Vulnerability CVE-2013-0276 - CERT Civis.Net

Vulnerability Name:

CVE-2013-0276 (CCN-82011)

Assigned:

2012-12-06

Published:

2013-02-11

Updated:

2019-08-08

Summary:

ActiveRecord in Ruby on Rails before 2.3.17, 3.1.x before 3.1.11, and 3.2.x before 3.2.12 allows remote attackers to bypass the attr_protected protection mechanism and modify protected model attributes via a crafted request.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

4.3 Medium (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2013-0276

Source: APPLE
Type: UNKNOWN
APPLE-SA-2013-06-04-1

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2013:0462

Source: CCN
Type: RHSA-2013-0582
Moderate: Red Hat OpenShift Enterprise 1.1.1 update

Source: CCN
Type: RHSA-2013-0686
Moderate: Subscription Asset Manager 1.2.1 update

Source: REDHAT
Type: UNKNOWN
RHSA-2013:0686

Source: CCN
Type: Ruby on Rails Web Site
Ruby on Rails

Source: CCN
Type: SA52112
Ruby on Rails Two Vulnerabilities

Source: SECUNIA
Type: UNKNOWN
52112

Source: SECUNIA
Type: UNKNOWN
52774

Source: CCN
Type: Apple Web site
About the security content of OS X Mountain Lion v10.8.4 and Security Update 2013-002

Source: CONFIRM
Type: UNKNOWN
http://support.apple.com/kb/HT5784

Source: CONFIRM
Type: Vendor Advisory
http://weblog.rubyonrails.org/2013/2/11/SEC-ANN-Rails-3-2-12-3-1-11-and-2-3-17-have-been-released/

Source: DEBIAN
Type: UNKNOWN
DSA-2620

Source: DEBIAN
Type: DSA-2620
rails -- several vulnerabilities

Source: MLIST
Type: Patch
[oss-security] 20130211 Circumvention of attr_protected [CVE-2013-0276]

Source: OSVDB
Type: UNKNOWN
90072

Source: BID
Type: UNKNOWN
57896

Source: CCN
Type: BID-57896
Ruby on Rails CVE-2013-0276 Remote Security Bypass Vulnerability

Source: XF
Type: UNKNOWN
rubyonrails-attrprotected-sec-bypass(82011)

Source: MLIST
Type: UNKNOWN
[rubyonrails-security] 20130211 Circumvention of attr_protected [CVE-2013-0276]

Vulnerable Configuration:

Configuration 1:

cpe:/a:rubyonrails:rails:3.2.0:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.0:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.0:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.1:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.2:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.2:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.3:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.3:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.3:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.4:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.4:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.5:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.6:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.7:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.8:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.9:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.10:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.2.11:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:rubyonrails:rails:3.1.0:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:beta1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:rc3:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:rc4:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:rc5:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:rc6:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:rc7:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:rc8:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.1:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.1:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.1:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.1:rc3:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.2:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.2:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.2:rc2:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.3:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.4:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.4:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.5:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.5:rc1:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.6:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.7:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.8:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.9:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.10:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:rubyonrails:rails:2.3.0:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.1:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.2:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.3:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.4:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.9:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.10:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.11:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.12:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.13:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.14:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.15:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:2.3.16:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:rubyonrails:rails:3.0.1:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.2:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.3:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.4:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.7:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.10:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.11:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.2:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.4:-:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.8.2:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.0:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.3:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.1:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.6:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.1.5:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.6:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.16:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.8:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.5:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.17:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.1:pre:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.2:pre:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.9:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.14:*:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.13:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.12:-:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:beta4:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:beta:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:beta:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:beta3:*:*:*:*:*:*

OR cpe:/a:rubyonrails:rails:3.0.0:beta2:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.8.3:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.8.1:*:*:*:*:*:*:*

