Msrc Azure Linux 3.0 Arm vulnerabilities

CVE-2024-49955 [MEDIUM] CWE-672 ACPI: battery: Fix possible crash when unregistering a battery hook ACPI: battery: Fix possible crash when unregistering a battery hook FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open sou

CVE-2024-50026 [MEDIUM] scsi: wd33c93: Don't use stale scsi_pointer value scsi: wd33c93: Don't use stale scsi_pointer value FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compo

CVE-2024-50012 [MEDIUM] cpufreq: Avoid a bad reference count on CPU node cpufreq: Avoid a bad reference count on CPU node FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compose

CVE-2024-47681 [MEDIUM] CWE-476 wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he wifi: mt76: mt7996: fix NULL pointer dereference in mt7996_mcu_sta_bfer_he FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions o

CVE-2024-9355 [MEDIUM] CWE-457 Golang-fips: golang fips zeroed buffer Golang-fips: golang fips zeroed buffer FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft

CVE-2024-49980 [MEDIUM] CWE-667 vrf: revert "vrf: Remove unnecessary RCU-bh critical section" vrf: revert "vrf: Remove unnecessary RCU-bh critical section" FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librarie

CVE-2024-47735 [MEDIUM] CWE-667 RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled RDMA/hns: Fix spin_unlock_irqrestore() called with IRQs enabled FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libr

CVE-2024-47706 [MEDIUM] CWE-416 block bfq: fix possible UAF for bfqq->bic with merge chain block bfq: fix possible UAF for bfqq->bic with merge chain FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with

CVE-2024-47689 [MEDIUM] CWE-362 f2fs: fix to don't set SB_RDONLY in f2fs_handle_critical_error() f2fs: fix to don't set SB_RDONLY in f2fs_handle_critical_error() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source li

CVE-2024-50003 [MEDIUM] CWE-476 drm/amd/display: Fix system hang while resume with TBT monitor drm/amd/display: Fix system hang while resume with TBT monitor FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librar

CVE-2024-49868 [MEDIUM] CWE-476 btrfs: fix a NULL pointer dereference when failed to start a new trasacntion btrfs: fix a NULL pointer dereference when failed to start a new trasacntion FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versio

CVE-2023-52917 [MEDIUM] ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() ntb: intel: Fix the NULL vs IS_ERR() bug for debugfs_create_dir() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source librarie

CVE-2024-47679 [MEDIUM] CWE-362 vfs: fix race between evice_inodes() and find_inode()&iput() vfs: fix race between evice_inodes() and find_inode()&iput() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries

CVE-2024-49957 [MEDIUM] CWE-476 ocfs2: fix null-ptr-deref when journal load failed. ocfs2: fix null-ptr-deref when journal load failed. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dis

CVE-2024-50064 [MEDIUM] CWE-401 zram: free secondary algorithms names zram: free secondary algorithms names FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft i

CVE-2024-8925 [LOW] Erroneous parsing of multipart form data Erroneous parsing of multipart form data FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is comm

CVE-2024-47749 [MEDIUM] CWE-476 RDMA/cxgb4: Added NULL check for lookup_atid RDMA/cxgb4: Added NULL check for lookup_atid FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compose

CVE-2024-49977 [MEDIUM] CWE-369 net: stmmac: Fix zero-division error when disabling tc cbs net: stmmac: Fix zero-division error when disabling tc cbs FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with

CVE-2024-47707 [MEDIUM] CWE-476 ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() ipv6: avoid possible NULL deref in rt6_uncached_list_flush_dev() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source li

CVE-2024-49973 [MEDIUM] r8169: add tally counter fields added with RTL8125 r8169: add tally counter fields added with RTL8125 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is com