exploitDog

SUSE-SU-2023:3001-1

Опубликовано: 27 июл. 2023

Источник: suse-cvrf

Описание

Security update for kernel-firmware

This update for kernel-firmware fixes the following issues:

CVE-2023-20593: Fixed AMD ucode for ZenBleed vulnerability (bsc#1213286).

Список пакетов

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production

kernel-firmware-20190618-5.28.1

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production

kernel-firmware-20190618-5.28.1

SUSE Linux Enterprise Server 12 SP5

kernel-firmware-20190618-5.28.1

ucode-amd-20190618-5.28.1

SUSE Linux Enterprise Server for SAP Applications 12 SP5

kernel-firmware-20190618-5.28.1

ucode-amd-20190618-5.28.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20233001-1/
Link for SUSE-SU-2023:3001-1
https://lists.suse.com/pipermail/sle-security-updates/2023-July/015679.html
E-Mail link for SUSE-SU-2023:3001-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1213286
SUSE Bug 1213286
https://www.suse.com/security/cve/CVE-2023-20593/
SUSE CVE CVE-2023-20593 page

Описание

An issue in "Zen 2" CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

Затронутые продукты

Image SLES12-SP5-SAP-Azure-LI-BYOS-Production:kernel-firmware-20190618-5.28.1

Image SLES12-SP5-SAP-Azure-VLI-BYOS-Production:kernel-firmware-20190618-5.28.1

SUSE Linux Enterprise Server 12 SP5:kernel-firmware-20190618-5.28.1

SUSE Linux Enterprise Server 12 SP5:ucode-amd-20190618-5.28.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-20593.html
CVE-2023-20593
https://bugzilla.suse.com/1213286
SUSE Bug 1213286
https://bugzilla.suse.com/1213616
SUSE Bug 1213616
https://bugzilla.suse.com/1215674
SUSE Bug 1215674