Alibaba Security Advisories — September 2023 — Alibaba Security Advisories — Vulnetix

Try Vulnetix Request Demo

Alibaba Security Advisories · September 2023 — Alibaba Security Advisories

4 advisories 18 CVEs

Alibaba Cloud Linux 2 advisories and cross-source Alibaba/Aliyun CVEs for 2023-09. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).

Back to archive Open Console

Advisories

ALINUX2-SA-2023:0039

ALINUX 22023-09-20

ALINUX2-SA-2023:0039: open-vm-tools security update (Important)

CVEs:CVE-2023-20900

Affected products

Product	Status	Vendor	Package	Ecosystem
open-vm-tools	affected	Alibaba Cloud	open-vm-tools	—

Upstream advisory

ALINUX2-SA-2023:0038

ALINUX 22023-09-18

ALINUX2-SA-2023:0038: cups security update (Important)

CVEs:CVE-2023-32360

Affected products

Product	Status	Vendor	Package	Ecosystem
cups	affected	Alibaba Cloud	cups	—

Upstream advisory

ALINUX2-SA-2023:0037

ALINUX 22023-09-15

ALINUX2-SA-2023:0037: subscription-manager security update (Moderate)

CVEs:CVE-2023-3899

Affected products

Product	Status	Vendor	Package	Ecosystem
subscription-manager	affected	Alibaba Cloud	subscription-manager	—

Upstream advisory

ALINUX2-SA-2023:0036

ALINUX 22023-09-14

ALINUX2-SA-2023:0036: cloud-kernel bugfix, enhancement and security update (Important)

CVEs:CVE-2023-0459 CVE-2023-2124 CVE-2023-2162 CVE-2023-30456 CVE-2023-3090 CVE-2023-31084 CVE-2023-3111 CVE-2023-3117 CVE-2023-31436 CVE-2023-3212 CVE-2023-34256 CVE-2023-3609 CVE-2023-3611 CVE-2023-3776 CVE-2023-3812

Affected products

Product	Status	Vendor	Package	Ecosystem
kernel	affected	Alibaba Cloud	kernel	—

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console