CVE-2023-20593
medium
CVSS v3
β
CVSS v4 NEW
β
VIR risk
5.5
Description
Moderate: linux-firmware security update
Predictions
Exploit likelihood
20%
Patch ETA
β
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Mitigation details
Source: Red Hat Errata β Red Hat Inc. Β· View original β Β· Open-Errata-API
Description hw: amd: Cross-Process Information Leak Red Hat statement Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability. CVSS v3: 6.5 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N) Errata / fixed releasesβ¦
Workaround
for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
Description
hw: amd: Cross-Process Information Leak
Red Hat statement
Mitigation for this issue is either not available or the currently available options don't meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.
CVSS v3: 6.5 (CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N)
Errata / fixed releases
| Product | Package | Advisory | Released |
|---|---|---|---|
| Red Hat Enterprise Linux 7 | kernel-rt-0:3.10.0-1160.99.1.rt56.1245.el7 | RHSA-2023:4821 | 2023-08-29T00:00:00Z |
| Red Hat Enterprise Linux 7 | kernel-0:3.10.0-1160.99.1.el7 | RHSA-2023:4819 | 2023-08-29T00:00:00Z |
| Red Hat Enterprise Linux 7 | linux-firmware-0:20200421-81.git78c0348.el7_9 | RHSA-2023:7513 | 2023-11-27T00:00:00Z |
| Red Hat Enterprise Linux 7.4 Advanced Update Support | kernel-0:3.10.0-693.112.1.el7 | RHSA-2023:4699 | 2023-08-22T00:00:00Z |
| Red Hat Enterprise Linux 7.6 Advanced Update Support(Disable again in 2026 - SPRHEL-7118) | kernel-0:3.10.0-957.105.1.el7 | RHSA-2023:4696 | 2023-08-22T00:00:00Z |
| Red Hat Enterprise Linux 7.6 Advanced Update Support(Disable again in 2026 - SPRHEL-7118) | linux-firmware-0:20180911-69.2.git85c5d90.el7_6 | RHSA-2023:7782 | 2023-12-13T00:00:00Z |
| Red Hat Enterprise Linux 7.7 Advanced Update Support | kernel-0:3.10.0-1062.79.1.el7 | RHSA-2023:5419 | 2023-10-03T00:00:00Z |
| Red Hat Enterprise Linux 7.7 Advanced Update Support | linux-firmware-0:20190429-74.gitddde598.el7_7 | RHSA-2023:7244 | 2023-11-15T00:00:00Z |
| Red Hat Enterprise Linux 8 | kernel-rt-0:4.18.0-477.27.1.rt7.290.el8_8 | RHSA-2023:5255 | 2023-09-19T00:00:00Z |
| Red Hat Enterprise Linux 8 | kernel-0:4.18.0-477.27.1.el8_8 | RHSA-2023:5244 | 2023-09-19T00:00:00Z |
| Red Hat Enterprise Linux 8 | linux-firmware-0:20230404-117.git2e92a49f.el8_8 | RHSA-2023:5245 | 2023-09-19T00:00:00Z |
| Red Hat Enterprise Linux 8.1 Update Services for SAP Solutions | linux-firmware-0:20190516-97.git711d3297.el8_1 | RHSA-2023:7665 | 2023-12-06T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Advanced Update Support | linux-firmware-0:20191202-100.gite8a0f4c9.el8_2 | RHSA-2023:5591 | 2023-10-10T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Advanced Update Support | kernel-0:4.18.0-193.120.1.el8_2 | RHSA-2024:0403 | 2024-01-25T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Telecommunications Update Service | kernel-rt-0:4.18.0-193.120.1.rt13.171.el8_2 | RHSA-2024:0402 | 2024-01-25T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Telecommunications Update Service | linux-firmware-0:20191202-100.gite8a0f4c9.el8_2 | RHSA-2023:5591 | 2023-10-10T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Telecommunications Update Service | kernel-0:4.18.0-193.120.1.el8_2 | RHSA-2024:0403 | 2024-01-25T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions | linux-firmware-0:20191202-100.gite8a0f4c9.el8_2 | RHSA-2023:5591 | 2023-10-10T00:00:00Z |
| Red Hat Enterprise Linux 8.2 Update Services for SAP Solutions | kernel-0:4.18.0-193.120.1.el8_2 | RHSA-2024:0403 | 2024-01-25T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support | kernel-0:4.18.0-305.114.1.el8_4 | RHSA-2023:7557 | 2023-11-28T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support | linux-firmware-0:20201218-105.git05789708.el8_4 | RHSA-2024:0561 | 2024-01-30T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Telecommunications Update Service | kernel-rt-0:4.18.0-305.114.1.rt7.190.el8_4 | RHSA-2023:7551 | 2023-11-28T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Telecommunications Update Service | kernel-0:4.18.0-305.114.1.el8_4 | RHSA-2023:7557 | 2023-11-28T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Telecommunications Update Service | linux-firmware-0:20201218-105.git05789708.el8_4 | RHSA-2024:0561 | 2024-01-30T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions | kernel-0:4.18.0-305.114.1.el8_4 | RHSA-2023:7557 | 2023-11-28T00:00:00Z |
