ALINUX2-SA-2020:0038
ALINUX 22020-03-31
ALINUX2-SA-2020:0038: ipmitool security update (Important)
CVEs:CVE-2020-5208
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| ipmitool | affected | Alibaba Cloud | ipmitool | — |
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
ALINUX2-SA-2020:0038: ipmitool security update (Important)
CVEs:CVE-2020-5208
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| ipmitool | affected | Alibaba Cloud | ipmitool | — |
ALINUX2-SA-2020:0036: firefox security update (Important)
CVEs:CVE-2019-20503CVE-2020-6805CVE-2020-6806CVE-2020-6807CVE-2020-6811CVE-2020-6812CVE-2020-6814
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| firefox | affected | Alibaba Cloud | firefox | — |
ALINUX2-SA-2020:0037: thunderbird security update (Important)
CVEs:CVE-2019-20503CVE-2020-6805CVE-2020-6806CVE-2020-6807CVE-2020-6811CVE-2020-6812CVE-2020-6814
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| thunderbird | affected | Alibaba Cloud | thunderbird | — |
ALINUX2-SA-2020:0034: libvncserver security update (Important)
CVEs:CVE-2019-15690
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libvncserver | affected | Alibaba Cloud | libvncserver | — |
ALINUX2-SA-2020:0035: icu security update (Important)
CVEs:CVE-2020-10531
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| icu | affected | Alibaba Cloud | icu | — |
ALINUX2-SA-2020:0029: python-virtualenv security update (Moderate)
CVEs:CVE-2018-18074CVE-2018-20060CVE-2019-11236
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python-virtualenv | affected | Alibaba Cloud | python-virtualenv | — |
ALINUX2-SA-2020:0030: python-pip security update (Moderate)
CVEs:CVE-2018-18074CVE-2018-20060CVE-2019-11236CVE-2019-11324
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python-pip | affected | Alibaba Cloud | python-pip | — |
ALINUX2-SA-2020:0031: zsh security update (Important)
CVEs:CVE-2019-20044
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| zsh | affected | Alibaba Cloud | zsh | — |
ALINUX2-SA-2020:0032: tomcat security update (Important)
CVEs:CVE-2020-1938
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat | affected | Alibaba Cloud | tomcat | — |
ALINUX2-SA-2020:0028: ppp security update (Important)
CVEs:CVE-2020-8597
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| ppp | affected | Alibaba Cloud | ppp | — |
ALINUX2-SA-2020:0026: http-parser security update (Important)
CVEs:CVE-2019-15605
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| http-parser | affected | Alibaba Cloud | http-parser | — |
ALINUX2-SA-2020:0027: xerces-c security update (Important)
CVEs:CVE-2018-1311
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| xerces-c | affected | Alibaba Cloud | xerces-c | — |
ALINUX2-SA-2020:0025: thunderbird security update (Important)
CVEs:CVE-2020-6792CVE-2020-6793CVE-2020-6794CVE-2020-6795CVE-2020-6798CVE-2020-6800
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| thunderbird | affected | Alibaba Cloud | thunderbird | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.