Msrc Azl3 Kernel 6.6.78.1-1 On Azure Linux 3.0 vulnerabilities

CVE-2025-21743 [HIGH] CWE-125 usbnet: ipheth: fix possible overflow in DPE length check usbnet: ipheth: fix possible overflow in DPE length check FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2025-21741 [HIGH] CWE-125 usbnet: ipheth: fix DPE OoB read usbnet: ipheth: fix DPE OoB read FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed

CVE-2025-21742 [HIGH] usbnet: ipheth: use static NDP16 location in URB usbnet: ipheth: use static NDP16 location in URB FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed.

CVE-2024-56549 [MEDIUM] CWE-476 cachefiles: Fix NULL pointer dereference in object->file cachefiles: Fix NULL pointer dereference in object->file FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-50017 [MEDIUM] x86/mm/ident_map: Use gbpages only where full GB page should be mapped. x86/mm/ident_map: Use gbpages only where full GB page should be mapped. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sou

CVE-2024-26913 [HIGH] CWE-191 drm/amd/display: Fix dcn35 8k30 Underflow/Corruption Issue drm/amd/display: Fix dcn35 8k30 Underflow/Corruption Issue FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with w

CVE-2024-24858 [MEDIUM] CWE-362 Race condition vulnerability in Linux kernel net/bluetooth in {connadv}_{minmax}_interval_set() Race condition vulnerability in Linux kernel net/bluetooth in {connadv}_{minmax}_interval_set() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with

CVE-2024-24857 [MEDIUM] CWE-362 Race condition vulnerability in Linux kernel bluetooth in conn_info_{minmax}_age_set() Race condition vulnerability in Linux kernel bluetooth in conn_info_{minmax}_age_set() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent an