You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
cve 2025 37830
About this tag
CVE-2025-37830 is a Linux kernel vulnerability involving a NULL pointer dereference in the SCMI cpufreq driver. The fix has been merged upstream, and Microsoft's MSRC entry confirms that Azure Linux includes the affected open-source code, making it potentially vulnerable. Microsoft plans to expand its machine-readable VEX/CSAF attestations as inventory work continues. This tag covers discussions about the vulnerability, its impact on Azure Linux, and the ongoing remediation efforts.
The recently assigned CVE‑2025‑37830 describes a NULL pointer dereference in the Linux kernel's SCMI cpufreq driver — a fix was merged upstream, and Microsoft’s MSRC entry explicitly notes that Azure Linux includes the affected open‑source code and is therefore potentially affected, while also...