SUSE-SU-2023:4348-1: important: Security update for the Linux Kernel
# Security update for the Linux Kernel Announcement ID: SUSE-SU-2023:4348-1 Rating: important References: * bsc#1210778 * bsc#1210853 * bsc#1212051 * bsc#1214842 * bsc#1215095 * bsc#1215467 * bsc#1215518 * bsc#1215745 * bsc#1215858 * bsc#1215860 * bsc#1215861 * bsc#1216046 * bsc#1216051 * bsc#1216134 Cross-References: * CVE-2023-2163 * CVE-2023-31085 * CVE-2023-3111 * CVE-2023-34324 * CVE-2023-3777 * CVE-2023-39189 * CVE-2023-39192 * CVE-2023-39193 * CVE-2023-39194 * CVE-2023-42754 * CVE-2023-45862 CVSS scores: * CVE-2023-2163 ( SUSE ): 7.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N * CVE-2023-2163 ( NVD ): 10.0 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:N * CVE-2023-31085 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-31085 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-3111 ( SUSE ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3111 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-34324 ( SUSE ): 5.7 CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-3777 ( SUSE ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-3777 ( NVD ): 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H * CVE-2023-39189 ( SUSE ): 4.4 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N * CVE-2023-39189 ( NVD ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2023-39192 ( SUSE ): 6.0 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:H * CVE-2023-39192 ( NVD ): 6.7 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L * CVE-2023-39193 ( SUSE ): 5.1 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:L * CVE-2023-39193 ( NVD ): 6.1 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:L * CVE-2023-39194 ( SUSE ): 3.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N * CVE-2023-39194 ( NVD ): 3.2 CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:L/I:N/A:N * CVE-2023-42754 ( SUSE ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-42754 ( NVD ): 5.5 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H * CVE-2023-45862 ( SUSE ): 6.4 CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H * CVE-2023-45862 ( NVD ): 7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H Affected Products: * openSUSE Leap 15.3 * openSUSE Leap 15.4 * SUSE Enterprise Storage 7.1 * SUSE Linux Enterprise High Availability Extension 15 SP3 * SUSE Linux Enterprise High Performance Computing 15 SP3 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 * SUSE Linux Enterprise Live Patching 15-SP3 * SUSE Linux Enterprise Micro 5.1 * SUSE Linux Enterprise Micro 5.2 * SUSE Linux Enterprise Micro for Rancher 5.2 * SUSE Linux Enterprise Server 15 SP3 * SUSE Linux Enterprise Server 15 SP3 Business Critical Linux 15-SP3 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 * SUSE Manager Proxy 4.2 * SUSE Manager Retail Branch Server 4.2 * SUSE Manager Server 4.2 An update that solves 11 vulnerabilities and has three security fixes can now be installed. ## Description: The SUSE Linux Enterprise 15 SP3 kernel was updated to receive various security and bugfixes. The following security bugs were fixed: * CVE-2023-31085: Fixed a divide-by-zero error in do_div(sz,mtd->erasesize) that could cause a local DoS. (bsc#1210778) * CVE-2023-45862: Fixed an issue in the ENE UB6250 reader driver whwere an object could potentially extend beyond the end of an allocation causing. (bsc#1216051) * CVE-2023-2163: Fixed an incorrect verifier pruning in BPF that could lead to unsafe code paths being incorrectly marked as safe, resulting in arbitrary read/write in kernel memory, lateral privilege escalation, and container escape. (bsc#1215518) * CVE-2023-3777: Fixed a use-after-free vulnerability in netfilter: nf_tables component can be exploited to achieve local privilege escalation. (bsc#1215095) * CVE-2023-34324: Fixed a possible deadlock in Linux kernel event handling. (bsc#1215745). * CVE-2023-39189: Fixed a flaw in the Netfilter subsystem that could allow a local privileged (CAP_NET_ADMIN) attacker to trigger an out-of-bounds read, leading