Vulnerability CVE-2014-3538

Vulnerability Name:

CVE-2014-3538 (CCN-94324)

Assigned:

2014-06-26

Published:

2014-06-26

Updated:

2023-01-19

Summary:

file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted file that triggers backtracking during processing of an awk rule.
Note: this vulnerability exists because of an incomplete fix for CVE-2013-7345.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
3.7 Low (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

4.3 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
3.2 Low (REDHAT Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2014-3538

Source: secalert@redhat.com
Type: Mailing List, Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Broken Link
secalert@redhat.com

Source: secalert@redhat.com
Type: Mailing List, Third Party Advisory
secalert@redhat.com

Source: CCN
Type: RHSA-2014-1327
Moderate: php security update

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: CCN
Type: RHSA-2016-0760
Moderate: file security, bug fix, and enhancement update

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: CCN
Type: Fine Free File Web page
Fine Free File Command

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: CCN
Type: IBM Security Bulletin T1023349 (PowerKVM)
Multiple vulnerabilities in file affect PowerKVM

Source: CCN
Type: IBM Security Bulletin T1024195 (SmartCloud Entry)
File vulnerabilities affect IBM SmartClound Entry

Source: CCN
Type: IBM Security Bulletin 1985753 (Security Network Protection)
Multiple vulnerabilities in file affect IBM Security Network Protection

Source: CCN
Type: IBM Security Bulletin 2008901 (Security Guardium)
IBM Security Guardium is affected by Using Components with Known Vulnerabilities

Source: CCN
Type: Oracle CPUOct2017
Oracle Critical Patch Update Advisory - October 2017

Source: secalert@redhat.com
Type: Patch, Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: CCN
Type: BID-68348
PHP Fileinfo Component Incomplete Fix Remote Denial of Service Vulnerability

Source: secalert@redhat.com
Type: Third Party Advisory, VDB Entry
secalert@redhat.com

Source: secalert@redhat.com
Type: Issue Tracking, Third Party Advisory
secalert@redhat.com

Source: XF
Type: UNKNOWN
file-cve20143538-dos(94324)

Source: CCN
Type: PHP GIT Repository
Enforce limit of 8K on regex searches that have no limits

Source: secalert@redhat.com
Type: Exploit, Patch, Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Patch, Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Exploit, Patch, Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Exploit, Patch, Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Exploit, Patch, Third Party Advisory
secalert@redhat.com

Source: secalert@redhat.com
Type: Third Party Advisory
secalert@redhat.com

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2014-3538

Vulnerable Configuration:

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 10:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:christos_zoulas:file:5.00:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.01:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.02:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.03:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.04:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.05:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.06:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.07:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.08:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.09:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.10:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.11:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.12:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.13:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.14:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.13:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.29:-:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.17:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.16:*:*:*:*:*:*:*

OR cpe:/a:christos_zoulas:file:5.15:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux_hpc_node:7:*:*:*:*:*:*:*

OR cpe:/a:ibm:smartcloud_entry:3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:smartcloud_entry:3.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:smartcloud_entry:2.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:smartcloud_entry:2.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:powerkvm:2.1:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:7:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:10.0:*:*:*:*:*:*:*

