Title

The SUSE operating system must be a vendor-supported release. (Cat I impact)

Discussion

A SUSE operating system release is considered "supported" if the vendor continues to provide security patches for the product. With an unsupported release, it will not be possible to resolve security issues discovered in the system software. Release Released General Support Long Term Support 12.1 15 Dec 2015 31 May 2017 31 May 2020 12.2 08 Nov 2016 31 Mar 2018 31 Mar 2021 12.3 07 Sep 2017 30 Jun 2019 30 Jun 2022 12.4 12 Dec 2018 30 Jun 2020 30 Jun 2023 12.5 09 Dec 2019 31 Oct 2024 31 Oct 2027

Check Content

Verify the SUSE operating system is a vendor-supported release. Use the following command to verify the SUSE operating system is a vendor-supported release: # cat /etc/os-release NAME="SLES" VERSION="12" Current End of Life for SLES 12 General Support is 31 Oct 2024 and Long-term Support is until 31 Oct 2027. If the release is not supported by the vendor, this is a finding.

Fix Text

Upgrade the SUSE operating system to a version supported by the vendor. If the system is not registered with the SUSE Customer Center, register the system against the correct subscription. If the system requires Long-Term Service Pack Support (LTSS), obtain the correct LTSS subscription for the system.

Additional Identifiers

Rule ID: SV-217101r1155786_rule

Vulnerability ID: V-217101

Group Title: SRG-OS-000480-GPOS-00227

Expert Comments

CCIs tied to check.

Controls tied to check. These are derived from the CCIs shown above.