I want to update the SUSE SLES12 server according to Nessus software report.
According to the report and for kernel, the following CVE numbers are provided for update:
CVE-2018-1000199==CVE-2019-19462==CVE-2019-20806==CVE-2019-20812==CVE-2019-9455==CVE-2020-0543==CVE-2020-10690==CVE-2020-10711==CVE-2020-10720==CVE-2020-10732==CVE-2020-10751==CVE-2020-10757==CVE-2020-12114==CVE-2020-12464==CVE-2020-12652==CVE-2020-12653==CVE-2020-12654==CVE-2020-12655==CVE-2020-12656==CVE-2020-12657==CVE-2020-12768==CVE-2020-12769==CVE-2020-13143
But in none of the CVEs on the site https://scc.suse.com/patches there are any files that need to be updated and it is not possible to download the file.
The files that CVE refers to and are not available on the site are as follows:
-kernel-default-devel-debuginfo-4.12.14-95.54.1
-kernel-default-base-debuginfo-4.12.14-95.54.1
-kernel-default-debuginfo-4.12.14-95.54.1
-kernel-default-debugsource-4.12.14-95.54.1
I also registered a SUSE SLES12 SP4 server with x86 / 64 architecture on the site.
Please advise me why the files are not uploaded.
thnx
??? ???
Hi and welcome to the Forum
Is the system using the online repositories?
zypper lr -Ed
That kernel is for Point of Service system, but SLES 12 SP4 is running the 4.4.121 kernels which is higher and will incorporate those CVE’s (Check the changelog for the CVE references).
Hi
I use local Repository.
Hi
Do you have access to the 4.4.121 kernel? If so you will be fine (check the changelog).