Alerts This Week
Warning Icon 1 764
Alerts This Week
Warning Icon 1 764

openSUSE: 2023:4072-1 Important: Kernel Security Update

opensuse
Calendar Grey October 13, 2023
Dist Opensuse Esm H88
The RedHat Enterprise Linux 9 kernel has received an upgrade addressing 22 security vulnerabilities, boosting overall system performance and security.
The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes

Description

The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security

and bugfixes.

The following security bugs were fixed:

* CVE-2023-4563: Fixed an use-after-free flaw in the nftables sub-component.

This vulnerability could allow a local attacker to crash the system or lead

to a kernel information leak problem. (bsc#1214727)

* CVE-2023-39194: Fixed a flaw in the processing of state filters which could

allow a local attackers to disclose sensitive information. (bsc#1215861)

* CVE-2023-39193: Fixed a flaw in the processing of state filters which could

allow a local attackers to disclose sensitive information. (bsc#1215860)

* CVE-2023-39192: Fixed a flaw in the u32_match_it function which could allow

a local attackers to disclose sensitive information. (bsc#1215858)

* CVE-2023-42754: Fixed a null pointer dereference in ipv4_link_failure which

could lead an authenticated attacker to trigger a DoS. (bsc#1215467)

* CVE-2023-5345: fixed an...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory security fix kernel security system stability SUSE important update Linux patch

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.4

zypper in -t patch SUSE-2023-4072=1

* SUSE Linux Enterprise Micro for Rancher 5.3

zypper in -t patch SUSE-SLE-Micro-5.3-2023-4072=1

* SUSE Linux Enterprise Micro 5.3

zypper in -t patch SUSE-SLE-Micro-5.3-2023-4072=1

* SUSE Linux Enterprise Micro for Rancher 5.4

zypper in -t patch SUSE-SLE-Micro-5.4-2023-4072=1

* SUSE Linux Enterprise Micro 5.4

zypper in -t patch SUSE-SLE-Micro-5.4-2023-4072=1

* Basesystem Module 15-SP4

zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP4-2023-4072=1

* Development Tools Module 15-SP4

zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP4-2023-4072=1

* Legacy Module 15-SP4

zypper in -t patch SUSE-SLE-Module-Legacy-15-SP4-2023-4072=1

* SUSE Linux Enterprise Live Patching 15-SP4

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2023-4072=1

Please...

Read the Full Advisory

Package List

* openSUSE Leap 15.4 (noarch nosrc)

* kernel-docs-5.14.21-150400.24.92.1

* openSUSE Leap 15.4 (noarch)

* kernel-source-vanilla-5.14.21-150400.24.92.1

* kernel-macros-5.14.21-150400.24.92.1

* kernel-docs-html-5.14.21-150400.24.92.1

* kernel-devel-5.14.21-150400.24.92.1

* kernel-source-5.14.21-150400.24.92.1

* openSUSE Leap 15.4 (nosrc ppc64le x86_64)

* kernel-debug-5.14.21-150400.24.92.1

* openSUSE Leap 15.4 (ppc64le x86_64)

* kernel-debug-debugsource-5.14.21-150400.24.92.1

* kernel-debug-debuginfo-5.14.21-150400.24.92.1

* kernel-debug-devel-debuginfo-5.14.21-150400.24.92.1

* kernel-debug-livepatch-devel-5.14.21-150400.24.92.1

* kernel-debug-devel-5.14.21-150400.24.92.1

* openSUSE Leap 15.4 (aarch64 ppc64le x86_64)

* kernel-kvmsmall-devel-5.14.21-150400.24.92.1

* kernel-kvmsmall-devel-debuginfo-5.14.21-150400.24.92.1

* kernel-kvmsmall-livepatch-devel-5.14.21-150400.24.92.1

* kernel-default-base-rebuild-5.14.21-150400.24.92.1.150400.24.42.1

* kernel-kvmsmall-debuginfo-5.14.21-150400.24.92.1

*...

Read the Full Advisory

References

* #1202845

* #1213808

* #1214928

* #1214940

* #1214941

* #1214942

* #1214943

* #1214944

* #1214950

* #1214951

* #1214954

* #1214957

* #1214986

* #1214988

* #1214992

* #1214993

* #1215322

* #1215877

* #1215894

* #1215895

* #1215896

* #1215911

* #1215915

* #1215916

## References:

* https://www.suse.com/security/cve/CVE-2023-1192.html

* https://www.suse.com/security/cve/CVE-2023-1206.html

* https://www.suse.com/security/cve/CVE-2023-1859.html

* https://www.suse.com/security/cve/CVE-2023-2177.html

* https://www.suse.com/security/cve/CVE-2023-39192.html

* https://www.suse.com/security/cve/CVE-2023-39193.html

* https://www.suse.com/security/cve/CVE-2023-39194.html

* https://www.suse.com/security/cve/CVE-2023-4155.html

* https://www.suse.com/security/cve/CVE-2023-42753.html

* https://www.suse.com/security/cve/CVE-2023-42754.html

* https://www.suse.com/security/cve/CVE-2023-4389.html

* https://www.suse.com/security/cve/CVE-2023-4563.html

* https://www.suse.com/security/cve/CVE-2023-4622.html

*...

Read the Full Advisory

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2023:4072-1
Rating: important

Topics%20covered

Topics Covered

security advisory security fix kernel security system stability SUSE important update Linux patch

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Your message here