You are using an out of date browser. It may not display this or other websites correctly. You should upgrade or use an alternative browser.
spufs filesystem
About this tag
The spufs filesystem tag covers discussions about the SPU (Synergistic Processing Unit) filesystem in Linux, particularly in the context of security vulnerabilities. A recent thread examines CVE-2025-22073, a memory/resource leak in the spufs_new_file() path of the spufs kernel code. The discussion focuses on Microsoft's advisory for Azure Linux, which is the only Microsoft product officially confirmed to contain the vulnerable component. The thread clarifies that while Azure Linux is attested as affected, Microsoft has not publicly mapped other products, so the absence of attestation does not guarantee they are unaffected. This tag is relevant for users tracking Linux kernel security issues, especially those involving Azure Linux and the spufs filesystem.
The Linux kernel fix for CVE-2025-22073 — a memory/resource leak in the SPU filesystem’s spufs_new_file() path — landed upstream months ago, and Microsoft’s public advisory makes one careful, narrowly worded claim: Azure Linux is the Microsoft product the company has verified contains the...