Vulnerability CVE-2013-2776 - CERT Civis.Net

Vulnerability Name:

CVE-2013-2776 (CCN-82453)

Assigned:

2013-02-27

Published:

2013-02-27

Updated:

2017-08-29

Summary:

sudo 1.3.5 through 1.7.10p5 and 1.8.0 through 1.8.6p6, when running on systems without /proc or the sysctl function with the tty_tickets option enabled, does not properly validate the controlling terminal device, which allows local users with sudo permissions to hijack the authorization of another terminal via vectors related to connecting to the standard input, output, and error file descriptors of another terminal.
Note: this is one of three closely-related vulnerabilities that were originally assigned CVE-2013-1776, but they have been SPLIT because of different affected versions.

CVSS v3 Severity:

4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.4 Medium (CVSS v2 Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P)
3.2 Low (Temporal CVSS v2 Vector: AV:L/AC:M/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)
1.6 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

3.6 Low (REDHAT CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:N)
2.6 Low (REDHAT Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

Vulnerability Type:

Vulnerability Consequences:

Bypass Security

References:

Source: MISC
Type: UNKNOWN
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=701839

Source: MITRE
Type: CNA
CVE-2013-1776

Source: MITRE
Type: CNA
CVE-2013-2776

Source: MITRE
Type: CNA
CVE-2013-2777

Source: APPLE
Type: UNKNOWN
APPLE-SA-2015-08-13-2

Source: CCN
Type: RHSA-2013-1353
Low: sudo security and bug fix update

Source: REDHAT
Type: UNKNOWN
RHSA-2013:1353

Source: CCN
Type: RHSA-2013-1701
Low: sudo security, bug fix and enhancement update

Source: REDHAT
Type: UNKNOWN
RHSA-2013:1701

Source: DEBIAN
Type: UNKNOWN
DSA-2642

Source: DEBIAN
Type: DSA-2642
sudo -- several issues

Source: MLIST
Type: UNKNOWN
[oss-security] 20130227 Re: CVE request: potential bypass of sudo tty_tickets constraints

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/ovmbulletinjul2016-3090546.html

Source: BID
Type: UNKNOWN
58207

Source: CCN
Type: BID-58207
Todd Miller Sudo CVE-2013-1776 Local Security Bypass Vulnerability

Source: BID
Type: UNKNOWN
62741

Source: CCN
Type: BID-62741
Todd Miller Sudo CVE-2013-2776 Local Security Bypass Vulnerability

Source: SLACKWARE
Type: UNKNOWN
SSA:2013-065-01

Source: CCN
Type: Sudo Web site
Sudo Main Page

Source: CONFIRM
Type: Vendor Advisory
http://www.sudo.ws/repos/sudo/rev/049a12a5cc14

Source: CONFIRM
Type: Vendor Advisory
http://www.sudo.ws/repos/sudo/rev/0c0283d1fafa

Source: CONFIRM
Type: UNKNOWN
http://www.sudo.ws/sudo/alerts/tty_tickets.html

Source: MISC
Type: UNKNOWN
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/87023

Source: CCN
Type: Red Hat Bugzilla Bug 916365
CVE-2013-1776 sudo: bypass of tty_tickets constraints

Source: MISC
Type: UNKNOWN
https://bugzilla.redhat.com/show_bug.cgi?id=916365

Source: XF
Type: UNKNOWN
sudo-ttytickets-sec-bypass(82453)

Source: XF
Type: UNKNOWN
sudo-ttytickets-sec-bypass(82453)

Source: CONFIRM
Type: Vendor Advisory
https://support.apple.com/kb/HT205031

Vulnerable Configuration:

Configuration 1:

cpe:/a:todd_miller:sudo:1.3.5:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.2p3:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.3:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.3_p7:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.4:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.4p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.5:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.6:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.7:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.7p5:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.8:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.8p12:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.9:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.9p20:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.9p21:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.9p22:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.9p23:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.0:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.2p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.2p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.2p3:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.2p4:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.2p5:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.2p6:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.2p7:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.3b1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.4:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.4p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.4p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.4p3:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.4p4:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.4p5:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.4p6:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.5:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.6:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.6p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.6p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.7:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.8:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.8p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.8p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.9:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.9p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.10:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.10p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.10p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.10p3:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:apple:mac_os_x:*:*:*:*:*:*:*:* (Version <= 10.10.4)

Configuration 3:

cpe:/a:todd_miller:sudo:1.7.10p4:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.7.10p5:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.0:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.1p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.1p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.3:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.3p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.3p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.4:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.4p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.4p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.4p3:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.4p4:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.4p5:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.5:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.6:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.6p1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.6p2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.6p3:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.6p4:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.6p5:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:5::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:5::server:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:todd_miller:sudo:1.7.0:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6.8:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.6:*:*:*:*:*:*:*

