Alerts This Week
Warning Icon 1 692
Alerts This Week
Warning Icon 1 692

openSUSE 15 SP3: SUSE-SU-2023:4839-1 Important Kernel Security Patch

opensuse
Calendar Grey December 14, 2023
Dist Opensuse Esm H88
Crucial safety patch for openSUSE addresses kernel weaknesses, including privilege escalation and use-after-free vulnerabilities.
This update for the Linux Kernel 5.3.18-150300_59_138 fixes several issues

Description

This update for the Linux Kernel 5.3.18-150300_59_138 fixes several issues.

The following security issues were fixed:

* CVE-2023-3777: Fixed a use-after-free vulnerability in netfilter: nf_tables

component can be exploited to achieve local privilege escalation.

(bsc#1215097)

* CVE-2023-2163: Fixed an incorrect verifier pruning in BPF that could lead to

unsafe code paths being incorrectly marked as safe, resulting in arbitrary

read/write in kernel memory, lateral privilege escalation, and container

escape. (bsc#1215519)

Topics%20covered

Topics Covered

security advisory privilege escalation kernel patch important update openSUSE use-after-free live patching

Patch

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like

YaST online_update or "zypper patch".

Alternatively you can run the command listed for your product:

* openSUSE Leap 15.3

zypper in -t patch SUSE-2023-4839=1

* SUSE Linux Enterprise Live Patching 15-SP3

zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2023-4839=1

Package List

* openSUSE Leap 15.3 (ppc64le s390x x86_64)

* kernel-livepatch-5_3_18-150300_59_138-default-debuginfo-3-150300.2.1

* kernel-livepatch-SLE15-SP3_Update_37-debugsource-3-150300.2.1

* kernel-livepatch-5_3_18-150300_59_138-default-3-150300.2.1

* openSUSE Leap 15.3 (x86_64)

* kernel-livepatch-5_3_18-150300_59_138-preempt-debuginfo-3-150300.2.1

* kernel-livepatch-5_3_18-150300_59_138-preempt-3-150300.2.1

* SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64)

* kernel-livepatch-5_3_18-150300_59_138-default-3-150300.2.1

References

* bsc#1215097

* bsc#1215519

## References:

* https://www.suse.com/security/cve/CVE-2023-2163.html

* https://www.suse.com/security/cve/CVE-2023-3777.html

* https://bugzilla.suse.com/show_bug.cgi?id=1215097

* https://bugzilla.suse.com/show_bug.cgi?id=1215519

Severity
important
Lowest
Low
Medium
High
Critical

Announcement ID: SUSE-SU-2023:4839-1
Rating: important

Topics%20covered

Topics Covered

security advisory privilege escalation kernel patch important update openSUSE use-after-free live patching

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here