Initial Publication Date: 2022/11/01 09:00 PDT AWS is aware of the recently reported issues regarding OpenSSL 3.0 (CVE-2022-3602 and CVE-2022-3786). AWS services are not affected, and no customer action is required. Additionally, Amazon Linux 1 and Amazon Linux 2 do not ship with OpenSSL 3.0 and are not affected by these issues. Customers utilizing Amazon Linux 2022, Bottlerocket OS or ECS-optimized Amazon Machine Images (AMIs) on Amazon ECS should read the instructions below. As a security
More info:
https://aws.amazon.com/security/security-bulletins/AWS-2022-008/
OpenSSL vulnerabilities CVE-2022-3786 and CVE-2022-3602 Security Advisory Security Advisory Description CVE-2022-3786 A buffer overrun can be triggered in X.509 certificate verification, ...
More info:
https://support.f5.com/csp/article/K44030142?utm_source=f5support&utm_medium=RSS
Initial Publication Date: 2022/11/01 09:00 PDT AWS is aware of the recently reported issues regarding OpenSSL 3.0 (CVE-2022-3602 and CVE-2022-3786). AWS services are not affected, and no customer action is required. Additionally, Amazon Linux 1 and Amazon Linux 2 do not ship with OpenSSL 3.0 and are not affected by these issues. Customers utilizing Amazon Linux 2022, Bottlerocket OS or ECS-optimized Amazon Machine Images (AMIs) on Amazon ECS should read the instructions below. as a security
More info:
https://aws.amazon.com/security/security-bulletins/AWS-2022-008/
Samba vulnerability CVE-2022-3592 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing ...
More info:
https://support.f5.com/csp/article/K52341555?utm_source=f5support&utm_medium=RSS
Expat vulnerability CVE-2022-40674 Security Advisory Security Advisory Description libexpat before 2.4.9 has a use-after-free in the doContent function in xmlparse.c. (CVE-2022-40674) Impact An ...
More info:
https://support.f5.com/csp/article/K44454157?utm_source=f5support&utm_medium=RSS
