ALINUX2-SA-2024:0009
ALINUX 22024-01-26
ALINUX2-SA-2024:0009: python-pillow security update (Moderate)
CVEs:CVE-2023-44271
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python-pillow | affected | Alibaba Cloud | python-pillow | — |
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).
ALINUX2-SA-2024:0009: python-pillow security update (Moderate)
CVEs:CVE-2023-44271
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python-pillow | affected | Alibaba Cloud | python-pillow | — |
ALINUX2-SA-2024:0008: LibRaw security update (Moderate)
CVEs:CVE-2021-32142
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| LibRaw | affected | Alibaba Cloud | LibRaw | — |
ALINUX2-SA-2024:0007: curl security update (Low)
CVEs:CVE-2021-22947CVE-2022-43552
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| curl | affected | Alibaba Cloud | curl | — |
ALINUX2-SA-2024:0006: openssh security update (Moderate)
CVEs:CVE-2023-51385
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| openssh | affected | Alibaba Cloud | openssh | — |
ALINUX2-SA-2024:0003: gstreamer-plugins-bad-free security update (Important)
CVEs:CVE-2023-44446
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| gstreamer-plugins-bad-free | affected | Alibaba Cloud | gstreamer-plugins-bad-free | — |
ALINUX2-SA-2024:0004: java-1.8.0-openjdk security and bug fix update (Important)
CVEs:CVE-2024-20918CVE-2024-20919CVE-2024-20921CVE-2024-20926CVE-2024-20945CVE-2024-20952
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.8.0-openjdk | affected | Alibaba Cloud | java-1.8.0-openjdk | — |
ALINUX2-SA-2024:0005: java-11-openjdk security update (Important)
CVEs:CVE-2024-20918CVE-2024-20919CVE-2024-20921CVE-2024-20926CVE-2024-20945CVE-2024-20952
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-11-openjdk | affected | Alibaba Cloud | java-11-openjdk | — |
ALINUX2-SA-2024:0001: gstreamer1-plugins-bad-free security update (Important)
CVEs:CVE-2023-44446
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| gstreamer1-plugins-bad-free | affected | Alibaba Cloud | gstreamer1-plugins-bad-free | — |
ALINUX2-SA-2024:0002: xorg-x11-server security update (Important)
CVEs:CVE-2023-6377CVE-2023-6478
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| xorg-x11-server | affected | Alibaba Cloud | xorg-x11-server | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.