Back

SUSE Multi-Linux Manager Faces Denial of Service Vulnerabilities

Severity: Medium (Score: 57.8)

Sources: Linuxsecurity

Published: 2026-06-04 · Updated: 2026-06-04

Keywords: security, fixes, update, denial, service, suse, manager

Summary

SUSE has issued multiple security updates addressing denial of service vulnerabilities in its Multi-Linux Manager. The primary issue is CVE-2022-21698, which affects various components including prometheus-postgres_exporter and golang-github-QubitProducts-exporter_exporter. This vulnerability allows attackers to exploit the InstrumentHandlerCounter, leading to potential service disruptions. The updates also include fixes for other vulnerabilities such as CVE-2023-45288 and CVE-2025-22870, which address proxy bypass and header handling issues, respectively. Affected systems include SUSE Linux Enterprise Desktop and Server versions 12 and High-Performance Computing versions. The updates were released on June 3, 2026, and are rated as important. Administrators are urged to apply these patches promptly to mitigate risks. Key Points: • SUSE released critical patches for denial of service vulnerabilities affecting Multi-Linux Manager. • CVE-2022-21698 is a significant vulnerability that can disrupt services if exploited. • Updates also address CVE-2023-45288 and CVE-2025-22870, enhancing overall system security.

Detailed Analysis

**Impact** SUSE Linux Enterprise Desktop and Server 12 versions, including multiple service packs and high-performance computing editions, are affected by denial of service vulnerabilities. The vulnerabilities have a CVSS score of 7.5, indicating a significant risk of service disruption without data confidentiality or integrity impact. The affected sectors include enterprises relying on SUSE Linux for critical infrastructure, with potential operational downtime due to service interruptions. No specific geographic limitations are noted. **Technical Details** The primary attack vector involves exploitation of the InstrumentHandlerCounter in golang-github-QubitProducts-exporter_exporter and prometheus-postgres_exporter, leading to denial of service (CVE-2022-21698). Additional CVEs addressed include CVE-2023-45288 (proxy bypass via IPv6 zone IDs) and CVE-2025-22870 (proxy bypass vulnerabilities). The vulnerabilities affect monitoring and exporter tools used in Linux environments, impacting the availability kill chain stage. No malware or IOCs are mentioned. **Recommended Response** Apply the SUSE security updates SUSE-SU-2026:2241-1, SUSE-SU-2026:2243-1, and SUSE-SU-2026:2254-1 immediately to remediate the denial of service vulnerabilities. Update golang-github-prometheus-node_exporter to version 1.10.2 and golang-github-QubitProducts-exporter_exporter to the patched versions. Harden configurations by ensuring compatibility with Go 1.22/1.23 and monitor for unusual service disruptions or exporter failures. No specific detection signatures or IOCs are provided; monitoring system and network availability is advised.

Source articles (3)

  • SUSE Multi Linux Manager Security Update for Denial of Service 2026-2254 — Linuxsecurity · 2026-06-04
    ## This update fixes the following issues: golang-github-QubitProducts-exporter_exporter: * Security Fixes: * CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707) golan…
  • SUSE Multi-Linux Manager Client Tools Important Security Update 2026-2243 — Linuxsecurity · 2026-06-04
    ## This update fixes the following issues: golang-github-QubitProducts-exporter_exporter: * Security Fixes: * CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248707) golan…
  • SUSE Linux 12 Multi-Linux Manager Vital DoS Security Patch 2026-2241 — Linuxsecurity · 2026-06-04
    ## This update fixes the following issues: prometheus-postgres_exporter: * Security Fixes: * CVE-2022-21698: Fixed denial of service using InstrumentHandlerCounter (bsc#1248699) golang-github-QubitPro…

Timeline

  • 2022-02-15 — CVE-2022-21698 published: SUSE disclosed a denial of service vulnerability affecting multiple components.
  • 2024-04-04 — CVE-2023-45288 published: A vulnerability was published that addresses connection handling issues in certain software.
  • 2025-03-12 — CVE-2025-22870 published: A potential proxy bypass vulnerability was disclosed affecting specific tools.
  • 2026-06-03 — SUSE security updates released: SUSE issued important patches for multiple vulnerabilities including CVE-2022-21698, CVE-2023-45288, and CVE-2025-22870.

CVEs

  • CVE-2022-21698
  • CVE-2023-45288
  • CVE-2025-22870

Related entities

  • DDoS (Attack Type)
  • Denial of Service (Attack Type)
  • SuSE (Company)
  • golang.org (Domain)
  • AIX (Platform)
  • Linux (Platform)
  • SUSE Linux 12 (Platform)
  • SUSE Linux Enterprise Desktop 12 (Platform)
  • SUSE Linux Enterprise Desktop 12 SP1 (Platform)
  • SUSE Linux Enterprise Desktop 12 SP2 (Platform)
  • SUSE Linux Enterprise Desktop 12 SP3 (Platform)
  • SUSE Linux Enterprise Desktop 12 SP4 (Platform)
  • SUSE Linux Enterprise High Performance Computing 12 SP2 (Platform)
  • SUSE Linux Enterprise High Performance Computing 12 SP3 (Platform)
  • SUSE Linux Enterprise High Performance Computing 12 SP4 (Platform)
  • SUSE Linux Enterprise High Performance Computing 12 SP5 (Platform)
  • SUSE Linux Enterprise Server 12 (Platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed