SUSE update for the Linux Kernel



Published: 2023-07-11
Risk Low
Patch available YES
Number of vulnerabilities 7
CVE-ID CVE-2023-1829
CVE-2023-3090
CVE-2023-3111
CVE-2023-3212
CVE-2023-3357
CVE-2023-3358
CVE-2023-3389
CWE-ID CWE-416
CWE-787
CWE-476
Exploitation vector Local
Public exploit N/A
Vulnerable software
Subscribe 		SUSE Linux Enterprise Micro for Rancher
Operating systems & Components / Operating system

SUSE Real Time Module
Operating systems & Components / Operating system

SUSE Linux Enterprise Micro
Operating systems & Components / Operating system

SUSE Linux Enterprise Live Patching
Operating systems & Components / Operating system

SUSE Linux Enterprise Server for SAP Applications 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Server 15
Operating systems & Components / Operating system

SUSE Linux Enterprise Real Time 15
Operating systems & Components / Operating system

SUSE Linux Enterprise High Performance Computing 15
Operating systems & Components / Operating system

openSUSE Leap Micro
Operating systems & Components / Operating system

openSUSE Leap
Operating systems & Components / Operating system

kernel-rt_debug
Operating systems & Components / Operating system package or component

kernel-source-rt
Operating systems & Components / Operating system package or component

kernel-devel-rt
Operating systems & Components / Operating system package or component

kernel-rt_debug-devel-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt_debug-devel
Operating systems & Components / Operating system package or component

kernel-rt-devel
Operating systems & Components / Operating system package or component

ocfs2-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

gfs2-kmp-rt
Operating systems & Components / Operating system package or component

kernel-syms-rt
Operating systems & Components / Operating system package or component

cluster-md-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt_debug-debuginfo
Operating systems & Components / Operating system package or component

cluster-md-kmp-rt
Operating systems & Components / Operating system package or component

dlm-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt_debug-debugsource
Operating systems & Components / Operating system package or component

kernel-rt-devel-debuginfo
Operating systems & Components / Operating system package or component

ocfs2-kmp-rt
Operating systems & Components / Operating system package or component

dlm-kmp-rt
Operating systems & Components / Operating system package or component

gfs2-kmp-rt-debuginfo
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150400_15_40-rt
Operating systems & Components / Operating system package or component

kernel-livepatch-SLE15-SP4-RT_Update_9-debugsource
Operating systems & Components / Operating system package or component

kernel-livepatch-5_14_21-150400_15_40-rt-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt-debuginfo
Operating systems & Components / Operating system package or component

kernel-rt-debugsource
Operating systems & Components / Operating system package or component

kernel-rt
Operating systems & Components / Operating system package or component

Vendor SUSE

Security Bulletin

This security bulletin contains information about 7 vulnerabilities.

1) Use-after-free

EUVDB-ID: #VU75448

Risk: Low

CVSSv3.1: 7.7 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-1829

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the tcindex_delete() function. A local user can trigger a use-after-free error and execute arbitrary code with root privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Real Time Module: 15-SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

openSUSE Leap Micro: 5.3

openSUSE Leap: 15.4

kernel-rt_debug: before 5.14.21-150400.15.40.1

kernel-source-rt: before 5.14.21-150400.15.40.1

kernel-devel-rt: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel: before 5.14.21-150400.15.40.1

kernel-rt-devel: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

gfs2-kmp-rt: before 5.14.21-150400.15.40.1

kernel-syms-rt: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debuginfo: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debugsource: before 5.14.21-150400.15.40.1

kernel-rt-devel-debuginfo: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt: before 5.14.21-150400.15.40.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-livepatch-5_14_21-150400_15_40-rt: before 1-150400.1.3.1

kernel-livepatch-SLE15-SP4-RT_Update_9-debugsource: before 1-150400.1.3.1

kernel-livepatch-5_14_21-150400_15_40-rt-debuginfo: before 1-150400.1.3.1

kernel-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt-debugsource: before 5.14.21-150400.15.40.1

kernel-rt: before 5.14.21-150400.15.40.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20232803-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Out-of-bounds write

