Msrc Azure Linux 3.0 X64 vulnerabilities

CVE-2025-38091 [HIGH] drm/amd/display: check stream id dml21 wrapper to get plane_id drm/amd/display: check stream id dml21 wrapper to get plane_id NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-38091 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most

CVE-2025-38205 [MEDIUM] drm/amd/display: Avoid divide by zero by initializing dummy pitch to 1 drm/amd/display: Avoid divide by zero by initializing dummy pitch to 1 NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-38205 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to d

CVE-2023-52971 [MEDIUM] CWE-1038 MariaDB Server 10.10 through 10.11.* and 11.0 through 11.4.* crashes in JOIN::fix_all_splittings_in_plan. MariaDB Server 10.10 through 10.11.* and 11.0 through 11.4.* crashes in JOIN::fix_all_splittings_in_plan. NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2023-52971 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customer

CVE-2025-37951 [MEDIUM] drm/v3d: Add job to pending list if the reset was skipped drm/v3d: Add job to pending list if the reset was skipped NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37951 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent a

CVE-2025-37944 [HIGH] CWE-787 wifi: ath12k: Fix invalid entry fetch in ath12k_dp_mon_srng_process wifi: ath12k: Fix invalid entry fetch in ath12k_dp_mon_srng_process NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37944 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to d

CVE-2025-37858 [MEDIUM] fs/jfs: Prevent integer overflow in AG size calculation fs/jfs: Prevent integer overflow in AG size calculation NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37858 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and m

CVE-2025-37994 [MEDIUM] usb: typec: ucsi: displayport: Fix NULL pointer access usb: typec: ucsi: displayport: Fix NULL pointer access NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37994 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and mos

CVE-2025-37943 [HIGH] wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi wifi: ath12k: Fix invalid data access in ath12k_dp_rx_h_undecap_nwifi NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37943 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date

CVE-2025-37963 [MEDIUM] arm64: bpf: Only mitigate cBPF programs loaded by unprivileged users arm64: bpf: Only mitigate cBPF programs loaded by unprivileged users NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37963 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date

CVE-2025-37967 [MEDIUM] usb: typec: ucsi: displayport: Fix deadlock usb: typec: ucsi: displayport: Fix deadlock NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37967 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of t

CVE-2025-37954 [MEDIUM] smb: client: Avoid race in open_cached_dir with lease breaks smb: client: Avoid race in open_cached_dir with lease breaks NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-37954 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most re

CVE-2025-22088 [HIGH] RDMA/erdma: Prevent use-after-free in erdma_accept_newconn() RDMA/erdma: Prevent use-after-free in erdma_accept_newconn() NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-22088 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most rece

CVE-2025-22020 [HIGH] memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove memstick: rtsx_usb_ms: Fix slab-use-after-free in rtsx_usb_ms_drv_remove NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-22020 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to

CVE-2025-22027 [MEDIUM] CWE-362 media: streamzap: fix race between device disconnection and urb callback media: streamzap: fix race between device disconnection and urb callback NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-22027 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to kee

CVE-2025-22080 [MEDIUM] CWE-190 fs/ntfs3: Prevent integer overflow in hdr_first_de() fs/ntfs3: Prevent integer overflow in hdr_first_de() NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-22080 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and

CVE-2025-22081 [MEDIUM] fs/ntfs3: Fix a couple integer overflows on 32bit systems fs/ntfs3: Fix a couple integer overflows on 32bit systems NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2025-22081 FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent a

CVE-2024-11614 [HIGH] CVE-2024-11614: NIST NVD Details: https://nvd NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2024-11614 Mariner: Mariner [email protected]: [email protected] Customer Action Required: Yes Exploit Status: DOS:N/A Remediation: dpdk Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-11614

CVE-2024-2881 [MEDIUM] CVE-2024-2881: NIST NVD Details: https://nvd NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2024-2881 Mariner: Mariner [email protected]: [email protected] Customer Action Required: Yes Exploit Status: DOS:N/A Remediation: mariadb Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-2881

CVE-2024-38472 [HIGH] CVE-2024-38472: NIST NVD Details: https://nvd NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2024-38472 Mariner: Mariner [email protected]: [email protected] Customer Action Required: Yes Exploit Status: DOS:N/A Remediation: httpd Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-38472

CVE-2024-49966 [HIGH] CVE-2024-49966: NIST NVD Details: https://nvd NIST NVD Details: https://nvd.nist.gov/vuln/detail/CVE-2024-49966 Mariner: Mariner 416baaa9-dc9f-4396-8d5f-8c081fb06d67: 416baaa9-dc9f-4396-8d5f-8c081fb06d67 Customer Action Required: Yes Exploit Status: DOS:N/A Remediation: kernel Reference: https://nvd.nist.gov/vuln/detail/CVE-2024-49966