Vulnerability CVE-2013-0334

Vulnerability Name:

CVE-2013-0334 (CCN-97043)

Assigned:

2012-12-06

Published:

2014-08-14

Updated:

2019-07-16

Summary:

Bundler before 1.7, when multiple top-level source lines are used, allows remote attackers to install arbitrary gems by creating a gem with the same name as another gem in a different source.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Access Complexity (AC): Authentication (Au):
Impact Metrics:	Confidentiality (C): Integrity (I): Availibility (A):

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Access Complexity (AC): Athentication (Au):
Impact Metrics:	Confidentiality (C): Integrity (I): Availibility (A):

5.1 Medium (REDHAT CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
3.8 Low (REDHAT Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Access Complexity (AC): Authentication (Au):
Impact Metrics:	Confidentiality (C): Integrity (I): Availibility (A):

Vulnerability Type:

CWE-20
CWE-345

Vulnerability Consequences:

Bypass Security

References:

Source: CONFIRM
Type: Vendor Advisory
http://bundler.io/blog/2014/08/14/bundler-may-install-gems-from-a-different-source-than-expected-cve-2013-0334.html

Source: MITRE
Type: CNA
CVE-2013-0334

Source: FEDORA
Type: Third Party Advisory
FEDORA-2014-11649

Source: FEDORA
Type: Third Party Advisory
FEDORA-2014-11630

Source: FEDORA
Type: Third Party Advisory
FEDORA-2014-11677

Source: SUSE
Type: Third Party Advisory
openSUSE-SU-2015:0628

Source: CONFIRM
Type: Third Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2015-2719645.html

Source: BID
Type: Third Party Advisory, VDB Entry
70099

Source: CCN
Type: BID-70099
Bundler CVE-2013-0334 Security Bypass Vulnerability

Source: CCN
Type: Red Hat Bugzilla Bug 1146335
(CVE-2013-0334) CVE-2013-0334 rubygem-bundler: 'bundle install' may install a gem from a source other than expected

Source: XF
Type: UNKNOWN
bundler-cve20130334-sec-bypass(97043)

Source: CCN
Type: RubyGems Web site
bundler

Source: GENTOO
Type: Third Party Advisory
GLSA-201609-02

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2013-0334

Vulnerable Configuration:

Configuration 1:

cpe:/a:bundler:bundler:*:*:*:*:*:ruby:*:* (Version < 1.7.0)

Configuration 2:

cpe:/o:opensuse:opensuse:13.1:*:*:*:*:*:*:*

OR cpe:/o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:fedoraproject:fedora:19:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:20:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:21:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Denotes that component is vulnerable

Vulnerability Name:

CVE-2013-0334 (CCN-103076)

Assigned:

2012-12-06

Published:

2012-12-06

Updated:

2019-07-16

Summary:

Bundler before 1.7, when multiple top-level source lines are used, allows remote attackers to install arbitrary gems by creating a gem with the same name as another gem in a different source.

CVSS v3 Severity:

8.6 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Access Complexity (AC): Authentication (Au):
Impact Metrics:	Confidentiality (C): Integrity (I): Availibility (A):

8.3 High (CCN CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:P/A:P)
6.1 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Access Complexity (AC): Athentication (Au):
Impact Metrics:	Confidentiality (C): Integrity (I): Availibility (A):

5.1 Medium (REDHAT CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
3.8 Low (REDHAT Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Access Complexity (AC): Authentication (Au):
Impact Metrics:	Confidentiality (C): Integrity (I): Availibility (A):

Vulnerability Type:

CWE-20
CWE-345

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: Bundler Web site
Bundler may install gems from a different source than expected (CVE-2013-0334)

Source: MITRE
Type: CNA
CVE-2013-0334

Source: CCN
Type: openSUSE Mailinglist Archive, Mon, 30 Mar 2015 17:08:32 +0200 (CEST)
openSUSE-SU-2015:0628-1: moderate: Security update for rubygem-bundler

Source: CCN
Type: BID-70099
Bundler CVE-2013-0334 Security Bypass Vulnerability

Source: XF
Type: UNKNOWN
rubygem-bundler-cve20130334-code-exec(103076)

Source: CCN
Type: Fedora Project Mailing List, Sun Oct 12 05:02:47 UTC 2014
[SECURITY] Fedora 19 Update: rubygem-bundler-1.7.3-1.fc19

Source: CCN
Type: Fedora Project Mailing List, Sun Oct 12 05:07:22 UTC 2014
[SECURITY] Fedora 20 Update: rubygem-bundler-1.7.3-1.fc20

Source: CCN
Type: Fedora Project Mailing List, Sun Oct 12 05:07:35 UTC 2014
[SECURITY] Fedora 21 Update: rubygem-bundler-1.7.3-1.fc21

Vulnerable Configuration:

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20130334	V	CVE-2013-0334	2022-09-02
oval:org.opensuse.security:def:6351	P	Security update for ntfs-3g_ntfsprogs (Important)	2022-08-17
oval:org.opensuse.security:def:6339	P	Security update for the Linux Kernel (Important)	2022-06-20
oval:org.opensuse.security:def:6328	P	Security update for libwmf (Important)	2022-05-06
oval:org.opensuse.security:def:6329	P	Security update for zxing-cpp (Important)	2022-01-24
oval:org.opensuse.security:def:6296	P	Security update for net-snmp (Important)	2022-01-11
oval:org.opensuse.security:def:10231	P	Security update for libsndfile (Important)	2022-01-11
oval:org.opensuse.security:def:6298	P	Security update for libsndfile (Important)	2022-01-11
oval:org.opensuse.security:def:9875	P	Security update for apache2 (Important) (in QA)	2022-01-10
oval:org.opensuse.security:def:6288	P	Security update for the Linux Kernel (Important) (in QA)	2022-01-07
oval:org.opensuse.security:def:9630	P	Security update for python3 (Moderate)	2021-12-23
oval:org.opensuse.security:def:26185	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:7290	P	Security update for the Linux Kernel (Live Patch 7 for SLE 15 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:10188	P	Security update for glib-networking (Important)	2021-12-10
oval:org.opensuse.security:def:10379	P	Security update for glib-networking (Important)	2021-12-10
oval:org.opensuse.security:def:10184	P	Security update for mariadb (Moderate)	2021-12-06
oval:org.opensuse.security:def:10185	P	Security update for clamav (Moderate)	2021-12-06
oval:org.opensuse.security:def:9624	P	Security update for openssh (Important)	2021-12-06
oval:org.opensuse.security:def:9428	P	Security update for aaa_base (Moderate)	2021-12-03
oval:org.opensuse.security:def:6309	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:10175	P	Security update for webkit2gtk3 (Important)	2021-11-23
oval:org.opensuse.security:def:9616	P	Security update for webkit2gtk3 (Important)	2021-11-23
oval:org.opensuse.security:def:7280	P	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP3) (Important)	2021-11-17
oval:org.opensuse.security:def:10703	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:7279	P	Security update for the Linux Kernel (Important)	2021-11-16
oval:org.opensuse.security:def:6306	P	Security update for pcre (Moderate)	2021-11-10
oval:org.opensuse.security:def:55260	P	Security update for postgresql10 (Important)	2021-10-20
oval:org.opensuse.security:def:10162	P	Security update for glibc (Moderate)	2021-10-12
oval:org.opensuse.security:def:9406	P	Security update for MozillaFirefox (Important)	2021-10-11
oval:org.opensuse.security:def:11136	P	Security update for transfig (Moderate)	2021-09-28
oval:org.opensuse.security:def:10155	P	Security update for ffmpeg (Important)	2021-09-23
oval:org.opensuse.security:def:7269	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP3) (Important)	2021-09-16
oval:org.opensuse.security:def:7268	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important)	2021-09-16
oval:org.opensuse.security:def:6455	P	Security update for openssl-1_0_0 (Low)	2021-09-09
oval:org.opensuse.security:def:26121	P	Security update for ntfs-3g_ntfsprogs (Important)	2021-09-07
oval:org.opensuse.security:def:9398	P	Security update for openssl-1_1 (Low)	2021-09-07
oval:org.opensuse.security:def:55943	P	Security update for bind (Moderate)	2021-08-30
oval:org.opensuse.security:def:26110	P	Security update for aspell (Important)	2021-08-25
oval:org.opensuse.security:def:26109	P	Security update for unrar (Moderate)	2021-08-25
oval:org.opensuse.security:def:6478	P	Security update for openssl-1_0_0 (Important)	2021-08-24
oval:org.opensuse.security:def:9773	P	Security update for djvulibre (Important)	2021-08-20
oval:org.opensuse.security:def:10312	P	Security update for nodejs8 (Important)	2021-08-05
oval:org.opensuse.security:def:7257	P	Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP3) (Important)	2021-07-29
oval:org.opensuse.security:def:10124	P	Security update for MozillaFirefox (Important)	2021-07-27
oval:org.opensuse.security:def:9555	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:9754	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:9360	P	Security update for dbus-1 (Important)	2021-06-30
