Msrc Cbl2 Hyperv-Daemons 5.15.145.2-1 On Cbl Mariner 2.0 vulnerabilities

9 known vulnerabilities affecting msrc/cbl2_hyperv-daemons_5.15.145.2-1_on_cbl_mariner_2.0.

Total CVEs
9
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH7MEDIUM2

Vulnerabilities

Page 1 of 1
CVE-2023-51780HIGHCVSS 7.02023-12-12
CVE-2023-51780 [HIGH] CWE-416 An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition. An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main be
msrc
CVE-2023-1193MEDIUMCVSS 6.52023-11-14
CVE-2023-1193 [MEDIUM] CWE-416 Use-after-free in setup_async_work() Use-after-free in setup_async_work() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is c
msrc
CVE-2023-6121MEDIUMCVSS 4.32023-11-14
CVE-2023-6121 [MEDIUM] CWE-125 Kernel: nvme: info leak due to out-of-bounds read in nvmet_ctrl_find_get Kernel: nvme: info leak due to out-of-bounds read in nvmet_ctrl_find_get FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the
msrc
CVE-2023-32258HIGHCVSS 8.12023-07-11
CVE-2023-32258 [HIGH] CWE-667 Session race condition remote code execution vulnerability Session race condition remote code execution vulnerability FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with w
msrc
CVE-2023-32254HIGHCVSS 8.12023-07-11
CVE-2023-32254 [CRITICAL] CWE-362 Tree connection race condition remote code execution vulnerability Tree connection race condition remote code execution vulnerability FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sou
msrc
CVE-2023-32257HIGHCVSS 8.12023-07-11
CVE-2023-32257 [HIGH] CWE-667 Session race condition remote code execution vulnerability Session race condition remote code execution vulnerability FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with w
msrc
CVE-2023-32247HIGHCVSS 7.52023-07-11
CVE-2023-32247 [HIGH] CWE-401 Session setup memory exhaustion denial-of-service vulnerability Session setup memory exhaustion denial-of-service vulnerability FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librar
msrc
CVE-2023-32250HIGHCVSS 8.12023-07-11
CVE-2023-32250 [CRITICAL] CWE-362 Session race condition remote code execution vulnerability Session race condition remote code execution vulnerability FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi
msrc
CVE-2023-32252HIGHCVSS 7.52023-07-11
CVE-2023-32252 [HIGH] CWE-476 Session null pointer dereference denial-of-service vulnerability Session null pointer dereference denial-of-service vulnerability FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libr
msrc