[ELSA-2023-5069] kernel security, bug fix, and enhancement update
Severity
Important
Affected Packages
27
CVEs
8
- [5.14.0-284.30.0.1_2.OL9]
- x86/tsx: Add a feature bit for TSX control MSR support {CVE-2023-1637}
- x86/speculation: Restore speculation related MSRs {CVE-2023-1637}
- x86/pm: Save the MSR validity status at context setup {CVE-2023-1637}
- x86/pm: Fix false positive kmemleak report in msr_build_context() {CVE-2023-1637}
- x86/cpu: Restore AMD's DE_CFG MSR after resume {CVE-2023-1637}
- x86/pm: Add enumeration check before spec MSRs {CVE-2023-1637}
- arm64: efi: Execute runtime services from a dedicated {CVE-2023-21102}
- netfilter: nf_tables: incorrect error path handling with NFT_MSG_NEWRULE {CVE-2023-3390}
- netfilter: nf_tables: add NFT_TRANS_PREPARE_ERROR to deal with bound set/chain {CVE-2023-3390}
- netfilter: nf_tables: unbind non-anonymous set if rule construction fails {CVE-2023-3390}
- netfilter: nf_tables: disallow rule addition to bound chain via NFTA_RULE_CHAIN_ID {CVE-2023-4147}
- netfilter: nf_tables: do not ignore genmask when looking up chain by id {CVE-2023-31248}
- netfilter: nf_tables: prevent OOB access in nft_byteorder_eval {CVE-2023-35001}
- netfilter: nft_set_pipapo: fix improper element removal {CVE-2023-4004}
- net/sched: cls_fw: Fix improper refcount update leads to use-after-free {CVE-2023-3776}
- ID
- ELSA-2023-5069
- Severity
- important
- URL
- https://linux.oracle.com/errata/ELSA-2023-5069.html
- Published
-
2023-09-15T00:00:00
(12 months ago) - Modified
-
2023-09-15T00:00:00
(12 months ago) - Rights
- Copyright 2023 Oracle, Inc.
- Other Advisories
-
-
ALAS-2022-1591
-
ALAS-2023-1783
-
ALAS-2023-1792
-
ALAS-2023-1827
-
ALAS2-2022-1793
-
ALAS2-2023-2130
-
ALAS2-2023-2179
-
ALAS2-2023-2268
-
ALAS2-2024-2569
-
ALSA-2023:5069
-
ALSA-2023:5244
-
DSA-5448-1
-
DSA-5453-1
-
DSA-5461-1
-
DSA-5480-1
-
DSA-5492-1
-
ELSA-2023-12839
-
ELSA-2023-12842
-
ELSA-2023-5244
-
ELSA-2023-5622
-
ELSA-2023-7423
-
ELSA-2024-1831
-
FEDORA-2023-3661f028b8
-
FEDORA-2023-e4e985b5dd
-
MS:CVE-2023-3776
-
MS:CVE-2023-4004
-
MS:CVE-2023-4147
-
RHSA-2023:5069
-
RHSA-2023:5091
-
RHSA-2023:5093
-
RHSA-2023:5221
-
RHSA-2023:5244
-
RHSA-2023:5255
-
RHSA-2023:5574
-
RHSA-2023:5621
-
RHSA-2023:5622
-
RHSA-2023:7419
-
RHSA-2023:7423
-
RHSA-2023:7424
-
RLSA-2023:5244
-
SSA:2023-325-01
-
SUSE-SU-2023:1802-1
-
SUSE-SU-2023:1897-1
-
SUSE-SU-2023:1992-1
-
SUSE-SU-2023:2502-1
-
SUSE-SU-2023:2611-1
-
SUSE-SU-2023:2646-1
-
SUSE-SU-2023:2651-1
-
SUSE-SU-2023:2782-1
-
SUSE-SU-2023:2804-1
-
SUSE-SU-2023:2808-1
-
SUSE-SU-2023:2809-1
-
SUSE-SU-2023:2820-1
-
SUSE-SU-2023:2822-1
-
SUSE-SU-2023:2830-1
-
SUSE-SU-2023:2831-1
-
SUSE-SU-2023:2871-1
-
SUSE-SU-2023:3006-1
-
SUSE-SU-2023:3171-1
-
SUSE-SU-2023:3172-1
-
SUSE-SU-2023:3180-1
-
SUSE-SU-2023:3182-1
-
SUSE-SU-2023:3302-1
-
SUSE-SU-2023:3309-1
-
SUSE-SU-2023:3311-1
-
SUSE-SU-2023:3313-1
-
SUSE-SU-2023:3318-1
-
SUSE-SU-2023:3324-1
-
SUSE-SU-2023:3329-1
-
SUSE-SU-2023:3333-1
-
SUSE-SU-2023:3349-1
-
SUSE-SU-2023:3376-1
-
SUSE-SU-2023:3377-1
-
SUSE-SU-2023:3390-1
-
SUSE-SU-2023:3391-1
-
SUSE-SU-2023:3392-1
-
SUSE-SU-2023:3421-1
