AZL-27329 CVE-2023-3439 affecting package hyperv-daemons for versions less than 5.15.126.1-1

A flaw was found in the MCTP protocol in the Linux kernel. The function mctpunregister reclaims the device's relevant resource when a netcard detaches. However, a running routine may be unaware of this and cause the use-after-free of the mdev-addrs object, potentially leading to a denial of servi...

AZL-31612 CVE-2023-3389 affecting package hyperv-daemons for versions less than 5.15.135.1-1

A use-after-free vulnerability in the Linux Kernel iouring subsystem can be exploited to achieve local privilege escalation. Racing a iouring cancel poll request with a linked timeout can cause a UAF in a hrtimer. We recommend upgrading past commit ef7dfac51d8ed961b742218f526bd589f3900a59...

AZL-27331 CVE-2023-35826 affecting package hyperv-daemons for versions less than 5.15.158.1-1

An issue was discovered in the Linux kernel before 6.3.2. A use-after-free was found in cedrusremove in drivers/staging/media/sunxi/cedrus/cedrus.c...

CVE-2023-32013

Windows Hyper-V Denial of Service Vulnerability...

CVE-2023-23000 affecting package hyperv-daemons 5.10.179.1-1

CVE-2023-23000 affecting package hyperv-daemons 5.10.179.1-1. An upgraded version of the package is available that resolves this issue...

Unbreakable Enterprise kernel security update

5.15.0-102.110.5 - RISC-V: Fix up a cherry-pick warning in setupvmfinal Alexandre Ghiti - Revert 'Bluetooth: btsdio: fix use after free bug in btsdioremove due to unfinished work' Liu Jian - riscv: mm: remove redundant parameter of createfdtearlypagetable Song Shuai - kernfs: change...

CBL Mariner 2.0 Security Update: hyperv-daemons / kernel (CVE-2023-2513)

The version of hyperv-daemons / kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2513 advisory. - A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it...

CBL Mariner 2.0 Security Update: hyperv-daemons / kernel (CVE-2023-31436)

The version of hyperv-daemons / kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-31436 advisory. - qfqchangeclass in net/sched/schqfq.c in the Linux kernel before 6.2.13 allows an...

CVE-2023-31436 affecting package hyperv-daemons 5.10.177.1-1

CVE-2023-31436 affecting package hyperv-daemons 5.10.177.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-2513 affecting package hyperv-daemons 5.10.177.1-1

CVE-2023-2513 affecting package hyperv-daemons 5.10.177.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-31436 affecting package hyperv-daemons for versions less than 5.15.111.1-1

CVE-2023-31436 affecting package hyperv-daemons for versions less than 5.15.111.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-23000 affecting package hyperv-daemons for versions less than 5.15.111.1-1

CVE-2023-23000 affecting package hyperv-daemons for versions less than 5.15.111.1-1. An upgraded version of the package is available that resolves this issue...

AZL-26872 CVE-2023-21102 affecting package hyperv-daemons for versions less than 5.15.118.1-1

In efirtasmwrapper of efi-rt-wrapper.S, there is a possible bypass of shadow stack protection due to a logic error in the code. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions...

CVE-2023-1652 affecting package hyperv-daemons 5.10.174.1-1

CVE-2023-1652 affecting package hyperv-daemons 5.10.174.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-30772 affecting package hyperv-daemons 5.10.174.1-1

CVE-2023-30772 affecting package hyperv-daemons 5.10.174.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-1855 affecting package hyperv-daemons 5.10.174.1-1

CVE-2023-1855 affecting package hyperv-daemons 5.10.174.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-1670 affecting package hyperv-daemons 5.10.174.1-1

CVE-2023-1670 affecting package hyperv-daemons 5.10.174.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-1990 affecting package hyperv-daemons 5.10.174.1-1

CVE-2023-1990 affecting package hyperv-daemons 5.10.174.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-1855 affecting package hyperv-daemons for versions less than 5.15.107.1-1

CVE-2023-1855 affecting package hyperv-daemons for versions less than 5.15.107.1-1. An upgraded version of the package is available that resolves this issue...

CVE-2023-1670 affecting package hyperv-daemons for versions less than 5.15.107.1-1

CVE-2023-1670 affecting package hyperv-daemons for versions less than 5.15.107.1-1. An upgraded version of the package is available that resolves this issue...