cve 2025 37909

CVE-2025-37909 is a Linux kernel vulnerability affecting the Microchip LAN743x Ethernet driver (lan743x), where a memory leak occurs under specific conditions. The flaw is of particular interest to Windows users because Microsoft's MSRC advisory confirms that Azure Linux includes the vulnerable upstream code, raising questions about other Microsoft-distributed kernel artifacts. Discussions on WindowsForum.com focus on understanding the scope of the vulnerability, patch guidance, and attestation for Azure Linux environments. The tag covers technical analysis of the memory leak, its impact on systems using the LAN743x driver, and steps to apply the fix. This is a targeted issue relevant to enterprise IT and security professionals managing Linux-based workloads on Microsoft platforms.