Security update for qatlib SUSE Patch security@suse.de SUSE Security Team SUSE-SU-2024:3558-1 Final 1 1 2024-10-09T07:26:04Z current 2024-10-09T07:26:04Z 2024-10-09T07:26:04Z cve-database/bin/generate-cvrf.pl 2017-02-24T01:00:00Z Security update for qatlib This update for qatlib fixes the following issues: - CVE-2023-22313: Fixed a local information disclosure due to improper buffer restrictions (bsc#1217158). The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). SUSE-2024-3558 Copyright SUSE LLC under the Creative Commons License 4.0 with Attribution (CC-BY-4.0) https://www.suse.com/support/update/announcement/2024/suse-su-20243558-1/ Link for SUSE-SU-2024:3558-1 https://lists.suse.com/pipermail/sle-security-updates/2024-October/019571.html E-Mail link for SUSE-SU-2024:3558-1 https://www.suse.com/support/security/rating/ SUSE Security Ratings https://bugzilla.suse.com/1217158 SUSE Bug 1217158 https://www.suse.com/security/cve/CVE-2023-22313/ SUSE CVE CVE-2023-22313 page qatlib-21.08.0-150400.3.3.3 qatlib-devel-21.08.0-150400.3.3.3 Improper buffer restrictions in some Intel(R) QAT Library software before version 22.07.1 may allow a privileged user to potentially enable information disclosure via local access. CVE-2023-22313 low To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or "zypper patch". https://www.suse.com/support/update/announcement/2024/suse-su-20243558-1/ https://www.suse.com/security/cve/CVE-2023-22313.html CVE-2023-22313 https://bugzilla.suse.com/1217158 SUSE Bug 1217158