to a crash or information disclosure. (bsc#1216046) * CVE-2023-3111: Fixed a use-after-free vulnerability in prepare_to_relocate in fs/btrfs/relocation.c (bsc#1212051). * CVE-2023-39194: Fixed an out of bounds read in the XFRM subsystem (bsc#1215861). * CVE-2023-39193: Fixed an out of bounds read in the xtables subsystem (bsc#1215860). * CVE-2023-39192: Fixed an out of bounds read in the netfilter (bsc#1215858). * CVE-2023-42754: Fixed a NULL pointer dereference in the IPv4 stack that could lead to denial of service (bsc#1215467). The following non-security bugs were fixed: * bpf: propagate precision in ALU/ALU64 operations (git-fixes). * KVM: x86: fix sending PV IPI (git-fixes, bsc#1210853, bsc#1216134). * nvme-fc: Prevent null pointer dereference in nvme_fc_io_getuuid() (bsc#1214842). ## Special Instructions and Notes: * Please reboot the system after installing this update. ## Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST online_update or "zypper patch". Alternatively you can run the command listed for your product: * openSUSE Leap 15.3 zypper in -t patch SUSE-2023-4348=1 * openSUSE Leap 15.4 zypper in -t patch openSUSE-SLE-15.4-2023-4348=1 * SUSE Linux Enterprise Live Patching 15-SP3 zypper in -t patch SUSE-SLE-Module-Live-Patching-15-SP3-2023-4348=1 Please note that this is the initial kernel livepatch without fixes itself, this package is later updated by separate standalone kernel livepatch updates. * SUSE Linux Enterprise High Availability Extension 15 SP3 zypper in -t patch SUSE-SLE-Product-HA-15-SP3-2023-4348=1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-ESPOS-2023-4348=1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 zypper in -t patch SUSE-SLE-Product-HPC-15-SP3-LTSS-2023-4348=1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 zypper in -t patch SUSE-SLE-Product-SLES-15-SP3-LTSS-2023-4348=1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 zypper in -t patch SUSE-SLE-Product-SLES_SAP-15-SP3-2023-4348=1 * SUSE Manager Proxy 4.2 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Proxy-4.2-2023-4348=1 * SUSE Manager Retail Branch Server 4.2 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Retail-Branch- Server-4.2-2023-4348=1 * SUSE Manager Server 4.2 zypper in -t patch SUSE-SLE-Product-SUSE-Manager-Server-4.2-2023-4348=1 * SUSE Enterprise Storage 7.1 zypper in -t patch SUSE-Storage-7.1-2023-4348=1 * SUSE Linux Enterprise Micro 5.1 zypper in -t patch SUSE-SUSE-MicroOS-5.1-2023-4348=1 * SUSE Linux Enterprise Micro 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2023-4348=1 * SUSE Linux Enterprise Micro for Rancher 5.2 zypper in -t patch SUSE-SUSE-MicroOS-5.2-2023-4348=1 ## Package List: * openSUSE Leap 15.3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (noarch) * kernel-devel-5.3.18-150300.59.141.1 * kernel-source-vanilla-5.3.18-150300.59.141.1 * kernel-source-5.3.18-150300.59.141.1 * kernel-macros-5.3.18-150300.59.141.1 * kernel-docs-html-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (nosrc ppc64le x86_64) * kernel-debug-5.3.18-150300.59.141.2 * kernel-kvmsmall-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (ppc64le x86_64) * kernel-kvmsmall-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-debug-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-debug-devel-5.3.18-150300.59.141.2 * kernel-debug-debuginfo-5.3.18-150300.59.141.2 * kernel-debug-livepatch-devel-5.3.18-150300.59.141.2 * kernel-kvmsmall-debuginfo-5.3.18-150300.59.141.2 * kernel-kvmsmall-devel-5.3.18-150300.59.141.2 * kernel-debug-debugsource-5.3.18-150300.59.141.2 * kernel-kvmsmall-livepatch-devel-5.3.18-150300.59.141.2 * kernel-kvmsmall-debugsource-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64) * cluster-md-kmp-default-5.3.18-150300.59.141.2 * kselftests-kmp-default-5.3.18-150300.59.141.2 * kernel-default-extra-debuginfo-5.3.18-150300.59.141.2 * dlm-kmp-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-extra-5.3.18-150300.59.141.