Описание
Security update for kernel-firmware
This update for kernel-firmware fixes the following issues:
- CVE-2023-31315: Fixed validation in a model specific register (MSR) that lead to modification of SMM configuration by malicious program with ring0 access (bsc#1229069)
Список пакетов
Container suse/sle-micro-rancher/5.2:latest
kernel-firmware-bnx2-20210208-150300.4.22.1
kernel-firmware-chelsio-20210208-150300.4.22.1
kernel-firmware-i915-20210208-150300.4.22.1
kernel-firmware-intel-20210208-150300.4.22.1
kernel-firmware-iwlwifi-20210208-150300.4.22.1
kernel-firmware-liquidio-20210208-150300.4.22.1
kernel-firmware-marvell-20210208-150300.4.22.1
kernel-firmware-mediatek-20210208-150300.4.22.1
kernel-firmware-mellanox-20210208-150300.4.22.1
kernel-firmware-network-20210208-150300.4.22.1
kernel-firmware-platform-20210208-150300.4.22.1
kernel-firmware-qlogic-20210208-150300.4.22.1
kernel-firmware-realtek-20210208-150300.4.22.1
kernel-firmware-usb-network-20210208-150300.4.22.1
Image SLES15-SP3-SAP-Azure-LI-BYOS-Production
kernel-firmware-20210208-150300.4.22.1
Image SLES15-SP3-SAP-Azure-VLI-BYOS-Production
kernel-firmware-20210208-150300.4.22.1
SUSE Enterprise Storage 7.1
kernel-firmware-20210208-150300.4.22.1
kernel-firmware-brcm-20210208-150300.4.22.1
ucode-amd-20210208-150300.4.22.1
SUSE Linux Enterprise High Performance Computing 15 SP3-LTSS
kernel-firmware-20210208-150300.4.22.1
kernel-firmware-brcm-20210208-150300.4.22.1
ucode-amd-20210208-150300.4.22.1
SUSE Linux Enterprise Micro 5.1
kernel-firmware-all-20210208-150300.4.22.1
kernel-firmware-amdgpu-20210208-150300.4.22.1
kernel-firmware-ath10k-20210208-150300.4.22.1
kernel-firmware-ath11k-20210208-150300.4.22.1
kernel-firmware-atheros-20210208-150300.4.22.1
kernel-firmware-bluetooth-20210208-150300.4.22.1
kernel-firmware-bnx2-20210208-150300.4.22.1
kernel-firmware-brcm-20210208-150300.4.22.1
kernel-firmware-chelsio-20210208-150300.4.22.1
kernel-firmware-dpaa2-20210208-150300.4.22.1
kernel-firmware-i915-20210208-150300.4.22.1
kernel-firmware-intel-20210208-150300.4.22.1
kernel-firmware-iwlwifi-20210208-150300.4.22.1
kernel-firmware-liquidio-20210208-150300.4.22.1
kernel-firmware-marvell-20210208-150300.4.22.1
kernel-firmware-media-20210208-150300.4.22.1
kernel-firmware-mediatek-20210208-150300.4.22.1
kernel-firmware-mellanox-20210208-150300.4.22.1
kernel-firmware-mwifiex-20210208-150300.4.22.1
kernel-firmware-network-20210208-150300.4.22.1
kernel-firmware-nfp-20210208-150300.4.22.1
kernel-firmware-nvidia-20210208-150300.4.22.1
kernel-firmware-platform-20210208-150300.4.22.1
kernel-firmware-prestera-20210208-150300.4.22.1
kernel-firmware-qlogic-20210208-150300.4.22.1
kernel-firmware-radeon-20210208-150300.4.22.1
kernel-firmware-realtek-20210208-150300.4.22.1
kernel-firmware-serial-20210208-150300.4.22.1
kernel-firmware-sound-20210208-150300.4.22.1
kernel-firmware-ti-20210208-150300.4.22.1
kernel-firmware-ueagle-20210208-150300.4.22.1
kernel-firmware-usb-network-20210208-150300.4.22.1
ucode-amd-20210208-150300.4.22.1
SUSE Linux Enterprise Micro 5.2
kernel-firmware-all-20210208-150300.4.22.1
kernel-firmware-amdgpu-20210208-150300.4.22.1
kernel-firmware-ath10k-20210208-150300.4.22.1
kernel-firmware-ath11k-20210208-150300.4.22.1
kernel-firmware-atheros-20210208-150300.4.22.1
kernel-firmware-bluetooth-20210208-150300.4.22.1
kernel-firmware-bnx2-20210208-150300.4.22.1
kernel-firmware-brcm-20210208-150300.4.22.1
kernel-firmware-chelsio-20210208-150300.4.22.1
kernel-firmware-dpaa2-20210208-150300.4.22.1
kernel-firmware-i915-20210208-150300.4.22.1
kernel-firmware-intel-20210208-150300.4.22.1
kernel-firmware-iwlwifi-20210208-150300.4.22.1
kernel-firmware-liquidio-20210208-150300.4.22.1
kernel-firmware-marvell-20210208-150300.4.22.1
kernel-firmware-media-20210208-150300.4.22.1
kernel-firmware-mediatek-20210208-150300.4.22.1
kernel-firmware-mellanox-20210208-150300.4.22.1
kernel-firmware-mwifiex-20210208-150300.4.22.1
kernel-firmware-network-20210208-150300.4.22.1
kernel-firmware-nfp-20210208-150300.4.22.1
kernel-firmware-nvidia-20210208-150300.4.22.1
kernel-firmware-platform-20210208-150300.4.22.1
kernel-firmware-prestera-20210208-150300.4.22.1
kernel-firmware-qlogic-20210208-150300.4.22.1
kernel-firmware-radeon-20210208-150300.4.22.1
kernel-firmware-realtek-20210208-150300.4.22.1
kernel-firmware-serial-20210208-150300.4.22.1
kernel-firmware-sound-20210208-150300.4.22.1
kernel-firmware-ti-20210208-150300.4.22.1
kernel-firmware-ueagle-20210208-150300.4.22.1
kernel-firmware-usb-network-20210208-150300.4.22.1
ucode-amd-20210208-150300.4.22.1
SUSE Linux Enterprise Server 15 SP3-LTSS
kernel-firmware-20210208-150300.4.22.1
kernel-firmware-brcm-20210208-150300.4.22.1
ucode-amd-20210208-150300.4.22.1
SUSE Linux Enterprise Server for SAP Applications 15 SP3
kernel-firmware-20210208-150300.4.22.1
ucode-amd-20210208-150300.4.22.1
Ссылки
- Link for SUSE-SU-2024:2943-1
- E-Mail link for SUSE-SU-2024:2943-1
- SUSE Security Ratings
- SUSE Bug 1229069
- SUSE CVE CVE-2023-31315 page
Описание
Improper validation in a model specific register (MSR) could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution.
Затронутые продукты
Container suse/sle-micro-rancher/5.2:latest:kernel-firmware-bnx2-20210208-150300.4.22.1
Container suse/sle-micro-rancher/5.2:latest:kernel-firmware-chelsio-20210208-150300.4.22.1
Container suse/sle-micro-rancher/5.2:latest:kernel-firmware-i915-20210208-150300.4.22.1
Container suse/sle-micro-rancher/5.2:latest:kernel-firmware-intel-20210208-150300.4.22.1
Ссылки
- CVE-2023-31315
- SUSE Bug 1229069