USN-8125-1: Linux kernel (Azure) vulnerabilities

Qualys discovered that several vulnerabilities existed in the AppArmor Linux kernel Security Module LSM. An unprivileged local attacker could use these issues to load, replace, and remove arbitrary AppArmor profiles causing denial of service, exposure of sensitive information kernel memory, local...

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-23868)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-23868 advisory. - Giflib contains a double-free vulnerability that is the result of a shallow copy in...

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-3381)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-3381 advisory. - Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib...

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-23865)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-23865 advisory. - An integer overflow in the ttvarloaditemvariationstore function of the Freetype library in...

CVE-2026-23665

Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally...

Linux Azure Diagnostic extension (LAD) Elevation of Privilege Vulnerability

Heap-based buffer overflow in Azure Linux Virtual Machines allows an authorized attacker to elevate privileges locally...

PT-2026-24270

Уязвимость расширения для управления виртуальными машинами Azure Azure Diagnostics для Linux Virtual Machines связана с переполнением буфера в динамической памяти. Эксплуатация уязвимости может позволить нарушителю повысить свои привилегии...

Microsoft Azure Linux Virtual Machines 安全漏洞

Microsoft Azure Linux Virtual Machines are cloud computing infrastructure resources provided by Microsoft. They are on-demand, elastic, and support multiple mainstream Linux distributions. There are security vulnerabilities associated with Microsoft Azure Linux Virtual Machines. Attackers can...

Azure Linux 3.0 Security Update: CBL-Mariner Releases (CVE-2026-27171)

The version of CBL-Mariner Releases installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2026-27171 advisory. - zlib before 1.3.2 allows CPU consumption via crc32combine64 and crc32combinegen64 because...

Azure Linux 3.0 Security Update: kernel (CVE-2025-21748)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21748 advisory. - In the Linux kernel, the following vulnerability has been resolved: ksmbd: fix integer overflows on 32 bit...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42230)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42230 advisory. - In the Linux kernel, the following vulnerability has been resolved: powerpc/pseries: Fix scv instruction cra...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46811)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46811 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index May exceed...

Azure Linux 3.0 Security Update: glusterfs (CVE-2023-26253)

The version of glusterfs installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-26253 advisory. - In Gluster GlusterFS 11.0, there is an xlators/mount/fuse/src/fuse-bridge.c notify stack-based buffer...

Azure Linux 3.0 Security Update: libglvnd (CVE-2023-26819)

The version of libglvnd installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-26819 advisory. - cJSON 1.7.15 might allow a denial of service via a crafted JSON document such as a: true, b:...

Azure Linux 3.0 Security Update: kernel (CVE-2024-41002)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41002 advisory. - In the Linux kernel, the following vulnerability has been resolved: crypto: hisilicon/sec - Fix memory leak...

Azure Linux 3.0 Security Update: openjpeg2 (CVE-2020-27824)

The version of openjpeg2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-27824 advisory. - A flaw was found in OpenJPEG's encoder in the opjdwtcalcexplicitstepsizes function. This flaw allows an...

Azure Linux 3.0 Security Update: kata-containers (CVE-2020-25576)

The version of kata-containers installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-25576 advisory. - An issue was discovered in the randcore crate before 0.4.2 for Rust. Casting of byte slices to...

Azure Linux 3.0 Security Update: kernel (CVE-2024-43891)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43891 advisory. - In the Linux kernel, the following vulnerability has been resolved: tracing: Have format file honor...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42085)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42085 advisory. - In the Linux kernel, the following vulnerability has been resolved: usb: dwc3: core: remove lock of otg mod...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56613)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56613 advisory. - In the Linux kernel, the following vulnerability has been resolved: sched/numa: fix memory leak due to the...