# Critical Photon OS Security Update

## Summary
  
Advisory Id     : PHSA-2023-4.0-0425
  
Type            : Security
  
Severity        : ['Critical', 'Important', 'Moderate']
  
Issue date      : 2023-07-12
  
Affected Release: 4.0

## Details
  
Updates of ['runc', 'tar', 'cups', 'falco'] packages of Photon OS have been released.
## Affected Packages

### Critical
  
falco - ['[CVE-2023-24538](https://nvd.nist.gov/vuln/detail/CVE-2023-24538)', '[CVE-2023-24540](https://nvd.nist.gov/vuln/detail/CVE-2023-24540)']

### Important
  
cups - ['[CVE-2018-4180](https://nvd.nist.gov/vuln/detail/CVE-2018-4180)', '[CVE-2018-4182](https://nvd.nist.gov/vuln/detail/CVE-2018-4182)', '[CVE-2018-6553](https://nvd.nist.gov/vuln/detail/CVE-2018-6553)', '[CVE-2018-4183](https://nvd.nist.gov/vuln/detail/CVE-2018-4183)']
  
falco - ['[CVE-2022-41724](https://nvd.nist.gov/vuln/detail/CVE-2022-41724)', '[CVE-2023-24539](https://nvd.nist.gov/vuln/detail/CVE-2023-24539)', '[CVE-2023-24536](https://nvd.nist.gov/vuln/detail/CVE-2023-24536)', '[CVE-2023-29400](https://nvd.nist.gov/vuln/detail/CVE-2023-29400)', '[CVE-2023-24537](https://nvd.nist.gov/vuln/detail/CVE-2023-24537)', '[CVE-2023-24534](https://nvd.nist.gov/vuln/detail/CVE-2023-24534)', '[CVE-2022-41722](https://nvd.nist.gov/vuln/detail/CVE-2022-41722)', '[CVE-2022-41725](https://nvd.nist.gov/vuln/detail/CVE-2022-41725)']

### Moderate
  
runc - ['[CVE-2023-25809](https://nvd.nist.gov/vuln/detail/CVE-2023-25809)']
  
tar - ['[CVE-2022-48303](https://nvd.nist.gov/vuln/detail/CVE-2022-48303)']
  
cups - ['[CVE-2018-4181](https://nvd.nist.gov/vuln/detail/CVE-2018-4181)']
  
falco - ['[CVE-2023-24532](https://nvd.nist.gov/vuln/detail/CVE-2023-24532)']

## Solution
  
Update the affected packages (tdnf update package)

## Updated Packages Information
  
runc-1.1.4-9.ph4.x86_64.rpm | size : 3.1M , sha256 : 59400928914dd5cf31e8b493c70e944ac931f322a332586391ba22b75d9b7048 , build time : Wed, 12 Jul 2023 02:58:25 UTC
  
runc-doc-1.1.4-9.ph4.x86_64.rpm | size : 20K , sha256 : 78e66b5d3b3bb5928207256f386bba5988009656aba2cebfb8bdc3248676f532 , build time : Wed, 12 Jul 2023 02:58:25 UTC
  
tar-1.34-3.ph4.x86_64.rpm | size : 924K , sha256 : 4a7fd059bb98a9b0c067c33b0b631c2f4dfda3ab06d74a253f7d466a4ac2f2ed , build time : Wed, 12 Jul 2023 02:56:34 UTC
  
cups-2.4.6-1.ph4.x86_64.rpm | size : 5.4M , sha256 : f71197dad19485cd47dbf002bda4cbcbbe2fa6708ca68843e34b727db90d227a , build time : Wed, 12 Jul 2023 02:58:25 UTC
  
cups-devel-2.4.6-1.ph4.x86_64.rpm | size : 44K , sha256 : 11a8436a7496ae4f380f3719ac9329ea212e941162f43ccac9350c4b7a89bc72 , build time : Wed, 12 Jul 2023 02:58:25 UTC
  
falco-0.35.0-4.0510183001.ph4.x86_64.rpm | size : 11M , sha256 : 46a2f11395f38590165a3bdfd0c689f0a90419a4f7fb4dff63d7056dde66e0b6 , build time : Wed, 12 Jul 2023 02:58:52 UTC