Security Update 2.0 207

Critical Photon OS Security Update

Summary

Advisory Id : PHSA-2020-0207

Type : Security

Severity : ['Critical', 'Moderate']

Issue date : 2020-02-13

Affected Release: 2.0

Details

Updates of ['envoy', 'ansible', 'libarchive', 'nginx'] packages of Photon OS have been released.

Affected Packages

Critical

envoy - ['CVE-2019-18802']

Moderate

ansible - ['CVE-2019-14864']

libarchive - ['CVE-2019-19221']

nginx - ['CVE-2019-20372']

Solution

Update the affected packages (tdnf update package)

Updated Packages Information

envoy-debuginfo-1.10.0-6.ph2.x86_64.rpm | size : 4.3M , sha256 : 96c74107ba37ed2087e83b17b3c6befe7b71de7c9a4ade91f861a2c951beec98 , build time : Thu, 13 Feb 2020 03:20:05 UTC

envoy-1.10.0-6.ph2.x86_64.rpm | size : 13M , sha256 : 64e289729b45627963a93946340b523794e2fa869da2fb4c75f8eb59311f96f8 , build time : Thu, 13 Feb 2020 03:20:05 UTC

ansible-2.7.9-3.ph2.noarch.rpm | size : 15M , sha256 : de4fa365307bc57e0d4ed6e2756fb933e9c1cf17555b12fd9a2927a420db04b2 , build time : Thu, 13 Feb 2020 03:13:16 UTC

libarchive-debuginfo-3.3.1-6.ph2.x86_64.rpm | size : 1.6M , sha256 : f164099baa1ac6385992b2ba58816cd8b3ee3964159890ad1b3829b05083ee1b , build time : Thu, 13 Feb 2020 02:49:32 UTC

libarchive-3.3.1-6.ph2.x86_64.rpm | size : 384K , sha256 : 772bb515a5768a7bc5d5816c319876ba6963d02f1ba958b90fe1059540ff947f , build time : Thu, 13 Feb 2020 02:49:32 UTC

libarchive-devel-3.3.1-6.ph2.x86_64.rpm | size : 164K , sha256 : 841c1ab5a9aff8b1c79b250c4f2c4a112d066c17ff7950ee58ff314bdb3abc19 , build time : Thu, 13 Feb 2020 02:49:32 UTC

nginx-debuginfo-1.16.1-2.ph2.x86_64.rpm | size : 5.0M , sha256 : 234101edc957b00ccb4fe7a658bfa5855da06ac7c05f726daa90759f5385d9f3 , build time : Thu, 13 Feb 2020 02:54:36 UTC

nginx-1.16.1-2.ph2.x86_64.rpm | size : 616K , sha256 : c2ead0423ffed58fba3d4b114ed849eda587cba720e77d85f2804b952b5a1927 , build time : Thu, 13 Feb 2020 02:54:36 UTC