Amazon Linux 1 (EOL) Security Advisory: ALAS-2023-1888
Advisory Released Date: 2023-12-04
Advisory Updated Date: 2023-12-04
Severity:
Low
References:
FAQs regarding Amazon Linux ALAS/CVE Severity
FAQs regarding Amazon Linux ALAS/CVE Severity
Issue Overview:
Containerd is not affected by CVE-2023-39325. While it contains the affected module, it does not use it in a way that exposes users to CVE-2023-39325.
Affected Packages:
containerd
Issue Correction:
Run yum update containerd to update your system.
New Packages:
src:
containerd-1.4.13-6.amzn1.src
x86_64:
containerd-1.4.13-6.amzn1.x86_64
containerd-stress-1.4.13-6.amzn1.x86_64
containerd-debuginfo-1.4.13-6.amzn1.x86_64
Changelog:
2024-02-20: CVE-2023-39325 was removed from this advisory.
2024-02-20: The severity of this advisory was changed from important to low.