CVE-2025-39747 is a vulnerability in the Linux kernel's drm/msm subsystem, specifically the Qualcomm MSM DRM driver. Microsoft's advisory identifies Azure Linux as the affected Microsoft product, but the flaw exists in upstream kernel code and could appear in any distribution shipping that driver. Microsoft has stated it will update the CVE entry if additional products are found impacted. Discussions on WindowsForum.com cover the technical details of the kernel fix and the scope of affected Microsoft products, emphasizing that the advisory is a status update rather than a definitive list. Users seeking information on CVE-2025-39747 will find analysis of the vulnerability, its impact on Azure Linux, and the broader implications for Linux kernel security in Microsoft environments.
-
Microsoft’s advisory identifies Azure Linux as the Microsoft product currently known to include the affected open‑source component, but that statement is a status update — not a definitive guarantee that no other Microsoft product contains the vulnerable code. The flaw is in the Linux kernel’s...