Azure Linux 3.0 Security Update: kernel (CVE-2024-47696)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47696 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix...

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / crash / teckit / zlib (CVE-2022-37434)

The version of cloud-hypervisor-cvm / crash / teckit / zlib installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-37434 advisory. - zlib through 1.2.12 has a heap-based buffer over-read or buffer overfl...

Azure Linux 3.0 Security Update: cmake / curl / mysql / rust / tensorflow (CVE-2023-27536)

The version of cmake / curl / mysql / rust / tensorflow installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-27536 advisory. - An authentication bypass vulnerability exists libcurl 8.0.0 in the...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47712)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47712 advisory. - In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix potential RCU...

Azure Linux 3.0 Security Update: edk2 / openssl (CVE-2022-0778)

The version of edk2 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-0778 advisory. - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loo...

Azure Linux 3.0 Security Update: cmake / curl / mysql (CVE-2023-46218)

The version of cmake / curl / mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-46218 advisory. - This flaw allows a malicious HTTP server to set super cookies in curl that are then passed bac...

Azure Linux 3.0 Security Update: golang / python-tensorboard (CVE-2021-27918)

The version of golang / python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-27918 advisory. - encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a...

Azure Linux 3.0 Security Update: gdb (CVE-2023-39128)

The version of gdb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-39128 advisory. - GNU gdb GDB 13.0.50.20220805-git was discovered to contain a stack overflow via the function adadecode at...

Azure Linux 3.0 Security Update: edk2 / openssl (CVE-2021-3712)

The version of edk2 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-3712 advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a...

Azure Linux 3.0 Security Update: php (CVE-2024-11234)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-11234 advisory. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, when using streams with configured...

Azure Linux 3.0 Security Update: python-pip / python-urllib3 / python3 (CVE-2024-37891)

The version of python-pip / python-urllib3 / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-37891 advisory. - urllib3 is a user-friendly HTTP client library for Python. When using urllib3...

Azure Linux 3.0 Security Update: mysql (CVE-2024-21212)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-21212 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Health Monitor. Supported versio...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47695)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47695 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/rtrs-clt: Reset cid to connum - 1 t...

Azure Linux 3.0 Security Update: shim / shim-unsigned-aarch64 / shim-unsigned-x64 (CVE-2023-40549)

The version of shim / shim-unsigned-aarch64 / shim-unsigned-x64 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-40549 advisory. - An out-of-bounds read flaw was found in Shim due to the lack of...

Azure Linux 3.0 Security Update: hyperv-daemons / kernel (CVE-2023-3338)

The version of hyperv-daemons / kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-3338 advisory. - A null pointer dereference flaw was found in the Linux kernel's DECnet networking protocol...

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / hvloader / kata-containers / kata-containers-cc / nodejs / openssl (CVE-2024-0727)

The version of cloud-hypervisor-cvm / hvloader / kata-containers / kata-containers-cc / nodejs / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-0727 advisory. - Issue summary: Processing ...

Azure Linux 3.0 Security Update: postgresql (CVE-2024-10976)

The version of postgresql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-10976 advisory. - Incomplete tracking in PostgreSQL of tables with row security allows a reused query to view or change...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42070)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42070 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fully validate...

Azure Linux 3.0 Security Update: qemu (CVE-2021-3929)

The version of qemu installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-3929 advisory. - A DMA reentrancy issue was found in the NVM Express Controller NVME emulation in QEMU. This CVE is similar to...

Azure Linux 3.0 Security Update: grpc / keras / mysql / protobuf / pytorch (CVE-2022-1941)

The version of grpc / keras / mysql / protobuf / pytorch installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-1941 advisory. - A parsing vulnerability for the MessageSet type in the ProtocolBuffers...