Vulnerability CVE-2014-4608

Vulnerability Name:

CVE-2014-4608 (CCN-94013)

Assigned:

2014-06-26

Published:

2014-06-26

Updated:

2020-08-14

Summary:

** DISPUTED ** Multiple integer overflows in the lzo1x_decompress_safe function in lib/lzo/lzo1x_decompress_safe.c in the LZO decompressor in the Linux kernel before 3.15.2 allow context-dependent attackers to cause a denial of service (memory corruption) via a crafted Literal Run.
Note: the author of the LZO algorithms says "the Linux kernel is *not* affected; media hype."

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

6.0 Medium (REDHAT CVSS v2 Vector: AV:L/AC:H/Au:S/C:C/I:C/A:C)
4.5 Medium (REDHAT Temporal CVSS v2 Vector: AV:L/AC:H/Au:S/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): High Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-190

Vulnerability Consequences:

Gain Access

References:

Source: MISC
Type: Third Party Advisory
http://blog.securitymouse.com/2014/06/raising-lazarus-20-year-old-bug-that.html

Source: MITRE
Type: CNA
CVE-2014-4608

Source: CONFIRM
Type: Patch, Vendor Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=206a81c18401c0cde6e579164f752c4b147324ce

Source: SUSE
Type: Mailing List, Third Party Advisory
SUSE-SU-2015:0481

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2015:0566

Source: SUSE
Type: Mailing List, Third Party Advisory
SUSE-SU-2015:0736

Source: CCN
Type: RHSA-2014-1392
Important: kernel security, bug fix, and enhancement update

Source: CCN
Type: RHSA-2015-0062
Important: kernel security, bug fix, and enhancement update

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:0062

Source: CCN
Type: oss-security Mailing List, Thu 26 Jun 2014
LMS-2014-06-16-2: Linux Kernel LZO

Source: SECUNIA
Type: Third Party Advisory
60011

Source: SECUNIA
Type: Third Party Advisory
60174

Source: SECUNIA
Type: Third Party Advisory
62633

Source: CONFIRM
Type: Release Notes, Vendor Advisory
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.15.2

Source: MISC
Type: Third Party Advisory
http://www.oberhumer.com/opensource/lzo/

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20140626 LMS-2014-06-16-2: Linux Kernel LZO

Source: BID
Type: Third Party Advisory, VDB Entry
68214

Source: CCN
Type: BID-68214
Linux Kernel LZO Implementation 'lzo1x_decompress_safe.c' Memory Corruption Vulnerability

Source: UBUNTU
Type: Third Party Advisory
USN-2416-1

Source: UBUNTU
Type: Third Party Advisory
USN-2417-1

Source: UBUNTU
Type: Third Party Advisory
USN-2418-1

Source: UBUNTU
Type: Third Party Advisory
USN-2419-1

Source: UBUNTU
Type: Third Party Advisory
USN-2420-1

Source: UBUNTU
Type: Third Party Advisory
USN-2421-1

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1113899

Source: XF
Type: UNKNOWN
linux-kernel-cve20144608-code-exe(94013)

Source: CCN
Type: Linux Kernel GIT Repository
lzo: properly check for overruns

Source: CONFIRM
Type: Patch, Third Party Advisory
https://github.com/torvalds/linux/commit/206a81c18401c0cde6e579164f752c4b147324ce

Source: MISC
Type: Broken Link
https://www.securitymouse.com/lms-2014-06-16-2

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2014-4608

Vulnerable Configuration:

Configuration 1:

cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:* (Version < 3.15.2)

Configuration 2:

cpe:/o:opensuse:opensuse:11.4:*:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_real_time_extension:11:sp3:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_server:11:sp2:*:*:ltss:*:*:*

