Vulnerability CVE-2013-1619 - CERT Civis.Net

Vulnerability Name:

CVE-2013-1619 (CCN-81911)

Assigned:

2013-02-04

Published:

2013-02-04

Updated:

2014-03-26

Summary:

The TLS implementation in GnuTLS before 2.12.23, 3.0.x before 3.0.28, and 3.1.x before 3.1.7 does not properly consider timing side-channel attacks on a noncompliant MAC check operation during the processing of malformed CBC padding, which allows remote attackers to conduct distinguishing attacks and plaintext-recovery attacks via statistical analysis of timing data for crafted packets, a related issue to CVE-2013-0169.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:N)
3.0 Low (Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.1 Medium (REDHAT CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
3.8 Low (REDHAT Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2013-1619

Source: SUSE
Type: UNKNOWN
SUSE-SU-2014:0320

Source: SUSE
Type: UNKNOWN
SUSE-SU-2014:0322

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2014:0346

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2013:0807

Source: CONFIRM
Type: UNKNOWN
http://nmav.gnutls.org/2013/02/time-is-money-for-cbc-ciphersuites.html

Source: CCN
Type: oss-security mailing list, Tue, 5 Feb 2013 18:32:00 -0500 (EST)
Re: CVE request: TLS CBC padding timing flaw in various SSL / TLS implementations

Source: MLIST
Type: UNKNOWN
[oss-security] 20130205 Re: CVE request: TLS CBC padding timing flaw in various SSL / TLS implementations

Source: CCN
Type: RHSA-2013-0588
Moderate: gnutls security update

Source: REDHAT
Type: UNKNOWN
RHSA-2013:0588

Source: CCN
Type: RHSA-2013-0636
Important: rhev-hypervisor6 security and bug fix update

Source: CCN
Type: SA51824
GnuTLS TLS CBC Ciphersuite Plaintext Recovery Weakness

Source: CCN
Type: SA54938
Avaya Aura Session Manager GnuTLS TLS CBC Ciphersuite Plaintext Recovery Weakness

Source: CCN
Type: SA55045
Avaya Aura System Manager GnuTLS TLS CBC Ciphersuite Plaintext Recovery Weakness

Source: SECUNIA
Type: UNKNOWN
57260

Source: SECUNIA
Type: UNKNOWN
57274

Source: CCN
Type: GnuTLS Web site
The GNU Transport Layer Security Library

Source: CONFIRM
Type: UNKNOWN
http://www.gnutls.org/security.html#GNUTLS-SA-2013-1

Source: MISC
Type: UNKNOWN
http://www.isg.rhul.ac.uk/tls/TLStiming.pdf

Source: CCN
Type: BID-57736
GnuTLS TLS And DTLS Information Disclosure Vulnerability

Source: UBUNTU
Type: UNKNOWN
USN-1752-1

Source: CCN
Type: ASA-2013-326
gnutls security update

Source: XF
Type: UNKNOWN
gnutls-cbc-info-disc(81911)

Source: CONFIRM
Type: Exploit, Patch
https://gitorious.org/gnutls/gnutls/commit/328ee22c1b3951e060c7124c7cb1cee592c59bc0

Source: CONFIRM
Type: Exploit, Patch
https://gitorious.org/gnutls/gnutls/commit/b8391806cd79095fe566f2401d8c7ad85a64b198

Vulnerable Configuration:

