Azure Linux 3.0 Security Update: curl (CVE-2024-0853)

The version of curl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-0853 advisory. - curl inadvertently kept the SSL session ID for connections in its cache even when the verify status OCSP stapli...

Azure Linux 3.0 Security Update: kernel (CVE-2010-0309)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2010-0309 advisory. - The pitioportread function in the Programmable Interval Timer PIT emulation in i8254.c in KVM 83 does not...

Azure Linux 3.0 Security Update: golang / python-tensorboard (CVE-2020-16845)

The version of golang / python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-16845 advisory. - Go before 1.13.15 and 14.x before 1.14.7 can have an infinite read loop in ReadUvarint...

Azure Linux 3.0 Security Update: pytorch (CVE-2024-27319)

The version of pytorch installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27319 advisory. - Versions of the package onnx before and including 1.15.0 are vulnerable to Out-of-bounds Read as the...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49965)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49965 advisory. - In the Linux kernel, the following vulnerability has been resolved: ocfs2: remove unreasonable unlock in...

Azure Linux 3.0 Security Update: blobfuse2 / cert-manager / cf-cli / coredns / cri-tools / etcd (CVE-2023-39325)

The version of blobfuse2 / cert-manager / cf-cli / coredns / cri-tools / etcd installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-39325 advisory. - A malicious HTTP/2 client which rapidly creates...

Azure Linux 3.0 Security Update: fluent-bit (CVE-2024-26455)

The version of fluent-bit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26455 advisory. - fluent-bit 2.2.2 contains a Use-After-Free vulnerability in /fluent-...

Azure Linux 3.0 Security Update: kernel (CVE-2024-38664)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-38664 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm: zynqmpdpsub: Always register bridge...

Azure Linux 3.0 Security Update: grub2 (CVE-2022-2601)

The version of grub2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-2601 advisory. - A buffer overflow was found in grubfontconstructglyph. A malicious crafted pf2 font can lead to an overflow wh...

Azure Linux 3.0 Security Update: kernel (CVE-2024-50038)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50038 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: xtables: avoid NFPROTOUNSPEC...

Azure Linux 3.0 Security Update: hdf5 (CVE-2024-33877)

The version of hdf5 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-33877 advisory. - HDF5 Library through 1.14.3 has a heap-based buffer overflow in H5Tconvstructopt in H5Tconv.c. CVE-2024-33877...

Azure Linux 3.0 Security Update: kernel (CVE-2024-36477)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36477 advisory. - In the Linux kernel, the following vulnerability has been resolved: tpmtisspi: Account for SPI header when...

Azure Linux 3.0 Security Update: kernel (CVE-2024-50015)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50015 advisory. - In the Linux kernel, the following vulnerability has been resolved: ext4: dax: fix overflowing extents beyon...

Azure Linux 3.0 Security Update: edk2 / hvloader / nodejs18 / openssl (CVE-2023-0464)

The version of edk2 / hvloader / nodejs18 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-0464 advisory. - A security vulnerability has been identified in all supported versions of OpenS...

Azure Linux 3.0 Security Update: python-pygments (CVE-2021-27291)

The version of python-pygments installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-27291 advisory. - In pygments 1.1+, fixed in 2.7.4, the lexers used to parse programming languages rely heavily on...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-26947)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26947 advisory. - In the Linux kernel, the following vulnerability has been resolved: ARM: 9359/1: flush: check if the...

Azure Linux 3.0 Security Update: kernel (CVE-2024-50031)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50031 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/v3d: Stop the active perfmon before...

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl (CVE-2023-6129)

The version of cloud-hypervisor-cvm / hvloader / nodejs / nodejs18 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6129 advisory. - Issue summary: The POLY1305 MAC message authentication...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46781)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46781 advisory. - In the Linux kernel, the following vulnerability has been resolved: nilfs2: fix missing cleanup on rollforwa...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46761)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46761 advisory. - In the Linux kernel, the following vulnerability has been resolved: pci/hotplug/pnvphp: Fix hotplug driver...