Msrc Azl3 Kernel 6.6.112.1-2 On Azure Linux 3.0 vulnerabilities

346 known vulnerabilities affecting msrc/azl3_kernel_6.6.112.1-2_on_azure_linux_3.0.

Total CVEs

346

CISA KEV

Public exploits

Exploited in wild

Severity breakdown

CRITICAL6HIGH79MEDIUM256LOW5

Vulnerabilities

Page 1 of 18

CVE-2025-40262CRITICALCVSS 9.82025-12-09

CVE-2025-40262 [CRITICAL] Input: imx_sc_key - fix memory corruption on unload Input: imx_sc_key - fix memory corruption on unload Mariner: Mariner Linux: Linux Customer Action Required: Yes

msrc

CVE-2025-40242CRITICALCVSS 9.82025-12-09

CVE-2025-40242 [CRITICAL] gfs2: Fix unlikely race in gdlm_put_lock gfs2: Fix unlikely race in gdlm_put_lock Mariner: Mariner Linux: Linux Customer Action Required: Yes

msrc

CVE-2025-40244CRITICALCVSS 9.82025-12-09

CVE-2025-40244 [CRITICAL] hfsplus: fix KMSAN uninit-value issue in __hfsplus_ext_cache_extent() hfsplus: fix KMSAN uninit-value issue in __hfsplus_ext_cache_extent() Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40251CRITICALCVSS 9.82025-12-09

CVE-2025-40251 [MEDIUM] devlink: rate: Unset parent pointer in devl_rate_nodes_destroy devlink: rate: Unset parent pointer in devl_rate_nodes_destroy Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40266HIGHCVSS 7.12025-12-09

CVE-2025-40266 [HIGH] KVM: arm64: Check the untrusted offset in FF-A memory share KVM: arm64: Check the untrusted offset in FF-A memory share Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40343HIGHCVSS 7.02025-12-09

CVE-2025-40343 [HIGH] nvmet-fc: avoid scheduling association deletion twice nvmet-fc: avoid scheduling association deletion twice Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40297HIGHCVSS 7.02025-12-09

CVE-2025-40297 [HIGH] net: bridge: fix use-after-free due to MST port state bypass net: bridge: fix use-after-free due to MST port state bypass Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40292HIGHCVSS 7.02025-12-09

CVE-2025-40292 [HIGH] virtio-net: fix received length check in big packets virtio-net: fix received length check in big packets Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40277HIGHCVSS 7.32025-12-09

CVE-2025-40277 [HIGH] drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE drm/vmwgfx: Validate command header size against SVGA_CMD_MAX_DATASIZE Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40273HIGHCVSS 7.02025-12-09

CVE-2025-40273 [HIGH] NFSD: free copynotify stateid in nfs4_free_ol_stateid() NFSD: free copynotify stateid in nfs4_free_ol_stateid() Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40312HIGHCVSS 7.12025-12-09

CVE-2025-40312 [HIGH] jfs: Verify inode mode when loading from disk jfs: Verify inode mode when loading from disk Mariner: Mariner Linux: Linux Customer Action Required: Yes

msrc

CVE-2025-40331HIGHCVSS 7.02025-12-09

CVE-2025-40331 [HIGH] sctp: Prevent TOCTOU out-of-bounds write sctp: Prevent TOCTOU out-of-bounds write Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40283HIGHCVSS 7.12025-12-09

CVE-2025-40283 [HIGH] Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF Bluetooth: btusb: reorder cleanup in btusb_disconnect to avoid UAF Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40281HIGHCVSS 7.02025-12-09

CVE-2025-40281 [HIGH] sctp: prevent possible shift-out-of-bounds in sctp_transport_update_rto sctp: prevent possible shift-out-of-bounds in sctp_transport_update_rto Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40258HIGHCVSS 7.02025-12-09

CVE-2025-40258 [HIGH] mptcp: fix race condition in mptcp_schedule_work() mptcp: fix race condition in mptcp_schedule_work() Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40329HIGHCVSS 7.02025-12-09

CVE-2025-40329 [HIGH] drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb drm/sched: Fix deadlock in drm_sched_entity_kill_jobs_cb Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40223HIGHCVSS 7.82025-12-09

CVE-2025-40223 [HIGH] most: usb: Fix use-after-free in hdm_disconnect most: usb: Fix use-after-free in hdm_disconnect Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40314HIGHCVSS 7.82025-12-09

CVE-2025-40314 [HIGH] usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget usb: cdns3: gadget: Use-after-free during failed initialization and exit of cdnsp gadget Mariner: Mariner Linux: Linux Customer Action Required: Yes

msrc

CVE-2025-40328HIGHCVSS 7.02025-12-09

CVE-2025-40328 [HIGH] smb: client: fix potential UAF in smb2_close_cached_fid() smb: client: fix potential UAF in smb2_close_cached_fid() Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

CVE-2025-40322HIGHCVSS 7.12025-12-09

CVE-2025-40322 [HIGH] fbdev: bitblit: bound-check glyph index in bit_putcs* fbdev: bitblit: bound-check glyph index in bit_putcs* Mariner: Mariner Linux: Linux Customer Action Required: Yes Remediation: CBL-Mariner Releases Reference: https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade

msrc

1 / 18Next →