mickmick.net

Linux 內核多個漏洞

最後更新 2022年11月21日 發佈日期: 2022年11月10日

風險: 中度風險

類型: 操作系統 - LINUX

於Linux 內核發現多個漏洞。遠端攻擊者可利用這些漏洞，於目標系統觸發阻斷服務狀況、權限提升、遠端執行任意程式碼、洩露敏感資料、繞過保安限制及跨網站指令碼。

 

[更新於 2022-11-14] 

更新受影響之系統或技術，解決方案及相關連結。

 

[更新於 2022-11-17] 

更新影響，受影響之系統或技術，解決方案，漏洞識別碼及相關連結。

 

[更新於 2022-11-21] 

更新受影響之系統或技術，解決方案，漏洞識別碼及相關連結。

---

影響

• 阻斷服務
• 權限提升
• 資料洩露
• 遠端執行程式碼
• 繞過保安限制
• 跨網站指令碼

---

受影響之系統或技術

• openSUSE Leap 15.3
• openSUSE Leap 15.4
• openSUSE Leap Micro 5.2
• Red Hat CodeReady Linux Builder for ARM 64 8 aarch64
• Red Hat CodeReady Linux Builder for ARM 64 9 aarch64
• Red Hat CodeReady Linux Builder for IBM z Systems 8 s390x
• Red Hat CodeReady Linux Builder for IBM z Systems 9 s390x
• Red Hat CodeReady Linux Builder for Power, little endian 8 ppc64le
• Red Hat CodeReady Linux Builder for Power, little endian 9 ppc64le
• Red Hat CodeReady Linux Builder for x86_64 8 x86_64
• Red Hat CodeReady Linux Builder for x86_64 9 x86_64
• Red Hat Enterprise Linux for ARM 64 8 aarch64
• Red Hat Enterprise Linux for ARM 64 9 aarch64
• Red Hat Enterprise Linux for IBM z Systems 8 s390x
• Red Hat Enterprise Linux for IBM z Systems 9 s390x
• Red Hat Enterprise Linux for Power, little endian 8 ppc64le
• Red Hat Enterprise Linux for Power, little endian 9 ppc64le
• Red Hat Enterprise Linux for Real Time 8 x86_64
• Red Hat Enterprise Linux for Real Time 9 x86_64
• Red Hat Enterprise Linux for Real Time for NFV 8 x86_64
• Red Hat Enterprise Linux for Real Time for NFV 9 x86_64
• Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.1 x86_64
• Red Hat Enterprise Linux for x86_64 - Update Services for SAP Solutions 8.2 x86_64
• Red Hat Enterprise Linux for x86_64 8 x86_64
• Red Hat Enterprise Linux for x86_64 9 x86_64
• Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.1 ppc64le
• Red Hat Enterprise Linux Server for Power LE - Update Services for SAP Solutions 8.2 ppc64le
• Red Hat Satellite 6.12 x86_64
• Red Hat Satellite Capsule 6.12 x86_64
• Red Hat Virtualization Host 4 for RHEL 8 x86_64
• SUSE Linux Enterprise High Performance Computing 15
• SUSE Linux Enterprise High Performance Computing 15-SP1
• SUSE Linux Enterprise High Performance Computing 15-SP2
• SUSE Linux Enterprise High Performance Computing 15-SP3
• SUSE Linux Enterprise High Performance Computing 15-SP4
• SUSE Linux Enterprise Live Patching 12-SP4
• SUSE Linux Enterprise Live Patching 12-SP5
• SUSE Linux Enterprise Micro 5.1
• SUSE Linux Enterprise Micro 5.2
• SUSE Linux Enterprise Module for Live Patching 15
• SUSE Linux Enterprise Module for Live Patching 15-SP1
• SUSE Linux Enterprise Module for Live Patching 15-SP2
• SUSE Linux Enterprise Module for Live Patching 15-SP3
• SUSE Linux Enterprise Module for Live Patching 15-SP4
• SUSE Linux Enterprise Module for Public Cloud 15-SP3
• SUSE Linux Enterprise Module for Public Cloud 15-SP4
• SUSE Linux Enterprise Module for Realtime 15-SP3
• SUSE Linux Enterprise Real Time 15-SP3
• SUSE Linux Enterprise Real Time Extension 12-SP5
• SUSE Linux Enterprise Server 15
• SUSE Linux Enterprise Server 15-SP1
• SUSE Linux Enterprise Server 15-SP2
• SUSE Linux Enterprise Server 15-SP3
• SUSE Linux Enterprise Server 15-SP4
• SUSE Linux Enterprise Server for SAP Applications 15
• SUSE Linux Enterprise Server for SAP Applications 15-SP1
• SUSE Linux Enterprise Server for SAP Applications 15-SP2
• SUSE Linux Enterprise Server for SAP Applications 15-SP3
• SUSE Linux Enterprise Server for SAP Applications 15-SP4
• SUSE Linux Enterprise Storage 7.1
• SUSE Manager Proxy 4.2
• SUSE Manager Proxy 4.3
• SUSE Manager Retail Branch Server 4.2
• SUSE Manager Retail Branch Server 4.3
• SUSE Manager Server 4.2
• SUSE Manager Server 4.3

---

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

 

對於 RedHat

安裝供應商提供的修補程式：

• https://access.redhat.com/errata/RHSA-2022:7444
• https://access.redhat.com/errata/RHSA-2022:7472
• https://access.redhat.com/errata/RHSA-2022:7683
• https://access.redhat.com/errata/RHSA-2022:7885
• https://access.redhat.com/errata/RHSA-2022:7928
• https://access.redhat.com/errata/RHSA-2022:7933
• https://access.redhat.com/errata/RHSA-2022:7967
• https://access.redhat.com/errata/RHSA-2022:7968
• https://access.redhat.com/errata/RHSA-2022:8003
• https://access.redhat.com/errata/RHSA-2022:8267
• https://access.redhat.com/errata/RHSA-2022:8453
• https://access.redhat.com/errata/RHSA-2022:8494
• https://access.redhat.com/errata/RHSA-2022:8506

