AZL-67664

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-67664.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-67664

Upstream

CVE-2025-10823

Published

2025-09-23T00:15:36Z

Modified

2026-04-21T04:38:14.444862Z

Summary

CVE-2025-10823 affecting package fio for versions less than 3.30-3

Details

A vulnerability was found in axboe fio up to 3.41. This affects the function strbufferpattern_cb of the file options.c. Performing manipulation results in null pointer dereference. The attack must be initiated from a local position. The exploit has been made public and could be used.

References

https://nvd.nist.gov/vuln/detail/CVE-2025-10823

Affected packages

Azure Linux:2 / fio

Package

Name: fio
Purl: pkg:rpm/azure-linux/fio

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Fixed

3.30-3

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-67664.json"