{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"SUSE Linux Enterprise High Availability 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP 12-SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12-SP4-LTSS","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Workstation Extension 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Legacy Software 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE OpenStack Cloud Crowbar 9","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Retail Branch Server 4.3","product":{"name":"SUSE Manager Retail Branch Server","vendor":{"name":"SUSE","scada":false}}},{"description":"openSUSE Leap 15.4","product":{"name":"openSUSE Leap","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15-ESPOS","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12-SP5","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12-SP2-BCL","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Live Patching 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15-SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Public Cloud 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Desktop 15-SP4","product":{"name":"SUSE Linux Enterprise Desktop","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Live Patching 15","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15-SP4","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15-LTSS","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Proxy 4.3","product":{"name":"SUSE Manager Proxy","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15-LTSS","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability 15","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 12-SP4","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Development Tools 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE OpenStack Cloud 9","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12-SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15-SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability 12-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 12-SP4","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Server 4.3","product":{"name":"SUSE Manager Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP 15","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Module for Basesystem 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2022-29581","url":"https://www.cve.org/CVERecord?id=CVE-2022-29581"},{"name":"CVE-2022-2977","url":"https://www.cve.org/CVERecord?id=CVE-2022-2977"},{"name":"CVE-2022-39190","url":"https://www.cve.org/CVERecord?id=CVE-2022-39190"},{"name":"CVE-2021-33135","url":"https://www.cve.org/CVERecord?id=CVE-2021-33135"},{"name":"CVE-2022-28356","url":"https://www.cve.org/CVERecord?id=CVE-2022-28356"},{"name":"CVE-2021-4203","url":"https://www.cve.org/CVERecord?id=CVE-2021-4203"},{"name":"CVE-2020-36557","url":"https://www.cve.org/CVERecord?id=CVE-2020-36557"},{"name":"CVE-2022-2639","url":"https://www.cve.org/CVERecord?id=CVE-2022-2639"},{"name":"CVE-2022-20166","url":"https://www.cve.org/CVERecord?id=CVE-2022-20166"},{"name":"CVE-2020-36516","url":"https://www.cve.org/CVERecord?id=CVE-2020-36516"},{"name":"CVE-2016-3695","url":"https://www.cve.org/CVERecord?id=CVE-2016-3695"},{"name":"CVE-2022-2585","url":"https://www.cve.org/CVERecord?id=CVE-2022-2585"},{"name":"CVE-2022-1184","url":"https://www.cve.org/CVERecord?id=CVE-2022-1184"},{"name":"CVE-2022-3078","url":"https://www.cve.org/CVERecord?id=CVE-2022-3078"},{"name":"CVE-2022-2663","url":"https://www.cve.org/CVERecord?id=CVE-2022-2663"},{"name":"CVE-2022-32250","url":"https://www.cve.org/CVERecord?id=CVE-2022-32250"},{"name":"CVE-2022-39188","url":"https://www.cve.org/CVERecord?id=CVE-2022-39188"},{"name":"CVE-2021-4037","url":"https://www.cve.org/CVERecord?id=CVE-2021-4037"},{"name":"CVE-2022-20368","url":"https://www.cve.org/CVERecord?id=CVE-2022-20368"},{"name":"CVE-2022-26373","url":"https://www.cve.org/CVERecord?id=CVE-2022-26373"},{"name":"CVE-2022-2905","url":"https://www.cve.org/CVERecord?id=CVE-2022-2905"},{"name":"CVE-2019-3900","url":"https://www.cve.org/CVERecord?id=CVE-2019-3900"},{"name":"CVE-2022-36946","url":"https://www.cve.org/CVERecord?id=CVE-2022-36946"},{"name":"CVE-2022-36879","url":"https://www.cve.org/CVERecord?id=CVE-2022-36879"},{"name":"CVE-2022-2991","url":"https://www.cve.org/CVERecord?id=CVE-2022-2991"},{"name":"CVE-2022-2873","url":"https://www.cve.org/CVERecord?id=CVE-2022-2873"},{"name":"CVE-2022-2959","url":"https://www.cve.org/CVERecord?id=CVE-2022-2959"},{"name":"CVE-2022-2588","url":"https://www.cve.org/CVERecord?id=CVE-2022-2588"},{"name":"CVE-2022-20369","url":"https://www.cve.org/CVERecord?id=CVE-2022-20369"},{"name":"CVE-2022-21385","url":"https://www.cve.org/CVERecord?id=CVE-2022-21385"},{"name":"CVE-2022-28693","url":"https://www.cve.org/CVERecord?id=CVE-2022-28693"},{"name":"CVE-2022-2938","url":"https://www.cve.org/CVERecord?id=CVE-2022-2938"},{"name":"CVE-2022-3028","url":"https://www.cve.org/CVERecord?id=CVE-2022-3028"},{"name":"CVE-2020-36558","url":"https://www.cve.org/CVERecord?id=CVE-2020-36558"}],"links":[{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 14 sept. 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20223274-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 sept. 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20223282-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 sept. 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20223294-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 sept. 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20223293-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 sept. 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20223291-1/"},{"title":"Bulletin de s\u00e9curit\u00e9 SUSE du 16 sept. 2022","url":"https://www.suse.com/support/update/announcement/2022/suse-su-20223288-1/"}],"reference":"CERTFR-2022-AVI-826","revisions":[{"description":"Version initiale","revision_date":"2022-09-19T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans <span\nclass=\"textit\">le noyau Linux de SUSE</span>. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance, un contournement\nde la politique de s\u00e9curit\u00e9, une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es et une \u00e9l\u00e9vation de privil\u00e8ges.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:3274-1 du 14 sept. 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:3288-1 du 16 sept. 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:3282-1 du 16 sept. 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:3294-1 du 16 sept. 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:3293-1 du 16 sept. 2022","url":null},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2022:3291-1 du 16 sept. 2022","url":null}]}