Msrc Cbl2 Kernel 5.15.135.1-2 On Cbl Mariner 2.0 vulnerabilities

CVE-2023-45898 [HIGH] CWE-416 The Linux kernel before 6.5.4 has an es1 use-after-free in fs/ext4/extents_status.c related to ext4_es_insert_extent. The Linux kernel before 6.5.4 has an es1 use-after-free in fs/ext4/extents_status.c related to ext4_es_insert_extent. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is

CVE-2023-5345 [HIGH] CWE-416 Use-after-free in Linux kernel's fs/smb/client component Use-after-free in Linux kernel's fs/smb/client component FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2023-45871 [HIGH] CWE-131 An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the Linux kernel before 6.5.3. A buffer size may not be adequate for frames larger than the MTU. An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the Linux kernel before 6.5.3. A buffer size may not be adequate for frames larger than the MTU. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is th

CVE-2023-39192 [MEDIUM] CWE-125 Kernel: netfilter: xtables out-of-bounds read in u32_match_it() Kernel: netfilter: xtables out-of-bounds read in u32_match_it() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libr

CVE-2023-39194 [LOW] CWE-125 Kernel: xfrm: out-of-bounds read in __xfrm_state_filter_match() Kernel: xfrm: out-of-bounds read in __xfrm_state_filter_match() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librari

CVE-2023-45862 [MEDIUM] CWE-770 An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel before 6.2.5. An object could potentially extend beyond the end of an allocation. An issue was discovered in drivers/usb/storage/ene_ub6250.c for the ENE UB6250 reader driver in the Linux kernel before 6.2.5. An object could potentially extend beyond the end of an allocation. FAQ: Is Azure Linux the only Microsoft product that includes this open-source

CVE-2023-40791 [MEDIUM] extract_user_to_sg in lib/scatterlist.c in the Linux kernel before 6.4.12 fails to unpin pages in a certain situation as demonstrated by a WARNING for try_grab_page. extract_user_to_sg in lib/scatterlist.c in the Linux kernel before 6.4.12 fails to unpin pages in a certain situation as demonstrated by a WARNING for try_grab_page. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerabili

CVE-2023-42754 [MEDIUM] CWE-476 Kernel: ipv4: null pointer dereference in ipv4_send_dest_unreach() Kernel: ipv4: null pointer dereference in ipv4_send_dest_unreach() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sourc

CVE-2023-45863 [MEDIUM] CWE-787 An issue was discovered in lib/kobject.c in the Linux kernel before 6.2.3. With root access an attacker can trigger a race condition that results in a fill_kobj_path out-of-bounds write. An issue was discovered in lib/kobject.c in the Linux kernel before 6.2.3. With root access an attacker can trigger a race condition that results in a fill_kobj_path out-of-bounds write. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is

CVE-2023-39193 [MEDIUM] CWE-125 Kernel: netfilter: xtables sctp out-of-bounds read in match_flags() Kernel: netfilter: xtables sctp out-of-bounds read in match_flags() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sou

CVE-2023-42755 [MEDIUM] CWE-125 Kernel: rsvp: out-of-bounds read in rsvp_classify() Kernel: rsvp: out-of-bounds read in rsvp_classify() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dis

CVE-2023-39189 [MEDIUM] CWE-125 Kernel: netfilter: nftables out-of-bounds read in nf_osf_match_one() Kernel: netfilter: nftables out-of-bounds read in nf_osf_match_one() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open s

CVE-2023-4623 [HIGH] CWE-416 Use-after-free in Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component Use-after-free in Linux kernel's net/sched: sch_hfsc (HFSC qdisc traffic control) component FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most re

CVE-2023-44466 [HIGH] CWE-120 An issue was discovered in net/ceph/messenger_v2.c in the Linux kernel before 6.4.5. There is an integer signedness error leading to a buffer overflow and remote code execution via HELLO or one of the An issue was discovered in net/ceph/messenger_v2.c in the Linux kernel before 6.4.5. There is an integer signedness error leading to a buffer overflow and remote code execution via HELLO or one of the AUTH frames. This occurs because of an untrusted length taken from a

CVE-2023-42753 [HIGH] CWE-787 Kernel: netfilter: potential slab-out-of-bound access due to integer underflow Kernel: netfilter: potential slab-out-of-bound access due to integer underflow FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure vers

CVE-2023-4244 [HIGH] CWE-416 Use-after-free in Linux kernel's netfilter: nf_tables component Use-after-free in Linux kernel's netfilter: nf_tables component FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librari

CVE-2023-42756 [MEDIUM] CWE-362 Kernel: netfilter: race condition between ipset_cmd_add and ipset_cmd_swap Kernel: netfilter: race condition between ipset_cmd_add and ipset_cmd_swap FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions o

CVE-2023-5197 [HIGH] CWE-416 Use-after-free in Linux kernel's netfilter: nf_tables component Use-after-free in Linux kernel's netfilter: nf_tables component FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librari

CVE-2023-4611 [HIGH] CWE-416 Use after free race between mbind() and vma-locked page fault Use after free race between mbind() and vma-locked page fault FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries w

CVE-2023-32258 [HIGH] CWE-667 Session race condition remote code execution vulnerability Session race condition remote code execution vulnerability FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with w