Amazon Linux

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2025-1330 Related CVEs: CVE-2025-14010 Upstream summary: A flaw was found in ansible-collection-community-general. This vulnerability allows for information exposure (IE) of sensitive credentials, specifically plaintext passwords, via verbose output when running […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2025-1349 Related CVEs: CVE-2025-14087 CVE-2025-13601 CVE-2025-3360 CVE-2025-6052 CVE-2023-24593 CVE-2023-25180 CVE-2023-29499 CVE-2023-32611  +1 more Upstream summary: Buffer underflow on Glib through glib/gvariant via bytestring_parse() or string_parse() leads to OOB Write. (CVE-2025-14087) […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2025-1318 Related CVEs: CVE-2025-58098 CVE-2025-65082 CVE-2025-66200 CVE-2023-38709 CVE-2024-42516 CVE-2024-43204 CVE-2024-47252 CVE-2025-23048  +12 more Upstream summary: Apache HTTP Server 2.4.65 and earlier with Server Side Includes (SSI) enabled and mod_cgid (but […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2025-1287 Related CVEs: CVE-2025-47912 CVE-2025-58183 CVE-2025-58185 CVE-2025-58186 CVE-2025-58187 CVE-2025-58188 CVE-2025-58189 CVE-2025-61723  +12 more Upstream summary: net/url: insufficient validation of bracketed IPv6 hostnames The Parse function permitted values other than IPv6 […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2025-1307 Related CVEs: CVE-2025-54514 CVE-2025-62626 CVE-2023-31315 CVE-2023-20593 Upstream summary: Improper isolation of shared resources on a system on a chip by a malicious local attacker with high privileges could potentially […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2025-1312 Related CVEs: CVE-2025-13086 CVE-2026-35058 CVE-2026-40215 CVE-2025-2704 Upstream summary: HMAC verification check: fix incorrect memcmp() call NOTE: https://community.openvpn.net/Security%20Announcements/CVE-2025-13086 (CVE-2025-13086) Table of contents Symptom & Impact Environment & Reproduction Root Cause […]

🟠 High   ⏱ 15–60 min  Last verified: 25 May 2026 Affected versions: Amazon Linux 2023 📖 ~4 min read  •  Source: Amazon Linux advisory ALAS2023-2025-1258 Related CVEs: CVE-2025-26625 CVE-2025-58187 CVE-2025-61728 CVE-2024-53263 Upstream summary: Git LFS is a Git extension for versioning large files. In Git LFS versions 0.5.2 through 3.7.0, when populating a Git […]