Msrc Cbl2 Rust 1.72.0-13 On Cbl Mariner 2.0 vulnerabilities

CVE-2026-1979 [MEDIUM] CWE-416 mruby JMPNOT-to-JMPIF Optimization vm.c mrb_vm_exec use after free mruby JMPNOT-to-JMPIF Optimization vm.c mrb_vm_exec use after free Mariner: Mariner VulDB: VulDB Customer Action Required: Yes

CVE-2024-58266 [LOW] CWE-116 The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection. The shlex crate before 1.2.1 for Rust allows unquoted and unescaped instances of the { and \xa0 characters, which may facilitate command injection. FAQ: Is Azure Linux the only Microsoft product that includes this open-source library and is therefore potentially affected by this vulnerability? One of the main benefits to