SUSE-SU-2024:3081-1

Опубликовано: 02 сент. 2024

Источник: suse-cvrf

Описание

Security update for kernel-firmware

This update for kernel-firmware fixes the following issues:

CVE-2023-31315: Fixed validation in a model specific register (MSR) that lead to modification of SMM configuration by malicious program with ring0 access (bsc#1229069)

Список пакетов

Container suse/sle-micro/5.5:latest

kernel-firmware-all-20230724-150500.3.12.1

kernel-firmware-amdgpu-20230724-150500.3.12.1

kernel-firmware-ath10k-20230724-150500.3.12.1

kernel-firmware-ath11k-20230724-150500.3.12.1

kernel-firmware-atheros-20230724-150500.3.12.1

kernel-firmware-bluetooth-20230724-150500.3.12.1

kernel-firmware-bnx2-20230724-150500.3.12.1

kernel-firmware-brcm-20230724-150500.3.12.1

kernel-firmware-chelsio-20230724-150500.3.12.1

kernel-firmware-dpaa2-20230724-150500.3.12.1

kernel-firmware-i915-20230724-150500.3.12.1

kernel-firmware-intel-20230724-150500.3.12.1

kernel-firmware-iwlwifi-20230724-150500.3.12.1

kernel-firmware-liquidio-20230724-150500.3.12.1

kernel-firmware-marvell-20230724-150500.3.12.1

kernel-firmware-media-20230724-150500.3.12.1

kernel-firmware-mediatek-20230724-150500.3.12.1

kernel-firmware-mellanox-20230724-150500.3.12.1

kernel-firmware-mwifiex-20230724-150500.3.12.1

kernel-firmware-network-20230724-150500.3.12.1

kernel-firmware-nfp-20230724-150500.3.12.1

kernel-firmware-nvidia-20230724-150500.3.12.1

kernel-firmware-platform-20230724-150500.3.12.1

kernel-firmware-prestera-20230724-150500.3.12.1

kernel-firmware-qcom-20230724-150500.3.12.1

kernel-firmware-qlogic-20230724-150500.3.12.1

kernel-firmware-radeon-20230724-150500.3.12.1

kernel-firmware-realtek-20230724-150500.3.12.1

kernel-firmware-serial-20230724-150500.3.12.1

kernel-firmware-sound-20230724-150500.3.12.1

kernel-firmware-ti-20230724-150500.3.12.1

kernel-firmware-ueagle-20230724-150500.3.12.1

kernel-firmware-usb-network-20230724-150500.3.12.1

Image SLES15-SP5-SAP-Azure-LI-BYOS

kernel-firmware-20230724-150500.3.12.1

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

kernel-firmware-20230724-150500.3.12.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS

