Msrc Azure Linux 3.0 Arm vulnerabilities

CVE-2024-46846 [MEDIUM] spi: rockchip: Resolve unbalanced runtime PM / system PM handling spi: rockchip: Resolve unbalanced runtime PM / system PM handling FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librarie

CVE-2024-46797 [MEDIUM] CWE-667 powerpc/qspinlock: Fix deadlock in MCS queue powerpc/qspinlock: Fix deadlock in MCS queue FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compose

CVE-2024-46678 [MEDIUM] CWE-667 bonding: change ipsec_lock from spin lock to mutex bonding: change ipsec_lock from spin lock to mutex FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distr

CVE-2024-45003 [MEDIUM] CWE-667 vfs: Don't evict inode under the inode lru traversing context vfs: Don't evict inode under the inode lru traversing context FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librarie

CVE-2024-46732 [MEDIUM] CWE-369 drm/amd/display: Assign linear_pitch_alignment even for VM drm/amd/display: Assign linear_pitch_alignment even for VM FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with

CVE-2024-46675 [MEDIUM] usb: dwc3: core: Prevent USB core invalid event buffer address access usb: dwc3: core: Prevent USB core invalid event buffer address access FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source

CVE-2024-45000 [MEDIUM] CWE-476 fs/netfs/fscache_cookie: add missing "n_accesses" check fs/netfs/fscache_cookie: add missing "n_accesses" check FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-44982 [MEDIUM] CWE-459 drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi

CVE-2024-45029 [MEDIUM] CWE-667 i2c: tegra: Do not mark ACPI devices as irq safe i2c: tegra: Do not mark ACPI devices as irq safe FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is

CVE-2024-44988 [MEDIUM] net: dsa: mv88e6xxx: Fix out-of-bound access net: dsa: mv88e6xxx: Fix out-of-bound access FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Micro

CVE-2024-44996 [MEDIUM] CWE-674 vsock: fix recursive ->recvmsg calls vsock: fix recursive ->recvmsg calls FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is

CVE-2024-46755 [MEDIUM] CWE-476 wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open s

CVE-2024-45018 [MEDIUM] CWE-665 netfilter: flowtable: initialise extack before use netfilter: flowtable: initialise extack before use FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distr

CVE-2024-46835 [MEDIUM] CWE-476 drm/amdgpu: Fix smatch static checker warning drm/amdgpu: Fix smatch static checker warning FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compo

CVE-2024-46784 [MEDIUM] CWE-908 net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup net: mana: Fix error handling in mana_create_txq/rxq's NAPI cleanup FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sou

CVE-2024-46843 [MEDIUM] scsi: ufs: core: Remove SCSI host only if added scsi: ufs: core: Remove SCSI host only if added FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed.

CVE-2024-44989 [MEDIUM] CWE-476 bonding: fix xfrm real_dev null pointer dereference bonding: fix xfrm real_dev null pointer dereference FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dis

CVE-2024-46686 [MEDIUM] CWE-476 smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() smb/client: avoid dereferencing rdata=NULL in smb2_new_read_req() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source

CVE-2024-46685 [MEDIUM] CWE-476 pinctrl: single: fix potential NULL dereference in pcs_get_function() pinctrl: single: fix potential NULL dereference in pcs_get_function() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open

CVE-2024-46679 [MEDIUM] ethtool: check device is present when getting link settings ethtool: check device is present when getting link settings FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which