Vulnerability CVE-2008-6123 - CERT Civis.Net

Vulnerability Name:

CVE-2008-6123 (CCN-48703)

Assigned:

2008-12-09

Published:

2008-12-09

Updated:

2017-09-29

Summary:

The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to "source/destination IP address confusion."

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.8 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:TF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)
3.3 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N/E:U/RL:TF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: CCN
Type: Gentoo Bugzilla Bug 250429
net-snmp / tcp-wrappers vulnerability allowing 3rd parties to access snmpd

Source: CONFIRM
Type: UNKNOWN
http://bugs.gentoo.org/show_bug.cgi?id=250429

Source: MITRE
Type: CNA
CVE-2008-6123

Source: SUSE
Type: UNKNOWN
SUSE-SR:2009:011

Source: SUSE
Type: UNKNOWN
SUSE-SR:2009:012

Source: SUSE
Type: UNKNOWN
SUSE-SR:2010:003

Source: CCN
Type: Net-SNMP Web page
Net-SNMP

Source: MISC
Type: UNKNOWN
http://net-snmp.svn.sourceforge.net/viewvc/net-snmp/trunk/net-snmp/snmplib/snmpUDPDomain.c?r1=17325&r2=17367&pathrev=17367

Source: CCN
Type: SVN Repository
Net-SNMP

Source: CONFIRM
Type: UNKNOWN
http://net-snmp.svn.sourceforge.net/viewvc/net-snmp?view=rev&revision=17367

Source: CCN
Type: RHSA-2009-0295
Moderate: net-snmp security update

Source: CCN
Type: SA33884
Net-snmp TCP Wrapper Information Disclosure Vulnerability

Source: SECUNIA
Type: UNKNOWN
34499

Source: SECUNIA
Type: UNKNOWN
35416

Source: SECUNIA
Type: UNKNOWN
35685

Source: CCN
Type: SECTRACK ID: 1021921
Net-snmp netsnmp_udp_fmtaddr() Lets Remote Users Bypass Access Controls

Source: CCN
Type: ASA-2009-118
net-snmp security update (RHSA-2009-0295)

Source: CCN
Type: GLSA-201001-05
net-snmp: Authorization bypass

Source: MLIST
Type: UNKNOWN
[oss-security] 20090212 CVE Request -- net-snmp (sensitive host information disclosure)

Source: MLIST
Type: UNKNOWN
[oss-security] Re: 20090212 CVE Request -- net-snmp (sensitive host information disclosure)

Source: MLIST
Type: UNKNOWN
[oss-security] 20090212 Re: CVE Request -- net-snmp (sensitive host information disclosure)

Source: REDHAT
Type: UNKNOWN
RHSA-2009:0295

Source: CCN
Type: BID-33755
Net-SNMP 'snmpUDPDomain.c' Remote Information Disclosure Vulnerability

Source: SECTRACK
Type: UNKNOWN
1021921

Source: CCN
Type: Red Hat Bugzilla Bug 485211
CVE-2008-6123 net-snmp: snmp queries allowed from each remote host regardless of /etc/hosts.allow configuration (host sensitive information disclosure)

Source: CONFIRM
Type: UNKNOWN
https://bugzilla.redhat.com/show_bug.cgi?id=485211

Source: XF
Type: UNKNOWN
netsnmp-tcp-information-disclosure(48703)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10289

Source: SUSE
Type: SUSE-SR:2009:011
SUSE Security Summary Report

Source: SUSE
Type: SUSE-SR:2009:012
SUSE Security Summary Report

Source: SUSE
Type: SUSE-SR:2010:003
SUSE Security Summary Report

Vulnerable Configuration:

Configuration 1:

cpe:/a:net-snmp:net-snmp:5.0.9:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.0.10:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.1.2:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.1.3:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.1.4:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2.1:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2.1.2_r1:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2.4:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2.5:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.3:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.3.2.2:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.4:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.4.1:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.4.2:*:*:*:*:*:*:*

