ALAS-2019-1252
ALAS · AL1Important2019-07-25
ALAS-2019-1252: exim (important)
CVEs:CVE-2019-13917
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| exim | affected | Amazon | exim | — |
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
ALAS-2019-1252: exim (important)
CVEs:CVE-2019-13917
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| exim | affected | Amazon | exim | — |
ALAS-2019-1246: dbus (medium)
CVEs:CVE-2019-12749
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| dbus | affected | Amazon | dbus | — |
ALAS-2019-1245: docker (medium)
CVEs:CVE-2018-15664
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| docker | affected | Amazon | docker | — |
ALAS-2019-1244: bind (important)
CVEs:CVE-2018-5743
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| bind | affected | Amazon | bind | — |
ALAS-2019-1243: python35 (medium)
CVEs:CVE-2019-9636CVE-2019-9740CVE-2019-9947
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python35 | affected | Amazon | python35 | — |
ALAS-2019-1242: python34 (medium)
CVEs:CVE-2019-9740CVE-2019-9947
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python34 | affected | Amazon | python34 | — |
ALAS-2019-1241: libxslt (medium)
CVEs:CVE-2019-11068
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libxslt | affected | Amazon | libxslt | — |
ALAS-2019-1240: php71, php72, php73 (medium)
CVEs:CVE-2019-11038CVE-2019-11039CVE-2019-11040
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| php71, php72, php73 | affected | Amazon | php71, php72, php73 | — |
ALAS-2019-1239: vim (important)
CVEs:CVE-2019-12735
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| vim | affected | Amazon | vim | — |
ALAS-2019-1238: golang (medium)
CVEs:CVE-2019-9741
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| golang | affected | Amazon | golang | — |
ALAS-2019-1237: php54-pecl-imagick, php55-pecl-imagick, php56-pecl-imagick, php70-pecl-imagick, php71-pecl-imagick, php72-pecl-imagick (medium)
CVEs:CVE-2019-11037
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| php54-pecl-imagick, php55-pecl-imagick, php56-pecl-imagick, php70-pecl-imagick, php71-pecl-imagick, php72-pecl-imagick | affected | Amazon | php54-pecl-imagick, php55-pecl-imagick, php56-pecl-imagick, php70-pecl-imagick, php71-pecl-imagick, php72-pecl-imagick | — |
ALAS-2019-1236: python-urllib3 (medium)
CVEs:CVE-2019-11236
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| python-urllib3 | affected | Amazon | python-urllib3 | — |
ALAS-2019-1235: tomcat7 (low)
CVEs:CVE-2019-0221
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat7 | affected | Amazon | tomcat7 | — |
ALAS-2019-1234: tomcat8 (important)
CVEs:CVE-2019-0199CVE-2019-0221
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat8 | affected | Amazon | tomcat8 | — |
ALAS-2019-1233: curl (low)
CVEs:CVE-2019-5435CVE-2019-5436
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| curl | affected | Amazon | curl | — |
ALAS-2019-1232: kernel (important)
CVEs:CVE-2019-11599CVE-2019-13272CVE-2019-3900
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kernel | affected | Amazon | kernel | — |
Kubernetes Security Issue (CVE-2019-11246)
CVEs:CVE-2019-11246
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.