ALINUX2-SA-2019:0119
ALINUX 22019-10-29
ALINUX2-SA-2019:0119: sudo security update (Important)
CVEs:CVE-2019-14287
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| sudo | affected | Alibaba Cloud | sudo | — |
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
ALINUX2-SA-2019:0119: sudo security update (Important)
CVEs:CVE-2019-14287
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| sudo | affected | Alibaba Cloud | sudo | — |
ALINUX2-SA-2019:0117: ntp security, bug fix, and enhancement update (Low)
CVEs:CVE-2018-12327
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| ntp | affected | Alibaba Cloud | ntp | — |
ALINUX2-SA-2019:0118: dhcp security and bug fix update (Moderate)
CVEs:CVE-2019-6470
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| dhcp | affected | Alibaba Cloud | dhcp | — |
ALINUX2-SA-2019:0108: jss security update (Important)
CVEs:CVE-2019-14823
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| jss | affected | Alibaba Cloud | jss | — |
ALINUX2-SA-2019:0109: zsh security and bug fix update (Moderate)
CVEs:CVE-2018-13259
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| zsh | affected | Alibaba Cloud | zsh | — |
ALINUX2-SA-2019:0110: tomcat security update (Moderate)
CVEs:CVE-2018-11784
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat | affected | Alibaba Cloud | tomcat | — |
ALINUX2-SA-2019:0111: ruby security update (Moderate)
CVEs:CVE-2017-17742CVE-2018-1000073CVE-2018-1000074CVE-2018-1000075CVE-2018-1000076CVE-2018-1000077CVE-2018-1000078CVE-2018-1000079CVE-2018-16396CVE-2018-6914CVE-2018-8777CVE-2018-8778CVE-2018-8779CVE-2018-8780
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| ruby | affected | Alibaba Cloud | ruby | — |
ALINUX2-SA-2019:0112: glibc security and bug fix update (Moderate)
CVEs:CVE-2016-10739
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| glibc | affected | Alibaba Cloud | glibc | — |
ALINUX2-SA-2019:0113: java-1.7.0-openjdk security update (Moderate)
CVEs:CVE-2019-2945CVE-2019-2962CVE-2019-2964CVE-2019-2973CVE-2019-2978CVE-2019-2981CVE-2019-2983CVE-2019-2987CVE-2019-2988CVE-2019-2989CVE-2019-2992CVE-2019-2999
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.7.0-openjdk | affected | Alibaba Cloud | java-1.7.0-openjdk | — |
ALINUX2-SA-2019:0114: patch security update (Important)
CVEs:CVE-2018-20969CVE-2019-13638
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| patch | affected | Alibaba Cloud | patch | — |
ALINUX2-SA-2019:0115: java-1.8.0-openjdk security update (Important)
CVEs:CVE-2019-2945CVE-2019-2949CVE-2019-2962CVE-2019-2964CVE-2019-2973CVE-2019-2975CVE-2019-2978CVE-2019-2981CVE-2019-2983CVE-2019-2987CVE-2019-2988CVE-2019-2989CVE-2019-2992CVE-2019-2999
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.8.0-openjdk | affected | Alibaba Cloud | java-1.8.0-openjdk | — |
ALINUX2-SA-2019:0116: java-11-openjdk security update (Important)
CVEs:CVE-2019-2945CVE-2019-2949CVE-2019-2962CVE-2019-2964CVE-2019-2973CVE-2019-2975CVE-2019-2977CVE-2019-2978CVE-2019-2981CVE-2019-2983CVE-2019-2987CVE-2019-2988CVE-2019-2989CVE-2019-2992CVE-2019-2999
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-11-openjdk | affected | Alibaba Cloud | java-11-openjdk | — |
ALINUX2-SA-2019:0103: exiv2 security, bug fix, and enhancement update (Low)
CVEs:CVE-2017-17724CVE-2018-10772CVE-2018-10958CVE-2018-10998CVE-2018-11037CVE-2018-12264CVE-2018-12265CVE-2018-14046CVE-2018-17282CVE-2018-17581CVE-2018-18915CVE-2018-19107CVE-2018-19108CVE-2018-19535CVE-2018-19607CVE-2018-20096CVE-2018-20097CVE-2018-20098CVE-2018-20099CVE-2018-8976CVE-2018-8977CVE-2018-9305
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| exiv2 | affected | Alibaba Cloud | exiv2 | — |