OR cpe:/o:net-snmp:net_snmp:5.1:*:*:*:*:*:*:*

OR cpe:/o:net-snmp:net_snmp:5.1.1:*:*:*:*:*:*:*

OR cpe:/o:net-snmp:net_snmp:5.3.0.1:*:*:*:*:*:*:*

OR cpe:/o:net-snmp:net_snmp:5.4:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:3:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*

Configuration CCN 1:

cpe:/a:net-snmp:net-snmp:5.0.9:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.4.1:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.3:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2.4:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2.1:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.3.0.1:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.4:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.1.2:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.1.3:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.1.4:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2.1.2_r1:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.2.5:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.3.2.2:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.1:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.0.10:*:*:*:*:*:*:*

OR cpe:/a:net-snmp:net-snmp:5.4.2:*:*:*:*:*:*:*

AND

cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.0:*:*:*:*:*:*:*

OR cpe:/o:mandriva:linux:2009.0:-:x86_64:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20086123	V	CVE-2008-6123	2022-05-20
oval:org.opensuse.security:def:42380	P	Security update for curl (Moderate)	2022-05-13
oval:org.opensuse.security:def:42176	P	Security update for xen (Important)	2022-04-22
oval:org.opensuse.security:def:31750	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:26184	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:32216	P	Security update for MozillaFirefox (Important)	2021-11-17
oval:org.opensuse.security:def:26153	P	Security update for git (Low)	2021-10-20
oval:org.opensuse.security:def:31696	P	Security update for postgresql10 (Important)	2021-10-20
oval:org.opensuse.security:def:31289	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-10-18
oval:org.opensuse.security:def:31690	P	Security update for webkit2gtk3 (Important)	2021-10-06
oval:org.opensuse.security:def:32194	P	Security update for xen (Important)	2021-09-23
oval:org.opensuse.security:def:31684	P	Security update for MozillaFirefox (Important)	2021-09-22
oval:org.opensuse.security:def:32183	P	Security update for gtk-vnc (Moderate)	2021-09-16
oval:org.opensuse.security:def:31681	P	Security update for gtk-vnc (Moderate)	2021-09-16
oval:org.opensuse.security:def:26112	P	Security update for sssd (Important)	2021-08-30
oval:org.opensuse.security:def:26109	P	Security update for unrar (Moderate)	2021-08-25
oval:org.opensuse.security:def:31248	P	Security update for cpio (Important)	2021-08-23
oval:org.opensuse.security:def:26103	P	Security update for the Linux Kernel (Important)	2021-08-10
oval:org.opensuse.security:def:26100	P	Security update for djvulibre (Important)	2021-08-05
oval:org.opensuse.security:def:26095	P	Security update for glibc (Moderate)	2021-07-27
oval:org.opensuse.security:def:31236	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-07-27
oval:org.opensuse.security:def:31237	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-07-27
oval:org.opensuse.security:def:32155	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-07-27
oval:org.opensuse.security:def:31658	P	Security update for the Linux Kernel (Important)	2021-07-22
oval:org.opensuse.security:def:32126	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-06-18
oval:org.opensuse.security:def:36487	P	libsnmp15-32bit-5.4.2.1-8.12.22.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42625	P	libsnmp15-32bit-5.4.2.1-8.12.22.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36218	P	libsnmp15-32bit-5.4.2.1-8.12.22.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32937	P	Security update for MozillaFirefox (Important)	2021-06-08
oval:org.opensuse.security:def:32106	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:26051	P	Security update for djvulibre (Important)	2021-05-19
oval:org.opensuse.security:def:26052	P	Security update for graphviz (Critical)	2021-05-19
oval:org.opensuse.security:def:26048	P	Security update for the Linux Kernel (Important)	2021-05-13
oval:org.opensuse.security:def:31157	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-04-28
oval:org.opensuse.security:def:26036	P	Security update for MozillaFirefox (Important)	2021-04-27
oval:org.opensuse.security:def:32898	P	Security update for qemu (Important)	2021-04-16
oval:org.opensuse.security:def:31603	P	Security update for fwupdate (Important)	2021-04-08
oval:org.opensuse.security:def:32270	P	Security update for wpa_supplicant (Important)	2021-03-09
oval:org.opensuse.security:def:31737	P	Security update for python-cryptography (Important)	2021-03-02
oval:org.opensuse.security:def:26202	P	Security update for MozillaFirefox (Important)	2021-03-01
oval:org.opensuse.security:def:32260	P	Security update for java-1_7_1-ibm (Important)	2021-02-18
oval:org.opensuse.security:def:26193	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:31322	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:26037	P	Security update for the Linux Kernel (Important)	2021-01-15
oval:org.opensuse.security:def:31685	P	Security update for java-1_8_0-ibm (Moderate)	2021-01-05
