Detections
Analytics
SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2023:3683-1)
high Nessus Plugin ID 181668
Language:
Synopsis
The remote SUSE host is missing one or more security updates.Description
The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2023:3683-1 advisory.The SUSE Linux Enterprise 15 SP4 kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2023-37453: Fixed oversight in SuperSpeed initialization (bsc#1213123).
- CVE-2023-4569: Fixed information leak in nft_set_catchall_flush in net/netfilter/nf_tables_api.c (bsc#1214729).
- CVE-2023-4134: Fixed use-after-free in cyttsp4_watchdog_work() (bsc#1213971).
- CVE-2023-20588: Fixed a division-by-zero error on some AMD processors that can potentially return speculative data resulting in loss of confidentiality (bsc#1213927).
- CVE-2023-4459: Fixed a NULL pointer dereference flaw in vmxnet3_rq_cleanup that may have allowed a local attacker with normal user privilege to cause a denial of service (bsc#1214451).
- CVE-2023-3863: Fixed a use-after-free flaw was found in nfc_llcp_find_local that allowed a local user with special privileges to impact a kernel information leak issue (bsc#1213601).
- CVE-2023-3772: Fixed a flaw in XFRM subsystem that may have allowed a malicious user with CAP_NET_ADMIN privileges to directly dereference a NULL pointer leading to a possible kernel crash and denial of service (bsc#1213666).
- CVE-2023-2007: Fixed a flaw in the DPT I2O Controller driver that could allow an attacker to escalate privileges and execute arbitrary code in the context of the kernel (bsc#1210448).
- CVE-2023-4387: Fixed use-after-free flaw in vmxnet3_rq_alloc_rx_buf that could allow a local attacker to crash the system due to a double-free (bsc#1214350).
- CVE-2023-3610: Fixed use-after-free vulnerability in nf_tables can be exploited to achieve local privilege escalation (bsc#1213580).
- CVE-2023-4128: Fixed a use-after-free flaw in net/sched/cls_fw.c that allowed a local attacker to perform a local privilege escalation due to incorrect handling of the existing filter, leading to a kernel information leak issue (bsc#1214149).
- CVE-2023-4273: Fixed a flaw in the exFAT driver of the Linux kernel that alloawed a local privileged attacker to overflow the kernel stack (bsc#1214120).
- CVE-2023-4147: Fixed use-after-free in nf_tables_newrule (bsc#1213968).
- CVE-2023-4133: Fixed use after free bugs caused by circular dependency problem in cxgb4 (bsc#1213970).
- CVE-2023-34319: Fixed buffer overrun triggered by unusual packet in xen/netback (XSA-432) (bsc#1213546).
- CVE-2023-4194: Fixed a type confusion in net tun_chr_open() (bsc#1214019).
Tenable has extracted the preceding description block directly from the SUSE security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.
Solution
Update the affected packages.See Also
https://bugzilla.suse.com/1188885
https://bugzilla.suse.com/1193629
https://bugzilla.suse.com/1194869
https://bugzilla.suse.com/1023051
https://bugzilla.suse.com/1208902
https://bugzilla.suse.com/1209799
https://bugzilla.suse.com/1213601
https://bugzilla.suse.com/1213759
https://www.suse.com/security/cve/CVE-2023-3863
https://bugzilla.suse.com/1213546
https://bugzilla.suse.com/1213970
https://bugzilla.suse.com/1214019
https://www.suse.com/security/cve/CVE-2023-34319
https://www.suse.com/security/cve/CVE-2023-4133
https://www.suse.com/security/cve/CVE-2023-4194
https://bugzilla.suse.com/1120059
https://bugzilla.suse.com/1177719
https://bugzilla.suse.com/1205462
https://bugzilla.suse.com/1208949
https://bugzilla.suse.com/1209284
https://bugzilla.suse.com/1210048
https://bugzilla.suse.com/1210448
https://bugzilla.suse.com/1212091
https://bugzilla.suse.com/1212142
