AWS Security Advisories — April 2017 — AWS Security Advisories

ALAS-2017-826

ALAS · AL1Important2017-04-27

ALAS-2017-826: bind (important)

CVEs:CVE-2017-3136 CVE-2017-3137

Affected products

Product	Status	Vendor	Package	Ecosystem
bind	affected	Amazon	bind	—

Upstream advisory

ALAS-2017-825

ALAS · AL1Critical2017-04-27

ALAS-2017-825: nss, nss-util (critical)

CVEs:CVE-2017-5461

Affected products

Product	Status	Vendor	Package	Ecosystem
nss, nss-util	affected	Amazon	nss, nss-util	—

Upstream advisory

ALAS-2017-824

ALAS · AL1Important2017-04-27

ALAS-2017-824: 389-ds-base (important)

CVEs:CVE-2017-2668

Affected products

Product	Status	Vendor	Package	Ecosystem
389-ds-base	affected	Amazon	389-ds-base	—

Upstream advisory

ALAS-2017-823

ALAS · AL1Medium2017-04-27

ALAS-2017-823: util-linux (medium)

CVEs:CVE-2017-2616

Affected products

Product	Status	Vendor	Package	Ecosystem
util-linux	affected	Amazon	util-linux	—

Upstream advisory

ALAS-2017-822

ALAS · AL1Important2017-04-20

ALAS-2017-822: tomcat7, tomcat8 (important)

CVEs:CVE-2017-5647 CVE-2017-5648

Affected products

Product	Status	Vendor	Package	Ecosystem
tomcat7, tomcat8	affected	Amazon	tomcat7, tomcat8	—

Upstream advisory

ALAS-2017-821

ALAS · AL1Important2017-04-20

ALAS-2017-821: tomcat6 (important)

CVEs:CVE-2017-5647

Affected products

Product	Status	Vendor	Package	Ecosystem
tomcat6	affected	Amazon	tomcat6	—

Upstream advisory

ALAS-2017-820

ALAS · AL1Medium2017-04-20

ALAS-2017-820: GraphicsMagick (medium)

CVEs:CVE-2016-7800 CVE-2016-7996 CVE-2016-7997 CVE-2016-8682 CVE-2016-8683 CVE-2016-8684 CVE-2016-9830 CVE-2017-6335

Affected products

Product	Status	Vendor	Package	Ecosystem
GraphicsMagick	affected	Amazon	GraphicsMagick	—

Upstream advisory

ALAS-2017-819

ALAS · AL1Medium2017-04-20

ALAS-2017-819: R (medium)

CVEs:CVE-2017-8714

Affected products

Product	Status	Vendor	Package	Ecosystem
R	affected	Amazon	R	—

Upstream advisory

ALAS-2017-818

ALAS · AL1Medium2017-04-20

ALAS-2017-818: munin (medium)

CVEs:CVE-2017-6188

Affected products

Product	Status	Vendor	Package	Ecosystem
munin	affected	Amazon	munin	—

Upstream advisory

ALAS-2017-817

ALAS · AL1Medium2017-04-20

ALAS-2017-817: cacti (medium)

CVEs:CVE-2014-4000

Affected products

Product	Status	Vendor	Package	Ecosystem
cacti	affected	Amazon	cacti	—

Upstream advisory

ALAS-2017-816

ALAS · AL1Medium2017-04-20

ALAS-2017-816: ntp (medium)

CVEs:CVE-2017-6451 CVE-2017-6458 CVE-2017-6462 CVE-2017-6463 CVE-2017-6464

Affected products

Product	Status	Vendor	Package	Ecosystem
ntp	affected	Amazon	ntp	—

Upstream advisory

ALAS-2017-815

ALAS · AL1Medium2017-04-06

ALAS-2017-815: gnutls (medium)

CVEs:CVE-2016-8610 CVE-2017-5335 CVE-2017-5336 CVE-2017-5337

Affected products

Product	Status	Vendor	Package	Ecosystem
gnutls	affected	Amazon	gnutls	—

Upstream advisory

ALAS-2017-814

ALAS · AL1Medium2017-04-06

ALAS-2017-814: kernel (medium)

CVEs:CVE-2017-5669 CVE-2017-5986 CVE-2017-6353

Affected products

Product	Status	Vendor	Package	Ecosystem
kernel	affected	Amazon	kernel	—

Upstream advisory

ALAS-2017-813

ALAS · AL1Medium2017-04-04

ALAS-2017-813: wireshark (medium)

CVEs:CVE-2013-4075 CVE-2015-3811 CVE-2015-3812 CVE-2015-3813

Affected products

Product	Status	Vendor	Package	Ecosystem
wireshark	affected	Amazon	wireshark	—

Upstream advisory

Advisories

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Affected products

Need live exploit intelligence?