kernel security

The short answer is: No — Azure Linux is not necessarily the only Microsoft product that could carry the vulnerable open‑source code, but it is the only Microsoft product Microsoft has publicly attested (via its VEX/CSAF pilot) to include the affected component so far. Microsoft’s public...

Microsoft’s short advisory — that “Azure Linux includes this open‑source library and is therefore potentially affected” — is accurate on its face, but it is a product‑scoped attestation, not a categorical guarantee that Microsoft’s other products do not ship the same vulnerable code. Background...

Microsoft’s concise MSRC wording that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate for the product family it names — but it is a product‑scoped attestation, not a categorical guarantee that no other Microsoft product can include the same...

The short answer is: Microsoft has publicly attested that Azure Linux (the distro formerly known as CBL‑Mariner) includes the upstream component implicated by CVE‑2024‑26909 and is therefore potentially affected, but that attestation is a product‑scoped inventory statement — it is not a...

Microsoft’s attempt to make privilege elevation in Windows 11 a true security boundary ran into a harsh reality check: decades of legacy kernel behavior are hard to rewrite safely. Google Project Zero’s James Forshaw exposed multiple privilege‑escalation bypasses against the new Administrator...

Microsoft has recorded CVE-2026-20863 as an elevation-of-privilege vulnerability in the Windows Win32k kernel subsystem, and organizations should treat this as a high-priority remediation and detection task until every affected host in their estate is patched and verified. Background / Overview...

Microsoft’s public attestation that Azure Linux includes the vulnerable Linux BPF component behind CVE‑2025‑38502 is accurate — but it is not a blanket assurance that Azure Linux is the only Microsoft product that could carry the same vulnerable upstream code. Background / Overview...

Microsoft’s short answer is technically correct but potentially misleading: Azure Linux is the only Microsoft product the company has publicly attested to include the vulnerable pnv_php kernel code as mapped to CVE‑2025‑38624, yet that attestation is a scoped inventory result — not proof that...

A null-pointer robustness fix in the Linux kernel’s DaVinci clock driver — tracked as CVE‑2025‑38635 — has been published and patched upstream; Microsoft’s public advisory confirms Azure Linux as a confirmed carrier but does not, and cannot, by that statement alone guarantee that no other...

A small, targeted kernel bug in the Linux netfilter code — tracked as CVE-2025-38639 and described upstream as “netfilter: xt_nfacct: don't assume acct name is null-terminated” — has been fixed in upstream kernels and mapped by multiple distributions; Microsoft’s published guidance specifically...

A subtle pointer mistake in the Linux kernel’s Intel P-Unit IPC driver has been assigned CVE-2025-68303 and patched upstream after maintainers discovered a code path that can write to the wrong memory address, producing kernel memory corruption and potential system instability for affected...

Microsoft’s CVE-2025-38482 — a fix for a bit‑shift‑out‑of‑bounds bug in the Linux kernel’s comedi das6402 driver — has been explicitly mapped by Microsoft to Azure Linux, but that attestation is a product‑scoped inventory statement rather than proof that no other Microsoft product could carry...

A quiet but consequential fix landed in the Linux kernel tree on December 16, 2025: a defensive coding change in the Ceph client library (libceph) replaced several fatal assertions with proper bounds checks to block untrusted OSD indexes from network packets — a change recorded as CVE-2025-68283...

Microsoft’s MSRC advisory for CVE-2025-38425 states that “Azure Linux includes this open‑source library and is therefore potentially affected,” but that phrasing is a product‑level attestation — not an exclusive denial that other Microsoft products can or do include the same vulnerable code. The...

Microsoft’s short public note that “Azure Linux includes this open‑source library and is therefore potentially affected” is an accurate, product‑scoped attestation — but it is not a categorical guarantee that no other Microsoft product includes the same vulnerable kernel code. Azure Linux is the...

Microsoft’s brief public statement that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate — but it is a scoped, product‑level attestation rather than an exclusivity guarantee, and it should not be read to mean Azure Linux is the only Microsoft...

A race in btrfs's space bookkeeping has been fixed upstream after discovery of a non-atomic bitfield write in btrfs_clear_space_info_full that can leave the filesystem's reclaim infrastructure in a permanently inconsistent state — tracked as CVE-2025-68358. Background Btrfs is a modern...

A newly assigned CVE, CVE-2025-68372, documents a use-after-free (UAF) race in the Linux kernel’s Network Block Device (NBD) driver that can result in worker-thread access to freed configuration memory. The fix is small but important: the NBD code now defers the final configuration put — calling...

A recently assigned CVE has drawn attention to a subtle but important correctness gap between BPF test infrastructure and the Linux Generic Segmentation Offload (GSO) machinery: CVE-2025-68725 — described as “bpf: Do not let BPF test infra emit invalid GSO types to stack” — fixes a case where a...

A subtle race in the Linux kernel's AF_UNIX code that allowed a kernel function to follow a freed pointer has been patched — the fix closes a null-pointer / use-after-free window in unix_stream_sendpage that could be triggered by carefully crafted local socket operations and file-descriptor...