ALINUX2-SA-2019:0104: nss, nss-softokn, nss-util, and nspr security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2018-0495CVE-2018-12404
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| nspr | affected | Alibaba Cloud | nspr | — |
| nss | affected | Alibaba Cloud | nss | — |
| nss-softokn | affected | Alibaba Cloud | nss-softokn | — |
| nss-util | affected | Alibaba Cloud | nss-util | — |
ALINUX2-SA-2019:0105: opensc security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2018-16391CVE-2018-16392CVE-2018-16393CVE-2018-16418CVE-2018-16419CVE-2018-16420CVE-2018-16421CVE-2018-16422CVE-2018-16423CVE-2018-16426CVE-2018-16427
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| opensc | affected | Alibaba Cloud | opensc | — |
ALINUX2-SA-2019:0106: ovmf security and enhancement update (Moderate)
CVEs:CVE-2017-5731CVE-2017-5732CVE-2017-5733CVE-2017-5734CVE-2017-5735CVE-2018-12181CVE-2018-3613CVE-2018-5407CVE-2019-0160CVE-2019-0161
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| ovmf | affected | Alibaba Cloud | ovmf | — |
ALINUX2-SA-2019:0107: keepalived security and bug fix update (Moderate)
CVEs:CVE-2018-19044
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| keepalived | affected | Alibaba Cloud | keepalived | — |
ALINUX2-SA-2019:0101: linux-firmware security, bug fix, and enhancement update (Important)
CVEs:CVE-2018-5383
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| linux-firmware | affected | Alibaba Cloud | linux-firmware | — |
ALINUX2-SA-2019:0102: freerdp and vinagre security, bug fix, and enhancement update (Low)
CVEs:CVE-2018-1000852
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| freerdp | affected | Alibaba Cloud | freerdp | — |
| vinagre | affected | Alibaba Cloud | vinagre | — |
ALINUX2-SA-2019:0099: httpd security and bug fix update (Moderate)
CVEs:CVE-2019-0217CVE-2019-0220
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| httpd | affected | Alibaba Cloud | httpd | — |
ALINUX2-SA-2019:0100: libssh2 security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2019-3858CVE-2019-3861
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libssh2 | affected | Alibaba Cloud | libssh2 | — |
ALINUX2-SA-2019:0095: qt5 security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2018-15518CVE-2018-19869CVE-2018-19870CVE-2018-19871CVE-2018-19873
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| qt5-qt3d | affected | Alibaba Cloud | qt5-qt3d | — |
| qt5-qtbase | affected | Alibaba Cloud | qt5-qtbase | — |
| qt5-qtcanvas3d | affected | Alibaba Cloud | qt5-qtcanvas3d | — |
| qt5-qtconnectivity | affected | Alibaba Cloud | qt5-qtconnectivity | — |
| qt5-qtdeclarative | affected | Alibaba Cloud | qt5-qtdeclarative | — |
| qt5-qtdoc | affected | Alibaba Cloud | qt5-qtdoc | — |
| qt5-qtgraphicaleffects | affected | Alibaba Cloud | qt5-qtgraphicaleffects | — |
| qt5-qtimageformats | affected | Alibaba Cloud | qt5-qtimageformats | — |
| qt5-qtlocation | affected | Alibaba Cloud | qt5-qtlocation | — |
| qt5-qtmultimedia | affected | Alibaba Cloud | qt5-qtmultimedia | — |
| qt5-qtquickcontrols | affected | Alibaba Cloud | qt5-qtquickcontrols | — |
| qt5-qtquickcontrols2 | affected | Alibaba Cloud | qt5-qtquickcontrols2 | — |
| qt5-qtscript | affected | Alibaba Cloud | qt5-qtscript | — |
| qt5-qtsensors | affected | Alibaba Cloud | qt5-qtsensors | — |
| qt5-qtserialbus | affected | Alibaba Cloud | qt5-qtserialbus | — |
| qt5-qtserialport | affected | Alibaba Cloud | qt5-qtserialport | — |
| qt5-qtsvg | affected | Alibaba Cloud | qt5-qtsvg | — |
| qt5-qttools | affected | Alibaba Cloud | qt5-qttools | — |
| qt5-qttranslations | affected | Alibaba Cloud | qt5-qttranslations | — |
| qt5-qtwayland | affected | Alibaba Cloud | qt5-qtwayland | — |
