mickmick.net

SUSE Linux Kernel Multiple Vulnerabilities

Release Date: 15 Sep 2023

RISK: Medium Risk

TYPE: Operating Systems - Linux

Multiple vulnerabilities were identified in SUSE Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger security restriction bypass, denial of service condition, sensitive information disclosure, remote code execution and elevation of privilege on the targeted system.

---

Impact

• Remote Code Execution
• Elevation of Privilege
• Information Disclosure
• Denial of Service
• Security Restriction Bypass

---

System / Technologies affected

• SUSE Linux Enterprise High Performance Computing 12 SP5
• SUSE Linux Enterprise High Performance Computing 15 SP1
• SUSE Linux Enterprise High Performance Computing 15 SP3
• SUSE Linux Enterprise High Performance Computing 15 SP4
• SUSE Linux Enterprise High Performance Computing 15 SP5
• SUSE Linux Enterprise Live Patching 12-SP5
• SUSE Linux Enterprise Live Patching 15-SP1
• SUSE Linux Enterprise Live Patching 15-SP3
• SUSE Linux Enterprise Live Patching 15-SP4
• SUSE Linux Enterprise Live Patching 15-SP5
• SUSE Linux Enterprise Micro 5.1
• SUSE Linux Enterprise Micro 5.2
• SUSE Linux Enterprise Micro 5.3
• SUSE Linux Enterprise Micro 5.4
• SUSE Linux Enterprise Micro 5.5
• SUSE Linux Enterprise Micro for Rancher 5.3
• SUSE Linux Enterprise Micro for Rancher 5.4
• SUSE Linux Enterprise Real Time 12 SP5
• SUSE Linux Enterprise Real Time 15 SP4
• SUSE Linux Enterprise Real Time 15 SP5
• SUSE Linux Enterprise Server 12 SP5
• SUSE Linux Enterprise Server 15 SP1
• SUSE Linux Enterprise Server 15 SP3
• SUSE Linux Enterprise Server 15 SP4
• SUSE Linux Enterprise Server 15 SP5
• SUSE Linux Enterprise Server for SAP Applications 12 SP5
• SUSE Linux Enterprise Server for SAP Applications 15 SP1
• SUSE Linux Enterprise Server for SAP Applications 15 SP3
• SUSE Linux Enterprise Server for SAP Applications 15 SP4
• SUSE Linux Enterprise Server for SAP Applications 15 SP5
• SUSE Real Time Module 15-SP4
• SUSE Real Time Module 15-SP5
• openSUSE Leap 15.4
• openSUSE Leap 15.5

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://www.suse.com/support/update/announcement/2023/suse-su-20233566-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233571-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233572-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233576-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233582-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233585-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233592-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233594-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233595-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233596-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233598-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233599-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233600-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233601-1/

---

Vulnerability Identifier

• CVE-2022-36402
• CVE-2022-38457
• CVE-2022-40133
• CVE-2023-1077
• CVE-2023-2007
• CVE-2023-2156
• CVE-2023-2176
• CVE-2023-3090
• CVE-2023-3567
• CVE-2023-3610
• CVE-2023-3772
• CVE-2023-3812
• CVE-2023-3863
• CVE-2023-4128
• CVE-2023-4132
• CVE-2023-4133
• CVE-2023-4134
• CVE-2023-4147
• CVE-2023-4194
• CVE-2023-4273
• CVE-2023-4385
• CVE-2023-4387
• CVE-2023-4459
• CVE-2023-4563
• CVE-2023-4569
• CVE-2023-20588
• CVE-2023-32233
• CVE-2023-34319
• CVE-2023-35001
• CVE-2023-37453
• CVE-2023-40283

---

Source

• SUSE

---

Related Link

• https://www.suse.com/support/update/announcement/2023/suse-su-20233566-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233571-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233572-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233576-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233582-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233585-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233592-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233594-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233595-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233596-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233598-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233599-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233600-1/
• https://www.suse.com/support/update/announcement/2023/suse-su-20233601-1/