Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
ALINUX2-SA-2020:0091: java-11-openjdk security update (Important)
CVEs:CVE-2020-2754CVE-2020-2755CVE-2020-2756CVE-2020-2757CVE-2020-2767CVE-2020-2773CVE-2020-2778CVE-2020-2781CVE-2020-2800CVE-2020-2803CVE-2020-2805CVE-2020-2816CVE-2020-2830
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-11-openjdk | affected | Alibaba Cloud | java-11-openjdk | — |
ALINUX2-SA-2020:0088: git security update (Important)
CVEs:CVE-2020-5260
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| git | affected | Alibaba Cloud | git | — |
ALINUX2-SA-2020:0089: java-1.7.0-openjdk security update (Important)
CVEs:CVE-2020-2756CVE-2020-2757CVE-2020-2773CVE-2020-2781CVE-2020-2800CVE-2020-2803CVE-2020-2805CVE-2020-2830
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.7.0-openjdk | affected | Alibaba Cloud | java-1.7.0-openjdk | — |
ALINUX2-SA-2020:0090: java-1.8.0-openjdk security update (Important)
CVEs:CVE-2020-2754CVE-2020-2755CVE-2020-2756CVE-2020-2757CVE-2020-2773CVE-2020-2781CVE-2020-2800CVE-2020-2803CVE-2020-2805CVE-2020-2830
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.8.0-openjdk | affected | Alibaba Cloud | java-1.8.0-openjdk | — |
ALINUX2-SA-2020:0086: texlive security update (Moderate)
CVEs:CVE-2018-17407
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| texlive | affected | Alibaba Cloud | texlive | — |
ALINUX2-SA-2020:0087: mariadb security and bug fix update (Moderate)
CVEs:CVE-2019-2737CVE-2019-2739CVE-2019-2740CVE-2019-2805
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mariadb | affected | Alibaba Cloud | mariadb | — |
ALINUX2-SA-2020:0085: firefox security update (Critical)
CVEs:CVE-2020-6819CVE-2020-6820
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| firefox | affected | Alibaba Cloud | firefox | — |
ALINUX2-SA-2020:0084: telnet security update (Important)
CVEs:CVE-2020-10188
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| telnet | affected | Alibaba Cloud | telnet | — |
ALINUX2-SA-2020:0083: bind security and bug fix update (Moderate)
CVEs:CVE-2018-5745CVE-2019-6465CVE-2019-6477
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| bind | affected | Alibaba Cloud | bind | — |
ALINUX2-SA-2020:0077: libxml2 security update (Moderate)
CVEs:CVE-2015-8035CVE-2016-5131CVE-2017-15412CVE-2017-18258CVE-2018-14404CVE-2018-14567
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libxml2 | affected | Alibaba Cloud | libxml2 | — |
ALINUX2-SA-2020:0078: wireshark security and bug fix update (Moderate)
CVEs:CVE-2018-11362CVE-2018-14340CVE-2018-14341CVE-2018-14368CVE-2018-16057CVE-2018-19622CVE-2018-7418
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| wireshark | affected | Alibaba Cloud | wireshark | — |
ALINUX2-SA-2020:0079: samba security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2019-10197CVE-2019-10218
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| samba | affected | Alibaba Cloud | samba | — |
ALINUX2-SA-2020:0080: libqb security update (Moderate)
CVEs:CVE-2019-12779
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libqb | affected | Alibaba Cloud | libqb | — |
ALINUX2-SA-2020:0081: python security update (Moderate)
CVEs:CVE-2018-20852CVE-2019-16056
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python | affected | Alibaba Cloud | python | — |
ALINUX2-SA-2020:0082: lftp security update (Moderate)
CVEs:CVE-2018-10916
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| lftp | affected | Alibaba Cloud | lftp | — |
ALINUX2-SA-2020:0067: qemu-kvm-ma security update (Important)
CVEs:CVE-2020-8608
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| qemu-kvm-ma | affected | Alibaba Cloud | qemu-kvm-ma | — |
ALINUX2-SA-2020:0068: okular security update (Moderate)
CVEs:CVE-2018-1000801
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| okular | affected | Alibaba Cloud | okular | — |
ALINUX2-SA-2020:0069: nbdkit security and bug fix update (Low)
CVEs:CVE-2019-14850
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| nbdkit | affected | Alibaba Cloud | nbdkit | — |
ALINUX2-SA-2020:0070: GNOME security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2019-3820
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| accountsservice | affected | Alibaba Cloud | accountsservice | — |
| colord | affected | Alibaba Cloud | colord | — |
| control-center | affected | Alibaba Cloud | control-center | — |
| gdm | affected | Alibaba Cloud | gdm | — |
| gnome-online-accounts | affected | Alibaba Cloud | gnome-online-accounts | — |
| gnome-settings-daemon | affected | Alibaba Cloud | gnome-settings-daemon | — |