Configuration 3:

cpe:/o:canonical:ubuntu_linux:10.04:*:*:*:-:*:*:*

OR cpe:/o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*

OR cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

OR cpe:/o:canonical:ubuntu_linux:14.10:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/o:linux:linux_kernel:3.10.44:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:8058	P	perl-doc-5.26.1-150300.17.11.1 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:8036	P	libtdsodbc0-1.1.36-150400.12.3 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:20144608	V	CVE-2014-4608	2023-02-11
oval:org.opensuse.security:def:5334	P	Security update for postgresql13 (Important)	2022-08-26
oval:org.opensuse.security:def:5309	P	Security update for pcre2 (Important)	2022-07-27
oval:org.opensuse.security:def:6058	P	Security update for postgresql14 (Important)	2022-05-27
oval:org.opensuse.security:def:6036	P	Security update for tiff (Important)	2022-05-16
oval:org.opensuse.security:def:5234	P	Security update for MozillaFirefox (Important)	2022-05-09
oval:org.opensuse.security:def:5376	P	Security update for apache2 (Important)	2022-03-21
oval:org.opensuse.security:def:5367	P	Security update for libcaca (Important)	2022-03-14
oval:org.opensuse.security:def:5215	P	Security update for MozillaFirefox (Important)	2022-01-18
oval:org.opensuse.security:def:52034	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:7234	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP2) (Important)	2021-12-14
oval:org.opensuse.security:def:56106	P	Security update for xorg-x11-server (Important)	2021-12-14
oval:org.opensuse.security:def:32240	P	Security update for the Linux Kernel (Live Patch 41 for SLE 12 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:26181	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:9430	P	Security update for mariadb (Moderate)	2021-12-06
oval:org.opensuse.security:def:31716	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:5153	P	Security update for php74 (Moderate)	2021-11-18
oval:org.opensuse.security:def:7215	P	Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP2) (Important)	2021-11-17
oval:org.opensuse.security:def:55268	P	Security update for MozillaFirefox (Important)	2021-11-17
oval:org.opensuse.security:def:10702	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:9411	P	Security update for containerd, docker, runc (Important)	2021-10-25
oval:org.opensuse.security:def:26139	P	Security update for libvirt (Moderate)	2021-10-04
oval:org.opensuse.security:def:9594	P	Security update for webkit2gtk3 (Important)	2021-10-04
oval:org.opensuse.security:def:9396	P	Security update for xen (Important)	2021-09-03
oval:org.opensuse.security:def:5107	P	Security update for xerces-c (Important)	2021-09-03
oval:org.opensuse.security:def:9581	P	Security update for mariadb (Moderate)	2021-08-25
oval:org.opensuse.security:def:9572	P	Security update for openexr (Important)	2021-08-20
oval:org.opensuse.security:def:7153	P	Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP2) (Important)	2021-08-17
oval:org.opensuse.security:def:5085	P	Security update for webkit2gtk3 (Important)	2021-08-03
oval:org.opensuse.security:def:10687	P	Security update for transfig (Moderate)	2021-07-22
oval:org.opensuse.security:def:51928	P	Security update for systemd (Important)	2021-07-21
oval:org.opensuse.security:def:5077	P	Security update for systemd (Moderate)	2021-07-20
oval:org.opensuse.security:def:38064	P	Security update for OpenEXR (Important)	2021-06-22
oval:org.opensuse.security:def:7107	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP2) (Important)	2021-06-18
oval:org.opensuse.security:def:9349	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:31642	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:9530	P	Security update for spice (Important)	2021-06-11
oval:org.opensuse.security:def:42571	P	kernel-default-3.0.101-63.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36164	P	kernel-default-3.0.101-63.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15766	P	kernel-docs-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36075	P	PackageKit-0.3.14-2.30.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46689	P	kernel-default-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36428	P	kernel-docs-3.0.101-63.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36114	P	e2fsprogs-1.41.9-2.14.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17059	P	kernel-default-extra-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36142	P	gstreamer-0_10-plugins-base-0.10.35-5.15.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36186	P	libfreebl3-3.17.3-0.8.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48728	P	kernel-default-extra-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11566	P	kernel-default-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11545	P	gnome-keyring-3.10.1-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:76862	P	kernel-default-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11523	P	e2fsprogs-1.42.11-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13569	P	kernel-default-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:31631	P	Security update for gstreamer-plugins-bad (Important)	2021-06-07
oval:org.opensuse.security:def:31630	P	Security update for polkit (Important)	2021-06-03
oval:org.opensuse.security:def:26055	P	Security update for hivex (Moderate)	2021-05-26
oval:org.opensuse.security:def:7085	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP2) (Important)	2021-05-25
