# Security update for kernel-firmware

Announcement ID: SUSE-SU-2024:2575-1  
Rating: moderate  
References:

  * bsc#1219458
  * bsc#1222319
  * bsc#1225600
  * bsc#1225601

  
Cross-References:

  * CVE-2023-38417
  * CVE-2023-47210

  
CVSS scores:

  * CVE-2023-38417 ( SUSE ):  4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
  * CVE-2023-47210 ( SUSE ):  4.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

  
Affected Products:

  * Basesystem Module 15-SP6
  * openSUSE Leap 15.6
  * SUSE Linux Enterprise Desktop 15 SP6
  * SUSE Linux Enterprise Real Time 15 SP6
  * SUSE Linux Enterprise Server 15 SP6
  * SUSE Linux Enterprise Server for SAP Applications 15 SP6

  
  
An update that solves two vulnerabilities and has two security fixes can now be
installed.

## Description:

This update for kernel-firmware fixes the following issues:

  * CVE-2023-38417: Fixed improper input validation for some Intel(R)
    PROSet/Wireless WiFi software for linux before version 23.20 (bsc#1225600)
  * CVE-2023-47210: Fixed improper input validation for some Intel(R)
    PROSet/Wireless WiFi software before version 23.20 (bsc#1225601)

  * Update to version 20240712 (git commit ed874ed83cac):

  * amdgpu: update DMCUB to v0.0.225.0 for Various AMDGPU Asics
  * qcom: add gpu firmwares for x1e80100 chipset (bsc#1219458)
  * linux-firmware: add firmware for qat_402xx devices
  * amdgpu: update raven firmware
  * amdgpu: update SMU 13.0.10 firmware
  * amdgpu: update SDMA 6.0.3 firmware
  * amdgpu: update PSP 13.0.10 firmware
  * amdgpu: update GC 11.0.3 firmware
  * amdgpu: update vega20 firmware
  * amdgpu: update PSP 13.0.5 firmware
  * amdgpu: update PSP 13.0.8 firmware
  * amdgpu: update vega12 firmware
  * amdgpu: update vega10 firmware
  * amdgpu: update VCN 4.0.0 firmware
  * amdgpu: update SDMA 6.0.0 firmware
  * amdgpu: update PSP 13.0.0 firmware
  * amdgpu: update GC 11.0.0 firmware
  * amdgpu: update picasso firmware
  * amdgpu: update beige goby firmware
  * amdgpu: update vangogh firmware
  * amdgpu: update dimgrey cavefish firmware
  * amdgpu: update navy flounder firmware
  * amdgpu: update PSP 13.0.11 firmware
  * amdgpu: update GC 11.0.4 firmware
  * amdgpu: update green sardine firmware
  * amdgpu: update VCN 4.0.2 firmware
  * amdgpu: update SDMA 6.0.1 firmware
  * amdgpu: update PSP 13.0.4 firmware
  * amdgpu: update GC 11.0.1 firmware
  * amdgpu: update sienna cichlid firmware
  * amdgpu: update VPE 6.1.1 firmware
  * amdgpu: update VCN 4.0.6 firmware
  * amdgpu: update SDMA 6.1.1 firmware
  * amdgpu: update PSP 14.0.1 firmware
  * amdgpu: update GC 11.5.1 firmware
  * amdgpu: update VCN 4.0.5 firmware
  * amdgpu: update SDMA 6.1.0 firmware
  * amdgpu: update PSP 14.0.0 firmware
  * amdgpu: update GC 11.5.0 firmware
  * amdgpu: update navi14 firmware
  * amdgpu: update renoir firmware
  * amdgpu: update navi12 firmware
  * amdgpu: update PSP 13.0.6 firmware
  * amdgpu: update GC 9.4.3 firmware
  * amdgpu: update yellow carp firmware
  * amdgpu: update VCN 4.0.4 firmware
  * amdgpu: update SMU 13.0.7 firmware
  * amdgpu: update SDMA 6.0.2 firmware
  * amdgpu: update PSP 13.0.7 firmware
  * amdgpu: update GC 11.0.2 firmware
  * amdgpu: update navi10 firmware
  * amdgpu: update raven2 firmware
  * amdgpu: update aldebaran firmware
  * linux-firmware: Update AMD cpu microcode
  * linux-firmware: Add ISH firmware file for Intel Lunar Lake platform
  * amdgpu: update DMCUB to v0.0.224.0 for Various AMDGPU Asics
  * cirrus: cs35l41: Update various firmware for ASUS laptops using CS35L41
  * amdgpu: Update ISP FW for isp v4.1.1

