Configuration in oracleasm-kmp-default - #VU73903

 

Configuration in oracleasm-kmp-default - #VU73903

Published: March 21, 2023


Vulnerability identifier: #VU73903
CSH Severity: Low
CVSS v4.0: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: N/A
CWE-ID: CWE-16
Exploitation vector: Local access
Exploit availability: No public exploit available
Vendor: SUSE
Affected software:
oracleasm-kmp-default

Detailed vulnerability description

The issue may allow a local user to bypass implemented security restrictions.

The issue exists due to the possibility to bypass implemented security restrictions, related to secure boot. it was addressed by rebuilding the package with the new secure boot key.


Remediation

Install updates from vendor's website.

Sources