Amazon Linux AMI : samba (ALAS-2017-933)

Use-after-free in processing SMB1 requests A use-after-free flaw was found in the way samba servers handled certain SMB1 requests. An unauthenticated attacker could send specially crafted SMB1 requests to cause the server to crash or execute arbitrary code. CVE-2017-14746 Server heap-memory...

Amazon Linux AMI : mysql56 / mysql57 (ALAS-2017-926)

Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Client programs. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server. Successful attacks of this vulnerability can result in unauthorized...

Amazon Linux AMI : postgresql95 / postgresql96 (ALAS-2017-930)

Privilege escalation flaws were found in the initialization scripts of PostgreSQL. A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine.CVE-2017-12172 INSERT ... ON CONFLICT DO UPDATE commands in PostgreSQL disclose table...

Amazon Linux AMI : postgresql92 / postgresql93,postgresql94 (ALAS-2017-931)

Privilege escalation flaws were found in the initialization scripts of PostgreSQL. A remote attacker with access to the postgres user account could use these flaws to obtain root access on the server machine. CVE-2017-12172 Invalid jsonpopulaterecordset or jsonbpopulaterecordset function calls in...

Amazon Linux AMI : apr (ALAS-2017-928)

An out-of-bounds array dereference was found in aprtimeexpget. An attacker could abuse an unvalidated usage of this function to cause a denial of service or potentially lead to data leak.CVE-2017-12613 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

Amazon Linux AMI : apr-util (ALAS-2017-929)

Apache Portable Runtime Utility APR-util fails to validate the integrity of SDBM database files used by aprsdbm functions, resulting in a possible out of bound read access. A local user with write access to the database can make a program or process using these functions crash, and cause a denial...

Important: apr

Issue Overview: An out-of-bounds array dereference was found in aprtimeexpget. An attacker could abuse an unvalidated usage of this function to cause a denial of service or potentially lead to data leak.CVE-2017-12613 Affected Packages: apr Issue Correction: Run yum update apr or yum update...

Amazon Linux AMI : curl (ALAS-2017-922)

IMAP FETCH response out of bounds read : A buffer overrun flaw was found in the IMAP handler of libcurl. By tricking an unsuspecting user into connecting to a malicious IMAP server, an attacker could exploit this flaw to potentially cause information disclosure or crash the application...

Amazon Linux AMI : kernel (ALAS-2017-925)

Incorrect updates of uninstantiated keys crash the kernel A vulnerability was found in the key management subsystem of the Linux kernel. An update on an uninstantiated key could cause a kernel panic, leading to denial of service DoS. CVE-2017-15299 Memory leak when merging buffers in SCSI IO...

Amazon Linux AMI : php56 / php70,php71 (ALAS-2017-924)

pcre: heap buffer overflow in handling of duplicate named groups 8.39/14 The pcrecompile2 function in pcrecompile.c mishandles a specific type of pattern with named subgroups, which allows remote attackers to cause a denial of service heap-based buffer overflow or possibly have unspecified other...

Amazon Linux AMI : cacti (ALAS-2017-923)

include/globalsession.php in Cacti 1.1.25 has XSS related to 1 the URI or 2 the refresh page. CVE-2017-15194 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon Linux AMI Security Advisory ALAS-2017-923. include'compat.inc'; if...

Amazon Linux AMI : httpd (ALAS-2017-921)

Hash character matches all IPs : A regression was found in httpd, causing comments in the 'Allow' and 'Deny' configuration lines to be parsed incorrectly. A web administrator could unintentionally allow any client to access a restricted HTTP resource. CVE-2017-12171 C Tenable Network Security, In...

Amazon Linux AMI : openvpn (ALAS-2017-920)

OpenVPN versions before 2.3.3 and 2.4.x before 2.4.4 are vulnerable to a buffer overflow vulnerability when key-method 1 is used, possibly resulting in code execution. CVE-2017-12166 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Amazon...

Amazon Linux AMI : curl (ALAS-2017-919)

FTP PWD response parser out of bounds read libcurl may read outside of a heap allocated buffer when doing FTP. When libcurl connects to an FTP server and successfully logs in anonymous or not, it asks the server for the current directory with the PWD command. The server then responds with a 257...

Amazon Linux AMI : golang (ALAS-2017-918)

Arbitrary code execution during go get or go get -d : Go before 1.8.4 and 1.9.x before 1.9.1 allows 'go get' remote command execution. Using custom domains, it is possible to arrange things so that example.com/pkg1 points to a Subversion repository but example.com/pkg1/pkg2 points to a Git...

Amazon Linux AMI : ruby24 (ALAS-2017-915)

Arbitrary heap exposure during a JSON.generate call Ruby through 2.2.7, 2.3.x through 2.3.4, and 2.4.x through 2.4.1 can expose arbitrary memory during a JSON.generate call. The issues lies in using strdup in ext/json/ext/generator/generator.c, which will stop after encountering a '\0' byte,...

Amazon Linux AMI : tomcat8 / tomcat80,tomcat7 (ALAS-2017-913)

A vulnerability was discovered in Tomcat where if a servlet context was configured with readonly=false and HTTP PUT requests were allowed, an attacker could upload a JSP file to that context and achieve code execution. CVE-2017-12617 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...

Amazon Linux AMI : wget (ALAS-2017-916)

Heap-based buffer overflow in HTTP protocol handling A heap-based buffer overflow, when processing chunked encoded HTTP responses, was found in wget. By tricking an unsuspecting user into connecting to a malicious HTTP server, an attacker could exploit this flaw to potentially execute arbitrary...

Amazon Linux AMI : java-1.8.0-openjdk (ALAS-2017-917)

Multiple unbounded memory allocations in deserialization Serialization, 8174109 Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9; Java SE Embedded: 8u144;...

Qualys Policy Compliance Notification: Policy Library Update

Qualys’ library of built-in policies makes it easy to comply with the security standards and regulations that are most commonly used and adhered to. Qualys provides a wide range of policies, including many that have been certified by CIS as well as the ones based on security guidelines from vendo...