Alibaba Security Advisories — August 2022 — Alibaba Security Advisories

Alibaba Security Advisories · August 2022 — Alibaba Security Advisories

3 advisories 3 CVEs 1 EXPLOITED

Alibaba Cloud Linux 2 advisories and cross-source Alibaba/Aliyun CVEs for 2022-08. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.

Back to archive Open Console

Advisories

ALINUX2-SA-2022:0038

ALINUX 22022-08-29

ALINUX2-SA-2022:0038: cloud-kernel bugfix, enhancement and security update (Important)

CVEs:CVE-2022-2978

Affected products

Product	Status	Vendor	Package	Ecosystem
kernel	affected	Alibaba Cloud	kernel	—

Upstream advisory

ALINUX2-SA-2022:0037

ALINUX 22022-08-26

ALINUX2-SA-2022:0037: rsync security update (Important)

CVEs:CVE-2022-29154

Affected products

Product	Status	Vendor	Package	Ecosystem
rsync	affected	Alibaba Cloud	rsync	—

Upstream advisory

ALINUX2-SA-2022:0036

ALINUX 2Exploited2022-08-17

ALINUX2-SA-2022:0036: cloud-kernel bugfix, enhancement and security update (Important)

CVEs:CVE-2022-2586

Affected products

Product	Status	Vendor	Package	Ecosystem
kernel	affected	Alibaba Cloud	kernel	—

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console