Azure Linux 3.0 Security Update: edk2 (CVE-2024-38796)

The version of edk2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-38796 advisory. - EDK2 contains a vulnerability in the PeCoffLoaderRelocateImage. An Attacker May cause memory corruption due to...

Azure Linux 3.0 Security Update: python3 (CVE-2025-6069)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-6069 advisory. - The html.parser.HTMLParser class had worse-case quadratic complexity when processing certain crafted malform...

Azure Linux 3.0 Security Update: redis / valkey (CVE-2025-32023)

The version of redis / valkey installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32023 advisory. - Redis is an open source, in-memory database that persists on disk. From 2.8 to before 8.0.3, 7.4.5,...

Azure Linux 3.0 Security Update: python3 (CVE-2025-4517)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-4517 advisory. - Allows arbitrary filesystem writes outside the extraction directory during extraction with filter=data. You...

Azure Linux 3.0 Security Update: python3 (CVE-2025-4138)

The version of python3 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-4138 advisory. - Allows the extraction filter to be ignored, allowing symlink targets to point outside the destination...

Azure Linux 3.0 Security Update: nodejs / nodejs18 (CVE-2025-47279)

The version of nodejs / nodejs18 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-47279 advisory. - Undici is an HTTP/1.1 client for Node.js. Prior to versions 5.29.0, 6.21.2, and 7.5.0, applicatio...

Azure Linux 3.0 Security Update: grub2 (CVE-2025-0624)

The version of grub2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-0624 advisory. - A flaw was found in grub2. During the network boot process, when trying to search for the configuration file,...

Azure Linux 3.0 Security Update: opensc (CVE-2023-40661)

The version of opensc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-40661 advisory. - Several memory vulnerabilities were identified within the OpenSC packages, particularly in the card enrollme...

Azure Linux 3.0 Security Update: mysql (CVE-2025-30688)

The version of mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-30688 advisory. - Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions th...

Azure Linux 3.0 Security Update: crash (CVE-2023-25588)

The version of crash installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-25588 advisory. - A flaw was found in Binutils. The field thebfd of asymbolstruct is uninitialized in the...

Azure Linux 3.0 Security Update: erlang (CVE-2025-32433)

The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32433 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3,...

Azure Linux 3.0 Security Update: erlang (CVE-2025-30211)

The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-30211 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.1, 26.2.5.1...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56598)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56598 advisory. - In the Linux kernel, the following vulnerability has been resolved: jfs: array-index-out-of-bounds fix in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-57900)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-57900 advisory. - In the Linux kernel, the following vulnerability has been resolved: ila: serialize calls to nfregisternethoo...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56780)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56780 advisory. - In the Linux kernel, the following vulnerability has been resolved: quota: flush quotareleasework upon quot...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56688)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56688 advisory. - In the Linux kernel, the following vulnerability has been resolved: sunrpc: clear XPRTSOCKUPDTIMEOUT when...

Azure Linux 3.0 Security Update: opensc (CVE-2023-40660)

The version of opensc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-40660 advisory. - A flaw was found in OpenSC packages that allow a potential PIN bypass. When a token/card is authenticated by...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42270)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42270 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: iptables: Fix null-ptr- deref...

Azure Linux 3.0 Security Update: vim (CVE-2024-43374)

The version of vim installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43374 advisory. - The UNIX editor Vim prior to version 9.1.0678 has a use-after-free error in argument list handling. When adding...

Azure Linux 3.0 Security Update: ansible (CVE-2023-5764)

The version of ansible installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-5764 advisory. - A template injection flaw was found in Ansible where a user's controller internal templating operations May...