Multiple vulnerabilities in the Linux kernel for Azure, including flaws in the AppArmor LSM allowing an unprivileged local attacker to manipulate profiles for privilege escalation or container escape, require immediate patching. The listed CVEs, such as CVE-2021-47599 (CVSS 4.7) and CVE-2022-48875 (CVSS 5.5), affect specific kernel version ranges, for example, linux_kernel versions prior to 5.15.11 are affected by CVE-2021-47599. Fixed versions are provided per CVE, including upgrades to linux_kernel 5.15.11, 5.15.90, or 6.1.8, depending on the specific vulnerability and kernel branch.
Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module (LSM). An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information (kernel memory), local privilege escalation, or possibly escape a container. (LP: #2143853) Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - x86 architecture; - GPIO subsystem; - GPU drivers; - BTRFS file system; - XFRM subsystem; - IPv4 networking; - IPv6 networking; - MAC80211 subsystem; - SMC sockets; (CVE-2021-47599, CVE-2022-48875, CVE-2022-49072, CVE-2024-49927, CVE-2024-56640, CVE-2025-21780, CVE-2025-40215)