Skip to content

Security Updates 1.0 290

Jump to bottom
Siju Maliakkal edited this page Apr 29, 2020 · 1 revision

[Critical] Photon OS Security Update

Summary

Advisory ID : PHSA-2020-1.0-0290
Type : Security
Severity : {'Critical', 'Low', 'Important', 'Moderate'}
Issued on : 2020-04-23
Affected Versions : Photon OS 1.0

Details

An update of {'openjdk', 'linux', 'openjdk11', 'envoy', 'linux-esx', 'httpd', 'PyYAML', 'systemd'} packages of Photon OS has been released.

Affected Packages:

Critical

PyYAML - ['CVE-2020-1747']
envoy - ['CVE-2020-8664']
httpd - ['CVE-2020-1934']
openjdk11 - ['CVE-2018-3183']

Important

openjdk - ['CVE-2020-2803', 'CVE-2020-2816', 'CVE-2020-2805']
linux - ['CVE-2020-11565', 'CVE-2020-11668']
openjdk11 - ['CVE-2018-3149', 'CVE-2020-2805', 'CVE-2019-2602', 'CVE-2020-2816', 'CVE-2020-2803', 'CVE-2018-3169']
envoy - ['CVE-2019-18836', 'CVE-2019-15226', 'CVE-2020-8661', 'CVE-2020-8659', 'CVE-2019-18838', 'CVE-2019-15225']
linux-esx - ['CVE-2020-11565', 'CVE-2020-11668']
systemd - ['CVE-2019-20386']

Moderate

openjdk - ['CVE-2020-2800', 'CVE-2020-2781', 'CVE-2020-2830', 'CVE-2020-2767']
linux - ['CVE-2020-10942', 'CVE-2020-11609', 'CVE-2020-11608']
openjdk11 - ['CVE-2020-2781', 'CVE-2018-11212', 'CVE-2019-2958', 'CVE-2019-2977', 'CVE-2019-2989', 'CVE-2018-13785', 'CVE-2019-2769', 'CVE-2020-2830', 'CVE-2018-3211', 'CVE-2018-3180', 'CVE-2019-2762', 'CVE-2019-2745', 'CVE-2020-2767', 'CVE-2020-2800', 'CVE-2019-2999', 'CVE-2020-2593', 'CVE-2019-2816', 'CVE-2020-2601', 'CVE-2018-14048', 'CVE-2019-2975', 'CVE-2019-2821', 'CVE-2019-2949', 'CVE-2019-2684', 'CVE-2020-2655']
linux-esx - ['CVE-2020-11494', 'CVE-2020-10942', 'CVE-2020-11609', 'CVE-2020-11608']
httpd - ['CVE-2020-1927']

Low

openjdk - ['CVE-2020-2757', 'CVE-2020-2778', 'CVE-2020-2773', 'CVE-2020-2756', 'CVE-2020-2754', 'CVE-2020-2755']
openjdk11 - ['CVE-2018-3150', 'CVE-2020-2583', 'CVE-2019-2426', 'CVE-2019-2964', 'CVE-2019-2988', 'CVE-2020-2754', 'CVE-2020-2755', 'CVE-2020-2654', 'CVE-2019-2962', 'CVE-2020-2778', 'CVE-2019-2766', 'CVE-2019-2945', 'CVE-2020-2756', 'CVE-2019-2981', 'CVE-2019-2978', 'CVE-2018-3139', 'CVE-2019-2987', 'CVE-2020-2757', 'CVE-2019-2983', 'CVE-2019-2973', 'CVE-2018-3157', 'CVE-2019-2933', 'CVE-2018-3136', 'CVE-2020-2773', 'CVE-2019-2818', 'CVE-2019-2894', 'CVE-2019-2422', 'CVE-2019-2992', 'CVE-2020-2590', 'CVE-2019-2786']

Solution

Update the affected packages (tdnf update package)
Note: For packages ['linux', 'linux-esx', 'systemd'] after updating, a reboot is required for taking effect.

