AWS Security Advisories — November 2018 — AWS Security Advisories

AWS Security Advisories · November 2018 — AWS Security Advisories

4 advisories 11 CVEs

Amazon Linux (AL1, AL2, AL2023), AWS Security Bulletins, and AWS SDK CVEs for 2018-11. Mirrored into Vulnetix VDB.

Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity).

Back to archive Open Console

Advisories

ALAS-2018-1101

ALAS · AL1Medium2018-11-05

ALAS-2018-1101: python35 (medium)

CVEs:CVE-2018-14647

Affected products

Product	Status	Vendor	Package	Ecosystem
python35	affected	Amazon	python35	—

Upstream advisory

ALAS-2018-1100

ALAS · AL1Important2018-11-05

ALAS-2018-1100: kernel (important)

CVEs:CVE-2018-17972 CVE-2018-18021

Affected products

Product	Status	Vendor	Package	Ecosystem
kernel	affected	Amazon	kernel	—

Upstream advisory

ALAS-2018-1099

ALAS · AL1Medium2018-11-05

ALAS-2018-1099: tomcat7 (medium)

CVEs:CVE-2018-11784

Affected products

Product	Status	Vendor	Package	Ecosystem
tomcat7	affected	Amazon	tomcat7	—

Upstream advisory

ALAS-2018-1097

ALAS · AL1Critical2018-11-05

ALAS-2018-1097: java-1.8.0-openjdk (critical)

CVEs:CVE-2018-3136 CVE-2018-3139 CVE-2018-3149 CVE-2018-3169 CVE-2018-3180 CVE-2018-3183 CVE-2018-3214

Affected products

Product	Status	Vendor	Package	Ecosystem
java-1.8.0-openjdk	affected	Amazon	java-1.8.0-openjdk	—

Upstream advisory

Need live exploit intelligence?

Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.

All months Open Console