Msrc Azl3 Kernel 6.6.57.1-2 On Azure Linux 3.0 vulnerabilities

CVE-2024-50093 [MEDIUM] thermal: intel: int340x: processor: Fix warning during module unload thermal: intel: int340x: processor: Fix warning during module unload FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source li

CVE-2024-49950 [HIGH] CWE-416 Bluetooth: L2CAP: Fix uaf in l2cap_connect Bluetooth: L2CAP: Fix uaf in l2cap_connect FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Mic

CVE-2024-50007 [HIGH] CWE-129 ALSA: asihpi: Fix potential OOB array access ALSA: asihpi: Fix potential OOB array access FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed.

CVE-2024-49889 [HIGH] CWE-416 ext4: avoid use-after-free in ext4_ext_show_leaf() ext4: avoid use-after-free in ext4_ext_show_leaf() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2024-49969 [HIGH] CWE-129 drm/amd/display: Fix index out of bounds in DCN30 color transformation drm/amd/display: Fix index out of bounds in DCN30 color transformation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open

CVE-2024-49924 [HIGH] CWE-416 fbdev: pxafb: Fix possible use after free in pxafb_task() fbdev: pxafb: Fix possible use after free in pxafb_task() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-49992 [HIGH] CWE-416 drm/stm: Avoid use-after-free issues with crtc and plane drm/stm: Avoid use-after-free issues with crtc and plane FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-49931 [HIGH] CWE-129 wifi: ath12k: fix array out-of-bound access in SoC stats wifi: ath12k: fix array out-of-bound access in SoC stats FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-49894 [HIGH] CWE-129 drm/amd/display: Fix index out of bounds in degamma hardware format translation drm/amd/display: Fix index out of bounds in degamma hardware format translation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure ve

CVE-2024-49986 [HIGH] CWE-416 platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors platform/x86: x86-android-tablets: Fix use after free on platform_device_register() errors FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most rec

CVE-2024-49903 [HIGH] CWE-416 jfs: Fix uaf in dbFreeBits jfs: Fix uaf in dbFreeBits FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transpare

CVE-2024-49884 [HIGH] CWE-416 ext4: fix slab-use-after-free in ext4_split_extent_at() ext4: fix slab-use-after-free in ext4_split_extent_at() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which t

CVE-2024-49883 [HIGH] CWE-416 ext4: aovid use-after-free in ext4_ext_insert_extent() ext4: aovid use-after-free in ext4_ext_insert_extent() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the

CVE-2024-49882 [HIGH] CWE-415 ext4: fix double brelse() the buffer of the extents path ext4: fix double brelse() the buffer of the extents path FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-49997 [HIGH] CWE-212 net: ethernet: lantiq_etop: fix memory disclosure net: ethernet: lantiq_etop: fix memory disclosure FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is

CVE-2024-49930 [HIGH] CWE-129 wifi: ath11k: fix array out-of-bound access in SoC stats wifi: ath11k: fix array out-of-bound access in SoC stats FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-49991 [HIGH] CWE-416 drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer drm/amdkfd: amdkfd_free_gtt_mem clear the correct pointer FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-49936 [HIGH] CWE-416 net/xen-netback: prevent UAF in xenvif_flush_hash() net/xen-netback: prevent UAF in xenvif_flush_hash() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distr

CVE-2024-49895 [HIGH] CWE-129 drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation drm/amd/display: Fix index out of bounds in DCN30 degamma hardware format translation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and mo

CVE-2024-49982 [HIGH] CWE-416 aoe: fix the potential use-after-free problem in more places aoe: fix the potential use-after-free problem in more places FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi