{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"SUSE Linux Enterprise Server for SAP Applications 15 SP1","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing LTSS 15 SP3","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"openSUSE Leap 15.5","product":{"name":"openSUSE Leap","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Real Time 15 SP3","product":{"name":"SUSE Linux Enterprise Real Time","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Retail Branch Server 4.2","product":{"name":"SUSE Manager Retail Branch Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE CaaS Platform 4.0","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 12 SP5","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 12 SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE OpenStack Cloud Crowbar 9","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Proxy 4.2","product":{"name":"SUSE Manager Proxy","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 15-SP1","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 12-SP5","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}},{"description":"openSUSE Leap 15.4","product":{"name":"openSUSE Leap","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 12 SP5","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12 SP5","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro 5.2","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Server 4.2","product":{"name":"SUSE Manager Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP1 Business Critical Linux 15-SP1","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15 SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro 5.1","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP1 LTSS 15-SP1","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability Extension 12 SP5","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12 SP4 LTSS 12-SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Server 4.0","product":{"name":"SUSE Manager Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability Extension 15 SP3","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability Extension 12 SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Workstation Extension 12 12-SP5","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12 SP4 ESPOS 12-SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Proxy 4.0","product":{"name":"SUSE Manager Proxy","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP3 Business Critical Linux 15-SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Enterprise Storage 7.1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 15-SP3","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 12 SP4","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability Extension 15 SP1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro for Rancher 5.2","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP1","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS 15-SP1","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Software Development Kit 12 SP5","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15 SP3","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15 SP1","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE OpenStack Cloud 9","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 12-SP4","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 12 SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Retail Branch Server 4.0","product":{"name":"SUSE Manager Retail Branch Server","vendor":{"name":"SUSE","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2023-28466","url":"https://www.cve.org/CVERecord?id=CVE-2023-28466"},{"name":"CVE-2022-4269","url":"https://www.cve.org/CVERecord?id=CVE-2022-4269"},{"name":"CVE-2022-45884","url":"https://www.cve.org/CVERecord?id=CVE-2022-45884"},{"name":"CVE-2023-2513","url":"https://www.cve.org/CVERecord?id=CVE-2023-2513"},{"name":"CVE-2023-31084","url":"https://www.cve.org/CVERecord?id=CVE-2023-31084"},{"name":"CVE-2022-45919","url":"https://www.cve.org/CVERecord?id=CVE-2022-45919"},{"name":"CVE-2023-31436","url":"https://www.cve.org/CVERecord?id=CVE-2023-31436"},{"name":"CVE-2023-2194","url":"https://www.cve.org/CVERecord?id=CVE-2023-2194"},{"name":"CVE-2023-32269","url":"https://www.cve.org/CVERecord?id=CVE-2023-32269"},{"name":"CVE-2022-45886","url":"https://www.cve.org/CVERecord?id=CVE-2022-45886"},{"name":"CVE-2023-23586","url":"https://www.cve.org/CVERecord?id=CVE-2023-23586"},{"name":"CVE-2023-2176","url":"https://www.cve.org/CVERecord?id=CVE-2023-2176"},{"name":"CVE-2023-1079","url":"https://www.cve.org/CVERecord?id=CVE-2023-1079"},{"name":"CVE-2023-33288","url":"https://www.cve.org/CVERecord?id=CVE-2023-33288"},{"name":"CVE-2023-1380","url":"https://www.cve.org/CVERecord?id=CVE-2023-1380"},{"name":"CVE-2022-45887","url":"https://www.cve.org/CVERecord?id=CVE-2022-45887"},{"name":"CVE-2021-29650","url":"https://www.cve.org/CVERecord?id=CVE-2021-29650"},{"name":"CVE-2023-2269","url":"https://www.cve.org/CVERecord?id=CVE-2023-2269"},{"name":"CVE-2022-45885","url":"https://www.cve.org/CVERecord?id=CVE-2022-45885"},{"name":"CVE-2023-1077","url":"https://www.cve.org/CVERecord?id=CVE-2023-1077"},{"name":"CVE-2023-2483","url":"https://www.cve.org/CVERecord?id=CVE-2023-2483"},{"name":"CVE-2020-36694","url":"https://www.cve.org/CVERecord?id=CVE-2020-36694"},{"name":"CVE-2023-32233","url":"https://www.cve.org/CVERecord?id=CVE-2023-32233"},{"name":"CVE-2023-2156","url":"https://www.cve.org/CVERecord?id=CVE-2023-2156"},{"name":"CVE-2023-1637","url":"https://www.cve.org/CVERecord?id=CVE-2023-1637"},{"name":"CVE-2022-3566","url":"https://www.cve.org/CVERecord?id=CVE-2022-3566"}],"links":[],"reference":"CERTFR-2023-AVI-0489","revisions":[{"description":"Version initiale","revision_date":"2023-06-23T00:00:00.000000"}],"risks":[{"description":"Atteinte \u00e0 l'int\u00e9grit\u00e9 des donn\u00e9es"},{"description":"Ex\u00e9cution de code arbitraire"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"},{"description":"D\u00e9ni de service"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans <span\nclass=\"textit\">le noyau Linux de SUSE</span>. Certaines d'entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire,\nune \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:2611-1 du 22 juin 2023","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20232611-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:2534-1 du 19 juin 2023","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20232534-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:2538-1 du 19 juin 2023","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20232538-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:2537-1 du 19 juin 2023","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20232537-1/"}]}