kernel-firmware-20230724-150500.3.12.1

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

kernel-firmware-20230724-150500.3.12.1

SUSE Linux Enterprise Micro 5.5

kernel-firmware-all-20230724-150500.3.12.1

kernel-firmware-amdgpu-20230724-150500.3.12.1

kernel-firmware-ath10k-20230724-150500.3.12.1

kernel-firmware-ath11k-20230724-150500.3.12.1

kernel-firmware-atheros-20230724-150500.3.12.1

kernel-firmware-bluetooth-20230724-150500.3.12.1

kernel-firmware-bnx2-20230724-150500.3.12.1

kernel-firmware-brcm-20230724-150500.3.12.1

kernel-firmware-chelsio-20230724-150500.3.12.1

kernel-firmware-dpaa2-20230724-150500.3.12.1

kernel-firmware-i915-20230724-150500.3.12.1

kernel-firmware-intel-20230724-150500.3.12.1

kernel-firmware-iwlwifi-20230724-150500.3.12.1

kernel-firmware-liquidio-20230724-150500.3.12.1

kernel-firmware-marvell-20230724-150500.3.12.1

kernel-firmware-media-20230724-150500.3.12.1

kernel-firmware-mediatek-20230724-150500.3.12.1

kernel-firmware-mellanox-20230724-150500.3.12.1

kernel-firmware-mwifiex-20230724-150500.3.12.1

kernel-firmware-network-20230724-150500.3.12.1

kernel-firmware-nfp-20230724-150500.3.12.1

kernel-firmware-nvidia-20230724-150500.3.12.1

kernel-firmware-platform-20230724-150500.3.12.1

kernel-firmware-prestera-20230724-150500.3.12.1

kernel-firmware-qcom-20230724-150500.3.12.1

kernel-firmware-qlogic-20230724-150500.3.12.1

kernel-firmware-radeon-20230724-150500.3.12.1

kernel-firmware-realtek-20230724-150500.3.12.1

kernel-firmware-serial-20230724-150500.3.12.1

kernel-firmware-sound-20230724-150500.3.12.1

kernel-firmware-ti-20230724-150500.3.12.1

kernel-firmware-ueagle-20230724-150500.3.12.1

kernel-firmware-usb-network-20230724-150500.3.12.1

ucode-amd-20230724-150500.3.12.1

SUSE Linux Enterprise Module for Basesystem 15 SP5

kernel-firmware-all-20230724-150500.3.12.1

kernel-firmware-amdgpu-20230724-150500.3.12.1

kernel-firmware-ath10k-20230724-150500.3.12.1

kernel-firmware-ath11k-20230724-150500.3.12.1

kernel-firmware-atheros-20230724-150500.3.12.1

kernel-firmware-bluetooth-20230724-150500.3.12.1

kernel-firmware-bnx2-20230724-150500.3.12.1

kernel-firmware-brcm-20230724-150500.3.12.1

kernel-firmware-chelsio-20230724-150500.3.12.1

kernel-firmware-dpaa2-20230724-150500.3.12.1

kernel-firmware-i915-20230724-150500.3.12.1

kernel-firmware-intel-20230724-150500.3.12.1

kernel-firmware-iwlwifi-20230724-150500.3.12.1

kernel-firmware-liquidio-20230724-150500.3.12.1

kernel-firmware-marvell-20230724-150500.3.12.1

kernel-firmware-media-20230724-150500.3.12.1

kernel-firmware-mediatek-20230724-150500.3.12.1

kernel-firmware-mellanox-20230724-150500.3.12.1

kernel-firmware-mwifiex-20230724-150500.3.12.1

kernel-firmware-network-20230724-150500.3.12.1

kernel-firmware-nfp-20230724-150500.3.12.1

kernel-firmware-nvidia-20230724-150500.3.12.1

kernel-firmware-platform-20230724-150500.3.12.1

kernel-firmware-prestera-20230724-150500.3.12.1

kernel-firmware-qcom-20230724-150500.3.12.1

kernel-firmware-qlogic-20230724-150500.3.12.1

kernel-firmware-radeon-20230724-150500.3.12.1

kernel-firmware-realtek-20230724-150500.3.12.1

kernel-firmware-serial-20230724-150500.3.12.1

kernel-firmware-sound-20230724-150500.3.12.1

kernel-firmware-ti-20230724-150500.3.12.1

kernel-firmware-ueagle-20230724-150500.3.12.1

kernel-firmware-usb-network-20230724-150500.3.12.1

ucode-amd-20230724-150500.3.12.1

openSUSE Leap 15.5

kernel-firmware-20230724-150500.3.12.1

kernel-firmware-all-20230724-150500.3.12.1

kernel-firmware-amdgpu-20230724-150500.3.12.1

kernel-firmware-ath10k-20230724-150500.3.12.1

kernel-firmware-ath11k-20230724-150500.3.12.1

kernel-firmware-atheros-20230724-150500.3.12.1

kernel-firmware-bluetooth-20230724-150500.3.12.1

kernel-firmware-bnx2-20230724-150500.3.12.1

kernel-firmware-brcm-20230724-150500.3.12.1

kernel-firmware-chelsio-20230724-150500.3.12.1

kernel-firmware-dpaa2-20230724-150500.3.12.1

kernel-firmware-i915-20230724-150500.3.12.1

kernel-firmware-intel-20230724-150500.3.12.1

kernel-firmware-iwlwifi-20230724-150500.3.12.1

