You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Azure Defender for Cloud reports a total of 337 vulnerabilities in the latest 4-dotnet-isolated8.0 image, including 1 critical vulnerability ( CVE-2024-47685). I think all of them are OS vulnerabilities. It reports that a fix is available by updating to debian 6.1.115-1 from 6.1.112-1.
It says in the Azure Functions documentation that updates come monthly but don't you think that's a bit too slow for critical vulnerabilities (and such a big pile of high-severity ones)? Last update was on 2024-10-31 but the vulnerabilities were published on 2024-10-21.
Azure Defender for Cloud reports a total of 337 vulnerabilities in the latest 4-dotnet-isolated8.0 image, including 1 critical vulnerability (
CVE-2024-47685). I think all of them are OS vulnerabilities. It reports that a fix is available by updating to debian 6.1.115-1 from 6.1.112-1.
It says in the Azure Functions documentation that updates come monthly but don't you think that's a bit too slow for critical vulnerabilities (and such a big pile of high-severity ones)? Last update was on 2024-10-31 but the vulnerabilities were published on 2024-10-21.
Incomplete list of vulnerabilities:
Critical:
CVE-2024-47685
High:
CVE-2024-8805
CVE-2024-53082
CVE-2024-53061
CVE-2024-53057
CVE-2024-53042
CVE-2024-50302
CVE-2024-50301
CVE-2024-50286
CVE-2024-50283
...
The text was updated successfully, but these errors were encountered: