Update Advisories

2023-07-20 05:37:13 +00:00 · 2023-07-20 05:37:13 +00:00 · 44cd7894b0
parent 4ccf2aa3d7
commit 44cd7894b0
12 changed files with 154 additions and 15 deletions
--- a/advisories/PHSA-2020-3.0-0052.json
+++ b/advisories/PHSA-2020-3.0-0052.json
@ -74,7 +74,7 @@
        }
    ],
    "id": "PHSA-2020-3.0-0052",
-    "modified": "2023-05-15T05:25:03Z",
+    "modified": "2023-07-20T05:28:22Z",
    "published": "2020-01-28T00:00:00Z",
    "references": [
        {
@ -105,6 +105,7 @@
        "CVE-2019-15504",
        "CVE-2019-19056",
        "CVE-2019-19927",
-        "CVE-2019-19965"
+        "CVE-2019-19965",
+        "CVE-2019-16230"
    ]
 }
--- a/advisories/PHSA-2020-3.0-0127.json
+++ b/advisories/PHSA-2020-3.0-0127.json
@ -48,7 +48,7 @@
        }
    ],
    "id": "PHSA-2020-3.0-0127",
-    "modified": "2023-05-15T05:25:03Z",
+    "modified": "2023-07-20T05:28:22Z",
    "published": "2020-08-18T00:00:00Z",
    "references": [
        {
@ -64,6 +64,9 @@
        "CVE-2020-16166",
        "CVE-2020-25220",
        "CVE-2020-24490",
-        "CVE-2018-16880"
+        "CVE-2018-16880",
+        "CVE-2019-16230",
+        "CVE-2019-19072",
+        "CVE-2019-19078"
    ]
 }
--- a/advisories/PHSA-2023-3.0-0578.json
+++ b/advisories/PHSA-2023-3.0-0578.json
@ -110,7 +110,7 @@
        }
    ],
    "id": "PHSA-2023-3.0-0578",
-    "modified": "2023-06-06T05:26:16Z",
+    "modified": "2023-07-20T05:28:22Z",
    "published": "2023-05-12T00:00:00Z",
    "references": [
        {
@ -125,6 +125,7 @@
        "CVE-2021-28235",
        "CVE-2020-25559",
        "CVE-2020-13988",
-        "CVE-2023-21980"
+        "CVE-2023-21980",
+        "CVE-2021-44917"
    ]
 }
--- a/advisories/PHSA-2023-3.0-0585.json
+++ b/advisories/PHSA-2023-3.0-0585.json
@ -92,7 +92,7 @@
        }
    ],
    "id": "PHSA-2023-3.0-0585",
-    "modified": "2023-07-12T23:06:35Z",
+    "modified": "2023-07-20T05:28:22Z",
    "published": "2023-05-24T00:00:00Z",
    "references": [
        {
@ -110,6 +110,11 @@
        "CVE-2023-2513",
        "CVE-2023-32233",
        "CVE-2023-1859",
-        "CVE-2023-34256"
+        "CVE-2023-34256",
+        "CVE-2023-35828",
+        "CVE-2023-2483",
+        "CVE-2023-3268",
+        "CVE-2023-35823",
+        "CVE-2023-35824"
    ]
 }
--- a/advisories/PHSA-2023-3.0-0608.json
+++ b/advisories/PHSA-2023-3.0-0608.json
@ -74,10 +74,17 @@
                ],
                "type": "ECOSYSTEM"
            }
+        },
+        {
+            "package": {
+                "ecosystem": "Photon OS:3.0",
+                "name": "linux-aws",
+                "purl": "pkg:rpm/vmware/linux-aws?distro=photon-3"
+            }
        }
    ],
    "id": "PHSA-2023-3.0-0608",
-    "modified": "2023-07-14T05:28:17Z",
+    "modified": "2023-07-20T05:28:22Z",
    "published": "2023-07-05T00:00:00Z",
    "references": [
        {
@ -101,6 +108,10 @@
        "CVE-2020-15115",
        "CVE-2023-25153",
        "CVE-2020-15136",
-        "CVE-2023-28466"
+        "CVE-2023-28466",
+        "CVE-2023-25173",
+        "CVE-2023-35788",
+        "CVE-2023-3090",
+        "CVE-2023-3141"
    ]
 }
--- a/advisories/PHSA-2023-3.0-0615.json
+++ b/advisories/PHSA-2023-3.0-0615.json
@ -0,0 +1,31 @@
+{
+    "affected": [
+        {
+            "package": {
+                "ecosystem": "Photon OS:3.0",
+                "name": "telegraf",
+                "purl": "pkg:rpm/vmware/telegraf?distro=photon-3"
+            }
+        },
+        {
+            "package": {
+                "ecosystem": "Photon OS:3.0",
+                "name": "bindutils",
+                "purl": "pkg:rpm/vmware/bindutils?distro=photon-3"
+            }
+        }
+    ],
+    "id": "PHSA-2023-3.0-0615",
+    "modified": "2023-07-20T05:28:22Z",
+    "published": "2023-07-19T00:00:00Z",
+    "references": [
+        {
+            "type": "ADVISORY",
