CVE-2021-47217

The CVE-2021-47217 issue is in the Linux kernel's x86/hyperv code: a NULL dereference in set_hv_tscchange_cb() if Hyper-V setup fails. The vulnerability occurs when hv_vp_index is dereferenced without validating its array, causing a kernel NULL pointer dereference and potentially disabling Hyper-...

CVE-2021-47217 x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails

In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: Fix NULL deref in sethvtscchangecb if Hyper-V setup fails Check for a valid hvvpindex array prior to derefencing hvvpindex when setting Hyper-V's TSC change callback. If Hyper-V setup failed in hypervinit, the kernel...

CVE-2021-47217 x86/hyperv: Fix NULL deref in set_hv_tscchange_cb() if Hyper-V setup fails

In the Linux kernel, the following vulnerability has been resolved: x86/hyperv: Fix NULL deref in sethvtscchangecb if Hyper-V setup fails Check for a valid hvvpindex array prior to derefencing hvvpindex when setting Hyper-V's TSC change callback. If Hyper-V setup failed in hypervinit, the kernel...

CVE-2024-26594 affecting package hyperv-daemons for versions less than 5.15.153.1-1

CVE-2024-26594 affecting package hyperv-daemons for versions less than 5.15.153.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-52447 affecting package hyperv-daemons for versions less than 5.15.153.1-1

CVE-2023-52447 affecting package hyperv-daemons for versions less than 5.15.153.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-26581 affecting package hyperv-daemons for versions less than 5.15.153.1-1

CVE-2024-26581 affecting package hyperv-daemons for versions less than 5.15.153.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-0565 affecting package hyperv-daemons for versions less than 5.15.153.1-1

CVE-2024-0565 affecting package hyperv-daemons for versions less than 5.15.153.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2024-1151 affecting package hyperv-daemons for versions less than 6.6.22.1-2

CVE-2024-1151 affecting package hyperv-daemons for versions less than 6.6.22.1-2. An upgraded version of the package is available that resolves this issue...

CVE-2024-26581 affecting package hyperv-daemons for versions less than 6.6.22.1-2

CVE-2024-26581 affecting package hyperv-daemons for versions less than 6.6.22.1-2. An upgraded version of the package is available that resolves this issue...

CVE-2024-26583 affecting package hyperv-daemons for versions less than 6.6.22.1-2

CVE-2024-26583 affecting package hyperv-daemons for versions less than 6.6.22.1-2. An upgraded version of the package is available that resolves this issue...

CVE-2023-25012 affecting package hyperv-daemons for versions less than 6.6.14.1-1

CVE-2023-25012 affecting package hyperv-daemons for versions less than 6.6.14.1-1. A patched version of the package is available...

SUSE CVE-2021-47049

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Use after free in vmbusopen The "openinfo" variable is added to the &vmbusconnection.chnmsglist, but the error handling frees "openinfo" without removing it from the list. This will result in a use after free...

AZL-35478 CVE-2023-51779 affecting package hyperv-daemons for versions less than 6.6.29.1-1

btsockrecvmsg in net/bluetooth/afbluetooth.c in the Linux kernel through 6.6.8 has a use-after-free because of a btsockioctl race condition...

CVE-2021-47049

In the Linux kernel, the following vulnerability has been resolved: Drivers: hv: vmbus: Use after free in vmbusopen The "openinfo" variable is added to the &vmbusconnection.chnmsglist, but the error handling frees "openinfo" without removing it from the list. This will result in a use after free...

AZL-40024 CVE-2024-26602 affecting package hyperv-daemons for versions less than 6.6.35.1-1

In the Linux kernel, the following vulnerability has been resolved: sched/membarrier: reduce the ability to hammer on sysmembarrier On some systems, sysmembarrier can be very expensive, causing overall slowdowns for everything. So put a lock on the path in order to serialize the accesses to preve...

AZL-35452 CVE-2024-26594 affecting package hyperv-daemons for versions less than 5.15.153.1-1

In the Linux kernel, the following vulnerability has been resolved: ksmbd: validate mech token in session setup If client send invalid mech token in session setup request, ksmbd validate and make the error if it is invalid...

AZL-35474 CVE-2024-26583 affecting package hyperv-daemons for versions less than 6.6.22.1-2

In the Linux kernel, the following vulnerability has been resolved: tls: fix race between async notify and socket close The submitting thread one which called recvmsg/sendmsg may exit as soon as the async crypto handler calls complete so any code past that point risks touching already freed data...

AZL-35451 CVE-2024-26581 affecting package hyperv-daemons for versions less than 5.15.153.1-1

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetrbtree: skip end interval element from gc rbtree lazy gc on insert might collect an end interval element that has been just added in this transactions, skip end interval elements that are not yet active...

AZL-35475 CVE-2024-26581 affecting package hyperv-daemons for versions less than 6.6.22.1-2

In the Linux kernel, the following vulnerability has been resolved: netfilter: nftsetrbtree: skip end interval element from gc rbtree lazy gc on insert might collect an end interval element that has been just added in this transactions, skip end interval elements that are not yet active...

AZL-35476 CVE-2023-52429 affecting package hyperv-daemons for versions less than 6.6.22.1-2

dmtablecreate in drivers/md/dm-table.c in the Linux kernel through 6.7.4 can attempt to in alloctargets allocate more than INTMAX bytes, and crash, because of a missing check for struct dmioctl.targetcount...