Msrc Cbl Mariner 2.0 Arm vulnerabilities

CVE-2024-44982 [MEDIUM] CWE-459 drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails drm/msm/dpu: cleanup FB if dpu_format_populate_layout fails FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries wi

CVE-2024-44988 [MEDIUM] net: dsa: mv88e6xxx: Fix out-of-bound access net: dsa: mv88e6xxx: Fix out-of-bound access FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Micro

CVE-2024-46755 [MEDIUM] CWE-476 wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() wifi: mwifiex: Do not return unused priv in mwifiex_get_priv_by_id() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open s

CVE-2024-45018 [MEDIUM] CWE-665 netfilter: flowtable: initialise extack before use netfilter: flowtable: initialise extack before use FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distr

CVE-2024-43799 [MEDIUM] CWE-79 send vulnerable to template injection that can lead to XSS send vulnerable to template injection that can lead to XSS FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with

CVE-2024-44989 [MEDIUM] CWE-476 bonding: fix xfrm real_dev null pointer dereference bonding: fix xfrm real_dev null pointer dereference FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dis

CVE-2024-46685 [MEDIUM] CWE-476 pinctrl: single: fix potential NULL dereference in pcs_get_function() pinctrl: single: fix potential NULL dereference in pcs_get_function() FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open

CVE-2024-46679 [MEDIUM] ethtool: check device is present when getting link settings ethtool: check device is present when getting link settings FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which

CVE-2024-46781 [MEDIUM] CWE-416 nilfs2: fix missing cleanup on rollforward recovery error nilfs2: fix missing cleanup on rollforward recovery error FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with w

CVE-2024-45028 [MEDIUM] CWE-476 mmc: mmc_test: Fix NULL dereference on allocation failure mmc: mmc_test: Fix NULL dereference on allocation failure FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with w

CVE-2024-46761 [MEDIUM] CWE-476 pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv pci/hotplug/pnv_php: Fix hotplug driver crash on Powernv FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with whi

CVE-2024-46714 [MEDIUM] CWE-476 drm/amd/display: Skip wbscl_set_scaler_filter if filter is null drm/amd/display: Skip wbscl_set_scaler_filter if filter is null FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libr

CVE-2024-44960 [MEDIUM] CWE-476 usb: gadget: core: Check for unset descriptor usb: gadget: core: Check for unset descriptor FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compo

CVE-2024-46763 [MEDIUM] CWE-476 fou: Fix null-ptr-deref in GRO. fou: Fix null-ptr-deref in GRO. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is composed. Microsoft is committed

CVE-2024-46829 [MEDIUM] CWE-667 rtmutex: Drop rt_mutex::wait_lock before scheduling rtmutex: Drop rt_mutex::wait_lock before scheduling FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dis

CVE-2024-44966 [MEDIUM] binfmt_flat: Fix corruption when not offsetting data start binfmt_flat: Fix corruption when not offsetting data start FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which t

CVE-2024-46721 [MEDIUM] CWE-476 apparmor: fix possible NULL pointer dereference apparmor: fix possible NULL pointer dereference FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is c

CVE-2024-45006 [MEDIUM] CWE-476 xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration xhci: Fix Panther point NULL pointer deref at full-speed re-enumeration FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the

CVE-2024-46677 [MEDIUM] CWE-476 gtp: fix a potential NULL pointer dereference gtp: fix a potential NULL pointer dereference FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the distro is compo

CVE-2024-45011 [MEDIUM] char: xillybus: Check USB endpoints when probing device char: xillybus: Check USB endpoints when probing device FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure versions of the open source libraries with which the dis