SUSE update for the Linux Kernel
| Risk | Low |
| Patch available | YES |
| Number of vulnerabilities | 14 |
| CVE-ID | CVE-2017-5753 CVE-2022-4744 CVE-2023-0394 CVE-2023-1281 CVE-2023-1513 CVE-2023-1582 CVE-2023-1611 CVE-2023-1637 CVE-2023-1652 CVE-2023-1838 CVE-2023-23001 CVE-2023-28327 CVE-2023-28464 CVE-2023-28466 |
| CWE-ID | CWE-200 CWE-415 CWE-476 CWE-416 CWE-665 CWE-362 CWE-1342 CWE-466 |
| Exploitation vector | Local |
| Public exploit | Vulnerability #1 is being exploited in the wild. |
| Vulnerable software |
SUSE Linux Enterprise Micro for Rancher Operating systems & Components / Operating system SUSE Linux Enterprise Workstation Extension 15 Operating systems & Components / Operating system Legacy Module Operating systems & Components / Operating system Development Tools Module Operating systems & Components / Operating system SUSE Linux Enterprise High Availability Extension 15 Operating systems & Components / Operating system SUSE Linux Enterprise Micro Operating systems & Components / Operating system SUSE Linux Enterprise Live Patching Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise Real Time 15 Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing 15 Operating systems & Components / Operating system SUSE Linux Enterprise Desktop 15 Operating systems & Components / Operating system Basesystem Module Operating systems & Components / Operating system openSUSE Leap Micro Operating systems & Components / Operating system SUSE Manager Retail Branch Server Operating systems & Components / Operating system SUSE Manager Server Operating systems & Components / Operating system SUSE Manager Proxy Operating systems & Components / Operating system openSUSE Leap Operating systems & Components / Operating system kernel-livepatch-5_14_21-150400_24_60-default Operating systems & Components / Operating system package or component kernel-livepatch-SLE15-SP4_Update_11-debugsource Operating systems & Components / Operating system package or component kernel-livepatch-5_14_21-150400_24_60-default-debuginfo Operating systems & Components / Operating system package or component kernel-64kb Operating systems & Components / Operating system package or component dtb-aarch64 Operating systems & Components / Operating system package or component dtb-xilinx Operating systems & Components / Operating system package or component dtb-freescale Operating systems & Components / Operating system package or component kernel-64kb-debugsource Operating systems & Components / Operating system package or component kernel-64kb-debuginfo Operating systems & Components / Operating system package or component kselftests-kmp-64kb Operating systems & Components / Operating system package or component dtb-allwinner Operating systems & Components / Operating system package or component gfs2-kmp-64kb-debuginfo Operating systems & Components / Operating system package or component dtb-qcom Operating systems & Components / Operating system package or component dtb-altera Operating systems & Components / Operating system package or component dtb-lg Operating systems & Components / Operating system package or component reiserfs-kmp-64kb Operating systems & Components / Operating system package or component kernel-64kb-extra Operating systems & Components / Operating system package or component gfs2-kmp-64kb Operating systems & Components / Operating system package or component dtb-marvell Operating systems & Components / Operating system package or component reiserfs-kmp-64kb-debuginfo Operating systems & Components / Operating system package or component kernel-64kb-optional-debuginfo Operating systems & Components / Operating system package or component cluster-md-kmp-64kb Operating systems & Components / Operating system package or component kselftests-kmp-64kb-debuginfo Operating systems & Components / Operating system package or component dlm-kmp-64kb-debuginfo Operating systems & Components / Operating system package or component dtb-nvidia Operating systems & Components / Operating system package or component ocfs2-kmp-64kb Operating systems & Components / Operating system package or component dtb-socionext Operating systems & Components / Operating system package or component dtb-arm Operating systems & Components / Operating system package or component cluster-md-kmp-64kb-debuginfo Operating systems & Components / Operating system package or component dtb-sprd Operating systems & Components / Operating system package or component dtb-renesas Operating systems & Components / Operating system package or component dtb-exynos Operating systems & Components / Operating system package or component kernel-64kb-devel Operating systems & Components / Operating system package or component kernel-64kb-devel-debuginfo Operating systems & Components / Operating system package or component dtb-mediatek Operating systems & Components / Operating system package or component dtb-rockchip Operating systems & Components / Operating system package or component dtb-apm Operating systems & Components / Operating system package or component dtb-amlogic Operating systems & Components / Operating system package or component dlm-kmp-64kb Operating systems & Components / Operating system package or component dtb-apple Operating systems & Components / Operating system package or component dtb-hisilicon Operating systems & Components / Operating system package or component kernel-64kb-optional Operating systems & Components / Operating system package or component dtb-amazon Operating systems & Components / Operating system package or component ocfs2-kmp-64kb-debuginfo Operating systems & Components / Operating system package or component dtb-broadcom Operating systems & Components / Operating system package or component dtb-amd Operating systems & Components / Operating system package or component dtb-cavium Operating systems & Components / Operating system package or component kernel-64kb-livepatch-devel Operating systems & Components / Operating system package or component kernel-64kb-extra-debuginfo Operating systems & Components / Operating system package or component kernel-zfcpdump-debugsource Operating systems & Components / Operating system package or component kernel-zfcpdump-debuginfo Operating systems & Components / Operating system package or component kernel-zfcpdump Operating systems & Components / Operating system package or component kernel-kvmsmall-devel-debuginfo Operating systems & Components / Operating system package or component kernel-kvmsmall-debugsource Operating systems & Components / Operating system package or component kernel-kvmsmall-devel Operating systems & Components / Operating system package or component kernel-kvmsmall-debuginfo Operating systems & Components / Operating system package or component kernel-kvmsmall-livepatch-devel Operating systems & Components / Operating system package or component kernel-kvmsmall Operating systems & Components / Operating system package or component kernel-docs Operating systems & Components / Operating system package or component kernel-docs-html Operating systems & Components / Operating system package or component kernel-macros Operating systems & Components / Operating system package or component kernel-source Operating systems & Components / Operating system package or component kernel-source-vanilla Operating systems & Components / Operating system package or component kernel-devel Operating systems & Components / Operating system package or component kernel-debug-debugsource Operating systems & Components / Operating system package or component kernel-debug-devel Operating systems & Components / Operating system package or component kernel-debug-livepatch-devel Operating systems & Components / Operating system package or component kernel-debug-debuginfo Operating systems & Components / Operating system package or component kernel-debug-devel-debuginfo Operating systems & Components / Operating system package or component kernel-debug Operating systems & Components / Operating system package or component kernel-default-optional Operating systems & Components / Operating system package or component cluster-md-kmp-default Operating systems & Components / Operating system package or component kernel-default-base-rebuild Operating systems & Components / Operating system package or component ocfs2-kmp-default Operating systems & Components / Operating system package or component cluster-md-kmp-default-debuginfo Operating systems & Components / Operating system package or component dlm-kmp-default Operating systems & Components / Operating system package or component kernel-default-extra Operating systems & Components / Operating system package or component reiserfs-kmp-default-debuginfo Operating systems & Components / Operating system package or component kernel-obs-build-debugsource Operating systems & Components / Operating system package or component gfs2-kmp-default-debuginfo Operating systems & Components / Operating system package or component kernel-default-extra-debuginfo Operating systems & Components / Operating system package or component kernel-obs-qa Operating systems & Components / Operating system package or component ocfs2-kmp-default-debuginfo Operating systems & Components / Operating system package or component kernel-default-optional-debuginfo Operating systems & Components / Operating system package or component kselftests-kmp-default-debuginfo Operating systems & Components / Operating system package or component kernel-obs-build Operating systems & Components / Operating system package or component kernel-default-devel Operating systems & Components / Operating system package or component dlm-kmp-default-debuginfo Operating systems & Components / Operating system package or component kernel-default-livepatch-devel Operating systems & Components / Operating system package or component gfs2-kmp-default Operating systems & Components / Operating system package or component kernel-syms Operating systems & Components / Operating system package or component kernel-default-livepatch Operating systems & Components / Operating system package or component reiserfs-kmp-default Operating systems & Components / Operating system package or component kselftests-kmp-default Operating systems & Components / Operating system package or component kernel-default-devel-debuginfo Operating systems & Components / Operating system package or component kernel-default-debuginfo Operating systems & Components / Operating system package or component kernel-default-base Operating systems & Components / Operating system package or component kernel-default-debugsource Operating systems & Components / Operating system package or component kernel-default Operating systems & Components / Operating system package or component |
| Vendor | SUSE |
Security Bulletin
This security bulletin contains information about 14 vulnerabilities.
