mickmick.net

SUSE Linux 內核多個漏洞

發佈日期: 2024年04月02日

風險: 中度風險

類型: 操作系統 - LINUX

於 SUSE Linux 內核發現多個漏洞。遠端攻擊者可利用這些漏洞，於目標系統觸發阻斷服務狀況、權限提升、遠端執行程式碼、繞過保安限制及敏感資料洩露。

 

---

影響

• 阻斷服務
• 權限提升
• 遠端執行程式碼
• 繞過保安限制
• 資料洩露

---

受影響之系統或技術

• SUSE Linux Enterprise High Availability Extension 12 SP5
• SUSE Linux Enterprise High Availability Extension 15 SP2
• SUSE Linux Enterprise High Performance Computing 12 SP5
• SUSE Linux Enterprise High Performance Computing 15 SP2
• SUSE Linux Enterprise High Performance Computing 15 SP2 LTSS 15-SP2
• SUSE Linux Enterprise High Performance Computing 15 SP3
• SUSE Linux Enterprise High Performance Computing 15 SP4
• SUSE Linux Enterprise High Performance Computing 15 SP5
• SUSE Linux Enterprise Live Patching 12-SP5
• SUSE Linux Enterprise Live Patching 15-SP2
• SUSE Linux Enterprise Live Patching 15-SP3
• SUSE Linux Enterprise Live Patching 15-SP4
• SUSE Linux Enterprise Live Patching 15-SP5
• SUSE Linux Enterprise Micro 5.1
• SUSE Linux Enterprise Micro 5.2
• SUSE Linux Enterprise Micro 5.3
• SUSE Linux Enterprise Micro 5.4
• SUSE Linux Enterprise Micro 5.5
• SUSE Linux Enterprise Micro for Rancher 5.3
• SUSE Linux Enterprise Micro for Rancher 5.4
• SUSE Linux Enterprise Real Time 12 SP5
• SUSE Linux Enterprise Real Time 15 SP4
• SUSE Linux Enterprise Real Time 15 SP5
• SUSE Linux Enterprise Server 12 SP5
• SUSE Linux Enterprise Server 15 SP2
• SUSE Linux Enterprise Server 15 SP2 Business Critical Linux 15-SP2
• SUSE Linux Enterprise Server 15 SP2 LTSS 15-SP2
• SUSE Linux Enterprise Server 15 SP3
• SUSE Linux Enterprise Server 15 SP4
• SUSE Linux Enterprise Server 15 SP5
• SUSE Linux Enterprise Server for SAP Applications 12 SP5
• SUSE Linux Enterprise Server for SAP Applications 15 SP2
• SUSE Linux Enterprise Server for SAP Applications 15 SP3
• SUSE Linux Enterprise Server for SAP Applications 15 SP4
• SUSE Linux Enterprise Server for SAP Applications 15 SP5
• SUSE Linux Enterprise Software Development Kit 12 SP5
• SUSE Linux Enterprise Workstation Extension 12 12-SP5
• SUSE Manager Proxy 4.1
• SUSE Manager Retail Branch Server 4.1
• SUSE Manager Server 4.1
• openSUSE Leap 15.3
• openSUSE Leap 15.4
• openSUSE Leap 15.5
• openSUSE Leap Micro 5.3
• openSUSE Leap Micro 5.4

---

解決方案

在安裝軟體之前，請先瀏覽供應商之網站，以獲得更多詳細資料。

 

安裝供應商提供的修補程式：

• https://www.suse.com/support/update/announcement/2024/suse-su-20240925-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240926-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240975-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240976-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240977-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240986-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240989-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240991-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240995-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241017-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241023-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241025-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241028-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241033-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241039-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241040-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241045-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241047-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241053-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241054-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241063-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241072-1

---

漏洞識別碼

• CVE-2019-25162
• CVE-2020-36777
• CVE-2020-36784
• CVE-2021-33200
• CVE-2021-46904
• CVE-2021-46905
• CVE-2021-46906
• CVE-2021-46915
• CVE-2021-46921
• CVE-2021-46923
• CVE-2021-46924
• CVE-2021-46929
• CVE-2021-46932
• CVE-2021-46934
• CVE-2021-46953
• CVE-2021-46964
• CVE-2021-46966
• CVE-2021-46974
• CVE-2021-46989
• CVE-2021-46991
• CVE-2021-46992
• CVE-2021-47005
• CVE-2021-47012
• CVE-2021-47013
• CVE-2021-47054
• CVE-2021-47060
• CVE-2021-47061
• CVE-2021-47069
• CVE-2021-47076
• CVE-2021-47077
• CVE-2021-47078
• CVE-2021-47083
• CVE-2022-20154
• CVE-2022-48627
• CVE-2023-0461
• CVE-2023-5197
• CVE-2023-6270
• CVE-2023-6356
• CVE-2023-6531
• CVE-2023-6535
• CVE-2023-6536
• CVE-2023-6817
• CVE-2023-28746
• CVE-2023-35827
• CVE-2023-39191
• CVE-2023-46343
• CVE-2023-46813
• CVE-2023-51042
• CVE-2023-51779
• CVE-2023-52340
• CVE-2023-52429
• CVE-2023-52439
• CVE-2023-52443
• CVE-2023-52445
• CVE-2023-52447
• CVE-2023-52448
• CVE-2023-52449
• CVE-2023-52451
• CVE-2023-52452
• CVE-2023-52456
• CVE-2023-52457
• CVE-2023-52463
• CVE-2023-52464
• CVE-2023-52467
• CVE-2023-52475
• CVE-2023-52478
• CVE-2023-52482
• CVE-2023-52484
• CVE-2023-52502
• CVE-2023-52530
• CVE-2023-52531
• CVE-2023-52532
• CVE-2023-52559
• CVE-2023-52569
• CVE-2023-52574
• CVE-2023-52597
• CVE-2023-52605
• CVE-2024-0340
• CVE-2024-0607
• CVE-2024-1151
• CVE-2024-23849
• CVE-2024-23850
• CVE-2024-23851
• CVE-2024-26585
• CVE-2024-26586
• CVE-2024-26589
• CVE-2024-26591
• CVE-2024-26593
• CVE-2024-26595
• CVE-2024-26598
• CVE-2024-26600
• CVE-2024-26602
• CVE-2024-26603
• CVE-2024-26607
• CVE-2024-26622

---

資料來源

• SUSE

---

相關連結

• https://www.suse.com/support/update/announcement/2024/suse-su-20240925-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240926-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240975-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240976-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240977-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240986-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240989-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240991-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240995-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241017-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241023-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241025-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241028-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241033-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241039-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241040-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241045-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241047-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241053-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241054-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241063-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20241072-1