Login
Newsletter
Werbung
Sicherheit: Mehrere Probleme in ovmf
Aktuelle Meldungen Distributionen
Name: Mehrere Probleme in ovmf
ID: SUSE-SU-2025:0421-1
Distribution: SUSE
Plattformen: SUSE Linux Enterprise Desktop 15 SP6, SUSE Linux Enterprise Server for SAP Applications 15 SP6, SUSE Linux Enterprise Server 15 SP6, SUSE Linux Enterprise Real Time 15 SP6, SUSE openSUSE Leap 15.6, SUSE Package Hub 15 15-SP6, SUSE Server Applications Module 15-SP6
Datum: Di, 11. Februar 2025, 17:46
Referenzen: https://www.cve.org/CVERecord?id=CVE-2023-45235
https://www.cve.org/CVERecord?id=CVE-2023-45237
https://www.cve.org/CVERecord?id=CVE-2023-45232
https://www.cve.org/CVERecord?id=CVE-2023-45230
https://www.cve.org/CVERecord?id=CVE-2023-45229
https://www.cve.org/CVERecord?id=CVE-2023-45231
https://www.cve.org/CVERecord?id=CVE-2023-45236
https://www.cve.org/CVERecord?id=CVE-2023-45234
https://www.cve.org/CVERecord?id=CVE-2023-45233
Applikationen: OVMF

Originalnachricht

 
--===============0437803895852259960==
Content-Type: text/plain; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit



# Security update for ovmf

Announcement ID: SUSE-SU-2025:0421-1  
Release Date: 2025-02-11T10:28:30Z  
Rating: important  
References:

  * bsc#1218879
  * bsc#1218880
  * bsc#1218881
  * bsc#1218882
  * bsc#1218883
  * bsc#1218884
  * bsc#1218885
  * bsc#1218886
  * bsc#1218887

  
Cross-References:

  * CVE-2023-45229
  * CVE-2023-45230
  * CVE-2023-45231
  * CVE-2023-45232
  * CVE-2023-45233
  * CVE-2023-45234
  * CVE-2023-45235
  * CVE-2023-45236
  * CVE-2023-45237

  
CVSS scores:

  * CVE-2023-45229 ( SUSE ):  6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2023-45229 ( NVD ):  6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2023-45230 ( SUSE ):  8.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
  * CVE-2023-45230 ( NVD ):  8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  * CVE-2023-45230 ( NVD ):  8.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
  * CVE-2023-45231 ( SUSE ):  6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2023-45231 ( NVD ):  6.5 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2023-45232 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2023-45232 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2023-45233 ( SUSE ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2023-45233 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  * CVE-2023-45234 ( SUSE ):  8.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
  * CVE-2023-45234 ( NVD ):  8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  * CVE-2023-45235 ( SUSE ):  8.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H
  * CVE-2023-45235 ( NVD ):  8.8 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  * CVE-2023-45236 ( SUSE ):  5.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N
  * CVE-2023-45236 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
  * CVE-2023-45237 ( SUSE ):  5.3 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
  * CVE-2023-45237 ( NVD ):  7.5 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

  
Affected Products:

  * openSUSE Leap 15.6
  * Server Applications Module 15-SP6
  * SUSE Linux Enterprise Desktop 15 SP6
  * SUSE Linux Enterprise Real Time 15 SP6
  * SUSE Linux Enterprise Server 15 SP6
  * SUSE Linux Enterprise Server for SAP Applications 15 SP6
  * SUSE Package Hub 15 15-SP6

  
  
An update that solves nine vulnerabilities can now be installed.

## Description:

This update for ovmf fixes the following issues:

  * CVE-2023-45229: out-of-bounds read in edk2 when processing IA_NA/IA_TA
    options in DHCPv6 Advertise messages. (bsc#1218879)
  * CVE-2023-45230: buffer overflow in the DHCPv6 client in edk2 via a long
    Server ID option. (bsc#1218880)
  * CVE-2023-45231: out-of-bounds read in edk2 when handling a ND Redirect
    message with truncated options. (bsc#1218881)
  * CVE-2023-45232: infinite loop in edk2 when parsing unknown options in the
    Destination Options header. (bsc#1218882)
  * CVE-2023-45233: infinite loop in edk2 when parsing PadN options in the
    Destination Options header. (bsc#1218883)
  * CVE-2023-45234: buffer overflow in edk2 when processing DNS Servers options
    in a DHCPv6 Advertise message. (bsc#1218884)
  * CVE-2023-45235: buffer overflow in edk2 when handling the Server ID option
    in a DHCPv6 proxy Advertise message. (bsc#1218885)
  * CVE-2023-45236: predictable TCP Initial Sequence Numbers in edk2 network
    packages. (bsc#1218886)
  * CVE-2023-45237: use of a weak pseudorandom number generator in edk2.
    (bsc#1218887)

