Msrc Azure Linux 3.0 X64 vulnerabilities

CVE-2024-50044 [LOW] CWE-667 Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change Bluetooth: RFCOMM: FIX possible deadlock in rfcomm_sk_state_change FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source l

CVE-2024-47738 [LOW] wifi: mac80211: don't use rate mask for offchannel TX either wifi: mac80211: don't use rate mask for offchannel TX either FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-50057 [LOW] CWE-763 usb: typec: tipd: Free IRQ only if it was requested before usb: typec: tipd: Free IRQ only if it was requested before FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with wh

CVE-2024-9026 [LOW] CWE-158 PHP-FPM logs from children may be altered PHP-FPM logs from children may be altered FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microso

CVE-2024-21247 [LOW] Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.39 and prior 8.4.2 and prior and 9.0.1 and prior. Easily exploi Vulnerability in the MySQL Client product of Oracle MySQL (component: Client: mysqldump). Supported versions that are affected are 8.0.39 and prior 8.4.2 and prior and 9.0.1 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via mult

CVE-2024-46724 [HIGH] CWE-125 drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number drm/amdgpu: Fix out-of-bounds read of df_v1_7_channel_number FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi

CVE-2024-44983 [HIGH] CWE-908 netfilter: flowtable: validate vlan header netfilter: flowtable: validate vlan header FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Mic

CVE-2024-46849 [HIGH] CWE-416 ASoC: meson: axg-card: fix 'use-after-free' ASoC: meson: axg-card: fix 'use-after-free' FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. M

CVE-2024-46836 [HIGH] CWE-129 usb: gadget: aspeed_udc: validate endpoint index for ast udc usb: gadget: aspeed_udc: validate endpoint index for ast udc FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi

CVE-2024-46674 [HIGH] CWE-416 usb: dwc3: st: fix probed platform device ref count on probe error path usb: dwc3: st: fix probed platform device ref count on probe error path FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the op

CVE-2024-46845 [HIGH] CWE-416 tracing/timerlat: Only clear timer if a kthread exists tracing/timerlat: Only clear timer if a kthread exists FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the

CVE-2024-45026 [HIGH] CWE-787 s390/dasd: fix error recovery leading to data corruption on ESE devices s390/dasd: fix error recovery leading to data corruption on ESE devices FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the op

CVE-2024-46796 [HIGH] CWE-416 smb: client: fix double put of @cfile in smb2_set_path_size() smb: client: fix double put of @cfile in smb2_set_path_size() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries

CVE-2024-46818 [HIGH] CWE-129 drm/amd/display: Check gpio_id before used as array index drm/amd/display: Check gpio_id before used as array index FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-44998 [HIGH] CWE-416 atm: idt77252: prevent use after free in dequeue_rx() atm: idt77252: prevent use after free in dequeue_rx() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the d

CVE-2024-46859 [HIGH] CWE-129 platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses platform/x86: panasonic-laptop: Fix SINF array out of bounds accesses FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open s

CVE-2024-6119 [HIGH] CWE-843 Possible denial of service in X.509 name checks Possible denial of service in X.509 name checks FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is comp

CVE-2024-46786 [HIGH] CWE-416 fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF fscache: delete fscache_cookie_lru_timer when fscache exits to avoid UAF FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the

CVE-2024-45590 [HIGH] CWE-405 body-parser vulnerable to denial of service when url encoding is enabled body-parser vulnerable to denial of service when url encoding is enabled FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the

CVE-2024-44999 [HIGH] CWE-908 gtp: pull network headers in gtp_dev_xmit() gtp: pull network headers in gtp_dev_xmit() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. M