Alibaba Security Advisories — November 2023 — Alibaba Security Advisories

Alibaba Security Advisories · November 2023 — Alibaba Security Advisories

4 advisories 5 CVEs

Alibaba Cloud Linux 2 advisories and cross-source Alibaba/Aliyun CVEs for 2023-11. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).

Back to archive Open Console

Advisories

ALINUX2-SA-2023:0048

ALINUX 22023-11-17

ALINUX2-SA-2023:0048: open-vm-tools security update (Important)

CVEs:CVE-2023-34058 CVE-2023-34059

Affected products

Product	Status	Vendor	Package	Ecosystem
open-vm-tools	affected	Alibaba Cloud	open-vm-tools	—

Upstream advisory

ALINUX2-SA-2023:0045

ALINUX 22023-11-13

ALINUX2-SA-2023:0045: squid security update (Critical)

CVEs:CVE-2023-46847

Affected products

Product	Status	Vendor	Package	Ecosystem
squid	affected	Alibaba Cloud	squid	—

Upstream advisory

ALINUX2-SA-2023:0046

ALINUX 22023-11-13

ALINUX2-SA-2023:0046: xorg-x11-server security update (Important)

CVEs:CVE-2023-5367

Affected products

Product	Status	Vendor	Package	Ecosystem
xorg-x11-server	affected	Alibaba Cloud	xorg-x11-server	—

Upstream advisory

ALINUX2-SA-2023:0047

ALINUX 22023-11-13

ALINUX2-SA-2023:0047: python3 security update (Important)

CVEs:CVE-2023-40217

Affected products

Product	Status	Vendor	Package	Ecosystem
python3	affected	Alibaba Cloud	python3	—

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console