Azure Linux 3.0 Security Update: kernel (CVE-2025-22003)

"The version of kernel installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22003 advisory. - In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix out of bound read in...

UBUNTU-CVE-2025-22003

In the Linux kernel, the following vulnerability has been resolved: can: ucan: fix out of bound read in strscpy source Commit 7fdaf8966aae "can: ucan: use strscpy to instead of strncpy" unintentionally introduced a one byte out of bound read on strscpy's source argument which is kind of ironic...