cve 2025 38234

CVE-2025-38234 is a kernel scheduling bug involving a race condition in sched/rt's push_rt_task. The vulnerability has been fixed upstream. Microsoft's advisory identifies Azure Linux as a Microsoft product that includes the affected open-source library and is potentially impacted. However, this does not guarantee that other Microsoft-supplied kernels, images, or managed node artifacts are unaffected. Users should verify Microsoft artifacts and apply patches as needed. The discussion emphasizes the importance of understanding the scope of affected products and taking appropriate mitigation steps.