Advisories
ALINUX2-SA-2020:0173: nss and nspr security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2019-11719CVE-2019-11727CVE-2019-11756CVE-2019-17006CVE-2019-17023CVE-2020-12400CVE-2020-12401CVE-2020-12402CVE-2020-12403CVE-2020-6829
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| nspr |
affected |
Alibaba Cloud |
nspr |
— |
| nss |
affected |
Alibaba Cloud |
nss |
— |
| nss-softokn |
affected |
Alibaba Cloud |
nss-softokn |
— |
| nss-util |
affected |
Alibaba Cloud |
nss-util |
— |
ALINUX2-SA-2020:0172: java-11-openjdk security update (Moderate)
CVEs:CVE-2020-14779CVE-2020-14781CVE-2020-14782CVE-2020-14792CVE-2020-14796CVE-2020-14797CVE-2020-14803
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| java-11-openjdk |
affected |
Alibaba Cloud |
java-11-openjdk |
— |
ALINUX2-SA-2020:0171: python security update (Moderate)
CVEs:CVE-2019-16935
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| python |
affected |
Alibaba Cloud |
python |
— |
ALINUX2-SA-2020:0168: samba security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2019-14907
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| samba |
affected |
Alibaba Cloud |
samba |
— |
ALINUX2-SA-2020:0169: ipa security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2015-9251CVE-2016-10735CVE-2018-14040CVE-2018-14042CVE-2018-20676CVE-2018-20677CVE-2019-11358CVE-2019-8331CVE-2020-11022CVE-2020-1722
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| ipa |
affected |
Alibaba Cloud |
ipa |
— |
ALINUX2-SA-2020:0170: mariadb security and bug fix update (Moderate)
CVEs:CVE-2019-2974CVE-2020-2574CVE-2020-2752CVE-2020-2780CVE-2020-2812
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| mariadb |
affected |
Alibaba Cloud |
mariadb |
— |
ALINUX2-SA-2020:0167: cloud-init security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2018-10896CVE-2020-8631CVE-2020-8632
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| cloud-init |
affected |
Alibaba Cloud |
cloud-init |
— |
ALINUX2-SA-2020:0165: httpd security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2017-15715CVE-2018-1283CVE-2018-1303CVE-2019-10098CVE-2020-1927CVE-2020-1934
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| httpd |
affected |
Alibaba Cloud |
httpd |
— |
ALINUX2-SA-2020:0166: systemd security and bug fix update (Low)
CVEs:CVE-2019-20386
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| systemd |
affected |
Alibaba Cloud |
systemd |
— |
ALINUX2-SA-2020:0159: libcroco security update (Moderate)
CVEs:CVE-2020-12825
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libcroco |
affected |
Alibaba Cloud |
libcroco |
— |
ALINUX2-SA-2020:0160: libxslt security update (Moderate)
CVEs:CVE-2019-11068CVE-2019-18197
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libxslt |
affected |
Alibaba Cloud |
libxslt |
— |
ALINUX2-SA-2020:0161: freerdp security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2020-11018CVE-2020-11019CVE-2020-11038CVE-2020-11039CVE-2020-11040CVE-2020-11041CVE-2020-11042CVE-2020-11043CVE-2020-11044CVE-2020-11045CVE-2020-11046CVE-2020-11047CVE-2020-11048CVE-2020-11049CVE-2020-11058CVE-2020-11085CVE-2020-11086CVE-2020-11087CVE-2020-11088CVE-2020-11089CVE-2020-11522CVE-2020-11525CVE-2020-11526CVE-2020-13396CVE-2020-13397
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| freerdp |
affected |
Alibaba Cloud |
freerdp |
— |
ALINUX2-SA-2020:0162: dnsmasq security and bug fix update (Low)
CVEs:CVE-2019-14834
