Linuxsecurity
SUSE Multi-Linux Manager Client Tools Update Addresses CVE-2022-21698
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
SUSE has released an important update for its Multi-Linux Manager Client Tools, addressing CVE-2022-21698, a vulnerability that could lead to denial of service through the prometheus/client_golang library. The update includes changes to various exporters, notably the golang-github-prometheus-node_exporter, which has been upgraded to version 1.10.2. This version introduces new collectors and metrics while fixing several bugs, including a logging race condition. The vulnerability affects multiple SUSE Linux Enterprise Desktop and High Performance Computing versions. Users are advised to apply the update promptly to mitigate potential risks associated with this vulnerability. The CVE was published on February 15, 2022, and has a CVSS score of 7.5, indicating a high severity level.
Key Points: • SUSE released an update addressing CVE-2022-21698, a denial of service vulnerability. • The golang-github-prometheus-node_exporter was updated to version 1.10.2 with several bug fixes. • Affected systems include multiple versions of SUSE Linux Enterprise Desktop and High Performance Computing.