linux kernel

A newly disclosed Linux-kernel vulnerability, tracked as CVE‑2025‑21999, patches a use‑after‑free (UAF) race in the proc filesystem: a race between module removal (rmmod) and inode creation in proc_get_inode() could let the kernel dereference a freed module pointer and crash or corrupt kernel...

A small, surgical change to the Linux kernel’s iBFT iSCSI sysfs exporter has been recorded as CVE-2025-21993: a fix that prevents a UBSAN (Undefined Behavior Sanitizer) shift-out-of-bounds warning in the function that exposes iBFT NIC attributes to userspace. While the patch is tiny — a single...

A subtle bounds-checking bug in the Linux kernel’s AMD microcode loader has quietly become a high-priority fix for distributors and administrators: CVE‑2025‑21991 corrects an out‑of‑bounds access in arch/x86’s AMD microcode path that can corrupt memory when microcode is flashed on systems with...

A subtle locking change in the Linux kernel’s MHI PCI host driver — tracked as CVE-2025-21951 — patched a deadlock that could cause a full loss of availability during device recovery or system power-management transitions, and operators should treat it as a real operational risk for systems that...

A newly disclosed Linux-kernel vulnerability in the Bluetooth L2CAP implementation — tracked as CVE-2025-21969 — is a slab use-after-free in l2cap_send_cmd that can trigger kernel memory corruption and sustained denial-of-service, and it has been fixed upstream by synchronizing the HCI receive...

A NULL-pointer bug in the Linux HID appleir driver has been assigned CVE-2025-21948 and patched by kernel maintainers after Syzkaller surfaced a crash path that can be triggered by malformed HID reports; the issue can produce a local denial-of-service (availability) condition and has already...

A subtle null‑check omission in the Linux kernel’s AMD display driver has been cataloged as CVE‑2025‑21941 and patched upstream; the bug is a local null‑pointer dereference in drm/amd/display’s resource_build_scaling_params that can crash the kernel and produce a denial‑of‑service condition on...

A newly disclosed Linux-kernel vulnerability in the Steam HID driver (tracked as CVE‑2025‑21923) can cause a use‑after‑free during device detachment — a memory‑safety bug that has been fixed upstream but still demands immediate attention from operators who run kernels in the affected release...

The RapidIO networking patch recorded as CVE-2025-21934 fixes a small but consequential memory-management mistake in the Linux kernel that, under certain failure conditions, could leave a RapidIO port structure pointing at freed memory — a classic use-after-free that translates into a...

The Linux kernel has received a small but important correction tracked as CVE-2025-21922: a KMSAN-detected uninitialized-value issue in the PPP driver that can be triggered by crafted BPF (Berkeley Packet Filter) socket filters. While the immediate technical problem is a two‑byte header that the...

The Linux kernel scheduler received a surgical but important fix in early April 2025 that closes a subtle pointer-conversion bug in the fair scheduler’s leaf-list handling — a defect tracked as CVE-2025-21919 that can produce memory corruption and unpredictable system behavior if left unpatched...

A subtle mistake in the Linux USB driver stack has been quietly corrected — and the fix exposes a classic kernel problem: an erroneous decrement of a platform device reference count in the DesignWare Core USB3 (dwc3) ST driver that can lead to use‑after‑free and service loss. The vulnerability...

The Linux kernel bug tracked as CVE-2024-45009 is a medium‑severity defect in the kernel’s Multipath TCP (MPTCP) path manager that can lead to incorrect counter handling during subflow removal. Microsoft’s public advisory language names Azure Linux as a product that “includes this open‑source...

A subtle null-pointer bug in the Linux kernel's DRM MSM/DPU display driver — tracked as CVE-2024-45015 — has been fixed upstream, and Microsoft’s public mapping currently lists Azure Linux as the only Microsoft product they have attested to include the affected open‑source component. That narrow...

A subtle race-condition bug in the Linux kernel’s fscache subsystem — tracked as CVE-2024-45000 — can allow the kernel to dereference a NULL pointer and crash, producing a denial-of-service condition on affected systems. The flaw stems from a missing check of the cookie access counter (the...

Microsoft’s short, one‑line attestation that “Azure Linux includes this open‑source library and is therefore potentially affected” is accurate — but it is a product‑scoped inventory statement, not a universal guarantee that no other Microsoft product contains the same vulnerable Linux kernel...

A race in the Linux bonding driver's IPsec offload path was closed this year after maintainers fixed a null-pointer dereference in bond_ipsec_offload_ok that could let a local, low‑privilege user crash an affected host — the patch corrects the function’s return type and adds an explicit check...

The Linux kernel fix for CVE-2024-44986 addresses a real, low-level IPv6 use‑after‑free (UAF) condition in ip6_finish_output2(), but Microsoft’s MSRC wording about Azure Linux being “the product that includes the open‑source library and is therefore potentially affected” is a product‑scoped...

The Linux kernel CVE‑2024‑45025 — a subtle bitmap‑copy bug that can leave stale bits set after a call to close_range() when used with the CLOSERANGE_UNSHARE flag — has been fixed upstream, and Microsoft’s public guidance currently identifies Azure Linux as the Microsoft product family they have...

Microsoft’s published advisory for CVE-2024-45006 confirms that the vulnerable code is an upstream Linux kernel xHCI bug and that Azure Linux is the Microsoft product Microsoft has identified so far as “including this open‑source library and therefore potentially affected,” but that public...