ALINUX2-SA-2020:0188
ALINUX 22020-11-25
ALINUX2-SA-2020:0188: firefox security update (Critical)
CVEs:CVE-2020-26950
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| firefox | affected | Alibaba Cloud | firefox | — |
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
ALINUX2-SA-2020:0188: firefox security update (Critical)
CVEs:CVE-2020-26950
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| firefox | affected | Alibaba Cloud | firefox | — |
HOTFIX-BA-2020:0003: kernel-hotfix bugfix update (Important)
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kernel-hotfix-4121479-21.1.al7 | affected | Alibaba Cloud | kernel-hotfix-4121479-21.1.al7 | — |
HOTFIX-BA-2020:0004: kernel-hotfix bugfix update (Important)
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kernel-hotfix-4121479-21.2.al7 | affected | Alibaba Cloud | kernel-hotfix-4121479-21.2.al7 | — |
HOTFIX-BA-2020:0005: kernel-hotfix bugfix update (Important)
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kernel-hotfix-4121479-21.al7 | affected | Alibaba Cloud | kernel-hotfix-4121479-21.al7 | — |
ALINUX2-SA-2020:0187: microcode_ctl security, bug fix, and enhancement update (Moderate)
CVEs:CVE-2020-8695CVE-2020-8696CVE-2020-8698
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| microcode_ctl | affected | Alibaba Cloud | microcode_ctl | — |
ALINUX2-SA-2020:0178: fence-agents security and bug fix update (Low)
CVEs:CVE-2020-11078
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| fence-agents | affected | Alibaba Cloud | fence-agents | — |
ALINUX2-SA-2020:0179: librepo security update (Moderate)
CVEs:CVE-2020-14352
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| librepo | affected | Alibaba Cloud | librepo | — |
ALINUX2-SA-2020:0180: tomcat security update (Low)
CVEs:CVE-2020-1935
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat | affected | Alibaba Cloud | tomcat | — |
ALINUX2-SA-2020:0181: bind security and bug fix update (Moderate)
CVEs:CVE-2020-8622CVE-2020-8623CVE-2020-8624
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| bind | affected | Alibaba Cloud | bind | — |
ALINUX2-SA-2020:0182: libvirt security and bug fix update (Moderate)
CVEs:CVE-2020-25637
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libvirt | affected | Alibaba Cloud | libvirt | — |
ALINUX2-SA-2020:0183: python security update (Moderate)
CVEs:CVE-2019-20907
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python | affected | Alibaba Cloud | python | — |
ALINUX2-SA-2020:0184: qt and qt5-qtbase security update (Moderate)
CVEs:CVE-2020-17507
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| qt | affected | Alibaba Cloud | qt | — |
| qt5-qtbase | affected | Alibaba Cloud | qt5-qtbase | — |
ALINUX2-SA-2020:0185: curl security update (Moderate)
CVEs:CVE-2020-8177
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| curl | affected | Alibaba Cloud | curl | — |
ALINUX2-SA-2020:0186: python3 security update (Moderate)
CVEs:CVE-2019-20907CVE-2020-14422
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python3 | affected | Alibaba Cloud | python3 | — |
ALINUX2-SA-2020:0175: freetype security update (Important)
CVEs:CVE-2020-15999
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| freetype | affected | Alibaba Cloud | freetype | — |
ALINUX2-SA-2020:0176: xorg-x11-server security update (Important)
CVEs:CVE-2020-14345CVE-2020-14346CVE-2020-14361CVE-2020-14362
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| xorg-x11-server | affected | Alibaba Cloud | xorg-x11-server | — |
ALINUX2-SA-2020:0177: libX11 security update (Important)
CVEs:CVE-2020-14363
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libX11 | affected | Alibaba Cloud | libX11 | — |
ALINUX2-SA-2020:0174: java-1.8.0-openjdk security and bug fix update (Moderate)
CVEs:CVE-2020-14779CVE-2020-14781CVE-2020-14782CVE-2020-14792CVE-2020-14796CVE-2020-14797CVE-2020-14803
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.8.0-openjdk | affected | Alibaba Cloud | java-1.8.0-openjdk | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.