Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2023-4936-1.NASL
HistoryDec 21, 2023 - 12:00 a.m.

SUSE SLES15 / openSUSE 15 Security Update : docker, rootlesskit (SUSE-SU-2023:4936-1)

2023-12-2100:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
suse sles15
opensuse 15
security update
docker
rootlesskit
vulnerabilities
amd
linux hwmon service
rapl interface
cve-2020-12912
intel processors
cve-2020-8694
cve-2020-8695
nessus
scanner

6.8 Medium

AI Score

Confidence

High

JSON

The remote SUSE Linux SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:4936-1 advisory.

  • A potential vulnerability in the AMD extension to Linux hwmon service may allow an attacker to use the Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. In line with industry partners, AMD has updated the RAPL interface to require privileged access. (CVE-2020-12912)

  • Insufficient access control in the Linux kernel driver for some Intel® Processors may allow an authenticated user to potentially enable information disclosure via local access. (CVE-2020-8694)

  • Observable discrepancy in the RAPL interface for some Intel® Processors may allow a privileged user to potentially enable information disclosure via local access. (CVE-2020-8695)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# SUSE update advisory SUSE-SU-2023:4936-1. The text itself
# is copyright (C) SUSE.
##

include('compat.inc');

if (description)
{
  script_id(187143);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/12/21");

  script_cve_id("CVE-2020-8694", "CVE-2020-8695", "CVE-2020-12912");
  script_xref(name:"SuSE", value:"SUSE-SU-2023:4936-1");

  script_name(english:"SUSE SLES15 / openSUSE 15 Security Update : docker, rootlesskit (SUSE-SU-2023:4936-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote SUSE Linux SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple
vulnerabilities as referenced in the SUSE-SU-2023:4936-1 advisory.

  - A potential vulnerability in the AMD extension to Linux hwmon service may allow an attacker to use the
    Linux-based Running Average Power Limit (RAPL) interface to show various side channel attacks. In line
    with industry partners, AMD has updated the RAPL interface to require privileged access. (CVE-2020-12912)

  - Insufficient access control in the Linux kernel driver for some Intel(R) Processors may allow an
    authenticated user to potentially enable information disclosure via local access. (CVE-2020-8694)

  - Observable discrepancy in the RAPL interface for some Intel(R) Processors may allow a privileged user to
    potentially enable information disclosure via local access. (CVE-2020-8695)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1170415");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1170446");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1178760");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1210141");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1213229");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1213500");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1215323");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1217513");
  # https://lists.suse.com/pipermail/sle-security-updates/2023-December/017510.html
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?e3d1853b");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-12912");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-8694");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-8695");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-8695");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2020/11/11");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/12/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/12/21");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:docker");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:docker-bash-completion");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:docker-fish-completion");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:docker-rootless-extras");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:rootlesskit");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:15");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"SuSE Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include('rpm.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item("Host/SuSE/release");
if (isnull(os_release) || os_release !~ "^(SLED|SLES|SUSE)") audit(AUDIT_OS_NOT, "SUSE / openSUSE");
var os_ver = pregmatch(pattern: "^(SLE(S|D)(?:_SAP)?\d+|SUSE([\d.]+))", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE / openSUSE');
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES15|SLES_SAP15|SUSE15\.4|SUSE15\.5)$", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLES15 / SLES_SAP15 / openSUSE 15', 'SUSE / openSUSE (' + os_ver + ')');

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE / openSUSE (' + os_ver + ')', cpu);

var service_pack = get_kb_item("Host/SuSE/patchlevel");
if (isnull(service_pack)) service_pack = "0";
if (os_ver == "SLES15" && (! preg(pattern:"^(1|2|3|4|5)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES15 SP1/2/3/4/5", os_ver + " SP" + service_pack);
if (os_ver == "SLES_SAP15" && (! preg(pattern:"^(1|2|3|4|5)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES_SAP15 SP1/2/3/4/5", os_ver + " SP" + service_pack);

