Msrc Azl3 Hyperv-Daemons 6.6.35.1-1 On Azure Linux 3.0 vulnerabilities

CVE-2024-27053 [CRITICAL] CWE-476 wifi: wilc1000: fix RCU usage in connect path wifi: wilc1000: fix RCU usage in connect path FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is com

CVE-2024-27395 [HIGH] CWE-416 net: openvswitch: Fix Use-After-Free in ovs_ct_exit net: openvswitch: Fix Use-After-Free in ovs_ct_exit FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distr

CVE-2024-26974 [HIGH] CWE-416 crypto: qat - resolve race condition during AER recovery crypto: qat - resolve race condition during AER recovery FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-35856 [HIGH] CWE-415 Bluetooth: btusb: mediatek: Fix double free of skb in coredump Bluetooth: btusb: mediatek: Fix double free of skb in coredump FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librarie

CVE-2024-26983 [HIGH] CWE-416 bootconfig: use memblock_free_late to free xbc memory to buddy bootconfig: use memblock_free_late to free xbc memory to buddy FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librarie

CVE-2024-35854 [HIGH] CWE-416 mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash mlxsw: spectrum_acl_tcam: Fix possible use-after-free during rehash FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sourc

CVE-2024-35849 [HIGH] CWE-908 btrfs: fix information leak in btrfs_ioctl_logical_to_ino() btrfs: fix information leak in btrfs_ioctl_logical_to_ino() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with

CVE-2024-27018 [HIGH] netfilter: br_netfilter: skip conntrack input hook for promisc packets netfilter: br_netfilter: skip conntrack input hook for promisc packets FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source

CVE-2024-27396 [HIGH] CWE-416 net: gtp: Fix Use-After-Free in gtp_dellink net: gtp: Fix Use-After-Free in gtp_dellink FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. M

CVE-2024-27433 [HIGH] CWE-415 clk: mediatek: mt7622-apmixedsys: Fix an error handling path in clk_mt8135_apmixed_probe() clk: mediatek: mt7622-apmixedsys: Fix an error handling path in clk_mt8135_apmixed_probe() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most rec

CVE-2024-35792 [HIGH] crypto: rk3288 - Fix use after free in unprepare crypto: rk3288 - Fix use after free in unprepare FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed.

CVE-2024-26939 [HIGH] CWE-416 drm/i915/vma: Fix UAF on destroy against retire race drm/i915/vma: Fix UAF on destroy against retire race FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dis

CVE-2024-35801 [MEDIUM] CWE-416 x86/fpu: Keep xfd_state in sync with MSR_IA32_XFD x86/fpu: Keep xfd_state in sync with MSR_IA32_XFD FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2024-26961 [HIGH] CWE-416 mac802154: fix llsec key resources release in mac802154_llsec_key_del mac802154: fix llsec key resources release in mac802154_llsec_key_del FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open s

CVE-2023-52649 [HIGH] CWE-129 drm/vkms: Avoid reading beyond LUT array drm/vkms: Avoid reading beyond LUT array FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microso

CVE-2024-26947 [MEDIUM] ARM: 9359/1: flush: check if the folio is reserved for no-mapping addresses ARM: 9359/1: flush: check if the folio is reserved for no-mapping addresses FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the

CVE-2023-52650 [MEDIUM] CWE-476 drm/tegra: dsi: Add missing check for of_find_device_by_node drm/tegra: dsi: Add missing check for of_find_device_by_node FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries

CVE-2024-27075 [HIGH] media: dvb-frontends: avoid stack overflow warnings with clang media: dvb-frontends: avoid stack overflow warnings with clang FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with w

CVE-2024-26951 [HIGH] wireguard: netlink: check for dangling peer via is_dead instead of empty list wireguard: netlink: check for dangling peer via is_dead instead of empty list FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of th

CVE-2024-27434 [MEDIUM] wifi: iwlwifi: mvm: don't set the MFP flag for the GTK wifi: iwlwifi: mvm: don't set the MFP flag for the GTK FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distr