[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-SUSE-SU-2023:2147-1":6},{"stargazers_count":4,"fetched_at":5},7,"2026-06-04T08:53:30.047Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":11,"aliases":12,"duplicate_of":9,"upstream":13,"downstream":44,"duplicates":45,"related":46,"reserved_at":9,"published_at":62,"modified_at":63,"state":9,"summary":64,"references_raw":66,"kevs":215,"epss":9,"epss_history":216,"metrics":217,"affected":218},"SUSE-SU-2023:2147-1","Security update for the Linux Kernel\n\nThe SUSE Linux Enterprise 15 SP3 RT kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2023-2124: Fixed an out of bound access in the XFS subsystem that could have lead to denial-of-service or potentially privilege escalation (bsc#1210498).\n- CVE-2023-1872:Fixed a use after free vulnerability in the io_uring subsystem, which could lead to local privilege escalation (bsc#1210414).\n- CVE-2022-2196: Fixed a regression related to KVM that allowed for speculative execution attacks (bsc#1206992).\n- CVE-2023-1670: Fixed a use after free in the Xircom 16-bit PCMCIA Ethernet driver. A local user could use this flaw to crash the system or potentially escalate their privileges on the system (bsc#1209871).\n- CVE-2023-2162: Fixed an use-after-free flaw in iscsi_sw_tcp_session_create (bsc#1210647).\n- CVE-2023-2176: A vulnerability was found in compare_netdev_and_ip in drivers/infiniband/core/cma.c in RDMA. The improper cleanup results in out-of-boundary read, where a local user can utilize this problem to crash the system or escalation of privilege (bsc#1210629).\n- CVE-2023-1998: Fixed a use after free during login when accessing the shost ipaddress (bsc#1210506).\n- CVE-2023-30772: Fixed a race condition and resultant use-after-free in da9150_charger_remove (bsc#1210329).\n- CVE-2023-2008: A flaw was found in the fault handler of the udmabuf device driver. An attacker can leverage this vulnerability to escalate privileges and execute arbitrary code (bsc#1210453).\n- CVE-2023-1855: Fixed a use after free in xgene_hwmon_remove (bsc#1210202).\n- CVE-2020-36691: Fixed a denial of service vulnerability via a nested Netlink policy with a back reference (bsc#1209777).\n- CVE-2023-1990: Fixed a use after free in ndlc_remove (bsc#1210337).\n- CVE-2023-1989: Fixed a use after free in btsdio_remove (bsc#1210336).\n- CVE-2023-1611: Fixed an use-after-free flaw in btrfs_search_slot (bsc#1209687).\n- CVE-2023-1838: Fixed an use-after-free flaw in virtio network subcomponent. This flaw could allow a local attacker to crash the system and lead to a kernel information leak problem. (bsc#1210203).\n\nThe following non-security bugs were fixed:\n\n- Drivers: vmbus: Check for channel allocation before looking up relids (git-fixes).\n- cifs: fix negotiate context parsing (bsc#1210301).\n- keys: Fix linking a duplicate key to a keyring's assoc_array (bsc#1207088).\n- vmxnet3: use gro callback when UPT is enabled (bsc#1209739).