  * Update to version 20240622 (git commit 7d931f8afa51):

  * linux-firmware: mediatek: Update MT8173 VPU firmware to v1.2.0
  * qcom: Add AIC100 firmware files

  * Update to version 20240618 (git commit 7d931f8afa51):

  * amlogic: Update bluetooth firmware binary
  * linux-firmware: Update firmware file for Intel BlazarU core
  * linux-firmware: Update firmware file for Intel Bluetooth Magnetor core
  * linux-firmware: Update firmware file for Intel Bluetooth Solar core
  * linux-firmware: Update firmware file for Intel Bluetooth Pulsar core
  * rtl_bt: Update RTL8822C BT UART firmware to 0xB5D6_6DCB
  * rtl_bt: Update RTL8822C BT USB firmware to 0xAED6_6DCB
  * amdgpu: update DMCUB to v0.0.222.0 for DCN314
  * iwlwifi: add ty/So/Ma firmwares for core88-87 release
  * iwlwifi: update cc/Qu/QuZ firmwares for core88-87 release
  * linux-firmware: add new cc33xx firmware for cc33xx chips
  * cirrus: cs35l56: Update firmware for Cirrus CS35L56 for ASUS UM5606 laptop
  * cirrus: cs35l56: Update firmware for Cirrus CS35L56 for various ASUS laptops
  * linux-firmware: Add firmware for Lenovo Thinkbooks
  * amdgpu: update yellow carp firmware
  * amdgpu: update VCN 4.0.4 firmware
  * amdgpu: update SDMA 6.0.2 firmware
  * amdgpu: update PSP 13.0.7 firmware
  * amdgpu: update GC 11.0.2 firmware
  * amdgpu: update navi10 firmware
  * amdgpu: update raven2 firmware
  * amdgpu: update raven firmware
  * amdgpu: update SMU 13.0.10 firmware
  * amdgpu: update SDMA 6.0.3 firmware
  * amdgpu: update PSP 13.0.10 firmware
  * amdgpu: update GC 11.0.3 firmware
  * amdgpu: update VCN 3.1.2 firmware
  * amdgpu: update PSP 13.0.5 firmware
  * amdgpu: update psp 13.0.8 firmware
  * amdgpu: update vega20 firmware
  * amdgpu: update vega12 firmware
  * amdgpu: update vega10 firmware
  * amdgpu: update VCN 4.0.0 firmware
  * amdgpu: update smu 13.0.0 firmware
  * amdgpu: update SDMA 6.0.0 firmware
  * amdgpu: update PSP 13.0.0 firmware
  * amdgpu: update GC 11.0.0 firmware
  * amdgpu: update picasso firmware
  * amdgpu: update beige goby firmware
  * amdgpu: update vangogh firmware
  * amdgpu: update dimgrey cavefish firmware
  * amdgpu: update green sardine firmware
  * amdgpu: update navy flounder firmware
  * amdgpu: update PSP 13.0.11 firmware
  * amdgpu: update GC 11.0.4 firmware
  * amdgpu: update VCN 4.0.2 firmware
  * amdgpu: update SDMA 6.0.1 firmware
  * amdgpu: update PSP 13.0.4 firmware
  * amdgpu: update GC 11.0.1 firmware
  * amdgpu: update sienna cichlid firmware
  * amdgpu: update VCN 4.0.5 firmware
  * amdgpu: update PSP 14.0.0 firmware
  * amdgpu: update GC 11.5.0 firmware
  * amdgpu: update navi14 firmware
  * amdgpu: update SMU 13.0.6 firmware
  * amdgpu: update PSP 13.0.6 firmware
  * amdgpu: update GC 9.4.3 firmware
  * amdgpu: update renoir firmware
  * amdgpu: update navi12 firmware
  * amdgpu: update aldebaran firmware
  * amdgpu: add support for PSP 14.0.1
  * amdgpu: add support for VPE 6.1.1
  * amdgpu: add support for VCN 4.0.6
  * amdgpu: add support for SDMA 6.1.1
  * amdgpu: add support for GC 11.5.1
  * amdgpu: Add support for DCN 3.5.1
  * QCA: Update Bluetooth QCA2066 firmware to 2.1.0-00639
  * cnm: update chips&media wave521c firmware.
  * linux-firmware: Add ordinary firmware for RTL8821AU device

