Lucene search
PhotonPHSA-2022-4.0-0159HistoryMar 07, 2022 - 12:00 a.m.
Critical Photon OS Security Update - PHSA-2022-4.0-0159
2022-03-0700:00:00
github.com
24
photon os
security update
phsa-2022-4.0-0159
unix
package updates
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.007
Percentile
80.2%
Updates of [‘containerd’, ‘go’] packages of Photon OS have been released.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Photon | 4.0 | x86_64 | containerd | < 1.4.12-3.ph4 | containerd-1.4.12-3.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | go | < 1.17.2-3.ph4 | go-1.17.2-3.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | go-md2man | < 2.0.0-9.ph4 | go-md2man-2.0.0-9.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | containerd-extras | < 1.4.12-3.ph4 | containerd-extras-1.4.12-3.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | containerd-doc | < 1.4.12-3.ph4 | containerd-doc-1.4.12-3.ph4.x86_64.rpm |
Related
photon
photon
Critical Photon OS Security Update - PHSA-2022-0159
2022-03-02 00:00:00
Critical Photon OS Security Update - PHSA-2022-3.0-0364
2022-02-28 00:00:00
Critical Photon OS Security Update - PHSA-2022-0364
2022-02-22 00:00:00
nessus
nessus
openSUSE 15 Security Update : go1.16 (openSUSE-SU-2022:0724-1)
2022-03-05 00:00:00
SUSE SLED15 / SLES15 Security Update : go1.16 (SUSE-SU-2022:0724-1)
2022-03-05 00:00:00
ibm
ibm
suse
suse
Security update for go1.16 (important)
2022-03-04 00:00:00
Security update for go1.17 (important)
2022-03-04 00:00:00
Security update for containerd (moderate)
2022-03-04 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:0724-1)
2022-03-05 00:00:00
Mageia: Security Advisory (MGASA-2022-0091)
2022-03-08 00:00:00
openSUSE: Security Advisory for go1.16 (openSUSE-SU-2022:0724-1)
2022-03-05 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package golang version 1.17.7-alt1
2022-02-11 00:00:00
redhat
redhat
(RHSA-2022:4860) Moderate: Release of OpenShift Serverless Client kn 1.22.1
2022-06-01 09:10:05
(RHSA-2022:4863) Moderate: Release of OpenShift Serverless Version 1.22.1
2022-06-01 12:07:22
amazon
amazon
Medium: golang
2023-02-15 00:23:00
Medium: containerd
2022-03-01 18:04:00
osv
osv
go1.17-1.17.7-1.1 on GA media
2024-06-15 00:00:00
go1.16-1.16.14-1.1 on GA media
2024-06-15 00:00:00
golang-1.8 - security update
2022-04-28 00:00:00
freebsd
freebsd
go -- multiple vulnerabilities
2022-02-10 00:00:00
mageia
mageia
Updated golang packages fix security vulnerability
2022-03-08 02:10:22
Updated docker-containerd packages fix security vulnerability
2022-03-06 13:40:17
oraclelinux
oraclelinux
go-toolset:ol8addon security update
2022-06-08 00:00:00
go-toolset:ol8 security and bug fix update
2022-05-17 00:00:00
debian
debian
[SECURITY] [DLA 2986-1] golang-1.8 security update
2022-04-28 09:57:43
[SECURITY] [DLA 2985-1] golang-1.7 security update
2022-04-28 09:57:28
[SECURITY] [DSA 5091-1] containerd security update
2022-03-06 21:11:05
almalinux
almalinux
Moderate: go-toolset:rhel8 security and bug fix update
2022-05-10 06:29:31
rocky
rocky
go-toolset:rhel8 security and bug fix update
2022-05-10 06:29:31
cve
cve
alpinelinux
alpinelinux
fedora
fedora
[SECURITY] Fedora 35 Update: containerd-1.6.1-1.fc35
2022-03-22 03:43:45
[SECURITY] Fedora 34 Update: containerd-1.6.1-1.fc34
2022-03-22 03:19:17
[SECURITY] Fedora 36 Update: containerd-1.6.1-1.fc36
2022-03-26 15:49:02
redhatcve
redhatcve
nvd
nvd
cnvd
cnvd
Google Golang memory consumption overflow vulnerability
2022-02-14 00:00:00
cvelist
cvelist
CVE-2022-23772
2022-02-11 00:11:15
CVE-2022-23773
2022-02-11 00:16:08
CVE-2022-23648 Insecure handling of image volumes in containerd CRI plugin
2022-03-03 00:00:00
ubuntu
ubuntu
containerd regression
2022-05-16 00:00:00
containerd vulnerability
2022-03-03 00:00:00
githubexploit
githubexploit
Exploit for Exposure of Sensitive Information to an Unauthorized Actor in Linuxfoundation Containerd
2022-03-25 19:43:59
Exploit for Interpretation Conflict in Golang Go
2023-03-19 10:08:47
Exploit for Interpretation Conflict in Golang Go
2023-03-19 10:08:47
prion
prion
Design/Logic Flaw
2022-03-03 14:15:00
Memory corruption
2022-02-11 01:15:00
Design/Logic Flaw
2022-02-11 01:15:00
ubuntucve
ubuntucve
cbl_mariner
cbl_mariner
CVE-2022-23648 affecting package moby-containerd 1.5.9+azure-7
2022-03-10 23:47:38
CVE-2022-23772 affecting package golang 1.16.12-1
2022-02-25 01:45:48
CVE-2022-23773 affecting package golang 1.16.12-1
2022-02-25 01:45:48
veracode
veracode
Information Disclosure
2022-03-04 09:43:43
Improper Access Control
2022-02-14 12:23:51
Denial Of Service (DoS)
2022-02-14 08:28:54
debiancve
debiancve
cgr
cgr
CVE-2022-23648 vulnerabilities
2024-05-19 03:07:16
zdt
zdt
containerd Image Volume Insecure Handling Exploit
2022-03-24 00:00:00
wolfi
wolfi
CVE-2022-23648 vulnerabilities
2024-09-27 21:56:47
redos
redos
ROS-20240503-03
2024-05-03 00:00:00
packetstorm
packetstorm
containerd Image Volume Insecure Handling
2022-03-24 00:00:00
github
github
containerd CRI plugin: Insecure handling of image volumes
2022-03-02 21:33:17
CVSS2
7.8
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.007
Percentile
80.2%
Related for PHSA-2022-4.0-0159