var pkgs = [
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'1', 'cpu':'x86_64', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.1']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'1', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.1']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'2', 'cpu':'x86_64', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.2']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'2', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.2']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.3']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'3', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.3']},
    {'reference':'docker-fish-completion-24.0.7_ce-150000.190.4', 'sp':'3', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.3']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'4', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.4']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'4', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.4']},
    {'reference':'docker-rootless-extras-24.0.7_ce-150000.190.4', 'sp':'4', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.4']},
    {'reference':'rootlesskit-1.1.1-150000.1.3.3', 'sp':'4', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.4']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'5', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'5', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
    {'reference':'docker-rootless-extras-24.0.7_ce-150000.190.4', 'sp':'5', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
    {'reference':'rootlesskit-1.1.1-150000.1.3.3', 'sp':'5', 'release':'SLES_SAP15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-15.5']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'3', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-ESPOS-release-3']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'3', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-ESPOS-release-3']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-ESPOS-release-3']},
    {'reference':'docker-fish-completion-24.0.7_ce-150000.190.4', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-ESPOS-release-3']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'1', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.1']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'1', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.1']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.1', 'sles-ltss-release-15.1']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'2', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.2']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'2', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.2']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.2', 'sles-ltss-release-15.2']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'3', 'cpu':'aarch64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.3']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'3', 'cpu':'x86_64', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.3']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.3', 'sles-ltss-release-15.3']},
    {'reference':'docker-fish-completion-24.0.7_ce-150000.190.4', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-LTSS-release-15.3', 'sles-ltss-release-15.3']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'4', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-release-15.4', 'SUSE-Manager-Proxy-release-4.3', 'SUSE-Manager-Server-release-4.3', 'sle-module-containers-release-15.4', 'sles-release-15.4', 'suse-manager-server-release-4.3']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'4', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-release-15.4', 'SUSE-Manager-Proxy-release-4.3', 'SUSE-Manager-Server-release-4.3', 'sle-module-containers-release-15.4', 'sles-release-15.4', 'suse-manager-server-release-4.3']},
    {'reference':'docker-rootless-extras-24.0.7_ce-150000.190.4', 'sp':'4', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-release-15.4', 'SUSE-Manager-Proxy-release-4.3', 'SUSE-Manager-Server-release-4.3', 'sle-module-containers-release-15.4', 'sles-release-15.4', 'suse-manager-server-release-4.3']},
    {'reference':'rootlesskit-1.1.1-150000.1.3.3', 'sp':'4', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-release-15.4', 'SUSE-Manager-Proxy-release-4.3', 'SUSE-Manager-Server-release-4.3', 'sle-module-containers-release-15.4', 'sles-release-15.4', 'suse-manager-server-release-4.3']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'5', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-release-15.5', 'sle-module-containers-release-15.5', 'sles-release-15.5']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'sp':'5', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-release-15.5', 'sle-module-containers-release-15.5', 'sles-release-15.5']},
    {'reference':'docker-rootless-extras-24.0.7_ce-150000.190.4', 'sp':'5', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-release-15.5', 'sle-module-containers-release-15.5', 'sles-release-15.5']},
    {'reference':'rootlesskit-1.1.1-150000.1.3.3', 'sp':'5', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLE_HPC-release-15.5', 'sle-module-containers-release-15.5', 'sles-release-15.5']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.4']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.4']},
    {'reference':'docker-fish-completion-24.0.7_ce-150000.190.4', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.4']},
    {'reference':'docker-rootless-extras-24.0.7_ce-150000.190.4', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.4']},
    {'reference':'docker-zsh-completion-24.0.7_ce-150000.190.4', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.4']},
    {'reference':'rootlesskit-1.1.1-150000.1.3.3', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.4']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'release':'SUSE15.5', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.5']},
    {'reference':'docker-bash-completion-24.0.7_ce-150000.190.4', 'release':'SUSE15.5', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.5']},
    {'reference':'docker-fish-completion-24.0.7_ce-150000.190.4', 'release':'SUSE15.5', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.5']},
    {'reference':'docker-rootless-extras-24.0.7_ce-150000.190.4', 'release':'SUSE15.5', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.5']},
    {'reference':'docker-zsh-completion-24.0.7_ce-150000.190.4', 'release':'SUSE15.5', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.5']},
    {'reference':'rootlesskit-1.1.1-150000.1.3.3', 'release':'SUSE15.5', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['openSUSE-release-15.5']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'1', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-ltss-release-15.1']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-ltss-release-15.2']},
    {'reference':'docker-24.0.7_ce-150000.190.4', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-ltss-release-15.3']}
];