-
SUSE-SU-2023:3566-1
-
SUSE-SU-2023:3571-1
-
SUSE-SU-2023:3572-1
-
SUSE-SU-2023:3576-1
-
SUSE-SU-2023:3582-1
-
SUSE-SU-2023:3585-1
-
SUSE-SU-2023:3592-1
-
SUSE-SU-2023:3594-1
-
SUSE-SU-2023:3595-1
-
SUSE-SU-2023:3596-1
-
SUSE-SU-2023:3598-1
-
SUSE-SU-2023:3599-1
-
SUSE-SU-2023:3599-2
-
SUSE-SU-2023:3600-1
-
SUSE-SU-2023:3600-2
-
SUSE-SU-2023:3603-1
-
SUSE-SU-2023:3607-1
-
SUSE-SU-2023:3612-1
-
SUSE-SU-2023:3620-1
-
SUSE-SU-2023:3621-1
-
SUSE-SU-2023:3622-1
-
SUSE-SU-2023:3623-1
-
SUSE-SU-2023:3627-1
-
SUSE-SU-2023:3628-1
-
SUSE-SU-2023:3629-1
-
SUSE-SU-2023:3630-1
-
SUSE-SU-2023:3631-1
-
SUSE-SU-2023:3632-1
-
SUSE-SU-2023:3644-1
-
SUSE-SU-2023:3647-1
-
SUSE-SU-2023:3648-1
-
SUSE-SU-2023:3653-1
-
SUSE-SU-2023:3656-1
-
SUSE-SU-2023:3657-1
-
SUSE-SU-2023:3659-1
-
SUSE-SU-2023:3668-1
-
SUSE-SU-2023:3671-1
-
SUSE-SU-2023:3675-1
-
SUSE-SU-2023:3676-1
-
SUSE-SU-2023:3677-1
-
SUSE-SU-2023:3682-1
-
SUSE-SU-2023:3683-1
-
SUSE-SU-2023:3684-1
-
SUSE-SU-2023:3704-1
-
SUSE-SU-2023:3749-1
-
SUSE-SU-2023:3768-1
-
SUSE-SU-2023:3772-1
-
SUSE-SU-2023:3773-1
-
SUSE-SU-2023:3783-1
-
SUSE-SU-2023:3784-1
-
SUSE-SU-2023:3785-1
-
SUSE-SU-2023:3786-1
-
SUSE-SU-2023:3788-1
-
SUSE-SU-2023:3809-1
-
SUSE-SU-2023:3812-1
-
SUSE-SU-2023:3838-1
-
SUSE-SU-2023:3844-1
-
SUSE-SU-2023:3846-1
-
SUSE-SU-2023:3889-1
-
SUSE-SU-2023:3892-1
-
SUSE-SU-2023:3893-1
-
SUSE-SU-2023:3922-1
-
SUSE-SU-2023:3923-1
-
SUSE-SU-2023:3924-1
-
SUSE-SU-2023:3928-1
-
SUSE-SU-2023:3964-1
-
SUSE-SU-2023:3969-1
-
SUSE-SU-2023:3971-1
-
SUSE-SU-2023:3988-1
-
SUSE-SU-2023:4095-1
-
SUSE-SU-2023:4142-1
-
SUSE-SU-2023:4165-1
-
SUSE-SU-2023:4166-1
-
SUSE-SU-2023:4175-1
-
SUSE-SU-2023:4201-1
-
SUSE-SU-2023:4219-1
-
SUSE-SU-2023:4239-1
-
SUSE-SU-2023:4245-1
-
SUSE-SU-2023:4260-1
-
SUSE-SU-2023:4261-1
-
SUSE-SU-2023:4267-1
-
SUSE-SU-2023:4279-1
-
SUSE-SU-2023:4285-1
-
SUSE-SU-2023:4301-1
-
SUSE-SU-2023:4308-1
-
SUSE-SU-2023:4322-1
-
SUSE-SU-2023:4325-1
-
SUSE-SU-2023:4326-1
-
USN-6079-1
-
USN-6091-1
-
USN-6096-1
-
USN-6134-1
-
USN-6246-1
-
USN-6247-1
-
USN-6248-1
-
USN-6250-1
-
USN-6251-1
-
USN-6252-1
-
USN-6254-1
-
USN-6255-1
-
USN-6260-1
-
USN-6261-1
-
USN-6285-1
-
USN-6309-1
-
USN-6315-1
-
USN-6316-1
-
USN-6317-1
-
USN-6318-1
-
USN-6321-1
-
USN-6324-1
-
USN-6325-1
-
USN-6327-1
-
USN-6328-1
-
USN-6329-1
-
USN-6330-1
-
USN-6331-1
-
USN-6332-1
-
USN-6341-1
-
USN-6342-1
-
USN-6342-2
-
USN-6346-1
-
USN-6348-1
-
USN-6357-1
-
USN-6385-1
-
USN-6397-1
-
USN-6442-1
-
USN-6460-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| elsa | ELSA-2023-5069 |
|
|
| CVE | CVE-2023-1637 |
|
|
| CVE | CVE-2023-3776 |
|
|
| CVE | CVE-2023-21102 |
|
|
| CVE | CVE-2023-4147 |
|
|
| CVE | CVE-2023-35001 |
|
|
| CVE | CVE-2023-3390 |
|
|
| CVE | CVE-2023-31248 |
|
|
| CVE | CVE-2023-4004 |
|
| Type | Package URL | Namespace | Name / Product | Version | Distribution / Platform | Arch | Patch / Fix |
|---|---|---|---|---|---|---|---|
| Affected | pkg:rpm/oraclelinux/rtla?distro=oraclelinux-9.2 | oraclelinux |
 rtla
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/python3-perf?distro=oraclelinux-9.2 | oraclelinux |
python3-perf
