Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / edk2 / hvloader / openssl (CVE-2024-6119)

The version of cloud-hypervisor-cvm / edk2 / hvloader / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-6119 advisory. - Issue summary: Applications performing certificate name checks e.g....

Azure Linux 3.0 Security Update: kernel (CVE-2024-38583)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-38583 advisory. - In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix use-after-free of timer for...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46807)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46807 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/amdgpu: Check tbo resource point...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42225)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42225 advisory. - In the Linux kernel, the following vulnerability has been resolved: wifi: mt76: replace skbput with skbputze...

Azure Linux 3.0 Security Update: golang / python-tensorboard (CVE-2021-41771)

The version of golang / python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-41771 advisory. - ImportedSymbols in debug/macho for Open or OpenFat in Go before 1.16.10 and 1.17.x befo...

Azure Linux 3.0 Security Update: vim (CVE-2024-47814)

The version of vim installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47814 advisory. - Vim is an open source, command line text editor. A use-after-free was found in Vim 9.1.0764. When closing a...

Azure Linux 3.0 Security Update: unzip (CVE-2022-0529)

The version of unzip installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-0529 advisory. - A flaw was found in Unzip. The vulnerability occurs during the conversion of a wide string to a local string...

Azure Linux 3.0 Security Update: nvidia-container-toolkit (CVE-2024-0134)

The version of nvidia-container-toolkit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-0134 advisory. - NVIDIA Container Toolkit and NVIDIA GPU Operator for Linux contain a UNIX vulnerability whe...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49997)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49997 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: ethernet: lantiqetop: fix memory...

Azure Linux 3.0 Security Update: libpcap / nmap (CVE-2023-7256)

The version of libpcap / nmap installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-7256 advisory. - In affected libpcap versions during the setup of a remote packet capture the internal function...

Azure Linux 3.0 Security Update: hyperv-daemons / kernel (CVE-2024-36008)

The version of hyperv-daemons / kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36008 advisory. - In the Linux kernel, the following vulnerability has been resolved: ipv4: check for NULL id...

Azure Linux 3.0 Security Update: rsync (CVE-2024-12085)

The version of rsync installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-12085 advisory. - A flaw was found in rsync which could be triggered when rsync compares file checksums. This flaw allows an...

Azure Linux 3.0 Security Update: frr (CVE-2024-44070)

The version of frr installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-44070 advisory. - An issue was discovered in FRRouting FRR through 10.1. bgpattrencap in bgpd/bgpattr.c does not check the actual...

Azure Linux 3.0 Security Update: python3 (CVE-2024-0450)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-0450 advisory. - An issue was found in the CPython zipfile module affecting versions 3.12.1, 3.11.7, 3.10.13, 3.9.18, and...

Azure Linux 3.0 Security Update: qemu / qemu-kvm (CVE-2021-4207)

The version of qemu / qemu-kvm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-4207 advisory. - A flaw was found in the QXL display device emulation in QEMU. A double fetch of guest controlled...

Azure Linux 3.0 Security Update: kernel (CVE-2024-26952)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26952 advisory. - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix potencial out-of-bounds when...

Azure Linux 3.0 Security Update: python-tensorboard / reaper (CVE-2024-45590)

The version of python-tensorboard / reaper installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45590 advisory. - body-parser is Node.js body parsing middleware. body-parser 1.20.3 is vulnerable to...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46818)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46818 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check gpioid before use...

Azure Linux 3.0 Security Update: libtiff (CVE-2023-52356)

The version of libtiff installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-52356 advisory. - A segment fault SEGV flaw was found in libtiff that could be triggered by passing a crafted tiff file to th...

Azure Linux 3.0 Security Update: cmake / curl / mysql (CVE-2024-2004)

The version of cmake / curl / mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-2004 advisory. - When a protocol selection parameter option disables all protocols without adding any then the...