  * Update to version 20240519 (git commit aae8224390e2):

  * amdgpu: add new ISP 4.1.1 firmware

  * Update to version 20240510 (git commit 7c2303328d8e):

  * linux-firmware: Amphion: Update vpu firmware
  * linux-firmware: Update firmware file for Intel BlazarU core
  * linux-firmware: Update firmware file for Intel Bluetooth Magnetor core
  * linux-firmware: Update firmware file for Intel Bluetooth Solar core
  * linux-firmware: Update firmware file for Intel Bluetooth Solar core
  * i915: Add BMG DMC v2.06
  * linux-firmware: Add CS35L41 HDA Firmware for Asus HN7306
  * linux-firmware: Update firmware tuning for HP Consumer Laptop
  * amdgpu: DMCUB updates for various AMDGPU ASICs
  * rtl_bt: Update RTL8822C BT UART firmware to 0x0FD6_407B
  * rtl_bt: Update RTL8822C BT USB firmware to 0x0ED6_407B
  * cirrus: cs35l56: Add firmware for Cirrus CS35L56 for various ASUS laptops
  * linux-firmware: Add firmware and tuning for Lenovo Y770S

  * Update to version 20240426 (git commit 2398d264f953):

  * amdgpu: DMCUB updates for various AMDGPU ASICs
  * linux-firmware: Add firmware for Cirrus CS35L56 for various HP laptops
  * i915: Update Xe2LPD DMC to v2.20
  * linux-firmware: Remove Calibration Firmware and Tuning for CS35L41
  * linux-firmware: Add firmware for Lenovo Thinkbook 13X
  * ASoC: tas2781: Add dsp firmware for Thinkpad ICE-1 laptop
  * amdgpu: add DMCUB 3.5 firmware
  * amdgpu: add VPE 6.1.0 firmware
  * amdgpu: add VCN 4.0.5 firmware
  * amdgpu: add UMSCH 4.0.0 firmware
  * amdgpu: add SDMA 6.1.0 firmware
  * amdgpu: add PSP 14.0.0 firmware
  * amdgpu: add GC 11.5.0 firmware
  * amdgpu: update license date

  * Update to version 20240419 (git commit 7eab37522984):

