SUSE Linux Kernel Multiple Vulnerabilities
Release Date: 13 Dec 2023
RISK: Medium Risk
TYPE: Operating Systems - Linux
Multiple vulnerabilities were identified in SUSE Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege, remote code execution, sensitive information disclosure and data manipulation on the targeted system.
Impact
- Denial of Service
- Remote Code Execution
- Elevation of Privilege
- Information Disclosure
- Data Manipulation
System / Technologies affected
- Basesystem Module 15-SP5
- Development Tools Module 15-SP5
- Legacy Module 15-SP5
- openSUSE Leap 15.4
- openSUSE Leap 15.5
- openSUSE Leap Micro 5.3
- openSUSE Leap Micro 5.4
- Public Cloud Module 15-SP5
- SUSE Linux Enterprise Desktop 15 SP5
- SUSE Linux Enterprise High Availability Extension 15 SP5
- SUSE Linux Enterprise High Performance Computing 12 SP5
- SUSE Linux Enterprise High Performance Computing 15 SP4
- SUSE Linux Enterprise High Performance Computing 15 SP5
- SUSE Linux Enterprise Live Patching 15-SP4
- SUSE Linux Enterprise Live Patching 15-SP5
- SUSE Linux Enterprise Micro 5.1
- SUSE Linux Enterprise Micro 5.2
- SUSE Linux Enterprise Micro 5.3
- SUSE Linux Enterprise Micro 5.4
- SUSE Linux Enterprise Micro 5.5
- SUSE Linux Enterprise Micro 6.0
- SUSE Linux Enterprise Micro for Rancher 5.2
- SUSE Linux Enterprise Micro for Rancher 5.3
- SUSE Linux Enterprise Micro for Rancher 5.4
- SUSE Linux Enterprise Real Time 12 SP5
- SUSE Linux Enterprise Real Time 15 SP4
- SUSE Linux Enterprise Real Time 15 SP5
- SUSE Linux Enterprise Server 12 SP5
- SUSE Linux Enterprise Server 15 SP4
- SUSE Linux Enterprise Server 15 SP5
- SUSE Linux Enterprise Server for SAP Applications 15 SP4
- SUSE Linux Enterprise Server for SAP Applications 15 SP5
- SUSE Linux Enterprise Workstation Extension 15 SP5
- SUSE Real Time Module 15-SP4
- SUSE Real Time Module 15-SP5
Solutions
Before installation of the software, please visit the vendor web-site for more details.
Apply fixes issued by the vendor:
- https://www.suse.com/support/update/announcement/2023/suse-su-20234734-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234730-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234733-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234732-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234735-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234731-1
Vulnerability Identifier
- CVE-2023-0461
- CVE-2023-2006
- CVE-2023-3777
- CVE-2023-4244
- CVE-2023-5158
- CVE-2023-5633
- CVE-2023-5717
- CVE-2023-6039
- CVE-2023-6176
- CVE-2023-25775
- CVE-2023-31083
- CVE-2023-39197
- CVE-2023-39198
- CVE-2023-45863
- CVE-2023-45871
- CVE-2023-46813
- CVE-2023-46862
Source
Related Link
- https://www.auscert.org.au/bulletins/ESB-2023.7386
- https://www.auscert.org.au/bulletins/ESB-2023.7385
- https://www.auscert.org.au/bulletins/ESB-2023.7384
- https://www.auscert.org.au/bulletins/ESB-2023.7383
- https://www.auscert.org.au/bulletins/ESB-2023.7382
- https://www.auscert.org.au/bulletins/ESB-2023.7381
- https://www.suse.com/support/update/announcement/2023/suse-su-20234734-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234730-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234733-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234732-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234735-1
- https://www.suse.com/support/update/announcement/2023/suse-su-20234731-1
沒有留言:
發佈留言