Alerts This Week
Warning Icon 1 646
Alerts This Week
Warning Icon 1 646

openSUSE 15 SP4: 2023-4351-1 Important: Local Privilege Escalation Fix

opensuse
Calendar Grey November 2, 2023
Dist Opensuse Esm H88
A security patch for the Linux Kernel rectifies multiple vulnerabilities, including potential privilege escalations. Prompt application of this update is strongly recommended.
The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various security and bugfixes

Description

The SUSE Linux Enterprise 15 SP4 RT kernel was updated to receive various

security and bugfixes.

The following security bugs were fixed:

* CVE-2023-3777: Fixed a use-after-free vulnerability in netfilter: nf_tables

component can be exploited to achieve local privilege escalation.

(bsc#1215095)

* CVE-2023-46813: Fixed a local privilege escalation with user-space programs

that have access to MMIO regions (bsc#1212649).

* CVE-2023-31085: Fixed a divide-by-zero error in do_div(sz,mtd->erasesize)

that could cause a local DoS. (bsc#1210778)

* CVE-2023-45862: Fixed an issue in the ENE UB6250 reader driver whwere an

object could potentially extend beyond the end of an allocation causing.

(bsc#1216051)

* CVE-2023-5178: Fixed an UAF in queue intialization setup. (bsc#1215768)

* CVE-2023-2163: Fixed an incorrect verifier pruning in BPF that could lead to

unsafe code paths being incorrectly marked as safe, resulting in arbitrary

read/write in kernel...

Read the Full Advisory

Topics%20covered

Topics Covered

security advisory kernel update local privilege escalation critical update security issues bugfixes openSUSE

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap Micro 5.3

zypper in -t patch openSUSE-Leap-Micro-5.3-2023-4351=1

* openSUSE Leap Micro 5.4

zypper in -t patch openSUSE-Leap-Micro-5.4-2023-4351=1

* openSUSE Leap 15.4

zypper in -t patch openSUSE-SLE-15.4-2023-4351=1

* SUSE Linux Enterprise Micro for Rancher 5.3

zypper in -t patch SUSE-SLE-Micro-5.3-2023-4351=1

* SUSE Linux Enterprise Micro 5.3

zypper in -t patch SUSE-SLE-Micro-5.3-2023-4351=1

* SUSE Linux Enterprise Micro for Rancher 5.4

zypper in -t patch SUSE-SLE-Micro-5.4-2023-4351=1

* SUSE Linux Enterprise Micro 5.4

zypper in -t patch SUSE-SLE-Micro-5.4-2023-4351=1

* SUSE Linux Enterprise Live Patching 15-SP4

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP4-2023-4351=1

* SUSE Real Time Module 15-SP4

zypper in -t patch SUSE-SLE-Module-RT-15-SP4-2023-4351=1

Package List

* openSUSE Leap Micro 5.3 (nosrc x86_64)

* kernel-rt-5.14.21-150400.15.59.1

* openSUSE Leap Micro 5.3 (x86_64)

* kernel-rt-debugsource-5.14.21-150400.15.59.1

* kernel-rt-debuginfo-5.14.21-150400.15.59.1

* openSUSE Leap Micro 5.4 (nosrc x86_64)

* kernel-rt-5.14.21-150400.15.59.1

* openSUSE Leap Micro 5.4 (x86_64)

* kernel-rt-debugsource-5.14.21-150400.15.59.1

* kernel-rt-debuginfo-5.14.21-150400.15.59.1

* openSUSE Leap 15.4 (x86_64)

* kernel-rt_debug-debuginfo-5.14.21-150400.15.59.1

* kernel-rt_debug-devel-debuginfo-5.14.21-150400.15.59.1

* kernel-rt_debug-devel-5.14.21-150400.15.59.1

* kernel-rt-debugsource-5.14.21-150400.15.59.1

* dlm-kmp-rt-5.14.21-150400.15.59.1

* cluster-md-kmp-rt-5.14.21-150400.15.59.1

* kernel-rt-debuginfo-5.14.21-150400.15.59.1

* kernel-rt-devel-5.14.21-150400.15.59.1

* kernel-syms-rt-5.14.21-150400.15.59.1

* dlm-kmp-rt-debuginfo-5.14.21-150400.15.59.1

* gfs2-kmp-rt-debuginfo-5.14.21-150400.15.59.1

* cluster-md-kmp-rt-debuginfo-5.14.21-150400.15.59.1

*...

Read the Full Advisory

References

* bsc#1211307

* bsc#1212423

* bsc#1213772

* bsc#1215955

* bsc#1216062

* bsc#1216512

## References:

* https://www.suse.com/security/cve/CVE-2023-2163.html

* https://www.suse.com/security/cve/CVE-2023-31085.html

* https://www.suse.com/security/cve/CVE-2023-34324.html

* https://www.suse.com/security/cve/CVE-2023-3777.html

* https://www.suse.com/security/cve/CVE-2023-39189.html

* https://www.suse.com/security/cve/CVE-2023-45862.html

* https://www.suse.com/security/cve/CVE-2023-46813.html

* https://www.suse.com/security/cve/CVE-2023-5178.html

* https://bugzilla.suse.com/show_bug.cgi?id=1211307

* https://bugzilla.suse.com/show_bug.cgi?id=1212423

* https://bugzilla.suse.com/show_bug.cgi?id=1213772

* https://bugzilla.suse.com/show_bug.cgi?id=1215955

* https://bugzilla.suse.com/show_bug.cgi?id=1216062

* https://bugzilla.suse.com/show_bug.cgi?id=1216512

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2023:4351-1
Rating: important

Topics%20covered

Topics Covered

security advisory kernel update local privilege escalation critical update security issues bugfixes openSUSE

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here