ALAS-2022-1582
ALAS · AL1Medium2022-04-28
ALAS-2022-1582: containerd, docker (medium)
CVEs:CVE-2022-24769
Affected products
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| containerd, docker | affected | Amazon | containerd, docker | — |
Every advisory below is enriched with the Vulnetix VDB exploit-intelligence chip (hover a CVE ID in the interactive page to see CVSS, EPSS, KEV status, and PoC maturity). 1 is already weaponised in the wild — see the Exploited section.
ALAS-2022-1582: containerd, docker (medium)
CVEs:CVE-2022-24769
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| containerd, docker | affected | Amazon | containerd, docker | — |
ALAS-2022-1583: golang (important)
CVEs:CVE-2021-27919CVE-2021-38297CVE-2021-41771CVE-2021-41772CVE-2021-44716CVE-2021-44717
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| golang | affected | Amazon | golang | — |
ALAS-2022-1584: httpd24 (important)
CVEs:CVE-2022-22719CVE-2022-22720CVE-2022-22721CVE-2022-23943
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| httpd24 | affected | Amazon | httpd24 | — |
ALAS-2022-1580: log4j-cve-2021-44228-hotpatch (important)
CVEs:CVE-2022-0070
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| log4j-cve-2021-44228-hotpatch | affected | Amazon | log4j-cve-2021-44228-hotpatch | — |
ALAS-2022-1581: kernel (important)
CVEs:CVE-2022-26490CVE-2022-27666CVE-2022-28356
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kernel | affected | Amazon | kernel | — |
Reported Apache Log4j Hotpatch Issues
CVEs:CVE-2021-3100CVE-2021-3101CVE-2021-44228CVE-2021-45046CVE-2022-0070CVE-2022-0071
Reported AWS Desktop VPN Client for Windows Issue
Reported Amazon RDS PostgreSQL issue
ALAS-2022-1576: glibc (medium)
CVEs:CVE-2022-23218CVE-2022-23219
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| glibc | affected | Amazon | glibc | — |
ALAS-2022-1577: kernel (important)
CVEs:CVE-2022-1015CVE-2022-1016CVE-2022-20368CVE-2022-48855
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| kernel | affected | Amazon | kernel | — |
ALAS-2022-1578: libgcrypt (medium)
CVEs:CVE-2021-33560
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| libgcrypt | affected | Amazon | libgcrypt | — |
ALAS-2022-1579: vim (medium)
CVEs:CVE-2022-0393CVE-2022-0408CVE-2022-0413CVE-2022-0417CVE-2022-0443CVE-2022-0554CVE-2022-0572CVE-2022-0629CVE-2022-0685CVE-2022-0696CVE-2022-0714CVE-2022-0729CVE-2022-0943
| Product | Status | Vendor | Package | Ecosystem |
|---|---|---|---|---|
| vim | affected | Amazon | vim | — |
Every CVE above is indexed in the Vulnetix VDB with KEV, EPSS, and PoC maturity. The interactive page surfaces that on hover.