SUSE: 2022:501-1 Important: Prometheus Node Exporter DoS Threats
suse
April 3, 2022
The container ses/7/ceph/prometheus-node-exporter was updated
Summary
Advisory ID: SUSE-RU-2022:1021-1 Released: Tue Mar 29 13:24:21 2022 Summary: Recommended update for systemd Type: recommended Severity: moderate Advisory ID: SUSE-SU-2022:1040-1 Released: Wed Mar 30 09:40:58 2022 Summary: Security update for protobuf Type: security Severity: moderate Advisory ID: SUSE-RU-2022:1047-1 Released: Wed Mar 30 16:20:56 2022
Topics Covered
References
References : 1121227 1121230 1122004 1122021 1195258 1195899 1196093 1197024
1197459 CVE-2018-20573 CVE-2018-20574 CVE-2018-25032 CVE-2019-6285
CVE-2019-6292 CVE-2021-22570
1195899
This update for systemd fixes the following issues:
- allow setting external core size to infinity (bsc#1195899 jsc#SLE-23868 jsc#SLE-23870)
1195258,CVE-2021-22570
This update for protobuf fixes the following issues:
- CVE-2021-22570: Fix incorrect parsing of nullchar in the proto symbol (bsc#1195258).
1196093,1197024
This update for pam fixes the following issues:
- Define _pam_vendordir as the variable is needed by systemd and others. (bsc#1196093)
- Between allocating the variable 'ai' and free'ing them, there are two 'return NO' were we don't free this variable.
PREVIOUS
NEXT
Severity
important
Lowest
Low
Medium
High
Critical
Container Advisory ID : SUSE-CU-2022:501-1
Container Tags : ses/7/ceph/prometheus-node-exporter:1.1.2 , ses/7/ceph/prometheus-node-exporter:1.1.2.1.8.13 , ses/7/ceph/prometheus-node-exporter:latest , ses/7/ceph/prometheus-node-exporter:sle15.2.octopus
Container Release : 1.8.13
Severity : important
Type : security
Topics Covered
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!