CVE-2023-1989 affecting package hyperv-daemons for versions less than 5.15.118.1-1

CVE-2023-1989 affecting package hyperv-daemons for versions less than 5.15.118.1-1. A patched version of the package is available...

CVE-2023-1998 affecting package hyperv-daemons for versions less than 5.15.118.1-1

CVE-2023-1998 affecting package hyperv-daemons for versions less than 5.15.118.1-1. A patched version of the package is available...

CVE-2023-3359 affecting package hyperv-daemons for versions less than 5.15.118.1-1

CVE-2023-3359 affecting package hyperv-daemons for versions less than 5.15.118.1-1. A patched version of the package is available...

CVE-2023-21102 affecting package hyperv-daemons for versions less than 5.15.118.1-1

CVE-2023-21102 affecting package hyperv-daemons for versions less than 5.15.118.1-1. A patched version of the package is available...

CVE-2023-25012 affecting package hyperv-daemons for versions less than 5.15.118.1-1

CVE-2023-25012 affecting package hyperv-daemons for versions less than 5.15.118.1-1. A patched version of the package is available...

AZL-33497 CVE-2023-3772 affecting package hyperv-daemons for versions less than 5.15.158.1-1

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to directly dereference a NULL pointer in xfrmupdateaeparams, leading to a possible kernel crash and denial of service...

AZL-33496 CVE-2023-3773 affecting package hyperv-daemons for versions less than 5.15.158.1-1

A flaw was found in the Linux kernel’s IP framework for transforming packets XFRM subsystem. This issue may allow a malicious user with CAPNETADMIN privileges to cause a 4 byte out-of-bounds read of XFRMAMTIMERTHRESH when parsing netlink attributes, leading to potential leakage of sensitive heap...

AZL-27638 CVE-2023-33952 affecting package hyperv-daemons for versions less than 5.15.158.1-1

A double-free vulnerability was found in handling vmwbufferobject objects in the vmwgfx driver in the Linux kernel. This issue occurs due to the lack of validating the existence of an object prior to performing further free operations on the object, which may allow a local privileged user to...

AZL-27637 CVE-2023-33951 affecting package hyperv-daemons for versions less than 5.15.158.1-1

A race condition vulnerability was found in the vmwgfx driver in the Linux kernel. The flaw exists within the handling of GEM objects. The issue results from improper locking when performing operations on an object. This flaw allows a local privileged user to disclose information in the context o...

AZL-27643 CVE-2023-32247 affecting package hyperv-daemons for versions less than 5.15.145.2-1

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2SESSIONSETUP commands. The issue results from the lack of control of resource consumption. An attacker can leverage this vulnerability to create a...

AZL-27639 CVE-2023-32257 affecting package hyperv-daemons for versions less than 5.15.145.2-1

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2SESSIONSETUP and SMB2LOGOFF commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage th...

AZL-27635 CVE-2023-32252 affecting package hyperv-daemons for versions less than 5.15.145.2-1

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the handling of SMB2LOGOFF commands. The issue results from the lack of proper validation of a pointer prior to accessing it. An attacker can leverage this vulnerability to creat...

AZL-27640 CVE-2023-32258 affecting package hyperv-daemons for versions less than 5.15.145.2-1

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2LOGOFF and SMB2CLOSE commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this...

AZL-27642 CVE-2023-38432 affecting package hyperv-daemons for versions less than 5.15.122.1-1

An issue was discovered in the Linux kernel before 6.3.10. fs/smb/server/smb2misc.c in ksmbd does not validate the relationship between the command payload size and the RFC1002 length specification, leading to an out-of-bounds read...

AZL-27671 CVE-2023-38409 affecting package hyperv-daemons for versions less than 5.15.122.1-1

An issue was discovered in setcon2fbmap in drivers/video/fbdev/core/fbcon.c in the Linux kernel before 6.2.12. Because an assignment occurs only for the first vc, the fbconregisteredfb and fbcondisplay arrays can be desynchronized in fbconmodedeleted the con2fbmap points at the old fbinfo...

AZL-27641 CVE-2023-32250 affecting package hyperv-daemons for versions less than 5.15.145.2-1

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2SESSIONSETUP commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this vulnerabilit...

AZL-27634 CVE-2023-32254 affecting package hyperv-daemons for versions less than 5.15.145.2-1

A flaw was found in the Linux kernel's ksmbd, a high-performance in-kernel SMB server. The specific flaw exists within the processing of SMB2TREEDISCONNECT commands. The issue results from the lack of proper locking when performing operations on an object. An attacker can leverage this...

AZL-27636 CVE-2023-3338 affecting package hyperv-daemons for versions less than 5.15.158.1-1

A null pointer dereference flaw was found in the Linux kernel's DECnet networking protocol. This issue could allow a remote user to crash the system...

AZL-34801 CVE-2023-3338 affecting package hyperv-daemons for versions less than 6.6.35.1-1

A null pointer dereference flaw was found in the Linux kernel's DECnet networking protocol. This issue could allow a remote user to crash the system...

AZL-27332 CVE-2023-3359 affecting package hyperv-daemons for versions less than 5.15.118.1-1

An issue was discovered in the Linux kernel brcmnvramparse in drivers/nvmem/brcmnvram.c. Lacks for the check of the return value of kzalloc can cause the NULL Pointer Dereference...