You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 37755
About this tag
CVE-2025-37755 is a kernel-level NULL-pointer dereference vulnerability in the Linux net subsystem, specifically within the libwx codepath. Microsoft's advisory confirms that Azure Linux includes this open-source library and is therefore potentially affected. The vulnerability allows a local attacker to cause a denial of service by triggering a NULL-pointer dereference. Discussions on WindowsForum.com clarify that the advisory is an attestation for a specific product inventory, not a guarantee that no other Microsoft product could ship the same vulnerable code. Users seeking details on CVE-2025-37755 will find analysis of the advisory's scope, the technical nature of the bug, and its implications for Azure Linux and potentially other systems.
Microsoft’s published advisory on CVE-2025-37755 correctly identifies a kernel-level NULL-pointer handling bug in the Linux net subsystem (the libwx codepath) — but the phrasing that “Azure Linux includes this open‑source library and is therefore potentially affected” is an attestation for a...