Azure Linux 3.0 Security Update: kernel (CVE-2024-53227)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53227 advisory. - In the Linux kernel, the following vulnerability has been resolved: scsi: bfa: Fix use-after-free in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56780)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56780 advisory. - In the Linux kernel, the following vulnerability has been resolved: quota: flush quotareleasework upon quot...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56754)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56754 advisory. - In the Linux kernel, the following vulnerability has been resolved: crypto: caam - Fix the pointer passed to...

Azure Linux 3.0 Security Update: kernel (CVE-2024-53096)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53096 advisory. - In the Linux kernel, the following vulnerability has been resolved: mm: resolve faulty mmapregion error path...

Azure Linux 3.0 Security Update: kernel (CVE-2024-53146)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53146 advisory. - In the Linux kernel, the following vulnerability has been resolved: NFSD: Prevent a potential integer overfl...

Azure Linux 3.0 Security Update: kernel (CVE-2024-53237)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53237 advisory. - In the Linux kernel, the following vulnerability has been resolved: Bluetooth: fix use-after-free in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56578)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56578 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: imx-jpeg: Set video drvdata befor...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56723)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56723 advisory. - In the Linux kernel, the following vulnerability has been resolved: mfd: intelsocpmicbxtwc: Use IRQ domain f...

Azure Linux 3.0 Security Update: kernel (CVE-2024-53165)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-53165 advisory. - In the Linux kernel, the following vulnerability has been resolved: sh: intc: Fix use-after-free bug in...

Azure Linux 3.0 Security Update: ant / javapackages-bootstrap (CVE-2021-36373)

The version of ant / javapackages-bootstrap installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-36373 advisory. - When reading a specially crafted TAR archive an Apache Ant build can be made to alloca...

Azure Linux 3.0 Security Update: ruby / rubygem-rexml (CVE-2024-39908)

The version of ruby / rubygem-rexml installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39908 advisory. - REXML is an XML toolkit for Ruby. The REXML gem before 3.3.1 has some DoS vulnerabilities when...

Azure Linux 3.0 Security Update: ant / javapackages-bootstrap (CVE-2021-36374)

The version of ant / javapackages-bootstrap installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-36374 advisory. - When reading a specially crafted ZIP archive, or a derived formats, an Apache Ant buil...

Azure Linux 3.0 Security Update: opensc (CVE-2023-40660)

The version of opensc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-40660 advisory. - A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by...

Azure Linux 3.0 Security Update: opensc (CVE-2024-1454)

The version of opensc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1454 advisory. - The use-after-free vulnerability was found in the AuthentIC driver in OpenSC packages, occuring in the card...

Azure Linux 3.0 Security Update: expat / python3 (CVE-2024-28757)

The version of expat / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-28757 advisory. - libexpat through 2.6.1 allows an XML Entity Expansion attack when there is isolated use of external...

Azure Linux 3.0 Security Update: opensc (CVE-2023-5992)

The version of opensc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5992 advisory. - A vulnerability was found in OpenSC where PKCS1 encryption padding removal is not implemented as side- channe...

Azure Linux 3.0 Security Update: openssh (CVE-2025-26465)

The version of openssh installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-26465 advisory. - A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle...

Azure Linux 3.0 Security Update: binutils / gdb (CVE-2025-1176)

The version of binutils / gdb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-1176 advisory. - A vulnerability was found in GNU Binutils 2.43 and classified as critical. This issue affects the...

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / openssl (CVE-2024-12797)

The version of cloud-hypervisor-cvm / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-12797 advisory. - Issue summary: Clients using RFC7250 Raw Public Keys RPKs to authenticate a server M...

Azure Linux 3.0 Security Update: netplan (CVE-2022-4968)

The version of netplan installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-4968 advisory. - netplan leaks the private key of wireguard to local users. Versions after 1.0 are not affected. CVE-2022-496...