openSUSE: 2023:4035-1 Important Kernel Update Addressing Security Issues

opensuse

October 10, 2023

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security and bugfixes

Description

The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various

security and bugfixes.

The following security bugs were fixed:

* CVE-2023-39194: Fixed an out of bounds read in the XFRM subsystem

(bsc#1215861).

* CVE-2023-39193: Fixed an out of bounds read in the xtables subsystem

(bsc#1215860).

* CVE-2023-39192: Fixed an out of bounds read in the netfilter (bsc#1215858).

* CVE-2023-42754: Fixed a NULL pointer dereference in the IPv4 stack that

could lead to denial of service (bsc#1215467).

* CVE-2023-4389: Fixed a reference counting issue in the Btrfs filesystem that

could be exploited in order to leak internal kernel information or crash the

system (bsc#1214351).

* CVE-2023-5345: fixed an use-after-free vulnerability in the fs/smb/client

component which could be exploited to achieve local privilege escalation.

(bsc#1215899)

* CVE-2023-42753: Fixed an array indexing vulnerability in the netfilter

subsystem. This issue may have...

Read the Full Advisory

Topics Covered

security advisory kernel update security fix important system stability kernel issues openSUSE

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.5

zypper in -t patch SUSE-2023-4035=1 openSUSE-SLE-15.5-2023-4035=1

* SUSE Linux Enterprise Micro 5.5

zypper in -t patch SUSE-SLE-Micro-5.5-2023-4035=1

* SUSE Linux Enterprise Live Patching 15-SP5

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2023-4035=1

* SUSE Real Time Module 15-SP5

zypper in -t patch SUSE-SLE-Module-RT-15-SP5-2023-4035=1

Package List

* openSUSE Leap 15.5 (noarch)

* kernel-source-rt-5.14.21-150500.13.21.1

* kernel-devel-rt-5.14.21-150500.13.21.1

* openSUSE Leap 15.5 (x86_64)

* ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.21.1

* reiserfs-kmp-rt-5.14.21-150500.13.21.1

* reiserfs-kmp-rt-debuginfo-5.14.21-150500.13.21.1

* kernel-rt_debug-vdso-5.14.21-150500.13.21.1

* kernel-rt_debug-devel-5.14.21-150500.13.21.1

* ocfs2-kmp-rt-5.14.21-150500.13.21.1

* kernel-rt-extra-debuginfo-5.14.21-150500.13.21.1

* kernel-livepatch-SLE15-SP5-RT_Update_6-debugsource-1-150500.11.3.1

* gfs2-kmp-rt-5.14.21-150500.13.21.1

* kselftests-kmp-rt-5.14.21-150500.13.21.1

* kernel-rt-devel-5.14.21-150500.13.21.1

* kernel-rt_debug-debugsource-5.14.21-150500.13.21.1

* kernel-syms-rt-5.14.21-150500.13.21.1

* kernel-rt_debug-livepatch-devel-5.14.21-150500.13.21.1

* kernel-rt-optional-5.14.21-150500.13.21.1

* kernel-rt_debug-devel-debuginfo-5.14.21-150500.13.21.1

* kernel-livepatch-5_14_21-150500_13_21-rt-1-150500.11.3.1

* kernel-rt-livepatch-devel-5.14.21-150500.13.21.1

*...

Read the Full Advisory

References

* #1152472

* #1202845

* #1206453

* #1213808

* #1214941

* #1214942

* #1214943

* #1214944

* #1214950

* #1214951

* #1214954

* #1214957

* #1214986

* #1214992

* #1214993

* #1215322

* #1215523

* #1215877

* #1215894

* #1215895

* #1215896

* #1215911

* #1215915

* #1215916

## References:

* https://www.suse.com/security/cve/CVE-2023-1206.html

* https://www.suse.com/security/cve/CVE-2023-39192.html

* https://www.suse.com/security/cve/CVE-2023-39193.html

* https://www.suse.com/security/cve/CVE-2023-39194.html

* https://www.suse.com/security/cve/CVE-2023-4155.html

* https://www.suse.com/security/cve/CVE-2023-42753.html

* https://www.suse.com/security/cve/CVE-2023-42754.html

* https://www.suse.com/security/cve/CVE-2023-4389.html

* https://www.suse.com/security/cve/CVE-2023-4622.html

* https://www.suse.com/security/cve/CVE-2023-4623.html

* https://www.suse.com/security/cve/CVE-2023-4921.html

* https://www.suse.com/security/cve/CVE-2023-5345.html

* https://bugzilla.suse.com/show_bug.cgi?id=1152472

*...

Read the Full Advisory

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2023:4035-1

Rating: important

Topics Covered

security advisory kernel update security fix important system stability kernel issues openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

openSUSE: 2023:4035-1 Important Kernel Update Addressing Security Issues

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

Topics Covered

Topics Covered

Search News & Updates

Recent Searches

Search Advisories & Updates

Recent Searches

Get the latest News and Insights

Our Top Picks

openSUSE: 2023:4035-1 Important Kernel Update Addressing Security Issues

Description

Topics Covered

Patch

Package List

References

Topics Covered

Get the latest News and Insights

Related Articles

Related News

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!