Azure Linux 3.0 Security Update: edk2 / hvloader (CVE-2023-45237)

The version of edk2 / hvloader installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45237 advisory. - EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This...

Azure Linux 3.0 Security Update: kernel (CVE-2024-36288)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36288 advisory. - In the Linux kernel, the following vulnerability has been resolved: SUNRPC: Fix loop termination condition i...

Azure Linux 3.0 Security Update: kernel (CVE-2024-35990)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35990 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: xilinxdpdma: Fix locking There are...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47747)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47747 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: seeq: Fix use after free...

Azure Linux 3.0 Security Update: edk2 / hvloader (CVE-2023-45234)

The version of edk2 / hvloader installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45234 advisory. - EDK2's Network Package is susceptible to a buffer overflow vulnerability when processing DNS Server...

Azure Linux 3.0 Security Update: fluent-bit (CVE-2024-4323)

The version of fluent-bit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4323 advisory. - A memory corruption vulnerability in Fluent Bit versions 2.0.7 thru 3.0.3. This issue lies in the embedde...

Azure Linux 3.0 Security Update: kernel (CVE-2024-36477)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36477 advisory. - In the Linux kernel, the following vulnerability has been resolved: tpmtisspi: Account for SPI header when...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42077)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42077 advisory. - In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix DIO failure due to insufficie...

Azure Linux 3.0 Security Update: mysql (CVE-2024-21166)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-21166 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are...

Azure Linux 3.0 Security Update: yasm (CVE-2021-33454)

The version of yasm installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-33454 advisory. - An issue was discovered in yasm version 1.3.0. There is a NULL pointer dereference in yasmexprgetintnum in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49894)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49894 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index out of bounds...

Azure Linux 3.0 Security Update: mariadb (CVE-2023-6935)

The version of mariadb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6935 advisory. - wolfSSL SP Math All RSA implementation is vulnerable to the Marvin Attack, new variation of a timing...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47684)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47684 advisory. - In the Linux kernel, the following vulnerability has been resolved: tcp: check skb is non-NULL in...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-35848)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35848 advisory. - In the Linux kernel, the following vulnerability has been resolved: eeprom: at24: fix memory...

Azure Linux 3.0 Security Update: kata-containers / rpm-ostree (CVE-2023-26964)

The version of kata-containers / rpm-ostree installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-26964 advisory. - An issue was discovered in hyper v0.13.7. h2-0.2.4 Stream stacking occurs when the H2...

Azure Linux 3.0 Security Update: hdf5 (CVE-2024-29158)

The version of hdf5 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29158 advisory. - HDF5 through 1.14.3 contains a stack buffer overflow in H5FLarrmalloc, resulting in the corruption of the...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49907)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49907 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Check null pointers...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46750)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46750 advisory. - In the Linux kernel, the following vulnerability has been resolved: PCI: Add missing bridge lock to...

Azure Linux 3.0 Security Update: kubernetes (CVE-2024-10220)

The version of kubernetes installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-10220 advisory. - The Kubernetes kubelet component allows arbitrary command execution via specially crafted gitRepo...

Azure Linux 3.0 Security Update: kernel (CVE-2024-44989)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-44989 advisory. - In the Linux kernel, the following vulnerability has been resolved: bonding: fix xfrm realdev null pointer...