Msrc Azl3 Kernel 6.6.78.1-3 On Azure Linux 3.0 vulnerabilities

CVE-2025-21887 [HIGH] ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up ovl: fix UAF in ovl_dentry_update_reval by moving dput() in ovl_link_up FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sourc

CVE-2025-21855 [HIGH] ibmvnic: Don't reference skb after sending to VIOS ibmvnic: Don't reference skb after sending to VIOS FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compo

CVE-2025-21863 [HIGH] io_uring: prevent opcode speculation io_uring: prevent opcode speculation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed

CVE-2025-21858 [HIGH] geneve: Fix use-after-free in geneve_find_dev(). geneve: Fix use-after-free in geneve_find_dev(). FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed.

CVE-2025-21867 [HIGH] bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type() bpf, test_run: Fix use-after-free issue in eth_skb_pkt_type() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2025-21856 [HIGH] CWE-416 s390/ism: add release function for struct device s390/ism: add release function for struct device FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is c

CVE-2025-21854 [MEDIUM] CWE-476 sockmap, vsock: For connectible sockets allow only connected sockmap, vsock: For connectible sockets allow only connected FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries

CVE-2025-21865 [MEDIUM] CWE-787 gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl(). gtp: Suppress list corruption splat in gtp_net_exit_batch_rtnl(). FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source

CVE-2025-21859 [MEDIUM] CWE-667 USB: gadget: f_midi: f_midi_complete to call queue_work USB: gadget: f_midi: f_midi_complete to call queue_work FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2025-21844 [MEDIUM] CWE-476 smb: client: Add check for next_buffer in receive_encrypted_standard() smb: client: Add check for next_buffer in receive_encrypted_standard() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the op

CVE-2025-21847 [MEDIUM] CWE-476 ASoC: SOF: stream-ipc: Check for cstream nullity in sof_ipc_msg_data() ASoC: SOF: stream-ipc: Check for cstream nullity in sof_ipc_msg_data() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the op

CVE-2025-21848 [MEDIUM] CWE-476 nfp: bpf: Add check for nfp_app_ctrl_msg_alloc() nfp: bpf: Add check for nfp_app_ctrl_msg_alloc() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is

CVE-2025-21862 [MEDIUM] CWE-908 drop_monitor: fix incorrect initialization order drop_monitor: fix incorrect initialization order FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is

CVE-2025-21866 [MEDIUM] CWE-770 powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC powerpc/code-patching: Fix KASAN hit by not flagging text patching area as VM_ALLOC FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most

CVE-2025-21857 [MEDIUM] CWE-476 net/sched: cls_api: fix error handling causing NULL dereference net/sched: cls_api: fix error handling causing NULL dereference FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libr

CVE-2025-21853 [MEDIUM] bpf: avoid holding freeze_mutex during mmap operation bpf: avoid holding freeze_mutex during mmap operation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2025-21864 [MEDIUM] CWE-476 tcp: drop secpath at the same time as we currently drop dst tcp: drop secpath at the same time as we currently drop dst FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi

CVE-2024-58088 [MEDIUM] CWE-667 bpf: Fix deadlock when freeing cgroup storage bpf: Fix deadlock when freeing cgroup storage FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compo

CVE-2025-21846 [MEDIUM] CWE-476 acct: perform last write from workqueue acct: perform last write from workqueue FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microso

CVE-2025-21791 [HIGH] vrf: use RCU protection in l3mdev_l3_out() vrf: use RCU protection in l3mdev_l3_out() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft i