Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
oraclelinuxOracleLinuxELSA-2023-7423
HistoryNov 22, 2023 - 12:00 a.m.

kernel security update

2023-11-2200:00:00
linux.oracle.com
28
kernel
security update
kgdb lockdown
module signing key
x509.genkey
cve-2022-21499
cve-2023-4128
conflict
shim-ia32
shim-x64
rpm 4.19.0

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:S/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

51.0%

JSON

[3.10.0-1160.105.1.0.1.OL7]

  • debug: lock down kgdb [Orabug: 34270798] {CVE-2022-21499}
    [3.10.0-1160.105.1.OL7]
  • Update Oracle Linux certificates (Ilya Okomin)
  • Oracle Linux RHCK Module Signing Key was compiled into kernel (olkmod_signing_key.x509)([email protected])
  • Update x509.genkey [Orabug: 24817676]
  • Conflict with shim-ia32 and shim-x64 <= 15-2.0.9
  • Update oracle(kernel-sig-key) value to match new certificate (Ilya Okomin)
    [3.10.0-1160.105.1]
  • net/sched: cls_u32: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
  • net/sched: cls_fw: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
  • net/sched: cls_route: No longer copy tcf_result on update to avoid use-after-free (Davide Caratti) [2228703] {CVE-2023-4128}
    [3.10.0-1160.104.1]
  • CI: Remove unused kpet_tree_family (Nikolai Kondrashov)
  • xen/x86: don’t lose event interrupts (Vitaly Kuznetsov) [RHEL-1534]
  • Documentation/x86: Fix backwards on/off logic about YMM support (Waiman Long) [2229893] {CVE-2022-40982}
  • KVM: Add GDS_NO support to KVM (Waiman Long) [2229893] {CVE-2022-40982}
  • x86/speculation: Add Kconfig option for GDS (Waiman Long) [2229893] {CVE-2022-40982}
  • x86/speculation: Add force option to GDS mitigation (Waiman Long) [2229893] {CVE-2022-40982}
  • x86/speculation: Add Gather Data Sampling mitigation (Waiman Long) [2229893] {CVE-2022-40982}
  • Documentation/ABI: Mention retbleed vulnerability info file for sysfs (Waiman Long) [2229893]
  • docs/kernel-parameters: Update descriptions for ‘mitigations=’ param with retbleed (Waiman Long) [2229893]
  • x86/speculation: Add missing srbds=off to the mitigations= help text (Waiman Long) [2229893]
  • x86: Sync Intel family names & cpu_vuln_blacklist[] with upstream (Waiman Long) [2229893]
    [3.10.0-1160.103.1]
  • net/sched: sch_qfq: account for stab overhead in qfq_enqueue (Davide Caratti) [2225555] {CVE-2023-3611}
  • net: sched: sch_qfq: prevent slab-out-of-bounds in qfq_activate_agg (Davide Caratti) [2225555]
  • net/sched: cls_fw: Fix improper refcount update leads to use-after-free (Davide Caratti) [2225639] {CVE-2023-3776}
  • redhat: fix to be able to build with rpm 4.19.0 (Denys Vlasenko)
OSVersionArchitecturePackageVersionFilename
oracle linux7srckernel< 3.10.0-1160.105.1.0.1.el7kernel-3.10.0-1160.105.1.0.1.el7.src.rpm
oracle linux7srckernel< 3.10.0-1160.105.1.0.1.el7kernel-3.10.0-1160.105.1.0.1.el7.src.rpm
oracle linux7srckernel< 3.10.0-1160.105.1.0.1.el7kernel-3.10.0-1160.105.1.0.1.el7.src.rpm
oracle linux7x86_64bpftool< 3.10.0-1160.105.1.0.1.el7bpftool-3.10.0-1160.105.1.0.1.el7.x86_64.rpm
oracle linux7x86_64bpftool< 3.10.0-1160.105.1.0.1.el7bpftool-3.10.0-1160.105.1.0.1.el7.x86_64.rpm
oracle linux7x86_64kernel< 3.10.0-1160.105.1.0.1.el7kernel-3.10.0-1160.105.1.0.1.el7.x86_64.rpm
oracle linux7x86_64kernel< 3.10.0-1160.105.1.0.1.el7kernel-3.10.0-1160.105.1.0.1.el7.x86_64.rpm
oracle linux7noarchkernel-abi-whitelists< 3.10.0-1160.105.1.0.1.el7kernel-abi-whitelists-3.10.0-1160.105.1.0.1.el7.noarch.rpm
oracle linux7noarchkernel-abi-whitelists< 3.10.0-1160.105.1.0.1.el7kernel-abi-whitelists-3.10.0-1160.105.1.0.1.el7.noarch.rpm
oracle linux7x86_64kernel-debug< 3.10.0-1160.105.1.0.1.el7kernel-debug-3.10.0-1160.105.1.0.1.el7.x86_64.rpm
Rows per page:
1-10 of 281