  * Montage: update firmware for Mont-TSSE
  * linux-firmware: Add tuning parameter configs for CS35L41 Firmware
  * linux-firmware: Fix firmware names for Laptop SSID 104316a3
  * linux-firmware: Add CS35L41 HDA Firmware for Lenovo Legion Slim 7 16ARHA7
  * linux-firmware: update firmware for mediatek bluetooth chip (MT7922)
  * linux-firmware: update firmware for MT7922 WiFi device
  * iwlwifi: add gl FW for core87-44 release
  * iwlwifi: add ty/So/Ma firmwares for core87-44 release
  * iwlwifi: update cc/Qu/QuZ firmwares for core87-44 release
  * nvidia: Update Tegra210 XUSB firmware to v50.29
  * amdgpu: update beige goby firmware
  * amdgpu: update dimgrey cavefish firmware
  * amdgpu: update psp 13.0.11 firmware
  * amdgpu: update gc 11.0.4 firmware
  * amdgpu: update navy flounder firmware
  * amdgpu: update renoir firmware
  * amdgpu: update vcn 4.0.2 firmware
  * amdgpu: update sdma 6.0.1 firmware
  * amdgpu: update psp 13.0.4 firmware
  * amdgpu: update gc 11.0.1 firmware
  * amdgpu: update sienna cichlid firmware
  * amdgpu: update vega20 firmware
  * amdgpu: update yellow carp firmware
  * amdgpu: update green sardine firmware
  * amdgpu: update vega12 firmware
  * amdgpu: update raven2 firmware
  * amdgpu: update vcn 4.0.4 firmware
  * amdgpu: update smu 13.0.7 firmware
  * amdgpu: update sdma 6.0.2 firmware
  * amdgpu: update ipsp 13.0.7 firmware
  * amdgpu: update gc 11.0.2 firmware
  * amdgpu: update vega10 firmware
  * amdgpu: update raven firmware
  * amdgpu: update navi14 firmware
  * amdgpu: update smu 13.0.10 firmware
  * amdgpu: update sdma 6.0.3 firmware
  * amdgpu: update psp 13.0.10 firmware
  * amdgpu: update gc 11.0.3 firmware
  * amdgpu: update vcn 3.1.2 firmware
  * amdgpu: update psp 13.0.5 firmware
  * amdgpu: update gc 10.3.6 firmware
  * amdgpu: update navi12 firmware
  * amdgpu: update arcturus firmware
  * amdgpu: update vangogh firmware
  * amdgpu: update navi10 firmware
  * amdgpu: update vcn 4.0.3 firmware
  * amdgpu: update smu 13.0.6 firmware
  * amdgpu: update psp 13.0.6 firmware
  * amdgpu: update gc 9.4.3 firmware
  * amdgpu: update vcn 4.0.0 firmware
  * amdgpu: update smu 13.0.0 firmware
  * amdgpu: update sdma 6.0.0 firmware
  * amdgpu: update psp 13.0.0 firmware
  * amdgpu: update gc 11.0.0 firmware
  * amdgpu: update firmware
  * amdgpu: update aldebaran firmware
  * amdgpu: update psp 13.0.8 firmware
  * amdgpu: update gc 10.3.7 firmware
  * linux-firmware: mediatek: Update MT8173 VPU firmware to v1.1.9
  * ath10k: WCN3990: hw1.0: add qcm2290 firmware API file
  * ath10k: WCN3990: hw1.0: move firmware back from qcom/ location
  * i915: Add DG2 HuC 7.10.15
  * amdgpu: DMCUB updates for various AMDGPU ASICs
  * linux-firmware: update firmware for en8811h 2.5G ethernet phy
  * rtw89: 8852c: update fw to v0.27.56.14
  * rtw89: 8922a: add firmware v0.35.18.0
  * rtw88: Add RTL8703B firmware v11.0.0

  * Drop duplicated WHENCE from kernel-firmware-* subpackages (bsc#1222319)

  * Update to version 20240322 (git commit 9a6a0cc195c1):

  * mekdiatek: Update mt8186 SOF firmware to v2.0.1
  * linux-firmware: Add firmware for Cirrus CS35L56 for Dell laptops
  * Montage: update firmware for Mont-TSSE
  * WHENCE: Link the Raspberry Pi CM4 and 5B to the 4B
  * Intel Bluetooth: Update firmware file for Intel Bluetooth BE200
  * Intel Bluetooth: Update firmware file for Magnetor Intel Bluetooth AX101
  * Intel Bluetooth: Update firmware file for Magnetor Intel Bluetooth AX203
  * Intel Bluetooth: Update firmware file for Magnetor Intel Bluetooth AX211
  * Intel Bluetooth: Update firmware file for SolarF Intel Bluetooth AX101
  * Intel Bluetooth: Update firmware file for Solar Intel Bluetooth AX101
  * Intel Bluetooth: Update firmware file for SolarF Intel Bluetooth AX203
  * Intel Bluetooth: Update firmware file for Solar Intel Bluetooth AX203
  * Intel Bluetooth: Update firmware file for SolarF Intel Bluetooth AX211
  * Intel Bluetooth: Update firmware file for Solar Intel Bluetooth AX211
  * Intel Bluetooth: Update firmware file for Solar Intel Bluetooth AX210
  * Intel Bluetooth: Update firmware file for Intel Bluetooth AX200
  * Intel Bluetooth: Update firmware file for Intel Bluetooth AX201
  * Intel Bluetooth: Update firmware file for Intel Bluetooth 9560
  * Intel Bluetooth: Update firmware file for Intel Bluetooth 9260
  * amdgpu: DMCUB updates for various AMDGPU ASICs
  * linux-firmware: mediatek: Update MT8173 VPU firmware to v1.1.8
  * imx: sdma: update firmware to v3.6/v4.6

  * Update to version 20240312 (git commit 4a404b5bfdb9):

