SUSE SLED15 / SLES15 / openSUSE 15 Security Update : kernel-firmware (SUSE-SU-2024:2785-1)

medium Nessus Plugin ID 205119

Language:

Synopsis

The remote SUSE host is missing one or more security updates.

Description

The remote SUSE Linux SLED15 / SLED_SAP15 / SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2785-1 advisory.

Update to version 20240728:

* amdgpu: update DMCUB to v0.0.227.0 for DCN35 and DCN351
* Revert 'iwlwifi: update ty/So/Ma firmwares for core89-58 release'
* linux-firmware: update firmware for MT7922 WiFi device
* linux-firmware: update firmware for MT7921 WiFi device
* linux-firmware: update firmware for mediatek bluetooth chip (MT7922)
* linux-firmware: update firmware for mediatek bluetooth chip (MT7921)
* iwlwifi: add gl FW for core89-58 release
* iwlwifi: update ty/So/Ma firmwares for core89-58 release
* iwlwifi: update cc/Qu/QuZ firmwares for core89-58 release
* mediatek: Update mt8195 SOF firmware and sof-tplg
* ASoC: tas2781: fix the license issue for tas781 firmware
* rtl_bt: Update RTL8852B BT USB FW to 0x048F_4008
* i915: Update Xe2LPD DMC to v2.21
* qcom: move signed x1e80100 signed firmware to the SoC subdir
* qcom: add video firmware file for vpu-3.0
* intel: avs: Add topology file for I2S Analog Devices 4567
* intel: avs: Add topology file for I2S Nuvoton 8825
* intel: avs: Add topology file for I2S Maxim 98927
* intel: avs: Add topology file for I2S Maxim 98373
* intel: avs: Add topology file for I2S Maxim 98357a
* intel: avs: Add topology file for I2S Dialog 7219
* intel: avs: Add topology file for I2S Realtek 5663
* intel: avs: Add topology file for I2S Realtek 5640
* intel: avs: Add topology file for I2S Realtek 5514
* intel: avs: Add topology file for I2S Realtek 298
* intel: avs: Add topology file for I2S Realtek 286
* intel: avs: Add topology file for I2S Realtek 274
* intel: avs: Add topology file for Digital Microphone Array
* intel: avs: Add topology file for HDMI codecs
* intel: avs: Add topology file for HDAudio codecs
* intel: avs: Update AudioDSP base firmware for APL-based platforms

Tenable has extracted the preceding description block directly from the SUSE security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://bugzilla.suse.com/1225600

https://bugzilla.suse.com/1225601

https://lists.suse.com/pipermail/sle-updates/2024-August/036336.html

https://www.suse.com/security/cve/CVE-2023-38417

https://www.suse.com/security/cve/CVE-2023-47210

Plugin Details

Severity: Medium

ID: 205119

File Name: suse_SU-2024-2785-1.nasl

Version: 1.1

Type: local

Agent: unix

Published: 8/7/2024

Updated: 8/7/2024

Supported Sensors: Agentless Assessment, Continuous Assessment, Frictionless Assessment Agent, Frictionless Assessment AWS, Frictionless Assessment Azure, Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 1.6

CVSS v2

Risk Factor: Low

Base Score: 3.3

Temporal Score: 2.4

Vector: CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P

CVSS Score Source: CVE-2023-47210

CVSS v3

Risk Factor: Medium

Base Score: 4.7

Temporal Score: 4.1

Vector: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:novell:suse_linux:ucode-amd, p-cpe:/a:novell:suse_linux:kernel-firmware-usb-network, p-cpe:/a:novell:suse_linux:kernel-firmware-network, p-cpe:/a:novell:suse_linux:kernel-firmware-media, p-cpe:/a:novell:suse_linux:kernel-firmware-radeon, p-cpe:/a:novell:suse_linux:kernel-firmware-bnx2, p-cpe:/a:novell:suse_linux:kernel-firmware-qcom, p-cpe:/a:novell:suse_linux:kernel-firmware-marvell, p-cpe:/a:novell:suse_linux:kernel-firmware-atheros, p-cpe:/a:novell:suse_linux:kernel-firmware-serial, p-cpe:/a:novell:suse_linux:kernel-firmware-all, p-cpe:/a:novell:suse_linux:kernel-firmware-mellanox, p-cpe:/a:novell:suse_linux:kernel-firmware-dpaa2, p-cpe:/a:novell:suse_linux:kernel-firmware-nvidia, p-cpe:/a:novell:suse_linux:kernel-firmware-i915, p-cpe:/a:novell:suse_linux:kernel-firmware-ath11k, p-cpe:/a:novell:suse_linux:kernel-firmware-sound, p-cpe:/a:novell:suse_linux:kernel-firmware-ath10k, p-cpe:/a:novell:suse_linux:kernel-firmware-qlogic, p-cpe:/a:novell:suse_linux:kernel-firmware-mediatek, p-cpe:/a:novell:suse_linux:kernel-firmware-realtek, p-cpe:/a:novell:suse_linux:kernel-firmware-brcm, p-cpe:/a:novell:suse_linux:kernel-firmware-prestera, p-cpe:/a:novell:suse_linux:kernel-firmware-amdgpu, p-cpe:/a:novell:suse_linux:kernel-firmware-mwifiex, cpe:/o:novell:suse_linux:15, p-cpe:/a:novell:suse_linux:kernel-firmware-iwlwifi, p-cpe:/a:novell:suse_linux:kernel-firmware-liquidio, p-cpe:/a:novell:suse_linux:kernel-firmware-ti, p-cpe:/a:novell:suse_linux:kernel-firmware-ath12k, p-cpe:/a:novell:suse_linux:kernel-firmware-nfp, p-cpe:/a:novell:suse_linux:kernel-firmware-ueagle, p-cpe:/a:novell:suse_linux:kernel-firmware-bluetooth, p-cpe:/a:novell:suse_linux:kernel-firmware-chelsio, p-cpe:/a:novell:suse_linux:kernel-firmware-intel, p-cpe:/a:novell:suse_linux:kernel-firmware-platform

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list

Exploit Ease: No known exploits are available

Patch Publication Date: 8/6/2024

Vulnerability Publication Date: 5/16/2024

Reference Information

CVE: CVE-2023-38417, CVE-2023-47210

SuSE: SUSE-SU-2024:2785-1