Amazon Linux 2 : php (ALASPHP8.0-2024-010)

The version of php installed on the remote host is prior to 8.0.24-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2PHP8.0-2024-010 advisory. 2024-02-15: CVE-2022-31629 was added to this advisory. 2024-02-15: CVE-2022-31628 was added to this advisory. In PHP...

Amazon Linux 2 : php (ALASPHP8.0-2023-005)

The version of php installed on the remote host is prior to 8.0.24-1. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2PHP8.0-2023-005 advisory. In PHP versions before 7.4.31, 8.0.24 and 8.1.11, the phar uncompressor code would recursively uncompress quines gzip...

CVE-2012-5627 affecting package mysql for versions less than 8.0.24-1

CVE-2012-5627 affecting package mysql for versions less than 8.0.24-1. A patched version of the package is available...

CVE-2021-2339 affecting package mysql 8.0.24-1

CVE-2021-2339 affecting package mysql 8.0.24-1. An upgraded version of the package is available that resolves this issue...

CVE-2021-2357 affecting package mysql 8.0.24-1

CVE-2021-2357 affecting package mysql 8.0.24-1. An upgraded version of the package is available that resolves this issue...

CVE-2021-2352 affecting package mysql 8.0.24-1

CVE-2021-2352 affecting package mysql 8.0.24-1. An upgraded version of the package is available that resolves this issue...

CVE-2021-2354 affecting package mysql 8.0.24-1

CVE-2021-2354 affecting package mysql 8.0.24-1. An upgraded version of the package is available that resolves this issue...

AZL-6692 CVE-2012-5627 affecting package mysql for versions less than 8.0.24-1

Oracle MySQL and MariaDB 5.5.x before 5.5.29, 5.3.x before 5.3.12, and 5.2.x before 5.2.14 does not modify the salt during multiple executions of the changeuser command within the same connection which makes it easier for remote authenticated users to conduct brute force password guessing attacks...