AWS-2020-001
AWS Bulletin2020-03-31
Minimum Version of TLS 1.2 Required for FIPS Endpoints by March 31, 2021
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 2 are already weaponised in the wild — see the Exploited section.
Minimum Version of TLS 1.2 Required for FIPS Endpoints by March 31, 2021
ALAS-2020-1355: nss, nss-softokn, nss-util, nspr (important)
CVEs:CVE-2018-0495CVE-2018-12404CVE-2019-11729CVE-2019-11745
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| nss, nss-softokn, nss-util, nspr | affected | Amazon | nss, nss-softokn, nss-util, nspr | — |
ALAS-2020-1356: sudo (important)
CVEs:CVE-2019-18634
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| sudo | affected | Amazon | sudo | — |
ALAS-2020-1354: java-1.7.0-openjdk (important)
CVEs:CVE-2019-2945CVE-2019-2962CVE-2019-2964CVE-2019-2973CVE-2019-2978CVE-2019-2981CVE-2019-2983CVE-2019-2987CVE-2019-2988CVE-2019-2989CVE-2019-2992CVE-2019-2999CVE-2020-2583CVE-2020-2590CVE-2020-2593CVE-2020-2601CVE-2020-2604CVE-2020-2654CVE-2020-2659
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| java-1.7.0-openjdk | affected | Amazon | java-1.7.0-openjdk | — |
ALAS-2020-1353: tomcat8 (important)
CVEs:CVE-2019-17569CVE-2020-1935CVE-2020-1938
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat8 | affected | Amazon | tomcat8 | — |
ALAS-2020-1348: freetype (medium)
CVEs:CVE-2015-9381CVE-2015-9382
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| freetype | affected | Amazon | freetype | — |
ALAS-2020-1349: kernel (medium)
CVEs:CVE-2019-15918CVE-2019-20096
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kernel | affected | Amazon | kernel | — |
ALAS-2020-1350: php72 (medium)
CVEs:CVE-2020-7061CVE-2020-7062CVE-2020-7063
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| php72 | affected | Amazon | php72 | — |
ALAS-2020-1351: php73 (medium)
CVEs:CVE-2020-7061CVE-2020-7062CVE-2020-7063
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| php73 | affected | Amazon | php73 | — |
ALAS-2020-1352: tomcat7 (important)
CVEs:CVE-2019-17569CVE-2020-1935CVE-2020-1938
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| tomcat7 | affected | Amazon | tomcat7 | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.