  * linux-firmware: update firmware for mediatek bluetooth chip (MT7921)
  * iwlwifi: update 9000-family firmwares to core85-89
  * rtl_bt: Update RTL8852A BT USB firmware to 0xD9D6_17DA
  * linux-firmware: update firmware for MT7921 WiFi device
  * linux-firmware: update firmware for mediatek bluetooth chip (MT7922)
  * linux-firmware: update firmware for MT7922 WiFi device
  * linux-firmware: Add CS35L41 HDA Firmware for Lenovo Thinkbook 16P Laptops

  * Update to version 20240229 (git commit 977332782302):

  * amdgpu: Update VCN firmware binaries
  * Intel IPU2: Add firmware files
  * brcm: Add nvram for the Acer Iconia One 7 B1-750 tablet
  * i915: Add Xe2LPD DMC v2.18
  * i915: Update MTL DMC v2.21

  * Update to version 20240220 (git commit 73b4429fae36):

  * linux-firmware: update firmware for en8811h 2.5G ethernet phy
  * linux-firmware: add firmware for MT7996
  * xe: First GuC release for LNL and Xe
  * i915: Add GuC v70.20.0 for ADL-P, DG1, DG2, MTL and TGL
  * linux-firmware: Add CS35L41 firmware for Lenovo Legion 7i gen7 laptop
    (16IAX7)
  * brcm: Add nvram for the Asus Memo Pad 7 ME176C tablet
  * ice: update ice DDP package to 1.3.36.0
  * Intel IPU3 ImgU: Move firmware file under intel/ipu
  * Intel IPU6: Move firmware binaries under ipu/
  * check_whence: Add a check for duplicate link entries
  * WHENCE: Clean up section separators
  * linux-firmware: Add CS35L41 firmware for additional ASUS Zenbook 2023 models
  * panthor: Add initial firmware for Gen10 Arm Mali GPUs
  * amdgpu: DMCUB Updates for DCN321: 7.0.38.0
  * amdgpu: DMCUB updates for Yellow Carp: 4.0.68.0
  * qcom: update venus firmware file for v5.4
  * Montage: add firmware for Mont-TSSE
  * amdgpu: update DMCUB to v0.0.203.0 for DCN314 and DCN32
  * linux-firmware: Remove 2 HP laptops using CS35L41 Audio Firmware
  * linux-firmware: Fix filenames for some CS35L41 firmwares for HP

## Special Instructions and Notes:

  * Please reboot the system after installing this update.

## Patch Instructions:

To install this SUSE update use the SUSE recommended installation methods like
YaST online_update or "zypper patch".  
Alternatively you can run the command listed for your product:

  * openSUSE Leap 15.6  
    zypper in -t patch SUSE-2024-2575=1 openSUSE-SLE-15.6-2024-2575=1

  * Basesystem Module 15-SP6  
    zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP6-2024-2575=1

