{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"SUSE Linux Enterprise Module for Live Patching 15-SP3","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15-SP2","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15-SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 12-SP5","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15-SP2","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15-SP1","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro 5.1","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15-SP3","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Live Patching 15-SP1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Live Patching 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15-SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Live Patching 15","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15-SP4","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15-SP1","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15-SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15-SP2","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Live Patching 15-SP2","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 12-SP4","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15-SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15-SP1","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2022-42703","url":"https://www.cve.org/CVERecord?id=CVE-2022-42703"},{"name":"CVE-2020-36557","url":"https://www.cve.org/CVERecord?id=CVE-2020-36557"},{"name":"CVE-2022-39189","url":"https://www.cve.org/CVERecord?id=CVE-2022-39189"},{"name":"CVE-2021-33655","url":"https://www.cve.org/CVERecord?id=CVE-2021-33655"},{"name":"CVE-2022-2588","url":"https://www.cve.org/CVERecord?id=CVE-2022-2588"},{"name":"CVE-2021-39698","url":"https://www.cve.org/CVERecord?id=CVE-2021-39698"},{"name":"CVE-2022-42722","url":"https://www.cve.org/CVERecord?id=CVE-2022-42722"},{"name":"CVE-2022-1882","url":"https://www.cve.org/CVERecord?id=CVE-2022-1882"},{"name":"CVE-2020-36558","url":"https://www.cve.org/CVERecord?id=CVE-2020-36558"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224035-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224024-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224037-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224039-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224034-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224036-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224038-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224030-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224027-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 novembre 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20224033-1/"}],"reference":"CERTFR-2022-AVI-1037","revisions":[{"description":"Version initiale","revision_date":"2022-11-17T00:00:00.000000"}],"risks":[{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"D\u00e9ni de service"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">le noyau Linux de SUSE</span>. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service, une atteinte \u00e0 l'int\u00e9grit\u00e9\ndes donn\u00e9es, une \u00e9l\u00e9vation des privil\u00e8ges et un contournement de la\npolitique de s\u00e9curit\u00e9.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4027-1 du 16 novembre 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4036-1 du 16 novembre 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4024-1 du 16 novembre 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4034-1 du 16 novembre 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4035-1 du 16 novembre 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4030-1 du 16 novembre 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4038-1 du 16 novembre 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4033-1 du 16 novembre 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4037-1 du 16 novembre 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:4039-1 du 16 novembre 2022","url":null}]}