Msrc Cbl2 Libcroco 0.6.13-6 On Cbl Mariner 2.0 vulnerabilities

1 known vulnerability affecting msrc/cbl2_libcroco_0.6.13-6_on_cbl_mariner_2.0.

Total CVEs

1

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH1

Vulnerabilities

Page 1 of 1

CVE-2020-12825HIGHCVSS 7.12020-05-12

CVE-2020-12825 [HIGH] CWE-674 libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption. libcroco through 0.6.13 has excessive recursion in cr_parser_parse_any_core in cr-parser.c, leading to stack consumption. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to our customers who choose to use the Azure Linux di