## Package List:

  * openSUSE Leap 15.6 (noarch)
    * kernel-firmware-ath12k-20240712-150600.3.3.1
    * kernel-firmware-marvell-20240712-150600.3.3.1
    * kernel-firmware-nfp-20240712-150600.3.3.1
    * kernel-firmware-dpaa2-20240712-150600.3.3.1
    * kernel-firmware-chelsio-20240712-150600.3.3.1
    * kernel-firmware-prestera-20240712-150600.3.3.1
    * kernel-firmware-realtek-20240712-150600.3.3.1
    * kernel-firmware-bnx2-20240712-150600.3.3.1
    * kernel-firmware-bluetooth-20240712-150600.3.3.1
    * kernel-firmware-mellanox-20240712-150600.3.3.1
    * kernel-firmware-liquidio-20240712-150600.3.3.1
    * kernel-firmware-ath10k-20240712-150600.3.3.1
    * ucode-amd-20240712-150600.3.3.1
    * kernel-firmware-ueagle-20240712-150600.3.3.1
    * kernel-firmware-mediatek-20240712-150600.3.3.1
    * kernel-firmware-mwifiex-20240712-150600.3.3.1
    * kernel-firmware-atheros-20240712-150600.3.3.1
    * kernel-firmware-qcom-20240712-150600.3.3.1
    * kernel-firmware-network-20240712-150600.3.3.1
    * kernel-firmware-radeon-20240712-150600.3.3.1
    * kernel-firmware-i915-20240712-150600.3.3.1
    * kernel-firmware-iwlwifi-20240712-150600.3.3.1
    * kernel-firmware-serial-20240712-150600.3.3.1
    * kernel-firmware-usb-network-20240712-150600.3.3.1
    * kernel-firmware-amdgpu-20240712-150600.3.3.1
    * kernel-firmware-nvidia-20240712-150600.3.3.1
    * kernel-firmware-intel-20240712-150600.3.3.1
    * kernel-firmware-ti-20240712-150600.3.3.1
    * kernel-firmware-ath11k-20240712-150600.3.3.1
    * kernel-firmware-media-20240712-150600.3.3.1
    * kernel-firmware-qlogic-20240712-150600.3.3.1
    * kernel-firmware-all-20240712-150600.3.3.1
    * kernel-firmware-20240712-150600.3.3.1
    * kernel-firmware-sound-20240712-150600.3.3.1
    * kernel-firmware-platform-20240712-150600.3.3.1
    * kernel-firmware-brcm-20240712-150600.3.3.1
  * Basesystem Module 15-SP6 (noarch)
    * kernel-firmware-ath12k-20240712-150600.3.3.1
    * kernel-firmware-marvell-20240712-150600.3.3.1
    * kernel-firmware-nfp-20240712-150600.3.3.1
    * kernel-firmware-dpaa2-20240712-150600.3.3.1
    * kernel-firmware-chelsio-20240712-150600.3.3.1
    * kernel-firmware-prestera-20240712-150600.3.3.1
    * kernel-firmware-realtek-20240712-150600.3.3.1
    * kernel-firmware-bnx2-20240712-150600.3.3.1
    * kernel-firmware-bluetooth-20240712-150600.3.3.1
    * kernel-firmware-mellanox-20240712-150600.3.3.1
    * kernel-firmware-liquidio-20240712-150600.3.3.1
    * kernel-firmware-ath10k-20240712-150600.3.3.1
    * ucode-amd-20240712-150600.3.3.1
    * kernel-firmware-ueagle-20240712-150600.3.3.1
    * kernel-firmware-mediatek-20240712-150600.3.3.1
    * kernel-firmware-mwifiex-20240712-150600.3.3.1
    * kernel-firmware-atheros-20240712-150600.3.3.1
    * kernel-firmware-qcom-20240712-150600.3.3.1
    * kernel-firmware-network-20240712-150600.3.3.1
    * kernel-firmware-radeon-20240712-150600.3.3.1
    * kernel-firmware-i915-20240712-150600.3.3.1
    * kernel-firmware-iwlwifi-20240712-150600.3.3.1
    * kernel-firmware-serial-20240712-150600.3.3.1
    * kernel-firmware-usb-network-20240712-150600.3.3.1
    * kernel-firmware-amdgpu-20240712-150600.3.3.1
    * kernel-firmware-nvidia-20240712-150600.3.3.1
    * kernel-firmware-intel-20240712-150600.3.3.1
    * kernel-firmware-ti-20240712-150600.3.3.1
    * kernel-firmware-ath11k-20240712-150600.3.3.1
    * kernel-firmware-media-20240712-150600.3.3.1
    * kernel-firmware-qlogic-20240712-150600.3.3.1
    * kernel-firmware-all-20240712-150600.3.3.1
    * kernel-firmware-sound-20240712-150600.3.3.1
    * kernel-firmware-platform-20240712-150600.3.3.1
    * kernel-firmware-brcm-20240712-150600.3.3.1

## References:

  * https://www.suse.com/security/cve/CVE-2023-38417.html
  * https://www.suse.com/security/cve/CVE-2023-47210.html
  * https://bugzilla.suse.com/show_bug.cgi?id=1219458
  * https://bugzilla.suse.com/show_bug.cgi?id=1222319
  * https://bugzilla.suse.com/show_bug.cgi?id=1225600
  * https://bugzilla.suse.com/show_bug.cgi?id=1225601