1) Information disclosure
EUVDB-ID: #VU9884
Risk: Low
CVSSv4.0: 6.8 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:A/U:Clear]
CVE-ID: CVE-2017-5753
CWE-ID:
CWE-200 - Information exposure
Exploit availability: Yes
DescriptionThe vulnerability allows a local attacker to obtain potentially sensitive information.
The vulnerability exists in Intel CPU hardware due to improper implementation of the speculative execution of instructions. A local attacker can perform a bounds check bypass, execute arbitrary code, conduct a side-channel attack and read sensitive memory information.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
Yes. This vulnerability is being exploited in the wild.
2) Double Free
EUVDB-ID: #VU74053
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2022-4744
CWE-ID:
CWE-415 - Double Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a boundary error within the tun_free_netdev() function in the Linux kernel’s TUN/TAP device driver. A local user can trigger a double free error and execute arbitrary code with elevated privileges.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
3) NULL pointer dereference
EUVDB-ID: #VU71352
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-0394
CWE-ID:
CWE-476 - NULL Pointer Dereference
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error within the rawv6_push_pending_frames() function in net/ipv6/raw.c. A local user can run a specially crafted program on the system and perform a denial of service (DoS) attack.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
4) Use-after-free
EUVDB-ID: #VU74122
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-1281
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error in Linux kernel traffic control index filter (tcindex) when the tcf_exts_exec() function is called with the destroyed tcf_ext. A local user attacker can trigger a use-after-free error and execute arbitrary code with elevated privileges.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
5) Improper Initialization
EUVDB-ID: #VU74630
Risk: Low
CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-1513
CWE-ID:
CWE-665 - Improper Initialization
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due to improper initialization when calling the KVM_GET_DEBUGREGS ioctl on 32-bit systems. A local user can run a specially crafted application to gain access to sensitive information.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
6) Race condition
EUVDB-ID: #VU74629
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-1582
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a race condition within fs/proc/task_mmu.c. A local user can exploit the race and crash the kernel.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
7) Use-after-free
EUVDB-ID: #VU75204
Risk: Low
CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-1611
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a use-after-free error within the btrfs_search_slot() function in fs/btrfs/ctree.c. A local user can trigger a use-after-free error and crash the kernel.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
8) Information exposure through microarchitectural state after transient execution
EUVDB-ID: #VU74771
Risk: Low
CVSSv4.0: 1.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-1637
CWE-ID:
CWE-1342 - Information Exposure through Microarchitectural State after Transient Execution
Exploit availability: No
DescriptionThe vulnerability allows a local user to gain access to sensitive information.
The vulnerability exists due speculative execution behavior in the Linux kernel X86 CPU Power management options functionality. A local user can gain access to sensitive information.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
9) Use-after-free
EUVDB-ID: #VU74770
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-1652
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a use-after-free error within the nfsd4_ssc_setup_dul() function in fs/nfsd/nfs4proc.c. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.
Mitigation
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
10) Use-after-free
EUVDB-ID: #VU75205
Risk: Low
CVSSv4.0: 1.9 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-1838
CWE-ID:
CWE-416 - Use After Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
11) Return of pointer value outside of expected range
EUVDB-ID: #VU74129
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-23001
CWE-ID:
CWE-466 - Return of pointer value outside of expected range
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exist due to the regulator_get() function in drivers/scsi/ufs/ufs-mediatek.c misinterprets the return value. A local user can perform a denial of service (DoS) attack. MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
12) NULL pointer dereference
EUVDB-ID: #VU74772
Risk: Low
CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-28327
CWE-ID:
CWE-476 - NULL Pointer Dereference
Exploit availability: No
DescriptionThe vulnerability allows a local user to perform a denial of service (DoS) attack.
The vulnerability exists due to a NULL pointer dereference error within the unix_diag_get_exact() function in net/unix/diag.c. A local user can perform a denial of service (DoS) attack.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
13) Double Free
EUVDB-ID: #VU74147
Risk: Low
CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-28464
CWE-ID:
CWE-415 - Double Free
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a boundary error within the hci_conn_cleanup() function in net/bluetooth/hci_conn.c in Linux kernel. A local user can trigger a double free error and execute arbitrary code with elevated privileges.
