Azure Linux 3.0 Security Update: cmake / curl / mysql / rust (CVE-2024-9681)

The version of cmake / curl / mysql / rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-9681 advisory. - When curl is asked to use HSTS, the expiry time for a subdomain might overwrite a parent...

Azure Linux 3.0 Security Update: azcopy / blobfuse2 / cert-manager / cf-cli (CVE-2024-24786)

The version of azcopy / blobfuse2 / cert-manager / cf-cli installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-24786 advisory. - The protojson.Unmarshal function can enter an infinite loop when...

Azure Linux 3.0 Security Update: krb5 (CVE-2024-26461)

The version of krb5 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-26461 advisory. - Kerberos 5 aka krb5 1.21.2 contains a memory leak vulnerability in /krb5/src/lib/gssapi/krb5/k5sealv3.c...

Azure Linux 3.0 Security Update: kernel (CVE-2024-39485)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-39485 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Properly re- initiali...

Azure Linux 3.0 Security Update: application-gateway-kubernetes-ingress / cert-manager / cf-cli / cni / cni-plugins (CVE-2024-45338)

The version of application-gateway-kubernetes-ingress / cert-manager / cf-cli / cni / cni-plugins installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45338 advisory. - An attacker can craft an input t...

Azure Linux 3.0 Security Update: libtiff (CVE-2023-6277)

The version of libtiff installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6277 advisory. - An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen API May allow a remote...

Azure Linux 3.0 Security Update: kernel (CVE-2024-41098)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41098 advisory. - In the Linux kernel, the following vulnerability has been resolved: ata: libata-core: Fix null pointer...

Azure Linux 3.0 Security Update: hdf5 (CVE-2024-29157)

The version of hdf5 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-29157 advisory. - HDF5 through 1.14.3 contains a heap buffer overflow in H5HGread, resulting in the corruption of the instructio...

Azure Linux 3.0 Security Update: heimdal / krb5 / samba (CVE-2022-42898)

The version of heimdal / krb5 / samba installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2022-42898 advisory. - PAC parsing in MIT Kerberos 5 aka krb5 before 1.19.4 and 1.20.x before 1.20.1 has integer...

Azure Linux 3.0 Security Update: shim / shim-unsigned-aarch64 / shim-unsigned-x64 (CVE-2023-40549)

The version of shim / shim-unsigned-aarch64 / shim-unsigned-x64 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-40549 advisory. - An out-of-bounds read flaw was found in Shim due to the lack of...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46722)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46722 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amdgpu: fix mcdata out-of-bounds rea...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46679)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46679 advisory. - In the Linux kernel, the following vulnerability has been resolved: ethtool: check device is present when...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49863)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49863 advisory. - In the Linux kernel, the following vulnerability has been resolved: vhost/scsi: null-ptr-dereference in...

Azure Linux 3.0 Security Update: nvidia-container-toolkit (CVE-2024-0132-M)

The version of nvidia-container-toolkit installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-0132-M advisory. - NIST NVD Details CVE-2024-0132 Note that Nessus has not tested for this issue but has...

Azure Linux 3.0 Security Update: kernel (CVE-2024-35982)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-35982 advisory. - In the Linux kernel, the following vulnerability has been resolved: batman-adv: Avoid infinite loop trying t...

Azure Linux 3.0 Security Update: kernel (CVE-2024-49895)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-49895 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix index out of bounds...

Azure Linux 3.0 Security Update: kernel (CVE-2024-42070)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-42070 advisory. - In the Linux kernel, the following vulnerability has been resolved: netfilter: nftables: fully validate...

Azure Linux 3.0 Security Update: cmake / curl / mysql / rust / tensorflow (CVE-2023-27534)

The version of cmake / curl / mysql / rust / tensorflow installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-27534 advisory. - A path traversal vulnerability exists in curl 8.0.0 SFTP implementation...

Azure Linux 3.0 Security Update: kernel (CVE-2024-46677)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-46677 advisory. - In the Linux kernel, the following vulnerability has been resolved: gtp: fix a potential NULL pointer...

Azure Linux 3.0 Security Update: cloud-hypervisor-cvm / hvloader / kata-containers / kata-containers-cc / nodejs / openssl (CVE-2024-0727)

The version of cloud-hypervisor-cvm / hvloader / kata-containers / kata-containers-cc / nodejs / openssl installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-0727 advisory. - Issue summary: Processing ...