Msrc Azl3 Kernel 6.6.51.1-5 On Azure Linux 3.0 vulnerabilities

CVE-2024-50093 [MEDIUM] thermal: intel: int340x: processor: Fix warning during module unload thermal: intel: int340x: processor: Fix warning during module unload FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source li

CVE-2024-47685 [CRITICAL] CWE-908 netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() netfilter: nf_reject_ipv6: fix nf_reject_ip6_tcphdr_put() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with

CVE-2024-49950 [HIGH] CWE-416 Bluetooth: L2CAP: Fix uaf in l2cap_connect Bluetooth: L2CAP: Fix uaf in l2cap_connect FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Mic

CVE-2024-47686 [HIGH] CWE-193 ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() ep93xx: clock: Fix off by one in ep93xx_div_recalc_rate() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-47697 [HIGH] CWE-787 drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error drivers: media: dvb-frontends/rtl2830: fix an out-of-bounds write error FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the op

CVE-2024-50007 [HIGH] CWE-129 ALSA: asihpi: Fix potential OOB array access ALSA: asihpi: Fix potential OOB array access FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed.

CVE-2024-47750 [HIGH] CWE-416 RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 RDMA/hns: Fix Use-After-Free of rsv_qp on HIP08 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is com

CVE-2024-49889 [HIGH] CWE-416 ext4: avoid use-after-free in ext4_ext_show_leaf() ext4: avoid use-after-free in ext4_ext_show_leaf() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2024-49969 [HIGH] CWE-129 drm/amd/display: Fix index out of bounds in DCN30 color transformation drm/amd/display: Fix index out of bounds in DCN30 color transformation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open

CVE-2024-47719 [HIGH] CWE-787 iommufd: Protect against overflow of ALIGN() during iova allocation iommufd: Protect against overflow of ALIGN() during iova allocation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sourc

CVE-2024-49862 [HIGH] CWE-193 powercap: intel_rapl: Fix off by one in get_rpi() powercap: intel_rapl: Fix off by one in get_rpi() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is

CVE-2024-47682 [HIGH] CWE-193 scsi: sd: Fix off-by-one error in sd_read_block_characteristics() scsi: sd: Fix off-by-one error in sd_read_block_characteristics() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source li

CVE-2024-49853 [HIGH] CWE-415 firmware: arm_scmi: Fix double free in OPTEE transport firmware: arm_scmi: Fix double free in OPTEE transport FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the

CVE-2024-49924 [HIGH] CWE-416 fbdev: pxafb: Fix possible use after free in pxafb_task() fbdev: pxafb: Fix possible use after free in pxafb_task() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-49992 [HIGH] CWE-416 drm/stm: Avoid use-after-free issues with crtc and plane drm/stm: Avoid use-after-free issues with crtc and plane FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-49931 [HIGH] CWE-129 wifi: ath12k: fix array out-of-bound access in SoC stats wifi: ath12k: fix array out-of-bound access in SoC stats FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-47723 [HIGH] CWE-125 jfs: fix out-of-bounds in dbNextAG() and diAlloc() jfs: fix out-of-bounds in dbNextAG() and diAlloc() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2024-49894 [HIGH] CWE-129 drm/amd/display: Fix index out of bounds in degamma hardware format translation drm/amd/display: Fix index out of bounds in degamma hardware format translation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure ve

CVE-2024-49986 [HIGH] CWE-416 platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most rec

CVE-2024-49855 [HIGH] CWE-416 nbd: fix race between timeout and normal completion nbd: fix race between timeout and normal completion FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distr