all InfoSec news
CVE-2024-3094
Latest Bulletins aws.amazon.com
Publication Date: 2024/03/29 12:30 PM PST
CVE Identifier: CVE-2024-3094
AWS is aware of CVE-2024-3094, which affects versions 5.6.0 and 5.6.1 of the xz-utils package. This issue may attempt to introduce security issues in openssh through the use of liblzma within some operating system environments. Amazon Linux customers are not affected by this issue, and no action is required. AWS infrastructure and services do not utilize the affected software and are not impacted. Users of Bottlerocket are not affected.
Customers using …
action amazon aware aws customers cve cve-2024 date environments issue linux may openssh operating system package security security issues system