var ltss_caveat_required = FALSE;
var flag = 0;
foreach var package_array ( pkgs ) {
  var reference = NULL;
  var _release = NULL;
  var sp = NULL;
  var _cpu = NULL;
  var exists_check = NULL;
  var rpm_spec_vers_cmp = NULL;
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (!empty_or_null(package_array['release'])) _release = package_array['release'];
  if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
  if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
  if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
  if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
  if (reference && _release) {
    if (exists_check) {
      var check_flag = 0;
      foreach var check (exists_check) {
        if (!rpm_exists(release:_release, rpm:check)) continue;
        if ('ltss' >< tolower(check)) ltss_caveat_required = TRUE;
        check_flag++;
      }
      if (!check_flag) continue;
    }
    if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;
  }
}

if (flag)
{
  var ltss_plugin_caveat = NULL;
  if(ltss_caveat_required) ltss_plugin_caveat = '\n' +
    'NOTE: This vulnerability check contains fixes that apply to\n' +
    'packages only available in SUSE Enterprise Linux Server LTSS\n' +
    'repositories. Access to these package security updates require\n' +
    'a paid SUSE LTSS subscription.\n';
  security_report_v4(
      port       : 0,
      severity   : SECURITY_NOTE,
      extra      : rpm_report_get() + ltss_plugin_caveat
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'docker / docker-bash-completion / docker-fish-completion / etc');
}
VendorProductVersionCPE
novellsuse_linux15cpe:/o:novell:suse_linux:15
novellsuse_linuxdockerp-cpe:/a:novell:suse_linux:docker
novellsuse_linuxdocker-bash-completionp-cpe:/a:novell:suse_linux:docker-bash-completion
novellsuse_linuxdocker-fish-completionp-cpe:/a:novell:suse_linux:docker-fish-completion
novellsuse_linuxdocker-rootless-extrasp-cpe:/a:novell:suse_linux:docker-rootless-extras
novellsuse_linuxrootlesskitp-cpe:/a:novell:suse_linux:rootlesskit