| qt5-qtwebchannel | affected | Alibaba Cloud | qt5-qtwebchannel | — |
| qt5-qtwebsockets | affected | Alibaba Cloud | qt5-qtwebsockets | — |
| qt5-qtx11extras | affected | Alibaba Cloud | qt5-qtx11extras | — |
| qt5-qtxmlpatterns | affected | Alibaba Cloud | qt5-qtxmlpatterns | — |
ALINUX2-SA-2019:0096: poppler security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2018-16646CVE-2018-18897CVE-2018-19058CVE-2018-19059CVE-2018-19060CVE-2018-19149CVE-2018-20481CVE-2018-20650CVE-2018-20662CVE-2019-7310CVE-2019-9200CVE-2019-9631
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| evince | affected | Alibaba Cloud | evince | — |
| okular | affected | Alibaba Cloud | okular | — |
| poppler | affected | Alibaba Cloud | poppler | — |
ALINUX2-SA-2019:0097: pango security update (Important)
CVEs:CVE-2019-1010238
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| pango | affected | Alibaba Cloud | pango | — |
ALINUX2-SA-2019:0098: ghostscript security update (Important)
CVEs:CVE-2019-14811CVE-2019-14812CVE-2019-14813CVE-2019-14817
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| ghostscript | affected | Alibaba Cloud | ghostscript | — |
ALINUX2-SA-2019:0093: sssd security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2018-16838CVE-2019-3811
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| sssd | affected | Alibaba Cloud | sssd | — |
ALINUX2-SA-2019:0094: python security and bug fix update (Moderate)
CVEs:CVE-2018-14647CVE-2019-5010CVE-2019-9740CVE-2019-9947CVE-2019-9948
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python | affected | Alibaba Cloud | python | — |
ALINUX2-SA-2019:0085: openssh security, bug fix, and enhancement update (Low)
CVEs:CVE-2018-15473
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| openssh | affected | Alibaba Cloud | openssh | — |
ALINUX2-SA-2019:0086: openssl security and bug fix update (Moderate)
CVEs:CVE-2018-0734CVE-2019-1559
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| openssl | affected | Alibaba Cloud | openssl | — |
ALINUX2-SA-2019:0087: patch security and bug fix update (Low)
CVEs:CVE-2016-10713CVE-2018-6952
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| patch | affected | Alibaba Cloud | patch | — |
ALINUX2-SA-2019:0088: perl-Archive-Tar security update (Moderate)
CVEs:CVE-2018-12015
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| perl-Archive-Tar | affected | Alibaba Cloud | perl-Archive-Tar | — |
ALINUX2-SA-2019:0089: procps-ng security and bug fix update (Moderate)
CVEs:CVE-2018-1122
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| procps-ng | affected | Alibaba Cloud | procps-ng | — |
ALINUX2-SA-2019:0090: python-requests security update (Low)
CVEs:CVE-2018-18074
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python-requests | affected | Alibaba Cloud | python-requests | — |
ALINUX2-SA-2019:0091: python-urllib3 security update (Moderate)
CVEs:CVE-2018-20060CVE-2019-11236
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python-urllib3 | affected | Alibaba Cloud | python-urllib3 | — |
ALINUX2-SA-2019:0092: dovecot security update (Important)
CVEs:CVE-2019-11500
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| dovecot | affected | Alibaba Cloud | dovecot | — |
ALINUX2-SA-2019:0064: kde-workspace security and bug fix update (Low)
CVEs:CVE-2018-6790
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kdelibs | affected | Alibaba Cloud | kdelibs | — |
| kde-workspace | affected | Alibaba Cloud | kde-workspace | — |
| kmag | affected | Alibaba Cloud | kmag | — |
| virtuoso-opensource | affected | Alibaba Cloud | virtuoso-opensource | — |
ALINUX2-SA-2019:0065: keycloak-httpd-client-install security, bug fix, and enhancement update (Low)
CVEs:CVE-2017-15111CVE-2017-15112
