Versions mentioned in the description apply to the upstream
Remediation section below for
Amzn:2 relevant versions.
Package updates are available for Amazon Linux 2 that fix the following vulnerabilities: CVE-2018-11237: A buffer overflow has been discovered in the GNU C Library (aka glibc or libc6) in the __mempcpy_avx512_no_vzeroupper function when particular conditions are met. An attacker could use this vulnerability to cause a denial of service or potentially execute code. 1581274: CVE-2018-11237 glibc: Buffer overflow in __mempcpy_avx512_no_vzeroupper
glibc-langpack-en to version 2.26-30.amzn2.0.1 or higher.