{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"SUSE Linux Enterprise Server 12-SP2-LTSS","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Realtime 15-SP1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12-SP3-BCL","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12-SP3-LTSS","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Realtime 15-SP2","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Legacy Software 15-SP1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability 12-SP2","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Real Time Extension 12-SP5","product":{"name":"SUSE Linux Enterprise Real Time","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Enterprise Storage 5","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Development Tools 15-SP1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP 12-SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"HPE Helion Openstack 8","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12-SP2-BCL","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Live Patching 15-SP1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Workstation Extension 15-SP1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Basesystem 15-SP1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP 12-SP2","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE OpenStack Cloud 8","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE OpenStack Cloud 7","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability 15-SP1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE OpenStack Cloud Crowbar 8","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability 12-SP3","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2020-14390","url":"https://www.cve.org/CVERecord?id=CVE-2020-14390"},{"name":"CVE-2020-28974","url":"https://www.cve.org/CVERecord?id=CVE-2020-28974"},{"name":"CVE-2020-25285","url":"https://www.cve.org/CVERecord?id=CVE-2020-25285"},{"name":"CVE-2020-12351","url":"https://www.cve.org/CVERecord?id=CVE-2020-12351"},{"name":"CVE-2020-25284","url":"https://www.cve.org/CVERecord?id=CVE-2020-25284"},{"name":"CVE-2020-25704","url":"https://www.cve.org/CVERecord?id=CVE-2020-25704"},{"name":"CVE-2020-25212","url":"https://www.cve.org/CVERecord?id=CVE-2020-25212"},{"name":"CVE-2020-0404","url":"https://www.cve.org/CVERecord?id=CVE-2020-0404"},{"name":"CVE-2020-16120","url":"https://www.cve.org/CVERecord?id=CVE-2020-16120"},{"name":"CVE-2019-19063","url":"https://www.cve.org/CVERecord?id=CVE-2019-19063"},{"name":"CVE-2020-26088","url":"https://www.cve.org/CVERecord?id=CVE-2020-26088"},{"name":"CVE-2020-0430","url":"https://www.cve.org/CVERecord?id=CVE-2020-0430"},{"name":"CVE-2020-24490","url":"https://www.cve.org/CVERecord?id=CVE-2020-24490"},{"name":"CVE-2020-25705","url":"https://www.cve.org/CVERecord?id=CVE-2020-25705"},{"name":"CVE-2020-0432","url":"https://www.cve.org/CVERecord?id=CVE-2020-0432"},{"name":"CVE-2020-12352","url":"https://www.cve.org/CVERecord?id=CVE-2020-12352"},{"name":"CVE-2020-25656","url":"https://www.cve.org/CVERecord?id=CVE-2020-25656"},{"name":"CVE-2017-18204","url":"https://www.cve.org/CVERecord?id=CVE-2017-18204"},{"name":"CVE-2020-25668","url":"https://www.cve.org/CVERecord?id=CVE-2020-25668"},{"name":"CVE-2020-8694","url":"https://www.cve.org/CVERecord?id=CVE-2020-8694"},{"name":"CVE-2020-14351","url":"https://www.cve.org/CVERecord?id=CVE-2020-14351"},{"name":"CVE-2020-25643","url":"https://www.cve.org/CVERecord?id=CVE-2020-25643"},{"name":"CVE-2020-25645","url":"https://www.cve.org/CVERecord?id=CVE-2020-25645"},{"name":"CVE-2020-25641","url":"https://www.cve.org/CVERecord?id=CVE-2020-25641"},{"name":"CVE-2020-0427","url":"https://www.cve.org/CVERecord?id=CVE-2020-0427"},{"name":"CVE-2020-0431","url":"https://www.cve.org/CVERecord?id=CVE-2020-0431"},{"name":"CVE-2019-6133","url":"https://www.cve.org/CVERecord?id=CVE-2019-6133"},{"name":"CVE-2020-14381","url":"https://www.cve.org/CVERecord?id=CVE-2020-14381"}],"links":[],"reference":"CERTFR-2020-AVI-776","revisions":[{"description":"Version initiale","revision_date":"2020-11-26T00:00:00.000000"}],"risks":[{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans le noyau Linux de\nSUSE. Certaines d'entre elles permettent \u00e0 un attaquant de provoquer un\nprobl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l'\u00e9diteur, un contournement de la\npolitique de s\u00e9curit\u00e9 et une atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE suse-su-20203512-1 du 25 novembre 2020","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20203512-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE suse-su-20203501-1 du 24 novembre 2020","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20203501-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE suse-su-20203513-1 du 25 novembre 2020","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20203513-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE suse-su-20203503-1 du 24 novembre 2020","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20203503-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE suse-su-20203522-1 du 25 novembre 2020","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20203522-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE suse-su-20203507-1 du 24 novembre 2020","url":"https://www.suse.com/support/update/announcement/2020/suse-su-20203507-1/"}]}