SUSE Multi-Linux Manager Faces Denial of Service Vulnerabilities

SUSE Multi-Linux Manager Faces Denial of Service Vulnerabilities

First seen 4 Jun 2026, 01:54 UTC Linuxsecurity 84% similarity 57.8

Article Content

Browse articles
ThreatCluster

SUSE has issued multiple security updates addressing denial of service vulnerabilities in its Multi-Linux Manager. The primary issue is CVE-2022-21698, which affects various components including prometheus-postgres_exporter and golang-github-QubitProducts-exporter_exporter. This vulnerability allows attackers to exploit the InstrumentHandlerCounter, leading to potential service disruptions. The updates also include fixes for other vulnerabilities such as CVE-2023-45288 and CVE-2025-22870, which address proxy bypass and header handling issues, respectively. Affected systems include SUSE Linux Enterprise Desktop and Server versions 12 and High-Performance Computing versions. The updates were released on June 3, 2026, and are rated as important. Administrators are urged to apply these patches promptly to mitigate risks.

Key Points: • SUSE released critical patches for denial of service vulnerabilities affecting Multi-Linux Manager. • CVE-2022-21698 is a significant vulnerability that can disrupt services if exploited. • Updates also address CVE-2023-45288 and CVE-2025-22870, enhancing overall system security.

ThreatCluster AI

Timeline

2022-02-15
CVE-2022-21698 published
SUSE disclosed a denial of service vulnerability affecting multiple components.
Linuxsecurity
2024-04-04
CVE-2023-45288 published
A vulnerability was published that addresses connection handling issues in certain software.
Linuxsecurity
2025-03-12
CVE-2025-22870 published
A potential proxy bypass vulnerability was disclosed affecting specific tools.
Linuxsecurity
2026-06-03
SUSE security updates released
SUSE issued important patches for multiple vulnerabilities including CVE-2022-21698, CVE-2023-45288, and CVE-2025-22870.
Linuxsecurity

Community

Browse all →