OR cpe:/o:ibm:security_network_protection_firmware:5.3.1:*:*:*:*:*:*:*

OR cpe:/o:ibm:security_network_protection_firmware:5.3.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:powerkvm:3.1:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:6:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:10.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:10.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:10.1.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_webrtc_session_controller:7.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_webrtc_session_controller:7.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:communications_webrtc_session_controller:7.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:10.1.3:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:7736	P	perl-5.26.1-150300.17.11.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7714	P	log4j12-1.2.17-4.9.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:20143538	V	CVE-2014-3538	2022-09-02
oval:org.opensuse.security:def:1678	P	Security update for 389-ds (Important)	2022-06-14
oval:org.opensuse.security:def:1670	P	Security update for redis (Moderate)	2022-05-25
oval:org.opensuse.security:def:1091	P	Security update for vim (Important)	2022-03-04
oval:org.opensuse.security:def:1083	P	Security update for tiff (Important)	2022-02-17
oval:org.opensuse.security:def:113137	P	php8-8.0.11-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:111960	P	apache2-mod_php5-5.6.28-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:111961	P	apache2-mod_php7-7.0.14-1.4 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:9885	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:10711	P	Security update for MozillaThunderbird (Important)	2022-01-12
oval:org.opensuse.security:def:10439	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:10710	P	Security update for the Linux Kernel (Important) (in QA)	2022-01-07
oval:org.opensuse.security:def:9635	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:7012	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP1) (Important)	2021-12-14
oval:org.opensuse.security:def:10372	P	Security update for aaa_base (Moderate)	2021-12-03
oval:org.opensuse.security:def:105525	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:10176	P	Security update for java-1_8_0-openjdk (Important)	2021-11-23
oval:org.opensuse.security:def:6987	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-11-17
oval:org.opensuse.security:def:105524	P	Security update for samba (Important)	2021-11-16
oval:org.opensuse.security:def:9613	P	Security update for tomcat (Important)	2021-11-16
oval:org.opensuse.security:def:10170	P	Security update for qemu (Important)	2021-11-04
oval:org.opensuse.security:def:9605	P	Security update for busybox (Important)	2021-10-27
oval:org.opensuse.security:def:106567	P	php8-8.0.11-1.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:71345	P	logrotate-3.13.0-4.3.9 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:10154	P	Security update for ghostscript (Critical)	2021-09-15
oval:org.opensuse.security:def:64758	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:10148	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:10140	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:47941	P	SuSEfirewall2-3.6.312.333-3.13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48165	P	libospf0-1.1.1-17.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47605	P	evince-3.20.2-6.22.9 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47740	P	libmicrohttpd10-0.9.30-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48065	P	libICE6-1.0.8-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47604	P	eog-3.20.4-7.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48305	P	shadow-4.2.1-34.20 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47613	P	g3utils-1.1.36-58.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47748	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48073	P	libXcursor1-1.1.14-4.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47612	P	fuse-2.9.3-6.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48313	P	stunnel-5.00-4.3.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:9762	P	Security update for cpio (Important)	2021-08-16
oval:org.opensuse.security:def:47619	P	giflib-progs-5.0.5-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47933	P	yubikey-manager-0.6.0-1.27 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48157	P	libnghttp2-14-1.7.1-1.84 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47627	P	gnutls-3.3.27-3.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:10686	P	Security update for the Linux Kernel (Important)	2021-07-20
oval:org.opensuse.security:def:11099	P	Security update for fossil (Moderate)	2021-07-17
oval:org.opensuse.security:def:10685	P	Security update for the Linux Kernel (Important)	2021-07-15
oval:org.opensuse.security:def:9743	P	Security update for ovmf (Important)	2021-06-25
oval:org.opensuse.security:def:10112	P	Security update for ovmf (Important)	2021-06-25
oval:org.opensuse.security:def:68005	P	Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:6912	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:9728	P	Security update for containerd, docker, runc (Important)	2021-06-11
oval:org.opensuse.security:def:10278	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:11435	P	perl-32bit-5.18.2-3.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48730	P	libIlmImf-Imf_2_1-21-32bit-2.1.0-4.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124641	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11413	P	libvte9-0.28.2-17.83 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48840	P	gstreamer-0_10-plugins-base-0.10.36-17.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48527	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16349	P	php7-devel-7.0.7-49.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36544	P	python-32bit-2.6.9-0.35.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48738	P	libmysqlclient_r18-10.0.21-1.17 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48603	P	procmail-3.22-267.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48665	P	colord-1.1.7-2.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16635	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48761	P	ImageMagick-6.8.8.1-33.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48611	P	qemu-2.6.1-27.15 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11434	P	pcsc-ccid-1.4.14-1.45 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48673	P	gd-32bit-2.1.0-3.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11412	P	libvorbis0-1.3.3-8.23 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48832	P	freerdp-2.0.0~git.1463131968.4e66df7-11.69 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48519	P	liblua5_2-5.2.2-4.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48769	P	empathy-3.12.12-5.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36502	P	libwebkit-1_0-2-1.2.7-0.17.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16099	P	php7-devel-7.0.7-15.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10087	P	Security update for polkit (Important)	2021-06-03
oval:org.opensuse.security:def:10263	P	Security update for ceph (Important)	2021-06-02
