AWS Security Advisories · April 2016 — AWS Security Advisories
13 advisories 80 CVEs 2 EXPLOITED

Amazon Linux (AL1, AL2, AL2023), AWS Security Bulletins, and AWS SDK CVEs for 2016-04. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 2 are already weaponised in the wild — see the Exploited section.

Advisories

ALAS-2016-692

ALAS · AL1Important2016-04-27

ALAS-2016-692: apache-commons-collections (important)

Affected products

ProductStatusVendorPackageEcosystem
apache-commons-collections affected Amazon apache-commons-collections
Upstream advisory

ALAS-2016-689

ALAS · AL1Important2016-04-21

ALAS-2016-689: postgresql8 (important)

CVEs:CVE-2016-0773

Affected products

ProductStatusVendorPackageEcosystem
postgresql8 affected Amazon postgresql8
Upstream advisory

ALAS-2016-685

ALAS · AL1Medium2016-04-13

ALAS-2016-685: php56, php55 (medium)

CVEs:CVE-2016-2554

Affected products

ProductStatusVendorPackageEcosystem
php56, php55 affected Amazon php56, php55
Upstream advisory

ALAS-2016-684

ALAS · AL1Important2016-04-06

ALAS-2016-684: mysql56 (important)

CVEs:CVE-2015-4766CVE-2015-4791CVE-2015-4792CVE-2015-4800CVE-2015-4802CVE-2015-4807CVE-2015-4815CVE-2015-4819CVE-2015-4826CVE-2015-4830CVE-2015-4833CVE-2015-4836CVE-2015-4858CVE-2015-4861CVE-2015-4862CVE-2015-4864CVE-2015-4866CVE-2015-4870CVE-2015-4879CVE-2015-4890CVE-2015-4895CVE-2015-4904CVE-2015-4905CVE-2015-4910CVE-2015-4913CVE-2015-7744CVE-2016-0502CVE-2016-0503CVE-2016-0504CVE-2016-0505CVE-2016-0546CVE-2016-0594CVE-2016-0595CVE-2016-0596CVE-2016-0597CVE-2016-0598CVE-2016-0599CVE-2016-0600CVE-2016-0601CVE-2016-0605CVE-2016-0606CVE-2016-0607CVE-2016-0608CVE-2016-0609CVE-2016-0610CVE-2016-0611CVE-2016-0616

Affected products

ProductStatusVendorPackageEcosystem
mysql56 affected Amazon mysql56
Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.