Linuxsecurity
SUSE Multi-Linux Manager Faces Denial of Service Vulnerabilities
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
SUSE has issued multiple security updates addressing denial of service vulnerabilities in its Multi-Linux Manager. The primary issue is CVE-2022-21698, which affects various components including prometheus-postgres_exporter and golang-github-QubitProducts-exporter_exporter. This vulnerability allows attackers to exploit the InstrumentHandlerCounter, leading to potential service disruptions. The updates also include fixes for other vulnerabilities such as CVE-2023-45288 and CVE-2025-22870, which address proxy bypass and header handling issues, respectively. Affected systems include SUSE Linux Enterprise Desktop and Server versions 12 and High-Performance Computing versions. The updates were released on June 3, 2026, and are rated as important. Administrators are urged to apply these patches promptly to mitigate risks.
Key Points: • SUSE released critical patches for denial of service vulnerabilities affecting Multi-Linux Manager. • CVE-2022-21698 is a significant vulnerability that can disrupt services if exploited. • Updates also address CVE-2023-45288 and CVE-2025-22870, enhancing overall system security.