Azure Linux 3.0 Security Update: iniparser (CVE-2023-33461)

The version of iniparser installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-33461 advisory. - iniparser v4.1 is vulnerable to NULL Pointer Dereference in function iniparsergetlongint which misses che...

Azure Linux 3.0 Security Update: openjpeg2 (CVE-2020-27842)

The version of openjpeg2 installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2020-27842 advisory. - There's a flaw in openjpeg's t2 encoder in versions prior to 2.4.0. An attacker who is able to provide...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38160)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38160 advisory. - In the Linux kernel, the following vulnerability has been resolved: clk: bcm: rpi: Add NULL check in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-41084)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41084 advisory. - In the Linux kernel, the following vulnerability has been resolved: cxl/region: Avoid null pointer dereferen...

Azure Linux 3.0 Security Update: kernel (CVE-2025-22018)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22018 advisory. - In the Linux kernel, the following vulnerability has been resolved: atm: Fix NULL pointer dereference When...

Azure Linux 3.0 Security Update: kernel (CVE-2024-40952)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-40952 advisory. - In the Linux kernel, the following vulnerability has been resolved: ocfs2: fix NULL pointer dereference in...

Azure Linux 3.0 Security Update: kernel (CVE-2024-43833)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-43833 advisory. - In the Linux kernel, the following vulnerability has been resolved: media: v4l: async: Fix NULL pointer...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38307)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38307 advisory. - In the Linux kernel, the following vulnerability has been resolved: ASoC: Intel: avs: Verify content returne...

Azure Linux 3.0 Security Update: kernel (CVE-2024-41089)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-41089 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/nouveau/dispnv04: fix null pointer...

Azure Linux 3.0 Security Update: kernel (CVE-2024-56667)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56667 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/i915: Fix NULL pointer dereference i...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38181)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38181 advisory. - In the Linux kernel, the following vulnerability has been resolved: calipso: Fix null-ptr-deref in...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38075)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38075 advisory. - In the Linux kernel, the following vulnerability has been resolved: scsi: target: iscsi: Fix timeout on...

Azure Linux 3.0 Security Update: kernel (CVE-2025-38123)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-38123 advisory. - In the Linux kernel, the following vulnerability has been resolved: net: wwan: t7xx: Fix napi rx poll issue...

Azure Linux 3.0 Security Update: kernel (CVE-2025-21658)

The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-21658 advisory. - In the Linux kernel, the following vulnerability has been resolved: btrfs: avoid NULL pointer dereference if...

Azure Linux 3.0 Security Update: moby-engine (CVE-2024-36620)

The version of moby-engine installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-36620 advisory. - moby v25.0.0 - v26.0.2 is vulnerable to NULL Pointer Dereference via daemon/images/imagehistory.go...

Azure Linux 3.0 Security Update: kernel (CVE-2024-45000)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-45000 advisory. - In the Linux kernel, the following vulnerability has been resolved: fs/netfs/fscachecookie: add missing...

CVE-2025-68136

EVerest is an EV charging software stack. Prior to version 2025.10.0, once the module receives a SDP request, it creates a whole new set of objects like Session, IConnection which open new TCP socket for the ISO15118-20 communications and registers callbacks for the created file descriptor, witho...

CVE-2025-68141

CVE-2025-68141 affects the EVerest EV charging software stack. Before version 2025.10.0, deserializing a DC_ChargeLoopRes message that includes Receipt and TaxCosts can access the vector tax_costs in Receipt out of bounds, in the function template void convert(const struct iso20_dc_DetailedTaxTy...

CVE-2025-68141

EVerest is an EV charging software stack. Prior to version 2025.10.0, during the deserialization of a DCChargeLoopRes message that includes Receipt as well as TaxCosts, the vector taxcosts in the target Receipt structure is accessed out of bounds. This occurs in the method template void...

CVE-2026-22976

A flaw was found in the Linux kernel's schqfq Quick Fair Queueing scheduler. This vulnerability allows a local user to trigger a NULL pointer dereference in the qfqreset function. The issue arises when multiple qfqclass objects incorrectly reference the same leafqdisc, leading to an attempt to...