Lucene search
PhotonPHSA-2023-5.0-0056HistoryJul 24, 2023 - 12:00 a.m.
Critical Photon OS Security Update - PHSA-2023-5.0-0056
2023-07-2400:00:00
github.com
11
photon os
security update
openresty
mysql
unix
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.1%
Updates of [‘openresty’, ‘mysql’] packages of Photon OS have been released.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Photon | 5.0 | noarch | openresty-doc | < 1.21.4.1-8.ph5 | openresty-doc-1.21.4.1-8.ph5.noarch.rpm |
| Photon | 5.0 | x86_64 | mysql-devel | < 8.0.34-1.ph5 | mysql-devel-8.0.34-1.ph5.x86_64.rpm |
| Photon | 5.0 | x86_64 | mysql-icu-data-files | < 8.0.34-1.ph5 | mysql-icu-data-files-8.0.34-1.ph5.x86_64.rpm |
| Photon | 5.0 | noarch | openresty-opm | < 1.21.4.1-8.ph5 | openresty-opm-1.21.4.1-8.ph5.noarch.rpm |
| Photon | 5.0 | x86_64 | openresty | < 1.21.4.1-8.ph5 | openresty-1.21.4.1-8.ph5.x86_64.rpm |
| Photon | 5.0 | noarch | openresty-resty | < 1.21.4.1-8.ph5 | openresty-resty-1.21.4.1-8.ph5.noarch.rpm |
| Photon | 5.0 | x86_64 | mysql | < 8.0.34-1.ph5 | mysql-8.0.34-1.ph5.x86_64.rpm |
Related
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0617
2023-07-25 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0435
2023-07-24 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0481
2022-11-01 00:00:00
openvas
openvas
Oracle MySQL Server 8.x <= 8.0.33 Security Update (cpujul2023) - Windows
2023-07-19 00:00:00
Ubuntu: Security Advisory (USN-6288-1)
2023-08-16 00:00:00
Oracle MySQL Server 8.x <= 8.0.33 Security Update (cpujul2023) - Linux
2023-07-19 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2023-08-15 00:00:00
nginx vulnerabilities
2022-11-15 00:00:00
osv
osv
mysql-8.0 vulnerabilities
2023-08-15 12:44:41
nginx - security update
2022-11-15 00:00:00
nginx vulnerabilities
2022-11-15 05:25:25
nessus
nessus
Ubuntu 20.04 LTS / 22.04 LTS / 23.04 : MySQL vulnerabilities (USN-6288-1)
2023-08-15 00:00:00
FreeBSD : MySQL -- Multiple vulnerabilities (759a5599-3ce8-11ee-a0d1-84a93843eb75)
2023-08-17 00:00:00
Oracle MySQL Server 8.0.x < 8.0.34 (October 2023 CPU)
2023-07-19 00:00:00
freebsd
freebsd
MySQL -- Multiple vulnerabilities
2023-07-18 00:00:00
nginx -- Two vulnerabilities
2022-10-19 00:00:00
ibm
ibm
amazon
amazon
Medium: nginx
2023-01-18 20:56:00
Medium: mysql57
2023-10-30 23:31:00
fedora
fedora
[SECURITY] Fedora 36 Update: nginx-1.22.1-1.fc36
2022-10-28 11:16:33
[SECURITY] Fedora 37 Update: community-mysql-8.0.34-2.fc37
2023-09-16 01:41:10
[SECURITY] Fedora 37 Update: nginx-1.22.1-1.fc37
2022-11-10 22:49:39
altlinux
altlinux
Security fix for the ALT Linux 9 package nginx version 1.22.1-alt1
2022-10-31 00:00:00
cloudlinux
cloudlinux
nginx: Fix of 2 CVEs
2022-11-21 21:36:53
mageia
mageia
Updated nginx packages fix security vulnerability
2022-10-28 09:54:08
Updated lz4 packages fix security vulnerability
2019-12-08 21:12:18
debian
debian
[SECURITY] [DSA 5281-1] nginx security update
2022-11-15 20:26:03
[SECURITY] [DLA 3203-1] nginx security update
2022-11-22 23:40:00
prion
prion
Heap overflow
2019-10-14 02:15:00
Design/Logic Flaw
2023-07-18 21:15:00
Code injection
2023-07-18 21:15:00
nvd
nvd
debiancve
debiancve
cvelist
cvelist
cve
cve
alpinelinux
alpinelinux
CVE-2019-17543
2019-10-14 02:15:10
CVE-2022-41742
2022-10-19 22:15:12
rosalinux
rosalinux
Advisory ROSA-SA-2021-1912
2021-07-02 17:26:49
ubuntucve
ubuntucve
cbl_mariner
cbl_mariner
CVE-2023-22033 affecting package mysql for versions less than 8.0.34-1
2023-11-17 23:23:29
CVE-2022-41741 affecting package nginx for versions less than 1.22.1-1
2022-11-03 20:37:46
CVE-2022-41741 affecting package nginx 1.20.1-3
2022-11-03 00:44:53
cnvd
cnvd
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2023-65508)
2023-07-20 00:00:00
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2023-65512)
2023-07-20 00:00:00
Unspecified Vulnerability in Oracle MySQL Server (CNVD-2023-65501)
2023-07-20 00:00:00
suse
suse
Security update for lz4 (moderate)
2019-10-28 00:00:00
Security update for lz4 (moderate)
2019-10-28 00:00:00
redhatcve
redhatcve
veracode
veracode
Buffer Overflows
2020-08-06 21:37:31
Denial Of Service (DoS)
2022-10-20 10:38:18
nginx
nginx
Memory corruption in the ngx_http_mp4_module
2022-10-19 22:15:12
Memory disclosure in the ngx_http_mp4_module
2022-10-19 22:15:12
f5
f5
K000135627 : Oracle MySQL vulnerability CVE-2023-22057
2023-07-27 00:00:00
K28112382 : NGINX ngx_http_mp4_module vulnerability CVE-2022-41742
2022-10-19 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.8 High
AI Score
Confidence
Low
0.008 Low
EPSS
Percentile
81.1%
Related for PHSA-2023-5.0-0056