Medium: libseccomp

Issue Overview: libseccomp before 2.4.0 did not correctly generate 64-bit syscall argument comparisons using the arithmetic operators LT, GT, LE, GE, which might able to lead to bypassing seccomp filters and potential privilege escalations. CVE-2019-9893 Affected Packages: libseccomp Note: This...

Low: openssl

Issue Overview: No CVE associated with this advisory Affected Packages: openssl Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Core and AL2 Extras advisories. Issue Correction: Run yum update openssl or yum update...

Medium: binutils

Issue Overview: An issue was discovered in armpt in cplus-dem.c in GNU libiberty, as distributed in GNU Binutils 2.30. Stack Exhaustion occurs in the C++ demangling functions provided by libiberty, and there are recursive stack frames: demanglearmhptemplate, demangleclassname, demanglefundtype,...

Amazon Linux 2 : dovecot (ALAS-2019-1347)

In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution.CVE-2019-11500 C Tenable Network Security, Inc. Th...

Amazon Linux 2 : fence-agents (ALAS-2019-1348)

A flaw was discovered in fence-agents, prior to version 4.3.4, where using non-ASCII characters in a guest VM's comment or other fields would cause fencerhevm to exit with an exception. In cluster environments, this could lead to preventing automated recovery or otherwise denying service to...

Amazon Linux 2 : samba (ALAS-2019-1351)

A flaw was found in the way samba implemented an RPC endpoint emulating the Windows registry service API. An unprivileged attacker could use this flaw to create a new registry hive file anywhere they have unix permissions which could lead to creation of a new file in the Samba share.CVE-2019-3880...

Amazon Linux AMI : docker (ALAS-2019-1316)

A command injection flaw was discovered in Docker during the docker build command. By providing a specially crafted path argument for the container to build, it is possible to inject command options to the git fetch/git checkout commands that are executed by Docker and to execute code with the...

Amazon Linux 2 : zziplib (ALAS-2019-1357)

An issue was discovered in ZZIPlib through 0.13.69. There is a memory leak triggered in the function zzipparserootdirectory in zip.c, which will lead to a denial of service attack.CVE-2018-16548 In ZZIPlib 0.13.67, there is a bus error caused by loading of a misaligned address when handling...

Amazon Linux 2 : unixODBC (ALAS-2019-1354)

A buffer overflow flaw was found in the unicodetoansicopy function of unixODBC. This overflow is not directly controllable by an attacker making the maximum potential impact a crash or denial of service.CVE-2018-7409 An argument order confusion flaw was found in the SQLWriteFileDSN API of unixODB...

Amazon Linux 2 : sox (ALAS-2019-1352)

A NULL pointer dereference flaw found in the way SoX handled processing of AIFF files. An attacker could potentially use this flaw to crash the SoX application by tricking it into processing crafted AIFF files.CVE-2017-18189 C Tenable Network Security, Inc. The descriptive text and package checks...

Amazon Linux 2 : unzip (ALAS-2019-1355)

Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12.CVE-2018-18384 C Tenable Network Security, Inc. The descriptive text and packag...

Amazon Linux 2 : uriparser (ALAS-2019-1356)

An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an out-of-bounds write via a uriComposeQuery or uriComposeQueryEx function because the '&' character is mishandled in certain contexts.CVE-2018-19198 An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an intege...

Amazon Linux 2 : dhcp (ALAS-2019-1346)

There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in the library function prevented this from causing any harm. All...

Amazon Linux AMI : subversion (ALAS-2019-1317)

In Apache Subversion versions up to and including 1.9.10, 1.10.4, 1.12.0, Subversion's svnserve server process may exit when a well-formed read-only request produces a particular answer. This can lead to disruption for users of the server.CVE-2018-11782 In Apache Subversion versions up to and...

Amazon Linux 2 : compat-libtiff3 (ALAS-2019-1345)

A NULL pointer Dereference occurs in the function TIFFPrintDirectory in tifprint.c in LibTIFF 4.0.9 when using the tiffinfo tool to print crafted TIFF information, a different vulnerability than CVE-2017-18013 . This affects an earlier part of the TIFFPrintDirectory function that was not addresse...

Amazon Linux 2 : libjpeg-turbo (ALAS-2019-1350)

The cjpeg utility in libjpeg allows remote attackers to cause a denial of service NULL pointer dereference and application crash or execute arbitrary code via a crafted file.CVE-2016-3616 A divide by zero vulnerability has been discovered in libjpeg-turbo in allocsarray function of jmemmgr.c file...

Medium: uriparser

Issue Overview: An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an out-of-bounds write via a uriComposeQuery or uriComposeQueryEx function because the '&' character is mishandled in certain contexts.CVE-2018-19198 An issue was discovered in uriparser before 0.9.0. UriQuery.c...

Medium: dhcp

Issue Overview: There had existed in one of the ISC BIND libraries a bug in a function that was used by dhcpd when operating in DHCPv6 mode. There was also a bug in dhcpd relating to the use of this function per its documentation, but the bug in the library function prevented this from causing an...

Low: unzip

Issue Overview: Info-ZIP UnZip 6.0 has a buffer overflow in list.c, when a ZIP archive has a crafted relationship between the compressed-size value and the uncompressed-size value, because a buffer size is 10 and is supposed to be 12.CVE-2018-18384 Affected Packages: unzip Note: This advisory is...

Important: dovecot

Issue Overview: In Dovecot before 2.2.36.4 and 2.3.x before 2.3.7.2 and Pigeonhole before 0.5.7.2, protocol processing can fail for quoted strings. This occurs because '\\0' characters are mishandled, and can lead to out-of-bounds writes and remote code execution.CVE-2019-11500 Affected Packages:...