Карточка уязвимости
Характеристики уязвимости
Уровень опасности
Оценка CVSS
(AV:L/AC:L/Au:N/C:C/I:C/A:C)
Производитель ПО
Наименование ПО
openssh
(any)
openssh-askpass-gnome
(any)
openssh-askpass-gnome-debuginfo
(any)
openssh-debuginfo
(any)
openssh-debugsource
(any)
openssh-fips
(any)
openssh-helpers
(any)
openssh-helpers-debuginfo
(any)
Описание
Уведомление безопасности об уязвимостях SUSE Linux Enterprise Server for SAP 12-SP1, SUSE Linux Enterprise Server 12-LTSS, SUSE Linux Enterprise Server 12-SP1-LTSS
Как исправить
Проблема может быть решена обновлением операционной системы до следующих версий пакетов в зависимости от архитектуры:
SUSE Linux Enterprise Server for SAP 12-SP1:
ppc64le, x86_64:
openssh - 6.6p1-54.15.2
openssh-askpass-gnome-debuginfo - 6.6p1-54.15.1
openssh-helpers-debuginfo - 6.6p1-54.15.2
openssh-askpass-gnome - 6.6p1-54.15.1
openssh-debuginfo - 6.6p1-54.15.2
openssh-fips - 6.6p1-54.15.2
openssh-debugsource - 6.6p1-54.15.2
openssh-helpers - 6.6p1-54.15.2
SUSE Linux Enterprise Server 12-LTSS:
ppc64le, s390x, x86_64:
openssh - 6.6p1-54.15.2
openssh-askpass-gnome-debuginfo - 6.6p1-54.15.1
openssh-helpers-debuginfo - 6.6p1-54.15.2
openssh-askpass-gnome - 6.6p1-54.15.1
openssh-debuginfo - 6.6p1-54.15.2
openssh-fips - 6.6p1-54.15.2
openssh-debugsource - 6.6p1-54.15.2
openssh-helpers - 6.6p1-54.15.2
SUSE Linux Enterprise Server 12-SP1-LTSS:
ppc64le, s390x, x86_64:
openssh - 6.6p1-54.15.2
openssh-askpass-gnome-debuginfo - 6.6p1-54.15.1
openssh-helpers-debuginfo - 6.6p1-54.15.2
openssh-askpass-gnome - 6.6p1-54.15.1
openssh-debuginfo - 6.6p1-54.15.2
openssh-fips - 6.6p1-54.15.2
openssh-debugsource - 6.6p1-54.15.2
openssh-helpers - 6.6p1-54.15.2
SUSE Linux Enterprise Server for SAP 12-SP1:
ppc64le, x86_64:
openssh - 6.6p1-54.15.2
openssh-askpass-gnome-debuginfo - 6.6p1-54.15.1
openssh-helpers-debuginfo - 6.6p1-54.15.2
openssh-askpass-gnome - 6.6p1-54.15.1
openssh-debuginfo - 6.6p1-54.15.2
openssh-fips - 6.6p1-54.15.2
openssh-debugsource - 6.6p1-54.15.2
openssh-helpers - 6.6p1-54.15.2
SUSE Linux Enterprise Server 12-LTSS:
ppc64le, s390x, x86_64:
openssh - 6.6p1-54.15.2
openssh-askpass-gnome-debuginfo - 6.6p1-54.15.1
openssh-helpers-debuginfo - 6.6p1-54.15.2
openssh-askpass-gnome - 6.6p1-54.15.1
openssh-debuginfo - 6.6p1-54.15.2
openssh-fips - 6.6p1-54.15.2
openssh-debugsource - 6.6p1-54.15.2
openssh-helpers - 6.6p1-54.15.2
SUSE Linux Enterprise Server 12-SP1-LTSS:
ppc64le, s390x, x86_64:
openssh - 6.6p1-54.15.2
openssh-askpass-gnome-debuginfo - 6.6p1-54.15.1
openssh-helpers-debuginfo - 6.6p1-54.15.2
openssh-askpass-gnome - 6.6p1-54.15.1
openssh-debuginfo - 6.6p1-54.15.2
openssh-fips - 6.6p1-54.15.2
openssh-debugsource - 6.6p1-54.15.2
openssh-helpers - 6.6p1-54.15.2
Ссылки
http://lists.suse.com/pipermail/sle-security-updates/2018-September/004551.html
https://bugzilla.suse.com/1016370
https://bugzilla.suse.com/1017099
https://bugzilla.suse.com/1023275
https://bugzilla.suse.com/1048367
https://bugzilla.suse.com/1053972
https://bugzilla.suse.com/1065000
https://bugzilla.suse.com/1069509
https://bugzilla.suse.com/1076957
https://bugzilla.suse.com/1092582
Источник: CVE
Наименование: CVE-2008-1483
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1483
Источник: CVE
Наименование: CVE-2016-10012
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10012
Источник: CVE
Наименование: CVE-2016-10708
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10708
Источник: CVE
Наименование: CVE-2017-15906
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15906
https://bugzilla.suse.com/1016370
https://bugzilla.suse.com/1017099
https://bugzilla.suse.com/1023275
https://bugzilla.suse.com/1048367
https://bugzilla.suse.com/1053972
https://bugzilla.suse.com/1065000
https://bugzilla.suse.com/1069509
https://bugzilla.suse.com/1076957
https://bugzilla.suse.com/1092582
Источник: CVE
Наименование: CVE-2008-1483
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1483
Источник: CVE
Наименование: CVE-2016-10012
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10012
Источник: CVE
Наименование: CVE-2016-10708
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-10708
Источник: CVE
Наименование: CVE-2017-15906
URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-15906