Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
amazonAmazonALAS-2023-2369
HistoryNov 29, 2023 - 10:20 p.m.

Low: gmp

2023-11-2922:20:00
alas.aws.amazon.com
12
gmp
integer overflow
system crash
update
vulnerability
cve-2021-43618
red hat
mitre
unix

6.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.9%

JSON

Issue Overview:

A flaw was found in gmp. An integer overflow vulnerability could allow an attacker to input an integer value leading to a crash. The highest threat from this vulnerability is to system availability. (CVE-2021-43618)

Affected Packages:

gmp

Note:

This advisory is applicable to Amazon Linux 2 (AL2) Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories.

Issue Correction:
Run yum update gmp to update your system.

New Packages:

aarch64:  
    gmp-6.0.0-15.amzn2.0.3.aarch64  
    gmp-devel-6.0.0-15.amzn2.0.3.aarch64  
    gmp-static-6.0.0-15.amzn2.0.3.aarch64  
    gmp-debuginfo-6.0.0-15.amzn2.0.3.aarch64  
  
i686:  
    gmp-6.0.0-15.amzn2.0.3.i686  
    gmp-devel-6.0.0-15.amzn2.0.3.i686  
    gmp-static-6.0.0-15.amzn2.0.3.i686  
    gmp-debuginfo-6.0.0-15.amzn2.0.3.i686  
  
src:  
    gmp-6.0.0-15.amzn2.0.3.src  
  
x86_64:  
    gmp-6.0.0-15.amzn2.0.3.x86_64  
    gmp-devel-6.0.0-15.amzn2.0.3.x86_64  
    gmp-static-6.0.0-15.amzn2.0.3.x86_64  
    gmp-debuginfo-6.0.0-15.amzn2.0.3.x86_64

Additional References

Red Hat: CVE-2021-43618

Mitre: CVE-2021-43618

OSVersionArchitecturePackageVersionFilename
Amazon Linux2aarch64gmp< 6.0.0-15.amzn2.0.3gmp-6.0.0-15.amzn2.0.3.aarch64.rpm
Amazon Linux2aarch64gmp-devel< 6.0.0-15.amzn2.0.3gmp-devel-6.0.0-15.amzn2.0.3.aarch64.rpm
Amazon Linux2aarch64gmp-static< 6.0.0-15.amzn2.0.3gmp-static-6.0.0-15.amzn2.0.3.aarch64.rpm
Amazon Linux2aarch64gmp-debuginfo< 6.0.0-15.amzn2.0.3gmp-debuginfo-6.0.0-15.amzn2.0.3.aarch64.rpm
Amazon Linux2i686gmp< 6.0.0-15.amzn2.0.3gmp-6.0.0-15.amzn2.0.3.i686.rpm
Amazon Linux2i686gmp-devel< 6.0.0-15.amzn2.0.3gmp-devel-6.0.0-15.amzn2.0.3.i686.rpm
Amazon Linux2i686gmp-static< 6.0.0-15.amzn2.0.3gmp-static-6.0.0-15.amzn2.0.3.i686.rpm
Amazon Linux2i686gmp-debuginfo< 6.0.0-15.amzn2.0.3gmp-debuginfo-6.0.0-15.amzn2.0.3.i686.rpm
Amazon Linux2x86_64gmp< 6.0.0-15.amzn2.0.3gmp-6.0.0-15.amzn2.0.3.x86_64.rpm
Amazon Linux2x86_64gmp-devel< 6.0.0-15.amzn2.0.3gmp-devel-6.0.0-15.amzn2.0.3.x86_64.rpm
Rows per page:
1-10 of 121