oval:org.opensuse.security:def:10293	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:9739	P	Security update for cryptctl (Important)	2021-06-23
oval:org.opensuse.security:def:9536	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:10278	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:10099	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:9524	P	Security update for the Linux Kernel (Important)	2021-06-09
oval:org.opensuse.security:def:16361	P	ruby2.1-rubygem-bundler-1.7.3-3.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12777	P	ruby2.1-rubygem-bundler-1.7.3-3.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124656	P	ruby2.1-rubygem-bundler-1.7.3-3.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15696	P	ruby2.1-rubygem-bundler-1.7.3-1.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:9521	P	Security update for pam_radius (Moderate)	2021-06-08
oval:org.opensuse.security:def:16650	P	ruby2.1-rubygem-bundler-1.7.3-3.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12787	P	ruby2.1-rubygem-bundler-1.7.3-3.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15891	P	ruby2.1-rubygem-bundler-1.7.3-3.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11452	P	radvd-1.9.7-2.17 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12798	P	ruby2.1-rubygem-bundler-1.7.3-3.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16110	P	ruby2.1-rubygem-bundler-1.7.3-3.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36560	P	rubygem-bundler-1.7.0-0.7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11430	P	pam-modules-12.1-23.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:123993	P	ruby2.1-rubygem-bundler-1.7.3-3.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:9341	P	Security update for spice (Important)	2021-06-08
oval:org.opensuse.security:def:9719	P	Security update for umoci (Important)	2021-06-04
oval:org.opensuse.security:def:9326	P	Security update for lz4 (Important)	2021-05-19
oval:org.opensuse.security:def:9511	P	Security update for graphviz (Critical)	2021-05-19
oval:org.opensuse.security:def:6447	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:9502	P	Security update for samba (Important)	2021-05-04
oval:org.opensuse.security:def:9697	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:9692	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:6445	P	Security update for the Linux Kernel (Important)	2021-04-16
oval:org.opensuse.security:def:9873	P	Security update for libzypp, zypper (Moderate)	2021-03-25
oval:org.opensuse.security:def:9867	P	Security update for nghttp2 (Important)	2021-03-24
oval:org.opensuse.security:def:9474	P	Security update for libass (Important)	2021-03-24
oval:org.opensuse.security:def:6321	P	Security update for evolution-data-server (Moderate)	2021-03-19
oval:org.opensuse.security:def:7247	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP2) (Important)	2021-03-17
oval:org.opensuse.security:def:6318	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:6466	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:10412	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:9655	P	Security update for grub2 (Important)	2021-03-02
oval:org.opensuse.security:def:9460	P	Security update for bind (Important)	2021-03-02
oval:org.opensuse.security:def:6317	P	Security update for gnome-autoar (Moderate)	2021-03-01
oval:org.opensuse.security:def:9848	P	Security update for python-Jinja2 (Important)	2021-02-26
oval:org.opensuse.security:def:9646	P	Security update for php7 (Important)	2021-02-24
oval:org.opensuse.security:def:10387	P	Security update for subversion (Important)	2021-02-10
oval:org.opensuse.security:def:10166	P	Security update for java-11-openjdk (Important)	2021-02-09
oval:org.opensuse.security:def:6459	P	Security update for the Linux Kernel (Important)	2021-02-09
oval:org.opensuse.security:def:10357	P	Security update for python (Important)	2021-02-09
oval:org.opensuse.security:def:10163	P	Security update for python-urllib3 (Moderate)	2021-02-08
oval:org.opensuse.security:def:11114	P	Security update for python-jupyter_notebook (Moderate)	2021-01-19
oval:org.opensuse.security:def:9706	P	Security update for tcmu-runner (Important)	2021-01-18
oval:org.opensuse.security:def:10597	P	Security update for MozillaThunderbird (Important)	2021-01-14
oval:org.opensuse.security:def:6444	P	Security update for the Linux Kernel (Moderate)	2021-01-14
oval:org.opensuse.security:def:9435	P	Security update for tomcat (Moderate)	2021-01-07
oval:org.opensuse.security:def:9279	P	Security update for openssh (Moderate)	2020-12-18
oval:org.opensuse.security:def:55777	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:9990	P	Security update for gcc10, nvptx-tools (Moderate)	2020-12-04