OR cpe:/a:sudo_project:sudo:1.8.21:p2:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.1:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.2:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.3:*:*:*:*:*:*:*

OR cpe:/a:todd_miller:sudo:1.8.3p1:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:5:*:client:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6:*:workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20132776	V	CVE-2013-2776	2022-05-20
oval:org.opensuse.security:def:29497	P	Security update for apache2 (Important)	2022-01-12
oval:org.opensuse.security:def:31721	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:32218	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-11-19
oval:org.opensuse.security:def:32220	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-11-19
oval:org.opensuse.security:def:26163	P	Security update for bind (Important)	2021-11-11
oval:org.opensuse.security:def:29440	P	Security update for transfig (Important)	2021-10-29
oval:org.opensuse.security:def:33988	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:26134	P	Security update for the Linux Kernel (Important)	2021-09-23
oval:org.opensuse.security:def:33000	P	Security update for java-1_7_0-openjdk (Moderate)	2021-09-09
oval:org.opensuse.security:def:32169	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-08-25
oval:org.opensuse.security:def:55235	P	Security update for openssl (Important)	2021-08-24
oval:org.opensuse.security:def:32961	P	Security update for kernel-source (Important)	2021-07-01
oval:org.opensuse.security:def:32133	P	Security update for libgcrypt (Important)	2021-06-24
oval:org.opensuse.security:def:55913	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:42707	P	sudo-1.7.6p2-0.23.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36300	P	sudo-1.7.6p2-0.23.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32113	P	Security update for qemu (Important)	2021-06-08
oval:org.opensuse.security:def:33920	P	Security update for MozillaFirefox (Important)	2021-06-08
oval:org.opensuse.security:def:26053	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:29354	P	Security update for tomcat (Important)	2021-04-29
oval:org.opensuse.security:def:32076	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-04-28
oval:org.opensuse.security:def:26216	P	Security update for MozillaFirefox (Important)	2021-03-31
oval:org.opensuse.security:def:34666	P	Security update for tomcat (Important)	2021-03-30
oval:org.opensuse.security:def:57189	P	Security update for wavpack (Important)	2021-03-24
oval:org.opensuse.security:def:32279	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:33775	P	Security update for python-cryptography (Important)	2021-03-02
oval:org.opensuse.security:def:32257	P	Security update for jasper (Important)	2021-02-16
oval:org.opensuse.security:def:26191	P	Security update for jasper (Important)	2021-02-16
oval:org.opensuse.security:def:34626	P	Security update for wpa_supplicant (Important)	2021-02-15
oval:org.opensuse.security:def:33944	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:55832	P	Security update for openssh (Moderate)	2021-01-05
oval:org.opensuse.security:def:33881	P	Security update for python (Important)	2020-12-11
oval:org.opensuse.security:def:33618	P	Security update for postgresql12 (Important)	2020-12-04
oval:org.opensuse.security:def:42444	P	sudo-1.7.6p2-0.17.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:36037	P	sudo-1.7.6p2-0.17.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:27151	P	jakarta-commons-httpclient3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27436	P	libbz2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27781	P	Security update for krb5	2020-12-01
oval:org.opensuse.security:def:27927	P	Security update for GraphicsMagick (Important)	2020-12-01
oval:org.opensuse.security:def:29142	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:29735	P	Security update for freeradius-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:29895	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:54552	P	libgssglue1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55794	P	Security update for wget (Moderate)	2020-12-01
oval:org.opensuse.security:def:57263	P	Security update for sudo	2020-12-01
oval:org.opensuse.security:def:31515	P	Security update for quagga (Low)	2020-12-01
oval:org.opensuse.security:def:31870	P	Security update for curl (Important)	2020-12-01
oval:org.opensuse.security:def:31767	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:32432	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:32586	P	openswan on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33152	P	libgdiplus0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33378	P	Security update for compat-openssl097g (Moderate)	2020-12-01
oval:org.opensuse.security:def:25586	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:25790	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:26318	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:25925	P	Security update for pcre (Moderate)	2020-12-01
oval:org.opensuse.security:def:26275	P	Security update for freerdp (Important)	2020-12-01
oval:org.opensuse.security:def:26567	P	java-1_4_2-ibm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27298	P	sudo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27162	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27493	P	libtirpc-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27830	P	Security update for lighttpd	2020-12-01
oval:org.opensuse.security:def:28565	P	Security update for kdelibs4	2020-12-01
oval:org.opensuse.security:def:29143	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:29789	P	Security update for gtk2	2020-12-01
oval:org.opensuse.security:def:29939	P	Security update for libksba (Moderate)	2020-12-01