\n",null,[],[],[],[14,16,18,20,22,24,26,28,30,32,34,36,38,40,42],{"_key":15},"CVE-2020-36691",{"_key":17},"CVE-2022-2196",{"_key":19},"CVE-2023-1611",{"_key":21},"CVE-2023-1670",{"_key":23},"CVE-2023-1838",{"_key":25},"CVE-2023-1855",{"_key":27},"CVE-2023-1872",{"_key":29},"CVE-2023-1989",{"_key":31},"CVE-2023-1990",{"_key":33},"CVE-2023-1998",{"_key":35},"CVE-2023-2008",{"_key":37},"CVE-2023-2124",{"_key":39},"CVE-2023-2162",{"_key":41},"CVE-2023-2176",{"_key":43},"CVE-2023-30772",[],[],[47,48,49,50,51,52,53,54,55,56,57,58,59,60,61],{"_key":15},{"_key":17},{"_key":19},{"_key":21},{"_key":23},{"_key":25},{"_key":27},{"_key":29},{"_key":31},{"_key":33},{"_key":35},{"_key":37},{"_key":39},{"_key":41},{"_key":43},"2023-05-09T15:04:16Z","2026-02-04T02:25:54.687934Z",{"cisa_kev":65,"cisa_ransomware":65,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":9,"severity_score":9,"severity_version":9,"severity_source":9,"severity_vector":9,"severity_status":9},false,[67,73,78,82,86,90,94,98,102,106,110,114,118,122,126,130,134,138,142,146,150,154,159,163,167,171,175,179,183,187,191,195,199,203,207,211],{"url":68,"sources":69,"tags":71},"https://www.suse.com/support/update/announcement/2023/suse-su-20232147-1/",[70],"osv_suse",[72],"Advisory",{"url":74,"sources":75,"tags":76},"https://bugzilla.suse.com/1202353",[70],[77],"REPORT",{"url":79,"sources":80,"tags":81},"https://bugzilla.suse.com/1206992",[70],[77],{"url":83,"sources":84,"tags":85},"https://bugzilla.suse.com/1207088",[70],[77],{"url":87,"sources":88,"tags":89},"https://bugzilla.suse.com/1209687",[70],[77],{"url":91,"sources":92,"tags":93},"https://bugzilla.suse.com/1209739",[70],[77],{"url":95,"sources":96,"tags":97},"https://bugzilla.suse.com/1209777",[70],[77],{"url":99,"sources":100,"tags":101},"https://bugzilla.suse.com/1209871",[70],[77],{"url":103,"sources":104,"tags":105},"https://bugzilla.suse.com/1210202",[70],[77],{"url":107,"sources":108,"tags":109},"https://bugzilla.suse.com/1210203",[70],[77],{"url":111,"sources":112,"tags":113},"https://bugzilla.suse.com/1210301",[70],[77],{"url":115,"sources":116,"tags":117},"https://bugzilla.suse.com/1210329",[70],[77],{"url":119,"sources":120,"tags":121},"https://bugzilla.suse.com/1210336",[70],[77],{"url":123,"sources":124,"tags":125},"https://bugzilla.suse.com/1210337",[70],[77],{"url":127,"sources":128,"tags":129},"https://bugzilla.suse.com/1210414",[70],[77],{"url":131,"sources":132,"tags":133},"https://bugzilla.suse.com/1210453",[70],[77],{"url":135,"sources":136,"tags":137},"https://bugzilla.suse.com/1210469",[70],[77],{"url":139,"sources":140,"tags":141},"https://bugzilla.suse.com/1210498",[70],[77],{"url":143,"sources":144,"tags":145},"https://bugzilla.suse.com/1210506",[70],[77],{"url":147,"sources":148,"tags":149},"https://bugzilla.suse.com/1210629",[70],[77],{"url":151,"sources":152,"tags":153},"https://bugzilla.suse.com/1210647",[70],[77],{"url":155,"sources":156,"tags":157},"https://www.suse.com/security/cve/CVE-2020-36691",[70],[158],"WEB",{"url":160,"sources":161,"tags":162},"https://www.suse.com/security/cve/CVE-2022-2196",[70],[158],{"url":164,"sources":165,"tags":166},"https://www.suse.com/security/cve/CVE-2023-1611",[70],[158],{"url":168,"sources":169,"tags":170},"https://www.suse.com/security/cve/CVE-2023-1670",[70],[158],{"url":172,"sources":173,"tags":174},"https://www.suse.com/security/cve/CVE-2023-1838",[70],[158],{"url":176,"sources":177,"tags":178},"https://www.suse.com/security/cve/CVE-2023-1855",[70],[158],{"url":180,"sources":181,"tags":182},"https://www.suse.com/security/cve/CVE-2023-1872",[70],[158],{"url":184,"sources":185,"tags":186},"https://www.suse.com/security/cve/CVE-2023-1989",[70],[158],{"url":188,"sources":189,"tags":190},"https://www.suse.com/security/cve/CVE-2023-1990",[70],[158],{"url":192,"sources":193,"tags":194},"https://www.suse.com/security/cve/CVE-2023-1998",[70],[158],{"url":196,"sources":197,"tags":198},"https://www.suse.com/security/cve/CVE-2023-2008",[70],[158],{"url":200,"sources":201,"tags":202},"https://www.suse.com/security/cve/CVE-2023-2124",[70],[158],{"url":204,"sources":205,"tags":206},"https://www.suse.com/security/cve/CVE-2023-2162",[70],[158],{"url":208,"sources":209,"tags":210},"https://www.suse.com/security/cve/CVE-2023-2176",[70],[158],{"url":212,"sources":213,"tags":214},"https://www.suse.com/security/cve/CVE-2023-30772",[70],[158],[],[],[],[219,232,237,241,245,250],{"ecosystem":220,"name":221,"vendor":222,"product":223,"cpe_part":9,"purl_type":224,"purl_namespace":222,"purl_name":223,"source":9,"versions":225},"SUSE Linux Enterprise","kernel-rt_debug","suse","kernel-rt_debug&distro=SUSE Real Time Module 15 SP3","rpm",[226],{"version":227,"is_range":228,"range_type":229,"version_start":9,"version_start_type":9,"version_end":230,"version_end_type":231,"fixed_in":9},"lt5_3_18_150300_127_1",true,"ecosystem","5.3.18-150300.127.1","excluding",{"ecosystem":220,"name":233,"vendor":222,"product":234,"cpe_part":9,"purl_type":224,"purl_namespace":222,"purl_name":234,"source":9,"versions":235},"kernel-rt","kernel-rt&distro=SUSE Linux Enterprise Micro 5.1",[236],{"version":227,"is_range":228,"range_type":229,"version_start":9,"version_start_type":9,"version_end":230,"version_end_type":231,"fixed_in":9},{"ecosystem":220,"name":233,"vendor":222,"product":238,"cpe_part":9,"purl_type":224,"purl_namespace":222,"purl_name":238,"source":9,"versions":239},"kernel-rt&distro=SUSE Linux Enterprise Micro 5.2",[240],{"version":227,"is_range":228,"range_type":229,"version_start":9,"version_start_type":9,"version_end":230,"version_end_type":231,"fixed_in":9},{"ecosystem":220,"name":233,"vendor":222,"product":242,"cpe_part":9,"purl_type":224,"purl_namespace":222,"purl_name":242,"source":9,"versions":243},"kernel-rt&distro=SUSE Real Time Module 15 SP3",[244],{"version":227,"is_range":228,"range_type":229,"version_start":9,"version_start_type":9,"version_end":230,"version_end_type":231,"fixed_in":9},{"ecosystem":220,"name":246,"vendor":222,"product":247,"cpe_part":9,"purl_type":224,"purl_namespace":222,"purl_name":247,"source":9,"versions":248},"kernel-source-rt","kernel-source-rt&distro=SUSE Real Time Module 15 SP3",[249],{"version":227,"is_range":228,"range_type":229,"version_start":9,"version_start_type":9,"version_end":230,"version_end_type":231,"fixed_in":9},{"ecosystem":220,"name":251,"vendor":222,"product":252,"cpe_part":9,"purl_type":224,"purl_namespace":222,"purl_name":252,"source":9,"versions":253},"kernel-syms-rt","kernel-syms-rt&distro=SUSE Real Time Module 15 SP3",[254],{"version":227,"is_range":228,"range_type":229,"version_start":9,"version_start_type":9,"version_end":230,"version_end_type":231,"fixed_in":9}]