漏洞分享 - Linux 內核多個漏洞
Linux 內核多個漏洞
一、摘要
在 Linux 內核發現多個漏洞。遠端攻擊者可利用這些漏洞,於目標系統觸發阻斷服務狀況、權限提升、遠端執行任意程式碼及洩露敏感資料。
二、存在風險
三、受影響之系統或技術
- SUSE Linux Enterprise High Performance Computing 15-SP3
- SUSE Linux Enterprise High Performance Computing 15-SP4
- SUSE Linux Enterprise Micro 5.1
- SUSE Linux Enterprise Module for Live Patching 15-SP3
- SUSE Linux Enterprise Module for Live Patching 15-SP4
- SUSE Linux Enterprise Server 15-SP3
- SUSE Linux Enterprise Server 15-SP4
- SUSE Linux Enterprise Server for SAP Applications 15-SP3
- SUSE Linux Enterprise Server for SAP Applications 15-SP4
- Ubuntu 16.04 ESM
- Ubuntu 18.04 LTS
- Ubuntu 20.04 LTS
- Ubuntu 22.04 LTS
- Ubuntu 22.10
四、解決方案
在安裝軟體之前,請先瀏覽供應商之網站,以獲得更多詳細資料。
對於 SUSE
安裝供應商提供的修補程式:
https://www.suse.com/support/update/announcement/2023/suse-su-20230277-1/
https://www.suse.com/support/update/announcement/2023/suse-su-20230280-1/
https://www.suse.com/support/update/announcement/2023/suse-su-20230281-1/
https://www.suse.com/support/update/announcement/2023/suse-su-20230320-1/
https://www.suse.com/support/update/announcement/2023/suse-su-20230331-1/
https://www.suse.com/support/update/announcement/2023/suse-su-20230339-1/
對於 Ubuntu
安裝供應商提供的修補程式:
https://ubuntu.com/security/notices/USN-5850-1
https://ubuntu.com/security/notices/USN-5851-1
https://ubuntu.com/security/notices/USN-5853-1
https://ubuntu.com/security/notices/USN-5854-1
https://ubuntu.com/security/notices/USN-5856-1
https://ubuntu.com/security/notices/USN-5857-1
https://ubuntu.com/security/notices/USN-5858-1
https://ubuntu.com/security/notices/USN-5859-1
https://ubuntu.com/security/notices/USN-5860-1
https://ubuntu.com/security/notices/USN-5861-1
https://ubuntu.com/security/notices/USN-5862-1
https://ubuntu.com/security/notices/USN-5863-1
https://ubuntu.com/security/notices/USN-5865-1