SUSE update for the Linux Kernel

Published: 2023-07-20 | Updated: 2024-05-31

Risk	Low
Patch available	YES
Number of vulnerabilities	15
CVE-ID	CVE-2023-1249 CVE-2023-1829 CVE-2023-2430 CVE-2023-28866 CVE-2023-3090 CVE-2023-3111 CVE-2023-3212 CVE-2023-3220 CVE-2023-3357 CVE-2023-3358 CVE-2023-3389 CVE-2023-35788 CVE-2023-35823 CVE-2023-35828 CVE-2023-35829
CWE-ID	CWE-416 CWE-667 CWE-125 CWE-787 CWE-476 CWE-362
Exploitation vector	Local
Public exploit	Public exploit code for vulnerability #2 is available.
Vulnerable software	Public Cloud Module Operating systems & Components / Operating system SUSE Linux Enterprise Server for SAP Applications 15 Operating systems & Components / Operating system SUSE Linux Enterprise Server 15 Operating systems & Components / Operating system SUSE Linux Enterprise High Performance Computing 15 Operating systems & Components / Operating system openSUSE Leap Operating systems & Components / Operating system kernel-source-azure Operating systems & Components / Operating system package or component kernel-devel-azure Operating systems & Components / Operating system package or component kernel-azure-vdso Operating systems & Components / Operating system package or component kernel-azure-vdso-debuginfo Operating systems & Components / Operating system package or component kernel-azure Operating systems & Components / Operating system package or component kernel-azure-optional-debuginfo Operating systems & Components / Operating system package or component kernel-azure-optional Operating systems & Components / Operating system package or component kernel-azure-debugsource Operating systems & Components / Operating system package or component kernel-azure-extra Operating systems & Components / Operating system package or component reiserfs-kmp-azure-debuginfo Operating systems & Components / Operating system package or component ocfs2-kmp-azure-debuginfo Operating systems & Components / Operating system package or component gfs2-kmp-azure Operating systems & Components / Operating system package or component gfs2-kmp-azure-debuginfo Operating systems & Components / Operating system package or component kernel-azure-debuginfo Operating systems & Components / Operating system package or component dlm-kmp-azure Operating systems & Components / Operating system package or component reiserfs-kmp-azure Operating systems & Components / Operating system package or component kselftests-kmp-azure-debuginfo Operating systems & Components / Operating system package or component cluster-md-kmp-azure-debuginfo Operating systems & Components / Operating system package or component kernel-azure-devel-debuginfo Operating systems & Components / Operating system package or component ocfs2-kmp-azure Operating systems & Components / Operating system package or component cluster-md-kmp-azure Operating systems & Components / Operating system package or component kselftests-kmp-azure Operating systems & Components / Operating system package or component kernel-syms-azure Operating systems & Components / Operating system package or component kernel-azure-extra-debuginfo Operating systems & Components / Operating system package or component kernel-azure-devel Operating systems & Components / Operating system package or component kernel-azure-livepatch-devel Operating systems & Components / Operating system package or component dlm-kmp-azure-debuginfo Operating systems & Components / Operating system package or component
Vendor	SUSE

Security Bulletin

This security bulletin contains information about 15 vulnerabilities.

1) Use-after-free

EUVDB-ID: #VU77954

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-1249

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a use-after-free error within the core dump subsystem in Linux kernel. A local user can trigger a use-after-free error and crash the kernel.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

2) Use-after-free

EUVDB-ID: #VU75448

Risk: Low

CVSSv4.0: 7.1 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:P/U:Clear]

CVE-ID: CVE-2023-1829

CWE-ID: CWE-416 - Use After Free

Exploit availability: Yes

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the tcindex_delete() function. A local user can trigger a use-after-free error and execute arbitrary code with root privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.

3) Improper locking

EUVDB-ID: #VU77814

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-2430

CWE-ID: CWE-667 - Improper Locking

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service attack (DoS).

The vulnerability exists due to improper locking within the io_uring subsystem in Linux kernel when IOPOLL mode is being used. A local user can crash the kernel.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

4) Out-of-bounds read

EUVDB-ID: #VU75455

Risk: Low

CVSSv4.0: 0.4 [CVSS:4.0/AV:P/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-28866

CWE-ID: CWE-125 - Out-of-bounds read

Exploit availability: No

Description

The vulnerability allows an attacker to gain access to potentially sensitive information.

The vulnerability exists due to a boundary condition in net/bluetooth/hci_sync.c in Linux kernel. An attacker with physical proximity to device can trigger an out-of-bounds read error and read contents of memory on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. The attacker should have physical access to the system in order to successfully exploit this vulnerability.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

5) Out-of-bounds write

EUVDB-ID: #VU78010

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3090

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the ipvlan network driver in Linux kernel. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

6) Use-after-free

EUVDB-ID: #VU77911

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3111

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the prepare_to_relocate() function in fs/btrfs/relocation.c in btrfs in the Linux Kernel. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

7) NULL pointer dereference

EUVDB-ID: #VU78009

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3212

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the gfs2 file system in the Linux kernel. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

8) NULL pointer dereference

EUVDB-ID: #VU78471

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3220

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error within the dpu_crtc_atomic_check() function in drivers/gpu/drm/msm/disp/dpu1/dpu_crtc.c. A local user can pass specially crafted data to the application and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

9) NULL pointer dereference

EUVDB-ID: #VU78065

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3357

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the Linux kernel AMD Sensor Fusion Hub driver. A local user can perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

10) NULL pointer dereference

EUVDB-ID: #VU78063

Risk: Low

CVSSv4.0: 4.3 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3358

CWE-ID: CWE-476 - NULL Pointer Dereference

Exploit availability: No

Description

The vulnerability allows a local user to perform a denial of service (DoS) attack.

The vulnerability exists due to a NULL pointer dereference error in the Linux kernel's Integrated Sensor Hub (ISH) driver. A local user and perform a denial of service (DoS) attack.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

11) Use-after-free

EUVDB-ID: #VU78066

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-3389

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error in the Linux Kernel io_uring subsystem. A local user can exploit a race condition and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

12) Out-of-bounds write

EUVDB-ID: #VU77502

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-35788

CWE-ID: CWE-787 - Out-of-bounds write

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a boundary error within the fl_set_geneve_opt() function in net/sched/cls_flower.c in Linux kernel. A local user can trigger an out-of-bounds write and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

13) Race condition

EUVDB-ID: #VU77957

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-35823

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the saa7134_finidev() function in drivers/media/pci/saa7134/saa7134-core.c. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

14) Race condition

EUVDB-ID: #VU77958

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-35828

CWE-ID: CWE-362 - Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a race condition within the renesas_usb3_remove() function in drivers/usb/gadget/udc/renesas_usb3.c. A local user can exploit the race and gain unauthorized access to sensitive information and escalate privileges on the system.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

15) Use-after-free

EUVDB-ID: #VU78264

Risk: Low

CVSSv4.0: 5.9 [CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear]

CVE-ID: CVE-2023-35829

CWE-ID: CWE-416 - Use After Free

Exploit availability: No

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to a use-after-free error within the rkvdec_remove() function in drivers/staging/media/rkvdec/rkvdec.c. A local user can trigger a use-after-free error and execute arbitrary code with elevated privileges.

Mitigation

Update the affected package the Linux Kernel to the latest version.

Vulnerable software versions

Public Cloud Module: 15-SP5

SUSE Linux Enterprise Server for SAP Applications 15: SP5

SUSE Linux Enterprise Server 15: SP5

SUSE Linux Enterprise High Performance Computing 15: SP5

openSUSE Leap: 15.5

kernel-source-azure: before 5.14.21-150500.33.6.1

kernel-devel-azure: before 5.14.21-150500.33.6.1

kernel-azure-vdso: before 5.14.21-150500.33.6.1

kernel-azure-vdso-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure: before 5.14.21-150500.33.6.1

kernel-azure-optional-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-optional: before 5.14.21-150500.33.6.1

kernel-azure-debugsource: before 5.14.21-150500.33.6.1

kernel-azure-extra: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

gfs2-kmp-azure: before 5.14.21-150500.33.6.1

gfs2-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-debuginfo: before 5.14.21-150500.33.6.1

dlm-kmp-azure: before 5.14.21-150500.33.6.1

reiserfs-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel-debuginfo: before 5.14.21-150500.33.6.1

ocfs2-kmp-azure: before 5.14.21-150500.33.6.1

cluster-md-kmp-azure: before 5.14.21-150500.33.6.1

kselftests-kmp-azure: before 5.14.21-150500.33.6.1

kernel-syms-azure: before 5.14.21-150500.33.6.1

kernel-azure-extra-debuginfo: before 5.14.21-150500.33.6.1

kernel-azure-devel: before 5.14.21-150500.33.6.1

kernel-azure-livepatch-devel: before 5.14.21-150500.33.6.1

dlm-kmp-azure-debuginfo: before 5.14.21-150500.33.6.1

CPE2.3

External links

https://www.suse.com/support/update/announcement/2023/suse-su-20232892-1/

Q & A

Can this vulnerability be exploited remotely?

No. This vulnerability can be exploited locally. The attacker should have authentication credentials and successfully authenticate on the system.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.