Lucene search
PhotonPHSA-2022-3.0-0382HistoryApr 14, 2022 - 12:00 a.m.
Important Photon OS Security Update - PHSA-2022-3.0-0382
2022-04-1400:00:00
github.com
9
photon os
security update
sendmail
nginx
xz
gzip
unix
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.007
Percentile
80.6%
Updates of [‘sendmail’, ‘nginx’, ‘xz’, ‘gzip’] packages of Photon OS have been released.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Photon | 3.0 | x86_64 | sendmail | <Â 8.17.1-1.ph3 | sendmail-8.17.1-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | xz-devel | <Â 5.2.4-2.ph3 | xz-devel-5.2.4-2.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | xz-libs | <Â 5.2.4-2.ph3 | xz-libs-5.2.4-2.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | xz-lang | <Â 5.2.4-2.ph3 | xz-lang-5.2.4-2.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | xz | <Â 5.2.4-2.ph3 | xz-5.2.4-2.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | gzip | <Â 1.12-1.ph3 | gzip-1.12-1.ph3.x86_64.rpm |
| Photon | 3.0 | x86_64 | nginx | <Â 1.16.1-6.ph3 | nginx-1.16.1-6.ph3.x86_64.rpm |
Related
photon
photon
Important Photon OS Security Update - PHSA-2022-4.0-0172
2022-04-16 00:00:00
Important Photon OS Security Update - PHSA-2022-0172
2022-04-15 00:00:00
Important Photon OS Security Update - PHSA-2022-0382
2022-04-14 00:00:00
osv
osv
BIT-nginx-2021-3618
2024-03-06 10:59:22
vsftpd vulnerability
2023-09-18 13:38:36
CVE-2021-3618
2022-03-23 20:15:09
fedora
fedora
[SECURITY] Fedora 34 Update: vsftpd-3.0.3-43.fc34
2021-10-21 16:53:35
[SECURITY] Fedora 33 Update: nginx-1.20.1-3.fc33
2021-07-04 01:09:18
[SECURITY] Fedora 35 Update: vsftpd-3.0.3-46.fc35
2021-10-29 23:25:53
nessus
nessus
CentOS 9 : nginx-1.20.1-10.el9
2024-02-29 00:00:00
Amazon Linux 2023 : vsftpd (ALAS2023-2023-019)
2023-03-21 00:00:00
SUSE SLES15 Security Update : vsftpd (SUSE-SU-2022:3458-1)
2022-09-29 00:00:00
amazon
amazon
Medium: vsftpd
2024-01-19 01:51:00
Important: gzip
2022-05-31 23:47:00
redos
redos
ROS-20220125-08
2022-01-25 00:00:00
ROS-20220112-03
2022-01-12 00:00:00
ROS-20220125-02
2022-01-25 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:3458-1)
2022-09-29 00:00:00
Mageia: Security Advisory (MGASA-2021-0540)
2022-01-28 00:00:00
Fedora: Security Advisory for nginx (FEDORA-2021-a856024cca)
2021-07-06 00:00:00
debiancve
debiancve
CVE-2021-3618
2022-03-23 20:15:09
CVE-2022-1271
2022-08-31 16:15:09
nvd
nvd
CVE-2021-3618
2022-03-23 20:15:09
mageia
mageia
Updated nginx/vsftpd packages fix security vulnerability
2021-12-08 23:04:18
cbl_mariner
cbl_mariner
CVE-2021-3618 affecting package nginx for versions less than 1.20.2-2
2022-06-03 17:54:00
CVE-2021-3618 affecting package vsftpd 3.0.3-11
2022-05-12 02:16:38
CVE-2021-3618 affecting package vsftpd for versions less than 3.0.5-1
2022-04-26 19:57:40
suse
suse
Security update for vsftpd (important)
2022-09-20 00:00:00
Security update for vsftpd (important)
2022-09-28 00:00:00
Security update for xz (important)
2022-04-12 00:00:00
ubuntucve
ubuntucve
CVE-2021-3618
2022-03-23 00:00:00
alpinelinux
alpinelinux
CVE-2021-3618
2022-03-23 20:15:09
CVE-2022-1271
2022-08-31 16:15:09
ibm
ibm
ubuntu
ubuntu
vsftpd vulnerability
2023-09-18 00:00:00
XZ Utils vulnerability
2022-04-13 00:00:00
cvelist
cvelist
CVE-2021-3618
2022-03-23 00:00:00
CVE-2022-1271
2022-08-31 15:33:00
veracode
veracode
Access Restriction Bypass
2022-04-16 19:23:44
redhatcve
redhatcve
CVE-2021-3618
2021-06-24 06:25:59
cve
cve
CVE-2021-3618
2022-03-23 20:15:09
f5
f5
K000132639 : ALPACA: TLS vulnerability CVE-2021-3618
2023-02-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package nginx version 1.22.0-alt1
2022-07-15 00:00:00
Security fix for the ALT Linux 10 package nginx version 1.22.0-alt1
2022-07-14 00:00:00
Security fix for the ALT Linux 10 package gzip version 1.12-alt1
2022-04-11 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2269
2023-10-22 06:05:16
prion
prion
Design/Logic Flaw
2022-03-23 20:15:00
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-3618
2022-04-11 16:46:59
oraclelinux
oraclelinux
xz security update
2022-06-15 00:00:00
xz security update
2022-06-30 00:00:00
gzip security update
2022-06-30 00:00:00
redhat
redhat
(RHSA-2022:4992) Important: xz security update
2022-06-13 07:15:56
(RHSA-2022:2191) Important: gzip security update
2022-05-11 13:01:16
(RHSA-2022:4994) Important: xz security update
2022-06-13 07:16:53
rocky
rocky
xz security update
2022-06-08 08:20:11
gzip security update
2022-04-26 09:54:04
cloudfoundry
cloudfoundry
USN-5378-2: XZ Utils vulnerability | Cloud Foundry
2022-05-23 00:00:00
USN-5378-1: Gzip vulnerability | Cloud Foundry
2022-05-23 00:00:00
centos
centos
xz security update
2022-08-02 19:22:54
almalinux
almalinux
Important: gzip security update
2022-04-26 09:54:04
Important: xz security update
2022-06-13 00:00:00
Important: xz security update
2022-06-08 00:00:00
debian
debian
[SECURITY] [DSA 5122-1] gzip security update
2022-04-18 19:31:16
[SECURITY] [DSA 5123-1] xz-utils security update
2022-04-18 19:36:12
[SECURITY] [DLA 2976-1] gzip security update
2022-04-10 13:01:05
slackware
slackware
[slackware-security] xz
2022-04-14 21:21:34
archlinux
archlinux
[ASA-202204-8] xz: arbitrary command execution
2022-04-07 00:00:00
zdi
zdi
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.007
Percentile
80.6%
Related for PHSA-2022-3.0-0382