Msrc Cbl2 Clang16 16.0.0-2 On Cbl Mariner 2.0 vulnerabilities
4 known vulnerabilities affecting msrc/cbl2_clang16_16.0.0-2_on_cbl_mariner_2.0.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM4
Vulnerabilities
Page 1 of 1
CVE-2023-29942MEDIUMCVSS 5.52023-05-09
CVE-2023-29942 [MEDIUM] CWE-125 llvm-project commit a0138390 was discovered to contain a segmentation fault via the component mlir::Type::isa<mlir::LLVM::LLVMVoidType.
llvm-project commit a0138390 was discovered to contain a segmentation fault via the component mlir::Type::isaIs Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distr
msrc
CVE-2023-29935MEDIUMCVSS 5.52023-05-09
CVE-2023-29935 [MEDIUM] CWE-617 llvm-project commit a0138390 was discovered to contain an assertion failure at !replacements.count(op) && "operation was already replaced.
llvm-project commit a0138390 was discovered to contain an assertion failure at !replacements.count(op) && "operation was already replaced.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers
msrc
CVE-2023-29941MEDIUMCVSS 5.52023-05-09
CVE-2023-29941 [MEDIUM] CWE-125 llvm-project commit a0138390 was discovered to contain a segmentation fault via the component matchAndRewriteSortOp<mlir::sparse_tensor::SortOp>(mlir::sparse_tensor::SortOp.
llvm-project commit a0138390 was discovered to contain a segmentation fault via the component matchAndRewriteSortOp(mlir::sparse_tensor::SortOp.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
O
msrc
CVE-2023-29933MEDIUMCVSS 5.52023-05-09
CVE-2023-29933 [MEDIUM] CWE-125 llvm-project commit bd456297 was discovered to contain a segmentation fault via the component mlir::Block::getArgument.
llvm-project commit bd456297 was discovered to contain a segmentation fault via the component mlir::Block::getArgument.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux dist
msrc