Important Photon OS Security Update - PHSA-2022-0207

🗓️ 06 Jul 2022 00:00:00Reported by PhotonType

photon

photon🔗 github.com👁 49 Views

Important Photon OS security update for curl, redis, openssl package

Reporter	Title	Published	Views	Family All 754
IBM Security Bulletins	Security Bulletin:IBM MQ Operator and Queue manager container images are vulnerable to multiple vulnerabilities from openssl, pcre2 and Golang Go	31 Aug 202216:17	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in libcurl may affect IBM Spectrum Copy Data Management (CVE-2022-32206, CVE-2022-32208)	7 Oct 202218:12	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a man-in-the-middle attack in cURL libcurl (CVE-2022-32208)	31 Mar 202316:58	–	ibm
IBM Security Bulletins	Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v5.0.3 is vulnerable to multiple Operator package issues	12 Dec 202416:58	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Linux Kernel, Golang Go, and cURL libcurl may affect IBM Spectrum Protect Plus	13 Dec 202219:27	–	ibm
IBM Security Bulletins	Security Bulletin: AIX is vulnerable to arbitrary command execution (CVE-2022-1292 and CVE-2022-2068) or an attacker may obtain sensitive information (CVE-2022-2097) due to OpenSSL	19 Aug 202216:02	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in OpenSSL affect IBM InfoSphere Information Server	25 Jan 202316:00	–	ibm
IBM Security Bulletins	Security Bulletin: Netcool Operations Insight v1.6.8 addresses multiple security vulnerabilities.	11 Apr 202311:47	–	ibm
IBM Security Bulletins	Security Bulletin: Execution Engine for Apache Hadoop is vulnerable to heap-based buffer overflow and remote attacker to bypass security restrictions	20 Feb 202503:40	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Linux Kernel, OpenSSL, Golang Go, and Zlib may affect IBM Spectrum Protect Plus	17 Sep 202206:09	–	ibm

OS	OS Version	Architecture	Package	Package Version	Filename
Photon	4.0	x86_64	openssl-docs	3.0.3-3.ph4	openssl-docs-3.0.3-3.ph4.x86_64.rpm
Photon	4.0	x86_64	openssl-devel	3.0.3-3.ph4	openssl-devel-3.0.3-3.ph4.x86_64.rpm
Photon	4.0	x86_64	redis	7.0.0-2.ph4	redis-7.0.0-2.ph4.x86_64.rpm
Photon	4.0	x86_64	openssl-fips-provider	3.0.3-3.ph4	openssl-fips-provider-3.0.3-3.ph4.x86_64.rpm
Photon	4.0	x86_64	curl-devel	7.83.1-2.ph4	curl-devel-7.83.1-2.ph4.x86_64.rpm
Photon	4.0	x86_64	curl	7.83.1-2.ph4	curl-7.83.1-2.ph4.x86_64.rpm
Photon	4.0	x86_64	curl-libs	7.83.1-2.ph4	curl-libs-7.83.1-2.ph4.x86_64.rpm
Photon	4.0	x86_64	openssl-perl	3.0.3-3.ph4	openssl-perl-3.0.3-3.ph4.x86_64.rpm
Photon	4.0	x86_64	openssl-c_rehash	3.0.3-3.ph4	openssl-c_rehash-3.0.3-3.ph4.x86_64.rpm
Photon	4.0	x86_64	openssl	3.0.3-3.ph4	openssl-3.0.3-3.ph4.x86_64.rpm

06 Jul 2022 00:00Current

1.7Low risk

Vulners AI Score1.7

EPSS0.03367

photon os security update curl redis openssl packages