Updated Packages Information

openjdk-debuginfo-1.8.0.252-1.ph1.x86_64.rpm , sha256 : 96b3b3f13f6def0bc40522cc80a914909c046141d8e83eb2aebbe48fb5aa33e7 , size : 9.5M , build_date : Thu, 23 Apr 2020 16:42:33 UTC
openjdk-sample-1.8.0.252-1.ph1.x86_64.rpm , sha256 : bc331ef087fc3b67d4c96507a8af0ac2120ceedc3eb65f3aa10cbcad3fc137ce , size : 457K , build_date : Thu, 23 Apr 2020 16:42:33 UTC
openjdk-1.8.0.252-1.ph1.x86_64.rpm , sha256 : 2ab6c25e5f601d2bc69ea58075273424962b0c81ab3ae81597aa76cecd16bbb4 , size : 12M , build_date : Thu, 23 Apr 2020 16:42:33 UTC
openjdk-doc-1.8.0.252-1.ph1.x86_64.rpm , sha256 : e0e04bc4596b0689dd869210c542afc0063b0cbd2da9e8cd17a95eed92c7daa3 , size : 2.4M , build_date : Thu, 23 Apr 2020 16:42:33 UTC
openjdk-src-1.8.0.252-1.ph1.x86_64.rpm , sha256 : 7c88fcb88e3d86cafe42a899dffba1961bf2d85127d5282d7ae364c4fefa7db7 , size : 47M , build_date : Thu, 23 Apr 2020 16:42:33 UTC
linux-api-headers-4.4.219-1.ph1.noarch.rpm , sha256 : 82ac361c18d1786c1efb0a2184018d7f6d7de241fc6bb362370d78104e31418f , size : 1.1M , build_date : Thu, 23 Apr 2020 16:17:59 UTC
linux-drivers-gpu-4.4.219-1.ph1.x86_64.rpm , sha256 : 6a886caaea033bb3359f989812aec408c73e291d427647200c180f7ec41144dd , size : 1.5M , build_date : Thu, 23 Apr 2020 16:59:03 UTC
linux-docs-4.4.219-1.ph1.x86_64.rpm , sha256 : ace1c9d3b5978a6aad57463057da99ef56aa24d7b0400f4bc7d2a04d3bf35e60 , size : 6.6M , build_date : Thu, 23 Apr 2020 16:59:03 UTC
linux-esx-4.4.219-2.ph1.x86_64.rpm , sha256 : 0979f05235d183b87f0ee8f52deacba001b6818f6236b73b9359cdcf6455f8c6 , size : 7.7M , build_date : Thu, 23 Apr 2020 17:36:26 UTC
linux-dev-4.4.219-1.ph1.x86_64.rpm , sha256 : 7ca102755fee3cdac14f2637797ff7677e6444ec976c8cfa9cddb050f45b3bbc , size : 10M , build_date : Thu, 23 Apr 2020 16:59:03 UTC
linux-debuginfo-4.4.219-1.ph1.x86_64.rpm , sha256 : 9daad481f057c1392d6d57b2d9827377714ead3bbea4cf99b11c46bcb1a7a3ec , size : 427M , build_date : Thu, 23 Apr 2020 16:59:03 UTC
linux-oprofile-4.4.219-1.ph1.x86_64.rpm , sha256 : 50633e93fb7a86eb79f0ba5b98bc773742c7928341dae8cf401d483ffc9f38c9 , size : 48K , build_date : Thu, 23 Apr 2020 16:59:03 UTC
linux-esx-docs-4.4.219-2.ph1.x86_64.rpm , sha256 : 0f1496fba7c58ce389c46eb03a07ce5379a265e5bebcb8f1b268b27fc9c75548 , size : 6.6M , build_date : Thu, 23 Apr 2020 16:35:10 UTC
linux-tools-4.4.219-1.ph1.x86_64.rpm , sha256 : 3c146859b22e80fce53ebc32974fe3c48647f3c883e60238aca0223faf698cd5 , size : 830K , build_date : Thu, 23 Apr 2020 16:59:03 UTC
linux-sound-4.4.219-1.ph1.x86_64.rpm , sha256 : e8fd9e759df1742ef61bf58b4f51348078b72a9966e9f7239a5b9e684b2841d8 , size : 262K , build_date : Thu, 23 Apr 2020 16:59:03 UTC
linux-4.4.219-1.ph1.x86_64.rpm , sha256 : 0e17dabc18b2f78638aa40a93be5c203dbcb5507452950a085198be6a3f5d0e0 , size : 19M , build_date : Thu, 23 Apr 2020 17:36:46 UTC
linux-esx-devel-4.4.219-2.ph1.x86_64.rpm , sha256 : 6fbbb22b4117e272e4259e3cf2e2f7698ed4e1d6e2c32a36beddd9a879b9e178 , size : 9.8M , build_date : Thu, 23 Apr 2020 16:35:10 UTC
linux-esx-debuginfo-4.4.219-2.ph1.x86_64.rpm , sha256 : 6e4cfe222735806152e090392a8967a506027b10ae6c1bd5dcb5d8e6e61d88a9 , size : 192M , build_date : Thu, 23 Apr 2020 16:35:10 UTC
openjdk11-debuginfo-11.0.7-1.ph1.x86_64.rpm , sha256 : 4ebdcb0c027194f671ac0c5ce0e2dfaedc657393ab411962a745a07500747032 , size : 209M , build_date : Thu, 23 Apr 2020 16:46:17 UTC
