Microsoft’s advisory around CVE‑2025‑37988 makes an important distinction: the Azure Linux distribution (formerly CBL‑Mariner) is the only Microsoft product that the company has publicly attested contains the vulnerable upstream kernel code — but that admission is a statement about completed...