oval:org.opensuse.security:def:32138	P	Security update for openssh (Moderate)	2021-01-05
oval:org.opensuse.security:def:25975	P	Security update for openssl-1_0_0 (Important)	2020-12-09
oval:org.opensuse.security:def:32012	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2020-12-07
oval:org.opensuse.security:def:31083	P	Security update for python-cryptography (Moderate)	2020-12-04
oval:org.opensuse.security:def:25971	P	Security update for fontforge (Moderate)	2020-12-04
oval:org.opensuse.security:def:35769	P	libsnmp15-32bit-5.4.2.1-8.12.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35973	P	libsnmp15-32bit-5.4.2.1-8.12.16.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:42010	P	libsnmp15-32bit-5.4.2.1-8.2.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:42757	P	libsnmp15-openssl1-32bit-5.4.2.1-8.12.31.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35603	P	libsnmp15-32bit-5.4.2.1-8.2.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:36350	P	libsnmp15-openssl1-32bit-5.4.2.1-8.12.31.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31072	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31525	P	Security update for rsyslog	2020-12-01
oval:org.opensuse.security:def:31951	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:31816	P	Security update for apport (Moderate)	2020-12-01
oval:org.opensuse.security:def:31770	P	Security update for MozillaFirefox, mozilla-nss, mozilla-nspr (Important)	2020-12-01
oval:org.opensuse.security:def:25833	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25767	P	Security update for DirectFB (Important)	2020-12-01
oval:org.opensuse.security:def:25599	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26397	P	Security update for plasma5-workspace (Important)	2020-12-01
oval:org.opensuse.security:def:26768	P	libsnmp15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27485	P	libsnmp15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31546	P	Security update for sane-backends (Moderate)	2020-12-01
oval:org.opensuse.security:def:32438	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:31817	P	Security update for atftp (Important)	2020-12-01
oval:org.opensuse.security:def:25439	P	Security update for libpcap (Important)	2020-12-01
oval:org.opensuse.security:def:25872	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26733	P	lcms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25768	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:26578	P	lcms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26812	P	python-sssd-config on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32460	P	Security update for xorg-x11-libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:33181	P	libsnmp15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25154	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:31828	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:25496	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:32426	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:26255	P	Security update for libqt4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26972	P	libsnmp15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25779	P	Security update for the SUSE Linux Enterprise 12 kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26344	P	Security update for mbedtls (Moderate)	2020-12-01
oval:org.opensuse.security:def:31825	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:27450	P	libgpgme-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31454	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:32504	P	emacs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25155	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:31902	P	Security update for MozillaFirefox, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:25580	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:25998	P	Security update for libreoffice (Important)	2020-12-01
oval:org.opensuse.security:def:26299	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25899	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:25843	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:26241	P	Security update for evolution (Moderate)	2020-12-01
oval:org.opensuse.security:def:26529	P	cifs-mount on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31847	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:32568	P	libsnmp15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31846	P	Security update for clamav (Important)	2020-12-01
oval:org.opensuse.security:def:32570	P	libtiff3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33142	P	libcap-progs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25166	P	Security update for apache2 (Important)	2020-12-01
oval:org.opensuse.security:def:25604	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25731	P	Security update for memcached (Moderate)	2020-12-01
oval:org.opensuse.security:def:26485	P	Security update for singularity (Moderate)	2020-12-01
oval:org.opensuse.security:def:26937	P	libMagickCore1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25900	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26325	P	Security update for Chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26715	P	gtk2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31891	P	Security update for expat (Important)	2020-12-01
oval:org.opensuse.security:def:31440	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:31807	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32350	P	Security update for squid (Moderate)	2020-12-01