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| keycloak-httpd-client-install | affected | Alibaba Cloud | keycloak-httpd-client-install | — |
ALINUX2-SA-2019:0066: libarchive security update (Moderate)
CVEs:CVE-2017-14503CVE-2018-1000877CVE-2018-1000878CVE-2019-1000019CVE-2019-1000020
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libarchive | affected | Alibaba Cloud | libarchive | — |
ALINUX2-SA-2019:0067: libcgroup security update (Moderate)
CVEs:CVE-2018-14348
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libcgroup | affected | Alibaba Cloud | libcgroup | — |
ALINUX2-SA-2019:0068: spice-gtk security and bug fix update (Moderate)
CVEs:CVE-2018-10893
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libgovirt | affected | Alibaba Cloud | libgovirt | — |
| spice-gtk | affected | Alibaba Cloud | spice-gtk | — |
| spice-vdagent | affected | Alibaba Cloud | spice-vdagent | — |
| virt-viewer | affected | Alibaba Cloud | virt-viewer | — |
ALINUX2-SA-2019:0069: libguestfs-winsupport security update (Low)
CVEs:CVE-2019-9755
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libguestfs-winsupport | affected | Alibaba Cloud | libguestfs-winsupport | — |
ALINUX2-SA-2019:0070: libjpeg-turbo security update (Moderate)
CVEs:CVE-2016-3616CVE-2018-11212CVE-2018-11213CVE-2018-11214CVE-2018-11813CVE-2018-14498
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libjpeg-turbo | affected | Alibaba Cloud | libjpeg-turbo | — |
ALINUX2-SA-2019:0071: libmspack security update (Moderate)
CVEs:CVE-2018-18584CVE-2018-18585
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libmspack | affected | Alibaba Cloud | libmspack | — |
ALINUX2-SA-2019:0072: libsolv security and bug fix update (Low)
CVEs:CVE-2018-20532CVE-2018-20533CVE-2018-20534
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libsolv | affected | Alibaba Cloud | libsolv | — |
ALINUX2-SA-2019:0073: libtiff security update (Moderate)
CVEs:CVE-2016-3186CVE-2018-10779CVE-2018-10963CVE-2018-12900CVE-2018-17100CVE-2018-17101CVE-2018-18557CVE-2018-18661CVE-2018-7456CVE-2018-8905
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libtiff | affected | Alibaba Cloud | libtiff | — |
ALINUX2-SA-2019:0074: libreoffice security and bug fix update (Low)
CVEs:CVE-2018-16858
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libreoffice | affected | Alibaba Cloud | libreoffice | — |
ALINUX2-SA-2019:0075: libwpd security update (Low)
CVEs:CVE-2018-19208
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libwpd | affected | Alibaba Cloud | libwpd | — |
ALINUX2-SA-2019:0076: Xorg security and bug fix update (Moderate)
CVEs:CVE-2018-14598CVE-2018-14599CVE-2018-14600CVE-2018-15853CVE-2018-15854CVE-2018-15855CVE-2018-15856CVE-2018-15857CVE-2018-15859CVE-2018-15861CVE-2018-15862CVE-2018-15863CVE-2018-15864
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| gdm | affected | Alibaba Cloud | gdm | — |
| libX11 | affected | Alibaba Cloud | libX11 | — |
| libxkbcommon | affected | Alibaba Cloud | libxkbcommon | — |
| mesa-libGLw | affected | Alibaba Cloud | mesa-libGLw | — |
| xorg-x11-drv-ati | affected | Alibaba Cloud | xorg-x11-drv-ati | — |
| xorg-x11-drv-vesa | affected | Alibaba Cloud | xorg-x11-drv-vesa | — |
| xorg-x11-drv-wacom | affected | Alibaba Cloud | xorg-x11-drv-wacom | — |
| xorg-x11-server | affected | Alibaba Cloud | xorg-x11-server | — |
ALINUX2-SA-2019:0077: mercurial security update (Moderate)
CVEs:CVE-2018-1000132CVE-2018-13346CVE-2018-13347
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mercurial | affected | Alibaba Cloud | mercurial | — |
ALINUX2-SA-2019:0078: mod_auth_openidc security update (Moderate)
CVEs:CVE-2017-6059CVE-2017-6413
