Azure Linux 3.0 Security Update: kernel (CVE-2024-46791)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46791 advisory. - In the Linux kernel, the following vulnerability has been resolved: can: mcp251x: fix deadlock if an interru...

Azure Linux 3.0 Security Update: postgresql (CVE-2024-10976)

The version of postgresql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-10976 advisory. - Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change...

Azure Linux 3.0 Security Update: heimdal / samba (CVE-2022-3116)

The version of heimdal / samba installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-3116 advisory. - The Heimdal Software Kerberos 5 implementation is vulnerable to a null pointer dereferance. An...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42310)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42310 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/gma500: fix null pointer dereference...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47720)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47720 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42161)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42161 advisory. - In the Linux kernel, the following vulnerability has been resolved: bpf: Avoid uninitialized value in...

Azure Linux 3.0 Security Update: cmake / libuv / nodejs / nodejs18 / python-gevent (CVE-2024-24806)

The version of cmake / libuv / nodejs / nodejs18 / python-gevent installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-24806 advisory. - libuv is a multi-platform support library with a focus on...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49895)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49895 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index out of bounds...

Azure Linux 3.0 Security Update: hvloader / openssl (CVE-2022-2097)

The version of hvloader / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-2097 advisory. - AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49881)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49881 advisory. - In the Linux kernel, the following vulnerability has been resolved: ext4: update origpath in ext4findextent...

Azure Linux 3.0 Security Update: nodejs / nodejs18 (CVE-2024-30260)

The version of nodejs / nodejs18 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-30260 advisory. - Undici is an HTTP/1.1 client, written from scratch for Node.js. Undici cleared Authorization and...

Azure Linux 3.0 Security Update: moby-engine (CVE-2024-36621)

The version of moby-engine installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36621 advisory. - moby v25.0.5 is affected by a Race Condition in builder/builder-next/adapters/snapshot/layer.go. The...

Azure Linux 3.0 Security Update: unbound (CVE-2024-43168)

The version of unbound installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43168 advisory. - DISPUTE NOTE: this issue does not pose a security risk as it according to analysis by the original software...

Azure Linux 3.0 Security Update: php (CVE-2024-8932)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-8932 advisory. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, uncontrolled long string inputs to...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49954)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49954 advisory. - In the Linux kernel, the following vulnerability has been resolved: staticcall: Replace pointless WARNON in...

Azure Linux 3.0 Security Update: hdf5 (CVE-2024-32605)

The version of hdf5 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-32605 advisory. - HDF5 Library through 1.14.3 has a heap-based buffer over-read in H5VMmemcpyvv in H5VM.c called from...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49868)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49868 advisory. - In the Linux kernel, the following vulnerability has been resolved: btrfs: fix a NULL pointer dereference wh...

Azure Linux 3.0 Security Update: kernel (CVE-2024-39480)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39480 advisory. - In the Linux kernel, the following vulnerability has been resolved: kdb: Fix buffer overflow during tab-...

Azure Linux 3.0 Security Update: expat / python3 (CVE-2024-50602)

The version of expat / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50602 advisory. - An issue was discovered in libexpat before 2.6.4. There is a crash within the XMLResumeParser...

Azure Linux 3.0 Security Update: edk2 / hvloader / openssl / rust (CVE-2023-2650)

The version of edk2 / hvloader / openssl / rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-2650 advisory. - Issue summary: Processing some specially crafted ASN.1 object identifiers or data...