kernel-firmware-liquidio-20230724-150500.3.12.1

kernel-firmware-marvell-20230724-150500.3.12.1

kernel-firmware-media-20230724-150500.3.12.1

kernel-firmware-mediatek-20230724-150500.3.12.1

kernel-firmware-mellanox-20230724-150500.3.12.1

kernel-firmware-mwifiex-20230724-150500.3.12.1

kernel-firmware-network-20230724-150500.3.12.1

kernel-firmware-nfp-20230724-150500.3.12.1

kernel-firmware-nvidia-20230724-150500.3.12.1

kernel-firmware-platform-20230724-150500.3.12.1

kernel-firmware-prestera-20230724-150500.3.12.1

kernel-firmware-qcom-20230724-150500.3.12.1

kernel-firmware-qlogic-20230724-150500.3.12.1

kernel-firmware-radeon-20230724-150500.3.12.1

kernel-firmware-realtek-20230724-150500.3.12.1

kernel-firmware-serial-20230724-150500.3.12.1

kernel-firmware-sound-20230724-150500.3.12.1

kernel-firmware-ti-20230724-150500.3.12.1

kernel-firmware-ueagle-20230724-150500.3.12.1

kernel-firmware-usb-network-20230724-150500.3.12.1

ucode-amd-20230724-150500.3.12.1

openSUSE Leap Micro 5.5

kernel-firmware-all-20230724-150500.3.12.1

kernel-firmware-amdgpu-20230724-150500.3.12.1

kernel-firmware-ath10k-20230724-150500.3.12.1

kernel-firmware-ath11k-20230724-150500.3.12.1

kernel-firmware-atheros-20230724-150500.3.12.1

kernel-firmware-bluetooth-20230724-150500.3.12.1

kernel-firmware-bnx2-20230724-150500.3.12.1

kernel-firmware-brcm-20230724-150500.3.12.1

kernel-firmware-chelsio-20230724-150500.3.12.1

kernel-firmware-dpaa2-20230724-150500.3.12.1

kernel-firmware-i915-20230724-150500.3.12.1

kernel-firmware-intel-20230724-150500.3.12.1

kernel-firmware-iwlwifi-20230724-150500.3.12.1

kernel-firmware-liquidio-20230724-150500.3.12.1

kernel-firmware-marvell-20230724-150500.3.12.1

kernel-firmware-media-20230724-150500.3.12.1

kernel-firmware-mediatek-20230724-150500.3.12.1

kernel-firmware-mellanox-20230724-150500.3.12.1

kernel-firmware-mwifiex-20230724-150500.3.12.1

kernel-firmware-network-20230724-150500.3.12.1

kernel-firmware-nfp-20230724-150500.3.12.1

kernel-firmware-nvidia-20230724-150500.3.12.1

kernel-firmware-platform-20230724-150500.3.12.1

kernel-firmware-prestera-20230724-150500.3.12.1

kernel-firmware-qcom-20230724-150500.3.12.1

kernel-firmware-qlogic-20230724-150500.3.12.1

kernel-firmware-radeon-20230724-150500.3.12.1

kernel-firmware-realtek-20230724-150500.3.12.1

kernel-firmware-serial-20230724-150500.3.12.1

kernel-firmware-sound-20230724-150500.3.12.1

kernel-firmware-ti-20230724-150500.3.12.1

kernel-firmware-ueagle-20230724-150500.3.12.1

kernel-firmware-usb-network-20230724-150500.3.12.1

ucode-amd-20230724-150500.3.12.1

Ссылки

https://www.suse.com/support/update/announcement/2024/suse-su-20243081-1/
Link for SUSE-SU-2024:3081-1
https://lists.suse.com/pipermail/sle-updates/2024-September/036721.html
E-Mail link for SUSE-SU-2024:3081-1
https://www.suse.com/support/security/rating/
SUSE Security Ratings
https://bugzilla.suse.com/1229069
SUSE Bug 1229069
https://www.suse.com/security/cve/CVE-2023-31315/
SUSE CVE CVE-2023-31315 page

Описание

Improper validation in a model specific register (MSR) could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution.

Затронутые продукты

Container suse/sle-micro/5.5:latest:kernel-firmware-all-20230724-150500.3.12.1

Container suse/sle-micro/5.5:latest:kernel-firmware-amdgpu-20230724-150500.3.12.1

Container suse/sle-micro/5.5:latest:kernel-firmware-ath10k-20230724-150500.3.12.1

Container suse/sle-micro/5.5:latest:kernel-firmware-ath11k-20230724-150500.3.12.1

Ссылки

https://www.suse.com/security/cve/CVE-2023-31315.html
CVE-2023-31315
https://bugzilla.suse.com/1229069
SUSE Bug 1229069

SUSE-SU-2024:3081-1

Описание

Список пакетов

Container suse/sle-micro/5.5:latest

Image SLES15-SP5-SAP-Azure-LI-BYOS

Image SLES15-SP5-SAP-Azure-LI-BYOS-Production

Image SLES15-SP5-SAP-Azure-VLI-BYOS

Image SLES15-SP5-SAP-Azure-VLI-BYOS-Production

SUSE Linux Enterprise Micro 5.5

SUSE Linux Enterprise Module for Basesystem 15 SP5

openSUSE Leap 15.5

openSUSE Leap Micro 5.5

Ссылки

Уязвимость: CVE-2023-31315

Описание

Затронутые продукты

Ссылки