Msrc Azure Linux 3.0 Arm vulnerabilities

CVE-2024-46809 [MEDIUM] CWE-476 drm/amd/display: Check BIOS images before it is used drm/amd/display: Check BIOS images before it is used FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the d

CVE-2024-45030 [MEDIUM] CWE-787 igb: cope with large MAX_SKB_FRAGS igb: cope with large MAX_SKB_FRAGS FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is comm

CVE-2024-46737 [MEDIUM] CWE-476 nvmet-tcp: fix kernel crash if commands allocation fails nvmet-tcp: fix kernel crash if commands allocation fails FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-46840 [MEDIUM] btrfs: clean up our handling of refs == 0 in snapshot delete btrfs: clean up our handling of refs == 0 in snapshot delete FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-46810 [MEDIUM] CWE-476 drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ drm/bridge: tc358767: Check if fully initialized before signalling HPD event via IRQ FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and mo

CVE-2024-45012 [MEDIUM] CWE-770 nouveau/firmware: use dma non-coherent allocator nouveau/firmware: use dma non-coherent allocator FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is

CVE-2024-45016 [MEDIUM] CWE-416 netem: fix return value if duplicate enqueue fails netem: fix return value if duplicate enqueue fails FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distr

CVE-2024-46706 [MEDIUM] tty: serial: fsl_lpuart: mark last busy before uart_add_one_port tty: serial: fsl_lpuart: mark last busy before uart_add_one_port FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries

CVE-2024-45021 [MEDIUM] CWE-476 memcg_write_event_control(): fix a user-triggerable oops memcg_write_event_control(): fix a user-triggerable oops FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-46692 [MEDIUM] CWE-667 firmware: qcom: scm: Mark get_wq_ctx() as atomic call firmware: qcom: scm: Mark get_wq_ctx() as atomic call FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the

CVE-2024-44947 [MEDIUM] CWE-665 fuse: Initialize beyond-EOF page contents before setting uptodate fuse: Initialize beyond-EOF page contents before setting uptodate FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source

CVE-2024-46676 [MEDIUM] CWE-369 nfc: pn533: Add poll mod list filling check nfc: pn533: Add poll mod list filling check FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed.

CVE-2024-46838 [MEDIUM] userfaultfd: don't BUG_ON() if khugepaged yanks our page table userfaultfd: don't BUG_ON() if khugepaged yanks our page table FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with

CVE-2024-46728 [MEDIUM] drm/amd/display: Check index for aux_rd_interval before using drm/amd/display: Check index for aux_rd_interval before using FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with w

CVE-2024-46689 [MEDIUM] CWE-787 soc: qcom: cmd-db: Map shared memory as WC not WB soc: qcom: cmd-db: Map shared memory as WC not WB FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro

CVE-2024-46807 [MEDIUM] CWE-476 drm/amd/amdgpu: Check tbo resource pointer drm/amd/amdgpu: Check tbo resource pointer FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. M

CVE-2024-46822 [MEDIUM] CWE-476 arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry arm64: acpi: Harden get_cpu_for_acpi_id() against missing CPU entry FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sou

CVE-2024-46710 [MEDIUM] drm/vmwgfx: Prevent unmapping active read buffers drm/vmwgfx: Prevent unmapping active read buffers FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compo

CVE-2024-46719 [MEDIUM] CWE-476 usb: typec: ucsi: Fix null pointer dereference in trace usb: typec: ucsi: Fix null pointer dereference in trace FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-46805 [MEDIUM] CWE-476 drm/amdgpu: fix the waring dereferencing hive drm/amdgpu: fix the waring dereferencing hive FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compo