Security Update 5.0 35

Jump to bottom

Mukul Sikka edited this page Oct 20, 2024 · 506 revisions

Critical Photon OS Security Update

Summary

Advisory Id : PHSA-2023-5.0-0035

Type : Security

Severity : ['Critical', 'Important', 'Moderate', 'Low']

Issue date : 2023-06-22

Affected Release: 5.0

Details

Updates of ['cmake', 'cups', 'mozjs'] packages of Photon OS have been released.

Affected Packages

Critical

cmake - ['CVE-2023-23914']

mozjs - ['CVE-2023-25736', 'CVE-2023-34416', 'CVE-2022-45406']

Important

cmake - ['CVE-2018-1000168', 'CVE-2023-27534', 'CVE-2019-9511', 'CVE-2023-28319', 'CVE-2022-43551', 'CVE-2022-27782', 'CVE-2023-27533', 'CVE-2019-9513', 'CVE-2020-11080']

cups - ['CVE-2023-34241']

mozjs - ['CVE-2022-45407', 'CVE-2022-46883', 'CVE-2023-32215', 'CVE-2023-25735', 'CVE-2022-46872', 'CVE-2022-42930', 'CVE-2022-46871', 'CVE-2023-25744', 'CVE-2022-46874', 'CVE-2023-25731', 'CVE-2022-46879', 'CVE-2023-25729', 'CVE-2022-38473', 'CVE-2022-45415', 'CVE-2023-29541', 'CVE-2022-46885', 'CVE-2022-40962', 'CVE-2023-23605', 'CVE-2022-42927', 'CVE-2023-25740', 'CVE-2023-29536', 'CVE-2023-25737', 'CVE-2022-38477', 'CVE-2023-0767', 'CVE-2023-25739', 'CVE-2023-23606', 'CVE-2023-29550', 'CVE-2022-46878', 'CVE-2022-42928', 'CVE-2022-34469', 'CVE-2023-29539', 'CVE-2022-42932', 'CVE-2023-25746', 'CVE-2023-25745', 'CVE-2023-28176', 'CVE-2023-28162', 'CVE-2022-38478', 'CVE-2023-25733', 'CVE-2022-45412', 'CVE-2023-25734', 'CVE-2023-32213', 'CVE-2022-46873', 'CVE-2023-25732', 'CVE-2023-32207', 'CVE-2022-45409']

Moderate

cmake - ['CVE-2023-27536', 'CVE-2023-23915', 'CVE-2023-28321', 'CVE-2023-27535', 'CVE-2023-23916', 'CVE-2022-43552', 'CVE-2023-28320', 'CVE-2023-27538']

mozjs - ['CVE-2022-38472', 'CVE-2023-25742', 'CVE-2022-42929', 'CVE-2022-38475', 'CVE-2023-28163', 'CVE-2023-25751', 'CVE-2022-34471', 'CVE-2022-38474', 'CVE-2023-28164', 'CVE-2022-40957', 'CVE-2022-45413', 'CVE-2023-32206', 'CVE-2022-45404', 'CVE-2022-45420', 'CVE-2023-32205', 'CVE-2023-23598', 'CVE-2022-45417', 'CVE-2022-45419', 'CVE-2023-23597', 'CVE-2022-45403', 'CVE-2023-29547', 'CVE-2023-32212', 'CVE-2022-45411', 'CVE-2022-45410', 'CVE-2022-46875', 'CVE-2023-29548', 'CVE-2023-23602', 'CVE-2023-23604', 'CVE-2023-1945', 'CVE-2023-25728', 'CVE-2022-40959', 'CVE-2023-29533', 'CVE-2022-40958', 'CVE-2023-25741', 'CVE-2022-40960', 'CVE-2022-46877', 'CVE-2022-34473', 'CVE-2023-23599', 'CVE-2023-29535', 'CVE-2023-25730', 'CVE-2023-32211', 'CVE-2022-45408', 'CVE-2023-23603', 'CVE-2022-45405', 'CVE-2022-40961', 'CVE-2022-36314', 'CVE-2022-40956', 'CVE-2022-45416', 'CVE-2022-34474', 'CVE-2023-25752', 'CVE-2022-3266', 'CVE-2023-25738', 'CVE-2022-45418', 'CVE-2023-23601']

Low

cmake - ['CVE-2023-28322']

mozjs - ['CVE-2022-42931', 'CVE-2023-34414']

Solution

Update the affected packages (tdnf update package)

Updated Packages Information

cmake-3.25.2-4.ph5.x86_64.rpm | size : 15M , sha256 : 494cebac444528e4007ae61586acb0d813ef84bb6b9fc91bb86c9351f9996df5 , build time : Thu, 22 Jun 2023 10:44:26 UTC

cups-2.4.2-5.ph5.x86_64.rpm | size : 5.4M , sha256 : 3aade5eb1896cd16eff859f1879b7a73d52f9f1fe454e48811f940c84c0efd64 , build time : Thu, 22 Jun 2023 10:44:30 UTC

cups-devel-2.4.2-5.ph5.x86_64.rpm | size : 44K , sha256 : 43b3d58e696429ef4b8a8779a88c5757184ca3c36406dbb9b83eef323e56b10f , build time : Thu, 22 Jun 2023 10:44:30 UTC

mozjs-102.12.0-1.ph5.x86_64.rpm | size : 4.8M , sha256 : 900d8bf012e0006705d0c5e338a6f25219ded103c1378551e011794b7a6969ce , build time : Thu, 22 Jun 2023 10:43:38 UTC

mozjs-devel-102.12.0-1.ph5.x86_64.rpm | size : 5.8M , sha256 : 43cc6ebf7c264626f4961a58d8c7706ca5fd25a0fef0f4e60f7603fa195b9b33 , build time : Thu, 22 Jun 2023 10:43:38 UTC

Home | Download Photon OS | Documentation | VMware on GitHub

Clone this wiki locally