Rapid7 Vulnerability & Exploit Database

SUSE: CVE-2022-27664: SUSE Linux Security Advisory

Free InsightVM Trial No Credit Card Necessary
Watch Demo See how it all works
Back to Search

SUSE: CVE-2022-27664: SUSE Linux Security Advisory

Severity
4
CVSS
(AV:L/AC:M/Au:N/C:P/I:P/A:P)
Published
09/06/2022
Created
10/26/2022
Added
10/26/2022
Modified
06/22/2023

Description

In net/http in Go before 1.18.6 and 1.19.x before 1.19.1, attackers can cause a denial of service because an HTTP/2 connection can hang during closing if shutdown were preempted by a fatal error.

Solution(s)

  • suse-upgrade-bind
  • suse-upgrade-bind-chrootenv
  • suse-upgrade-bind-devel
  • suse-upgrade-bind-devel-32bit
  • suse-upgrade-bind-doc
  • suse-upgrade-bind-utils
  • suse-upgrade-dracut-saltboot
  • suse-upgrade-go1-18
  • suse-upgrade-go1-18-doc
  • suse-upgrade-go1-18-openssl
  • suse-upgrade-go1-18-openssl-doc
  • suse-upgrade-go1-18-openssl-race
  • suse-upgrade-go1-18-race
  • suse-upgrade-go1-19
  • suse-upgrade-go1-19-doc
  • suse-upgrade-go1-19-race
  • suse-upgrade-golang-github-prometheus-alertmanager
  • suse-upgrade-golang-github-prometheus-node_exporter
  • suse-upgrade-grafana
  • suse-upgrade-kubernetes1-24-client
  • suse-upgrade-kubernetes1-24-client-common
  • suse-upgrade-libbind9-1600
  • suse-upgrade-libbind9-1600-32bit
  • suse-upgrade-libdns1605
  • suse-upgrade-libdns1605-32bit
  • suse-upgrade-libirs-devel
  • suse-upgrade-libirs1601
  • suse-upgrade-libirs1601-32bit
  • suse-upgrade-libisc1606
  • suse-upgrade-libisc1606-32bit
  • suse-upgrade-libisccc1600
  • suse-upgrade-libisccc1600-32bit
  • suse-upgrade-libisccfg1600
  • suse-upgrade-libisccfg1600-32bit
  • suse-upgrade-libns1604
  • suse-upgrade-libns1604-32bit
  • suse-upgrade-python3-bind
  • suse-upgrade-spacecmd
  • suse-upgrade-wire

References

insightVM

Advanced vulnerability management analytics and reporting.
Key Features
Free InsightVM Trial View All Features

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;