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * openSUSE Leap 15.6  
    zypper in -t patch SUSE-2025-421=1 openSUSE-SLE-15.6-2025-421=1

  * SUSE Package Hub 15 15-SP6  
    zypper in -t patch SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-421=1

  * Server Applications Module 15-SP6  
    zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP6-2025-421=1

## Package List:

  * openSUSE Leap 15.6 (aarch64 x86_64)
    * ovmf-202308-150600.5.9.1
    * ovmf-tools-202308-150600.5.9.1
  * openSUSE Leap 15.6 (noarch)
    * qemu-ovmf-x86_64-202308-150600.5.9.1
    * qemu-uefi-aarch32-202308-150600.5.9.1
    * qemu-ovmf-ia32-202308-150600.5.9.1
    * qemu-uefi-aarch64-202308-150600.5.9.1
  * openSUSE Leap 15.6 (x86_64)
    * qemu-ovmf-x86_64-debug-202308-150600.5.9.1
  * SUSE Package Hub 15 15-SP6 (noarch)
    * qemu-ovmf-x86_64-202308-150600.5.9.1
    * qemu-uefi-aarch32-202308-150600.5.9.1
    * qemu-uefi-aarch64-202308-150600.5.9.1
  * SUSE Package Hub 15 15-SP6 (x86_64)
    * qemu-ovmf-x86_64-debug-202308-150600.5.9.1
  * Server Applications Module 15-SP6 (aarch64 x86_64)
    * ovmf-202308-150600.5.9.1
    * ovmf-tools-202308-150600.5.9.1
  * Server Applications Module 15-SP6 (noarch)
    * qemu-ovmf-x86_64-202308-150600.5.9.1
    * qemu-uefi-aarch64-202308-150600.5.9.1

## References:

  * https://www.suse.com/security/cve/CVE-2023-45229.html
  * https://www.suse.com/security/cve/CVE-2023-45230.html
  * https://www.suse.com/security/cve/CVE-2023-45231.html
  * https://www.suse.com/security/cve/CVE-2023-45232.html
  * https://www.suse.com/security/cve/CVE-2023-45233.html
  * https://www.suse.com/security/cve/CVE-2023-45234.html
  * https://www.suse.com/security/cve/CVE-2023-45235.html
  * https://www.suse.com/security/cve/CVE-2023-45236.html
  * https://www.suse.com/security/cve/CVE-2023-45237.html
  * https://bugzilla.suse.com/show_bug.cgi?id=1218879
  * https://bugzilla.suse.com/show_bug.cgi?id=1218880
  * https://bugzilla.suse.com/show_bug.cgi?id=1218881
  * https://bugzilla.suse.com/show_bug.cgi?id=1218882
  * https://bugzilla.suse.com/show_bug.cgi?id=1218883
  * https://bugzilla.suse.com/show_bug.cgi?id=1218884
  * https://bugzilla.suse.com/show_bug.cgi?id=1218885
  * https://bugzilla.suse.com/show_bug.cgi?id=1218886
  * https://bugzilla.suse.com/show_bug.cgi?id=1218887


--===============0437803895852259960==
Content-Type: text/html; charset="utf-8"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit




<div class="container">
    <h1>Security update for ovmf</h1>

    <table class="table table-striped table-bordered">
        <tbody>
        <tr>
            <th>Announcement ID:</th>
            <td>SUSE-SU-2025:0421-1</td>
        </tr>
        <tr>
            <th>Release Date:</th>
            <td>2025-02-11T10:28:30Z</td>
        </tr>
        
        <tr>
            <th>Rating:</th>
            <td>important</td>
        </tr>
        <tr>
            <th>References:</th>
            <td>
                <ul>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218879">bsc#1218879</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218880">bsc#1218880</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218881">bsc#1218881</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218882">bsc#1218882</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218883">bsc#1218883</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218884">bsc#1218884</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218885">bsc#1218885</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218886">bsc#1218886</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218887">bsc#1218887</a>
                        </li>
                    
                    
                </ul>
            </td>
        </tr>
        
            <tr>
                <th>
                    Cross-References:
                </th>
                <td>
                    <ul>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2023-45229.html">CVE-2023-45229</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2023-45230.html">CVE-2023-45230</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2023-45231.html">CVE-2023-45231</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2023-45232.html">CVE-2023-45232</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2023-45233.html">CVE-2023-45233</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2023-45234.html">CVE-2023-45234</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2023-45235.html">CVE-2023-45235</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2023-45236.html">CVE-2023-45236</a>
                        </li>
                    
                        <li style="display: inline;">
                            <a href="https://www.suse.com/security/cve/CVE-2023-45237.html">CVE-2023-45237</a>
                        </li>
                    
