SUSE: 2023:4359-1 Important: Linux Kernel DoS Issues Updated

suse

November 3, 2023

* bsc#1206010 * bsc#1208788 * bsc#1210778 * bsc#1213705 * bsc#1213950

Summary

## The SUSE Linux Enterprise 12 SP5 RT kernel was updated to receive various security and bugfixes. The following security bugs were fixed: * CVE-2023-31085: Fixed a divide-by-zero error in do_div(sz,mtd->erasesize) that could cause a local DoS. (bsc#1210778) * CVE-2023-45862: Fixed an issue in the ENE UB6250 reader driver whwere an object could potentially extend beyond the end of an allocation causing. (bsc#1216051) * CVE-2023-34324: Fixed a possible deadlock in Linux kernel event handling. (bsc#1215745). * CVE-2023-39189: Fixed a flaw in the Netfilter subsystem that could allow a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure. (bsc#1216046) The following non-security bugs were fixed:

Topics Covered

security advisory DoS issue SUSE Linux kernel important update

References

* bsc#1206010

* bsc#1208788

* bsc#1210778

* bsc#1213705

* bsc#1213950

* bsc#1213977

* bsc#1215743

* bsc#1215745

* bsc#1216046

* bsc#1216051

* bsc#1216107

* bsc#1216140

* bsc#1216340

* bsc#1216513

* bsc#1216514

Cross-

* CVE-2023-31085

* CVE-2023-34324

* CVE-2023-39189

* CVE-2023-45862

CVSS scores:

* CVE-2023-31085 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2023-31085 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2023-34324 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

* CVE-2023-39189 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

* CVE-2023-39189 ( NVD ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L

* CVE-2023-45862 ( SUSE ): 6.4 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity

important

Lowest

Low

Medium

High

Critical

Announcement ID: SUSE-SU-2023:4359-1

Rating: important

Topics Covered

security advisory DoS issue SUSE Linux kernel important update

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

SUSE: 2023:4359-1 Important: Linux Kernel DoS Issues Updated

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!

SUSE: 2023:4359-1 Important: Linux Kernel DoS Issues Updated

Summary

Topics Covered

References

Topics Covered

Get the latest News and Insights

Related Articles

Powered By

Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases

QUICK LINKS

subscribe to newsletters!