oval:org.opensuse.security:def:26053	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:10640	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:10254	P	Security update for java-11-openjdk (Important)	2021-05-11
oval:org.opensuse.security:def:32084	P	Security update for gdm (Important)	2021-04-28
oval:org.opensuse.security:def:7077	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP2) (Important)	2021-04-28
oval:org.opensuse.security:def:9303	P	Security update for spamassassin (Important)	2021-04-12
oval:org.opensuse.security:def:55998	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:10232	P	Security update for MozillaFirefox (Important)	2021-04-01
oval:org.opensuse.security:def:5200	P	Security update for evolution-data-server (Moderate)	2021-03-19
oval:org.opensuse.security:def:51755	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:33088	P	Security update for MozillaFirefox (Important)	2021-03-01
oval:org.opensuse.security:def:7200	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP2) (Important)	2021-02-10
oval:org.opensuse.security:def:9505	P	Security update for ImageMagick (Moderate)	2021-01-18
oval:org.opensuse.security:def:5398	P	Security update for gimp (Moderate)	2021-01-04
oval:org.opensuse.security:def:9281	P	Security update for python3 (Important)	2020-12-23
oval:org.opensuse.security:def:25977	P	Security update for openssl-1_1 (Important)	2020-12-10
oval:org.opensuse.security:def:9273	P	Security update for xen (Important)	2020-12-04
oval:org.opensuse.security:def:35559	P	gpg2-2.0.9-25.25.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35660	P	NetworkManager-gnome-0.7.1-5.22.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35717	P	gzip-1.3.12-69.19.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35807	P	perl-libwww-perl-5.816-2.23.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35967	P	libpulse-browse0-0.9.23-0.7.128 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:36026	P	radvd-1.1-1.24.4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:5385	P	Security update for rmt-server (Important)	2020-12-02
oval:org.opensuse.security:def:25789	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:55441	P	Security update for tcpdump (Moderate)	2020-12-01
oval:org.opensuse.security:def:38005	P	mipv6d on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56272	P	Security update for gimp (Moderate)	2020-12-01
oval:org.opensuse.security:def:38862	P	libmikmod3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7376	P	ft2demos on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35328	P	Security update for microcode_ctl (Moderate)	2020-12-01
oval:org.opensuse.security:def:31848	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:52200	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:32345	P	Security update for spice (Important)	2020-12-01
oval:org.opensuse.security:def:52878	P	Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:35327	P	Security update for microcode_ctl (Important)	2020-12-01
oval:org.opensuse.security:def:25917	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:55547	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:56310	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:7385	P	git-core on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35339	P	Security update for mutt	2020-12-01
oval:org.opensuse.security:def:31940	P	Recommended update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:52485	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:32384	P	Security update for tiff (Low)	2020-12-01
oval:org.opensuse.security:def:54154	P	accountsservice on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25989	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25998	P	Security update for libreoffice (Important)	2020-12-01
oval:org.opensuse.security:def:55713	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:26431	P	Security update for tor (Moderate)	2020-12-01
oval:org.opensuse.security:def:56391	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:25978	P	Security update for tcpdump, libpcap (Moderate)	2020-12-01
oval:org.opensuse.security:def:7398	P	gstreamer-plugins-bad on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10564	P	libxerces-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35423	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:31997	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:52593	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:32406	P	Security update for wavpack (Moderate)	2020-12-01
oval:org.opensuse.security:def:33127	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26445	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:27162	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10572	P	mozilla-nss-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7309	P	accountsservice on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37366	P	yast2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32450	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:37365	P	xscreensaver on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26489	P	Security update for php7-imagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:10594	P	rpm-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7334	P	bzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37377	P	apache-commons-daemon on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26262	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26290	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:26695	P	fetchmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27127	P	freetype2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51355	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:7367	P	emacs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51354	P	Security update for spice-vdagent (Important)	2020-12-01
