Msrc Azl3 Grpc 1.62.3-1 vulnerabilities

CVE-2026-3381 [CRITICAL] CWE-1395 Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib Mariner: Mariner CPANSec: CPANSec Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

CVE-2026-22184 [MEDIUM] CWE-120 zlib <= 1.3.1.2 untgz Global Buffer Overflow in TGZfname() zlib <= 1.3.1.2 untgz Global Buffer Overflow in TGZfname() Mariner: Mariner VulnCheck: VulnCheck Customer Action Required: Yes

CVE-2024-25629 [MEDIUM] CWE-125 c-ares out of bounds read in ares__read_line() c-ares out of bounds read in ares__read_line() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is com

CVE-2023-45853 [CRITICAL] CWE-190 MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename comment or extra field. NOTE: MiniZip is not a supported par MiniZip in zlib through 1.3 has an integer overflow and resultant heap-based buffer overflow in zipOpenNewFileInZip4_64 via a long filename comment or extra field. NOTE: MiniZip is not a supported part of the zlib product. NOTE: pyminizip through 0.2.6 is also vuln