Amazon Linux 1 Security Advisory: ALAS-2017-889
Advisory Release Date: 2017-08-31 17:19 Pacific
Advisory Updated Date: 2017-08-31 23:34 Pacific
FAQs regarding Amazon Linux ALAS/CVE Severity
FILE buffer read out of bounds (CVE-2017-1000099)
TFTP sends more than buffer size (CVE-2017-1000100)
URL globbing out of bounds read (CVE-2017-1000101)
Affected Packages:
curl
Issue Correction:
Run yum update curl to update your system.
i686:
curl-7.51.0-9.75.amzn1.i686
curl-debuginfo-7.51.0-9.75.amzn1.i686
libcurl-devel-7.51.0-9.75.amzn1.i686
libcurl-7.51.0-9.75.amzn1.i686
src:
curl-7.51.0-9.75.amzn1.src
x86_64:
libcurl-devel-7.51.0-9.75.amzn1.x86_64
curl-7.51.0-9.75.amzn1.x86_64
curl-debuginfo-7.51.0-9.75.amzn1.x86_64
libcurl-7.51.0-9.75.amzn1.x86_64