AZL-32122 CVE-2023-6111 affecting package hyperv-daemons for versions less than 5.15.143.1-1

A use-after-free vulnerability in the Linux kernel's netfilter: nftables component can be exploited to achieve local privilege escalation. The function nfttransgccatchall did not remove the catchall set element from the catchalllist when the argument sync is true, making it possible to free a...

CBL Mariner 2.0 Security Update: hyperv-daemons / kernel (CVE-2023-5345)

The version of hyperv-daemons / kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5345 advisory. - A use-after-free vulnerability in the Linux kernel's fs/smb/client component can be exploite...

CVE-2023-4622 affecting package hyperv-daemons for versions less than 5.15.135.1-1

CVE-2023-4622 affecting package hyperv-daemons for versions less than 5.15.135.1-1. A patched version of the package is available...

CVE-2023-3389 affecting package hyperv-daemons for versions less than 5.15.135.1-1

CVE-2023-3389 affecting package hyperv-daemons for versions less than 5.15.135.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-5345 affecting package hyperv-daemons for versions less than 5.15.135.1-1

CVE-2023-5345 affecting package hyperv-daemons for versions less than 5.15.135.1-1. A patched version of the package is available...

AZL-31813 CVE-2023-1193 affecting package hyperv-daemons for versions less than 5.15.145.2-1

A use-after-free flaw was found in setupasyncwork in the KSMBD implementation of the in-kernel samba server and CIFS in the Linux kernel. This issue could allow an attacker to crash the system by accessing freed work...

AZL-31777 CVE-2023-5178 affecting package hyperv-daemons for versions less than 5.15.137.1-1

A use-after-free vulnerability was found in drivers/nvme/target/tcp.c in nvmettcpfreecrypto due to a logical bug in the NVMe/TCP subsystem in the Linux kernel. This issue may allow a malicious user to cause a use-after-free and double-free problem, which may permit remote code execution or lead t...

AZL-31814 CVE-2023-5717 affecting package hyperv-daemons for versions less than 5.15.137.1-1

A heap out-of-bounds write vulnerability in the Linux kernel's Linux Kernel Performance Events perf component can be exploited to achieve local privilege escalation. If perfreadgroup is called while an event's siblinglist is smaller than its child's siblinglist, it can increment or write to memor...

CBL Mariner 2.0 Security Update: hyperv-daemons (CVE-2023-42753)

The version of hyperv-daemons installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-42753 advisory. - An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing...

CVE-2023-42753 affecting package hyperv-daemons for versions less than 5.15.133.1-1

CVE-2023-42753 affecting package hyperv-daemons for versions less than 5.15.133.1-1. An upgraded version of the package is available that resolves this issue...

CBL Mariner 2.0 Security Update: hyperv-daemons / kernel (CVE-2023-4273)

The version of hyperv-daemons / kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4273 advisory. - A flaw was found in the exFAT driver of the Linux kernel. The vulnerability exists in the...

CVE-2023-4273 affecting package hyperv-daemons for versions less than 5.15.131.1-1

CVE-2023-4273 affecting package hyperv-daemons for versions less than 5.15.131.1-1. An upgraded version of the package is available that resolves this issue...

AZL-30054 CVE-2023-42753 affecting package hyperv-daemons for versions less than 5.15.133.1-1

An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the h-nets array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound. This issue may allow a local...

AZL-31642 CVE-2023-4622 affecting package hyperv-daemons for versions less than 5.15.135.1-1

A use-after-free vulnerability in the Linux kernel's afunix component can be exploited to achieve local privilege escalation. The unixstreamsendpage function tries to add data to the last skb in the peer's recv queue without locking the queue. Thus there is a race where unixstreamsendpage could...

CVE-2023-3439 affecting package hyperv-daemons for versions less than 5.15.126.1-1

CVE-2023-3439 affecting package hyperv-daemons for versions less than 5.15.126.1-1. A patched version of the package is available...

CVE-2023-0386 affecting package hyperv-daemons 5.10.185.1-1

CVE-2023-0386 affecting package hyperv-daemons 5.10.185.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-1998 affecting package hyperv-daemons 5.10.188.1-1

CVE-2023-1998 affecting package hyperv-daemons 5.10.188.1-1. An upgraded version of the package is available that resolves this issue...

CBL Mariner 2.0 Security Update: hyperv-daemons / kernel (CVE-2023-38409)

The version of hyperv-daemons / kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-38409 advisory. - An issue was discovered in setcon2fbmap in drivers/video/fbdev/core/fbcon.c in the Linux...

CVE-2023-38432 affecting package hyperv-daemons for versions less than 5.15.122.1-1

CVE-2023-38432 affecting package hyperv-daemons for versions less than 5.15.122.1-1. A patched version of the package is available...

CVE-2023-38409 affecting package hyperv-daemons for versions less than 5.15.122.1-1

CVE-2023-38409 affecting package hyperv-daemons for versions less than 5.15.122.1-1. A patched version of the package is available...