Amazon Linux 2023

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1611 Related CVEs: CVE-2026-33899 CVE-2026-33905 CVE-2026-33908 CVE-2026-40169 CVE-2026-40310 CVE-2026-40311 CVE-2026-28493 CVE-2026-28494  +12 more Upstream summary: ImageMagick is free and open-source software used for editing and manipulating digital images. In versions […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1625 Related CVEs: CVE-2026-40176 CVE-2026-40261 CVE-2024-35242 CVE-2024-35241 CVE-2024-24821 CVE-2023-43655 CVE-2025-67746 Upstream summary: Command injection via malicious Perforce repository definition (CVE-2026-40176) Command injection via malicious Perforce source reference/url (CVE-2026-40261) Table of […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1606 Related CVEs: CVE-2026-27143 CVE-2026-27144 CVE-2026-32280 CVE-2026-32281 CVE-2026-32282 CVE-2026-32283 CVE-2026-32288 CVE-2026-32289  +12 more Upstream summary: Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1635 Related CVEs: CVE-2026-34978 CVE-2026-34979 CVE-2026-34980 CVE-2026-34990 CVE-2026-39314 CVE-2026-39316 CVE-2022-26691 CVE-2026-27447  +11 more Upstream summary: OpenPrinting CUPS is an open source printing system for Linux and other Unix-like operating systems. […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1615 Related CVEs: CVE-2026-27143 CVE-2026-27144 CVE-2026-32280 CVE-2026-32281 CVE-2026-32282 CVE-2026-32283 CVE-2026-32288 CVE-2026-32289  +12 more Upstream summary: Arithmetic over induction variables in loops were not correctly checked for underflow or overflow in […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1627 Related CVEs: CVE-2026-26171 CVE-2026-32178 CVE-2026-32203 CVE-2026-33116 CVE-2026-40372 Upstream summary: Uncontrolled resource consumption in .NET allows an unauthorized attacker to deny service over a network. (CVE-2026-26171) Improper neutralization of special […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1601 Related CVEs: CVE-2026-34078 CVE-2026-34079 CVE-2024-42472 CVE-2024-32462 Upstream summary: A complete sandbox escape vulnerability exists in Flatpak before 1.16.4. The Flatpak portal accepts paths in the sandbox-expose options which can […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1622 Related CVEs: CVE-2026-4046 CVE-2025-4802 CVE-2024-2961 CVE-2023-4527 CVE-2023-4806 CVE-2023-4813 CVE-2023-4911 CVE-2025-8058  +8 more Upstream summary: The iconv() function in the GNU C Library versions 2.43 and earlier may crash due […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2026-1593 Related CVEs: CVE-2026-27140 CVE-2026-27143 CVE-2026-27144 CVE-2026-32280 CVE-2026-32281 CVE-2026-32282 CVE-2026-32283 CVE-2026-32288  +12 more Upstream summary: SWIG file names containing 'cgo' and well-crafted payloads could lead to code smuggling and arbitrary […]