Alibaba Security Advisories — September 2024 — Alibaba Security Advisories

Alibaba Security Advisories · September 2024 — Alibaba Security Advisories

4 advisories 10 CVEs

Alibaba Cloud Linux 2 advisories and cross-source Alibaba/Aliyun CVEs for 2024-09. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).

Back to archive Open Console

Advisories

ALINUX2-SA-2024:0034

ALINUX 22024-09-24

ALINUX2-SA-2024:0034: java-11-openjdk security update (Important)

CVEs:CVE-2024-21131 CVE-2024-21138 CVE-2024-21140 CVE-2024-21144 CVE-2024-21145 CVE-2024-21147

Affected products

Product	Status	Vendor	Package	Ecosystem
java-11-openjdk	affected	Alibaba Cloud	java-11-openjdk	—

Upstream advisory

ALINUX2-SA-2024:0031

ALINUX 22024-09-18

ALINUX2-SA-2024:0031: freeradius security update (Important)

CVEs:CVE-2024-3596

Affected products

Product	Status	Vendor	Package	Ecosystem
freeradius	affected	Alibaba Cloud	freeradius	—

Upstream advisory

ALINUX2-SA-2024:0032

ALINUX 22024-09-18

ALINUX2-SA-2024:0032: linux-firmware security update (Important)

CVEs:CVE-2023-31315

Affected products

Product	Status	Vendor	Package	Ecosystem
linux-firmware	affected	Alibaba Cloud	linux-firmware	—

Upstream advisory

ALINUX2-SA-2024:0033

ALINUX 22024-09-18

ALINUX2-SA-2024:0033: bind security update (Important)

CVEs:CVE-2024-1737 CVE-2024-1975

Affected products

Product	Status	Vendor	Package	Ecosystem
bind	affected	Alibaba Cloud	bind	—

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console