SUSE CVE-2022-2068

🗓️ 15 Feb 2023 03:33:06Reported by Suse CVEType

CVE-2022-2068: c_rehash allows command injection from unsanitised filenames when run automatically; replace with the rehash tool.

Reporter	Title	Published	Views	Family All 355
IBM Security Bulletins	Security Bulletin:IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from openssl, pcre2 and Golang Go	31 Aug 202216:17	–	ibm
IBM Security Bulletins	Security Bulletin: AIX is vulnerable to arbitrary command execution (CVE-2022-1292 and CVE-2022-2068) or an attacker may obtain sensitive information (CVE-2022-2097) due to OpenSSL	19 Aug 202216:02	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM InfoSphere Information Server	25 Jan 202316:00	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in OpenSSL affect IBM Spectrum Protect Plus SQL, File Indexing, and Windows Host agents	21 Sep 202220:55	–	ibm
IBM Security Bulletins	Security Bulletin: Netcool Operations Insight v1.6.8 addresses multiple security vulnerabilities.	11 Apr 202311:47	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Linux Kernel, OpenSSL, Golang Go, and Zlib may affect IBM Spectrum Protect Plus	17 Sep 202206:09	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in OpenSSL affects IBM Integrated Analytics System [CVE-2022-2068]	27 Sep 202411:41	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Cloud Pak for Security includes components with multiple known vulnerabilities	7 Jun 202316:53	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Linux Kernel and OpenSSL may affect IBM Spectrum Copy Data Management	17 Sep 202201:21	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affect IBM Db2® REST	20 May 202423:34	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
OpenSUSE Tumbleweed	–	any	grype	0.92.1-1.1	grype-0.92.1-1.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	grype-bash-completion	0.92.1-1.1	grype-bash-completion-0.92.1-1.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	grype-fish-completion	0.92.1-1.1	grype-fish-completion-0.92.1-1.1.noarch.rpm
OpenSUSE Tumbleweed	–	any	grype-zsh-completion	0.92.1-1.1	grype-zsh-completion-0.92.1-1.1.noarch.rpm
OpenSUSE Leap	15.3	any	libopenssl-1_0_0-devel	1.0.2p-150000.3.56.1	libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.noarch.rpm
OpenSUSE Leap	15.4	any	libopenssl-1_0_0-devel	1.0.2p-150000.3.56.1	libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.noarch.rpm
SUSE Linux Enterprise Server	15	any	libopenssl-1_0_0-devel	1.0.2p-150000.3.56.1	libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.noarch.rpm
SUSE Linux Enterprise Server	15.1	any	libopenssl-1_0_0-devel	1.0.2p-150000.3.56.1	libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.noarch.rpm
SUSE Linux Enterprise Server	15.2	any	libopenssl-1_0_0-devel	1.0.2p-150000.3.56.1	libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.noarch.rpm
SUSE Linux Enterprise Server	15.3	any	libopenssl-1_0_0-devel	1.0.2p-150000.3.56.1	libopenssl-1_0_0-devel-1.0.2p-150000.3.56.1.noarch.rpm

Source	Link
suse	www.suse.com/security/cve/CVE-2022-2068
suse	www.suse.com/support/security/rating/
bugzilla	www.bugzilla.suse.com/1200550
bugzilla	www.bugzilla.suse.com/1207568
bugzilla	www.bugzilla.suse.com/1225628
bugzilla	www.bugzilla.suse.com/1250008
lists	www.lists.suse.com/pipermail/sle-security-updates/2022-June/011361.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2022-July/011379.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2022-July/011380.html
lists	www.lists.suse.com/pipermail/sle-security-updates/2022-July/011381.html

19 Jun 2026 02:08Current

10High risk

Vulners AI Score10

CVSS 3.16.7

EPSS0.95764