Lucene search
PhotonPHSA-2023-3.0-0617HistoryJul 25, 2023 - 12:00 a.m.
Critical Photon OS Security Update - PHSA-2023-3.0-0617
2023-07-2500:00:00
github.com
13
photon os
security update
perl
openresty
grub2
mysql
unix
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.1%
Updates of [‘perl’, ‘openresty’, ‘grub2’, ‘mysql’] packages of Photon OS have been released.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Photon | 3.0 | x86_64 | grub2-lang | < 2.06-6.ph3 | grub2-lang-2.06-6.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | mysql | < 8.0.34-1.ph3 | mysql-8.0.34-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | mysql-icu-data-files | < 8.0.34-1.ph3 | mysql-icu-data-files-8.0.34-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | grub2-efi | < 2.06-6.ph3 | grub2-efi-2.06-6.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | grub2-pc | < 2.06-6.ph3 | grub2-pc-2.06-6.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | openresty | < 1.21.4.1-3.ph3 | openresty-1.21.4.1-3.ph3.x86_64.rpm |
| Photon | 3.0 | noarch | openresty-resty | < 1.21.4.1-3.ph3 | openresty-resty-1.21.4.1-3.ph3.noarch.rpm |
| Photon | 3.0 | x86_64 | grub2 | < 2.06-6.ph3 | grub2-2.06-6.ph3.x86_64.rpm |
| Photon | 3.0 | noarch | openresty-opm | < 1.21.4.1-3.ph3 | openresty-opm-1.21.4.1-3.ph3.noarch.rpm |
| Photon | 3.0 | x86_64 | mysql-devel | < 8.0.34-1.ph3 | mysql-devel-8.0.34-1.ph3.x86_64.rpm |
Related
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0056
2023-07-24 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0435
2023-07-24 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0481
2022-11-01 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2023-08-15 00:00:00
nginx vulnerabilities
2022-11-15 00:00:00
osv
osv
mysql-8.0 vulnerabilities
2023-08-15 12:44:41
nginx vulnerabilities
2022-11-15 05:25:25
nginx - security update
2022-11-15 00:00:00
openvas
openvas
Oracle MySQL Server 8.x <= 8.0.33 Security Update (cpujul2023) - Windows
2023-07-19 00:00:00
Ubuntu: Security Advisory (USN-6288-1)
2023-08-16 00:00:00
Oracle MySQL Server 8.x <= 8.0.33 Security Update (cpujul2023) - Linux
2023-07-19 00:00:00
nessus
nessus
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : MySQL vulnerabilities (USN-6288-1)
2023-08-15 00:00:00
FreeBSD : MySQL -- Multiple vulnerabilities (759a5599-3ce8-11ee-a0d1-84a93843eb75)
2023-08-17 00:00:00
Oracle MySQL Server 8.0.x < 8.0.34 (October 2023 CPU)
2023-07-19 00:00:00
freebsd
freebsd
MySQL -- Multiple vulnerabilities
2023-07-18 00:00:00
nginx -- Two vulnerabilities
2022-10-19 00:00:00
ibm
ibm
altlinux
altlinux
Security fix for the ALT Linux 9 package nginx version 1.22.1-alt1
2022-10-31 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: nginx-1.22.1-1.fc36
2022-10-28 11:16:33
[SECURITY] Fedora 37 Update: community-mysql-8.0.34-2.fc37
2023-09-16 01:41:10
[SECURITY] Fedora 37 Update: nginx-1.22.1-1.fc37
2022-11-10 22:49:39
amazon
amazon
Medium: nginx
2023-01-18 20:56:00
Medium: mysql57
2023-10-30 23:31:00
cloudlinux
cloudlinux
nginx: Fix of 2 CVEs
2022-11-21 21:36:53
mageia
mageia
Updated nginx packages fix security vulnerability
2022-10-28 09:54:08
Updated lz4 packages fix security vulnerability
2019-12-08 21:12:18
debian
debian
[SECURITY] [DSA 5281-1] nginx security update
2022-11-15 20:26:03
[SECURITY] [DLA 3203-1] nginx security update
2022-11-22 23:40:00
prion
prion
Heap overflow
2019-10-14 02:15:00
Design/Logic Flaw
2023-07-18 21:15:00
Code injection
2023-07-18 21:15:00
nvd
nvd
debiancve
debiancve
cbl_mariner
cbl_mariner
CVE-2023-22033 affecting package mysql for versions less than 8.0.34-1
2023-11-17 23:23:29
CVE-2022-41741 affecting package nginx 1.20.1-3
2022-11-03 00:44:53
CVE-2022-41741 affecting package nginx for versions less than 1.22.1-1
2022-11-03 20:37:46
cnvd
cnvd
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2023-65508)
2023-07-20 00:00:00
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2023-65512)
2023-07-20 00:00:00
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2023-65506)
2023-07-20 00:00:00
redhatcve
redhatcve
cvelist
cvelist
veracode
veracode
Buffer Overflows
2020-08-06 21:37:31
Denial Of Service (DoS)
2022-06-16 04:50:15
Denial Of Service (DoS)
2022-10-20 10:38:18
cve
cve
alpinelinux
alpinelinux
CVE-2019-17543
2019-10-14 02:15:10
CVE-2022-41742
2022-10-19 22:15:12
rosalinux
rosalinux
Advisory ROSA-SA-2021-1912
2021-07-02 17:26:49
ubuntucve
ubuntucve
suse
suse
Security update for lz4 (moderate)
2019-10-28 00:00:00
Security update for lz4 (moderate)
2019-10-28 00:00:00
nginx
nginx
Memory corruption in the ngx_http_mp4_module
2022-10-19 22:15:12
Memory disclosure in the ngx_http_mp4_module
2022-10-19 22:15:12
f5
f5
K28112382 : NGINX ngx_http_mp4_module vulnerability CVE-2022-41742
2022-10-19 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.1%
Related for PHSA-2023-3.0-0617