Configuration 1:

cpe:/a:gnu:gnutls:2.0.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.0.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.0.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.0.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.0.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.1.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.1.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.1.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.1.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.1.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.1.5:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.1.6:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.1.7:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.1.8:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.2.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.2.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.2.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.2.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.2.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.2.5:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.5:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.6:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.7:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.8:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.9:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.10:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.3.11:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.4.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.4.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.4.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.4.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.5.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.6.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.6.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.6.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.6.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.6.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.6.5:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.6.6:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.7.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.8.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.8.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.8.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.8.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.8.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.8.5:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.8.6:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.10.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.10.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.10.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.10.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.10.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.10.5:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.5:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.6:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.6.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.7:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.8:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.9:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.10:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.11:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.12:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.13:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.14:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.15:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.16:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.17:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.18:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.19:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.20:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.21:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:2.12.22:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:gnu:gnutls:3.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.5:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.6:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.7:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.8:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.9:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.10:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.11:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.12:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.13:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.14:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.15:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.16:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.17:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.18:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.19:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.20:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.21:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.22:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.23:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.24:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.25:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.26:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.27:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:gnu:gnutls:3.1.0:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.1.1:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.1.2:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.1.3:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.1.4:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.1.5:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.1.6:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:gnu:gnutls:2.12.22:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.0.27:*:*:*:*:*:*:*

