security advisory

The Linux kernel has received a targeted fix for a subtle but real correctness bug in the virtio sound driver that could trigger kernel workqueue warnings and disrupt system availability in virtualized environments: CVE-2025-37805 addresses uninitialized work_structs in the virtio_snd driver so...

A subtle but important flaw in the Linux kernel's s390 SCLP handler — tracked as CVE-2025-39694 — has been fixed upstream, and Microsoft’s security guidance currently identifies Azure Linux as the only Microsoft product known to include the affected kernel component; however, the...

The Linux kernel has been assigned CVE-2025-68753 for a vulnerability in the ALSA firewire-motu driver where a flawed copy loop using put_user could write beyond a user buffer when the buffer size is not aligned to 4 bytes; upstream developers patched the driver by adding a bounds check and...

The Linux kernel recently received a targeted security patch that fixes an input‑validation bug in the Ceph client library (libceph) which could allow out‑of‑bounds writes while handling authentication session keys — tracked as CVE‑2025‑68284 — and operators should treat the fix as actionable...

CVE-2025-1744 is a critical out‑of‑bounds write in radare2 that allows heap-based buffer over‑read or overflow in radareorg’s reverse‑engineering toolchain; the flaw affects radare2 releases prior to 5.9.9 and carries a top‑tier severity rating. Microsoft’s public advisory for this CVE...

Microsoft is rolling its in-house security expertise into a single, subscription-based package called the Microsoft Defender Experts Suite — a bundled, expert‑led offering that combines managed extended detection and response (MXDR), on‑demand and proactive incident response, and designated...

A newly disclosed, high‑severity vulnerability in the widely used Net‑SNMP suite can cause the snmptrapd daemon to overflow a stack buffer and crash — and operators must treat CVE‑2025‑68615 as an immediate remediation priority for any host running vulnerable Net‑SNMP versions. Background /...

A critical, low‑level kernel fix landed in mid‑2025 that patches a subtle race in the Linux DRM v3d driver: before resetting the GPU the driver must disable interrupts and ensure any in‑flight interrupt handlers have completed. The vulnerability, cataloged as CVE‑2025‑38371, describes a scenario...

The Linux kernel vulnerability tracked as CVE‑2025‑39863 is a focused but real use‑after‑free in the Broadcom/Cypress FullMAC Wi‑Fi driver (brcmfmac) that can be triggered by a race between a timer handler and the driver detach path; Microsoft’s public advisory names Azure Linux as the Microsoft...

Microsoft’s security index added a new entry today: CVE-2025-64669, an Elevation of Privilege (EoP) vulnerability affecting Windows Admin Center that Microsoft classifies as improper access control and assigns a CVSS v3.1 base score of 7.8 (High). Background / Overview Windows Admin Center (WAC)...

A subtle integer overflow in Apache HTTP Server’s ACME integration (mod_md) can turn a sensible certificate renewal backoff into an incessant retry loop after an extended series of failures, creating sustained renewal storms and operational headaches for administrators — the issue is tracked as...

A small but consequential memory‑management bug in the Linux kernel’s CIFS/SMB client — tracked as CVE‑2025‑40268 — has been fixed upstream; the vulnerability is a memory leak in smb3_fs_context_parse_param that can cause unreferenced kernel memory to accumulate when userland calls fsconfig...

The Linux kernel has a newly published security advisory — CVE-2025-40273 — describing a flaw in the NFS server (nfsd) state-management code: a copynotify stateid can remain referenced when its parent open state is freed, leading to list corruption and a kernel OOPS when laundromat later...

A small, surgical change to the Linux iwlwifi driver — preserving an error code during DVM-mode startup — closed a subtle but consequential bug tracked as CVE-2025-38656 that could lead to a kernel-level use‑after‑free and denial‑of‑service when debugfs is exercised; operators should treat the...

The Rust shlex crate has a security blind spot: versions prior to 1.2.1 allowed the characters { and the non‑breaking space (0xA0) to appear unquoted in quoted arguments, which can turn a single intended argument into multiple tokens when that output is passed to a shell — a condition that can...

The Linux kernel change that became CVE-2024-57994 fixes a subtle concurrency / interrupt-context bug in the ptr_ring helpers — the short, operational truth is: Microsoft has publicly attested that Azure Linux images include the affected code and are therefore potentially affected, but that...

In the Linux kernel security landscape, a medium‑severity vulnerability tracked as CVE‑2024‑42064 was disclosed affecting the AMD DRM display driver: a defect in drm/amd/display that can cause the driver to crash when a pipe index (pipe idx) is not set properly, and the upstream remedy is to...

CVE-2025-37907 (accel/ivpu: Fix locking order in ivpu_job_submit) — Is Azure Linux the only Microsoft product that includes this code? Executive summary — short answer No. Azure Linux is not inherently the only Microsoft product that could include the accel/ivpu code (the ivpu driver is part of...

A soft‑spoken but consequential vulnerability has been confirmed in Kata Containers’ CoCo TDX path: CVE‑2025‑58354 allows a malicious host to circumvent initdata verification on TDX systems, enabling a host with sufficient control to selectively fail IO and cause confidential guests to skip...

Qt maintainers have assigned CVE‑2025‑12385 to a serious input‑validation bug in the Qt Quick Text component that can be triggered by a crafted <img> tag and lead to excessive memory allocation and application unresponsiveness. Background / Overview The Qt Quick Text component is the HTML‑style...