oval:org.opensuse.security:def:54389	P	tcpdump on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54790	P	gpg2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55520	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:31589	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:31957	P	Security update for gdk2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31778	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:32481	P	NetworkManager on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33224	P	pam_mount on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33153	P	libgnomesu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33473	P	Security update for libapr-util1	2020-12-01
oval:org.opensuse.security:def:33832	P	Security update for gnutls (Important)	2020-12-01
oval:org.opensuse.security:def:25587	P	Security update for perl-PlRPC (Moderate)	2020-12-01
oval:org.opensuse.security:def:25871	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:26362	P	Security update for nginx (Moderate)	2020-12-01
oval:org.opensuse.security:def:25849	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:26426	P	Security update for singularity (Moderate)	2020-12-01
oval:org.opensuse.security:def:26581	P	libadns1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27226	P	libvorbis on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27577	P	vte-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27869	P	Security update for python-logilab-common	2020-12-01
oval:org.opensuse.security:def:28600	P	Security update for sudo	2020-12-01
oval:org.opensuse.security:def:29154	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:29838	P	Security update for kdelibs4	2020-12-01
oval:org.opensuse.security:def:30577	P	Security update for nagios	2020-12-01
oval:org.opensuse.security:def:54390	P	telepathy-gabble on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54963	P	minicom on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55628	P	Security update for libpng12 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31503	P	Security update for python27 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31852	P	Recommended udpate for SUSE Manager Client Tools (Low)	2020-12-01
oval:org.opensuse.security:def:32520	P	glib2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33263	P	sudo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33164	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33530	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:25598	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:25928	P	Security update for pcre (Moderate)	2020-12-01
oval:org.opensuse.security:def:26265	P	Security update for guile (Low)	2020-12-01
oval:org.opensuse.security:def:27000	P	openslp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25850	P	Security update for libreoffice (Low)	2020-12-01
oval:org.opensuse.security:def:26479	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:26625	P	pam_ldap on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27150	P	jakarta-commons-fileupload on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27354	P	vsftpd-openssl1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27728	P	Security update for file	2020-12-01
oval:org.opensuse.security:def:27883	P	Security update for rubygem-bundler	2020-12-01
oval:org.opensuse.security:def:29223	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:29582	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29877	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:30614	P	Security update for sudo	2020-12-01
oval:org.opensuse.security:def:54412	P	yast2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55069	P	bogofilter on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55720	P	Security update for openssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:31504	P	Security update for python27 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31813	P	Security update for apache2-mod_jk (Moderate)	2020-12-01
oval:org.opensuse.security:def:32323	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:31766	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:31984	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:32376	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:32542	P	kvm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33243	P	python-lxml on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25662	P	Security update for apache-commons-httpclient (Important)	2020-12-01
oval:org.opensuse.security:def:26012	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:26304	P	Security update for python-keystoneclient (Moderate)	2020-12-01
oval:org.opensuse.security:def:27035	P	sudo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25861	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26528	P	bzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27263	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:27220	P	RHSA-2013:1353 -- sudo security and bug fix update (Low)	2015-02-23
oval:org.mitre.oval:def:27379	P	ELSA-2013-1701 -- sudo security, bug fix and enhancement update (low)	2014-12-15
oval:org.mitre.oval:def:27476	P	ELSA-2013-1353 -- sudo security and bug fix update (low)	2014-12-15
oval:org.mitre.oval:def:25531	P	SUSE-SU-2013:1595-1 -- Security update for sudo	2014-09-08
oval:org.mitre.oval:def:25587	P	SUSE-SU-2013:1594-1 -- Security update for sudo	2014-09-08
oval:org.mitre.oval:def:25864	P	SUSE-SU-2013:0793-1 -- Security update for sudo	2014-09-08
oval:org.mitre.oval:def:20126	P	DSA-2642-1 sudo - several issues	2014-06-23
oval:com.redhat.rhsa:def:20131701	P	RHSA-2013:1701: sudo security, bug fix and enhancement update (Low)	2013-11-21
oval:com.redhat.rhsa:def:20131353	P	RHSA-2013:1353: sudo security and bug fix update (Low)	2013-09-30
oval:org.opensuse.security:def:79897	P	Security update for sudo	2013-04-30
oval:com.ubuntu.precise:def:20132776000	V	CVE-2013-2776 on Ubuntu 12.04 LTS (precise) - low.	2013-04-08