linux kernel

A subtle memory-management bug in the Linux kernel’s ath12k Wi‑Fi driver — tracked as CVE-2024-40979 — could cause a complete kernel crash when a Qualcomm Atheros-based wireless device resumes from suspend, producing a local denial‑of‑service condition for affected hosts. The fault lies in how...

The Linux kernel received a small but significant cleanup in the XDP memory-registration path: maintainers removed a kernel WARN() from the function __xdp_reg_mem_model(), a change tracked as CVE-2024-42082 that was prompted by a syzkaller discovery and landed across several stable trees to...

A small, narrowly targeted change in the Linux kernel’s RDMA resource‑tracking code — tracked as CVE‑2024‑42080 — removed a dangling reference that could lead to an invalid address access and, in some conditions, a kernel crash; Microsoft’s public advisory names Azure Linux as a product that...

The Linux kernel flaw tracked as CVE‑2024‑42073 — a memory‑corruption bug in the Mellanox/NVIDIA mlxsw driver’s spectrum_buffers code that affects Spectrum‑4 hardware — is real, patched upstream, and important for operators of RDMA and Mellanox‑based networking gear; Microsoft’s public advisory...

The Linux kernel patch for CVE-2024-42069 fixes a small but meaningful bug in the Microsoft-authored MANA network driver — a double-free in an error handling path — and while Microsoft’s public attestations name Azure Linux as a confirmed carrier of the affected component, that attestation is...

The Linux kernel vulnerability tracked as CVE-2024-40902 — described upstream as “jfs: xattr: fix buffer overflow for invalid xattr” — was identified and fixed in the kernel in mid‑2024 after syzkaller and stable‑tree review flagged a condition where printing a malformed extended attribute...

The Linux kernel fix addressing CVE-2024-39476 — a deadlock in the md/raid5 subsystem where raid5d() could wait for itself to clear MD_SB_CHANGE_PENDING — is an important stability patch that has rippled through distributions and cloud images. Microsoft’s public guidance has confirmed that Azure...

The Linux kernel vulnerability tracked as CVE-2025-38348 is a small but meaningful buffer‑overflow in the p54 wireless driver (function p54_rx_eeprom_readback()) that can be triggered by a malicious USB device posing as an Intersil p54 Wi‑Fi interface — and while Microsoft’s MSRC entry...

A straightforward but dangerous null-pointer oversight in the Linux kernel’s FPGA test code — tracked as CVE‑2025‑38274 and disclosed in July 2025 — has been patched upstream after maintainers confirmed that the fpga_mgr_test_img_load_sgt() helper can pass a NULL pointer into sg_alloc_table()...

The Linux kernel vulnerability tracked as CVE-2025-38227 — a slab-use-after-free in the media subsystem’s vidtv test driver — is real, it affects mainstream kernel trees and multiple Linux distributions, and Microsoft’s own Linux-based offerings are not necessarily limited to a single affected...

The Linux kernel flaw tracked as CVE‑2025‑38229 — a media‑driver bug in the cxusb DVB adapter code — is real, has been fixed upstream, and Microsoft’s public product mapping names Azure Linux as a confirmed, attested carrier; but that attestation does not prove exclusivity. Azure Linux is the...

A small, surgical kernel fix landed upstream in mid‑2025 to close a robustness hole in ext4 that could produce a NULL-pointer kernel oops and system crash when the filesystem processed certain orphaned symlink inodes; the patch makes ext4 mark folios dirty only for regular files when running in...

The Linux kernel vulnerability tracked as CVE-2025-38219 affects the F2FS (Flash‑Friendly File System) driver and can cause a kernel warning or instability when the filesystem encounters a corrupted image that produces a negative i_nlink value; Microsoft’s public advisory names Azure Linux as a...

The Linux kernel received a targeted fix addressing a subtle but real Time‑of‑Check to Time‑of‑Use (TOCTOU) race in the hwmon driver ftsteutates: the fts_read() path could read a shared fan source index twice without synchronization, opening a narrow window where a concurrent update changes the...

The Linux kernel fix for CVE-2025-38211 closes a subtle but dangerous lifetime-management bug in the RDMA iWCM (InfiniBand/RDMA Connection Management) stack: work objects allocated per cm_id could be used after they were freed, causing kernel memory corruption and deterministic crashes that...

A careless protocol flip inside an eBPF helper can crash a Linux host: CVE-2025-38192 is a kernel networking bug that occurs when a NAT46 BPF program changes an skb's protocol from IPv4 to IPv6 without clearing the associated destination (dst) pointer, producing a NULL pointer dereference and a...

The Linux kernel fix tracked as CVE-2025-38170 addresses a subtle ARM64 context-switch bug in the FPSIMD/SME handling: under certain preemption and trap conditions the kernel could reuse stale floating-point/vector state, triggering unexpected SME traps and kernel warnings. Microsoft’s Security...

A small, two-byte mistake in a Linux Wi‑Fi driver has quietly become a reminder that even trivial-looking changes in kernel code can carry outsized risk: CVE-2025-38159 is an out‑of‑bounds read in the Realtek rtw88 Wi‑Fi driver that was introduced years ago, affects a broad set of devices...

The Linux kernel fix tracked as CVE-2025-38158 addresses a subtle but consequential DMA address assembly bug in the Hisilicon VFIO accelerator driver (hisi_acc_vfio_pci) that can leave guest kernel‑mode encryption services broken after live migration — and Microsoft’s short MSRC attestation that...

The upstream Linux kernel fix for CVE-2025-38153 patches a correctness bug in the AQC111 USB Ethernet driver that failed to validate the byte count returned by usbnet read calls — a small coding lapse with outsized operational implications for any system that actually loads and uses the aqc111...