| Release | Version |
|---|---|
| jessie | 0.7.6~bzr976-2 |
| jessie (security) | 0.7.6~bzr976-2+deb8u1 |
| stretch | 0.7.9-2 |
| buster | 18.3-6 |
| bullseye | 20.2-2 |
| sid | 20.2-2 |
| Bug | jessie | stretch | buster | bullseye | sid | Description |
|---|---|---|---|---|---|---|
| CVE-2020-8632 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_ ... |
| CVE-2020-8631 | fixed | vulnerable (no DSA) | vulnerable (no DSA) | fixed | fixed | cloud-init through 19.4 relies on Mersenne Twister for a random passwo ... |
| CVE-2019-0816 | fixed | vulnerable (no DSA) | fixed | fixed | fixed | A security feature bypass exists in Azure SSH Keypairs, due to a chang ... |
| Bug | Description |
|---|---|
| CVE-2012-6639 | An privilege elevation vulnerability exists in Cloud-init before 0.7.0 ... |
| DSA / DLA | Description |
|---|---|
| DLA-2113-1 | cloud-init - security update |