Lucene search
PhotonPHSA-2020-1.0-0304HistoryJun 26, 2020 - 12:00 a.m.
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0304
2020-06-2600:00:00
github.com
18
7.7 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
An update of {‘nghttp2’, ‘redis’, ‘curl’, ‘python3’} packages of Photon OS has been released.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Photon | 1.0 | x86_64 | nghttp2-devel | < 1.41.0-1.ph1 | nghttp2-devel-1.41.0-1.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | nghttp2 | < 1.41.0-1.ph1 | nghttp2-1.41.0-1.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | redis | < 4.0.14-2.ph1 | redis-4.0.14-2.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | curl | < 7.59.0-10.ph1 | curl-7.59.0-10.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | python3-libs | < 3.5.6-14.ph1 | python3-libs-3.5.6-14.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | python3-tools | < 3.5.6-14.ph1 | python3-tools-3.5.6-14.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | python3 | < 3.5.6-14.ph1 | python3-3.5.6-14.ph1.x86_64.rpm |
| Photon | 1.0 | x86_64 | python3-devel | < 3.5.6-14.ph1 | python3-devel-3.5.6-14.ph1.x86_64.rpm |
Related
photon
photon
Important Photon OS Security Update - PHSA-2020-0304
2020-06-27 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: python36-3.6.11-1.fc31
2020-07-10 01:02:15
[SECURITY] Fedora 32 Update: python36-3.6.11-1.fc32
2020-07-04 01:14:28
[SECURITY] Fedora 31 Update: nghttp2-1.41.0-1.fc31
2020-06-18 01:01:53
nessus
nessus
Ubuntu 16.04 LTS / 18.04 LTS : Python vulnerabilities (USN-4333-1)
2020-04-22 00:00:00
Ubuntu 20.04 LTS : Python vulnerabilities (USN-4333-2)
2020-05-01 00:00:00
Fedora 31 : python36 (2020-ea5bdbcc90)
2020-07-10 00:00:00
openvas
openvas
Ubuntu: Security Advisory for python3.8 (USN-4333-2)
2020-05-01 00:00:00
Ubuntu: Security Advisory for python3.7 (USN-4333-1)
2020-04-22 00:00:00
Fedora: Security Advisory for python36 (FEDORA-2020-8bdd3fd7a4)
2020-07-04 00:00:00
cloudfoundry
cloudfoundry
USN-4333-1: Python vulnerabilities | Cloud Foundry
2020-05-14 00:00:00
ubuntu
ubuntu
Python vulnerabilities
2020-04-30 00:00:00
Python vulnerabilities
2020-04-21 00:00:00
nghttp2 vulnerability
2023-06-06 00:00:00
freebsd
freebsd
Python -- multiple vulnerabilities
2019-10-24 00:00:00
Python -- CRLF injection via the host part of the url passed to urlopen()
2019-10-24 00:00:00
Python -- multiple vulnerabilities
2020-08-19 00:00:00
amazon
amazon
Medium: python27, python34, python35, python36
2020-07-27 23:54:00
Medium: curl
2020-07-14 02:30:00
Important: nghttp2
2020-07-27 23:18:00
ibm
ibm
debian
debian
[SECURITY] [DSA 4731-1] redis security update
2020-07-19 19:30:52
[SECURITY] [DSA 4731-1] redis security update
2020-07-19 19:30:52
[SECURITY] [DLA 2295-1] curl security update
2020-07-28 20:29:35
veracode
veracode
Denial Of Service (DoS)
2021-04-29 11:57:54
Arbitrary File Overwrite
2020-06-25 05:16:51
Denial Of Service (DoS)
2020-06-05 03:23:12
cbl_mariner
cbl_mariner
CVE-2020-14147 affecting package redis 5.0.5-7
2020-11-30 19:30:43
CVE-2020-14147 affecting package redis 5.0.5-7
2022-04-09 06:51:55
CVE-2019-18348 affecting package python3 3.7.9-2
2021-07-08 21:56:42
mageia
mageia
Updated redis packages fix security vulnerability
2020-08-01 02:25:42
Updated nghttp2 packages fix security vulnerability
2020-06-11 02:59:36
suse
suse
Security update for redis (moderate)
2020-07-23 00:00:00
Security update for curl (important)
2020-06-30 00:00:00
Security update for nghttp2 (important)
2021-03-25 00:00:00
osv
osv
redis - security update
2020-07-19 00:00:00
Important: nghttp2 security update
2020-06-25 16:31:29
Important: nghttp2 security update
2020-06-25 16:31:29
redhat
redhat
(RHSA-2020:2523) Important: Red Hat OpenShift Service Mesh 1.1.2 servicemesh-proxy security update
2020-06-11 06:38:11
(RHSA-2020:5417) Moderate: curl security and bug fix update
2020-12-15 08:07:44
(RHSA-2020:5002) Moderate: curl security update
2020-11-10 09:37:34
ubuntucve
ubuntucve
prion
prion
Security feature bypass
2020-06-03 23:15:00
Input validation
2020-12-14 20:15:00
Code injection
2020-01-30 19:15:00
alpinelinux
alpinelinux
hackerone
hackerone
curl: curl overwrite local file with -J
2020-05-30 13:08:39
cve
cve
debiancve
debiancve
rocky
rocky
nghttp2 security update
2020-06-25 16:31:29
redhatcve
redhatcve
f5
f5
K000133094 : cURL vulnerability CVE-2020-8177
2023-03-21 00:00:00
almalinux
almalinux
Important: nghttp2 security update
2020-06-25 16:31:29
gentoo
gentoo
Python: Denial of service
2020-05-14 00:00:00
oraclelinux
oraclelinux
curl security and bug fix update
2020-11-10 00:00:00
centos
centos
curl, libcurl security update
2020-11-18 17:30:30
7.7 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
7.1 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
Related for PHSA-2020-1.0-0304