EUVDB-ID: #VU78010

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-3090

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the ipvlan network driver in Linux kernel. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Real Time Module: 15-SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

openSUSE Leap Micro: 5.3

openSUSE Leap: 15.4

kernel-rt_debug: before 5.14.21-150400.15.40.1

kernel-source-rt: before 5.14.21-150400.15.40.1

kernel-devel-rt: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel: before 5.14.21-150400.15.40.1

kernel-rt-devel: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

gfs2-kmp-rt: before 5.14.21-150400.15.40.1

kernel-syms-rt: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debuginfo: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debugsource: before 5.14.21-150400.15.40.1

kernel-rt-devel-debuginfo: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt: before 5.14.21-150400.15.40.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-livepatch-5_14_21-150400_15_40-rt: before 1-150400.1.3.1

kernel-livepatch-SLE15-SP4-RT_Update_9-debugsource: before 1-150400.1.3.1

kernel-livepatch-5_14_21-150400_15_40-rt-debuginfo: before 1-150400.1.3.1

kernel-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt-debugsource: before 5.14.21-150400.15.40.1

kernel-rt: before 5.14.21-150400.15.40.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20232803-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

3) Use-after-free

EUVDB-ID: #VU77911

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-3111

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the prepare_to_relocate() function in fs/btrfs/relocation.c in btrfs in the Linux Kernel. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Real Time Module: 15-SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

openSUSE Leap Micro: 5.3

openSUSE Leap: 15.4

kernel-rt_debug: before 5.14.21-150400.15.40.1

kernel-source-rt: before 5.14.21-150400.15.40.1

kernel-devel-rt: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel: before 5.14.21-150400.15.40.1

kernel-rt-devel: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

gfs2-kmp-rt: before 5.14.21-150400.15.40.1

kernel-syms-rt: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debuginfo: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debugsource: before 5.14.21-150400.15.40.1

kernel-rt-devel-debuginfo: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt: before 5.14.21-150400.15.40.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-livepatch-5_14_21-150400_15_40-rt: before 1-150400.1.3.1

kernel-livepatch-SLE15-SP4-RT_Update_9-debugsource: before 1-150400.1.3.1

kernel-livepatch-5_14_21-150400_15_40-rt-debuginfo: before 1-150400.1.3.1

kernel-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt-debugsource: before 5.14.21-150400.15.40.1

kernel-rt: before 5.14.21-150400.15.40.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20232803-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) NULL pointer dereference

EUVDB-ID: #VU78009

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-3212

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the gfs2 file system in the Linux kernel. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Real Time Module: 15-SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

openSUSE Leap Micro: 5.3

openSUSE Leap: 15.4

kernel-rt_debug: before 5.14.21-150400.15.40.1

kernel-source-rt: before 5.14.21-150400.15.40.1

kernel-devel-rt: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel: before 5.14.21-150400.15.40.1

kernel-rt-devel: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

gfs2-kmp-rt: before 5.14.21-150400.15.40.1

kernel-syms-rt: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debuginfo: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debugsource: before 5.14.21-150400.15.40.1

kernel-rt-devel-debuginfo: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt: before 5.14.21-150400.15.40.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-livepatch-5_14_21-150400_15_40-rt: before 1-150400.1.3.1

kernel-livepatch-SLE15-SP4-RT_Update_9-debugsource: before 1-150400.1.3.1

kernel-livepatch-5_14_21-150400_15_40-rt-debuginfo: before 1-150400.1.3.1

kernel-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt-debugsource: before 5.14.21-150400.15.40.1

kernel-rt: before 5.14.21-150400.15.40.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20232803-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) NULL pointer dereference

