Описание
Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container
This update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container fixes the following issues:
- CVE-2021-43565: Fixes a vulnerability in the golang.org/x/crypto/ssh package which allowed unauthenticated clients to cause a panic in SSH servers. (bsc#1193930)
Список пакетов
SUSE Enterprise Storage 7
kubevirt-manifests-0.40.0-5.17.2
kubevirt-virtctl-0.40.0-5.17.2
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS
kubevirt-manifests-0.40.0-5.17.2
kubevirt-virtctl-0.40.0-5.17.2
SUSE Linux Enterprise High Performance Computing 15 SP2-LTSS
kubevirt-manifests-0.40.0-5.17.2
kubevirt-virtctl-0.40.0-5.17.2
SUSE Linux Enterprise Server 15 SP2-BCL
kubevirt-manifests-0.40.0-5.17.2
kubevirt-virtctl-0.40.0-5.17.2
SUSE Linux Enterprise Server 15 SP2-LTSS
kubevirt-manifests-0.40.0-5.17.2
kubevirt-virtctl-0.40.0-5.17.2
SUSE Linux Enterprise Server for SAP Applications 15 SP2
kubevirt-manifests-0.40.0-5.17.2
kubevirt-virtctl-0.40.0-5.17.2
SUSE Manager Proxy 4.1
kubevirt-manifests-0.40.0-5.17.2
kubevirt-virtctl-0.40.0-5.17.2
SUSE Manager Retail Branch Server 4.1
kubevirt-manifests-0.40.0-5.17.2
kubevirt-virtctl-0.40.0-5.17.2
SUSE Manager Server 4.1
kubevirt-manifests-0.40.0-5.17.2
kubevirt-virtctl-0.40.0-5.17.2
Ссылки
- Link for SUSE-SU-2022:0130-1
- E-Mail link for SUSE-SU-2022:0130-1
- SUSE Security Ratings
- SUSE Bug 1193930
- SUSE CVE CVE-2021-43565 page
Описание
The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server.
Затронутые продукты
SUSE Enterprise Storage 7:kubevirt-manifests-0.40.0-5.17.2
SUSE Enterprise Storage 7:kubevirt-virtctl-0.40.0-5.17.2
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:kubevirt-manifests-0.40.0-5.17.2
SUSE Linux Enterprise High Performance Computing 15 SP2-ESPOS:kubevirt-virtctl-0.40.0-5.17.2
Ссылки
- CVE-2021-43565
- SUSE Bug 1193930