ALAS-2014-438
ALAS · AL1Medium2014-10-28
ALAS-2014-438: cups (medium)
CVEs:CVE-2014-2856CVE-2014-3537CVE-2014-5029CVE-2014-5030CVE-2014-5031
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| cups | affected | Amazon | cups | — |
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).
ALAS-2014-438: cups (medium)
CVEs:CVE-2014-2856CVE-2014-3537CVE-2014-5029CVE-2014-5030CVE-2014-5031
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| cups | affected | Amazon | cups | — |
ALAS-2014-437: golang (medium)
CVEs:CVE-2014-7189
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| golang | affected | Amazon | golang | — |
ALAS-2014-436: xerces-j2 (medium)
CVEs:CVE-2013-4002
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| xerces-j2 | affected | Amazon | xerces-j2 | — |
ALAS-2014-435: php55 (important)
CVEs:CVE-2014-3668CVE-2014-3669CVE-2014-3670
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| php55 | affected | Amazon | php55 | — |
ALAS-2014-434: php54 (important)
CVEs:CVE-2014-3668CVE-2014-3669CVE-2014-3670
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| php54 | affected | Amazon | php54 | — |
ALAS-2014-433: squid (important)
CVEs:CVE-2013-4115CVE-2014-0128CVE-2014-3609
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| squid | affected | Amazon | squid | — |
ALAS-2014-431: java-1.7.0-openjdk (important)
CVEs:CVE-2014-6457CVE-2014-6502CVE-2014-6504CVE-2014-6506CVE-2014-6511CVE-2014-6512CVE-2014-6517CVE-2014-6519CVE-2014-6531CVE-2014-6558
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.7.0-openjdk | affected | Amazon | java-1.7.0-openjdk | — |
ALAS-2014-432: java-1.8.0-openjdk (important)
CVEs:CVE-2014-6457CVE-2014-6468CVE-2014-6502CVE-2014-6504CVE-2014-6506CVE-2014-6511CVE-2014-6512CVE-2014-6517CVE-2014-6519CVE-2014-6531CVE-2014-6558CVE-2014-6562
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.8.0-openjdk | affected | Amazon | java-1.8.0-openjdk | — |
ALAS-2014-430: java-1.6.0-openjdk (important)
CVEs:CVE-2014-6457CVE-2014-6502CVE-2014-6504CVE-2014-6506CVE-2014-6511CVE-2014-6512CVE-2014-6517CVE-2014-6519CVE-2014-6531CVE-2014-6558
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.6.0-openjdk | affected | Amazon | java-1.6.0-openjdk | — |
ALAS-2014-428: mysql55 (important)
CVEs:CVE-2014-6491CVE-2014-6494CVE-2014-6500CVE-2014-6559
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mysql55 | affected | Amazon | mysql55 | — |
ALAS-2014-429: nss (important)
CVEs:CVE-2014-3566
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| nss | affected | Amazon | nss | — |
ALAS-2014-427: openssl (important)
CVEs:CVE-2014-3513CVE-2014-3567CVE-2014-3568
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| openssl | affected | Amazon | openssl | — |
ALAS-2014-426: openssl (important)
CVEs:CVE-2014-3566
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| openssl | affected | Amazon | openssl | — |
ALAS-2014-425: python-oauth2 (medium)
CVEs:CVE-2013-4346CVE-2013-4347
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python-oauth2 | affected | Amazon | python-oauth2 | — |
ALAS-2014-422: nss-util (important)
CVEs:CVE-2014-1568
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| nss-util | affected | Amazon | nss-util | — |
ALAS-2014-423: nss-softokn (important)
CVEs:CVE-2014-1568
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| nss-softokn | affected | Amazon | nss-softokn | — |
ALAS-2014-424: nss (important)
CVEs:CVE-2014-1568
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| nss | affected | Amazon | nss | — |
ALAS-2014-420: GraphicsMagick (medium)
CVEs:CVE-2014-1947
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| GraphicsMagick | affected | Amazon | GraphicsMagick | — |
ALAS-2014-421: nginx (medium)
CVEs:CVE-2014-3616
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| nginx | affected | Amazon | nginx | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.