Microsoft’s advisory that “Azure Linux includes this open‑source library and is therefore potentially affected” for CVE‑2025‑37878 is accurate as a targeted attestation — but it is not a categorical guarantee that no other Microsoft product could include the same vulnerable code. Azure Linux is...
