| Release | Version |
|---|---|
| stretch | 0.7.9-2 |
| stretch (security) | 0.7.9-2+deb9u1 |
| buster | 20.2-2~deb10u2 |
| bullseye | 20.4.1-2 |
| sid | 20.4.1-2 |
| Bug | stretch | buster | bullseye | sid | Description |
|---|---|---|---|---|---|
| CVE-2020-8632 | vulnerable (no DSA) | fixed | fixed | fixed | In cloud-init through 19.4, rand_user_password in cloudinit/config/cc_ ... |
| CVE-2020-8631 | vulnerable (no DSA) | fixed | fixed | fixed | cloud-init through 19.4 relies on Mersenne Twister for a random passwo ... |
| CVE-2019-0816 | vulnerable (no DSA) | fixed | fixed | fixed | A security feature bypass exists in Azure SSH Keypairs, due to a chang ... |
| Bug | Description |
|---|---|
| CVE-2021-3429 | |
| CVE-2012-6639 | An privilege elevation vulnerability exists in Cloud-init before 0.7.0 ... |
| DSA / DLA | Description |
|---|---|
| DLA-2601-1 | cloud-init - security update |
| DLA-2113-1 | cloud-init - security update |