Oval Definition:oval:org.opensuse.security:def:20231078
Revision Date:2023-06-22Version:1
Title:CVE-2023-1078
Description:

A flaw was found in the Linux Kernel in RDS (Reliable Datagram Sockets) protocol. The rds_rm_zerocopy_callback() uses list_entry() on the head of a list causing a type confusion. Local user can trigger this with rds_message_put(). Type confusion leads to `struct rds_msg_zcopy_info *info` actually points to something else that is potentially controlled by local user. It is known how to trigger this, which causes an out of bounds access, and a lock corruption.
Family:unixClass:vulnerability
Status:Reference(s):Mitre CVE-2023-1078
SUSE CVE-2023-1078
SUSE-IU-2023:219-1
SUSE-IU-2023:220-1
SUSE-IU-2023:221-1
SUSE-SU-2023:1574-1
SUSE-SU-2023:1576-1
SUSE-SU-2023:1591-1
SUSE-SU-2023:1592-1
SUSE-SU-2023:1595-1
SUSE-SU-2023:1605-1
SUSE-SU-2023:1608-1
SUSE-SU-2023:1609-1
SUSE-SU-2023:1610-1
SUSE-SU-2023:1621-1
SUSE-SU-2023:1639-1
SUSE-SU-2023:1645-1
SUSE-SU-2023:1647-1
SUSE-SU-2023:1649-1
SUSE-SU-2023:1651-1
SUSE-SU-2023:1708-1
SUSE-SU-2023:1710-1
SUSE-SU-2023:1800-1
SUSE-SU-2023:1811-1
SUSE-SU-2023:1892-1
SUSE-IU-2023:347-1
SUSE-IU-2023:348-1
SUSE-IU-2023:349-1
Platform(s):SUSE Linux Enterprise Desktop 15 SP5
SUSE Linux Enterprise High Performance Computing 15 SP5
SUSE Linux Enterprise Micro 5.4
SUSE Linux Enterprise Module for Basesystem 15 SP5
SUSE Linux Enterprise Module for Development Tools 15 SP5
SUSE Linux Enterprise Module for Legacy 15 SP5
SUSE Linux Enterprise Server 15 SP5
SUSE Linux Enterprise Server for SAP Applications 15 SP5
Product(s):
Definition Synopsis
  • SUSE Linux Enterprise Micro 5.4 is installed
  • AND Package Information
  • kernel-default-5.14.21-150400.24.55.3 is installed
  • OR kernel-default-base-5.14.21-150400.24.55.3.150400.24.22.7 is installed
  • OR kernel-rt-5.14.21-150400.15.18.1 is installed
    • Definition Synopsis
  • Release Information
  • SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Legacy 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND reiserfs-kmp-default-5.14.21-150500.53.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Basesystem 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND
  • kernel-64kb-5.14.21-150500.53.2 is installed
  • OR kernel-64kb-devel-5.14.21-150500.53.2 is installed
  • OR kernel-default-5.14.21-150500.53.2 is installed
  • OR kernel-default-devel-5.14.21-150500.53.2 is installed
  • OR kernel-devel-5.14.21-150500.53.2 is installed
  • OR kernel-macros-5.14.21-150500.53.2 is installed
  • OR kernel-zfcpdump-5.14.21-150500.53.2 is installed
  • OR Package Information
  • SUSE Linux Enterprise Desktop 15 SP5 is installed
  • OR SUSE Linux Enterprise High Performance Computing 15 SP5 is installed
  • OR SUSE Linux Enterprise Module for Development Tools 15 SP5 is installed
  • OR SUSE Linux Enterprise Server 15 SP5 is installed
  • OR SUSE Linux Enterprise Server for SAP Applications 15 SP5 is installed
  • AND
  • kernel-docs-5.14.21-150500.53.2 is installed
  • OR kernel-obs-build-5.14.21-150500.53.2 is installed
  • OR kernel-source-5.14.21-150500.53.2 is installed
  • OR kernel-syms-5.14.21-150500.53.1 is installed
    • BACK