Amazon Linux 2023

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1458 Related CVEs: CVE-2026-2003 CVE-2026-2004 CVE-2026-2005 CVE-2026-2006 CVE-2012-0868 CVE-2017-7484 CVE-2019-10130 CVE-2024-21096  +12 more Upstream summary: Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1457 Related CVEs: CVE-2026-2003 CVE-2026-2004 CVE-2026-2005 CVE-2026-2006 CVE-2012-0868 CVE-2017-7484 CVE-2019-10130 CVE-2024-21096  +6 more Upstream summary: Improper validation of type "oidvector" in PostgreSQL allows a database user to disclose a few […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1452 Related CVEs: CVE-2026-25990 CVE-2022-22817 CVE-2023-50447 CVE-2022-22816 CVE-2021-25290 CVE-2021-25291 CVE-2021-25293 CVE-2021-27921  +9 more Upstream summary: Pillow is a Python imaging library. From 10.3.0 to before 12.1.1, n out-of-bounds write may […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1471 Related CVEs: CVE-2025-67733 CVE-2026-21863 CVE-2025-46817 CVE-2025-46818 CVE-2025-46819 CVE-2025-49844 CVE-2025-32023 CVE-2025-48367  +2 more Upstream summary: Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023NVIDIA-2026-258 Related CVEs: CVE-2025-33228 CVE-2025-23248 CVE-2025-23255 CVE-2025-23271 CVE-2025-23273 CVE-2025-23274 CVE-2025-23275 CVE-2025-23308  +9 more Upstream summary: NVIDIA Nsight Systems contains a vulnerability in the gfx_hotspot recipe, where an attacker could cause […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023NVIDIA-2026-257 Related CVEs: CVE-2025-33228 Upstream summary: NVIDIA Nsight Systems contains a vulnerability in the gfx_hotspot recipe, where an attacker could cause an OS command injection by supplying a malicious string […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023NVIDIA-2026-275 Related CVEs: CVE-2025-33219 CVE-2025-23280 CVE-2025-23282 CVE-2025-23300 CVE-2025-23330 CVE-2025-23332 CVE-2025-23345 CVE-2025-23277  +2 more Upstream summary: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023NVIDIA-2026-274 Related CVEs: CVE-2025-33219 CVE-2025-23280 CVE-2025-23282 CVE-2025-23300 CVE-2025-23330 CVE-2025-23332 CVE-2025-23345 CVE-2025-23277  +2 more Upstream summary: NVIDIA Display Driver for Linux contains a vulnerability in the NVIDIA kernel module where an […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1431 Related CVEs: CVE-2025-15270 CVE-2025-15269 CVE-2025-15275 CVE-2025-15279 CVE-2025-50949 CVE-2024-25081 CVE-2024-25082 Upstream summary: FontForge SFD File Parsing Improper Validation of Array Index Remote Code Execution Vulnerability. This vulnerability allows remote attackers […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1427 Related CVEs: CVE-2026-24882 CVE-2025-68973 CVE-2022-34903 CVE-2025-30258 Upstream summary: In GnuPG before 2.5.17, a stack-based buffer overflow exists in tpm2daemon during handling of the PKDECRYPT command for TPM-backed RSA and […]