Linux Enterprise Debuginfo 11-SP4
- SUSE Linux Enterprise Debuginfo 11-SP3
- SUSE Linux Enterprise Module for Development Tools 15-SP2
- SUSE Linux Enterprise Module for Desktop Applications 15-SP2

Threats:

Attacker could exploit these vulnerabilities by doing the following:

Information disclosure
Denial of Service (DoS)
Buffer overflow
Privilege escalation
Remote code execution

Best practice and Recommendations:

The CERT team encourages users to review SUSE security advisory and apply the necessary updates:

Last updated at 17 January, 2021

SUSE Updates

Classification

Most Viewed Warnings