Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 2 are already weaponised in the wild — see the Exploited section.
ALAS-2016-701: mysql56 (critical)
CVEs:CVE-2016-0639CVE-2016-0642CVE-2016-0643CVE-2016-0647CVE-2016-0648CVE-2016-0655CVE-2016-0666CVE-2016-0705CVE-2016-2047
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mysql56 | affected | Amazon | mysql56 | — |
ALAS-2016-702: nspr, nss-util, nss, nss-softokn (medium)
CVEs:CVE-2016-1978CVE-2016-1979
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| nspr, nss-util, nss, nss-softokn | affected | Amazon | nspr, nss-util, nss, nss-softokn | — |
ALAS-2016-703: kernel (medium)
CVEs:CVE-2015-8839CVE-2016-0758CVE-2016-3961CVE-2016-4485CVE-2016-4486CVE-2016-4557CVE-2016-4558CVE-2016-4565CVE-2016-4581
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kernel | affected | Amazon | kernel | — |
ALAS-2016-699: ImageMagick (important)
CVEs:CVE-2016-3714CVE-2016-3715CVE-2016-3716CVE-2016-3717CVE-2016-3718
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| ImageMagick | affected | Amazon | ImageMagick | — |
ALAS-2016-700: java-1.6.0-openjdk (critical)
CVEs:CVE-2016-0686CVE-2016-0687CVE-2016-0695CVE-2016-3425CVE-2016-3427
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.6.0-openjdk | affected | Amazon | java-1.6.0-openjdk | — |
ALAS-2016-695: openssl (important)
CVEs:CVE-2016-2105CVE-2016-2106CVE-2016-2107CVE-2016-2108CVE-2016-2109
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| openssl | affected | Amazon | openssl | — |
ALAS-2016-696: graphite2 (important)
CVEs:CVE-2016-1521CVE-2016-1522CVE-2016-1523CVE-2016-1526
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| graphite2 | affected | Amazon | graphite2 | — |
ALAS-2016-697: mercurial (important)
CVEs:CVE-2016-3068CVE-2016-3069CVE-2016-3630
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| mercurial | affected | Amazon | mercurial | — |
ALAS-2016-698: php56, php55 (important)
CVEs:CVE-2015-8865CVE-2016-3074CVE-2016-4070CVE-2016-4071CVE-2016-4072CVE-2016-4073
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| php56, php55 | affected | Amazon | php56, php55 | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.