Msrc Azl3 Kernel 6.6.96.1-1 On Azure Linux 3.0 vulnerabilities

CVE-2025-38615 [MEDIUM] fs/ntfs3: cancle set bad inode after removing name fails fs/ntfs3: cancle set bad inode after removing name fails FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the d

CVE-2025-38561 [MEDIUM] ksmbd: fix Preauh_HashValue race condition ksmbd: fix Preauh_HashValue race condition FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft

CVE-2025-38535 [HIGH] phy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode phy: tegra: xusb: Fix unbalanced regulator disable in UTMI PHY mode FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librar

CVE-2025-38538 [HIGH] dmaengine: nbpfaxi: Fix memory corruption in probe() dmaengine: nbpfaxi: Fix memory corruption in probe() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is c

CVE-2025-38605 [MEDIUM] wifi: ath12k: Pass ab pointer directly to ath12k_dp_tx_get_encap_type() wifi: ath12k: Pass ab pointer directly to ath12k_dp_tx_get_encap_type() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sou

CVE-2025-38555 [HIGH] CWE-416 usb: gadget : fix use-after-free in composite_dev_cleanup() usb: gadget : fix use-after-free in composite_dev_cleanup() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with

CVE-2025-38579 [HIGH] CWE-908 f2fs: fix KMSAN uninit-value in extent_info usage f2fs: fix KMSAN uninit-value in extent_info usage FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is

CVE-2025-38543 [MEDIUM] drm/tegra: nvdec: Fix dma_alloc_coherent error check drm/tegra: nvdec: Fix dma_alloc_coherent error check FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is

CVE-2025-38533 [HIGH] net: libwx: fix the using of Rx buffer DMA net: libwx: fix the using of Rx buffer DMA FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft i

CVE-2025-38532 [MEDIUM] net: libwx: properly reset Rx ring descriptor net: libwx: properly reset Rx ring descriptor FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Mic

CVE-2025-38482 [HIGH] comedi: das6402: Fix bit shift out of bounds comedi: das6402: Fix bit shift out of bounds FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microso

CVE-2025-38490 [HIGH] net: libwx: remove duplicate page_pool_put_full_page() net: libwx: remove duplicate page_pool_put_full_page() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2025-38478 [MEDIUM] comedi: Fix initialization of data for instructions that write to subdevice comedi: Fix initialization of data for instructions that write to subdevice FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the

CVE-2025-38483 [HIGH] CWE-125 comedi: das16m1: Fix bit shift out of bounds comedi: das16m1: Fix bit shift out of bounds FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed.

CVE-2025-38438 [MEDIUM] ASoC: SOF: Intel: hda: Use devm_kstrdup() to avoid memleak. ASoC: SOF: Intel: hda: Use devm_kstrdup() to avoid memleak. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2025-38200 [MEDIUM] i40e: fix MMIO write access to an invalid page in i40e_clear_hw i40e: fix MMIO write access to an invalid page in i40e_clear_hw FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi

CVE-2025-38244 [MEDIUM] smb: client: fix potential deadlock when reconnecting channels smb: client: fix potential deadlock when reconnecting channels FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with

CVE-2025-38170 [MEDIUM] arm64/fpsimd: Discard stale CPU state when handling SME traps arm64/fpsimd: Discard stale CPU state when handling SME traps FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with w

CVE-2025-38283 [MEDIUM] hisi_acc_vfio_pci: bugfix live migration function without VF device driver hisi_acc_vfio_pci: bugfix live migration function without VF device driver FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the op

CVE-2025-38157 [HIGH] wifi: ath9k_htc: Abort software beacon handling if disabled wifi: ath9k_htc: Abort software beacon handling if disabled FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which t