New! Vulnerability Priority Rating (VPR)
Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it's different from CVSS.
VPR Score: 5.9
SynopsisThe remote Amazon Linux AMI host is missing a security update.
DescriptionThis build resolves the following issues :
CVE-2016-8615 : Cookie injection for other servers
CVE-2016-8616 : Case insensitive password comparison
CVE-2016-8617 : Out-of-bounds write via unchecked multiplication
CVE-2016-8618 : Double-free in curl_maprintf
CVE-2016-8619 : Double-free in krb5 code
CVE-2016-8620 : Glob parser write/read out of bounds
CVE-2016-8621 : curl_getdate out-of-bounds read
CVE-2016-8622 : URL unescape heap overflow via integer truncation
CVE-2016-8623 : Use-after-free via shared cookies
CVE-2016-8624 : Invalid URL parsing with '#'
SolutionRun 'yum update curl' to update your system.