Alibaba Security Advisories — April 2024 — Alibaba Security Advisories

Alibaba Security Advisories · April 2024 — Alibaba Security Advisories

3 advisories 15 CVEs

Alibaba Cloud Linux 2 advisories and cross-source Alibaba/Aliyun CVEs for 2024-04. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).

Back to archive Open Console

Advisories

ALINUX2-SA-2024:0016

ALINUX 22024-04-24

ALINUX2-SA-2024:0016: shim security update (Important)

CVEs:CVE-2023-40546 CVE-2023-40547 CVE-2023-40548 CVE-2023-40549 CVE-2023-40550 CVE-2023-40551

Affected products

Product	Status	Vendor	Package	Ecosystem
shim	affected	Alibaba Cloud	shim	—
shim-signed	affected	Alibaba Cloud	shim-signed	—

Upstream advisory

ALINUX2-SA-2024:0014

ALINUX 22024-04-15

ALINUX2-SA-2024:0014: xorg-x11-server security update (Important)

CVEs:CVE-2024-31080 CVE-2024-31081 CVE-2024-31083

Affected products

Product	Status	Vendor	Package	Ecosystem
xorg-x11-server	affected	Alibaba Cloud	xorg-x11-server	—

Upstream advisory

ALINUX2-SA-2024:0015

ALINUX 22024-04-15

ALINUX2-SA-2024:0015: squid security update (Important)

CVEs:CVE-2023-46724 CVE-2023-46728 CVE-2023-49285 CVE-2023-49286 CVE-2023-50269 CVE-2024-25617

Affected products

Product	Status	Vendor	Package	Ecosystem
squid	affected	Alibaba Cloud	squid	—

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console