Update the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
14) Race condition
EUVDB-ID: #VU74628
Risk: Low
CVSSv4.0: 4.4 [CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]
CVE-ID: CVE-2023-28466
Exploit availability: No
DescriptionThe vulnerability allows a local user to escalate privileges on the system.
The vulnerability exists due to a race condition caused by a missing lock_sock call within the do_tls_getsockopt() function in net/tls/tls_main.c. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.
MitigationUpdate the affected package the Linux Kernel to the latest version.
Vulnerable software versionsSUSE Linux Enterprise Micro for Rancher: 5.3 - 5.4
SUSE Linux Enterprise Workstation Extension 15: SP4
Legacy Module: 15-SP4
Development Tools Module: 15-SP4
SUSE Linux Enterprise High Availability Extension 15: SP4
SUSE Linux Enterprise Micro: 5.3 - 5.4
SUSE Linux Enterprise Live Patching: 15-SP4
SUSE Linux Enterprise Server for SAP Applications 15: SP4
SUSE Linux Enterprise Server 15: SP4
SUSE Linux Enterprise Real Time 15: SP4
SUSE Linux Enterprise High Performance Computing 15: SP4
SUSE Linux Enterprise Desktop 15: SP4
Basesystem Module: 15-SP4
openSUSE Leap Micro: 5.3
SUSE Manager Retail Branch Server: 4.3
SUSE Manager Server: 4.3
SUSE Manager Proxy: 4.3
openSUSE Leap: 15.4
kernel-livepatch-5_14_21-150400_24_60-default: before 1-150400.9.3.2
kernel-livepatch-SLE15-SP4_Update_11-debugsource: before 1-150400.9.3.2
kernel-livepatch-5_14_21-150400_24_60-default-debuginfo: before 1-150400.9.3.2
kernel-64kb: before 5.14.21-150400.24.60.1
dtb-aarch64: before 5.14.21-150400.24.60.1
dtb-xilinx: before 5.14.21-150400.24.60.1
dtb-freescale: before 5.14.21-150400.24.60.1
kernel-64kb-debugsource: before 5.14.21-150400.24.60.1
kernel-64kb-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-allwinner: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-qcom: before 5.14.21-150400.24.60.1
dtb-altera: before 5.14.21-150400.24.60.1
dtb-lg: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb: before 5.14.21-150400.24.60.1
kernel-64kb-extra: before 5.14.21-150400.24.60.1
gfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-marvell: before 5.14.21-150400.24.60.1
reiserfs-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
kernel-64kb-optional-debuginfo: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb: before 5.14.21-150400.24.60.1
kselftests-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-nvidia: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-socionext: before 5.14.21-150400.24.60.1
dtb-arm: before 5.14.21-150400.24.60.1
cluster-md-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-sprd: before 5.14.21-150400.24.60.1
dtb-renesas: before 5.14.21-150400.24.60.1
dtb-exynos: before 5.14.21-150400.24.60.1
kernel-64kb-devel: before 5.14.21-150400.24.60.1
kernel-64kb-devel-debuginfo: before 5.14.21-150400.24.60.1
dtb-mediatek: before 5.14.21-150400.24.60.1
dtb-rockchip: before 5.14.21-150400.24.60.1
dtb-apm: before 5.14.21-150400.24.60.1
dtb-amlogic: before 5.14.21-150400.24.60.1
dlm-kmp-64kb: before 5.14.21-150400.24.60.1
dtb-apple: before 5.14.21-150400.24.60.1
dtb-hisilicon: before 5.14.21-150400.24.60.1
kernel-64kb-optional: before 5.14.21-150400.24.60.1
dtb-amazon: before 5.14.21-150400.24.60.1
ocfs2-kmp-64kb-debuginfo: before 5.14.21-150400.24.60.1
dtb-broadcom: before 5.14.21-150400.24.60.1
dtb-amd: before 5.14.21-150400.24.60.1
dtb-cavium: before 5.14.21-150400.24.60.1
kernel-64kb-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-64kb-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debugsource: before 5.14.21-150400.24.60.1
kernel-zfcpdump-debuginfo: before 5.14.21-150400.24.60.1
kernel-zfcpdump: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debugsource: before 5.14.21-150400.24.60.1
kernel-kvmsmall-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall-debuginfo: before 5.14.21-150400.24.60.1
kernel-kvmsmall-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-kvmsmall: before 5.14.21-150400.24.60.1
kernel-docs: before 5.14.21-150400.24.60.1
kernel-docs-html: before 5.14.21-150400.24.60.1
kernel-macros: before 5.14.21-150400.24.60.1
kernel-source: before 5.14.21-150400.24.60.1
kernel-source-vanilla: before 5.14.21-150400.24.60.1
kernel-devel: before 5.14.21-150400.24.60.1
kernel-debug-debugsource: before 5.14.21-150400.24.60.1
kernel-debug-devel: before 5.14.21-150400.24.60.1
kernel-debug-livepatch-devel: before 5.14.21-150400.24.60.1
kernel-debug-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-debug: before 5.14.21-150400.24.60.1
kernel-default-optional: before 5.14.21-150400.24.60.1
cluster-md-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-base-rebuild: before 5.14.21-150400.24.60.1.150400.24.24.3
ocfs2-kmp-default: before 5.14.21-150400.24.60.1
cluster-md-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
dlm-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-extra: before 5.14.21-150400.24.60.1
reiserfs-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build-debugsource: before 5.14.21-150400.24.60.1
gfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-extra-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-qa: before 5.14.21-150400.24.60.1
ocfs2-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-optional-debuginfo: before 5.14.21-150400.24.60.1
kselftests-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-obs-build: before 5.14.21-150400.24.60.1
kernel-default-devel: before 5.14.21-150400.24.60.1