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| dnsmasq |
affected |
Alibaba Cloud |
dnsmasq |
— |
ALINUX2-SA-2020:0163: curl security update (Moderate)
CVEs:CVE-2019-5482
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| curl |
affected |
Alibaba Cloud |
curl |
— |
ALINUX2-SA-2020:0164: glibc security, bug fix, and enhancement update (Low)
CVEs:CVE-2019-19126
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| glibc |
affected |
Alibaba Cloud |
glibc |
— |
ALINUX2-SA-2020:0153: qt5-qtbase security update (Moderate)
CVEs:CVE-2020-0569CVE-2020-0570
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| qt5-qtbase |
affected |
Alibaba Cloud |
qt5-qtbase |
— |
ALINUX2-SA-2020:0154: okular security update (Moderate)
CVEs:CVE-2020-9359
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| okular |
affected |
Alibaba Cloud |
okular |
— |
ALINUX2-SA-2020:0155: dbus security update (Moderate)
CVEs:CVE-2019-12749
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| dbus |
affected |
Alibaba Cloud |
dbus |
— |
ALINUX2-SA-2020:0156: OpenEXR security update (Moderate)
CVEs:CVE-2020-11761CVE-2020-11763CVE-2020-11764
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| OpenEXR |
affected |
Alibaba Cloud |
OpenEXR |
— |
ALINUX2-SA-2020:0157: libexif security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2019-9278CVE-2020-0093CVE-2020-0182CVE-2020-12767CVE-2020-13113CVE-2020-13114
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libexif |
affected |
Alibaba Cloud |
libexif |
— |
ALINUX2-SA-2020:0158: openldap security update (Moderate)
CVEs:CVE-2020-12243
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| openldap |
affected |
Alibaba Cloud |
openldap |
— |
ALINUX2-SA-2020:0138: exiv2 security update (Low)
CVEs:CVE-2019-17402
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| exiv2 |
affected |
Alibaba Cloud |
exiv2 |
— |
ALINUX2-SA-2020:0139: expat security update (Moderate)
CVEs:CVE-2018-20843CVE-2019-15903
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| expat |
affected |
Alibaba Cloud |
expat |
— |
ALINUX2-SA-2020:0140: libvirt security and bug fix update (Moderate)
CVEs:CVE-2019-20485CVE-2020-10703
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libvirt |
affected |
Alibaba Cloud |
libvirt |
— |
ALINUX2-SA-2020:0141: mod_auth_openidc security update (Low)
CVEs:CVE-2019-14857CVE-2019-20479
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| mod_auth_openidc |
affected |
Alibaba Cloud |
mod_auth_openidc |
— |
ALINUX2-SA-2020:0142: hunspell security update (Low)
CVEs:CVE-2019-16707
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| hunspell |
affected |
Alibaba Cloud |
hunspell |
— |
ALINUX2-SA-2020:0143: spamassassin security update (Moderate)
CVEs:CVE-2019-12420
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| spamassassin |
affected |
Alibaba Cloud |
spamassassin |
— |
ALINUX2-SA-2020:0144: subversion security update (Moderate)
CVEs:CVE-2018-11782
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| subversion |
affected |
Alibaba Cloud |
subversion |
— |
ALINUX2-SA-2020:0145: evince and poppler security and bug fix update (Low)
CVEs:CVE-2019-14494
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| evince |
affected |
Alibaba Cloud |
evince |
— |
| poppler |
affected |
Alibaba Cloud |
poppler |
— |
ALINUX2-SA-2020:0146: glib2 and ibus security and bug fix update (Moderate)
CVEs:CVE-2019-12450CVE-2019-14822
