Azure Linux 3.0 Security Update: fluent-bit (CVE-2024-27532)

The version of fluent-bit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-27532 advisory. - wasm-micro-runtime aka WebAssembly Micro Runtime or WAMR 06df58f is vulnerable to NULL Pointer Dereferen...

Azure Linux 3.0 Security Update: hyperv-daemons (CVE-2024-26984)

The version of hyperv-daemons installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26984 advisory. - In the Linux kernel, the following vulnerability has been resolved: nouveau: fix instmem race...

Azure Linux 3.0 Security Update: golang / python-tensorboard (CVE-2020-24553)

The version of golang / python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-24553 advisory. - Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default f...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47696)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47696 advisory. - In the Linux kernel, the following vulnerability has been resolved: RDMA/iwcm: Fix...

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / crash / teckit / zlib (CVE-2022-37434)

The version of cloud-hypervisor-cvm / crash / teckit / zlib installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-37434 advisory. - zlib through 1.2.12 has a heap-based buffer over-read or buffer overfl...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46714)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46714 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Skip wbsclsetscalerfilt...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46763)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46763 advisory. - In the Linux kernel, the following vulnerability has been resolved: fou: Fix null-ptr-deref in GRO. We...

Azure Linux 3.0 Security Update: gcc (CVE-2023-4039)

The version of gcc installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-4039 advisory. - DISPUTEDA failure in the -fstack-protector feature in GCC-based toolchains that target AArch64 allows an attacke...

Azure Linux 3.0 Security Update: cmake / curl / mysql (CVE-2023-46219)

The version of cmake / curl / mysql installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-46219 advisory. - When saving HSTS data to an excessively long file name, curl could end up removing all content...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47720)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47720 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Add null check for...

Azure Linux 3.0 Security Update: mariadb (CVE-2023-6937)

The version of mariadb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6937 advisory. - wolfSSL prior to 5.6.6 did not check that messages in one DTLS record do not span key boundaries. As a resul...

Azure Linux 3.0 Security Update: hdf5 (CVE-2024-29157)

The version of hdf5 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29157 advisory. - HDF5 through 1.14.3 contains a heap buffer overflow in H5HGread, resulting in the corruption of the instructio...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42070)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42070 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fully validate...

Azure Linux 3.0 Security Update: edk2 / hvloader (CVE-2023-45236)

The version of edk2 / hvloader installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-45236 advisory. - EDK2's Network Package is susceptible to a predictable TCP Initial Sequence Number. This...

Azure Linux 3.0 Security Update: nodejs / nodejs18 (CVE-2024-30261)

The version of nodejs / nodejs18 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-30261 advisory. - Undici is an HTTP/1.1 client, written from scratch for Node.js. An attacker can alter the integri...

Azure Linux 3.0 Security Update: edk2 / openssl (CVE-2021-3712)

The version of edk2 / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-3712 advisory. - ASN.1 strings are represented internally within OpenSSL as an ASN1STRING structure which contains a...

Azure Linux 3.0 Security Update: golang / python-tensorboard (CVE-2021-27918)

The version of golang / python-tensorboard installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2021-27918 advisory. - encoding/xml in Go before 1.15.9 and 1.16.x before 1.16.1 has an infinite loop if a...

Azure Linux 3.0 Security Update: php (CVE-2024-11234)

The version of php installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-11234 advisory. - In PHP versions 8.1. before 8.1.31, 8.2. before 8.2.26, 8.3. before 8.3.14, when using streams with configured...

Azure Linux 3.0 Security Update: kernel (CVE-2024-47712)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-47712 advisory. - In the Linux kernel, the following vulnerability has been resolved: wifi: wilc1000: fix potential RCU...

Azure Linux 3.0 Security Update: kernel (CVE-2024-50024)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-50024 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: Fix an unsafe loop on the list The...