dlm-kmp-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-livepatch-devel: before 5.14.21-150400.24.60.1
gfs2-kmp-default: before 5.14.21-150400.24.60.1
kernel-syms: before 5.14.21-150400.24.60.1
kernel-default-livepatch: before 5.14.21-150400.24.60.1
reiserfs-kmp-default: before 5.14.21-150400.24.60.1
kselftests-kmp-default: before 5.14.21-150400.24.60.1
kernel-default-devel-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-debuginfo: before 5.14.21-150400.24.60.1
kernel-default-base: before 5.14.21-150400.24.60.1.150400.24.24.3
kernel-default-debugsource: before 5.14.21-150400.24.60.1
kernel-default: before 5.14.21-150400.24.60.1
CPE2.3- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro_for_rancher:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_workstation_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:legacy_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:development_tools_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_availability_extension_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_micro:5.4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_live_patching:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_for_sap_applications_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_server_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_real_time_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_high_performance_computing_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_linux_enterprise_desktop_15:SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:basesystem_module:15-SP4:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap_micro:5.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_retail_branch_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_server:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:suse_manager_proxy:4.3:*:*:*:*:*:*:*
- cpe:2.3:o:suse:opensuse_leap:15.4:*:*:*:*:*:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-sle15-sp4_update_11-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-livepatch-5_14_21-150400_24_60-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-aarch64:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-xilinx:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-freescale:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-allwinner:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-qcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-altera:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-lg:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-marvell:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-nvidia:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-socionext:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-arm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-sprd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-renesas:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-exynos:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-mediatek:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-rockchip:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apm:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amlogic:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-64kb:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-apple:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-hisilicon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amazon:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-64kb-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-broadcom:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-amd:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dtb-cavium:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-64kb-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-zfcpdump:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-kvmsmall:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-docs-html:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-macros:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-source-vanilla:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-debug:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base-rebuild:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:cluster-md-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-extra-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-qa:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:ocfs2-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-optional-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-obs-build:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:dlm-kmp-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch-devel:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:gfs2-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-syms:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-livepatch:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:reiserfs-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kselftests-kmp-default:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-devel-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debuginfo:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-base:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default-debugsource:*:*:*:*:*:suse_linux:*:*
- cpe:2.3:a:suse:kernel-default:*:*:*:*:*:suse_linux:*:*
https://www.suse.com/support/update/announcement/2023/suse-su-20231897-1/
Q & A
Can this vulnerability be exploited remotely?
No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