Kernel-Firmware Security Advisory: SUSE Updates for Vulnerabilities

July 22, 2024
* bsc#1219458 * bsc#1222319 * bsc#1225600 * bsc#1225601

Summary

## This update for kernel-firmware fixes the following issues: * CVE-2023-38417: Fixed improper input validation for some Intel(R) PROSet/Wireless WiFi software for linux before version 23.20 (bsc#1225600) * CVE-2023-47210: Fixed improper input validation for some Intel(R) PROSet/Wireless WiFi software before version 23.20 (bsc#1225601) * Update to version 20240712 (git commit ed874ed83cac): * amdgpu: update DMCUB to v0.0.225.0 for Various AMDGPU Asics * qcom: add gpu firmwares for x1e80100 chipset (bsc#1219458) * linux-firmware: add firmware for qat_402xx devices * amdgpu: update raven firmware * amdgpu: update SMU 13.0.10 firmware * amdgpu: update SDMA 6.0.3 firmware * amdgpu: update PSP 13.0.10 firmware * amdgpu: update GC 11.0.3 firmware * amdgpu: update vega20 firmware * amdgpu: update PSP 13.0.5 firmware * amdgpu: update PSP 13.0.8 firmware * amdgpu: update vega12 firmware * amdgpu: update vega10 firmware * amdgpu: update VCN 4.0....

Read the Full Advisory

References

* bsc#1219458

* bsc#1222319

* bsc#1225600

* bsc#1225601

Cross-

* CVE-2023-38417

* CVE-2023-47210

CVSS scores:

* CVE-2023-38417 ( SUSE ): 4.3 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

* CVE-2023-47210 ( SUSE ): 4.7 CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Affected Products:

* Basesystem Module 15-SP6

* openSUSE Leap 15.6

* SUSE Linux Enterprise Desktop 15 SP6

* SUSE Linux Enterprise Real Time 15 SP6

* SUSE Linux Enterprise Server 15 SP6

* SUSE Linux Enterprise Server for SAP Applications 15 SP6

An update that solves two vulnerabilities and has two security fixes can now be

installed.

##

* https://www.suse.com/security/cve/CVE-2023-38417.html

* https://www.suse.com/security/cve/CVE-2023-47210.html

* https://bugzilla.suse.com/show_bug.cgi?id=1219458

* https://bugzilla.suse.com/show_bug.cgi?id=1222319

* https://bugzilla.suse.com/show_bug.cgi?id=1225600

* https://bugzilla.suse.com/show_bug.cgi?id=1225601

Severity
Announcement ID: SUSE-SU-2024:2575-1
Rating: moderate

Related News

The End of the Road for Linux 6.11: A Call to Upgrade to Kernel 6.12
3 - 5 min read
The Linux kernel community recently issued an EOL announcement regarding the 6.11 kernel series, urging sysadmins to upgrade quickly to 6.12 . This
A Linux Admin
3 - 6 min read
As 2025 approaches, we Linux admins are facing new and often unseen cloud-native security obstacles. While skilled at mitigating known risks,
Leveraging Insights from the Linux Foundation
3 - 5 min read
The Linux Foundation's recent Census III report provides critical insights for Linux administrators, information security professionals, and anyone
Chrome 131 Released: Emergency Security Update Fixes Over a Dozen Significant Vulns
3 - 6 min read
Google recently unveiled a critical security update to their popular web browser, Google Chrome, addressing over a dozen significant security
From Wayland Fixes to Security Boosts: Examining Qt 6.8.1
3 - 6 min read
The recent Qt 6.8.1 release brings significant updates and improvements, strengthening its reputation as a secure and reliable application
Exploring Arch Linux 2024.12.01: Security Implications & Notable Enhancements for Linux Admins
3 - 6 min read
The Arch Linux 2024.12.01 ISO release marks an impressive milestone, offering cutting-edge updates that enhance functionality, streamline
Deck the Halls with Enhanced Security: Linux Kernel 6.13
3 - 5 min read
As Linux admins and infosec professionals prepare for the holiday season, there's much cause for celebration this year! Linus Torvalds recently made
Lessons from Bootkitty: Securing Linux Systems Against UEFI Intrusions
3 - 5 min read
New Linux security threats mark critical junctures that challenge existing policies and test security protocols to their limit. One such milestone

Get the Latest News & Insights

Sign up to get the latest security news affecting Linux and open source delivered straight to your inbox.

© 2024 Guardian Digital, Inc All Rights Reserved