SUSE Updates
1756Warning Date
Severity Level
Warning Number
Target Sector
15 December, 2020
● Medium
2020-2200
All
Description:
SUSE has released security updates to address several vulnerabilities in the following products:
- gdm
- SUSE Linux Enterprise Module for Desktop Applications 15-SP1
- Linux Kernel
- SUSE Linux Enterprise Module for Realtime 15-SP1
- clamav
- SUSE Linux Enterprise Module for Basesystem 15-SP2
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Manager Server 4.1
- SUSE Linux Enterprise Module for SUSE Manager Server 4.1
- SUSE Manager Client Tools
- SUSE Manager Ubuntu 18.04-CLIENT-TOOLS
- SUSE Manager Ubuntu 16.04-CLIENT-TOOLS
- SUSE Manager Ubuntu 20.04-CLIENT-TOOLS
Threats:
An attacker could exploit these vulnerabilities by doing the following:
- Execute arbitrary code
- Denial of service attack (DoS)
- Escalation of privilege
Best practice and Recommendations:
The CERT team encourages users to review SUSE security advisory and apply the necessary updates:
- https://www.suse.com/support/update/announcement/2020/suse-su-20203799-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20203798-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20203790-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20203781-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-202014564-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-202014563-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-202014562-1/