Msrc Azl3 Kernel 6.6.85.1-4 On Azure Linux 3.0 vulnerabilities

CVE-2025-37947 [HIGH] ksmbd: prevent out-of-bounds stream writes by validating *pos ksmbd: prevent out-of-bounds stream writes by validating *pos FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2025-37921 [HIGH] vxlan: vnifilter: Fix unlocked deletion of default FDB entry vxlan: vnifilter: Fix unlocked deletion of default FDB entry FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2025-37914 [HIGH] net_sched: ets: Fix double list add in class with netem as child qdisc net_sched: ets: Fix double list add in class with netem as child qdisc FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source

CVE-2025-37960 [MEDIUM] memblock: Accept allocated memory before use in memblock_double_array() memblock: Accept allocated memory before use in memblock_double_array() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sou

CVE-2025-37738 [HIGH] ext4: ignore xattrs past end ext4: ignore xattrs past end FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed to transparency

CVE-2025-37951 [MEDIUM] drm/v3d: Add job to pending list if the reset was skipped drm/v3d: Add job to pending list if the reset was skipped NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37951 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent a

CVE-2025-37944 [HIGH] CWE-787 wifi: ath12k: Fix invalid entry fetch in ath12k_dp_mon_srng_process wifi: ath12k: Fix invalid entry fetch in ath12k_dp_mon_srng_process NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37944 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to d

CVE-2025-37849 [HIGH] CWE-416 KVM: arm64: Tear down vGIC on failed vCPU creation KVM: arm64: Tear down vGIC on failed vCPU creation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2025-37797 [HIGH] net_sched: hfsc: Fix a UAF vulnerability in class handling net_sched: hfsc: Fix a UAF vulnerability in class handling FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the

CVE-2025-37840 [HIGH] mtd: rawnand: brcmnand: fix PM resume warning mtd: rawnand: brcmnand: fix PM resume warning FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Micro

CVE-2025-37892 [HIGH] mtd: inftlcore: Add error check for inftl_read_oob() mtd: inftlcore: Add error check for inftl_read_oob() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is c

CVE-2025-37798 [HIGH] codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() codel: remove sch->q.qlen check before qdisc_tree_reduce_backlog() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librarie

CVE-2025-37997 [MEDIUM] netfilter: ipset: fix region locking in hash types netfilter: ipset: fix region locking in hash types FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is com

CVE-2025-37897 [MEDIUM] wifi: plfxlc: Remove erroneous assert in plfxlc_mac_release wifi: plfxlc: Remove erroneous assert in plfxlc_mac_release FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2025-37803 [HIGH] CWE-120 udmabuf: fix a buf size overflow issue during udmabuf creation udmabuf: fix a buf size overflow issue during udmabuf creation FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librarie

CVE-2025-37916 [HIGH] CWE-416 pds_core: remove write-after-free of client_id pds_core: remove write-after-free of client_id FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compo

CVE-2025-37879 [HIGH] CWE-125 9p/net: fix improper handling of bogus negative read/write replies 9p/net: fix improper handling of bogus negative read/write replies FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source

CVE-2025-37780 [HIGH] isofs: Prevent the use of too small fid isofs: Prevent the use of too small fid FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is comm

CVE-2025-37858 [MEDIUM] fs/jfs: Prevent integer overflow in AG size calculation fs/jfs: Prevent integer overflow in AG size calculation NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37858 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and m

CVE-2025-37988 [MEDIUM] fix a couple of races in MNT_TREE_BENEATH handling by do_move_mount() fix a couple of races in MNT_TREE_BENEATH handling by do_move_mount() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source