SUSE-SU-2023:1947-1

Опубликовано: 21 апр. 2023

Источник: suse-cvrf

Описание

Security update for dmidecode

This update for dmidecode fixes the following issues:

CVE-2023-30630: Fixed potential privilege escalation vulnerability via file overwrite (bsc#1210418).

Список пакетов

Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest

dmidecode-3.4-150400.16.8.1

Container suse/manager/5.0/x86_64/server:latest

dmidecode-3.4-150400.16.8.1

Container suse/sle-micro-rancher/5.3:latest

dmidecode-3.4-150400.16.8.1

Container suse/sle-micro-rancher/5.4:latest

dmidecode-3.4-150400.16.8.1

Container suse/sle-micro/base-5.5:latest

dmidecode-3.4-150400.16.8.1

Container suse/sles/15.5/virt-launcher:0.58.0

dmidecode-3.4-150400.16.8.1

Container suse/sles/15.6/virt-launcher:1.1.1

dmidecode-3.4-150400.16.8.1

Container suse/sles/15.7/virt-launcher:1.4.0

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Azure-Basic

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Azure-Standard

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-CHOST-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-CHOST-BYOS-Aliyun

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-CHOST-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-CHOST-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-CHOST-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-CHOST-BYOS-SAP-CCloud

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-EC2-ECS-HVM

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-HPC

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-HPC-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-HPC-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-HPC-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-HPC-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-HPC-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-HPC-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-HPC-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Hardened-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Hardened-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Hardened-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Hardened-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Proxy-4-3-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Server-4-3

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Server-4-3-Azure-llc

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Server-4-3-Azure-ltd

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Server-4-3-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Server-4-3-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Server-4-3-EC2-llc

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Manager-Server-4-3-EC2-ltd

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-3

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-3-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-3-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-3-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-3-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-3-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-4

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-4-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-4-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-4-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-4-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-4-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-4-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-Micro-5-4-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Azure-LI-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Azure-LI-BYOS-Production

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Azure-VLI-BYOS-Production

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Hardened

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Hardened-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Hardened-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Hardened-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Hardened-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Hardened-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Hardened-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAP-Hardened-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAPCAL

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAPCAL-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAPCAL-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SAPCAL-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SUSE-Rancher-Setup-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP4-SUSE-Rancher-Setup-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Azure-3P

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Azure-Basic

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Azure-Standard

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-CHOST-BYOS-Aliyun

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-CHOST-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-CHOST-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-CHOST-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-CHOST-BYOS-GDC

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-CHOST-BYOS-SAP-CCloud

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-EC2-ECS-HVM

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-HPC-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-HPC-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-HPC-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-HPC-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-HPC-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-HPC-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Hardened-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Hardened-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Hardened-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Proxy-5-0-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Proxy-5-0-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Proxy-5-0-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Proxy-5-0-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Server-5-0

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Server-5-0-Azure-llc

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Server-5-0-Azure-ltd

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Server-5-0-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Server-5-0-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Server-5-0-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Server-5-0-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Server-5-0-EC2-llc

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Manager-Server-5-0-EC2-ltd

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Micro-5-5

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Micro-5-5-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Micro-5-5-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Micro-5-5-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Micro-5-5-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Micro-5-5-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Micro-5-5-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-Micro-5-5-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Azure-3P

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Azure-LI-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Hardened-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Hardened-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Hardened-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Hardened-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Hardened-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAP-Hardened-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAPCAL-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAPCAL-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP5-SAPCAL-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-Azure-Basic

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-Azure-Standard

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-CHOST-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-CHOST-BYOS-Aliyun

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-CHOST-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-CHOST-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-CHOST-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-CHOST-BYOS-GDC

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-CHOST-BYOS-SAP-CCloud

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-EC2-ECS-HVM

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-HPC

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-HPC-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-HPC-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-HPC-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-HPC-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-HPC-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-HPC-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-HPC-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-Hardened-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-Hardened-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-Hardened-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-Hardened-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Azure-LI-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Azure-LI-BYOS-Production

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Azure-VLI-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Azure-VLI-BYOS-Production

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Hardened

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Hardened-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Hardened-BYOS

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Hardened-BYOS-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Hardened-BYOS-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Hardened-BYOS-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Hardened-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAP-Hardened-GCE

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAPCAL

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAPCAL-Azure

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAPCAL-EC2

dmidecode-3.4-150400.16.8.1

Image SLES15-SP6-SAPCAL-GCE

dmidecode-3.4-150400.16.8.1

Image server-image

dmidecode-3.4-150400.16.8.1

SUSE Linux Enterprise Micro 5.3

dmidecode-3.4-150400.16.8.1

SUSE Linux Enterprise Micro 5.4

dmidecode-3.4-150400.16.8.1

SUSE Linux Enterprise Module for Basesystem 15 SP4

dmidecode-3.4-150400.16.8.1

openSUSE Leap 15.4

dmidecode-3.4-150400.16.8.1

openSUSE Leap Micro 5.3

dmidecode-3.4-150400.16.8.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20231947-1/
Link for SUSE-SU-2023:1947-1
https://lists.suse.com/pipermail/sle-updates/2023-April/028935.html
E-Mail link for SUSE-SU-2023:1947-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1210418
SUSE Bug 1210418
https://www.suse.com/security/cve/CVE-2023-30630/
SUSE CVE CVE-2023-30630 page

Описание

Dmidecode before 3.5 allows -dump-bin to overwrite a local file. This has security relevance because, for example, execution of Dmidecode via Sudo is plausible. NOTE: Some third parties have indicated the fix in 3.5 does not adequately address the vulnerability. The argument is that the proposed patch prevents dmidecode from writing to an existing file. However, there are multiple attack vectors that would not require overwriting an existing file that would provide the same level of unauthorized privilege escalation (e.g. creating a new file in /etc/cron.hourly).

Затронутые продукты

Container suse/hpc/warewulf4-x86_64/sle-hpc-node:latest:dmidecode-3.4-150400.16.8.1

Container suse/manager/5.0/x86_64/server:latest:dmidecode-3.4-150400.16.8.1

Container suse/sle-micro-rancher/5.3:latest:dmidecode-3.4-150400.16.8.1

Container suse/sle-micro-rancher/5.4:latest:dmidecode-3.4-150400.16.8.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-30630.html
CVE-2023-30630
https://bugzilla.suse.com/1210418
SUSE Bug 1210418