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| glib2 |
affected |
Alibaba Cloud |
glib2 |
— |
| ibus |
affected |
Alibaba Cloud |
ibus |
— |
ALINUX 2Exploited2020-10-11
ALINUX2-SA-2020:0147: webkitgtk4 security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2019-11070CVE-2019-6237CVE-2019-6251CVE-2019-8506CVE-2019-8524CVE-2019-8535CVE-2019-8536CVE-2019-8544CVE-2019-8551CVE-2019-8558CVE-2019-8559CVE-2019-8563CVE-2019-8571CVE-2019-8583CVE-2019-8584CVE-2019-8586CVE-2019-8587CVE-2019-8594CVE-2019-8595CVE-2019-8596CVE-2019-8597CVE-2019-8601CVE-2019-8607CVE-2019-8608CVE-2019-8609CVE-2019-8610CVE-2019-8611CVE-2019-8615CVE-2019-8619CVE-2019-8622CVE-2019-8623CVE-2019-8625CVE-2019-8644CVE-2019-8649CVE-2019-8658CVE-2019-8666CVE-2019-8669CVE-2019-8671CVE-2019-8672CVE-2019-8673CVE-2019-8674CVE-2019-8676CVE-2019-8677CVE-2019-8678CVE-2019-8679CVE-2019-8680CVE-2019-8681CVE-2019-8683CVE-2019-8684CVE-2019-8686CVE-2019-8687CVE-2019-8688CVE-2019-8689CVE-2019-8690CVE-2019-8707CVE-2019-8710CVE-2019-8719CVE-2019-8720CVE-2019-8726CVE-2019-8733CVE-2019-8735CVE-2019-8743CVE-2019-8763CVE-2019-8764CVE-2019-8765CVE-2019-8766CVE-2019-8768CVE-2019-8769CVE-2019-8771CVE-2019-8782CVE-2019-8783CVE-2019-8808CVE-2019-8811CVE-2019-8812CVE-2019-8813CVE-2019-8814CVE-2019-8815CVE-2019-8816CVE-2019-8819CVE-2019-8820CVE-2019-8821CVE-2019-8822CVE-2019-8823CVE-2019-8835CVE-2019-8844CVE-2019-8846CVE-2020-10018CVE-2020-11793CVE-2020-3862CVE-2020-3864CVE-2020-3865CVE-2020-3867CVE-2020-3868CVE-2020-3885CVE-2020-3894CVE-2020-3895CVE-2020-3897CVE-2020-3899CVE-2020-3900CVE-2020-3901CVE-2020-3902
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| webkitgtk4 |
affected |
Alibaba Cloud |
webkitgtk4 |
— |
ALINUX2-SA-2020:0148: freeradius security and bug fix update (Moderate)
CVEs:CVE-2019-10143CVE-2019-13456CVE-2019-17185
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| freeradius |
affected |
Alibaba Cloud |
freeradius |
— |
ALINUX2-SA-2020:0149: libxml2 security and bug fix update (Moderate)
CVEs:CVE-2019-19956CVE-2019-20388CVE-2020-7595
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libxml2 |
affected |
Alibaba Cloud |
libxml2 |
— |
ALINUX2-SA-2020:0150: bluez security update (Moderate)
CVEs:CVE-2020-0556
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| bluez |
affected |
Alibaba Cloud |
bluez |
— |
ALINUX2-SA-2020:0151: NetworkManager security and bug fix update (Moderate)
CVEs:CVE-2020-10754
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| NetworkManager |
affected |
Alibaba Cloud |
NetworkManager |
— |
ALINUX2-SA-2020:0152: e2fsprogs security and bug fix update (Moderate)
CVEs:CVE-2019-5094CVE-2019-5188
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| e2fsprogs |
affected |
Alibaba Cloud |
e2fsprogs |
— |
ALINUX2-SA-2020:0121: libmspack security update (Low)
CVEs:CVE-2019-1010305
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libmspack |
affected |
Alibaba Cloud |
libmspack |
— |
ALINUX2-SA-2020:0122: cups security and bug fix update (Moderate)
CVEs:CVE-2017-18190CVE-2019-8675CVE-2019-8696
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| cups |
affected |
Alibaba Cloud |
cups |
— |
ALINUX2-SA-2020:0123: SDL security update (Moderate)
CVEs:CVE-2019-7572CVE-2019-7573CVE-2019-7574CVE-2019-7575CVE-2019-7576CVE-2019-7577CVE-2019-7578CVE-2019-7635CVE-2019-7636CVE-2019-7637CVE-2019-7638
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| SDL |
affected |
Alibaba Cloud |
SDL |
— |
ALINUX2-SA-2020:0124: pcp security, bug fix, and enhancement update (Low)
CVEs:CVE-2019-3695CVE-2019-3696
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| pcp |
affected |
Alibaba Cloud |
pcp |
— |
ALINUX2-SA-2020:0125: libsrtp security and bug fix update (Moderate)
CVEs:CVE-2013-2139CVE-2015-6360
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libsrtp |
affected |
Alibaba Cloud |
libsrtp |
— |
ALINUX2-SA-2020:0126: tigervnc security and bug fix update (Moderate)
CVEs:CVE-2019-15691CVE-2019-15692CVE-2019-15693CVE-2019-15694CVE-2019-15695
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| tigervnc |
affected |
Alibaba Cloud |
tigervnc |
— |
ALINUX2-SA-2020:0127: libvpx security update (Moderate)
CVEs:CVE-2017-0393CVE-2019-9232CVE-2019-9433CVE-2020-0034
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libvpx |
affected |
Alibaba Cloud |
libvpx |
— |
ALINUX2-SA-2020:0128: python-pillow security update (Moderate)
CVEs:CVE-2020-5313
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| python-pillow |
affected |
Alibaba Cloud |
python-pillow |
— |
ALINUX2-SA-2020:0129: libpng security update (Low)
CVEs:CVE-2017-12652
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libpng |
affected |
Alibaba Cloud |
libpng |
— |
ALINUX2-SA-2020:0130: libtiff security update (Moderate)
CVEs:CVE-2019-14973CVE-2019-17546
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libtiff |
affected |
Alibaba Cloud |
libtiff |
— |
ALINUX2-SA-2020:0131: cpio security update (Moderate)
CVEs:CVE-2019-14866
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| cpio |
affected |
Alibaba Cloud |
cpio |
— |
ALINUX2-SA-2020:0132: libssh2 security update (Moderate)
CVEs:CVE-2019-17498
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libssh2 |
affected |
Alibaba Cloud |
libssh2 |
— |
ALINUX2-SA-2020:0133: libsndfile security update (Low)
CVEs:CVE-2018-19662
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libsndfile |
affected |
Alibaba Cloud |
libsndfile |
— |
ALINUX2-SA-2020:0134: openwsman security update (Moderate)
CVEs:CVE-2019-3833
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| openwsman |
affected |
Alibaba Cloud |
openwsman |
— |
ALINUX2-SA-2020:0135: libwmf security and bug fix update (Low)
CVEs:CVE-2019-6978
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| libwmf |
affected |
Alibaba Cloud |
libwmf |
— |
ALINUX2-SA-2020:0136: librabbitmq security update (Moderate)
CVEs:CVE-2019-18609
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| librabbitmq |
affected |
Alibaba Cloud |
librabbitmq |
— |
ALINUX2-SA-2020:0137: python3 security update (Moderate)
CVEs:CVE-2019-16935CVE-2020-8492
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| python3 |
affected |
Alibaba Cloud |
python3 |
— |
ALINUX2-SA-2020:0118: spice and spice-gtk security update (Important)
CVEs:CVE-2020-14355
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| spice |
affected |
Alibaba Cloud |
spice |
— |
| spice-gtk |
affected |
Alibaba Cloud |
spice-gtk |
— |
ALINUX2-SA-2020:0119: squid security update (Important)
CVEs:CVE-2019-12528CVE-2020-15049CVE-2020-15810CVE-2020-15811CVE-2020-24606CVE-2020-8449CVE-2020-8450
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| squid |
affected |
Alibaba Cloud |
squid |
— |
ALINUX2-SA-2020:0120: qemu-kvm security update (Important)
CVEs:CVE-2020-14364CVE-2020-1983
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|
| qemu-kvm |
affected |
Alibaba Cloud |
qemu-kvm |
— |
