CVE-2024-49995Classic Buffer Overflow in Azl3 Kernel 6.6.51.1-5 ON Azure Linux 3.0

CWE-120Classic Buffer Overflow64 documents6 sources
Severity
8.8HIGHOSV
OSV6.7OSV6.3OSV5.5OSV4.7
No vector
EPSS
No EPSS data
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
9
Linux KernelMsrc Azl3 Kernel 6.6.51.1-5 ON Azure Linux 3.0Msrc Azl3 Kernel 6.6.57.1-2 ON Azure Linux 3.0+6 more
Timeline
PublishedFeb 26
Latest updateAug 14

Description

Title: Linux kernel vulnerabilities Summary: Several security issues were fixed in the Linux kernel. Several security issues were discovered in the Linux kernel. An attacker could possibly use these to compromise the system. This update corrects flaws in the following subsystems: - ARM32 architecture; - x86 architecture; - Block layer subsystem; - Cryptographic API; - ACPI drivers; - Drivers core; - ATA over ethernet (AOE) driver; - Network block device driver; - TPM device driver; - Hardware

Affected Packages9 packages

Ubuntulinux/linux_kernel< 5.4.0-208.228+3

🔴Vulnerability Details

31
OSV
linux-iot vulnerabilities2025-04-03
OSV
linux-azure-6.8 vulnerabilities2025-04-01
OSV
linux-hwe-6.8 vulnerabilities2025-04-01
OSV
linux-aws-5.4 vulnerabilities2025-04-01
OSV
linux-fips vulnerabilities2025-03-28

📋Vendor Advisories

33
CISA ICS
Siemens Third-Party Components in SINEC OS2025-08-14
Ubuntu
Linux kernel (IoT) vulnerabilities2025-04-03
Ubuntu
Linux kernel (Azure) vulnerabilities2025-04-01
Ubuntu
Linux kernel (AWS) vulnerabilities2025-04-01
Ubuntu
Linux kernel (HWE) vulnerabilities2025-04-01
CVE-2024-49995 — Classic Buffer Overflow | cvebase