Important: graphite2

🗓️ 03 May 2016 00:00:00Reported by AmazonType

Vulnerabilities in Graphite2 could allow remote attackers to execute arbitrary code or cause a denial of service. Update to graphite2-1.3.6-1.9.amzn

Reporter	Title	Published	Views	Family All 193
IBM Security Bulletins	Security Bulletin: Multiple Mozilla Firefox vulnerability issues in IBM Storwize V7000 Unified.	18 Jun 201800:28	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Mozilla Firefox libgraphite affect PowerKVM (CVE-2016-1521, CVE-2016-1522, CVE-2016-1523, CVE-2016-1526)	18 Jun 201801:32	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple Mozilla Firefox vulnerability issues in IBM SONAS	18 Jun 201800:28	–	ibm
FreeBSD	graphite2 -- code execution vulnerability	5 Feb 201600:00	–	freebsd
Tenable Nessus	Amazon Linux AMI : graphite2 (ALAS-2016-696)	4 May 201600:00	–	nessus
Tenable Nessus	CentOS 5 / 6 / 7 : firefox (CESA-2016:0197)	17 Feb 201600:00	–	nessus
Tenable Nessus	CentOS 5 / 6 / 7 : thunderbird (CESA-2016:0258)	19 Feb 201600:00	–	nessus
Tenable Nessus	CentOS 7 : graphite2 (CESA-2016:0594)	7 Apr 201600:00	–	nessus
Tenable Nessus	CentOS 5 / 6 / 7 : firefox (CESA-2016:0695)	27 Apr 201600:00	–	nessus
Tenable Nessus	Debian DSA-3477-1 : iceweasel - security update	15 Feb 201600:00	–	nessus

OS	OS Version	Architecture	Package	Package Version	Filename
Amazon Linux	1	i686	graphite2	1.3.6-1.9.amzn1	graphite2-1.3.6-1.9.amzn1.i686.rpm
Amazon Linux	1	x86_64	graphite2	1.3.6-1.9.amzn1	graphite2-1.3.6-1.9.amzn1.x86_64.rpm
Amazon Linux	1	i686	graphite2-debuginfo	1.3.6-1.9.amzn1	graphite2-debuginfo-1.3.6-1.9.amzn1.i686.rpm
Amazon Linux	1	x86_64	graphite2-debuginfo	1.3.6-1.9.amzn1	graphite2-debuginfo-1.3.6-1.9.amzn1.x86_64.rpm
Amazon Linux	1	i686	graphite2-devel	1.3.6-1.9.amzn1	graphite2-devel-1.3.6-1.9.amzn1.i686.rpm
Amazon Linux	1	x86_64	graphite2-devel	1.3.6-1.9.amzn1	graphite2-devel-1.3.6-1.9.amzn1.x86_64.rpm

03 May 2016 00:00Current

9.2High risk

Vulners AI Score9.2

CVSS 29.3

CVSS 38.8

EPSS0.02415