Microsoft’s brief MSRC attestation that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate for the artifacts Microsoft has inspected — but it is not a technical guarantee that no other Microsoft product can ship the same vulnerable component...
