Migrations requests can cause DoS on rmt
Key Information
- Vendor
- Suse
- Status
- Suse Linux Enterprise High Performance Computing 15-espos
- Suse Linux Enterprise High Performance Computing 15-ltss
- Suse Linux Enterprise Module For Public Cloud 15-sp1
- Suse Linux Enterprise Module For Server Applications 15
- Vendor
- CVE Published:
- 3 April 2020
Summary
A Uncontrolled Resource Consumption vulnerability in rmt of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Public Cloud 15-SP1, SUSE Linux Enterprise Module for Server Applications 15, SUSE Linux Enterprise Module for Server Applications 15-SP1, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1 allows remote attackers to cause DoS against rmt by requesting migrations. This issue affects: SUSE Linux Enterprise High Performance Computing 15-ESPOS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise High Performance Computing 15-LTSS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Module for Public Cloud 15-SP1 rmt-server versions prior to 2.5.2-3.9.1. SUSE Linux Enterprise Module for Server Applications 15 rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Module for Server Applications 15-SP1 rmt-server versions prior to 2.5.2-3.9.1. SUSE Linux Enterprise Server 15-LTSS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Server for SAP 15 rmt-server versions prior to 2.5.2-3.26.1. openSUSE Leap 15.1 rmt-server versions prior to 2.5.2-lp151.2.9.1.
Affected Version(s)
SUSE Linux Enterprise High Performance Computing 15-ESPOS < 2.5.2-3.26.1
SUSE Linux Enterprise High Performance Computing 15-LTSS < 2.5.2-3.26.1
SUSE Linux Enterprise Module for Public Cloud 15-SP1 < 2.5.2-3.9.1
CVSS V3.1
Timeline
Risk change from: 7.5 to: 6.5 - (MEDIUM)
Vulnerability published.
Vulnerability Reserved.