Related

nessus 33
cloudfoundry 1
suse 2
veracode 1
oraclelinux 2
cve 1
redhatcve 1
redhat 37
openvas 21
debian 1
cvelist 1
osv 6
ubuntu 2
cbl_mariner 2
wolfi 1
prion 1
debiancve 1
almalinux 2
mageia 1
gentoo 1
cgr 1
alpinelinux 1
ubuntucve 1
photon 1
ibm 1
ics 1
avleonov 1
nessus
nessus
Debian DLA-2837-1 : gmp - LTS security update
2021-12-03 00:00:00
EulerOS 2.0 SP10 : gmp (EulerOS-SA-2022-1241)
2022-02-25 00:00:00
GLSA-202309-13 : GMP: Buffer Overflow Vulnerability
2023-09-29 00:00:00
cloudfoundry
cloudfoundry
USN-5672-1: GMP vulnerability | Cloud Foundry
2022-12-07 00:00:00
suse
suse
Security update for gmp (moderate)
2021-12-10 00:00:00
Security update for gmp (moderate)
2021-12-06 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-01-29 22:06:18
oraclelinux
oraclelinux
gmp security and enhancement update
2023-11-11 00:00:00
gmp security update
2024-05-23 00:00:00
cve
cve
CVE-2021-43618
2021-11-15 04:15:00
redhatcve
redhatcve
CVE-2021-43618
2021-11-19 14:06:47
redhat
redhat
(RHSA-2023:6661) Low: gmp security and enhancement update
2023-11-07 06:11:04
(RHSA-2024:1102) Moderate: gmp security update
2024-03-05 10:44:52
(RHSA-2024:3214) Moderate: gmp security update
2024-05-22 06:35:59
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:3946-1)
2021-12-07 00:00:00
Huawei EulerOS: Security Advisory for gmp (EulerOS-SA-2022-1253)
2022-02-26 00:00:00
Huawei EulerOS: Security Advisory for gmp (EulerOS-SA-2022-1398)
2022-04-13 00:00:00
debian
debian
[SECURITY] [DLA 2837-1] gmp security update
2021-12-02 19:55:32
cvelist
cvelist
CVE-2021-43618
2021-11-15 00:00:00
osv
osv
gmp - security update
2021-12-02 00:00:00
GMP vulnerability
2022-10-12 12:54:58
Low: gmp security and enhancement update
2023-11-07 00:00:00
ubuntu
ubuntu
GMP vulnerability
2022-10-12 00:00:00
GMP vulnerability
2023-03-06 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-43618 affecting package gmp for versions less than 6.2.1-2
2022-04-09 06:51:46
CVE-2021-43618 affecting package gmp 6.1.2-6
2021-12-17 20:09:32
wolfi
wolfi
CVE-2021-43618 vulnerabilities
2024-06-02 03:07:39
prion
prion
Integer overflow
2021-11-15 04:15:00
debiancve
debiancve
CVE-2021-43618
2021-11-15 04:15:00
almalinux
almalinux
Low: gmp security and enhancement update
2023-11-07 00:00:00
Moderate: gmp security update
2024-05-22 00:00:00
mageia
mageia
Updated gmp packages fix security vulnerability
2021-12-08 23:04:18
gentoo
gentoo
GMP: Buffer Overflow Vulnerability
2023-09-29 00:00:00
cgr
cgr
CVE-2021-43618 vulnerabilities
2024-05-19 03:07:16
alpinelinux
alpinelinux
CVE-2021-43618
2021-11-15 04:15:00
ubuntucve
ubuntucve
CVE-2021-43618
2021-11-15 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0146
2023-11-17 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar SIEM contains multiple vulnerabilities
2024-05-09 12:31:16
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
avleonov
avleonov
Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs
2022-12-30 18:03:13

6.8 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

75.9%

JSON
Related for ALAS-2023-2369
nessus33cloudfoundry1suse2veracode1oraclelinux2cve1redhatcve1redhat37openvas21debian1cvelist1osv6ubuntu2cbl_mariner2wolfi1prion1debiancve1almalinux2mageia1gentoo1cgr1alpinelinux1ubuntucve1photon1ibm1ics1avleonov1