Msrc Cbl2 Fluent-Bit 3.0.6-3 On Cbl Mariner 2.0 vulnerabilities
4 known vulnerabilities affecting msrc/cbl2_fluent-bit_3.0.6-3_on_cbl_mariner_2.0.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
MEDIUM2LOW2
Vulnerabilities
Page 1 of 1
CVE-2025-58749MEDIUMCVSS 5.32025-09-09
CVE-2025-58749 [LOW] CWE-822 WAMR runtime hangs or crashes with large memory.fill addresses in LLVM-JIT mode
WAMR runtime hangs or crashes with large memory.fill addresses in LLVM-JIT mode
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment to keep it up to date with the most recent and most secure ver
msrc
CVE-2025-54126MEDIUMCVSS 5.32025-07-08
CVE-2025-54126 [MEDIUM] CWE-668 WebAssembly Micro Runtime's `--addr-pool` option allows all IPv4 addresses when subnet mask is not specified
WebAssembly Micro Runtime's `--addr-pool` option allows all IPv4 addresses when subnet mask is not specified
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is the commitment t
msrc
CVE-2025-29477LOWCVSS 3.32025-04-08
CVE-2025-29477 [MEDIUM] CWE-400 An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the function consume_event.
An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the function consume_event.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure Linux distro is th
msrc
CVE-2025-29478LOWCVSS 3.62025-04-08
CVE-2025-29478 [MEDIUM] CWE-400 An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the cfl_list_size in cfl_list.h:165.
An issue in fluent-bit v.3.7.2 allows a local attacker to cause a denial of service via the cfl_list_size in cfl_list.h:165.
FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability?
One of the main benefits to our customers who choose to use the Azure
msrc