EUVDB-ID: #VU78065

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-3357

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the Linux kernel AMD Sensor Fusion Hub driver. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Real Time Module: 15-SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

openSUSE Leap Micro: 5.3

openSUSE Leap: 15.4

kernel-rt_debug: before 5.14.21-150400.15.40.1

kernel-source-rt: before 5.14.21-150400.15.40.1

kernel-devel-rt: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel: before 5.14.21-150400.15.40.1

kernel-rt-devel: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

gfs2-kmp-rt: before 5.14.21-150400.15.40.1

kernel-syms-rt: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debuginfo: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debugsource: before 5.14.21-150400.15.40.1

kernel-rt-devel-debuginfo: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt: before 5.14.21-150400.15.40.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-livepatch-5_14_21-150400_15_40-rt: before 1-150400.1.3.1

kernel-livepatch-SLE15-SP4-RT_Update_9-debugsource: before 1-150400.1.3.1

kernel-livepatch-5_14_21-150400_15_40-rt-debuginfo: before 1-150400.1.3.1

kernel-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt-debugsource: before 5.14.21-150400.15.40.1

kernel-rt: before 5.14.21-150400.15.40.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20232803-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) NULL pointer dereference

EUVDB-ID: #VU78063

Risk: Low

CVSSv3.1: 4.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-3358

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the Linux kernel's Integrated Sensor Hub (ISH) driver. A local user and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Real Time Module: 15-SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

openSUSE Leap Micro: 5.3

openSUSE Leap: 15.4

kernel-rt_debug: before 5.14.21-150400.15.40.1

kernel-source-rt: before 5.14.21-150400.15.40.1

kernel-devel-rt: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel: before 5.14.21-150400.15.40.1

kernel-rt-devel: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

gfs2-kmp-rt: before 5.14.21-150400.15.40.1

kernel-syms-rt: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debuginfo: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debugsource: before 5.14.21-150400.15.40.1

kernel-rt-devel-debuginfo: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt: before 5.14.21-150400.15.40.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-livepatch-5_14_21-150400_15_40-rt: before 1-150400.1.3.1

kernel-livepatch-SLE15-SP4-RT_Update_9-debugsource: before 1-150400.1.3.1

kernel-livepatch-5_14_21-150400_15_40-rt-debuginfo: before 1-150400.1.3.1

kernel-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt-debugsource: before 5.14.21-150400.15.40.1

kernel-rt: before 5.14.21-150400.15.40.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20232803-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) Use-after-free

EUVDB-ID: #VU78066

Risk: Low

CVSSv3.1: 6.8 [CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2023-3389

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in the Linux Kernel io_uring subsystem. A local user can exploit a race condition and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

SUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4

SUSE Real Time Module: 15-SP4

SUSE Linux Enterprise Micro: 5.3 - 5.4

SUSE Linux Enterprise Live Patching: 15-SP4

SUSE Linux Enterprise Server for SAP Applications 15: SP4

SUSE Linux Enterprise Server 15: SP4

SUSE Linux Enterprise Real Time 15: SP4

SUSE Linux Enterprise High Performance Computing 15: SP4

openSUSE Leap Micro: 5.3

openSUSE Leap: 15.4

kernel-rt_debug: before 5.14.21-150400.15.40.1

kernel-source-rt: before 5.14.21-150400.15.40.1

kernel-devel-rt: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-devel: before 5.14.21-150400.15.40.1

kernel-rt-devel: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

gfs2-kmp-rt: before 5.14.21-150400.15.40.1

kernel-syms-rt: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debuginfo: before 5.14.21-150400.15.40.1

cluster-md-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt_debug-debugsource: before 5.14.21-150400.15.40.1

kernel-rt-devel-debuginfo: before 5.14.21-150400.15.40.1

ocfs2-kmp-rt: before 5.14.21-150400.15.40.1

dlm-kmp-rt: before 5.14.21-150400.15.40.1

gfs2-kmp-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-livepatch-5_14_21-150400_15_40-rt: before 1-150400.1.3.1

kernel-livepatch-SLE15-SP4-RT_Update_9-debugsource: before 1-150400.1.3.1

kernel-livepatch-5_14_21-150400_15_40-rt-debuginfo: before 1-150400.1.3.1

kernel-rt-debuginfo: before 5.14.21-150400.15.40.1

kernel-rt-debugsource: before 5.14.21-150400.15.40.1

kernel-rt: before 5.14.21-150400.15.40.1

External links

http://www.suse.com/support/update/announcement/2023/suse-su-20232803-1/


Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.



###SIDEBAR###