SUSE update for the Linux Kernel



Published: 2023-04-14
Risk Medium
Patch available YES
Number of vulnerabilities 15
CVE-ID CVE-2017-5753
CVE-2021-3923
CVE-2021-4203
CVE-2022-20567
CVE-2023-0590
CVE-2023-1076
CVE-2023-1095
CVE-2023-1281
CVE-2023-1390
CVE-2023-1513
CVE-2023-23454
CVE-2023-23455
CVE-2023-28328
CVE-2023-28464
CVE-2023-28772
CWE-ID CWE-200
CWE-401
CWE-416
CWE-362
CWE-843
CWE-476
CWE-835
CWE-665
CWE-415
CWE-119
Exploitation vector Network
Public exploit Vulnerability #1 is being exploited in the wild.
Vulnerable software
Subscribe 		SUSE Linux Enterprise Live Patching
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux
Operating systems & Components / Operating system

SUSE Linux Enterprise High Availability Extension 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15 SP1 LTSS
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15
Operating systems & Components / Operating system

SUSE Manager Proxy
Operating systems & Components / Operating system

SUSE Manager Retail Branch Server
Operating systems & Components / Operating system

SUSE Manager Server
Operating systems & Components / Operating system

SUSE CaaS Platform
Operating systems & Components / Operating system

openSUSE Leap
Operating systems & Components / Operating system

kernel-zfcpdump-debuginfo
Operating systems & Components / Operating system package or component

kernel-zfcpdump-debugsource
Operating systems & Components / Operating system package or component

reiserfs-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

reiserfs-kmp-default
Operating systems & Components / Operating system package or component

kernel-docs
Operating systems & Components / Operating system package or component

kernel-devel
Operating systems & Components / Operating system package or component

kernel-macros
Operating systems & Components / Operating system package or component

kernel-source
Operating systems & Components / Operating system package or component

kernel-syms
Operating systems & Components / Operating system package or component

kernel-default-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-base
Operating systems & Components / Operating system package or component

kernel-obs-build-debugsource
Operating systems & Components / Operating system package or component

kernel-obs-build
Operating systems & Components / Operating system package or component

kernel-default-devel
Operating systems & Components / Operating system package or component

dlm-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

ocfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-default
Operating systems & Components / Operating system package or component

ocfs2-kmp-default
Operating systems & Components / Operating system package or component

dlm-kmp-default
Operating systems & Components / Operating system package or component

cluster-md-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

cluster-md-kmp-default
Operating systems & Components / Operating system package or component

gfs2-kmp-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-default-livepatch
Operating systems & Components / Operating system package or component

kernel-livepatch-4_12_14-150100_197_142-default
Operating systems & Components / Operating system package or component

kernel-default-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-debugsource
Operating systems & Components / Operating system package or component

kernel-zfcpdump-man
Operating systems & Components / Operating system package or component

kernel-default-man
Operating systems & Components / Operating system package or component

kernel-vanilla
Operating systems & Components / Operating system package or component

kernel-kvmsmall-base
Operating systems & Components / Operating system package or component

kernel-kvmsmall-base-debuginfo
Operating systems & Components / Operating system package or component

kernel-vanilla-base
Operating systems & Components / Operating system package or component

kernel-vanilla-debugsource
Operating systems & Components / Operating system package or component

kernel-vanilla-base-debuginfo
Operating systems & Components / Operating system package or component

kernel-default-base-debuginfo
Operating systems & Components / Operating system package or component

kernel-vanilla-debuginfo
Operating systems & Components / Operating system package or component

kernel-vanilla-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-vanilla-devel
Operating systems & Components / Operating system package or component

kernel-vanilla-livepatch-devel
Operating systems & Components / Operating system package or component

kernel-debug-base
Operating systems & Components / Operating system package or component

kernel-debug-base-debuginfo
Operating systems & Components / Operating system package or component

kernel-default
Operating systems & Components / Operating system package or component

kernel-debug
Operating systems & Components / Operating system package or component

kernel-kvmsmall
Operating systems & Components / Operating system package or component

kernel-zfcpdump
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 15 vulnerabilities.

