[SUSE-SU-2023:3773-1] Security update for the Linux Kernel RT (Live Patch 9 for SLE 15 SP4)
Severity
Important
CVEs
4
Security update for the Linux Kernel RT (Live Patch 9 for SLE 15 SP4)
This update for the Linux Kernel 5.14.21-150400_15_40 fixes several issues.
The following security issues were fixed:
- CVE-2023-3776: Fixed improper refcount update in cls_fw leads to use-after-free (bsc#1215119).
- CVE-2023-4273: Fixed a flaw in the exFAT driver of the Linux kernel that alloawed a local privileged attacker to overflow the kernel stack (bsc#1214123).
- CVE-2023-3609: Fixed reference counter leak leading to overflow in net/sched (bsc#1213587).
- CVE-2023-31248: Fixed an use-after-free vulnerability in nft_chain_lookup_byid that could allow a local attacker to escalate their privilege (bsc#1213064).
- ID
- SUSE-SU-2023:3773-1
- Severity
- important
- URL
- https://www.suse.com/support/update/announcement/2023/suse-su-20233773-1/
- Published
-
2023-09-26T04:04:50
(11 months ago) - Modified
-
2023-09-26T04:04:50
(11 months ago) - Rights
- Copyright 2024 SUSE LLC. All rights reserved.
- Other Advisories
-
-
ALAS-2023-1792
-
ALAS2-2023-2179
-
ALSA-2023:5069
-
ALSA-2023:5244
-
ALSA-2023:7077
-
DSA-5453-1
-
DSA-5480-1
-
DSA-5492-1
-
ELSA-2023-12842
-
ELSA-2023-5069
-
ELSA-2023-5244
-
ELSA-2023-5622
-
ELSA-2023-6583
-
ELSA-2023-7077
-
ELSA-2023-7423
-
ELSA-2024-1831
-
FEDORA-2023-3661f028b8
-
FEDORA-2023-d9509be489
-
FEDORA-2023-e4e985b5dd
-
FEDORA-2023-ee241dcf80
-
MS:CVE-2023-3609
-
MS:CVE-2023-3776
-
RHSA-2023:5069
-
RHSA-2023:5091
-
RHSA-2023:5093
-
RHSA-2023:5221
-
RHSA-2023:5244
-
RHSA-2023:5255
-
RHSA-2023:5574
-
RHSA-2023:5621
-
RHSA-2023:5622
-
RHSA-2023:6901
-
RHSA-2023:7077
-
RHSA-2023:7419
-
RHSA-2023:7423
-
RHSA-2023:7424
-
RLSA-2023:5244
-
SSA:2023-325-01
-
SUSE-SU-2023:3171-1
-
SUSE-SU-2023:3172-1
-
SUSE-SU-2023:3180-1
-
SUSE-SU-2023:3182-1
-
SUSE-SU-2023:3302-1
-
SUSE-SU-2023:3309-1
-
SUSE-SU-2023:3311-1
-
SUSE-SU-2023:3313-1
-
SUSE-SU-2023:3318-1
-
SUSE-SU-2023:3324-1
-
SUSE-SU-2023:3329-1
-
SUSE-SU-2023:3333-1
-
SUSE-SU-2023:3349-1
-
SUSE-SU-2023:3376-1
-
SUSE-SU-2023:3377-1
-
SUSE-SU-2023:3390-1
-
SUSE-SU-2023:3391-1
-
SUSE-SU-2023:3392-1
-
SUSE-SU-2023:3421-1
-
SUSE-SU-2023:3599-1
-
SUSE-SU-2023:3599-2
-
SUSE-SU-2023:3600-1
-
SUSE-SU-2023:3600-2
-
SUSE-SU-2023:3656-1
-
SUSE-SU-2023:3682-1
-
SUSE-SU-2023:3683-1
-
SUSE-SU-2023:3684-1
-
SUSE-SU-2023:3687-1
-
SUSE-SU-2023:3704-1
-
SUSE-SU-2023:3749-1
-
SUSE-SU-2023:3768-1
-
SUSE-SU-2023:3772-1
-
SUSE-SU-2023:3783-1
-
SUSE-SU-2023:3784-1
-
SUSE-SU-2023:3785-1
-
SUSE-SU-2023:3786-1
-
SUSE-SU-2023:3788-1
-
SUSE-SU-2023:3806-1
-
SUSE-SU-2023:3809-1
-
SUSE-SU-2023:3812-1
-
SUSE-SU-2023:3838-1
-
SUSE-SU-2023:3844-1
-
SUSE-SU-2023:3846-1
-
SUSE-SU-2023:3889-1
-
SUSE-SU-2023:3891-1
-
SUSE-SU-2023:3892-1
-
SUSE-SU-2023:3893-1
-
SUSE-SU-2023:3912-1
-
SUSE-SU-2023:3922-1
-
SUSE-SU-2023:3923-1
-
SUSE-SU-2023:3924-1
-
SUSE-SU-2023:3928-1
-
SUSE-SU-2023:3929-1
-
SUSE-SU-2023:3964-1
-
SUSE-SU-2023:3969-1
-
SUSE-SU-2023:3971-1
-
SUSE-SU-2023:3988-1
-
USN-6246-1
-
USN-6247-1
-
USN-6248-1
-
USN-6250-1
-
USN-6255-1
-
USN-6260-1
-
USN-6285-1
-
USN-6309-1
-
USN-6315-1
-
USN-6317-1
-
USN-6318-1
-
USN-6321-1
-
USN-6324-1
-
USN-6325-1
-
USN-6327-1
-
USN-6328-1
-
USN-6329-1
-
USN-6330-1
-
USN-6331-1
-
USN-6332-1
-
USN-6341-1
-
USN-6342-1
-
USN-6342-2
-
USN-6343-1
-
USN-6346-1
-
USN-6348-1
-
USN-6357-1
-
USN-6385-1
-
USN-6397-1
-
USN-6412-1
-
USN-6416-1
-
USN-6416-2
-
USN-6416-3
-
USN-6445-1
-
USN-6445-2
-
USN-6466-1
-
| Source | # ID | Name | URL |
|---|---|---|---|
| Suse | SUSE ratings |
|
|
| Suse | URL of this CSAF notice |
|
|
| Suse | URL for SUSE-SU-2023:3773-1 |
|
|
| Suse | E-Mail link for SUSE-SU-2023:3773-1 |
|
|
| Bugzilla | SUSE Bug 1213064 |
|
|
| Bugzilla | SUSE Bug 1213587 |
|
|
| Bugzilla | SUSE Bug 1214123 |
|
|
| Bugzilla | SUSE Bug 1215119 |
|
|
| CVE | SUSE CVE CVE-2023-31248 page |
|
|
| CVE | SUSE CVE CVE-2023-3609 page |
|
|
| CVE | SUSE CVE CVE-2023-3776 page |
|
|
| CVE | SUSE CVE CVE-2023-4273 page |
|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | Exploits | PoC | Pubblication Date | Modification Date |
|---|---|---|---|---|---|---|---|---|---|---|---|
| # CVE | Description | CVSS | EPSS | EPSS Trend (30 days) | Affected Products | Weaknesses | Security Advisories | PoC | Pubblication Date | Modification Date |