 

對於 SUSE

安裝供應商提供的修補程式：

• https://www.suse.com/support/update/announcement/2022/suse-su-20223897-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20223929-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20223930-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20223976-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20223998-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20224024-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224027-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224038-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224039-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224033-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224036-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224030-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224034-1

---

漏洞識別碼

• CVE-2020-36516
• CVE-2020-36557
• CVE-2020-36558
• CVE-2021-3507
• CVE-2021-3611
• CVE-2021-3640
• CVE-2021-3750
• CVE-2021-4037
• CVE-2021-4158
• CVE-2021-30002
• CVE-2021-33655
• CVE-2021-37136
• CVE-2021-37137
• CVE-2021-39698
• CVE-2022-0168
• CVE-2022-0617
• CVE-2022-0854
• CVE-2022-0897
• CVE-2022-1016
• CVE-2022-1048
• CVE-2022-1055
• CVE-2022-1184
• CVE-2022-1280
• CVE-2022-1353
• CVE-2022-1679
• CVE-2022-1852
• CVE-2022-1882
• CVE-2022-1998
• CVE-2022-2078
• CVE-2022-2153
• CVE-2022-2211
• CVE-2022-2586
• CVE-2022-2588
• CVE-2022-2601
• CVE-2022-2639
• CVE-2022-2938
• CVE-2022-2964
• CVE-2022-2978
• CVE-2022-3169
• CVE-2022-3176
• CVE-2022-3424
• CVE-2022-3435
• CVE-2022-3521
• CVE-2022-3524
• CVE-2022-3526
• CVE-2022-3535
• CVE-2022-3542
• CVE-2022-3545
• CVE-2022-3565
• CVE-2022-3577
• CVE-2022-3586
• CVE-2022-3594
• CVE-2022-3619
• CVE-2022-3621
• CVE-2022-3623
• CVE-2022-3625
• CVE-2022-3628
• CVE-2022-3629
• CVE-2022-3633
• CVE-2022-3640
• CVE-2022-3646
• CVE-2022-3649
• CVE-2022-3775
• CVE-2022-3787
• CVE-2022-20368
• CVE-2022-21123
• CVE-2022-21125
• CVE-2022-21166
• CVE-2022-21499
• CVE-2022-22818
• CVE-2022-23645
• CVE-2022-23816
• CVE-2022-23825
• CVE-2022-23960
• CVE-2022-24448
• CVE-2022-24836
• CVE-2022-25648
• CVE-2022-26373
• CVE-2022-27950
• CVE-2022-28390
• CVE-2022-28748
• CVE-2022-28893
• CVE-2022-29581
• CVE-2022-29900
• CVE-2022-29901
• CVE-2022-29970
• CVE-2022-32209
• CVE-2022-33981
• CVE-2022-34265
• CVE-2022-36946
• CVE-2022-39189
• CVE-2022-39190
• CVE-2022-40476
• CVE-2022-40768
• CVE-2022-41674
• CVE-2022-42703
• CVE-2022-42719
• CVE-2022-42720
• CVE-2022-42721
• CVE-2022-42722
• CVE-2022-43750

---

資料來源

• AusCERT
• RedHat
• SUSE

---

相關連結

• https://www.auscert.org.au/bulletins/ESB-2022.5706
• https://www.auscert.org.au/bulletins/ESB-2022.5717
• https://www.auscert.org.au/bulletins/ESB-2022.5736
• https://www.auscert.org.au/bulletins/ESB-2022.5811
• https://www.auscert.org.au/bulletins/ESB-2022.5813
• https://www.auscert.org.au/bulletins/ESB-2022.5919
• https://www.auscert.org.au/bulletins/ESB-2022.5950
• https://www.auscert.org.au/bulletins/ESB-2022.6026
• https://www.auscert.org.au/bulletins/ESB-2022.6024
• https://www.auscert.org.au/bulletins/ESB-2022.6023
• https://www.auscert.org.au/bulletins/ESB-2022.6022
• https://www.auscert.org.au/bulletins/ESB-2022.6021
• https://www.auscert.org.au/bulletins/ESB-2022.6020
• https://www.auscert.org.au/bulletins/ESB-2022.6019
• https://www.auscert.org.au/bulletins/ESB-2022.6017
• https://access.redhat.com/errata/RHSA-2022:7444
• https://access.redhat.com/errata/RHSA-2022:7472
• https://access.redhat.com/errata/RHSA-2022:7683
• https://access.redhat.com/errata/RHSA-2022:7885
• https://access.redhat.com/errata/RHSA-2022:7928
• https://access.redhat.com/errata/RHSA-2022:7933
• https://access.redhat.com/errata/RHSA-2022:7967
• https://access.redhat.com/errata/RHSA-2022:7968
• https://access.redhat.com/errata/RHSA-2022:8003
• https://access.redhat.com/errata/RHSA-2022:8267
• https://access.redhat.com/errata/RHSA-2022:8453
• https://access.redhat.com/errata/RHSA-2022:8494
• https://access.redhat.com/errata/RHSA-2022:8506
• https://www.suse.com/support/update/announcement/2022/suse-su-20223897-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20223929-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20223930-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20223976-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20223998-1/
• https://www.suse.com/support/update/announcement/2022/suse-su-20224024-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224027-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224038-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224039-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224033-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224036-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224030-1
• https://www.suse.com/support/update/announcement/2022/suse-su-20224034-1