Related

nessus 75
github 2
osv 10
openvas 32
oraclelinux 13
intel 1
lenovo 4
f5 1
threatpost 1
mageia 1
veracode 3
cve 3
ubuntucve 3
debiancve 3
prion 3
redhatcve 3
cloudfoundry 4
alpinelinux 1
ubuntu 6
fedora 4
cnvd 1
archlinux 1
suse 5
redhat 11
centos 2
debian 1
ics 1
photon 3
hp 1
nessus
nessus
SUSE SLES12 Security Update : containerd, docker, runc (SUSE-SU-2023:4625-1)
2023-12-02 00:00:00
Oracle Linux 7 / 8 : Unbreakable Enterprise kernel (ELSA-2020-5914)
2020-11-10 00:00:00
Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2020-5924)
2020-11-12 00:00:00
github
github
containerd allows RAPL to be accessible to a container
2023-12-19 21:17:06
/sys/devices/virtual/powercap accessible by default to containers
2023-10-30 15:25:44
osv
osv
containerd allows RAPL to be accessible to a container
2023-12-19 21:17:06
/sys/devices/virtual/powercap accessible by default to containers
2023-10-30 15:25:44
CVE-2020-8694
2020-11-12 18:15:16
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:4936-1)
2023-12-21 00:00:00
Mageia: Security Advisory (MGASA-2020-0422)
2022-01-28 00:00:00
Ubuntu: Security Advisory (USN-4627-1)
2020-11-11 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2020-11-10 00:00:00
microcode_ctl security, bug fix and enhancement update
2020-11-17 00:00:00
microcode_ctl security, bug fix, and enhancement update
2020-11-17 00:00:00
intel
intel
2020.2 IPU - Intel® RAPL Interface Advisory
2021-05-11 00:00:00
lenovo
lenovo
Intel RAPL Interface Advisory - Lenovo Support NL
2020-11-04 15:35:53
Intel RAPL Interface Advisory - Lenovo Support US
2020-11-04 15:35:53
AMD Energy Driver for Linux Vulnerability (RAPL) - Lenovo Support NL
2020-11-06 17:34:47
f5
f5
K32512431 : Linux kernel vulnerabilities CVE-2020-8694 and CVE-2020-8695
2020-11-24 00:00:00
threatpost
threatpost
Nvidia Warns Windows Gamers of GeForce NOW Flaw
2020-11-11 19:03:15
mageia
mageia
Updated microcode package fixes security vulnerabilities
2020-11-14 00:20:36
veracode
veracode
Information Disclosure
2021-01-07 19:15:43
Information Disclosure
2020-11-16 04:59:24
Information Disclosure
2020-11-12 07:53:07
cve
cve
CVE-2020-12912
2020-11-12 20:15:00
CVE-2020-8694
2020-11-12 18:15:00
CVE-2020-8695
2020-11-12 18:15:00
ubuntucve
ubuntucve
CVE-2020-12912
2020-11-12 00:00:00
CVE-2020-8694
2020-11-10 00:00:00
CVE-2020-8695
2020-11-10 00:00:00
debiancve
debiancve
CVE-2020-12912
2020-11-12 20:15:00
CVE-2020-8694
2020-11-12 18:15:00
CVE-2020-8695
2020-11-12 18:15:00
prion
prion
Design/Logic Flaw
2020-11-12 20:15:00
Improper access control
2020-11-12 18:15:00
Information disclosure
2020-11-12 18:15:00
redhatcve
redhatcve
CVE-2020-12912
2020-11-13 01:52:45
CVE-2020-8694
2020-11-10 19:52:55
CVE-2020-8695
2020-11-10 19:52:48
cloudfoundry
cloudfoundry
USN-4627-1: Linux kernel vulnerability | Cloud Foundry
2020-12-11 00:00:00
USN-4628-2: Intel Microcode regression | Cloud Foundry
2020-12-11 00:00:00
USN-4628-3: Intel Microcode vulnerabilities | Cloud Foundry
2021-06-11 00:00:00
alpinelinux
alpinelinux
CVE-2020-8694
2020-11-12 18:15:00
ubuntu
ubuntu
Linux kernel vulnerability
2020-11-11 00:00:00
Linux kernel vulnerabilities
2021-01-06 00:00:00
Linux kernel vulnerabilities
2020-11-11 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: microcode_ctl-2.1-39.3.fc31
2020-11-24 02:13:36
[SECURITY] Fedora 33 Update: microcode_ctl-2.1-43.fc33
2020-11-22 01:27:43
[SECURITY] Fedora 31 Update: microcode_ctl-2.1-39.2.fc31
2020-11-20 01:29:29
cnvd
cnvd
Intel Processors Information Disclosure Vulnerability (CNVD-2022-05687)
2021-10-13 00:00:00
archlinux
archlinux
[ASA-202011-10] linux-hardened: multiple issues
2020-11-10 00:00:00
suse
suse
Security update for ucode-intel (moderate)
2020-11-14 00:00:00
Security update for ucode-intel (moderate)
2020-11-15 00:00:00
Security update for ucode-intel (important)
2020-11-29 00:00:00
redhat
redhat
(RHSA-2020:5190) Moderate: microcode_ctl security, bug fix, and enhancement update
2020-11-23 18:42:23
(RHSA-2020:5188) Moderate: microcode_ctl security, bug fix and enhancement update
2020-11-23 18:41:18
(RHSA-2020:5085) Moderate: microcode_ctl security, bug fix and enhancement update
2020-11-11 09:27:53
centos
centos
microcode_ctl security update
2020-11-19 13:47:47
microcode_ctl security update
2021-08-09 15:29:53
debian
debian
[SECURITY] [DLA 2546-1] intel-microcode security update
2021-02-05 18:49:05
ics
ics
Siemens Industrial PCs and CNC devices (Update A)
2022-12-15 12:00:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0163
2020-11-19 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0163
2020-11-19 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0295
2020-11-12 00:00:00
hp
hp
HPSBHF03705 rev. 6 - BIOS November 2020 Security Updates
2020-11-09 00:00:00

6.8 Medium

AI Score

Confidence

High

JSON
Related for SUSE_SU-2023-4936-1.NASL
nessus75github2osv10openvas32oraclelinux13intel1lenovo4f51threatpost1mageia1veracode3cve3ubuntucve3debiancve3prion3redhatcve3cloudfoundry4alpinelinux1ubuntu6fedora4cnvd1archlinux1suse5redhat11centos2debian1ics1photon3hp1