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-default-livepatch-5.3.18-150300.59.141.2 * kernel-obs-qa-5.3.18-150300.59.141.1 * cluster-md-kmp-default-debuginfo-5.3.18-150300.59.141.2 * reiserfs-kmp-default-5.3.18-150300.59.141.2 * kernel-default-optional-debuginfo-5.3.18-150300.59.141.2 * gfs2-kmp-default-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-syms-5.3.18-150300.59.141.1 * kernel-default-base-rebuild-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-default-optional-5.3.18-150300.59.141.2 * kernel-default-devel-5.3.18-150300.59.141.2 * kernel-obs-build-5.3.18-150300.59.141.2 * gfs2-kmp-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-livepatch-devel-5.3.18-150300.59.141.2 * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * dlm-kmp-default-5.3.18-150300.59.141.2 * ocfs2-kmp-default-5.3.18-150300.59.141.2 * kernel-obs-build-debugsource-5.3.18-150300.59.141.2 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-devel-debuginfo-5.3.18-150300.59.141.2 * ocfs2-kmp-default-debuginfo-5.3.18-150300.59.141.2 * kselftests-kmp-default-debuginfo-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (ppc64le s390x x86_64) * kernel-livepatch-SLE15-SP3_Update_38-debugsource-1-150300.7.3.2 * kernel-livepatch-5_3_18-150300_59_141-default-1-150300.7.3.2 * kernel-livepatch-5_3_18-150300_59_141-default-debuginfo-1-150300.7.3.2 * openSUSE Leap 15.3 (x86_64) * kernel-livepatch-5_3_18-150300_59_141-preempt-1-150300.7.3.2 * kernel-livepatch-5_3_18-150300_59_141-preempt-debuginfo-1-150300.7.3.2 * openSUSE Leap 15.3 (aarch64 x86_64) * kernel-preempt-devel-5.3.18-150300.59.141.2 * kselftests-kmp-preempt-debuginfo-5.3.18-150300.59.141.2 * dlm-kmp-preempt-debuginfo-5.3.18-150300.59.141.2 * ocfs2-kmp-preempt-5.3.18-150300.59.141.2 * gfs2-kmp-preempt-debuginfo-5.3.18-150300.59.141.2 * kselftests-kmp-preempt-5.3.18-150300.59.141.2 * cluster-md-kmp-preempt-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-optional-debuginfo-5.3.18-150300.59.141.2 * ocfs2-kmp-preempt-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-optional-5.3.18-150300.59.141.2 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.141.2 * reiserfs-kmp-preempt-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-livepatch-devel-5.3.18-150300.59.141.2 * dlm-kmp-preempt-5.3.18-150300.59.141.2 * kernel-preempt-extra-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-extra-5.3.18-150300.59.141.2 * kernel-preempt-debugsource-5.3.18-150300.59.141.2 * gfs2-kmp-preempt-5.3.18-150300.59.141.2 * reiserfs-kmp-preempt-5.3.18-150300.59.141.2 * cluster-md-kmp-preempt-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (nosrc s390x) * kernel-zfcpdump-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (s390x) * kernel-zfcpdump-debugsource-5.3.18-150300.59.141.2 * kernel-zfcpdump-debuginfo-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (nosrc) * dtb-aarch64-5.3.18-150300.59.141.1 * openSUSE Leap 15.3 (aarch64) * reiserfs-kmp-64kb-5.3.18-150300.59.141.2 * kselftests-kmp-64kb-5.3.18-150300.59.141.2 * gfs2-kmp-64kb-5.3.18-150300.59.141.2 * kernel-64kb-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-extra-debuginfo-5.3.18-150300.59.141.2 * kselftests-kmp-64kb-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-livepatch-devel-5.3.18-150300.59.141.2 * kernel-64kb-optional-5.3.18-150300.59.141.2 * dtb-al-5.3.18-150300.59.141.1 * dtb-exynos-5.3.18-150300.59.141.1 * cluster-md-kmp-64kb-debuginfo-5.3.18-150300.59.141.2 * dtb-xilinx-5.3.18-150300.59.141.1 * ocfs2-kmp-64kb-5.3.18-150300.59.141.2 * kernel-64kb-optional-debuginfo-5.3.18-150300.59.141.2 * dtb-cavium-5.3.18-150300.59.141.1 * dtb-apm-5.3.18-150300.59.141.1 * dtb-arm-5.3.18-150300.59.141.1 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.141.2 * dtb-altera-5.3.18-150300.59.141.1 * dtb-rockchip-5.3.18-150300.59.141.1 * kernel-64kb-devel-5.3.18-150300.59.141.2 * dtb-broadcom-5.3.18-150300.59.141.1 * dtb-zte-5.3.18-150300.59.141.1 * dtb-amd-5.3.18-150300.59.141.1 * dlm-kmp-64kb-5.3.18-150300.59.141.2 * cluster-md-kmp-64kb-5.3.18-150300.59.141.2 * dtb-renesas-5.3.18-150300.59.141.1 * kernel-64kb-debugsource-5.3.18-150300.59.141.2 * reiserfs-kmp-64kb-debuginfo-5.3.18-150300.59.141.2 * gfs2-kmp-64kb-debuginfo-5.3.18-150300.59.141.2 * dtb-marvell-5.3.18-150300.59.141.1 * dtb-amlogic-5.3.18-150300.59.141.1 * dlm-kmp-64kb-debuginfo-5.3.18-150300.59.141.2 * dtb-freescale-5.3.18-150300.59.141.1 * dtb-hisilicon-5.3.18-150300.59.141.1 * dtb-socionext-5.3.18-150300.59.141.1 * dtb-sprd-5.3.18-150300.59.141.1 * dtb-qcom-5.3.18-150300.59.141.1 * dtb-allwinner-5.3.18-150300.59.141.1 * kernel-64kb-extra-5.3.18-150300.59.141.2 * dtb-nvidia-5.3.18-150300.59.141.1 * dtb-mediatek-5.3.18-150300.59.141.1 * dtb-lg-5.3.18-150300.59.141.1 * ocfs2-kmp-64kb-debuginfo-5.3.18-150300.59.141.2 * openSUSE Leap 15.3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.141.2 * openSUSE Leap 15.4 (nosrc) * dtb-aarch64-5.3.18-150300.59.141.1 * openSUSE Leap 15.4 (aarch64) * dtb-al-5.3.18-150300.59.141.1 * dtb-zte-5.3.18-150300.59.141.1 * SUSE Linux Enterprise Live Patching 15-SP3 (nosrc) * kernel-default-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Live Patching 15-SP3 (ppc64le s390x x86_64) * kernel-default-livepatch-devel-5.3.18-150300.59.141.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-default-livepatch-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-livepatch-5_3_18-150300_59_141-default-1-150300.7.3.2 * SUSE Linux Enterprise High Availability Extension 15 SP3 (aarch64 ppc64le s390x x86_64) * cluster-md-kmp-default-debuginfo-5.3.18-150300.59.141.2 * gfs2-kmp-default-5.3.18-150300.59.141.2 * gfs2-kmp-default-debuginfo-5.3.18-150300.59.141.2 * cluster-md-kmp-default-5.3.18-150300.59.141.2 * dlm-kmp-default-5.3.18-150300.59.141.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * ocfs2-kmp-default-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * dlm-kmp-default-debuginfo-5.3.18-150300.59.141.2 * ocfs2-kmp-default-debuginfo-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Availability Extension 15 SP3 (nosrc) * kernel-default-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (aarch64) * kernel-64kb-devel-5.3.18-150300.59.141.2 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-debugsource-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (aarch64 nosrc x86_64) * kernel-default-5.3.18-150300.59.141.2 * kernel-preempt-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (aarch64 x86_64) * kernel-default-devel-5.3.18-150300.59.141.2 * kernel-obs-build-5.3.18-150300.59.141.2 * kernel-preempt-debuginfo-5.3.18-150300.59.141.2 * reiserfs-kmp-default-5.3.18-150300.59.141.2 * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-preempt-devel-5.3.18-150300.59.141.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-preempt-debugsource-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-obs-build-debugsource-5.3.18-150300.59.141.2 * kernel-syms-5.3.18-150300.59.141.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-devel-debuginfo-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (noarch) * kernel-devel-5.3.18-150300.59.141.1 * kernel-macros-5.3.18-150300.59.141.1 * kernel-source-5.3.18-150300.59.141.1 * SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64) * kernel-64kb-devel-5.3.18-150300.59.141.2 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-debugsource-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 nosrc x86_64) * kernel-default-5.3.18-150300.59.141.2 * kernel-preempt-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (aarch64 x86_64) * kernel-default-devel-5.3.18-150300.59.141.2 * kernel-obs-build-5.3.18-150300.59.141.2 * kernel-preempt-debuginfo-5.3.18-150300.59.141.2 * reiserfs-kmp-default-5.3.18-150300.59.141.2 * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-preempt-devel-5.3.18-150300.59.141.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-preempt-debugsource-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-obs-build-debugsource-5.3.18-150300.59.141.2 * kernel-syms-5.3.18-150300.59.141.