oval:org.opensuse.security:def:32592	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33313	P	libsnmp15-openssl1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25319	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:25230	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:25661	P	Security update for opensc (Low)	2020-12-01
oval:org.opensuse.security:def:25784	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:26499	P	Security update for chromium, re2 (Important)	2020-12-01
oval:org.opensuse.security:def:27216	P	libsnmp15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25911	P	Security update for gstreamer-plugins-base (Low)	2020-12-01
oval:org.opensuse.security:def:26321	P	Security update for kcoreaddons (Moderate)	2020-12-01
oval:org.opensuse.security:def:26476	P	Security update for nextcloud (Moderate)	2020-12-01
oval:org.opensuse.security:def:31990	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:32529	P	gzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31441	P	Security update for pixman (Moderate)	2020-12-01
oval:org.opensuse.security:def:31894	P	Security update for fetchmail (Moderate)	2020-12-01
oval:org.opensuse.security:def:32399	P	Security update for unzip (Moderate)	2020-12-01
oval:org.opensuse.security:def:32636	P	apache2-mod_php53 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25320	P	Security update for perl-DBI (Important)	2020-12-01
oval:org.opensuse.security:def:25358	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:25745	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:26543	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26378	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26666	P	amavisd-new on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32733	P	libsnmp15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31452	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:31994	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:32050	P	Security update for kvm (Moderate)	2020-12-01
oval:org.opensuse.security:def:25886	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:33274	P	tgt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25331	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:25808	P	Security update for LibreOffice (Moderate)	2020-12-01
oval:org.opensuse.security:def:25896	P	Security update for gstreamer-0_10-plugins-bad (Moderate)	2020-12-01
oval:org.opensuse.security:def:26617	P	nagios on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27181	P	libevent-1_4-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26240	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:26462	P	Security update for Mozilla Thunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:31786	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:32056	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:31526	P	Security update for rsyslog (Moderate)	2020-12-01
oval:org.opensuse.security:def:32051	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:32482	P	NetworkManager-gnome on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25930	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:25523	P	Security update for dpdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:25395	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:25865	P	Security update for pcre (Moderate)	2020-12-01
oval:org.opensuse.security:def:26631	P	postgresql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27348	P	libsnmp15-openssl1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31381	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:26613	P	mono-core on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32694	P	krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32034	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32531	P	ipsec-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26568	P	java-1_6_0-ibm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25524	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:25727	P	Security update for libzypp (Moderate)	2020-12-01
oval:org.opensuse.security:def:25949	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:26446	P	Security update for kconfig, kdelibs4 (Important)	2020-12-01
oval:org.opensuse.security:def:26675	P	bzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31071	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31438	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32294	P	Security update for ppp (Moderate)	2020-12-01
oval:org.opensuse.security:def:26603	P	libsnmp15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25535	P	Security update for audiofile (Low)	2020-12-01
oval:org.opensuse.security:def:26754	P	libneon27 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27313	P	unzip on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:12964	P	USN-946-1 -- net-snmp vulnerability	2014-06-30
oval:org.mitre.oval:def:10289	V	The netsnmp_udp_fmtaddr function (snmplib/snmpUDPDomain.c) in net-snmp 5.0.9 through 5.4.2.1, when using TCP wrappers for client authorization, does not properly parse hosts.allow rules, which allows remote attackers to bypass intended access restrictions and execute SNMP queries, related to "source/destination IP address confusion."	2013-04-29
oval:com.redhat.rhsa:def:20090295	P	RHSA-2009:0295: net-snmp security update (Moderate)	2009-03-26