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mod_auth_openidc | affected | Alibaba Cloud | mod_auth_openidc | — |
ALINUX2-SA-2019:0079: mariadb security and bug fix update (Moderate)
CVEs:CVE-2018-3058CVE-2018-3063CVE-2018-3066CVE-2018-3081CVE-2018-3282CVE-2019-2503CVE-2019-2529CVE-2019-2614CVE-2019-2627
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mariadb | affected | Alibaba Cloud | mariadb | — |
ALINUX2-SA-2019:0080: uriparser security update (Moderate)
CVEs:CVE-2018-19198CVE-2018-19199
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| uriparser | affected | Alibaba Cloud | uriparser | — |
ALINUX2-SA-2019:0081: unzip security update (Low)
CVEs:CVE-2018-18384
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| unzip | affected | Alibaba Cloud | unzip | — |
ALINUX2-SA-2019:0082: unixODBC security update (Moderate)
CVEs:CVE-2018-7409CVE-2018-7485
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| unixODBC | affected | Alibaba Cloud | unixODBC | — |
ALINUX2-SA-2019:0083: udisks2 security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2018-17336
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| udisks2 | affected | Alibaba Cloud | udisks2 | — |
ALINUX2-SA-2019:0084: sox security update (Low)
CVEs:CVE-2017-18189
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| sox | affected | Alibaba Cloud | sox | — |
ALINUX2-SA-2019:0053: advancecomp security update (Low)
CVEs:CVE-2019-8379CVE-2019-8383
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| advancecomp | affected | Alibaba Cloud | advancecomp | — |
ALINUX2-SA-2019:0054: bind security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2018-5741
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| bind | affected | Alibaba Cloud | bind | — |
ALINUX2-SA-2019:0055: binutils security and bug fix update (Moderate)
CVEs:CVE-2018-1000876CVE-2018-12641CVE-2018-12697
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| binutils | affected | Alibaba Cloud | binutils | — |
ALINUX2-SA-2019:0056: blktrace security update (Low)
CVEs:CVE-2018-10689
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| blktrace | affected | Alibaba Cloud | blktrace | — |
ALINUX2-SA-2019:0057: compat-libtiff3 security update (Low)
CVEs:CVE-2018-7456
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| compat-libtiff3 | affected | Alibaba Cloud | compat-libtiff3 | — |
ALINUX2-SA-2019:0058: curl security and bug fix update (Low)
CVEs:CVE-2018-16842
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| curl | affected | Alibaba Cloud | curl | — |
ALINUX2-SA-2019:0059: elfutils security, bug fix, and enhancement update (Low)
CVEs:CVE-2018-16062CVE-2018-16402CVE-2018-16403CVE-2018-18310CVE-2018-18520CVE-2018-18521CVE-2019-7149CVE-2019-7150CVE-2019-7664CVE-2019-7665
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| elfutils | affected | Alibaba Cloud | elfutils | — |
ALINUX2-SA-2019:0060: exempi security update (Low)
CVEs:CVE-2017-18233CVE-2017-18234CVE-2017-18236CVE-2017-18238CVE-2018-7730
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| exempi | affected | Alibaba Cloud | exempi | — |
ALINUX2-SA-2019:0061: fence-agents security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2019-10153
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| fence-agents | affected | Alibaba Cloud | fence-agents | — |
ALINUX2-SA-2019:0062: gvfs security and bug fix update (Moderate)
CVEs:CVE-2019-3827
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| gvfs | affected | Alibaba Cloud | gvfs | — |
ALINUX2-SA-2019:0063: http-parser security update (Moderate)
CVEs:CVE-2018-12121CVE-2018-7159
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| http-parser | affected | Alibaba Cloud | http-parser | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.