SUSE Linux Kernel Multiple Vulnerabilities
Release Date:
27 May 2022
5375
Views
RISK: Medium Risk
TYPE: Operating Systems - Linux
Multiple vulnerabilities were identified in SUSE Linux Kernel. An attacker could exploit some of these vulnerabilities to trigger denial of service condition, remote code execution, sensitive information disclosure and security restriction bypass on the targeted system.
Impact
- Denial of Service
- Security Restriction Bypass
- Remote Code Execution
- Information Disclosure
System / Technologies affected
- openSUSE Leap 15.3
- SUSE Linux Enterprise Desktop 15-SP3
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-SP2
- SUSE Linux Enterprise High Performance Computing 15-SP3
- SUSE Linux Enterprise Micro 5.1
- SUSE Linux Enterprise Micro 5.2
- SUSE Linux Enterprise Module for Basesystem 15-SP3
- SUSE Linux Enterprise Module for Live Patching 15-SP2
- SUSE Linux Enterprise Module for Live Patching 15-SP3
- SUSE Linux Enterprise Server 12-SP4-LTSS
- SUSE Linux Enterprise Server 12-SP5
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Server 15-SP2
- SUSE Linux Enterprise Server 15-SP3
- SUSE Linux Enterprise Server for SAP 12-SP4
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server for SAP Applications 15-SP2
- SUSE Linux Enterprise Server for SAP Applications 15-SP3
- SUSE Manager Proxy 4.2
- SUSE Manager Server 4.2
- SUSE OpenStack Cloud 9
- SUSE OpenStack Cloud Crowbar 9
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://www.suse.com/support/update/announcement/2022/suse-su-20221840-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221846-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221847-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221849-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221859-1
Vulnerability Identifier
- CVE-2021-26312
- CVE-2021-26339
- CVE-2021-26342
- CVE-2021-26347
- CVE-2021-26348
- CVE-2021-26349
- CVE-2021-26350
- CVE-2021-26364
- CVE-2021-26372
- CVE-2021-26373
- CVE-2021-26375
- CVE-2021-26376
- CVE-2021-26378
- CVE-2021-26388
- CVE-2021-46744
- CVE-2022-1280
Source
Related Link
- https://www.auscert.org.au/bulletins/ESB-2022.2590
- https://www.auscert.org.au/bulletins/ESB-2022.2587
- https://www.auscert.org.au/bulletins/ESB-2022.2586
- https://www.auscert.org.au/bulletins/ESB-2022.2585
- https://www.suse.com/support/update/announcement/2022/suse-su-20221840-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221846-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221847-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221849-1
- https://www.suse.com/support/update/announcement/2022/suse-su-20221859-1
Related Tags
Share with