suse/kernel-firmware&distro=SUSE Linux Enterprise Server for SAP Applications 15 SP2

Vulnerabilities (47)

• CVE-2023-31315HigAug 12, 2024
  affected < 20200107-150100.3.43.1fixed 20200107-150100.3.43.1

  Improper validation in a model specific register (MSR) could allow a malicious program with ring0 access to modify SMM configuration while SMI lock is enabled, potentially leading to arbitrary code execution.

• CVE-2023-20592Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  Improper or unexpected behavior of the INVD instruction in some AMD CPUs may allow an attacker with a malicious hypervisor to affect cache line write-back behavior of the CPU leading to a potential loss of guest virtual machine (VM) memory integrity.

• CVE-2023-20566Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  Improper address validation in ASP with SNP enabled may potentially allow an attacker to compromise guest memory integrity.

• CVE-2023-20519Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  A Use-After-Free vulnerability in the management of an SNP guest context page may allow a malicious hypervisor to masquerade as the guest's migration agent resulting in a potential loss of guest integrity.

• CVE-2022-23830Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  SMM configuration may not be immutable, as intended, when SNP is enabled resulting in a potential limited loss of guest memory integrity.

• CVE-2021-26345Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  Failure to validate the value in APCB may allow a privileged attacker to tamper with the APCB token to force an out-of-bounds memory read potentially resulting in a denial of service.

• CVE-2023-20533Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service.

• CVE-2023-20526Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  Insufficient input validation in the ASP Bootloader may enable a privileged attacker with physical access to expose the contents of ASP memory potentially leading to a loss of confidentiality.

• CVE-2023-20521Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  TOCTOU in the ASP Bootloader may allow an attacker with physical access to tamper with SPI ROM records after memory content verification, potentially leading to loss of confidentiality or a denial of service.

• CVE-2022-23820Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  Failure to validate the AMD SMM communication buffer may allow an attacker to corrupt the SMRAM potentially leading to arbitrary code execution.

• CVE-2021-46774Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  Insufficient DRAM address validation in System Management Unit (SMU) may allow an attacker to read/write from/to an invalid DRAM address, potentially resulting in denial-of-service.

• CVE-2021-46766Nov 14, 2023
  affected < 20200107-150100.3.40.1fixed 20200107-150100.3.40.1

  Improper clearing of sensitive data in the ASP Bootloader may expose secret keys to a privileged attacker accessing ASP SRAM, potentially leading to a loss of confidentiality.

• CVE-2023-20569Aug 8, 2023
  affected < 20200107-150100.3.37.1fixed 20200107-150100.3.37.1

  A side channel vulnerability on some of the AMD CPUs may allow an attacker to influence the return address prediction. This may result in speculative execution at an attacker-controlled address, potentially leading to information disclosure.

• CVE-2023-20593Jul 24, 2023
  affected < 20200107-150100.3.34.1fixed 20200107-150100.3.34.1

  An issue in “Zen 2” CPUs, under specific microarchitectural circumstances, may allow an attacker to potentially access sensitive information.

• CVE-2021-46744May 11, 2022
  affected < 20200107-150100.3.31.1fixed 20200107-150100.3.31.1

  An attacker with access to a malicious hypervisor may be able to infer data values used in a SEV guest on AMD CPUs by monitoring ciphertext values over time.

• CVE-2021-26388May 11, 2022
  affected < 20200107-150100.3.31.1fixed 20200107-150100.3.31.1

  Improper validation of the BIOS directory may allow for searches to read beyond the directory table copy in RAM, exposing out of bounds memory contents, resulting in a potential denial of service.

• CVE-2021-26376May 11, 2022
  affected < 20200107-150100.3.31.1fixed 20200107-150100.3.31.1

  Insufficient checks in System Management Unit (SMU) FeatureConfig may result in reenabling features potentially resulting in denial of resources and/or denial of service.

• CVE-2021-26373May 11, 2022
  affected < 20200107-150100.3.31.1fixed 20200107-150100.3.31.1

  Insufficient bound checks in the System Management Unit (SMU) may result in a system voltage malfunction that could result in denial of resources and/or possibly denial of service.

• CVE-2021-26348May 11, 2022
  affected < 20200107-150100.3.31.1fixed 20200107-150100.3.31.1

  Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential loss of integrity.

• CVE-2021-26364May 11, 2022
  affected < 20200107-150100.3.31.1fixed 20200107-150100.3.31.1

  Insufficient bounds checking in an SMU mailbox register could allow an attacker to potentially read outside of the SRAM address range which could result in an exception handling leading to a potential denial of service.