🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2018-1103 Related CVEs: CVE-2017-15705 CVE-2018-11781 CVE-2020-1946 CVE-2019-12420 Upstream summary: A flaw was found in the way SpamAssassin processes HTML email containing unclosed HTML tags. A carefully crafted mail message could […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2018-1077 Related CVEs: CVE-2018-14354 CVE-2018-14357 CVE-2018-14362 CVE-2023-4874 CVE-2023-4875 CVE-2020-14093 CVE-2020-14154 CVE-2020-14954 +3 more Upstream summary: An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. pop.c does not […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2018-1073 Related CVEs: CVE-2018-11806 CVE-2018-7550 CVE-2017-13672 CVE-2017-13711 CVE-2017-15124 CVE-2017-15268 CVE-2018-3639 CVE-2018-5683 +2 more Upstream summary: A heap buffer overflow issue was found in the way SLiRP networking back-end in QEMU […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2018-1063 Related CVEs: CVE-2018-10897 Upstream summary: A directory traversal issue was found in reposync, a part of yum-utils, where reposync fails to sanitize paths in remote repository configuration files. If […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2018-1043 Related CVEs: CVE-2018-1002200 Upstream summary: A path traversal vulnerability has been discovered in plexus-archiver when extracting a carefully crafted zip file which holds path traversal file names. A remote […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2018-1031 Related CVEs: CVE-2018-1124 CVE-2018-1126 CVE-2018-1122 Upstream summary: Multiple integer overflows leading to heap corruption flaws were discovered in file2strvec(). These vulnerabilities can lead to privilege escalation for a local […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2018-1014 Related CVEs: CVE-2018-1084 Upstream summary: Integer overflow in exec/totemcrypto.c:authenticate_nss_2_3() function An integer overflow leading to an out-of-bound read was found in authenticate_nss_2_3() in Corosync. An attacker could craft a […]
🟠 High ⏱ 15–60 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2018-999 Related CVEs: CVE-2018-8088 Upstream summary: Deserialisation vulnerability in EventData constructor can allow for arbitrary code execution: An XML deserialization vulnerability was discovered in slf4j's EventData which accepts anXML serialized […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2026-3283 Related CVEs: CVE-2026-23893 Upstream summary: openCryptoki is a PKCS#11 library and provides tooling for Linux and AIX. Versions 2.3.2 and above are vulnerable to symlink-following when running in privileged […]
🟡 Medium ⏱ 10–30 min Last verified: 25 May 2026 Affected versions: Amazon Linux 2 📖 ~4 min read • Source: Amazon Linux advisory ALAS2-2026-3298 Related CVEs: CVE-2026-40354 Upstream summary: Flatpak xdg-desktop-portal before 1.20.4 and 1.21.x before 1.21.1 allows any Flatpak app to trash any file in the host context via a symlink attack […]
Progressive Robot: Your Gateway to Comprehensive IT Solutions — Specializing in Web Development, Mobile App Development, and Expert IT Services.
© All Copyright by Progressiverobot.com
VAT Number ( 506152326 )
