openSUSE 15 SP5: 2023:4732-1 Important Kernel Security Fix
opensuse
December 12, 2023
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various security and bugfixes
Description
The SUSE Linux Enterprise 15 SP5 RT kernel was updated to receive various
security and bugfixes.
The following security bugs were fixed:
* CVE-2023-2006: Fixed a race condition in the RxRPC network protocol
(bsc#1210447).
* CVE-2023-25775: Fixed improper access control in the Intel Ethernet
Controller RDMA driver (bsc#1216959).
* CVE-2023-3777: Fixed a use-after-free vulnerability in netfilter: nf_tables
component can be exploited to achieve local privilege escalation.
(bsc#1215095)
* CVE-2023-39197: Fixed a out-of-bounds read in nf_conntrack_dccp_packet()
(bsc#1216976).
* CVE-2023-39198: Fixed a race condition leading to use-after-free in
qxl_mode_dumb_create() (bsc#1216965).
* CVE-2023-4244: Fixed a use-after-free in the nf_tables component, which
could be exploited to achieve local privilege escalation (bsc#1215420).
* CVE-2023-45863: Fixed a out-of-bounds write in fill_kobj_path()
(bsc#1216058).
* CVE-2023-45871: Fixed an issue in the IGB driver, where the...
Read the Full Advisory
Patch
## Patch Instructions:
To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".
Alternatively you can run the command listed for your product:
* openSUSE Leap 15.5
zypper in -t patch SUSE-2023-4732=1 openSUSE-SLE-15.5-2023-4732=1
* SUSE Linux Enterprise Micro 5.5
zypper in -t patch SUSE-SLE-Micro-5.5-2023-4732=1
* SUSE Linux Enterprise Live Patching 15-SP5
zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP5-2023-4732=1
* SUSE Real Time Module 15-SP5
zypper in -t patch SUSE-SLE-Module-RT-15-SP5-2023-4732=1
Package List
* openSUSE Leap 15.5 (noarch)
* kernel-source-rt-5.14.21-150500.13.27.2
* kernel-devel-rt-5.14.21-150500.13.27.2
* openSUSE Leap 15.5 (x86_64)
* kernel-rt-optional-5.14.21-150500.13.27.2
* kernel-rt_debug-vdso-5.14.21-150500.13.27.2
* dlm-kmp-rt-debuginfo-5.14.21-150500.13.27.2
* kernel-rt_debug-debuginfo-5.14.21-150500.13.27.2
* reiserfs-kmp-rt-5.14.21-150500.13.27.2
* ocfs2-kmp-rt-debuginfo-5.14.21-150500.13.27.2
* kernel-rt-vdso-5.14.21-150500.13.27.2
* cluster-md-kmp-rt-debuginfo-5.14.21-150500.13.27.2
* gfs2-kmp-rt-5.14.21-150500.13.27.2
* kernel-rt-devel-debuginfo-5.14.21-150500.13.27.2
* cluster-md-kmp-rt-5.14.21-150500.13.27.2
* kernel-rt_debug-devel-5.14.21-150500.13.27.2
* kernel-rt-extra-5.14.21-150500.13.27.2
* dlm-kmp-rt-5.14.21-150500.13.27.2
* kernel-livepatch-5_14_21-150500_13_27-rt-1-150500.11.3.2
* kernel-rt-extra-debuginfo-5.14.21-150500.13.27.2
* kernel-rt-vdso-debuginfo-5.14.21-150500.13.27.2
* kernel-rt-livepatch-devel-5.14.21-150500.13.27.2
*...
Read the Full AdvisoryReferences
* bsc#1207948
* bsc#1210447
* bsc#1212649
* bsc#1214286
* bsc#1214700
* bsc#1214840
* bsc#1214976
* bsc#1215095
* bsc#1215123
* bsc#1215124
* bsc#1215292
* bsc#1215420
* bsc#1215458
* bsc#1215710
* bsc#1215802
* bsc#1215931
* bsc#1216058
* bsc#1216105
* bsc#1216259
* bsc#1216527
* bsc#1216584
* bsc#1216621
* bsc#1216687
* bsc#1216693
* bsc#1216759
* bsc#1216761
* bsc#1216788
* bsc#1216844
* bsc#1216861
* bsc#1216909
* bsc#1216959
* bsc#1216965
* bsc#1216976
* bsc#1217036
* bsc#1217068
* bsc#1217086
* bsc#1217095
* bsc#1217124
* bsc#1217140
* bsc#1217147
* bsc#1217195
* bsc#1217196
* bsc#1217200
* bsc#1217205
* bsc#1217332
* bsc#1217366
* bsc#1217511
* bsc#1217515
* bsc#1217598
* bsc#1217599
* bsc#1217609
* bsc#1217687
* bsc#1217731
* bsc#1217780
* jsc#PED-3184
* jsc#PED-5021
* jsc#PED-7237
## References:
* https://www.suse.com/security/cve/CVE-2023-2006.html
* https://www.suse.com/security/cve/CVE-2023-25775.html
* https://www.suse.com/security/cve/CVE-2023-3777.html
* https://www.suse.com/security/cve/CVE-2023-39197.html
*...
Read the Full Advisory
PREVIOUS
NEXT
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!