Related

nessus 58
redhat 15
openvas 20
centos 1
ibm 4
cve 7
redhatcve 7
ubuntucve 6
f5 4
amazon 7
osv 13
ubuntu 13
oraclelinux 8
cbl_mariner 8
cnvd 5
prion 7
veracode 1
cloudlinux 1
debiancve 7
ics 1
talosblog 1
debian 1
alpinelinux 1
xen 1
githubexploit 2
nessus
nessus
CentOS 7 : kernel (RHSA-2023:7423)
2023-12-22 00:00:00
Oracle Linux 7 : kernel (ELSA-2023-7423)
2023-11-22 00:00:00
CentOS 7 : kernel-rt (RHSA-2023:7424)
2024-01-09 00:00:00
redhat
redhat
(RHSA-2023:7419) Important: kpatch-patch security update
2023-11-21 14:42:55
(RHSA-2023:7423) Important: kernel security update
2023-11-21 14:52:31
(RHSA-2023:7424) Important: kernel-rt security update
2023-11-21 14:52:34
openvas
openvas
CentOS: Security Advisory for bpftool (CESA-2023:7423)
2024-03-05 00:00:00
Ubuntu: Security Advisory (USN-6329-1)
2023-09-01 00:00:00
Ubuntu: Security Advisory (USN-6324-1)
2023-09-01 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2024-01-12 19:36:38
ibm
ibm
Security Bulletin: IBM Security Guardium is affected by vulnerabilities in the Linux Kernel
2024-01-24 18:45:22
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-02-14 19:15:02
Security Bulletin: Vulnerabilities in Axios, Node.js, VMWare tools, and Linux Kernel might affect IBM Storage Defender – Data Protect.
2024-02-09 16:04:42
cve
cve
CVE-2023-4128
2023-08-10 17:15:12
CVE-2022-40982
2023-08-11 03:15:00
CVE-2023-4206
2023-09-06 14:15:11
redhatcve
redhatcve
CVE-2023-4206
2023-09-07 20:40:17
CVE-2023-4207
2023-09-07 20:40:26
CVE-2023-4128
2024-01-30 18:52:38
ubuntucve
ubuntucve
CVE-2023-4128
2023-08-10 00:00:00
CVE-2023-4208
2023-09-06 00:00:00
CVE-2023-4206
2023-09-06 00:00:00
f5
f5
K000138693 : Linux kernel vulnerabilities CVE-2023-4206, CVE-2023-4207, and CVE-2023-4208
2024-02-23 00:00:00
K000135795 : Downfall Attacks CVE-2022-40982
2023-08-09 00:00:00
K000138726 : Linux kernel vulnerability CVE-2023-3611
2024-03-01 00:00:00
amazon
amazon
Important: kernel
2023-09-27 22:48:00
Important: kernel
2023-09-13 23:15:00
Important: kernel
2023-08-03 20:16:00
osv
osv
linux-gcp-5.4, linux-oracle-5.4 vulnerabilities
2023-08-31 22:07:37
linux-gkeop vulnerabilities
2023-08-31 13:23:41
linux-raspi, linux-raspi-5.4 vulnerabilities
2023-09-06 14:11:44
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-08-31 00:00:00
Linux kernel (Raspberry Pi) vulnerabilities
2023-09-06 00:00:00
Linux kernel (GKE) vulnerabilities
2023-08-31 00:00:00
oraclelinux
oraclelinux
kernel security update
2024-04-22 00:00:00
microcode_ctl security update
2023-08-15 00:00:00
microcode_ctl security update
2023-08-15 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-4208 affecting package kernel for versions less than 5.15.131.1-2
2023-09-27 18:02:50
CVE-2023-4206 affecting package kernel for versions less than 5.15.131.1-2
2023-09-27 18:02:50
CVE-2023-3776 affecting package kernel 5.10.185.1-1
2023-08-15 16:37:27
cnvd
cnvd
Linux Kernel Memory Misreference Vulnerability (CNVD-2023-65165)
2023-08-14 00:00:00
Linux kernel elevation of privilege vulnerability (CNVD-2023-70081)
2023-09-11 00:00:00
Linux kernel elevation of privilege vulnerability (CNVD-2023-70082)
2023-09-11 00:00:00
prion
prion
Design/Logic Flaw
2023-09-06 14:15:00
Information disclosure
2023-08-11 03:15:00
Design/Logic Flaw
2023-09-06 14:15:00
veracode
veracode
Information Disclosure
2023-08-10 23:12:56
cloudlinux
cloudlinux
microcode_ctl: Fix of CVE-2022-40982
2023-08-30 17:12:48
debiancve
debiancve
CVE-2023-4206
2023-09-06 14:15:11
CVE-2023-4128
2023-08-10 17:15:12
CVE-2023-4208
2023-09-06 14:15:11
ics
ics
Siemens SIMATIC IPCs
2023-09-14 12:00:00
talosblog
talosblog
Recapping the top stories from Black Hat and DEF CON
2023-08-17 18:00:32
debian
debian
[SECURITY] [DLA 3524-1] linux security update
2023-08-10 19:42:10
alpinelinux
alpinelinux
CVE-2022-40982
2023-08-11 03:15:00
xen
xen
x86/Intel: Gather Data Sampling
2023-08-08 15:53:00
githubexploit
githubexploit
Exploit for CVE-2023-4128
2023-09-19 06:45:47
Exploit for Use After Free in Linux Linux Kernel
2023-09-20 04:43:28

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.2 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:S/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

51.0%

JSON
Related for ELSA-2023-7423
nessus58redhat15openvas20centos1ibm4cve7redhatcve7ubuntucve6f54amazon7osv13ubuntu13oraclelinux8cbl_mariner8cnvd5prion7veracode1cloudlinux1debiancve7ics1talosblog1debian1alpinelinux1xen1githubexploit2