Critical Photon OS Security Update - PHSA-2019-3.0-0036

2019-10-2400:00:00

github.com

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.9

Confidence

Low

EPSS

0.215

Percentile

96.5%

JSON

Updates of [‘dbus’, ‘etcd’, ‘linux-secure’, ‘u-boot’, ‘lua’, ‘polkit’, ‘gdb’, ‘linux-aws’, ‘libgcrypt’, ‘rsyslog’, ‘linux-esx’, ‘sysstat’, ‘linux’, ‘oniguruma’, ‘git’, ‘python3’, ‘systemd’, ‘sqlite’] packages of Photon OS have been released.

OSVersionArchitecturePackageVersionFilename
Photon3.0x86_64linux-secure-lkcm< 4.19.79-1.ph3linux-secure-lkcm-4.19.79-1.ph3.x86_64.rpm
Photon3.0x86_64python3-rpm< 4.14.2-5.ph3python3-rpm-4.14.2-5.ph3.x86_64.rpm
Photon3.0x86_64dbus< 1.13.6-2.ph3dbus-1.13.6-2.ph3.x86_64.rpm
Photon3.0x86_64libgcrypt-debuginfo< 1.8.5-1.ph3libgcrypt-debuginfo-1.8.5-1.ph3.x86_64.rpm
Photon3.0x86_64python3-tools< 3.7.4-1.ph3python3-tools-3.7.4-1.ph3.x86_64.rpm
Photon3.0x86_64linux-secure-docs< 4.19.79-1.ph3linux-secure-docs-4.19.79-1.ph3.x86_64.rpm
Photon3.0x86_64sqlite-libs< 3.27.2-5.ph3sqlite-libs-3.27.2-5.ph3.x86_64.rpm
Photon3.0x86_64linux-esx< 4.19.79-1.ph3linux-esx-4.19.79-1.ph3.x86_64.rpm
Photon3.0x86_64linux-devel< 4.19.79-1.ph3linux-devel-4.19.79-1.ph3.x86_64.rpm
Photon3.0x86_64python3-debuginfo< 3.7.4-1.ph3python3-debuginfo-3.7.4-1.ph3.x86_64.rpm

OS	Version	Architecture	Package	Version	Filename
Photon	3.0	x86_64	linux-secure-lkcm	< 4.19.79-1.ph3	linux-secure-lkcm-4.19.79-1.ph3.x86_64.rpm
Photon	3.0	x86_64	python3-rpm	< 4.14.2-5.ph3	python3-rpm-4.14.2-5.ph3.x86_64.rpm
Photon	3.0	x86_64	dbus	< 1.13.6-2.ph3	dbus-1.13.6-2.ph3.x86_64.rpm
Photon	3.0	x86_64	libgcrypt-debuginfo	< 1.8.5-1.ph3	libgcrypt-debuginfo-1.8.5-1.ph3.x86_64.rpm
Photon	3.0	x86_64	python3-tools	< 3.7.4-1.ph3	python3-tools-3.7.4-1.ph3.x86_64.rpm
Photon	3.0	x86_64	linux-secure-docs	< 4.19.79-1.ph3	linux-secure-docs-4.19.79-1.ph3.x86_64.rpm
Photon	3.0	x86_64	sqlite-libs	< 3.27.2-5.ph3	sqlite-libs-3.27.2-5.ph3.x86_64.rpm
Photon	3.0	x86_64	linux-esx	< 4.19.79-1.ph3	linux-esx-4.19.79-1.ph3.x86_64.rpm
Photon	3.0	x86_64	linux-devel	< 4.19.79-1.ph3	linux-devel-4.19.79-1.ph3.x86_64.rpm
Photon	3.0	x86_64	python3-debuginfo	< 3.7.4-1.ph3	python3-debuginfo-3.7.4-1.ph3.x86_64.rpm