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-devel-debuginfo-5.3.18-150300.59.141.2 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch) * kernel-devel-5.3.18-150300.59.141.1 * kernel-macros-5.3.18-150300.59.141.1 * kernel-source-5.3.18-150300.59.141.1 * SUSE Linux Enterprise High Performance Computing LTSS 15 SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64) * kernel-64kb-devel-5.3.18-150300.59.141.2 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-debugsource-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64 nosrc) * kernel-default-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 ppc64le s390x x86_64) * kernel-default-devel-5.3.18-150300.59.141.2 * kernel-obs-build-5.3.18-150300.59.141.2 * reiserfs-kmp-default-5.3.18-150300.59.141.2 * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-syms-5.3.18-150300.59.141.1 * kernel-obs-build-debugsource-5.3.18-150300.59.141.2 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-devel-debuginfo-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch) * kernel-devel-5.3.18-150300.59.141.1 * kernel-macros-5.3.18-150300.59.141.1 * kernel-source-5.3.18-150300.59.141.1 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 nosrc x86_64) * kernel-preempt-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (aarch64 x86_64) * kernel-preempt-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-devel-5.3.18-150300.59.141.2 * kernel-preempt-debugsource-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (nosrc s390x) * kernel-zfcpdump-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3 (s390x) * kernel-zfcpdump-debugsource-5.3.18-150300.59.141.2 * kernel-zfcpdump-debuginfo-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (nosrc ppc64le x86_64) * kernel-default-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (ppc64le x86_64) * kernel-default-devel-5.3.18-150300.59.141.2 * kernel-obs-build-5.3.18-150300.59.141.2 * reiserfs-kmp-default-5.3.18-150300.59.141.2 * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-syms-5.3.18-150300.59.141.1 * kernel-obs-build-debugsource-5.3.18-150300.59.141.2 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-devel-debuginfo-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch) * kernel-devel-5.3.18-150300.59.141.1 * kernel-macros-5.3.18-150300.59.141.1 * kernel-source-5.3.18-150300.59.141.1 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (noarch nosrc) * kernel-docs-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (nosrc x86_64) * kernel-preempt-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Server for SAP Applications 15 SP3 (x86_64) * kernel-preempt-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-devel-5.3.18-150300.59.141.2 * kernel-preempt-debugsource-5.3.18-150300.59.141.2 * SUSE Manager Proxy 4.2 (nosrc x86_64) * kernel-default-5.3.18-150300.59.141.2 * kernel-preempt-5.3.18-150300.59.141.2 * SUSE Manager Proxy 4.2 (x86_64) * kernel-default-devel-5.3.18-150300.59.141.2 * kernel-preempt-debuginfo-5.3.18-150300.59.141.2 * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-preempt-debugsource-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-devel-debuginfo-5.3.18-150300.59.141.2 * SUSE Manager Proxy 4.2 (noarch) * kernel-devel-5.3.18-150300.59.141.1 * kernel-macros-5.3.18-150300.59.141.1 * SUSE Manager Retail Branch Server 4.2 (nosrc x86_64) * kernel-default-5.3.18-150300.59.141.2 * kernel-preempt-5.3.18-150300.59.141.2 * SUSE Manager Retail Branch Server 4.2 (x86_64) * kernel-default-devel-5.3.18-150300.59.141.2 * kernel-preempt-debuginfo-5.3.18-150300.59.141.2 * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-preempt-debugsource-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-devel-debuginfo-5.3.18-150300.59.141.2 * SUSE Manager Retail Branch Server 4.2 (noarch) * kernel-devel-5.3.18-150300.59.141.1 * kernel-macros-5.3.18-150300.59.141.1 * SUSE Manager Server 4.2 (nosrc ppc64le s390x x86_64) * kernel-default-5.3.18-150300.59.141.2 * SUSE Manager Server 4.2 (ppc64le s390x x86_64) * kernel-default-devel-5.3.18-150300.59.141.2 * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-devel-debuginfo-5.3.18-150300.59.141.2 * SUSE Manager Server 4.2 (noarch) * kernel-devel-5.3.18-150300.59.141.1 * kernel-macros-5.3.18-150300.59.141.1 * SUSE Manager Server 4.2 (nosrc