Latest medium severity vulnerabilities for "microsoft azl3 kernel 6.6.112.1-2"

Linux Linux kernelfutex: Don't leak robust_list pointer on exec race

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40341

linux/kernelnet: stmmac: Correctly handle Rx checksum offload errors

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40337

Linux Linux kernelf2fs: fix infinite loop in __insert_extent_tree()

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40333

Microsoft azl3 kernel 6.6.112.1-2NFSD: Fix crash in nfsd4_read_release()

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40324

Microsoft azl3 kernel 6.6.112.1-2fbcon: Set fb_display[i]->mode to NULL when the mode is released

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40323

Microsoft azl3 kernel 6.6.112.1-2wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode

Risk 38

Severity

6.5

First published (updated )

CVE-2025-40321

Microsoft azl3 kernel 6.6.112.1-2accel/habanalabs: support mapping cb with vmalloc-backed coherent memory

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40311

Microsoft azl3 kernel 6.6.112.1-2amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40310

Microsoft azl3 kernel 6.6.112.1-2Bluetooth: bcsp: receive data only if registered

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40308

Microsoft azl3 kernel 6.6.112.1-2fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40304

Microsoft azl3 kernel 6.6.112.1-2btrfs: ensure no dirty metadata is written back for an fs with errors

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40303

Microsoft azl3 kernel 6.6.112.1-2Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern()

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40294

Microsoft azl3 kernel 6.6.112.1-2drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices

Risk 28

Severity

4.7

First published (updated )

CVE-2025-40288

Microsoft azl3 kernel 6.6.112.1-2Bluetooth: MGMT: cancel mesh send timer when hdev removed

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40284

Microsoft azl3 kernel 6.6.112.1-2Bluetooth: 6lowpan: reset link-local header on ipv6 recv path

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40282

Microsoft azl3 kernel 6.6.112.1-2net: sched: act_connmark: initialize struct tc_ife to fix kernel leak

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40279

Microsoft azl3 kernel 6.6.112.1-2ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40275

Microsoft azl3 kernel 6.6.112.1-2ALSA: usb-audio: Fix potential overflow of PCM transfer buffer

Risk 25

Severity

4.3

First published (updated )

CVE-2025-40269

Microsoft azl3 kernel 6.6.112.1-2cifs: client: fix memory leak in smb3_fs_context_parse_param

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40268

Microsoft azl3 kernel 6.6.117.1-1be2net: pass wrb_params in case of OS2BMC

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40264

Linux Linux kernelInput: cros_ec_keyb - fix an invalid memory access

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40263

Microsoft azl3 kernel 6.6.117.1-1nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl()

Risk 50

Severity

6.6

First published (updated )

CVE-2025-40261

Microsoft azl3 kernel 6.6.117.1-1scsi: sg: Do not sleep in atomic context

Risk 36

Severity

6.2

First published (updated )

CVE-2025-40259

Microsoft azl3 kernel 6.6.117.1-1mptcp: fix a race in mptcp_pm_del_add_timer()

Risk 47

Severity

6.3

First published (updated )

CVE-2025-40257

Microsoft azl3 kernel 6.6.117.1-1net: openvswitch: remove never-working support for setting nsh fields

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40254

Linux Linux kernels390/ctcm: Fix double-kfree

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40253

Microsoft azl3 kernel 6.6.117.1-1net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end()

Risk 41

Severity

6.1

First published (updated )

CVE-2025-40252

Microsoft azl3 kernel 6.6.117.1-1net/mlx5: Clean up only new IRQ glue on request_irq() failure

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40250

Microsoft azl3 kernel 6.6.117.1-1vsock: Ignore signal/timeout on connect() if already established

Risk 47

Severity

6.3

First published (updated )

CVE-2025-40248

Linux Kerneldrm/msm: Fix pgtable prealloc error path

Risk 32

Severity

5.5

First published (updated )

CVE-2025-40247

Trending

Linux Linux kernelfutex: Don't leak robust_list pointer on exec race

linux/kernelnet: stmmac: Correctly handle Rx checksum offload errors

Linux Linux kernelf2fs: fix infinite loop in __insert_extent_tree()

Microsoft azl3 kernel 6.6.112.1-2NFSD: Fix crash in nfsd4_read_release()

Microsoft azl3 kernel 6.6.112.1-2fbcon: Set fb_display[i]->mode to NULL when the mode is released

Don't miss critical vulnerabilities

Microsoft azl3 kernel 6.6.112.1-2wifi: brcmfmac: fix crash while sending Action Frames in standalone AP Mode

Microsoft azl3 kernel 6.6.112.1-2accel/habanalabs: support mapping cb with vmalloc-backed coherent memory

Microsoft azl3 kernel 6.6.112.1-2amd/amdkfd: resolve a race in amdgpu_amdkfd_device_fini_sw

Microsoft azl3 kernel 6.6.112.1-2Bluetooth: bcsp: receive data only if registered

Microsoft azl3 kernel 6.6.112.1-2fbdev: Add bounds checking in bit_putcs to fix vmalloc-out-of-bounds

Don't miss critical vulnerabilities

Microsoft azl3 kernel 6.6.112.1-2btrfs: ensure no dirty metadata is written back for an fs with errors

Microsoft azl3 kernel 6.6.112.1-2Bluetooth: MGMT: Fix OOB access in parse_adv_monitor_pattern()

Microsoft azl3 kernel 6.6.112.1-2drm/amdgpu: Fix NULL pointer dereference in VRAM logic for APU devices

Microsoft azl3 kernel 6.6.112.1-2Bluetooth: MGMT: cancel mesh send timer when hdev removed

Microsoft azl3 kernel 6.6.112.1-2Bluetooth: 6lowpan: reset link-local header on ipv6 recv path

Don't miss critical vulnerabilities

Microsoft azl3 kernel 6.6.112.1-2net: sched: act_connmark: initialize struct tc_ife to fix kernel leak

Microsoft azl3 kernel 6.6.112.1-2ALSA: usb-audio: Fix NULL pointer dereference in snd_usb_mixer_controls_badd

Microsoft azl3 kernel 6.6.112.1-2ALSA: usb-audio: Fix potential overflow of PCM transfer buffer

Microsoft azl3 kernel 6.6.112.1-2cifs: client: fix memory leak in smb3_fs_context_parse_param

Microsoft azl3 kernel 6.6.117.1-1be2net: pass wrb_params in case of OS2BMC

Don't miss critical vulnerabilities

Linux Linux kernelInput: cros_ec_keyb - fix an invalid memory access

Microsoft azl3 kernel 6.6.117.1-1nvme: nvme-fc: Ensure ->ioerr_work is cancelled in nvme_fc_delete_ctrl()

Microsoft azl3 kernel 6.6.117.1-1scsi: sg: Do not sleep in atomic context

Microsoft azl3 kernel 6.6.117.1-1mptcp: fix a race in mptcp_pm_del_add_timer()

Microsoft azl3 kernel 6.6.117.1-1net: openvswitch: remove never-working support for setting nsh fields

Don't miss critical vulnerabilities

Linux Linux kernels390/ctcm: Fix double-kfree

Microsoft azl3 kernel 6.6.117.1-1net: qlogic/qede: fix potential out-of-bounds read in qede_tpa_cont() and qede_tpa_end()

Microsoft azl3 kernel 6.6.117.1-1net/mlx5: Clean up only new IRQ glue on request_irq() failure

Microsoft azl3 kernel 6.6.117.1-1vsock: Ignore signal/timeout on connect() if already established

Linux Kerneldrm/msm: Fix pgtable prealloc error path

Don't miss critical vulnerabilities

Company

Resources

Contact