AZL-79373

See a problem?

Import Source

https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-79373.json

JSON Data

https://api.osv.dev/v1/vulns/AZL-79373

Upstream

CVE-2026-3381

Published

2026-03-05T02:16:52Z

Modified

2026-04-21T04:34:42.099235Z

Summary

CVE-2026-3381 affecting package grpc 1.62.3-1

Details

Compress::Raw::Zlib versions through 2.219 for Perl use potentially insecure versions of zlib.

Compress::Raw::Zlib includes a copy of the zlib library. Compress::Raw::Zlib version 2.220 includes zlib 1.3.2, which addresses findings fron the 7ASecurity audit of zlib. The includes fixs for CVE-2026-27171.

References

https://nvd.nist.gov/vuln/detail/CVE-2026-3381

Affected packages

Azure Linux:3 / grpc

Package

Name: grpc
Purl: pkg:rpm/azure-linux/grpc

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

1.62.3-1

Database specific

source

"https://github.com/microsoft/AzureLinuxVulnerabilityData/blob/main/osv/AZL-79373.json"