CVE-2019-0816

Priority
Description
A security feature bypass exists in Azure SSH Keypairs, due to a change in
the provisioning logic for some Linux images that use cloud-init, aka
'Azure SSH Keypairs Security Feature Bypass Vulnerability'.
Notes
Package
Upstream:needs-triage
Ubuntu 12.04 ESM (Precise Pangolin):DNE
Ubuntu 14.04 ESM (Trusty Tahr):DNE (trusty was not-affected)
Ubuntu 16.04 LTS (Xenial Xerus):released (18.5-45-g3554ffe8-0ubuntu1~16.04.1)
Ubuntu 18.04 LTS (Bionic Beaver):released (18.5-45-g3554ffe8-0ubuntu1~18.04.1)
Ubuntu 19.04 (Disco Dingo):released (18.5-45-g3554ffe8-0ubuntu1)
Patches:
Upstream:https://code.launchpad.net/~jasonzio/cloud-init/+git/cloud-init/+merge/363445
More Information

Updated: 2019-12-05 18:51:30 UTC (commit dd38ff22974aae499eb50644b9d5a2817483cbdb)