Migrations requests can cause DoS on rmt
Description
A Uncontrolled Resource Consumption vulnerability in rmt of SUSE Linux Enterprise High Performance Computing 15-ESPOS, SUSE Linux Enterprise High Performance Computing 15-LTSS, SUSE Linux Enterprise Module for Public Cloud 15-SP1, SUSE Linux Enterprise Module for Server Applications 15, SUSE Linux Enterprise Module for Server Applications 15-SP1, SUSE Linux Enterprise Server 15-LTSS, SUSE Linux Enterprise Server for SAP 15; openSUSE Leap 15.1 allows remote attackers to cause DoS against rmt by requesting migrations. This issue affects: SUSE Linux Enterprise High Performance Computing 15-ESPOS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise High Performance Computing 15-LTSS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Module for Public Cloud 15-SP1 rmt-server versions prior to 2.5.2-3.9.1. SUSE Linux Enterprise Module for Server Applications 15 rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Module for Server Applications 15-SP1 rmt-server versions prior to 2.5.2-3.9.1. SUSE Linux Enterprise Server 15-LTSS rmt-server versions prior to 2.5.2-3.26.1. SUSE Linux Enterprise Server for SAP 15 rmt-server versions prior to 2.5.2-3.26.1. openSUSE Leap 15.1 rmt-server versions prior to 2.5.2-lp151.2.9.1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
18- Range: prior to 2.5.2-3.26.1 on most SUSE products; prior to 2.5.2-3.9.1 on SP1; prior to 2.5.2-lp151.2.9.1 on openSUSE
- osv-coords9 versionspkg:rpm/opensuse/rmt-server&distro=openSUSE%20Leap%2015.1pkg:rpm/opensuse/rmt-server&distro=openSUSE%20Tumbleweedpkg:rpm/suse/rmt-server&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-ESPOSpkg:rpm/suse/rmt-server&distro=SUSE%20Linux%20Enterprise%20High%20Performance%20Computing%2015-LTSSpkg:rpm/suse/rmt-server&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Public%20Cloud%2015%20SP1pkg:rpm/suse/rmt-server&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015pkg:rpm/suse/rmt-server&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP1pkg:rpm/suse/rmt-server&distro=SUSE%20Linux%20Enterprise%20Server%2015-LTSSpkg:rpm/suse/rmt-server&distro=SUSE%20Linux%20Enterprise%20Server%20for%20SAP%20Applications%2015
< 2.5.2-lp151.2.9.1+ 8 more
- (no CPE)range: < 2.5.2-lp151.2.9.1
- (no CPE)range: < 2.6.13-1.1
- (no CPE)range: < 2.5.2-3.26.1
- (no CPE)range: < 2.5.2-3.26.1
- (no CPE)range: < 2.5.2-3.9.1
- (no CPE)range: < 2.5.2-3.26.1
- (no CPE)range: < 2.5.2-3.9.1
- (no CPE)range: < 2.5.2-3.26.1
- (no CPE)range: < 2.5.2-3.26.1
- openSUSE/openSUSE Leap 15.1v5Range: rmt-server
rmt-server+ 1 more
- (no CPE)range: rmt-server
- (no CPE)range: rmt-server
- Range: rmt-server
- SUSE/SUSE Linux Enterprise Module for Server Applications 15v5Range: rmt-server
- SUSE/SUSE Linux Enterprise Module for Server Applications 15-SP1v5Range: rmt-server
- Range: rmt-server
- Range: rmt-server
Patches
Vulnerability mechanics
References
1- bugzilla.suse.com/show_bug.cgimitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.