| Red Hat Enterprise Linux 8.4 Update Services for SAP Solutions | linux-firmware-0:20201218-105.git05789708.el8_4 | RHSA-2024:0561 | 2024-01-30T00:00:00Z |
| Red Hat Enterprise Linux 8.6 Extended Update Support | kernel-0:4.18.0-372.70.1.el8_6 | RHSA-2023:4789 | 2023-08-29T00:00:00Z |
| Red Hat Enterprise Linux 8.6 Extended Update Support | linux-firmware-0:20220210-112.git6342082c.el8_6 | RHSA-2023:7401 | 2023-11-21T00:00:00Z |
| Red Hat Enterprise Linux 9 | kernel-0:5.14.0-284.30.1.el9_2 | RHSA-2023:5069 | 2023-09-12T00:00:00Z |
| Red Hat Enterprise Linux 9 | kernel-rt-0:5.14.0-284.30.1.rt14.315.el9_2 | RHSA-2023:5091 | 2023-09-12T00:00:00Z |
| Red Hat Enterprise Linux 9 | linux-firmware-0:20230310-135.el9_2 | RHSA-2023:5068 | 2023-09-12T00:00:00Z |
| Red Hat Enterprise Linux 9 | kernel-0:5.14.0-284.30.1.el9_2 | RHSA-2023:5069 | 2023-09-12T00:00:00Z |
| Red Hat Enterprise Linux 9.0 Extended Update Support | kernel-0:5.14.0-70.80.1.el9_0 | RHSA-2023:7382 | 2023-11-21T00:00:00Z |
| Red Hat Enterprise Linux 9.0 Extended Update Support | kernel-rt-0:5.14.0-70.80.1.rt21.151.el9_0 | RHSA-2023:7389 | 2023-11-21T00:00:00Z |
| Red Hat Enterprise Linux 9.0 Extended Update Support | linux-firmware-0:20220209-128.el9_0 | RHSA-2023:5607 | 2023-10-10T00:00:00Z |
| Red Hat Virtualization 4 for Red Hat Enterprise Linux 8 | kernel-0:4.18.0-372.70.1.el8_6 | RHSA-2023:4789 | 2023-08-29T00:00:00Z |
Package state
| Product | Package | State |
|---|---|---|
| Red Hat Enterprise Linux 6 | kernel | Not affected |
| Red Hat Enterprise Linux 6 | microcode_ctl | Not affected |
Apply commands
Apply RHSA-2023:4821 for Red Hat Enterprise Linux 7
yum update -y kernel-rt
# or:
dnf upgrade -y kernel-rtAffected
| Vendor | Product | Version |
|---|---|---|
| redhat | Red Hat Enterprise Linux 6 | Not affected |
| redhat | Red Hat Enterprise Linux 6 | Not affected |
OS impact
SUSE Affected 1 release
| Version | Status | Fixed in |
|---|---|---|
| β | Affected | β |
AlmaLinux Fixed 1 release
| Version | Status | Fixed in |
|---|---|---|
| 9 | Fixed | kernel-debug-devel-matched-5.14.0-284.30.1.el9_2.aarch64.rpm |
Debian Fixed 5 releases
| Version | Status | Fixed in |
|---|---|---|
| trixie | Fixed | 3.20230719.1 |
| sid | Fixed | 3.20230719.1 |
| forky | Fixed | 3.20230719.1 |
| bullseye | Fixed | 3.20230719.1~deb11u1 |
| bookworm | Fixed | 3.20230719.1~deb12u1 |
Red Hat Fixed 2 releases
| Version | Status | Fixed in |
|---|---|---|
| 9 | Fixed | β |
| 8 | Fixed | β |
Rocky Linux Fixed 2 releases
| Version | Status | Fixed in |
|---|---|---|
| 9 | Fixed | β |
| 8 | Fixed | β |
References
- https://security-tracker.debian.org/tracker/CVE-2023-20593
- https://access.redhat.com/errata/RHSA-2023:5068
- https://access.redhat.com/errata/RHSA-2023:5069
- https://access.redhat.com/errata/RHSA-2023:5091
- https://errata.rockylinux.org/RXSA-2023:5244
- https://errata.rockylinux.org/RLSA-2023:5244
- https://www.suse.com/security/cve/CVE-2023-20593.html
- https://errata.rockylinux.org/RLSA-2023:5091
- https://access.redhat.com/errata/RHSA-2023:5245
- https://bugzilla.redhat.com/2217845
- https://errata.almalinux.org/8/ALSA-2023-5245.html
- https://errata.almalinux.org/9/ALSA-2023-5068.html
- https://access.redhat.com/errata/RHSA-2023:5244
- https://bugzilla.redhat.com/2187308
- https://bugzilla.redhat.com/2213260
- https://bugzilla.redhat.com/2215768
- https://bugzilla.redhat.com/2218672
- https://bugzilla.redhat.com/2220892
- https://bugzilla.redhat.com/2225097
- https://bugzilla.redhat.com/2225275
- https://errata.almalinux.org/8/ALSA-2023-5244.html
- https://bugzilla.redhat.com/2181891
- https://bugzilla.redhat.com/2213455
- https://bugzilla.redhat.com/2220893
- https://bugzilla.redhat.com/2225198
Community-verified mitigations for this CVE will appear above when contributors publish them.
Verify integrity in audit chain (admin only). AS-IS.