| gnome-shell | affected | Alibaba Cloud | gnome-shell | — |
| gnome-shell-extensions | affected | Alibaba Cloud | gnome-shell-extensions | — |
| gnome-tweak-tool | affected | Alibaba Cloud | gnome-tweak-tool | — |
| gsettings-desktop-schemas | affected | Alibaba Cloud | gsettings-desktop-schemas | — |
| gtk3 | affected | Alibaba Cloud | gtk3 | — |
| libcanberra | affected | Alibaba Cloud | libcanberra | — |
| libgweather | affected | Alibaba Cloud | libgweather | — |
| LibRaw | affected | Alibaba Cloud | LibRaw | — |
| mutter | affected | Alibaba Cloud | mutter | — |
| nautilus | affected | Alibaba Cloud | nautilus | — |
| osinfo-db | affected | Alibaba Cloud | osinfo-db | — |
| shared-mime-info | affected | Alibaba Cloud | shared-mime-info | — |
| tracker | affected | Alibaba Cloud | tracker | — |
| xchat | affected | Alibaba Cloud | xchat | — |
ALINUX2-SA-2020:0071: ImageMagick security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2017-1000476CVE-2017-11166CVE-2017-12805CVE-2017-12806CVE-2017-18251CVE-2017-18252CVE-2017-18254CVE-2017-18271CVE-2017-18273CVE-2018-10177CVE-2018-10804CVE-2018-10805CVE-2018-11656CVE-2018-12599CVE-2018-12600CVE-2018-13153CVE-2018-14434CVE-2018-14435CVE-2018-14436CVE-2018-14437CVE-2018-15607CVE-2018-16328CVE-2018-16749CVE-2018-16750CVE-2018-18544CVE-2018-20467CVE-2018-8804CVE-2018-9133CVE-2019-10131CVE-2019-10650CVE-2019-11470CVE-2019-11472CVE-2019-11597CVE-2019-11598CVE-2019-12974CVE-2019-12975CVE-2019-12976CVE-2019-12978CVE-2019-12979CVE-2019-13133CVE-2019-13134CVE-2019-13135CVE-2019-13295CVE-2019-13297CVE-2019-13300CVE-2019-13301CVE-2019-13304CVE-2019-13305CVE-2019-13306CVE-2019-13307CVE-2019-13309CVE-2019-13310CVE-2019-13311CVE-2019-13454CVE-2019-14980CVE-2019-14981CVE-2019-15139CVE-2019-15140CVE-2019-15141CVE-2019-16708CVE-2019-16709CVE-2019-16710CVE-2019-16711CVE-2019-16712CVE-2019-16713CVE-2019-17540CVE-2019-17541CVE-2019-19948CVE-2019-19949CVE-2019-7175CVE-2019-7397CVE-2019-7398CVE-2019-9956
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| autotrace | affected | Alibaba Cloud | autotrace | — |
| emacs | affected | Alibaba Cloud | emacs | — |
| ImageMagick | affected | Alibaba Cloud | ImageMagick | — |
| inkscape | affected | Alibaba Cloud | inkscape | — |
ALINUX2-SA-2020:0072: qemu-kvm security, bug fix, and enhancement update (Important)
CVEs:CVE-2020-7039
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| qemu-kvm | affected | Alibaba Cloud | qemu-kvm | — |
ALINUX2-SA-2020:0073: python3 security update (Moderate)
CVEs:CVE-2018-20852CVE-2019-16056
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python3 | affected | Alibaba Cloud | python3 | — |
ALINUX2-SA-2020:0074: qemu-kvm security update (Important)
CVEs:CVE-2020-8608
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| qemu-kvm | affected | Alibaba Cloud | qemu-kvm | — |
ALINUX2-SA-2020:0075: httpd security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2017-15710CVE-2018-1301CVE-2018-17199
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| httpd | affected | Alibaba Cloud | httpd | — |
ALINUX2-SA-2020:0076: dovecot security and bug fix update (Moderate)
CVEs:CVE-2019-3814CVE-2019-7524
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| dovecot | affected | Alibaba Cloud | dovecot | — |
ALINUX2-SA-2020:0042: file security update (Low)
CVEs:CVE-2018-10360
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| file | affected | Alibaba Cloud | file | — |
ALINUX2-SA-2020:0043: python-twisted-web security update (Moderate)
CVEs:CVE-2019-12387
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python-twisted-web | affected | Alibaba Cloud | python-twisted-web | — |
ALINUX2-SA-2020:0044: unzip security update (Low)
CVEs:CVE-2019-13232
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| unzip | affected | Alibaba Cloud | unzip | — |
ALINUX2-SA-2020:0045: avahi security update (Low)
CVEs:CVE-2017-6519
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| avahi | affected | Alibaba Cloud | avahi | — |
ALINUX2-SA-2020:0046: squid security and bug fix update (Moderate)
CVEs:CVE-2018-1000024CVE-2018-1000027CVE-2019-13345
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| squid | affected | Alibaba Cloud | squid | — |
ALINUX2-SA-2020:0047: rsyslog security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2019-17041CVE-2019-17042
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| rsyslog | affected | Alibaba Cloud | rsyslog | — |
ALINUX2-SA-2020:0048: libreoffice security and bug fix update (Moderate)
