Microsoft’s terse MSRC line that “Azure Linux includes this open‑source library and is therefore potentially affected” correctly identifies a confirmed product hit for CVE‑2025‑38215 — but it does not mean Azure Linux is the only Microsoft product that could include the vulnerable fbdev code...