OR cpe:/o:apple:mac_os_x:10.8:*:*:*:*:*:*:*

AND

cpe:/o:redhat:linux_advanced_workstation:2.1::itanium:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:26225	P	Security update for libsndfile (Important)	2022-01-05
oval:org.opensuse.security:def:26184	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:26183	P	Security update for xorg-x11-server (Important)	2021-12-14
oval:org.opensuse.security:def:26182	P	Security update for MozillaFirefox (Important)	2021-12-12
oval:org.opensuse.security:def:26180	P	Security update for php74 (Moderate)	2021-12-06
oval:org.opensuse.security:def:26181	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:55261	P	Security update for qemu (Important)	2021-10-28
oval:org.opensuse.security:def:26120	P	Security update for xerces-c (Important)	2021-09-03
oval:org.opensuse.security:def:55944	P	Security update for openexr (Important)	2021-09-02
oval:org.opensuse.security:def:26117	P	Security update for xen (Important)	2021-09-02
oval:org.opensuse.security:def:26118	P	Security update for php72 (Important)	2021-09-02
oval:org.opensuse.security:def:26119	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:26116	P	Security update for apache2 (Important)	2021-09-02
oval:org.opensuse.security:def:26109	P	Security update for unrar (Moderate)	2021-08-25
oval:org.opensuse.security:def:26107	P	Security update for openssl-1_0_0 (Important)	2021-08-24
oval:org.opensuse.security:def:26108	P	Security update for openssl-1_1 (Important)	2021-08-24
oval:org.opensuse.security:def:26105	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:26106	P	Security update for libmspack (Moderate)	2021-08-17
oval:org.opensuse.security:def:5091	P	Security update for libcares2 (Important)	2021-08-16
oval:org.opensuse.security:def:26104	P	Security update for libcares2 (Important)	2021-08-16
oval:org.opensuse.security:def:20130276	V	CVE-2013-0276	2021-08-15
oval:org.opensuse.security:def:5069	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:5751	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:5060	P	Security update for libjpeg-turbo (Moderate)	2021-06-11
oval:org.opensuse.security:def:36556	P	rubygem-actionpack-3_2-3.2.12-0.19.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36557	P	rubygem-activemodel-3_2-3.2.12-0.5.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:5729	P	Security update for libX11 (Important)	2021-06-08
oval:org.opensuse.security:def:36558	P	rubygem-activerecord-3_2-3.2.12-0.11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36555	P	rubygem-actionmailer-3_2-3.2.12-0.9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36559	P	rubygem-activesupport-3_2-3.2.12-0.9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:5027	P	Security update for gdm (Important)	2021-04-28
oval:org.opensuse.security:def:26214	P	Security update for wavpack (Important)	2021-03-24
oval:org.opensuse.security:def:26213	P	Security update for evolution-data-server (Moderate)	2021-03-19
oval:org.opensuse.security:def:5078	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:55778	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:11259	P	ruby2.1-rubygem-chef-10.32.2-3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4846	P	Security update for skopeo (Important)	2020-12-02
oval:org.opensuse.security:def:5002	P	Security update for nodejs8 (Critical)	2020-12-02
oval:org.opensuse.security:def:4893	P	Security update for graphviz (Low)	2020-12-02
oval:org.opensuse.security:def:4770	P	Security update for qemu (Important)	2020-12-02
oval:org.opensuse.security:def:4778	P	Security update for libvirt (Important)	2020-12-02
oval:org.opensuse.security:def:4908	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:4800	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:4927	P	Security update for mozilla-nss (Moderate)	2020-12-02
oval:org.opensuse.security:def:55121	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:26450	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:26787	P	nagios on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27522	P	obex-data-server on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26498	P	Security update for nextcloud (Moderate)	2020-12-01
oval:org.opensuse.security:def:26843	P	xorg-x11 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26989	P	man on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56503	P	Security update for libraw (Moderate)	2020-12-01
oval:org.opensuse.security:def:26530	P	clamav on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26822	P	squidGuard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27554	P	rubygem-actionpack-3_2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26447	P	Security update for pdns (Important)	2020-12-01
oval:org.opensuse.security:def:26784	P	mono-core on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27519	P	nagios on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26391	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:26736	P	libQtWebKit4-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26882	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26311	P	Security update for openstack-nova and openstack-neutron (Moderate)	2020-12-01
oval:org.opensuse.security:def:26684	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26839	P	wget on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26534	P	curl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26826	P	syslog-ng on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27662	P	Security update for Ruby On Rails	2020-12-01
oval:org.opensuse.security:def:26555	P	glib2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26892	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27627	P	Security update for IBM Java 7	2020-12-01
oval:org.opensuse.security:def:55499	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:56229	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:56541	P	Security update for shadow (Important)	2020-12-01
oval:org.opensuse.security:def:26308	P	Security update for python modules (Low)	2020-12-01
oval:org.opensuse.security:def:26681	P	curl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26836	P	unzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26531	P	coolkey on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26823	P	star on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27555	P	rubygem-activemodel-3_2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26448	P	Security update for phpMyAdmin (Important)	2020-12-01
oval:org.opensuse.security:def:26785	P	mozilla-xulrunner192 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27520	P	netatalk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26392	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:26737	P	libadns1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26883	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26312	P	Security update for dnsmasq (Important)	2020-12-01
oval:org.opensuse.security:def:26685	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26840	P	wireshark on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26289	P	Security update for sane-backends (Important)	2020-12-01
oval:org.opensuse.security:def:26639	P	star on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26931	P	krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55099	P	emacs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55672	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:56337	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:56622	P	Security update for binutils (Moderate)	2020-12-01
oval:org.opensuse.security:def:26389	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26734	P	ldapsmb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26880	P	cyrus-imapd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26309	P	Security update for haproxy (Important)	2020-12-01
oval:org.opensuse.security:def:26682	P	cyrus-imapd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26837	P	vte on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26532	P	cron on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26824	P	sudo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27556	P	rubygem-activerecord-3_2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26449	P	Security update for nginx (Moderate)	2020-12-01
oval:org.opensuse.security:def:26786	P	mutt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27521	P	novell-ipsec-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55098	P	elfutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26393	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26738	P	libapr-util1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26884	P	dhcpcd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26417	P	Security update for Mozilla Thunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:26790	P	ofed on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26945	P	libdrm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56429	P	Security update for libsoup (Important)	2020-12-01
oval:org.opensuse.security:def:27553	P	rubygem-actionmailer-3_2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26446	P	Security update for kconfig, kdelibs4 (Important)	2020-12-01
oval:org.opensuse.security:def:26783	P	mipv6d on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27518	P	mozilla-xulrunner192-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26390	P	Security update for ark (Low)	2020-12-01
oval:org.opensuse.security:def:26735	P	libMagickCore1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26881	P	dbus-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26310	P	Security update for Cloud Compute 12 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26683	P	dbus-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26838	P	w3m on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26533	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26825	P	sysconfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27557	P	rubygem-activesupport-3_2 on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:19688	P	DSA-2620-1 rails - several	2014-06-23
oval:com.ubuntu.precise:def:20130276000	V	CVE-2013-0276 on Ubuntu 12.04 LTS (precise) - medium.	2013-02-12
oval:com.ubuntu.trusty:def:20130276000	V	CVE-2013-0276 on Ubuntu 14.04 LTS (trusty) - medium.	2013-02-12
oval:com.ubuntu.xenial:def:201302760000000	V	CVE-2013-0276 on Ubuntu 16.04 LTS (xenial) - medium.	2013-02-12
oval:com.ubuntu.xenial:def:20130276000	V	CVE-2013-0276 on Ubuntu 16.04 LTS (xenial) - medium.	2013-02-12