                    </ul>
                </td>
            </tr>
            <tr>
                <th>CVSS scores:</th>
                <td>
                    <ul class="list-group">
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45229</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45229</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45230</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.3</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45230</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.8</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45230</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.3</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45231</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45231</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">6.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45232</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45232</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45233</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45233</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45234</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.3</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45234</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.8</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45235</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.3</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45235</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">8.8</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45236</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">5.8</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45236</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45237</span>
                                <span class="cvss-source">
                                    (
                                    
                                        SUSE
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">5.3</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N</span>
                            </li>
                        
                            <li class="list-group-item">
                                <span
 class="cvss-reference">CVE-2023-45237</span>
                                <span class="cvss-source">
                                    (
                                    
                                        NVD
                                    
                                    ):
                                </span>
                                <span
 class="cvss-score">7.5</span>
                                <span
 class="cvss-vector">CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N</span>
                            </li>
                        
                    </ul>
                </td>
            </tr>
        
        <tr>
            <th>Affected Products:</th>
            <td>
                <ul class="list-group">
                    
                        <li class="list-group-item">openSUSE Leap
 15.6</li>
                    
                        <li class="list-group-item">Server
 Applications Module 15-SP6</li>
                    
                        <li class="list-group-item">SUSE Linux
 Enterprise Desktop 15 SP6</li>
                    
                        <li class="list-group-item">SUSE Linux
 Enterprise Real Time 15 SP6</li>
                    
                        <li class="list-group-item">SUSE Linux
 Enterprise Server 15 SP6</li>
                    
                        <li class="list-group-item">SUSE Linux
 Enterprise Server for SAP Applications 15 SP6</li>
                    
                        <li class="list-group-item">SUSE Package
 Hub 15 15-SP6</li>
                    
                </ul>
            </td>
        </tr>
        </tbody>
    </table>

    <p>An update that solves nine vulnerabilities can now be
 installed.</p>

    


    
        <h2>Description:</h2>
    
    <p>This update for ovmf fixes the following issues:</p>
<ul>
<li>CVE-2023-45229: out-of-bounds read in edk2 when processing
 IA_NA/IA_TA options in DHCPv6 Advertise messages.
  (bsc#1218879)</li>
<li>CVE-2023-45230: buffer overflow in the DHCPv6 client in edk2 via a
 long Server ID option. (bsc#1218880)</li>
<li>CVE-2023-45231: out-of-bounds read in edk2 when handling a ND
 Redirect message with truncated options. (bsc#1218881)</li>
<li>CVE-2023-45232: infinite loop in edk2 when parsing unknown options in
 the Destination Options header. (bsc#1218882)</li>
<li>CVE-2023-45233: infinite loop in edk2 when parsing PadN options in
 the Destination Options header. (bsc#1218883)</li>
<li>CVE-2023-45234: buffer overflow in edk2 when processing DNS Servers
 options in a DHCPv6 Advertise message.
  (bsc#1218884)</li>
<li>CVE-2023-45235: buffer overflow in edk2 when handling the Server ID
 option in a DHCPv6 proxy Advertise message.
  (bsc#1218885)</li>
<li>CVE-2023-45236: predictable TCP Initial Sequence Numbers in edk2
 network packages. (bsc#1218886)</li>
<li>CVE-2023-45237: use of a weak pseudorandom number generator in edk2.
 (bsc#1218887)</li>
</ul>



    

    <h2>Patch Instructions:</h2>
    <p>
        To install this SUSE  update use the SUSE recommended
        installation methods like YaST online_update or "zypper
 patch".<br/>

        Alternatively you can run the command listed for your product:
    </p>
    <ul class="list-group">
        
            <li class="list-group-item">
                openSUSE Leap 15.6
                
                    
                        <br/>
                        <code>zypper in -t patch SUSE-2025-421=1
 openSUSE-SLE-15.6-2025-421=1</code>
                    
                    
                
            </li>
        
            <li class="list-group-item">
                SUSE Package Hub 15 15-SP6
                
                    
                        <br/>
                        <code>zypper in -t patch
 SUSE-SLE-Module-Packagehub-Subpackages-15-SP6-2025-421=1</code>
                    
                    
                
            </li>
        
            <li class="list-group-item">
                Server Applications Module 15-SP6
                
                    
                        <br/>
                        <code>zypper in -t patch
 SUSE-SLE-Module-Server-Applications-15-SP6-2025-421=1</code>
                    
                    
                
            </li>
        
    </ul>

    <h2>Package List:</h2>
    <ul>
        
            
                <li>
                    openSUSE Leap 15.6 (aarch64 x86_64)
                    <ul>
                        
