SUSE update for the Linux Kernel

1) Information disclosure

EUVDB-ID: #VU9884

Risk: Low

CVSSv4.0: 6.8 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:A/U:Clear]

CVE-ID: CVE-2017-5753

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

Exploit availability: Yes

Description

The vulnerability allows a local attacker to obtain potentially sensitive information.

The vulnerability exists in Intel CPU hardware due to improper implementation of the speculative execution of instructions. A local attacker can perform a bounds check bypass, execute arbitrary code, conduct a side-channel attack and read sensitive memory information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

2) Double Free

EUVDB-ID: #VU74053

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2022-4744

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the tun_free_netdev() function in the Linux kernel’s TUN/TAP device driver. A local user can trigger a double free error and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) NULL pointer dereference

EUVDB-ID: #VU71352

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-0394

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the rawv6_push_pending_frames() function in net/ipv6/raw.c. A local user can run a specially crafted program on the system and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Use-after-free

EUVDB-ID: #VU74122

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1281

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in Linux kernel traffic control index filter (tcindex) when the tcf_exts_exec() function is called with the destroyed tcf_ext. A local user attacker can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Improper Initialization

EUVDB-ID: #VU74630

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1513

CWE-ID: CWE-665 - Improper Initialization

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to improper initialization when calling the KVM_GET_DEBUGREGS ioctl on 32-bit systems. A local user can run a specially crafted application to gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Race condition

EUVDB-ID: #VU74629

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1582

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a race condition within fs/proc/task_mmu.c. A local user can exploit the race and crash the kernel.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Information exposure through microarchitectural state after transient execution

EUVDB-ID: #VU74771

Risk: Low

CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1637

CWE-ID: CWE-1342 - Information Exposure through Microarchitectural State after Transient Execution

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due speculative execution behavior in the Linux kernel X86 CPU Power management options functionality. A local user can gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Use-after-free

EUVDB-ID: #VU74770

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1652

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the nfsd4_ssc_setup_dul() function in fs/nfsd/nfs4proc.c. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) NULL pointer dereference

EUVDB-ID: #VU74772

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28327

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the unix_diag_get_exact() function in net/unix/diag.c. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Double Free

EUVDB-ID: #VU74147

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28464

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the hci_conn_cleanup() function in net/bluetooth/hci_conn.c in Linux kernel. A local user can trigger a double free error and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Race condition

EUVDB-ID: #VU74628

Risk: Low

CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28466

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition caused by a missing lock_sock call within the do_tls_getsockopt() function in net/tls/tls_main.c. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

SUSE Manager Retail Branch Server: 4.3

SUSE Manager Server: 4.3

SUSE Manager Proxy: 4.3

openSUSE Leap: 15.4

kernel-source-azure: before 5.14.21-150400.14.43.1

kernel-devel-azure: before 5.14.21-150400.14.43.1

kernel-azure: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional: before 5.14.21-150400.14.43.1

dlm-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

gfs2-kmp-azure: before 5.14.21-150400.14.43.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-syms-azure: before 5.14.21-150400.14.43.1

kernel-azure-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-extra: before 5.14.21-150400.14.43.1

kernel-azure-extra-debuginfo: before 5.14.21-150400.14.43.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-devel-debuginfo: before 5.14.21-150400.14.43.1

reiserfs-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150400.14.43.1

kernel-azure-livepatch-devel: before 5.14.21-150400.14.43.1

kernel-azure-devel: before 5.14.21-150400.14.43.1

kernel-azure-debugsource: before 5.14.21-150400.14.43.1

dlm-kmp-azure: before 5.14.21-150400.14.43.1

kernel-azure-optional-debuginfo: before 5.14.21-150400.14.43.1

kselftests-kmp-azure: before 5.14.21-150400.14.43.1

ocfs2-kmp-azure: before 5.14.21-150400.14.43.1

CPE2.3

• cpe:2.3:o:suse:public_cloud_module:15-SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
• cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
• cpe:2.3:a:suse:kernel-source-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-devel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:gfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-syms-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:cluster-md-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:reiserfs-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-livepatch-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-devel:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-debugsource:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:dlm-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kernel-azure-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:kselftests-kmp-azure:*:*:*:*:*:suse_linux:*:*
• cpe:2.3:a:suse:ocfs2-kmp-azure:*:*:*:*:*:suse_linux:*:*

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20231802-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.