OR cpe:/a:gnu:gnutls:3.1.6:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client_workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:42316	P	Security update for p11-kit (Moderate)	2022-07-15
oval:org.opensuse.security:def:20131619	V	CVE-2013-1619	2022-05-20
oval:org.opensuse.security:def:31376	P	Security update for apache2 (Important)	2022-01-12
oval:org.opensuse.security:def:33063	P	Security update for xorg-x11-server (Important)	2021-12-14
oval:org.opensuse.security:def:26177	P	Security update for webkit2gtk3 (Important)	2021-12-01
oval:org.opensuse.security:def:32215	P	Security update for qemu (Important)	2021-11-10
oval:org.opensuse.security:def:31691	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:26138	P	Security update for python-urllib3 (Moderate)	2021-09-29
oval:org.opensuse.security:def:32196	P	Security update for python-urllib3 (Moderate)	2021-09-29
oval:org.opensuse.security:def:31686	P	Security update for xen (Important)	2021-09-23
oval:org.opensuse.security:def:26114	P	Security update for openexr (Important)	2021-09-02
oval:org.opensuse.security:def:32152	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-07-27
oval:org.opensuse.security:def:26089	P	Security update for MozillaFirefox (Important)	2021-07-16
oval:org.opensuse.security:def:32130	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-06-18
oval:org.opensuse.security:def:26076	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:42546	P	gnutls-2.4.1-24.39.55.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36139	P	gnutls-2.4.1-24.39.55.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36451	P	libgnutls-devel-2.4.1-24.39.55.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32091	P	Security update for python3 (Important)	2021-05-17
oval:org.opensuse.security:def:31617	P	Security update for samba (Important)	2021-05-04
oval:org.opensuse.security:def:26036	P	Security update for MozillaFirefox (Important)	2021-04-27
oval:org.opensuse.security:def:31606	P	Security update for clamav (Important)	2021-04-14
oval:org.opensuse.security:def:31605	P	Security update for xorg-x11-server (Important)	2021-04-14
oval:org.opensuse.security:def:32059	P	Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:33102	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:31743	P	Security update for python (Moderate)	2021-03-16
oval:org.opensuse.security:def:32271	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:26204	P	Security update for freeradius-server (Low)	2021-03-04
oval:org.opensuse.security:def:26191	P	Security update for jasper (Important)	2021-02-16
oval:org.opensuse.security:def:26030	P	Security update for php72 (Moderate)	2021-01-14
oval:org.opensuse.security:def:32834	P	Security update for curl (Moderate)	2020-12-18
oval:org.opensuse.security:def:25973	P	Security update for the Linux Kernel (Important)	2020-12-09
oval:org.opensuse.security:def:35909	P	gnutls-2.4.1-24.39.45.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:26265	P	Security update for guile (Low)	2020-12-01
oval:org.opensuse.security:def:26000	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:31972	P	Security update for jakarta-commons-fileupload (Important)	2020-12-01
oval:org.opensuse.security:def:26464	P	Security update for enigmail (Moderate)	2020-12-01
oval:org.opensuse.security:def:26285	P	Security update for the Linux Kernel (Critical)	2020-12-01
oval:org.opensuse.security:def:32359	P	Security update for strongswan (Moderate)	2020-12-01
oval:org.opensuse.security:def:25663	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:26679	P	cron on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31388	P	Security update for openwsman (Important)	2020-12-01
oval:org.opensuse.security:def:27449	P	libgnutls-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25689	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:31830	P	Security update for bind (Critical)	2020-12-01
oval:org.opensuse.security:def:26873	P	clamav on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31823	P	Security update for bash (Moderate)	2020-12-01
oval:org.opensuse.security:def:26406	P	Security update for mbedtls (Moderate)	2020-12-01
oval:org.opensuse.security:def:25471	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26577	P	kvm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25885	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26776	P	libzip1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25892	P	Security update for gstreamer-0_10-plugins-good (Important)	2020-12-01
oval:org.opensuse.security:def:26318	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:32873	P	gnutls on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26001	P	Security update for openexr (Moderate)	2020-12-01
oval:org.opensuse.security:def:27102	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25459	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:26342	P	Security update for openjpeg2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32381	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:25744	P	Security update for djvulibre (Low)	2020-12-01
oval:org.opensuse.security:def:26718	P	hplip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31462	P	Security update for postgresql94 (Important)	2020-12-01
oval:org.opensuse.security:def:25700	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:31986	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:26908	P	gnutls on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31915	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:26420	P	Security update for phpMyAdmin (Moderate)	2020-12-01
oval:org.opensuse.security:def:32320	P	Security update for rzsz (Moderate)	2020-12-01
oval:org.opensuse.security:def:25535	P	Security update for audiofile (Low)	2020-12-01
oval:org.opensuse.security:def:26630	P	perl-spamassassin on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31377	P	Security update for openssl1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27414	P	gnucash on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25688	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:26235	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26367	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:26012	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:27137	P	gnutls on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25460	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:26426	P	Security update for singularity (Moderate)	2020-12-01
oval:org.opensuse.security:def:32425	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:25801	P	Security update for libvdpau (Moderate)	2020-12-01
oval:org.opensuse.security:def:26732	P	kvm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31594	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:25764	P	Security update for webkitgtk (Moderate)	2020-12-01
oval:org.opensuse.security:def:32042	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.mitre.oval:def:25330	P	SUSE-SU-2014:0320-1 -- Security update for gnutls	2014-09-08
oval:org.mitre.oval:def:25546	P	SUSE-SU-2014:0322-1 -- Security update for gnutls	2014-09-08
oval:org.mitre.oval:def:25893	P	SUSE-SU-2013:0731-1 -- Security update for GnuTLS	2014-09-08
oval:org.mitre.oval:def:18268	P	USN-1752-1 -- gnutls13, gnutls26 vulnerability	2014-06-30
oval:org.mitre.oval:def:23912	P	ELSA-2013:0588: gnutls security update (Moderate)	2014-05-26
oval:org.mitre.oval:def:20768	P	RHSA-2013:0588: gnutls security update (Moderate)	2014-02-17
oval:com.redhat.rhsa:def:20130588	P	RHSA-2013:0588: gnutls security update (Moderate)	2013-03-04
oval:com.ubuntu.xenial:def:201316190000000	V	CVE-2013-1619 on Ubuntu 16.04 LTS (xenial) - medium.	2013-02-08
oval:com.ubuntu.precise:def:20131619000	V	CVE-2013-1619 on Ubuntu 12.04 LTS (precise) - medium.	2013-02-08
oval:com.ubuntu.trusty:def:20131619000	V	CVE-2013-1619 on Ubuntu 14.04 LTS (trusty) - medium.	2013-02-08
oval:com.ubuntu.xenial:def:20131619000	V	CVE-2013-1619 on Ubuntu 16.04 LTS (xenial) - medium.	2013-02-08