Package updates are available for Amazon Linux 2 that fix the following vulnerabilities: CVE-2025-14242: A flaw was found in vsftpd. This vulnerability allows a denial of service (DoS) via an integer overflow in the ls command parameter parsing, triggered by a remote, authenticated attacker sending a crafted STAT command with a specific byte sequence.
3.0.2-25.amzn2.0.23.0.2-25.amzn2.0.23.0.2-25.amzn2.0.2