SUSE Linux Kernel Multiple Vulnerabilities
Release Date: 3 Apr 2023
RISK: Medium Risk
TYPE: Operating Systems - Linux
Multiple vulnerabilities were identified in SUSE Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, data manipulation and security restriction bypass on the targeted system.
Impact
- Denial of Service
- Elevation of Privilege
- Remote Code Execution
- Security Restriction Bypass
- Data Manipulation
System / Technologies affected
- Basesystem Module 15-SP4
- Development Tools Module 15-SP4
- Legacy Module 15-SP4
- SUSE Linux Enterprise Desktop 15 SP4
- SUSE Linux Enterprise High Availability Extension 15 SP4
- SUSE Linux Enterprise High Performance Computing 15 SP4
- SUSE Linux Enterprise Live Patching 15-SP4
- SUSE Linux Enterprise Micro 5.3
- SUSE Linux Enterprise Micro 5.4
- SUSE Linux Enterprise Micro for Rancher 5.3
- SUSE Linux Enterprise Micro for Rancher 5.4
- SUSE Linux Enterprise Real Time 15 SP4
- SUSE Linux Enterprise Server 15 SP4
- SUSE Linux Enterprise Server for SAP Applications 15 SP4
- SUSE Linux Enterprise Workstation Extension 15 SP4
- SUSE Manager Proxy 4.3
- SUSE Manager Retail Branch Server 4.3
- SUSE Manager Server 4.3
- openSUSE Leap 15.4
- openSUSE Leap Micro 5.3
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://www.suse.com/support/update/announcement/2023/suse-su-20231710-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20231708-1
Vulnerability Identifier
- CVE-2022-3523
- CVE-2022-36280
- CVE-2022-38096
- CVE-2023-0045
- CVE-2023-0266
- CVE-2023-0461
- CVE-2023-0597
- CVE-2023-1075
- CVE-2023-1076
- CVE-2023-1078
- CVE-2023-1095
- CVE-2023-1118
- CVE-2023-22995
- CVE-2023-22998
- CVE-2023-23000
- CVE-2023-23004
- CVE-2023-23559
- CVE-2023-25012
- CVE-2023-26545
- CVE-2023-28328
沒有留言:
發佈留言