openjdk11-11.0.7-1.ph1.x86_64.rpm , sha256 : 571728839204d87c7c4e694dae864598a786a7ae3197f5530e6f97089203d37d , size : 182M , build_date : Thu, 23 Apr 2020 16:46:17 UTC
openjdk11-doc-11.0.7-1.ph1.x86_64.rpm , sha256 : 2f69bb6510079739f62cac7bfcf866041b1ec34a96c625f1f3aa89900e5e6ed8 , size : 5.6M , build_date : Thu, 23 Apr 2020 16:46:17 UTC
openjdk11-src-11.0.7-1.ph1.x86_64.rpm , sha256 : 5d22f71979c948c657efeb5e57d87489973563a52ba907e7fa84f485e077aceb , size : 52M , build_date : Thu, 23 Apr 2020 16:46:17 UTC
envoy-debuginfo-1.13.1-1.ph1.x86_64.rpm , sha256 : a213efe575677f692f9e4e19c0402762de3dccdc2039fe24093c08db9d8f94e2 , size : 8.5M , build_date : Thu, 23 Apr 2020 16:58:39 UTC
envoy-1.13.1-1.ph1.x86_64.rpm , sha256 : ec5f833ac352a4488ef2ee05adc15cd747991057496981af296f075ee4e30903 , size : 23M , build_date : Thu, 23 Apr 2020 16:58:39 UTC
linux-esx-4.4.219-2.ph1.x86_64.rpm , sha256 : 0979f05235d183b87f0ee8f52deacba001b6818f6236b73b9359cdcf6455f8c6 , size : 7.7M , build_date : Thu, 23 Apr 2020 17:36:26 UTC
linux-esx-docs-4.4.219-2.ph1.x86_64.rpm , sha256 : 0f1496fba7c58ce389c46eb03a07ce5379a265e5bebcb8f1b268b27fc9c75548 , size : 6.6M , build_date : Thu, 23 Apr 2020 16:35:10 UTC
linux-esx-devel-4.4.219-2.ph1.x86_64.rpm , sha256 : 6fbbb22b4117e272e4259e3cf2e2f7698ed4e1d6e2c32a36beddd9a879b9e178 , size : 9.8M , build_date : Thu, 23 Apr 2020 16:35:10 UTC
linux-esx-debuginfo-4.4.219-2.ph1.x86_64.rpm , sha256 : 6e4cfe222735806152e090392a8967a506027b10ae6c1bd5dcb5d8e6e61d88a9 , size : 192M , build_date : Thu, 23 Apr 2020 16:35:10 UTC
httpd-tools-2.4.43-1.ph1.x86_64.rpm , sha256 : ff96f32aa760d2ae2230d299d613724bfd852c7f2aa5f333f71b8c848e8c4ec3 , size : 19K , build_date : Thu, 23 Apr 2020 16:32:28 UTC
httpd-debuginfo-2.4.43-1.ph1.x86_64.rpm , sha256 : ecaa2e6cbf7f5b08ab85cf28a147194a4be1d70d66ca19c77f531dc2b1d66b16 , size : 5.0M , build_date : Thu, 23 Apr 2020 16:32:28 UTC
httpd-2.4.43-1.ph1.x86_64.rpm , sha256 : 75a3bd33b5c1099b04e4eaae6d96923bdccf9d07be2053d44a306d068d7059c7 , size : 1.8M , build_date : Thu, 23 Apr 2020 16:32:28 UTC
httpd-devel-2.4.43-1.ph1.x86_64.rpm , sha256 : d75553491fcd1db1daacc1f6a3b0f2dfac4658cb30c96ddf7317920569adec78 , size : 193K , build_date : Thu, 23 Apr 2020 16:32:28 UTC
httpd-docs-2.4.43-1.ph1.x86_64.rpm , sha256 : 1a72dce1068e4666fd5f18a5bbe832d9e44da78e492be13344eaebe8b00f4f9b , size : 5.4M , build_date : Thu, 23 Apr 2020 16:32:28 UTC
python3-PyYAML-3.12-5.ph1.x86_64.rpm , sha256 : dbcdaed049f128268b8756fba8905c1e0f44d222adc4de8b94b5b01e7f027dbe , size : 192K , build_date : Thu, 23 Apr 2020 16:19:31 UTC
PyYAML-debuginfo-3.12-5.ph1.x86_64.rpm , sha256 : ec930482b6b296d5b82567ac69166ff85e7408165baf92c6f9b1c9f8dbbab64a , size : 572K , build_date : Thu, 23 Apr 2020 16:19:31 UTC
PyYAML-3.12-5.ph1.x86_64.rpm , sha256 : 6d0aeadbd0ec29609feb7a37f886d9b4af56e681f2e1cd55810d9b366f9a2589 , size : 196K , build_date : Thu, 23 Apr 2020 16:19:31 UTC
systemd-228-57.ph1.x86_64.rpm , sha256 : 9855f25c5c275399c4b11ebee7680267e676620c3606c393988adec05eb3d827 , size : 13M , build_date : Thu, 23 Apr 2020 16:24:10 UTC
systemd-debuginfo-228-57.ph1.x86_64.rpm , sha256 : bd720232d6eebac0a71c54afb6e7205c71324c5cda11cb86842a2c747356a3ba , size : 67M , build_date : Thu, 23 Apr 2020 16:24:10 UTC

Home | Download Photon OS | Documentation | VMware on GitHub

Clone this wiki locally