oval:org.opensuse.security:def:16966	P	ruby2.1-rubygem-bundler-1.7.3-3.7 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12810	P	ruby2.1-rubygem-bundler-1.7.3-3.8 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:10024	P	Security update for java-1_8_0-openjdk (Important)	2020-12-02
oval:org.opensuse.security:def:55120	P	Security update for python-setuptools (Important)	2020-12-02
oval:org.opensuse.security:def:9897	P	libnm-glib-vpn1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26451	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:6530	P	wpa_supplicant on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27152	P	java-1_7_1-ibm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6630	P	gstreamer-plugins-good on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10848	P	ruby2.1-rubygem-bundler on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27113	P	ecryptfs-utils-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10779	P	libproxy-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26394	P	Security update for chromium (Moderate)	2020-12-01
oval:org.opensuse.security:def:6617	P	gnome-settings-daemon on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10575	P	net-snmp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27064	P	yast2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10770	P	libpacemaker-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28968	P	Security update for openssl (Important)	2020-12-01
oval:org.opensuse.security:def:26313	P	Security update for python-requests (Moderate)	2020-12-01
oval:org.opensuse.security:def:6436	P	libspice-server1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6608	P	gdk-pixbuf-loader-rsvg on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9937	P	libxcb-dri2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9203	P	openssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9233	P	python-doc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27011	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6611	P	ghostscript on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28330	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:6421	P	libproxy1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10728	P	libdmx-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9924	P	libtag1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27558	P	rubygem-bundler on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9211	P	pam_ssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26860	P	amavisd-new on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6566	P	cifs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28286	P	Security update for mysql (Important)	2020-12-01
oval:org.opensuse.security:def:6374	P	libfreebl3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9915	P	libsmi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56621	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26776	P	libzip1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6541	P	xscreensaver on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28272	P	Security update for MozillaFirefox, MozillaFirefox-branding-SLED, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:6642	P	java-1_7_0-openjdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10628	P	audiofile-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28233	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:56540	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:26719	P	ipsec-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6629	P	gstreamer-plugins-base on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10826	P	nut-cgi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10609	P	xen-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28184	P	Security update for krb5 (Important)	2020-12-01
oval:org.opensuse.security:def:56502	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26435	P	Security update for znc (Low)	2020-12-01
oval:org.opensuse.security:def:26638	P	squid on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6620	P	gpg2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10594	P	rpm-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28131	P	Security update for imlib2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:56428	P	Security update for librsvg (Low)	2020-12-01
oval:org.opensuse.security:def:6609	P	gdm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26434	P	Security update for pdns (Important)	2020-12-01
oval:org.opensuse.security:def:26510	P	Security update for nextcloud (Moderate)	2020-12-01
oval:org.opensuse.security:def:6432	P	libsndfile1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56336	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:27883	P	Security update for rubygem-bundler	2020-12-01
