mickmick.net

SUSE Linux 內核多個漏洞

最後更新 2022年06月07日 發佈日期: 2022年06月06日

風險: 中度風險

類型: 操作系統 - LINUX

於 SUSE Products 發現多個漏洞。遠端攻擊者可利用這些漏洞，於目標系統觸發權限提升及繞過保安限制。

 

[更新於 2022-06-07]

更新受影響之系統或技術，解決方案及相關連結。

---

影響

• 權限提升
• 繞過保安限制

---

受影響之系統或技術

• SUSE Linux Enterprise High Performance Computing 15
• SUSE Linux Enterprise High Performance Computing 15-SP1
• SUSE Linux Enterprise High Performance Computing 15-SP2
• SUSE Linux Enterprise High Performance Computing 15-SP3
• SUSE Linux Enterprise Live Patching 12-SP4
• SUSE Linux Enterprise Live Patching 12-SP5
• SUSE Linux Enterprise Micro 5.1
• SUSE Linux Enterprise Module for Live Patching 15
• SUSE Linux Enterprise Module for Live Patching 15-SP1
• SUSE Linux Enterprise Module for Live Patching 15-SP2
• SUSE Linux Enterprise Module for Live Patching 15-SP3
• SUSE Linux Enterprise Server 15
• SUSE Linux Enterprise Server 15-SP1
• SUSE Linux Enterprise Server 15-SP2
• SUSE Linux Enterprise Server 15-SP3
• SUSE Linux Enterprise Server for SAP Applications 15
• SUSE Linux Enterprise Server for SAP Applications 15-SP1
• SUSE Linux Enterprise Server for SAP Applications 15-SP2
• SUSE Linux Enterprise Server for SAP Applications 15-SP3

---

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

 

安裝供應商提供的修補程式：

• https://www.suse.com/support/update/announcement/2022/suse-su-20222000-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20221988-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20221974-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20221955-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20221949-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221948-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221947-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221945-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221942-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221940-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221939-1

---

漏洞識別碼

• CVE-2022-1048
• CVE-2022-30594

---

資料來源

• AusCERT
• SUSE

---

相關連結

• https://www.auscert.org.au/bulletins/ESB-2022.2790
• https://www.auscert.org.au/bulletins/ESB-2022.2789
• https://www.auscert.org.au/bulletins/ESB-2022.2788
• https://www.auscert.org.au/bulletins/ESB-2022.2752
• https://www.auscert.org.au/bulletins/ESB-2022.2751
• https://www.auscert.org.au/bulletins/ESB-2022.2750
• https://www.auscert.org.au/bulletins/ESB-2022.2749
• https://www.suse.com/support/update/announcement/2022/suse-su-20222000-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20221988-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20221974-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20221955-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20221949-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221948-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221947-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221945-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221942-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221940-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20221939-1