kernel security

Microsoft’s short answer is technically correct but potentially misleading: Azure Linux is the only Microsoft product the company has publicly attested to include the vulnerable pnv_php kernel code as mapped to CVE‑2025‑38624, yet that attestation is a scoped inventory result — not proof that...

A null-pointer robustness fix in the Linux kernel’s DaVinci clock driver — tracked as CVE‑2025‑38635 — has been published and patched upstream; Microsoft’s public advisory confirms Azure Linux as a confirmed carrier but does not, and cannot, by that statement alone guarantee that no other...

A small, targeted kernel bug in the Linux netfilter code — tracked as CVE-2025-38639 and described upstream as “netfilter: xt_nfacct: don't assume acct name is null-terminated” — has been fixed in upstream kernels and mapped by multiple distributions; Microsoft’s published guidance specifically...

A subtle pointer mistake in the Linux kernel’s Intel P-Unit IPC driver has been assigned CVE-2025-68303 and patched upstream after maintainers discovered a code path that can write to the wrong memory address, producing kernel memory corruption and potential system instability for affected...

Microsoft’s CVE-2025-38482 — a fix for a bit‑shift‑out‑of‑bounds bug in the Linux kernel’s comedi das6402 driver — has been explicitly mapped by Microsoft to Azure Linux, but that attestation is a product‑scoped inventory statement rather than proof that no other Microsoft product could carry...

A quiet but consequential fix landed in the Linux kernel tree on December 16, 2025: a defensive coding change in the Ceph client library (libceph) replaced several fatal assertions with proper bounds checks to block untrusted OSD indexes from network packets — a change recorded as CVE-2025-68283...

Microsoft’s MSRC advisory for CVE-2025-38425 states that “Azure Linux includes this open‑source library and is therefore potentially affected,” but that phrasing is a product‑level attestation — not an exclusive denial that other Microsoft products can or do include the same vulnerable code. The...

Microsoft’s short public note that “Azure Linux includes this open‑source library and is therefore potentially affected” is an accurate, product‑scoped attestation — but it is not a categorical guarantee that no other Microsoft product includes the same vulnerable kernel code. Azure Linux is the...

Microsoft’s brief public statement that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate — but it is a scoped, product‑level attestation rather than an exclusivity guarantee, and it should not be read to mean Azure Linux is the only Microsoft...

A race in btrfs's space bookkeeping has been fixed upstream after discovery of a non-atomic bitfield write in btrfs_clear_space_info_full that can leave the filesystem's reclaim infrastructure in a permanently inconsistent state — tracked as CVE-2025-68358. Background Btrfs is a modern...

A newly assigned CVE, CVE-2025-68372, documents a use-after-free (UAF) race in the Linux kernel’s Network Block Device (NBD) driver that can result in worker-thread access to freed configuration memory. The fix is small but important: the NBD code now defers the final configuration put — calling...

A recently assigned CVE has drawn attention to a subtle but important correctness gap between BPF test infrastructure and the Linux Generic Segmentation Offload (GSO) machinery: CVE-2025-68725 — described as “bpf: Do not let BPF test infra emit invalid GSO types to stack” — fixes a case where a...

A subtle race in the Linux kernel's AF_UNIX code that allowed a kernel function to follow a freed pointer has been patched — the fix closes a null-pointer / use-after-free window in unix_stream_sendpage that could be triggered by carefully crafted local socket operations and file-descriptor...

Microsoft’s public CVE entry and VEX attestation for CVE-2025-38474 names Azure Linux as a Microsoft-maintained product that includes the upstream code in question and is therefore potentially affected, but that statement is a scoped inventory attestation — not a categorical claim that no other...

Microsoft’s short public notice that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate for the Azure Linux images that Microsoft has inventory‑checked — but it is not a technical guarantee that no other Microsoft product contains the same...

Microsoft’s short MSRC advisory that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate — but it is a product‑scoped inventory attestation, not proof that no other Microsoft product can or does include the same vulnerable code. Background / Overview...

Microsoft’s short public answer — that “Azure Linux includes this open‑source library and is therefore potentially affected” — is accurate for the Azure Linux product family, but it is not a technical proof that no other Microsoft product or image could contain the same vulnerable kernel code...

A small but important fix landed in the Linux kernel’s F2FS codebase has been assigned CVE‑2025‑38347 — a change that introduces a sanity check on inode numbers (ino) and extended-attribute node IDs (xnid) to prevent a class of malformed‑image-induced kernel hangs and panics, and Microsoft’s...

Microsoft’s terse MSRC note that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate for the product it names — but it is a product‑scoped inventory attestation, not a technical guarantee that no other Microsoft artifact can carry the same vulnerable...

Microsoft’s short public answer — that Azure Linux “includes this open‑source library and is therefore potentially affected” — is correct and useful, but it is product‑scoped, not a universal exclusion of other Microsoft artifacts; absence of attestations for other Microsoft products is not...