oval:org.opensuse.security:def:10547	P	libssh-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27980	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:6578	P	cups-pk-helper on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6596	P	evince on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26446	P	Security update for kconfig, kdelibs4 (Important)	2020-12-01
oval:org.opensuse.security:def:6385	P	libid3tag0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56228	P	Security update for openssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:27523	P	ofed-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10471	P	libXinerama-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10501	P	libgssglue-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27896	P	Security update for tidy (Low)	2020-12-01
oval:org.opensuse.security:def:6553	P	apparmor-docs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6587	P	dosfstools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6588	P	dracut on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26885	P	e2fsprogs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10479	P	libXvMC-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27839	P	Security update for mysql (Moderate)	2020-12-01
oval:org.opensuse.security:def:6545	P	zoo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26841	P	xdg-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27554	P	rubygem-actionpack-3_2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27757	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:10476	P	libXt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55671	P	Security update for socat (Moderate)	2020-12-01
oval:org.opensuse.security:def:6520	P	tftp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26827	P	sysstat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6619	P	gnutls on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27553	P	rubygem-actionmailer-3_2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27629	P	Security update for krb5	2020-12-01
oval:org.opensuse.security:def:26788	P	nagios-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10463	P	libQt5Bootstrap-devel-static on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29003	P	Security update for rubygem-bundler	2020-12-01
oval:org.opensuse.security:def:55498	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:6606	P	gd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27565	P	rxvt-unicode on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6397	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10005	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26739	P	libapr1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10454	P	icecream on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27848	P	Security update for OpenSLP	2020-12-01
oval:org.opensuse.security:def:55097	P	ecryptfs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6426	P	libraptor2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6597	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26686	P	dhcpcd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6599	P	fetchmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27210	P	libpulse-browse0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7302	P	ruby2.1-rubygem-bundler on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6411	P	libopenssl0_9_8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9943	P	logwatch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26535	P	cyrus-imapd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6555	P	at on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27166	P	kvm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55098	P	elfutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6364	P	libasan2-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10792	P	libsoup-devel on GA media (Moderate)	2020-12-01
oval:com.redhat.rhsa:def:20152180	P	RHSA-2015:2180: rubygem-bundler and rubygem-thor security, bug fix, and enhancement update (Moderate)	2015-11-19
oval:com.ubuntu.cosmic:def:201303340000000	V	CVE-2013-0334 on Ubuntu 18.10 (cosmic) - medium.	2014-10-31
oval:com.ubuntu.trusty:def:20130334000	V	CVE-2013-0334 on Ubuntu 14.04 LTS (trusty) - medium.	2014-10-31
oval:com.ubuntu.bionic:def:201303340000000	V	CVE-2013-0334 on Ubuntu 18.04 LTS (bionic) - medium.	2014-10-31
oval:com.ubuntu.artful:def:20130334000	V	CVE-2013-0334 on Ubuntu 17.10 (artful) - medium.	2014-10-31
oval:com.ubuntu.xenial:def:20130334000	V	CVE-2013-0334 on Ubuntu 16.04 LTS (xenial) - medium.	2014-10-31
oval:com.ubuntu.xenial:def:201303340000000	V	CVE-2013-0334 on Ubuntu 16.04 LTS (xenial) - medium.	2014-10-31
oval:com.ubuntu.bionic:def:20130334000	V	CVE-2013-0334 on Ubuntu 18.04 LTS (bionic) - medium.	2014-10-31
oval:com.ubuntu.disco:def:201303340000000	V	CVE-2013-0334 on Ubuntu 19.04 (disco) - medium.	2014-10-31
oval:com.ubuntu.cosmic:def:20130334000	V	CVE-2013-0334 on Ubuntu 18.10 (cosmic) - medium.	2014-10-31

BACK