Lucene search
PhotonPHSA-2024-4.0-0682HistorySep 04, 2024 - 12:00 a.m.
Critical Photon OS Security Update - PHSA-2024-4.0-0682
2024-09-0400:00:00
github.com
4
photon os
security update
curl
expat
unix
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.001
Percentile
43.5%
Updates of [‘curl’, ‘expat’] packages of Photon OS have been released.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Photon | 4.0 | x86_64 | curl-libs | < 8.7.1-3.ph4 | curl-libs-8.7.1-3.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | curl-devel | < 8.7.1-3.ph4 | curl-devel-8.7.1-3.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | expat-libs | < 2.4.9-3.ph4 | expat-libs-2.4.9-3.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | expat-docs | < 2.4.9-3.ph4 | expat-docs-2.4.9-3.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | expat | < 2.4.9-3.ph4 | expat-2.4.9-3.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | curl | < 8.7.1-3.ph4 | curl-8.7.1-3.ph4.x86_64.rpm |
| Photon | 4.0 | x86_64 | expat-devel | < 2.4.9-3.ph4 | expat-devel-2.4.9-3.ph4.x86_64.rpm |
Related
photon
photon
Critical Photon OS Security Update - PHSA-2024-3.0-0796
2024-09-17 00:00:00
Critical Photon OS Security Update - PHSA-2024-5.0-0364
2024-09-05 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0512
2023-11-15 00:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2024-248-01)
2024-09-05 00:00:00
Fedora: Security Advisory (FEDORA-2024-c7b547bec5)
2024-09-16 00:00:00
Ubuntu: Security Advisory (USN-7000-2)
2024-09-18 00:00:00
nessus
nessus
Fedora 40 : mingw-expat (2024-c7b547bec5)
2024-09-14 00:00:00
Fedora 39 : mingw-expat (2024-e86a48cd72)
2024-09-14 00:00:00
Photon OS 5.0: Expat PHSA-2024-5.0-0364
2024-09-05 00:00:00
osv
osv
expat vulnerabilities
2024-09-12 10:01:43
expat-2.6.3-1.1 on GA media
2024-09-06 00:00:00
Security update for expat
2024-09-09 14:41:45
slackware
slackware
[slackware-security] expat
2024-09-04 23:40:07
[slackware-security] curl
2024-07-31 18:41:26
[slackware-security] python3
2024-09-09 01:06:11
fedora
fedora
[SECURITY] Fedora 41 Update: mingw-expat-2.6.3-1.fc41
2024-09-13 21:02:44
[SECURITY] Fedora 40 Update: expat-2.6.3-1.fc40
2024-09-10 02:10:36
[SECURITY] Fedora 39 Update: mingw-expat-2.6.3-1.fc39
2024-09-14 01:26:36
oraclelinux
oraclelinux
expat security update
2024-09-18 00:00:00
redhat
redhat
(RHSA-2024:6754) Moderate: expat security update
2024-09-18 11:08:23
mageia
mageia
Updated expat packages fix security vulnerabilities
2024-09-11 23:42:44
cloudlinux
cloudlinux
expat: Fix of 2 CVEs
2024-09-10 18:46:09
redos
redos
ROS-20240829-10
2024-08-29 00:00:00
ROS-20240910-03
2024-09-10 00:00:00
ROS-20240816-02
2024-08-16 00:00:00
vulnrichment
vulnrichment
cve
cve
redhatcve
redhatcve
alpinelinux
alpinelinux
ubuntucve
ubuntucve
CVE-2024-45491
2024-09-03 00:00:00
CVE-2024-7264
2024-07-31 00:00:00
nvd
nvd
debiancve
debiancve
cvelist
cvelist
cbl_mariner
cbl_mariner
CVE-2024-45490 affecting package expat for versions less than 2.6.3-1
2024-09-13 18:09:05
CVE-2024-45492 affecting package expat for versions less than 2.6.3-1
2024-09-13 18:09:05
CVE-2024-45491 affecting package expat for versions less than 2.6.3-1
2024-09-13 18:09:05
ubuntu
ubuntu
curl vulnerability
2024-08-20 00:00:00
curl vulnerability
2024-08-05 00:00:00
veracode
veracode
Heap Buffer Over-Read
2024-08-01 08:06:37
hackerone
hackerone
curl: CVE-2024-7264: ASN.1 date parser overread
2024-07-30 05:16:36
f5
f5
K000141062: libcurl vulnerability CVE-2024-7264
2024-09-12 00:00:00
wolfi
wolfi
CVE-2024-7264 vulnerabilities
2024-09-19 09:11:50
prion
prion
Authentication flaw
2023-11-14 21:15:00
vmware
vmware
exploitdb
exploitdb
VMware Cloud Director 10.5 - Bypass identity verification
2024-03-12 00:00:00
packetstorm
packetstorm
VMware Cloud Director 10.5 Authentication Bypass
2024-03-13 00:00:00
zdt
zdt
VMware Cloud Director - Bypass identity verification Exploit
2023-12-08 00:00:00
VMware Cloud Director 10.5 - Bypass identity verification Exploit
2024-03-12 00:00:00
hivepro
hivepro
VMware Unveils Critical Authentication Bypass Vulnerability in VCD Appliance
2023-11-17 08:07:39
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
10
Confidence
High
EPSS
0.001
Percentile
43.5%
Related for PHSA-2024-4.0-0682