Security Update 4.0 425

Critical Photon OS Security Update

Summary

Advisory Id : PHSA-2023-4.0-0425

Type : Security

Severity : ['Critical', 'Important', 'Moderate']

Issue date : 2023-07-12

Affected Release: 4.0

Details

Updates of ['cups', 'tar', 'runc', 'falco'] packages of Photon OS have been released.

Affected Packages

Critical

falco - ['CVE-2023-24540', 'CVE-2023-24538']

Important

cups - ['CVE-2018-4183', 'CVE-2018-6553', 'CVE-2018-4182', 'CVE-2018-4180']

falco - ['CVE-2022-41724', 'CVE-2023-24536', 'CVE-2023-24534', 'CVE-2023-29400', 'CVE-2022-41725', 'CVE-2023-24537', 'CVE-2022-41722', 'CVE-2023-24539']

Moderate

cups - ['CVE-2018-4181']

tar - ['CVE-2022-48303']

runc - ['CVE-2023-25809']

falco - ['CVE-2023-24532']

Solution

Update the affected packages (tdnf update package)

Updated Packages Information

cups-2.4.6-1.ph4.x86_64.rpm | size : 5.4M , sha256 : f71197dad19485cd47dbf002bda4cbcbbe2fa6708ca68843e34b727db90d227a , build time : Wed, 12 Jul 2023 02:58:25 UTC

cups-devel-2.4.6-1.ph4.x86_64.rpm | size : 44K , sha256 : 11a8436a7496ae4f380f3719ac9329ea212e941162f43ccac9350c4b7a89bc72 , build time : Wed, 12 Jul 2023 02:58:25 UTC

tar-1.34-3.ph4.x86_64.rpm | size : 924K , sha256 : 4a7fd059bb98a9b0c067c33b0b631c2f4dfda3ab06d74a253f7d466a4ac2f2ed , build time : Wed, 12 Jul 2023 02:56:34 UTC

runc-1.1.4-9.ph4.x86_64.rpm | size : 3.1M , sha256 : 59400928914dd5cf31e8b493c70e944ac931f322a332586391ba22b75d9b7048 , build time : Wed, 12 Jul 2023 02:58:25 UTC

runc-doc-1.1.4-9.ph4.x86_64.rpm | size : 20K , sha256 : 78e66b5d3b3bb5928207256f386bba5988009656aba2cebfb8bdc3248676f532 , build time : Wed, 12 Jul 2023 02:58:25 UTC

falco-0.35.0-4.0510183001.ph4.x86_64.rpm | size : 11M , sha256 : 46a2f11395f38590165a3bdfd0c689f0a90419a4f7fb4dff63d7056dde66e0b6 , build time : Wed, 12 Jul 2023 02:58:52 UTC