s390x) * kernel-zfcpdump-5.3.18-150300.59.141.2 * SUSE Manager Server 4.2 (s390x) * kernel-zfcpdump-debugsource-5.3.18-150300.59.141.2 * kernel-zfcpdump-debuginfo-5.3.18-150300.59.141.2 * SUSE Manager Server 4.2 (nosrc x86_64) * kernel-preempt-5.3.18-150300.59.141.2 * SUSE Manager Server 4.2 (x86_64) * kernel-preempt-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-debugsource-5.3.18-150300.59.141.2 * SUSE Enterprise Storage 7.1 (aarch64 nosrc) * kernel-64kb-5.3.18-150300.59.141.2 * SUSE Enterprise Storage 7.1 (aarch64) * kernel-64kb-devel-5.3.18-150300.59.141.2 * kernel-64kb-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-debuginfo-5.3.18-150300.59.141.2 * kernel-64kb-debugsource-5.3.18-150300.59.141.2 * SUSE Enterprise Storage 7.1 (aarch64 nosrc x86_64) * kernel-default-5.3.18-150300.59.141.2 * kernel-preempt-5.3.18-150300.59.141.2 * SUSE Enterprise Storage 7.1 (aarch64 x86_64) * kernel-default-devel-5.3.18-150300.59.141.2 * kernel-obs-build-5.3.18-150300.59.141.2 * kernel-preempt-debuginfo-5.3.18-150300.59.141.2 * reiserfs-kmp-default-5.3.18-150300.59.141.2 * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-preempt-devel-5.3.18-150300.59.141.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * kernel-preempt-debugsource-5.3.18-150300.59.141.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-preempt-devel-debuginfo-5.3.18-150300.59.141.2 * kernel-obs-build-debugsource-5.3.18-150300.59.141.2 * kernel-syms-5.3.18-150300.59.141.1 * reiserfs-kmp-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-devel-debuginfo-5.3.18-150300.59.141.2 * SUSE Enterprise Storage 7.1 (noarch) * kernel-devel-5.3.18-150300.59.141.1 * kernel-macros-5.3.18-150300.59.141.1 * kernel-source-5.3.18-150300.59.141.1 * SUSE Enterprise Storage 7.1 (noarch nosrc) * kernel-docs-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Micro 5.1 (aarch64 nosrc s390x x86_64) * kernel-default-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Micro 5.1 (aarch64 s390x x86_64) * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Micro 5.2 (aarch64 nosrc s390x x86_64) * kernel-default-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Micro 5.2 (aarch64 x86_64) * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * SUSE Linux Enterprise Micro 5.2 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 nosrc s390x x86_64) * kernel-default-5.3.18-150300.59.141.2 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 x86_64) * kernel-default-base-5.3.18-150300.59.141.2.150300.18.82.2 * SUSE Linux Enterprise Micro for Rancher 5.2 (aarch64 s390x x86_64) * kernel-default-debuginfo-5.3.18-150300.59.141.2 * kernel-default-debugsource-5.3.18-150300.59.141.2 ## References: * https://www.suse.com/security/cve/CVE-2023-2163.html * https://www.suse.com/security/cve/CVE-2023-31085.html * https://www.suse.com/security/cve/CVE-2023-3111.html * https://www.suse.com/security/cve/CVE-2023-34324.html * https://www.suse.com/security/cve/CVE-2023-3777.html * https://www.suse.com/security/cve/CVE-2023-39189.html * https://www.suse.com/security/cve/CVE-2023-39192.html * https://www.suse.com/security/cve/CVE-2023-39193.html * https://www.suse.com/security/cve/CVE-2023-39194.html * https://www.suse.com/security/cve/CVE-2023-42754.html * https://www.suse.com/security/cve/CVE-2023-45862.html * https://bugzilla.suse.com/show_bug.cgi?id=1210778 * https://bugzilla.suse.com/show_bug.cgi?id=1210853 * https://bugzilla.suse.com/show_bug.cgi?id=1212051 * https://bugzilla.suse.com/show_bug.cgi?id=1214842 * https://bugzilla.suse.com/show_bug.cgi?id=1215095 * https://bugzilla.suse.com/show_bug.cgi?id=1215467 * https://bugzilla.suse.com/show_bug.cgi?id=1215518 * https://bugzilla.suse.com/show_bug.cgi?id=1215745 * https://bugzilla.suse.com/show_bug.cgi?id=1215858 * https://bugzilla.suse.com/show_bug.cgi?id=1215860 * https://bugzilla.suse.com/show_bug.cgi?id=1215861 * https://bugzilla.suse.com/show_bug.cgi?id=1216046 * https://bugzilla.suse.com/show_bug.cgi?id=1216051 * https://bugzilla.suse.com/show_bug.cgi?id=1216134
participants (1)
-
security@lists.opensuse.org