{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"SUSE Linux Enterprise High Performance Computing 15 SP5","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"Legacy Module 15-SP5","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing ESPOS 15 SP3","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing LTSS 15 SP3","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"openSUSE Leap 15.5","product":{"name":"openSUSE Leap","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 15-SP5","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Desktop 15 SP5","product":{"name":"SUSE Linux Enterprise Desktop","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Workstation Extension 15 SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Retail Branch Server 4.2","product":{"name":"SUSE Manager Retail Branch Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15 SP4","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Proxy 4.2","product":{"name":"SUSE Manager Proxy","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Retail Branch Server 4.3","product":{"name":"SUSE Manager Retail Branch Server","vendor":{"name":"SUSE","scada":false}}},{"description":"openSUSE Leap 15.4","product":{"name":"openSUSE Leap","vendor":{"name":"SUSE","scada":false}}},{"description":"Basesystem Module 15-SP4","product":{"name":"Basesystem Module","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability Extension 15 SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro 5.2","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Server 4.2","product":{"name":"SUSE Manager Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability Extension 15 SP5","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP5","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15 SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro 5.1","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro for Rancher 5.4","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"Basesystem Module 15-SP5","product":{"name":"Basesystem Module","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15 SP5","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Availability Extension 15 SP3","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro 5.3","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"Legacy Module 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Real Time 15 SP5","product":{"name":"SUSE Linux Enterprise Real Time","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro for Rancher 5.3","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP3 Business Critical Linux 15-SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Real Time 15 SP4","product":{"name":"SUSE Linux Enterprise Real Time","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Enterprise Storage 7.1","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Proxy 4.3","product":{"name":"SUSE Manager Proxy","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 15-SP3","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro for Rancher 5.2","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Real Time Module 15-SP4","product":{"name":"SUSE Real Time Module","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server for SAP Applications 15 SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise High Performance Computing 15 SP3","product":{"name":"SUSE Linux Enterprise High Performance Computing","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro 5.5","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"Development Tools Module 15-SP4","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP4","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Workstation Extension 15 SP5","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"Development Tools Module 15-SP5","product":{"name":"N/A","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP3 LTSS 15-SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Manager Server 4.3","product":{"name":"SUSE Manager Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Desktop 15 SP4","product":{"name":"SUSE Linux Enterprise Desktop","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Server 15 SP3","product":{"name":"SUSE Linux Enterprise Server","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Micro 5.4","product":{"name":"SUSE Linux Enterprise Micro","vendor":{"name":"SUSE","scada":false}}},{"description":"SUSE Linux Enterprise Live Patching 15-SP4","product":{"name":"SUSE Linux Enterprise Live Patching","vendor":{"name":"SUSE","scada":false}}}],"affected_systems_content":null,"content":"## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2023-23454","url":"https://www.cve.org/CVERecord?id=CVE-2023-23454"},{"name":"CVE-2023-4004","url":"https://www.cve.org/CVERecord?id=CVE-2023-4004"},{"name":"CVE-2023-40283","url":"https://www.cve.org/CVERecord?id=CVE-2023-40283"},{"name":"CVE-2023-5345","url":"https://www.cve.org/CVERecord?id=CVE-2023-5345"},{"name":"CVE-2023-4389","url":"https://www.cve.org/CVERecord?id=CVE-2023-4389"},{"name":"CVE-2023-39193","url":"https://www.cve.org/CVERecord?id=CVE-2023-39193"},{"name":"CVE-2020-36766","url":"https://www.cve.org/CVERecord?id=CVE-2020-36766"},{"name":"CVE-2023-42753","url":"https://www.cve.org/CVERecord?id=CVE-2023-42753"},{"name":"CVE-2023-4921","url":"https://www.cve.org/CVERecord?id=CVE-2023-4921"},{"name":"CVE-2023-1859","url":"https://www.cve.org/CVERecord?id=CVE-2023-1859"},{"name":"CVE-2023-4563","url":"https://www.cve.org/CVERecord?id=CVE-2023-4563"},{"name":"CVE-2023-2177","url":"https://www.cve.org/CVERecord?id=CVE-2023-2177"},{"name":"CVE-2023-4155","url":"https://www.cve.org/CVERecord?id=CVE-2023-4155"},{"name":"CVE-2023-4622","url":"https://www.cve.org/CVERecord?id=CVE-2023-4622"},{"name":"CVE-2023-39192","url":"https://www.cve.org/CVERecord?id=CVE-2023-39192"},{"name":"CVE-2023-39194","url":"https://www.cve.org/CVERecord?id=CVE-2023-39194"},{"name":"CVE-2023-4881","url":"https://www.cve.org/CVERecord?id=CVE-2023-4881"},{"name":"CVE-2023-1206","url":"https://www.cve.org/CVERecord?id=CVE-2023-1206"},{"name":"CVE-2023-4623","url":"https://www.cve.org/CVERecord?id=CVE-2023-4623"},{"name":"CVE-2023-1192","url":"https://www.cve.org/CVERecord?id=CVE-2023-1192"},{"name":"CVE-2023-42754","url":"https://www.cve.org/CVERecord?id=CVE-2023-42754"}],"links":[],"reference":"CERTFR-2023-AVI-0873","revisions":[{"description":"Version initiale","revision_date":"2023-10-20T00:00:00.000000"},{"description":"Correction coquille.","revision_date":"2023-10-23T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Non sp\u00e9cifi\u00e9 par l'\u00e9diteur"},{"description":"Contournement de la politique de s\u00e9curit\u00e9"},{"description":"Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"},{"description":"\u00c9l\u00e9vation de privil\u00e8ges"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans <span\nclass=\"textit\">le noyau Linux de SUSE</span>. Certaines d'entre elles\npermettent \u00e0 un attaquant de provoquer une atteinte \u00e0 la confidentialit\u00e9\ndes donn\u00e9es, un contournement de la politique de s\u00e9curit\u00e9 et une\n\u00e9l\u00e9vation de privil\u00e8ges.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:4071-1 du 13 octobre 2023","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20234071-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:4072-1 du 13 octobre 2023","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20234072-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:4093-1 du 17 octobre 2023","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20234093-1/"},{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2023:4095-1 du 17 octobre 2023","url":"https://www.suse.com/support/update/announcement/2023/suse-su-20234095-1/"}]}