Azure Linux 3.0 Security Update: cloud-hypervisor / edk2 / hvloader / openssl / rust (CVE-2022-4450)

The version of cloud-hypervisor / edk2 / hvloader / openssl / rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-4450 advisory. - The function PEMreadbioex reads a PEM file from a BIO and parses...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46676)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46676 advisory. - In the Linux kernel, the following vulnerability has been resolved: nfc: pn533: Add poll mod list filling...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46679)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46679 advisory. - In the Linux kernel, the following vulnerability has been resolved: ethtool: check device is present when...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47695)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47695 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/rtrs-clt: Reset cid to connum - 1 t...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49981)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49981 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: venus: fix use after free bug in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49983)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49983 advisory. - In the Linux kernel, the following vulnerability has been resolved: ext4: drop ppath from...

Azure Linux 3.0 Security Update: cloud-hypervisor / edk2 / hvloader / openssl (CVE-2022-4304)

The version of cloud-hypervisor / edk2 / hvloader / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-4304 advisory. - A timing based side channel exists in the OpenSSL RSA Decryption...

Azure Linux 3.0 Security Update: heimdal / krb5 / samba (CVE-2022-42898)

The version of heimdal / krb5 / samba installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-42898 advisory. - PAC parsing in MIT Kerberos 5 aka krb5 before 1.19.4 and 1.20.x before 1.20.1 has integer...

Azure Linux 3.0 Security Update: kernel (CVE-2024-36902)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36902 advisory. - In the Linux kernel, the following vulnerability has been resolved: ipv6: fib6rules: avoid possible NULL...

Azure Linux 3.0 Security Update: kernel (CVE-2024-40902)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-40902 advisory. - In the Linux kernel, the following vulnerability has been resolved: jfs: xattr: fix buffer overflow for...

Azure Linux 3.0 Security Update: kernel (CVE-2024-44947)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-44947 advisory. - In the Linux kernel, the following vulnerability has been resolved: fuse: Initialize beyond-EOF page content...

Azure Linux 3.0 Security Update: kernel (CVE-2024-45018)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45018 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: flowtable: initialise extack...

Azure Linux 3.0 Security Update: ntfs-3g (CVE-2023-52890)

The version of ntfs-3g installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-52890 advisory. - NTFS-3G before 75dcdc2 has a use-after-free in ntfsuppercasembs in libntfs-3g/unistr.c. NOTE: discussion...

Azure Linux 3.0 Security Update: kata-containers / rpm-ostree (CVE-2023-26964)

The version of kata-containers / rpm-ostree installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-26964 advisory. - An issue was discovered in hyper v0.13.7. h2-0.2.4 Stream stacking occurs when the H2...

Azure Linux 3.0 Security Update: heimdal / samba (CVE-2022-44640)

The version of heimdal / samba installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-44640 advisory. - Heimdal before 7.7.1 allows remote attackers to execute arbitrary code because of an invalid free i...

Azure Linux 3.0 Security Update: kernel (CVE-2024-35990)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35990 advisory. - In the Linux kernel, the following vulnerability has been resolved: dma: xilinxdpdma: Fix locking There are...

Azure Linux 3.0 Security Update: hdf5 (CVE-2024-32615)

The version of hdf5 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-32615 advisory. - HDF5 Library through 1.14.3 contains a heap-based buffer overflow in H5Znbitdecompressonebyte in H5Znbit.c,...

Azure Linux 3.0 Security Update: gdb (CVE-2023-39128)

The version of gdb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-39128 advisory. - GNU gdb GDB 13.0.50.20220805-git was discovered to contain a stack overflow via the function adadecode at...

Azure Linux 3.0 Security Update: mysql (CVE-2024-21201)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-21201 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions th...

Azure Linux 3.0 Security Update: edk2 / openssl (CVE-2022-0778)

The version of edk2 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-0778 advisory. - The BNmodsqrt function, which computes a modular square root, contains a bug that can cause it to loo...