oval:org.opensuse.security:def:6893	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:7076	P	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP2) (Important)	2021-04-28
oval:org.opensuse.security:def:6878	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1) (Important)	2021-04-07
oval:org.opensuse.security:def:7063	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP2) (Important)	2021-04-07
oval:org.opensuse.security:def:9681	P	Security update for MozillaFirefox (Important)	2021-04-01
oval:org.opensuse.security:def:64671	P	Security update for ruby2.5 (Important)	2021-03-24
oval:org.opensuse.security:def:68105	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:9863	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:9862	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:10216	P	Security update for wpa_supplicant (Important)	2021-03-08
oval:org.opensuse.security:def:9855	P	Security update for bind (Important)	2021-03-02
oval:org.opensuse.security:def:10397	P	Security update for salt (Critical)	2021-02-26
oval:org.opensuse.security:def:9837	P	Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Important)	2021-02-11
oval:org.opensuse.security:def:10163	P	Security update for python-urllib3 (Moderate)	2021-02-08
oval:org.opensuse.security:def:10297	P	Security update for go1.14 (Moderate)	2021-01-26
oval:org.opensuse.security:def:11121	P	Security update for viewvc (Moderate)	2021-01-19
oval:org.opensuse.security:def:35237	P	Security update for gimp (Moderate)	2020-12-29
oval:org.opensuse.security:def:10586	P	Security update for PackageKit (Moderate)	2020-12-16
oval:org.opensuse.security:def:7054	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:16949	P	php72-devel-7.2.5-1.26.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35704	P	g3utils-1.1.36-26.31 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63389	P	apache2-mod_php7-7.2.5-2.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35753	P	libmusicbrainz4-2.1.5-5.18 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35820	P	ruby-1.8.7.p357-0.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71458	P	conntrack-tools-1.4.5-1.46 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2300	P	apache2-mod_php7-7.2.5-2.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103740	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63397	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35864	P	apache2-mod_jk-1.2.26-1.30.110 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35645	P	unrar-3.80.2-2.8 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2308	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13245	P	apache2-mod_php7-7.0.7-15.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35792	P	openslp-1.2.0-172.22.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90085	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16948	P	php7-devel-7.0.7-50.85.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:46365	P	apache2-mod_php7-7.0.7-15.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35005	P	Security update for gnutls	2020-12-01
oval:org.opensuse.security:def:10762	P	libmysqlclient-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35485	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:10462	P	libHX-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10454	P	icecream on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10530	P	libpng12-compat-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10836	P	php7-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10752	P	libjson-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50057	P	erlang-rabbitmq-client on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6785	P	libyaml-0-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10592	P	quagga-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10814	P	libxslt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10775	P	libpng12-compat-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9931	P	libusbmuxd4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10483	P	libapr1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9904	P	libpng16-16 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35017	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:9993	P	squidGuard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10576	P	nut-cgi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9926	P	libtcnative-1-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10448	P	gnome-shell-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10610	P	xfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10753	P	libksba-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50065	P	libapr-util1-dbd-mysql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35395	P	Security update for openslp (Important)	2020-12-01
oval:org.opensuse.security:def:50111	P	apache2-mod_php7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10484	P	libarchive-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6763	P	libssh2-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10577	P	ocaml on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10761	P	libmusicbrainz-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6755	P	libsmi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6831	P	rhythmbox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10611	P	xfsprogs-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10461	P	lib3ds-1-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35006	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:9978	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50119	P	apache2-mod_php7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10453	P	hplip-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10529	P	libpcscspy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9913	P	libraptor2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35101	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:10012	P	w3m on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10591	P	python3-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7045	P	libgssglue1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10564	P	libxerces-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35338	P	Security update for mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:10774	P	libplist++-devel on GA media (Moderate)	2020-12-01
oval:com.redhat.rhsa:def:20160760	P	RHSA-2016:0760: file security, bug fix, and enhancement update (Moderate)	2016-05-10
oval:com.redhat.rhsa:def:20152155	P	RHSA-2015:2155: file security and bug fix update (Moderate)	2015-11-19
oval:org.mitre.oval:def:28064	P	DSA-3008-2 -- php5 regression update	2015-01-26
oval:org.mitre.oval:def:27986	P	DSA-3021-2 -- file regression update	2015-01-26
oval:org.mitre.oval:def:27173	P	ELSA-2014-1327 -- php security update (moderate)	2014-12-15
oval:org.mitre.oval:def:27209	P	RHSA-2014:1327: php security update (Moderate)	2014-12-01
oval:org.mitre.oval:def:26455	P	DSA-3021-1 file - security update	2014-11-10
oval:org.mitre.oval:def:26689	P	DSA-3008-1 php5 - security update	2014-10-27
oval:com.redhat.rhsa:def:20141327	P	RHSA-2014:1327: php security update (Moderate)	2014-09-30
oval:org.mitre.oval:def:25274	P	USN-2278-1 -- file vulnerabilities	2014-09-01
oval:com.ubuntu.trusty:def:20143538000	V	CVE-2014-3538 on Ubuntu 14.04 LTS (trusty) - low.	2014-07-03
oval:com.ubuntu.precise:def:20143538000	V	CVE-2014-3538 on Ubuntu 12.04 LTS (precise) - low.	2014-07-03

BACK