1) Information disclosure

EUVDB-ID: #VU9884

Risk: Low

CVSSv3.1: 6.2 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N/E:H/RL:O/RC:C]

CVE-ID: CVE-2017-5753

CWE-ID: CWE-200 - Information exposure

Exploit availability: Yes

Description

The vulnerability allows a local attacker to obtain potentially sensitive information.

The vulnerability exists in Intel CPU hardware due to improper implementation of the speculative execution of instructions. A local attacker can perform a bounds check bypass, execute arbitrary code, conduct a side-channel attack and read sensitive memory information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

Yes. This vulnerability is being exploited in the wild.

2) Memory leak

EUVDB-ID: #VU74626

Risk: Low

CVSSv3.1: 2.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-3923

CWE-ID: CWE-401 - Missing release of memory after effective lifetime

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due memory leak within RDMA over infiniband implementation in Linux kernel. A local user can force the application to leak memory by sensing commands to the /dev/infiniband/rdma_cm device node and gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Use-after-free

EUVDB-ID: #VU63838

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-4203

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in sock_getsockopt() function in net/core/sock.c due to SO_PEERCRED and SO_PEERGROUPS race with listen() function (and connect() function) in the Linux kernel. A local user can exploit the use-after-free error and crash the system or escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Race condition

EUVDB-ID: #VU74690

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2022-20567

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the pppol2tp_create() function in l2tp_ppp.c. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Use-after-free

EUVDB-ID: #VU72098

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-0590

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the qdisc_graft() function in net/sched/sch_api.c. A local user can trigger a use-after-free error and crash the kernel.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Type Confusion

EUVDB-ID: #VU72742

Risk: Low

CVSSv3.1: 5.8 [CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-1076

CWE-ID: CWE-843 - Type confusion

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a type confusion error during initialization of TUN/TAP sockets. A local user can trigger a type confusion error and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) NULL pointer dereference

EUVDB-ID: #VU73783

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-1095

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the nf_tables_updtable() function within the netfilter subsystem. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) Use-after-free

EUVDB-ID: #VU74122

Risk: Low

CVSSv3.1: 7.7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-1281

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in Linux kernel traffic control index filter (tcindex) when the tcf_exts_exec() function is called with the destroyed tcf_ext. A local user attacker can trigger a use-after-free error and execute arbitrary code with elevated privileges.


Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) Infinite loop

EUVDB-ID: #VU74631

Risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-1390

CWE-ID: CWE-835 - Loop with Unreachable Exit Condition ('Infinite Loop')

Exploit availability: No

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to infinite loop in tipc_link_xmit() within the Linux kernel TIPC kernel module when parsing UDp packets. A remote attacker can send two small UDP packets to a system with a UDP bearer and consume all available CPU resources.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) Improper Initialization

EUVDB-ID: #VU74630

Risk: Low

CVSSv3.1: 2.9 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-1513

CWE-ID: CWE-665 - Improper Initialization

Exploit availability: No

Description

The vulnerability allows a local user to gain access to sensitive information.

The vulnerability exists due to improper initialization when calling the KVM_GET_DEBUGREGS ioctl on 32-bit systems. A local user can run a specially crafted application to gain access to sensitive information.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Type Confusion

EUVDB-ID: #VU71478

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-23454

CWE-ID: CWE-843 - Type confusion

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a type confusion error within the cbq_classify() function in net/sched/sch_cbq.c in the Linux kernel. A local user can trigger a type confusion error and crash the kernel.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Type Confusion

EUVDB-ID: #VU71477

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-23455

CWE-ID: CWE-843 - Type confusion

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a type confusion error within the atm_tc_enqueue() function in net/sched/sch_atm.c in the Linux kernel. A local user can trigger a type confusion error and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) NULL pointer dereference

EUVDB-ID: #VU74126

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-28328

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the az6027 driver in drivers/media/usb/dev-usb/az6027.c in the Linux Kernel. A local user can pass specially crafted data to the application and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Double Free

EUVDB-ID: #VU74147

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-28464

CWE-ID: CWE-415 - Double Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the hci_conn_cleanup() function in net/bluetooth/hci_conn.c in Linux kernel. A local user can trigger a double free error and execute arbitrary code with elevated privileges.


Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) Buffer overflow

EUVDB-ID: #VU74627

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-28772

CWE-ID: CWE-119 - Memory corruption

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the seq_buf_putmem_hex() function in lib/seq_buf.c. A local user can trigger memory corruption and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Live Patching: 15-SP1

SUSE Linux Enterprise Server 15 SP1 Business Critical Linux: 15-SP1

SUSE Linux Enterprise High Availability Extension 15: SP1

SUSE Linux Enterprise Server for SAP Applications 15: SP1

SUSE Linux Enterprise Server 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise Server 15: SP1

SUSE Linux Enterprise High Performance Computing 15 SP1 LTSS: 15-SP1

SUSE Linux Enterprise High Performance Computing 15: SP1

SUSE Manager Proxy: 4.0

SUSE Manager Retail Branch Server: 4.0

SUSE Manager Server: 4.0

SUSE CaaS Platform: 4.0

openSUSE Leap: 15.4

kernel-zfcpdump-debuginfo: before 4.12.14-150100.197.142.1

kernel-zfcpdump-debugsource: before 4.12.14-150100.197.142.1

reiserfs-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

reiserfs-kmp-default: before 4.12.14-150100.197.142.1

kernel-docs: before 4.12.14-150100.197.142.1

kernel-devel: before 4.12.14-150100.197.142.1

kernel-macros: before 4.12.14-150100.197.142.1

kernel-source: before 4.12.14-150100.197.142.1

kernel-syms: before 4.12.14-150100.197.142.1

kernel-default-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base: before 4.12.14-150100.197.142.1

kernel-obs-build-debugsource: before 4.12.14-150100.197.142.1

kernel-obs-build: before 4.12.14-150100.197.142.1

kernel-default-devel: before 4.12.14-150100.197.142.1

dlm-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

ocfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

gfs2-kmp-default: before 4.12.14-150100.197.142.1

ocfs2-kmp-default: before 4.12.14-150100.197.142.1

dlm-kmp-default: before 4.12.14-150100.197.142.1

cluster-md-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

cluster-md-kmp-default: before 4.12.14-150100.197.142.1

gfs2-kmp-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-default-livepatch: before 4.12.14-150100.197.142.1

kernel-livepatch-4_12_14-150100_197_142-default: before 1-150100.3.5.1

kernel-default-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-debugsource: before 4.12.14-150100.197.142.1

kernel-zfcpdump-man: before 4.12.14-150100.197.142.1

kernel-default-man: before 4.12.14-150100.197.142.1

kernel-vanilla: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base: before 4.12.14-150100.197.142.1

kernel-kvmsmall-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-base: before 4.12.14-150100.197.142.1

kernel-vanilla-debugsource: before 4.12.14-150100.197.142.1

kernel-vanilla-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel-debuginfo: before 4.12.14-150100.197.142.1

kernel-vanilla-devel: before 4.12.14-150100.197.142.1

kernel-vanilla-livepatch-devel: before 4.12.14-150100.197.142.1

kernel-debug-base: before 4.12.14-150100.197.142.1

kernel-debug-base-debuginfo: before 4.12.14-150100.197.142.1

kernel-default: before 4.12.14-150100.197.142.1

kernel-debug: before 4.12.14-150100.197.142.1

kernel-kvmsmall: before 4.12.14-150100.197.142.1

kernel-zfcpdump: before 4.12.14-150100.197.142.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20231848-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###