                            <li>ovmf-202308-150600.5.9.1</li>
                        
                            <li>ovmf-tools-202308-150600.5.9.1</li>
                        
                    </ul>
                </li>
            
                <li>
                    openSUSE Leap 15.6 (noarch)
                    <ul>
                        
                           
 <li>qemu-ovmf-x86_64-202308-150600.5.9.1</li>
                        
                           
 <li>qemu-uefi-aarch32-202308-150600.5.9.1</li>
                        
                           
 <li>qemu-ovmf-ia32-202308-150600.5.9.1</li>
                        
                           
 <li>qemu-uefi-aarch64-202308-150600.5.9.1</li>
                        
                    </ul>
                </li>
            
                <li>
                    openSUSE Leap 15.6 (x86_64)
                    <ul>
                        
                           
 <li>qemu-ovmf-x86_64-debug-202308-150600.5.9.1</li>
                        
                    </ul>
                </li>
            
        
            
                <li>
                    SUSE Package Hub 15 15-SP6 (noarch)
                    <ul>
                        
                           
 <li>qemu-ovmf-x86_64-202308-150600.5.9.1</li>
                        
                           
 <li>qemu-uefi-aarch32-202308-150600.5.9.1</li>
                        
                           
 <li>qemu-uefi-aarch64-202308-150600.5.9.1</li>
                        
                    </ul>
                </li>
            
                <li>
                    SUSE Package Hub 15 15-SP6 (x86_64)
                    <ul>
                        
                           
 <li>qemu-ovmf-x86_64-debug-202308-150600.5.9.1</li>
                        
                    </ul>
                </li>
            
        
            
                <li>
                    Server Applications Module 15-SP6 (aarch64 x86_64)
                    <ul>
                        
                            <li>ovmf-202308-150600.5.9.1</li>
                        
                            <li>ovmf-tools-202308-150600.5.9.1</li>
                        
                    </ul>
                </li>
            
                <li>
                    Server Applications Module 15-SP6 (noarch)
                    <ul>
                        
                           
 <li>qemu-ovmf-x86_64-202308-150600.5.9.1</li>
                        
                           
 <li>qemu-uefi-aarch64-202308-150600.5.9.1</li>
                        
                    </ul>
                </li>
            
        
    </ul>

    
        <h2>References:</h2>
        <ul>
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2023-45229.html">https://www.suse.com/security/cve/CVE-2023-45229.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2023-45230.html">https://www.suse.com/security/cve/CVE-2023-45230.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2023-45231.html">https://www.suse.com/security/cve/CVE-2023-45231.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2023-45232.html">https://www.suse.com/security/cve/CVE-2023-45232.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2023-45233.html">https://www.suse.com/security/cve/CVE-2023-45233.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2023-45234.html">https://www.suse.com/security/cve/CVE-2023-45234.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2023-45235.html">https://www.suse.com/security/cve/CVE-2023-45235.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2023-45236.html">https://www.suse.com/security/cve/CVE-2023-45236.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://www.suse.com/security/cve/CVE-2023-45237.html">https://www.suse.com/security/cve/CVE-2023-45237.html</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218879">https://bugzilla.suse.com/show_bug.cgi?id=1218879</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218880">https://bugzilla.suse.com/show_bug.cgi?id=1218880</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218881">https://bugzilla.suse.com/show_bug.cgi?id=1218881</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218882">https://bugzilla.suse.com/show_bug.cgi?id=1218882</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218883">https://bugzilla.suse.com/show_bug.cgi?id=1218883</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218884">https://bugzilla.suse.com/show_bug.cgi?id=1218884</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218885">https://bugzilla.suse.com/show_bug.cgi?id=1218885</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218886">https://bugzilla.suse.com/show_bug.cgi?id=1218886</a>
                    </li>
                
            
                
                    <li>
                        <a href="https://bugzilla.suse.com/show_bug.cgi?id=1218887">https://bugzilla.suse.com/show_bug.cgi?id=1218887</a>
                    </li>
                
            
        </ul>
    
</div>

--===============0437803895852259960==--
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten

141
Mach­t's gut!

51
Neue Raspber­ry Pi-Va­ri­an­te mit 8 GB RAM

0
Genode 20.05 frei­ge­ge­ben

9
Sub­ver­si­on 1.14.0-LTS vor­ge­stellt

0
»Hum­ble Ci­ties: Sky­lines Bund­le« vor­ge­stellt

0
End of Life für Co­reOS Con­tai­ner Linux ver­kün­det

32
Elek­tra 0.9.2 er­schie­nen

8
Nex­tDNS ver­lässt die Be­ta-Pha­se

23
Tu­xe­do stellt Ga­mer-Note­book vor

0
Libre Gra­phics Mee­ting be­ginnt als On­li­ne-Va­ri­an­te
 
Werbung