CVEs:CVE-2019-9848CVE-2019-9849CVE-2019-9850CVE-2019-9851CVE-2019-9852CVE-2019-9853CVE-2019-9854
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libreoffice | affected | Alibaba Cloud | libreoffice | — |
ALINUX2-SA-2020:0049: qt security update (Moderate)
CVEs:CVE-2018-15518CVE-2018-19869CVE-2018-19870CVE-2018-19871CVE-2018-19872CVE-2018-19873
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| qt | affected | Alibaba Cloud | qt | — |
ALINUX2-SA-2020:0050: zziplib security update (Moderate)
CVEs:CVE-2018-17828
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| zziplib | affected | Alibaba Cloud | zziplib | — |
ALINUX2-SA-2020:0051: bluez security update (Low)
CVEs:CVE-2018-10910
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| bluez | affected | Alibaba Cloud | bluez | — |
ALINUX2-SA-2020:0052: poppler and evince security update (Moderate)
CVEs:CVE-2018-21009CVE-2019-10871CVE-2019-11459CVE-2019-12293CVE-2019-9959
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| evince | affected | Alibaba Cloud | evince | — |
| poppler | affected | Alibaba Cloud | poppler | — |
ALINUX2-SA-2020:0053: libosinfo security and bug fix update (Low)
CVEs:CVE-2019-13313
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libosinfo | affected | Alibaba Cloud | libosinfo | — |
ALINUX2-SA-2020:0054: php security update (Moderate)
CVEs:CVE-2018-10547CVE-2018-5712CVE-2018-7584CVE-2019-9024
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| php | affected | Alibaba Cloud | php | — |
ALINUX2-SA-2020:0055: cups security and bug fix update (Moderate)
CVEs:CVE-2018-4180CVE-2018-4181CVE-2018-4700
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| cups | affected | Alibaba Cloud | cups | — |
ALINUX2-SA-2020:0056: taglib security update (Low)
CVEs:CVE-2018-11439
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| taglib | affected | Alibaba Cloud | taglib | — |
ALINUX2-SA-2020:0057: mailman security and bug fix update (Moderate)
CVEs:CVE-2018-0618CVE-2018-13796
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mailman | affected | Alibaba Cloud | mailman | — |
ALINUX2-SA-2020:0058: advancecomp security update (Moderate)
CVEs:CVE-2019-9210
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| advancecomp | affected | Alibaba Cloud | advancecomp | — |
ALINUX2-SA-2020:0059: evolution security and bug fix update (Moderate)
CVEs:CVE-2018-15587CVE-2019-3890
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| atk | affected | Alibaba Cloud | atk | — |
| evolution | affected | Alibaba Cloud | evolution | — |
| evolution-data-server | affected | Alibaba Cloud | evolution-data-server | — |
| evolution-ews | affected | Alibaba Cloud | evolution-ews | — |
ALINUX2-SA-2020:0060: doxygen security and bug fix update (Low)
CVEs:CVE-2016-10245
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| doxygen | affected | Alibaba Cloud | doxygen | — |
ALINUX2-SA-2020:0061: libsndfile security update (Moderate)
CVEs:CVE-2018-13139
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libsndfile | affected | Alibaba Cloud | libsndfile | — |
ALINUX2-SA-2020:0062: mod_auth_mellon security and bug fix update (Moderate)
CVEs:CVE-2019-13038
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mod_auth_mellon | affected | Alibaba Cloud | mod_auth_mellon | — |
ALINUX2-SA-2020:0063: expat security update (Moderate)
CVEs:CVE-2015-2716
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| expat | affected | Alibaba Cloud | expat | — |
ALINUX2-SA-2020:0064: net-snmp security and bug fix update (Moderate)
CVEs:CVE-2018-18066
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| net-snmp | affected | Alibaba Cloud | net-snmp | — |
ALINUX2-SA-2020:0065: curl security and bug fix update (Low)
CVEs:CVE-2019-5436
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| curl | affected | Alibaba Cloud | curl | — |
ALINUX2-SA-2020:0066: mutt security update (Moderate)
CVEs:CVE-2018-14355
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mutt | affected | Alibaba Cloud | mutt | — |
ALINUX2-SA-2020:0039: polkit security and bug fix update (Low)
CVEs:CVE-2018-1116
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| polkit | affected | Alibaba Cloud | polkit | — |
ALINUX2-SA-2020:0040: gettext security and bug fix update (Low)
CVEs:CVE-2018-18751
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| gettext | affected | Alibaba Cloud | gettext | — |
ALINUX2-SA-2020:0041: bash security update (Moderate)
CVEs:CVE-2019-9924
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| bash | affected | Alibaba Cloud | bash | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.