AZL-79296

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-79296.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-79296

Upstream

CVE-2026-3381

Published

2026-03-05T02:16:52Z

Modified

2026-04-21T04:34:40.538205Z

Summary

CVE-2026-3381 affecting package cloud-hypervisor 32.0-7

Details

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib.

Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for CVE-2026-27171.

References

https://nvd.nist.gov/vuln/detail/CVE-2026-3381

Affected packages

Azure Linux:2 / cloud-hypervisor

Package

Name: cloud-hypervisor
Purl: pkg:rpm/azure-linux/cloud-hypervisor

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

32.0-7

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-79296.json"