Impact

  • Denial of Service
  • Remote Code Execution
  • Elevation of Privilege
  • Information Disclosure
  • Data Manipulation

System / Technologies affected

  • Ubuntu 16.04 ESM
  • Ubuntu 18.04 LTS
  • Ubuntu 20.04 LTS

 

  • SUSE Linux Enterprise High Availability 15-SP3
  • SUSE Linux Enterprise Module for Basesystem 15-SP3
  • SUSE Linux Enterprise Module for Development Tools 15-SP3
  • SUSE Linux Enterprise Module for Legacy Software 15-SP3
  • SUSE Linux Enterprise Module for Live Patching 15-SP3
  • SUSE Linux Enterprise Module for Realtime 15-SP2
  • SUSE Linux Enterprise Workstation Extension 15-SP3
  • SUSE MicroOS 5.0
  • SUSE MicroOS 5.1

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

For Ubuntu

The problem can be corrected by updating your system to the following package versions:

  • Ubuntu 16.04
  • Ubuntu 18.04
  • Ubuntu 20.04

After a standard system update you need to reboot your computer to make all the necessary changes.

 

ATTENTION: Due to an unavoidable ABI change the kernel updates have been given a new version number, which requires you to recompile and reinstall all third party kernel modules you might have installed. Unless you manually uninstalled the standard kernel metapackages (e.g. linux-generic, linux-generic-lts-RELEASE, linux-virtual, linux-powerpc), a standard system upgrade will automatically perform this as well. 

 

 

For SUSE

Apply fixes issued by the vendor:

  • SUSE Linux Enterprise High Availability 15-SP3
  • SUSE Linux Enterprise Module for Basesystem 15-SP3
  • SUSE Linux Enterprise Module for Development Tools 15-SP3
  • SUSE Linux Enterprise Module for Legacy Software 15-SP3
  • SUSE Linux Enterprise Module for Live Patching 15-SP3
  • SUSE Linux Enterprise Module for Realtime 15-SP2
  • SUSE Linux Enterprise Workstation Extension 15-SP3
  • SUSE MicroOS 5.0
  • SUSE MicroOS 5.1

To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or “zypper patch”


Vulnerability Identifier


Source


Related Link



Source link

Is your business effected by Cyber Crime?

If a cyber crime or cyber attack happens to you, you need to respond quickly. Cyber crime in its several formats such as online identity theft, financial fraud, stalking, bullying, hacking, e-mail fraud, email spoofing, invoice fraud, email scams, banking scam, CEO fraud. Cyber fraud can lead to major disruption and financial disasters. Digitpol can assist with all stages of cyber related incidents.

Contact Digitpol’s hotlines or respond to us online.

ASIA +85239733884
Europe +31558448040
UK +44 20 8089 9944

Write a comment:
*

Your email address will not be published.