SUSE Updates

Your review has been sent successfully

SUSE Updates

2664

Classification

Security Alert

● Critical

● High

● Medium

● Low

Warning Date

Severity Level

Warning Number

Target Sector

25 October, 2020

● High

2020-1970

All

Description:

SUSE has released security updates to address several vulnerabilities in the following products:

gnutls
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
freetype2
- HPE Helion Openstack 8
- SUSE Enterprise Storage 5
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Linux Enterprise Module for Basesystem 15-SP2
- SUSE Linux Enterprise Module for Desktop Applications 15-SP2
- SUSE Linux Enterprise Server 12-SP2-BCL
- SUSE Linux Enterprise Server 12-SP2-LTSS
- SUSE Linux Enterprise Server 12-SP3-BCL
- SUSE Linux Enterprise Server 12-SP3-LTSS
- SUSE Linux Enterprise Server 12-SP4-LTSS
- SUSE Linux Enterprise Server 12-SP5
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Server for SAP 12-SP2
- SUSE Linux Enterprise Server for SAP 12-SP3
- SUSE Linux Enterprise Server for SAP 12-SP4
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE OpenStack Cloud 7
- SUSE OpenStack Cloud 8
- SUSE OpenStack Cloud 9
- SUSE OpenStack Cloud Crowbar 8
- SUSE OpenStack Cloud Crowbar 9
tomcat
- SUSE Linux Enterprise Server 12-SP5
php7
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Module for Web Scripting 15-SP1
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
Linux Kernel
- SUSE Linux Enterprise Real Time Extension 12-SP5
- SUSE Linux Enterprise Module for Realtime 15-SP1
xen
- SUSE Linux Enterprise Server 11-SP4-LTSS
- SUSE Linux Enterprise Debuginfo 11-SP4
openldap2
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
mercurial
- SUSE Linux Enterprise Software Development Kit 12-SP5
python-pip
- SUSE OpenStack Cloud Crowbar 9
- SUSE OpenStack Cloud 9
MozillaFirefox
- SUSE Linux Enterprise Module for Desktop Applications 15-SP2
- SUSE Linux Enterprise Module for Desktop Applications 15-SP1
libcdio
- SUSE Linux Enterprise Workstation Extension 12-SP5
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Server 12-SP5
glibc
- SUSE OpenStack Cloud Crowbar 8
- SUSE OpenStack Cloud 8
- SUSE OpenStack Cloud 7
- SUSE Linux Enterprise Server for SAP 12-SP3
- SUSE Linux Enterprise Server for SAP 12-SP2
- SUSE Linux Enterprise Server 12-SP3-LTSS
- SUSE Linux Enterprise Server 12-SP3-BCL
- SUSE Linux Enterprise Server 12-SP2-LTSS
- SUSE Linux Enterprise Server 12-SP2-BCL
- SUSE Enterprise Storage 5
- HPE Helion Openstack 8

Threats:

Attacker could exploit these vulnerabilities by doing the following:

Denial of service attack (DoS)
Buffer overflow
Escalation of privilege
Unauthorized disclosure of information

Best practice and Recommendations:

The CERT team encourages users to review SUSE security advisory and apply the necessary updates:

Last updated at 25 October, 2020

SUSE Updates

Classification

Most Viewed Warnings