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/perf?distro=oraclelinux-9.2 | oraclelinux |
perf
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel?distro=oraclelinux-9.2 | oraclelinux |
kernel
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-uki-virt?distro=oraclelinux-9.2 | oraclelinux |
kernel-uki-virt
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools?distro=oraclelinux-9.2 | oraclelinux |
kernel-tools
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools-libs?distro=oraclelinux-9.2 | oraclelinux |
kernel-tools-libs
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-tools-libs-devel?distro=oraclelinux-9.2 | oraclelinux |
kernel-tools-libs-devel
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-modules?distro=oraclelinux-9.2 | oraclelinux |
kernel-modules
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-modules-extra?distro=oraclelinux-9.2 | oraclelinux |
kernel-modules-extra
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-modules-core?distro=oraclelinux-9.2 | oraclelinux |
kernel-modules-core
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-headers?distro=oraclelinux-9.2 | oraclelinux |
kernel-headers
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-doc?distro=oraclelinux-9.2 | oraclelinux |
kernel-doc
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-devel?distro=oraclelinux-9.2 | oraclelinux |
kernel-devel
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-devel-matched?distro=oraclelinux-9.2 | oraclelinux |
kernel-devel-matched
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug?distro=oraclelinux-9.2 | oraclelinux |
kernel-debug
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-uki-virt?distro=oraclelinux-9.2 | oraclelinux |
kernel-debug-uki-virt
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-modules?distro=oraclelinux-9.2 | oraclelinux |
kernel-debug-modules
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-modules-extra?distro=oraclelinux-9.2 | oraclelinux |
kernel-debug-modules-extra
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-modules-core?distro=oraclelinux-9.2 | oraclelinux |
kernel-debug-modules-core
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-devel?distro=oraclelinux-9.2 | oraclelinux |
kernel-debug-devel
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-devel-matched?distro=oraclelinux-9.2 | oraclelinux |
kernel-debug-devel-matched
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-debug-core?distro=oraclelinux-9.2 | oraclelinux |
kernel-debug-core
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-cross-headers?distro=oraclelinux-9.2 | oraclelinux |
kernel-cross-headers
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-core?distro=oraclelinux-9.2 | oraclelinux |
kernel-core
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/kernel-abi-stablelists?distro=oraclelinux-9.2 | oraclelinux |
kernel-abi-stablelists
|
< 5.14.0-284.30.0.1.el9_2 | oraclelinux-9.2 | ||
| Affected | pkg:rpm/oraclelinux/bpftool?distro=oraclelinux-9.2 | oraclelinux |
bpftool
|
< 7.0.0-284.30.0.1.el9_2 | oraclelinux-9.2 |
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |