mickmick.net

SUSE Linux Kernel Multiple Vulnerabilities

Release Date: 7 Mar 2024

RISK: Medium Risk

TYPE: Operating Systems - Linux

Multiple vulnerabilities were identified in SUSE Linux Kernel. A remote attacker could exploit some of these vulnerabilities to trigger denial of service condition, elevation of privilege and security restriction bypass on the targeted system.

---

Impact

• Denial of Service
• Elevation of Privilege
• Security Restriction Bypass

---

System / Technologies affected

• SUSE Linux Enterprise High Performance Computing 12 SP5
• SUSE Linux Enterprise High Performance Computing 15 SP2
• SUSE Linux Enterprise High Performance Computing 15 SP3
• SUSE Linux Enterprise High Performance Computing 15 SP4
• SUSE Linux Enterprise High Performance Computing 15 SP5
• SUSE Linux Enterprise Live Patching 12-SP5
• SUSE Linux Enterprise Live Patching 15-SP2
• SUSE Linux Enterprise Live Patching 15-SP3
• SUSE Linux Enterprise Live Patching 15-SP4
• SUSE Linux Enterprise Live Patching 15-SP5
• SUSE Linux Enterprise Micro 5.1
• SUSE Linux Enterprise Micro 5.2
• SUSE Linux Enterprise Micro 5.3
• SUSE Linux Enterprise Micro 5.4
• SUSE Linux Enterprise Micro 5.5
• SUSE Linux Enterprise Real Time 15 SP4
• SUSE Linux Enterprise Real Time 15 SP5
• SUSE Linux Enterprise Server 12 SP5
• SUSE Linux Enterprise Server 15 SP2
• SUSE Linux Enterprise Server 15 SP3
• SUSE Linux Enterprise Server 15 SP4
• SUSE Linux Enterprise Server 15 SP5
• SUSE Linux Enterprise Server for SAP Applications 12 SP5
• SUSE Linux Enterprise Server for SAP Applications 15 SP2
• SUSE Linux Enterprise Server for SAP Applications 15 SP3
• SUSE Linux Enterprise Server for SAP Applications 15 SP4
• SUSE Linux Enterprise Server for SAP Applications 15 SP5
• openSUSE Leap 15.3
• openSUSE Leap 15.4
• openSUSE Leap 15.5

---

Solutions

Before installation of the software, please visit the vendor web-site for more details.

 

Apply fixes issued by the vendor:

• https://www.suse.com/support/update/announcement/2024/suse-su-20240655-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240656-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240662-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240663-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240665-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240666-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240685-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240694-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240695-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240698-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240705-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240727-1

---

Vulnerability Identifier

• CVE-2023-1829
• CVE-2023-4921
• CVE-2023-39198
• CVE-2023-51780

---

Source

• SUSE

---

Related Link

• https://www.suse.com/support/update/announcement/2024/suse-su-20240655-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240656-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240662-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240663-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240665-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240666-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240685-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240694-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240695-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240698-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240705-1
• https://www.suse.com/support/update/announcement/2024/suse-su-20240727-1