Msrc Cbl Mariner 1.0 Arm vulnerabilities

CVE-2023-22997 [MEDIUM] CWE-476 In the Linux kernel before 6.1.2 kernel/module/decompress.c misinterprets the module_get_next_page return value (expects it to be NULL in the error case whereas it is actually an error pointer). In the Linux kernel before 6.1.2 kernel/module/decompress.c misinterprets the module_get_next_page return value (expects it to be NULL in the error case whereas it is actually an error pointer). FAQ: Is Azure Linux the only Microsoft product that includes this open-source

CVE-2023-23916 [MEDIUM] CWE-770 An allocation of resources without limits or throttling vulnerability exists in curl <v7.88.0 based on the "chained" HTTP compression algorithms meaning that a server response can be compressed multip An allocation of resources without limits or throttling vulnerability exists in curl Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customer

CVE-2023-23915 [MEDIUM] CWE-319 A cleartext transmission of sensitive information vulnerability exists in curl <v7.88.0 that could cause HSTS functionality to behave incorrectly when multiple URLs are requested in parallel. Using it A cleartext transmission of sensitive information vulnerability exists in curl Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who

CVE-2023-22999 [MEDIUM] CWE-476 In the Linux kernel before 5.16.3 drivers/usb/dwc3/dwc3-qcom.c misinterprets the dwc3_qcom_create_urs_usb_platdev return value (expects it to be NULL in the error case whereas it is actually an error In the Linux kernel before 5.16.3 drivers/usb/dwc3/dwc3-qcom.c misinterprets the dwc3_qcom_create_urs_usb_platdev return value (expects it to be NULL in the error case whereas it is actually an error pointer). FAQ: Is Azure Linux the only Microsoft product that incl

CVE-2023-26545 [MEDIUM] CWE-415 In the Linux kernel before 6.1.13 there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a new location) during the renaming of a device. In the Linux kernel before 6.1.13 there is a double free in net/mpls/af_mpls.c upon an allocation failure (for registering the sysctl table under a new location) during the renaming of a device. FAQ: Is Azure Linux the only Microsoft product that includes this open-source

CVE-2023-22998 [MEDIUM] CWE-436 In the Linux kernel before 6.0.3 drivers/gpu/drm/virtio/virtgpu_object.c misinterprets the drm_gem_shmem_get_sg_table return value (expects it to be NULL in the error case whereas it is actually an er In the Linux kernel before 6.0.3 drivers/gpu/drm/virtio/virtgpu_object.c misinterprets the drm_gem_shmem_get_sg_table return value (expects it to be NULL in the error case whereas it is actually an error pointer). FAQ: Is Azure Linux the only Microsoft product that

CVE-2022-28331 [CRITICAL] CWE-190 Apache Portable Runtime (APR): Windows out-of-bounds write in apr_socket_sendv function Apache Portable Runtime (APR): Windows out-of-bounds write in apr_socket_sendv function FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most rece

CVE-2022-3515 [CRITICAL] CWE-190 A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specia A vulnerability was found in the Libksba library due to an integer overflow within the CRL parser. The vulnerability can be exploited remotely for code execution on the target system by passing specially crafted data to the application for example a malicious S/MIME

CVE-2022-4696 [HIGH] CWE-416 There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_SPLICE operation. If IORING_OP_SPLICE is missing the IO_WQ_WORK_FILES flag which signals that the ope There exists a use-after-free vulnerability in the Linux kernel through io_uring and the IORING_OP_SPLICE operation. If IORING_OP_SPLICE is missing the IO_WQ_WORK_FILES flag which signals that the operation won't use current->nsproxy so its reference counter is not incr

CVE-2023-0512 [HIGH] CWE-369 Divide By Zero in vim/vim Divide By Zero in vim/vim FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency

CVE-2022-2196 [MEDIUM] CWE-1188 Speculative execution attacks in KVM VMX Speculative execution attacks in KVM VMX FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Micro

CVE-2022-48285 [HIGH] CWE-22 loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive. loadAsync in JSZip before 3.8.0 allows Directory Traversal via a crafted ZIP archive. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and mos

CVE-2022-46457 [MEDIUM] NASM v2.16 was discovered to contain a segmentation violation in the component ieee_write_file at /output/outieee.c. NASM v2.16 was discovered to contain a segmentation violation in the component ieee_write_file at /output/outieee.c. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the comm

CVE-2022-25147 [MEDIUM] CWE-190 Apache Portable Runtime Utility (APR-util): out-of-bounds writes in the apr_base64 family of functions Apache Portable Runtime Utility (APR-util): out-of-bounds writes in the apr_base64 family of functions FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up

CVE-2022-37436 [MEDIUM] CWE-113 Apache HTTP Server: mod_proxy prior to 2.4.55 allows a backend to trigger HTTP response splitting Apache HTTP Server: mod_proxy prior to 2.4.55 allows a backend to trigger HTTP response splitting FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date w

CVE-2023-0394 [MEDIUM] CWE-476 A NULL pointer dereference flaw was found in rawv6_push_pending_frames in net/ipv6/raw.c in the network subcomponent in the Linux kernel. This flaw causes the system to crash. A NULL pointer dereference flaw was found in rawv6_push_pending_frames in net/ipv6/raw.c in the network subcomponent in the Linux kernel. This flaw causes the system to crash. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially a

CVE-2021-33640 [MEDIUM] CWE-416 After tar_close() libtar.c releases the memory pointed to by pointer t. After tar_close() is called in the list() function it continues to use pointer t: free_longlink_longname(t->th_buf) . As a resul After tar_close() libtar.c releases the memory pointed to by pointer t. After tar_close() is called in the list() function it continues to use pointer t: free_longlink_longname(t->th_buf) . As a result the released memory is used (use-after-free). FAQ: Is Azure Linu

CVE-2022-47629 [CRITICAL] CWE-190 Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser. Libksba before 1.6.3 is prone to an integer overflow vulnerability in the CRL signature parser. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date wit

CVE-2022-44640 [CRITICAL] Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC). Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free in the ASN.1 codec used by the Key Distribution Center (KDC). FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of

CVE-2021-44758 [HIGH] CWE-476 Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept. Heimdal before 7.7.1 allows attackers to cause a NULL pointer dereference in a SPNEGO acceptor via a preferred_mech_type of GSS_C_NO_OID and a nonzero initial_response value to send_accept. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and