Описание
Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP4)
This update for the Linux Kernel 5.14.21-150400_24_60 fixes several issues.
The following security issues were fixed:
- CVE-2023-3610: Fixed use-after-free vulnerability in nf_tables can be exploited to achieve local privilege escalation (bsc#1213584).
- CVE-2023-3777: Fixed a use-after-free vulnerability in netfilter: nf_tables component can be exploited to achieve local privilege escalation. (bsc#1215097)
- CVE-2023-5345: Fixed an use-after-free vulnerability in the fs/smb/client component which could be exploited to achieve local privilege escalation. (bsc#1215971)
- CVE-2023-4622: Fixed a use-after-free vulnerability in the Unix domain sockets component which could be exploited to achieve local privilege escalation (bsc#1215442).
- CVE-2023-2163: Fixed an incorrect verifier pruning in BPF that could lead to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape. (bsc#1215519)
Список пакетов
SUSE Linux Enterprise Live Patching 15 SP4
Ссылки
- Link for SUSE-SU-2023:4822-1
- E-Mail link for SUSE-SU-2023:4822-1
- SUSE Security Ratings
- SUSE Bug 1213584
- SUSE Bug 1215097
- SUSE Bug 1215442
- SUSE Bug 1215519
- SUSE Bug 1215971
- SUSE CVE CVE-2023-2163 page
- SUSE CVE CVE-2023-3610 page
- SUSE CVE CVE-2023-3777 page
- SUSE CVE CVE-2023-4622 page
- SUSE CVE CVE-2023-5345 page
Описание
Incorrect verifier pruning in BPF in Linux Kernel >=5.4 leads to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape.
Затронутые продукты
Ссылки
- CVE-2023-2163
- SUSE Bug 1215518
- SUSE Bug 1215519
Описание
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. Flaw in the error handling of bound chains causes a use-after-free in the abort path of NFT_MSG_NEWRULE. The vulnerability requires CAP_NET_ADMIN to be triggered. We recommend upgrading past commit 4bedf9eee016286c835e3d8fa981ddece5338795.
Затронутые продукты
Ссылки
- CVE-2023-3610
- SUSE Bug 1213580
- SUSE Bug 1213584
Описание
A use-after-free vulnerability in the Linux kernel's netfilter: nf_tables component can be exploited to achieve local privilege escalation. When nf_tables_delrule() is flushing table rules, it is not checked whether the chain is bound and the chain's owner rule can also release the objects in certain circumstances. We recommend upgrading past commit 6eaf41e87a223ae6f8e7a28d6e78384ad7e407f8.
Затронутые продукты
Ссылки
- CVE-2023-3777
- SUSE Bug 1215095
- SUSE Bug 1215097
Описание
A use-after-free vulnerability in the Linux kernel's af_unix component can be exploited to achieve local privilege escalation. The unix_stream_sendpage() function tries to add data to the last skb in the peer's recv queue without locking the queue. Thus there is a race where unix_stream_sendpage() could access an skb locklessly that is being released by garbage collection, resulting in use-after-free. We recommend upgrading past commit 790c2f9d15b594350ae9bca7b236f2b1859de02c.
Затронутые продукты
Ссылки
- CVE-2023-4622
- SUSE Bug 1215117
- SUSE Bug 1215442
- SUSE Bug 1217531
- SUSE Bug 1219699
Описание
A use-after-free vulnerability in the Linux kernel's fs/smb/client component can be exploited to achieve local privilege escalation. In case of an error in smb3_fs_context_parse_param, ctx->password was freed but the field was not set to NULL which could lead to double free. We recommend upgrading past commit e6e43b8aa7cd3c3af686caf0c2e11819a886d705.
Затронутые продукты
Ссылки
- CVE-2023-5345
- SUSE Bug 1215899
- SUSE Bug 1215971