SUSE-SU-2023:4245-1

Опубликовано: 30 окт. 2023

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 38 for SLE 15 SP2)

This update for the Linux Kernel 5.3.18-150200_24_157 fixes several issues.

The following security issues were fixed:

CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve local privilege escalation (bsc#1215440).
CVE-2023-3390: Fixed an use-after-free vulnerability in the netfilter subsystem in net/netfilter/nf_tables_api.c that could allow a local attacker with user access to cause a privilege escalation issue (bsc#1212934).

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP2

kernel-livepatch-5_3_18-150200_24_157-default-4-150200.2.1

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20234245-1/
Link for SUSE-SU-2023:4245-1
https://lists.suse.com/pipermail/sle-security-updates/2023-October/016913.html
E-Mail link for SUSE-SU-2023:4245-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1212934
SUSE Bug 1212934
https://bugzilla.suse.com/1215440
SUSE Bug 1215440
https://www.suse.com/security/cve/CVE-2023-3390/
SUSE CVE CVE-2023-3390 page
https://www.suse.com/security/cve/CVE-2023-4623/
SUSE CVE CVE-2023-4623 page

Описание

A use-after-free vulnerability was found in the Linux kernel's netfilter subsystem in net/netfilter/nf_tables_api.c. Mishandled error handling with NFT_MSG_NEWRULE makes it possible to use a dangling pointer in the same transaction causing a use-after-free vulnerability. This flaw allows a local attacker with user access to cause a privilege escalation issue. We recommend upgrading past commit 1240eb93f0616b21c675416516ff3d74798fdc97.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_157-default-4-150200.2.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-3390.html
CVE-2023-3390
https://bugzilla.suse.com/1212846
SUSE Bug 1212846
https://bugzilla.suse.com/1212934
SUSE Bug 1212934
https://bugzilla.suse.com/1216225
SUSE Bug 1216225

Описание

A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free. We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_157-default-4-150200.2.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-4623.html
CVE-2023-4623
https://bugzilla.suse.com/1215115
SUSE Bug 1215115
https://bugzilla.suse.com/1215440
SUSE Bug 1215440
https://bugzilla.suse.com/1217444
SUSE Bug 1217444
https://bugzilla.suse.com/1217531
SUSE Bug 1217531
https://bugzilla.suse.com/1219698
SUSE Bug 1219698
https://bugzilla.suse.com/1221578
SUSE Bug 1221578
https://bugzilla.suse.com/1221598
SUSE Bug 1221598

SUSE-SU-2023:4245-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP2

Ссылки

Уязвимость: CVE-2023-3390

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2023-4623

Описание

Затронутые продукты

Ссылки