+            "url": "https://github.com/vmware/photon/wiki/Security-Update-3.0-615"
+        }
+    ],
+    "related": [
+        "CVE-2023-2829",
+        "CVE-2019-3826"
+    ]
+}
--- a/advisories/PHSA-2023-3.0-0616.json
+++ b/advisories/PHSA-2023-3.0-0616.json
@ -0,0 +1,23 @@
+{
+    "affected": [
+        {
+            "package": {
+                "ecosystem": "Photon OS:3.0",
+                "name": "curl",
+                "purl": "pkg:rpm/vmware/curl?distro=photon-3"
+            }
+        }
+    ],
+    "id": "PHSA-2023-3.0-0616",
+    "modified": "2023-07-20T05:28:22Z",
+    "published": "2023-07-20T00:00:00Z",
+    "references": [
+        {
+            "type": "ADVISORY",
+            "url": "https://github.com/vmware/photon/wiki/Security-Update-3.0-616"
+        }
+    ],
+    "related": [
+        "CVE-2023-32001"
+    ]
+}
--- a/advisories/PHSA-2023-4.0-0420.json
+++ b/advisories/PHSA-2023-4.0-0420.json
@ -149,10 +149,17 @@
                ],
                "type": "ECOSYSTEM"
            }
+        },
+        {
+            "package": {
+                "ecosystem": "Photon OS:4.0",
+                "name": "openssl",
+                "purl": "pkg:rpm/vmware/openssl?distro=photon-4"
+            }
        }
    ],
    "id": "PHSA-2023-4.0-0420",
-    "modified": "2023-07-18T05:28:21Z",
+    "modified": "2023-07-20T05:28:22Z",
    "published": "2023-07-05T00:00:00Z",
    "references": [
        {
@ -195,6 +202,7 @@
        "CVE-2023-2860",
        "CVE-2022-40476",
        "CVE-2023-3141",
-        "CVE-2023-3212"
+        "CVE-2023-3212",
+        "CVE-2023-2650"
    ]
 }
--- a/advisories/PHSA-2023-4.0-0428.json
+++ b/advisories/PHSA-2023-4.0-0428.json
@ -24,10 +24,17 @@
                ],
                "type": "ECOSYSTEM"
            }
+        },
+        {
+            "package": {
+                "ecosystem": "Photon OS:4.0",
+                "name": "telegraf",
+                "purl": "pkg:rpm/vmware/telegraf?distro=photon-4"
+            }
        }
    ],
    "id": "PHSA-2023-4.0-0428",
-    "modified": "2023-07-19T05:28:23Z",
+    "modified": "2023-07-20T05:28:22Z",
    "published": "2023-07-15T00:00:00Z",
    "references": [
        {
@ -38,6 +45,9 @@
    "related": [
        "CVE-2020-25559",
        "CVE-2020-25969",
-        "CVE-2021-44917"
+        "CVE-2021-44917",
+        "CVE-2023-36191",
+        "CVE-2022-46908",
+        "CVE-2019-3826"
    ]
 }
--- a/advisories/PHSA-2023-4.0-0431.json
+++ b/advisories/PHSA-2023-4.0-0431.json
@ -0,0 +1,23 @@
+{
+    "affected": [
+        {
+            "package": {
+                "ecosystem": "Photon OS:4.0",
+                "name": "perl",
+                "purl": "pkg:rpm/vmware/perl?distro=photon-4"
+            }
+        }
+    ],
+    "id": "PHSA-2023-4.0-0431",
+    "modified": "2023-07-20T05:28:22Z",
+    "published": "2023-07-19T00:00:00Z",
+    "references": [
+        {
+            "type": "ADVISORY",
+            "url": "https://github.com/vmware/photon/wiki/Security-Update-4.0-431"
+        }
+    ],
+    "related": [
+        "CVE-2023-31486"
+    ]
+}
--- a/advisories/PHSA-2023-4.0-0432.json
+++ b/advisories/PHSA-2023-4.0-0432.json
@ -0,0 +1,23 @@
+{
+    "affected": [
+        {
+            "package": {
+                "ecosystem": "Photon OS:4.0",
+                "name": "curl",
+                "purl": "pkg:rpm/vmware/curl?distro=photon-4"
+            }
+        }
+    ],
+    "id": "PHSA-2023-4.0-0432",
+    "modified": "2023-07-20T05:28:22Z",
+    "published": "2023-07-19T00:00:00Z",
+    "references": [
+        {
+            "type": "ADVISORY",
+            "url": "https://github.com/vmware/photon/wiki/Security-Update-4.0-432"
+        }
+    ],
+    "related": [
+        "CVE-2023-32001"
+    ]
+}
--- a/2
+++ b/2
@ -1 +1 @@
-Subproject commit 01dc5c35d3fa8662bf44dd33e72026539842dd3e
+Subproject commit d46911a1eaacfd69ef85256ef29b129efc247686