https://bugzilla.suse.com/1212526
https://bugzilla.suse.com/1212857
https://bugzilla.suse.com/1212873
https://bugzilla.suse.com/1213026
https://bugzilla.suse.com/1213123
https://bugzilla.suse.com/1213580
https://bugzilla.suse.com/1213666
https://bugzilla.suse.com/1213757
https://bugzilla.suse.com/1213916
https://bugzilla.suse.com/1213921
https://bugzilla.suse.com/1213927
https://bugzilla.suse.com/1213946
https://bugzilla.suse.com/1213968
https://bugzilla.suse.com/1213971
https://bugzilla.suse.com/1214000
https://bugzilla.suse.com/1214120
https://bugzilla.suse.com/1214149
https://bugzilla.suse.com/1214180
https://bugzilla.suse.com/1214238
https://bugzilla.suse.com/1214285
https://bugzilla.suse.com/1214297
https://bugzilla.suse.com/1214299
https://bugzilla.suse.com/1214350
https://bugzilla.suse.com/1214368
https://bugzilla.suse.com/1214370
https://bugzilla.suse.com/1214371
https://bugzilla.suse.com/1214372
https://bugzilla.suse.com/1214380
https://bugzilla.suse.com/1214386
https://bugzilla.suse.com/1214392
https://bugzilla.suse.com/1214393
https://bugzilla.suse.com/1214397
https://bugzilla.suse.com/1214428
https://bugzilla.suse.com/1214451
https://bugzilla.suse.com/1214659
https://bugzilla.suse.com/1214661
https://bugzilla.suse.com/1214729
https://bugzilla.suse.com/1214742
https://bugzilla.suse.com/1214743
https://bugzilla.suse.com/1214756
https://www.suse.com/security/cve/CVE-2023-2007
https://www.suse.com/security/cve/CVE-2023-20588
https://www.suse.com/security/cve/CVE-2023-3610
https://www.suse.com/security/cve/CVE-2023-37453
https://www.suse.com/security/cve/CVE-2023-3772
https://www.suse.com/security/cve/CVE-2023-4134
https://www.suse.com/security/cve/CVE-2023-4147
https://www.suse.com/security/cve/CVE-2023-4273
https://www.suse.com/security/cve/CVE-2023-4387
https://www.suse.com/security/cve/CVE-2023-4459
Plugin Details
Severity: High
ID: 181668
File Name: suse_SU-2023-3683-1.nasl
Version: 1.2
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 9/20/2023
Updated: 9/24/2025
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: Medium
Base Score: 6.8
Temporal Score: 5.3
Vector: CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C
CVSS Score Source: CVE-2023-4147
CVSS v3
Risk Factor: High
Base Score: 7.8
Temporal Score: 7
Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:kernel-macros, p-cpe:/a:novell:suse_linux:kernel-zfcpdump, p-cpe:/a:novell:suse_linux:kernel-64kb-devel, p-cpe:/a:novell:suse_linux:ocfs2-kmp-default, p-cpe:/a:novell:suse_linux:dlm-kmp-default, p-cpe:/a:novell:suse_linux:kernel-default-base, p-cpe:/a:novell:suse_linux:kernel-default-livepatch, p-cpe:/a:novell:suse_linux:kernel-default-devel, p-cpe:/a:novell:suse_linux:kernel-devel, p-cpe:/a:novell:suse_linux:gfs2-kmp-default, p-cpe:/a:novell:suse_linux:kernel-syms, p-cpe:/a:novell:suse_linux:kernel-default-extra, cpe:/o:novell:suse_linux:15, p-cpe:/a:novell:suse_linux:kernel-livepatch-5_14_21-150400_24_84-default, p-cpe:/a:novell:suse_linux:reiserfs-kmp-default, p-cpe:/a:novell:suse_linux:kernel-default-livepatch-devel, p-cpe:/a:novell:suse_linux:cluster-md-kmp-default, p-cpe:/a:novell:suse_linux:kernel-obs-build, p-cpe:/a:novell:suse_linux:kernel-default, p-cpe:/a:novell:suse_linux:kernel-source, p-cpe:/a:novell:suse_linux:kernel-64kb
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Available: true
Exploit Ease: Exploits are available
Patch Publication Date: 9/19/2023
Vulnerability Publication Date: 2/17/2023
Reference Information
CVE: CVE-2023-2007, CVE-2023-20588, CVE-2023-34319, CVE-2023-3610, CVE-2023-37453, CVE-2023-3772, CVE-2023-3863, CVE-2023-4133, CVE-2023-4134, CVE-2023-4147, CVE-2023-4194, CVE-2023-4273, CVE-2023-4387, CVE-2023-4459, CVE-2023-4569
SuSE: SUSE-SU-2023:3683-1