glibc vulnerability: CVE-2023-4911

Question

Is AWS linux 2 vulnerable to glibc CVE-2023-4911?
If it is, do you have a security patch?

Current package is glibc 2.26-63 amzn2
Patch for Amazon Linux 2023 is available but don't see one for the Linux 2

Answer

Hi there,

Thank you for reaching out.

I understand that you would like to know if  Amazon Linux 2 is affected by the security vulnerability CVE-2023-4911.

It seems that the security vulnerability CVE-2023-4911 is not affecting Amazon Linux 2 as its not mentioned on https://alas.aws.amazon.com/alas2.html . It is only listed on Amazon linux 2023 :  https://alas.aws.amazon.com/cve/html/CVE-2023-4911.html.

Hope this helps, thank you!

References:
[1] https://alas.aws.amazon.com/alas2.html
[2] https://alas.aws.amazon.com/cve/html/CVE-2023-4911.html

glibc vulnerability: CVE-2023-4911

相關內容