Msrc Cbl2 Kernel 5.15.18.1-1 On Cbl Mariner 2.0 vulnerabilities

CVE-2021-22600 [MEDIUM] CWE-415 Double Free in net/packet/af_packet.c leading to priviledge escalation Double Free in net/packet/af_packet.c leading to priviledge escalation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the op

CVE-2022-23222 [HIGH] CWE-476 kernel/bpf/verifier.c in the Linux kernel through 5.15.14 allows local users to gain privileges because of the availability of pointer arithmetic via certain *_OR_NULL pointer types. kernel/bpf/verifier.c in the Linux kernel through 5.15.14 allows local users to gain privileges because of the availability of pointer arithmetic via certain *_OR_NULL pointer types. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore

CVE-2021-44733 [HIGH] CWE-362 A use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel through 5.15.11. This occurs because of a race condition in tee_shm_get_from_id during an attempt to free a sh A use-after-free exists in drivers/tee/tee_shm.c in the TEE subsystem in the Linux kernel through 5.15.11. This occurs because of a race condition in tee_shm_get_from_id during an attempt to free a shared memory object. FAQ: Is Azure Linux the only Microsoft product t

CVE-2021-45469 [HIGH] CWE-125 In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11 there is an out-of-bounds memory access when an inode has an invalid last xattr entry. In __f2fs_setxattr in fs/f2fs/xattr.c in the Linux kernel through 5.15.11 there is an out-of-bounds memory access when an inode has an invalid last xattr entry. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?

CVE-2021-45480 [MEDIUM] CWE-401 An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances. An issue was discovered in the Linux kernel before 5.15.11. There is a memory leak in the __rds_conn_create() function in net/rds/connection.c in a certain combination of circumstances. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is th

CVE-2021-45095 [MEDIUM] CWE-200 pep_sock_accept in net/phonet/pep.c in the Linux kernel through 5.15.8 has a refcount leak. pep_sock_accept in net/phonet/pep.c in the Linux kernel through 5.15.8 has a refcount leak. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most