Azure Linux 3.0 Security Update: fltk (CVE-2015-8126)

The version of fltk installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2015-8126 advisory. - Multiple buffer overflows in the 1 pngsetPLTE and 2 pnggetPLTE functions in libpng before 1.0.64, 1.1.x and 1.2...

Azure Linux 3.0 Security Update: python-urllib3 / python3 (CVE-2025-50181)

The version of python-urllib3 / python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-50181 advisory. - urllib3 is a user-friendly HTTP client library for Python. Prior to 2.5.0, it is possible ...

Azure Linux 3.0 Security Update: edk2 / hvloader (CVE-2023-45229)

The version of edk2 / hvloader installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45229 advisory. - EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing the IA...

Azure Linux 3.0 Security Update: edk2 / hvloader (CVE-2023-45231)

The version of edk2 / hvloader installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45231 advisory. - EDK2's Network Package is susceptible to an out-of-bounds read vulnerability when processing Neighb...

Azure Linux 3.0 Security Update: kata-containers / kata-containers-cc / rpm-ostree (CVE-2024-27308)

The version of kata-containers / kata-containers-cc / rpm-ostree installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27308 advisory. - Mio is a Metal I/O library for Rust. When using named pipes on...

Azure Linux 3.0 Security Update: protobuf (CVE-2025-4565)

The version of protobuf installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-4565 advisory. - Any project that uses Protobuf Pure-Python backend to parse untrusted Protocol Buffers data containing an...

Azure Linux 3.0 Security Update: libxml2 (CVE-2025-49796)

The version of libxml2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-49796 advisory. - A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can...

Azure Linux 3.0 Security Update: gnutls (CVE-2025-32988)

The version of gnutls installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32988 advisory. - A flaw was found in GnuTLS. A double-free vulnerability exists in GnuTLS due to incorrect ownership handling...

Azure Linux 3.0 Security Update: luajit / sysbench (CVE-2024-25178)

The version of luajit / sysbench installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-25178 advisory. - LuaJIT through 2.1 and OpenRusty luajit2 before v2.1-20240314 have an out-of-bounds read in the...

Azure Linux 3.0 Security Update: python3 (CVE-2025-4516)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-4516 advisory. - There is an issue in CPython when using bytes.decodeunicodeescape, error=ignore|replace. If you are not usin...

Azure Linux 3.0 Security Update: httpd (CVE-2025-23048)

The version of httpd installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-23048 advisory. - In some modssl configurations on Apache HTTP Server 2.4.35 through to 2.4.63, an access control bypass by...

Azure Linux 3.0 Security Update: libssh (CVE-2025-5351)

The version of libssh installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-5351 advisory. - A flaw was found in the key export functionality of libssh. The issue occurs in the internal function...

Azure Linux 3.0 Security Update: python3 (CVE-2024-4030)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4030 advisory. - On Windows a directory returned by tempfile.mkdtemp would not always have permissions set to restrict readin...

Azure Linux 3.0 Security Update: libssh (CVE-2025-5372)

The version of libssh installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-5372 advisory. - A flaw was found in libssh versions built with OpenSSL versions older than 3.0, specifically in the sshkdf...

Azure Linux 3.0 Security Update: pam (CVE-2025-6020)

The version of pam installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-6020 advisory. - A flaw was found in linux-pam. The module pamnamespace May use access user-controlled paths without proper...

Azure Linux 3.0 Security Update: ansible (CVE-2023-5115)

The version of ansible installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5115 advisory. - An absolute path traversal attack exists in the Ansible automation platform. This flaw allows an attacker to...

Azure Linux 3.0 Security Update: glibc (CVE-2024-33602)

The version of glibc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-33602 advisory. - nscd: netgroup cache assumes NSS callback uses in-buffer strings The Name Service Cache Daemon's nscd netgrou...

Azure Linux 3.0 Security Update: libvirt (CVE-2024-4418)

The version of libvirt installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-4418 advisory. - A race condition leading to a stack use-after-free flaw was found in libvirt. Due to a bad assumption in the...

Azure Linux 3.0 Security Update: ruby (CVE-2024-43398)

The version of ruby installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43398 advisory. - REXML is an XML toolkit for Ruby. The REXML gem before 3.3.6 has a DoS vulnerability when it parses an XML tha...

Azure Linux 3.0 Security Update: CBL-Mariner Releases / grub2 (CVE-2020-14310)

The version of CBL-Mariner Releases / grub2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-14310 advisory. - There is an issue on grub2 before version 2.06 at function readsectionasstring. It...