Photon OS 2.0 : openjdk8 / httpd / librelp / zsh / libvirt (PhotonOS-PHSA-2018-2.0-0039)

High Nessus Plugin ID 111298

Synopsis

The remote PhotonOS host is missing multiple security updates.

Description

An update of {'openjdk8', 'httpd', 'librelp', 'zsh', 'libvirt', 'libtiff'} packages of Photon OS has been released.

Solution

Update the affected Zsh / Httpd / Librelp / Openjdk8 / Libvirt / Libtiff packages.

See Also

http://www.nessus.org/u?17165379

Plugin Details

Severity: High

ID: 111298

File Name: PhotonOS_PHSA-2018-2_0-0039.nasl

Version: 1.1

Type: local

Family: PhotonOS Local Security Checks

Published: 2018/07/24

Modified: 2018/07/24

Dependencies: 12634

Risk Information

Risk Factor: High

CVSS Score Source: CVE-2018-1000140

CVSSv2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

CVSSv3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Vulnerability Information

CPE: p-cpe:/a:vmware:photonos:zsh, p-cpe:/a:vmware:photonos:httpd, p-cpe:/a:vmware:photonos:librelp, p-cpe:/a:vmware:photonos:openjdk8, p-cpe:/a:vmware:photonos:libvirt, p-cpe:/a:vmware:photonos:libtiff, cpe:/o:vmware:photonos:2.0

Required KB Items: Host/local_checks_enabled, Host/PhotonOS/release, Host/PhotonOS/rpm-list

Patch Publication Date: 2018/04/27

Reference Information

CVE: CVE-2017-11613, CVE-2018-1064, CVE-2018-1083, CVE-2018-1303, CVE-2018-2794, CVE-2018-2795, CVE-2018-2796, CVE-2018-2797, CVE-2018-2798, CVE-2018-2799, CVE-2018-2811, CVE-2018-2814, CVE-2018-2815, CVE-2018-2825, CVE-2018-2826, CVE-2018-5784, CVE-2018-1000140

BID: 99977, 103522, 103572, 103782, 103796, 103798, 103810, 103817, 103841, 103846, 103847, 103848, 103868, 103872, 104510