SUSE-SU-2023:4260-1

Опубликовано: 30 окт. 2023

Источник: suse-cvrf

Описание

Security update for the Linux Kernel (Live Patch 35 for SLE 15 SP3)

This update for the Linux Kernel 5.3.18-150300_59_130 fixes several issues.

The following security issues were fixed:

CVE-2023-4623: Fixed a use-after-free issue in the HFSC network scheduler which could be exploited to achieve local privilege escalation (bsc#1215440).
CVE-2023-4147: Fixed use-after-free in nf_tables_newrule (bsc#1215118).
CVE-2023-4004: Fixed improper element removal netfilter nft_set_pipapo (bsc#1214812).

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP3

kernel-livepatch-5_3_18-150300_59_130-default-3-150300.2.2

Ссылки

https://www.suse.com/support/update/announcement/2023/suse-su-20234260-1/
Link for SUSE-SU-2023:4260-1
https://lists.suse.com/pipermail/sle-security-updates/2023-October/016912.html
E-Mail link for SUSE-SU-2023:4260-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1214812
SUSE Bug 1214812
https://bugzilla.suse.com/1215118
SUSE Bug 1215118
https://bugzilla.suse.com/1215440
SUSE Bug 1215440
https://www.suse.com/security/cve/CVE-2023-4004/
SUSE CVE CVE-2023-4004 page
https://www.suse.com/security/cve/CVE-2023-4147/
SUSE CVE CVE-2023-4147 page
https://www.suse.com/security/cve/CVE-2023-4623/
SUSE CVE CVE-2023-4623 page

Описание

A use-after-free flaw was found in the Linux kernel's netfilter in the way a user triggers the nft_pipapo_remove function with the element, without a NFT_SET_EXT_KEY_END. This issue could allow a local user to crash the system or potentially escalate their privileges on the system.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_130-default-3-150300.2.2

Ссылки

https://www.suse.com/security/cve/CVE-2023-4004.html
CVE-2023-4004
https://bugzilla.suse.com/1213812
SUSE Bug 1213812
https://bugzilla.suse.com/1214812
SUSE Bug 1214812

Описание

A use-after-free flaw was found in the Linux kernel's Netfilter functionality when adding a rule with NFTA_RULE_CHAIN_ID. This flaw allows a local user to crash or escalate their privileges on the system.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_130-default-3-150300.2.2

Ссылки

https://www.suse.com/security/cve/CVE-2023-4147.html
CVE-2023-4147
https://bugzilla.suse.com/1213968
SUSE Bug 1213968
https://bugzilla.suse.com/1215118
SUSE Bug 1215118

Описание

A use-after-free vulnerability in the Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component can be exploited to achieve local privilege escalation. If a class with a link-sharing curve (i.e. with the HFSC_FSC flag set) has a parent without a link-sharing curve, then init_vf() will call vttree_insert() on the parent, but vttree_remove() will be skipped in update_vf(). This leaves a dangling pointer that can cause a use-after-free. We recommend upgrading past commit b3d26c5702c7d6c45456326e56d2ccf3f103e60f.

Затронутые продукты

SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_130-default-3-150300.2.2

Ссылки

https://www.suse.com/security/cve/CVE-2023-4623.html
CVE-2023-4623
https://bugzilla.suse.com/1215115
SUSE Bug 1215115
https://bugzilla.suse.com/1215440
SUSE Bug 1215440
https://bugzilla.suse.com/1217444
SUSE Bug 1217444
https://bugzilla.suse.com/1217531
SUSE Bug 1217531
https://bugzilla.suse.com/1219698
SUSE Bug 1219698
https://bugzilla.suse.com/1221578
SUSE Bug 1221578
https://bugzilla.suse.com/1221598
SUSE Bug 1221598

SUSE-SU-2023:4260-1

Описание

Список пакетов

SUSE Linux Enterprise Live Patching 15 SP3

Ссылки

Уязвимость: CVE-2023-4004

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2023-4147

Описание

Затронутые продукты

Ссылки

Уязвимость: CVE-2023-4623

Описание

Затронутые продукты

Ссылки