linux kernel security

The Linux kernel patch for CVE-2025-38204 closes an array-index-out-of-bounds read in the JFS filesystem implementation’s add_missing_indices routine — a correctness fix that prevents a malformed on-disk structure from producing an out-of-bounds read and a potential kernel crash. Microsoft’s...

Microsoft’s brief MSRC note that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate — but it is a product‑scoped inventory attestation, not a technical guarantee that no other Microsoft product can include the same vulnerable Linux kernel driver...

Microsoft’s short answer — that “Azure Linux includes this open‑source library and is therefore potentially affected” — is accurate as a product-level attestation, but it is not a technical guarantee that only Azure Linux can include the vulnerable drm/i915/gem code; any Microsoft artifact that...

A null-pointer dereference in the Linux kernel’s DECnet stack — specifically in the dn_nsp_send function — quietly turned into a disruptive denial‑of‑service hazard that forced vendors and distributions to remove the obsolete DECnet implementation rather than simply patching a single line of...

A relatively small, targeted fix in the Linux kernel’s SCSI driver tree — tracked as CVE‑2024‑46673 and described upstream as “scsi: aacraid: Fix double‑free on probe failure” — has rippled into the vendor and distribution ecosystems this winter. Microsoft’s public advisory for the issue names...

Microsoft’s short public answer — that “Azure Linux includes this open‑source library and is therefore potentially affected” — is accurate as a product‑level attestation, but it is not a categorical guarantee that no other Microsoft product contains the vulnerable Open vSwitch code; operators...

The Linux kernel fix tracked as CVE-2025-37930 patches a race-condition robustness issue in the DRM/Nouveau fence handling code; Microsoft’s public advisory identifies Azure Linux as a product that includes the affected open‑source component and is therefore potentially affected, but that...

Microsoft’s brief public note — that “Azure Linux includes this open‑source library and is therefore potentially affected” — is accurate for the product it names, but it is a product‑scoped attestation, not proof that no other Microsoft product could contain the same vulnerable kernel code...

Microsoft’s public advisory for CVE-2025-37936 correctly identifies a flaw in the Linux kernel’s perf/x86/intel KVM code that can allow a guest to be run with PEBS (Precise Event-Based Sampling) enabled when the guest itself did not request it — and Microsoft’s published inventory currently...

The Linux kernel change tracked as CVE-2025-37810 fixes a bounds-check omission in the DWC3 USB gadget driver — the event count read from the DWC3_GEVNTCOUNT register was checked only for zero, not for exceeding the event buffer length, which could permit an out‑of‑bounds memcpy and a kernel...

The Linux kernel CVE tracked as CVE-2025-37772 is a targeted fix to the RDMA Connection Manager (CMA) code that prevents a race which can corrupt a work_struct and trigger a kernel NULL-pointer crash. Microsoft’s public advisory for this CVE calls out Azure Linux as a product that “includes this...

Microsoft’s published advisory on CVE-2025-37755 correctly identifies a kernel-level NULL-pointer handling bug in the Linux net subsystem (the libwx codepath) — but the phrasing that “Azure Linux includes this open‑source library and is therefore potentially affected” is an attestation for a...

Microsoft’s short public answer — that “Azure Linux includes this open‑source library and is therefore potentially affected” — is accurate for the product Microsoft has inventory‑checked, but it is not a categorical proof that Azure Linux is the only Microsoft product that could contain the...

A use‑after‑free defect in the Linux kernel’s SMB client — tracked as CVE-2024-35869 — has been fixed upstream and back‑ported by major distributors after disclosure; the bug can cause reliable crashes and memory corruption when the client walks DFS referrals, mounts DFS targets, or performs DFS...

The Linux kernel vulnerability tracked as CVE-2010-0291 — widely discussed at the time as the “do_mremap() mess” or the “mremap/mmap mess” — allowed an unprivileged local user to crash a system or, in some exploit scenarios, escalate to kernel privileges by abusing the kernel’s mmap/mremap logic...

The Linux kernel patch for CVE-2024-26836 corrects a subtle but important ordering bug in the platform/x86 think-lmi driver that could allow firmware attribute changes on Lenovo workstations to bypass intended Admin-password checks unless the driver runs the password opcode first — a fix that...