Microsoft’s brief public mapping for CVE-2025-37771—“Azure Linux includes this open‑source library and is therefore potentially affected”—is accurate for the product Microsoft has inspected, but it is not a categorical guarantee that no other Microsoft product or kernel image could include the...