oval:org.opensuse.security:def:37461	P	gzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32296	P	Security update for procmail (Moderate)	2020-12-01
oval:org.opensuse.security:def:36866	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26319	P	Security update for kde-cli-tools5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26343	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:26709	P	gmime on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27426	P	kernel-docs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51377	P	Security update for ant (Moderate)	2020-12-01
oval:org.opensuse.security:def:10863	P	xfsprogs-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54868	P	libgraphite2-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37597	P	libtirpc-netconfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38113	P	DirectFB on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54867	P	libgnomesu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26403	P	Security update for ffmpeg (Moderate)	2020-12-01
oval:org.opensuse.security:def:26392	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:26753	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51517	P	Security update for dash (Moderate)	2020-12-01
oval:org.opensuse.security:def:10872	P	LibVNCServer-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54890	P	libmodplug1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37698	P	vino on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38152	P	cpio on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36824	P	dracut on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26554	P	ghostscript-fonts-other on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27391	P	e2fsprogs-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10721	P	libblkid-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52685	P	Security update for the Linux Kernel (Live Patch 1 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:10885	P	avahi-compat-howl-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55030	P	vorbis-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37755	P	cpp48 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38180	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38904	P	kernel-default-extra on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25713	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26607	P	libvorbis on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10796	P	libsvn_auth_gnome_keyring-1-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52759	P	Security update for the Linux Kernel (Live Patch 12 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:25725	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:37845	P	libSoundTouch0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56198	P	Security update for SuSEfirewall2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38224	P	jakarta-commons-fileupload on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25714	P	Security update for libpng16 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26656	P	zoo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10821	P	mozilla-nspr-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52797	P	Security update for the Linux Kernel (Live Patch 16 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:54228	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:27086	P	RHSA-2014:1392: kernel security, bug fix, and enhancement update (Important)	2015-04-13
oval:org.mitre.oval:def:28298	P	USN-2421-1 -- Linux kernel vulnerabilities	2015-03-09
oval:org.mitre.oval:def:28454	P	USN-2420-1 -- Linux kernel vulnerabilities	2015-01-26
oval:org.mitre.oval:def:28348	P	USN-2416-1 -- Linux kernel (EC2) vulnerabilities	2015-01-26
oval:org.mitre.oval:def:27756	P	USN-2418-1 -- Linux kernel (OMAP4) vulnerabilities	2015-01-26
oval:org.mitre.oval:def:28423	P	USN-2417-1 -- Linux kernel vulnerabilities	2015-01-26
oval:org.mitre.oval:def:28026	P	USN-2419-1 -- Linux kernel (Trusty HWE) vulnerabilities	2015-01-26
oval:org.mitre.oval:def:27024	P	ELSA-2014-1392 -- kernel security, bug fix, and enhancement update (important)	2014-12-15
oval:com.redhat.rhsa:def:20141392	P	RHSA-2014:1392: kernel security, bug fix, and enhancement update (Important)	2014-10-14
oval:org.mitre.oval:def:25094	P	USN-2290-1 -- linux vulnerabilities	2014-09-01
oval:org.mitre.oval:def:25223	P	USN-2288-1 -- linux-lts-trusty vulnerabilities	2014-09-01
oval:org.mitre.oval:def:24584	P	USN-2287-1 -- linux-lts-saucy vulnerabilities	2014-09-01
oval:org.mitre.oval:def:25111	P	USN-2282-1 -- linux vulnerabilities	2014-09-01
oval:org.mitre.oval:def:25243	P	USN-2289-1 -- linux vulnerabilities	2014-09-01
oval:org.mitre.oval:def:24968	P	USN-2286-1 -- linux-lts-raring vulnerabilities	2014-09-01
oval:org.mitre.oval:def:25118	P	USN-2285-1 -- linux-lts-quantal vulnerabilities	2014-09-01
oval:org.mitre.oval:def:25252	P	USN-2283-1 -- linux vulnerabilities	2014-09-01
oval:org.mitre.oval:def:25055	P	USN-2284-1 -- linux-ti-omap4 vulnerabilities	2014-09-01
oval:org.mitre.oval:def:25123	P	USN-2281-1 -- linux-ec2 vulnerabilities	2014-09-01
oval:com.ubuntu.precise:def:20144608000	V	CVE-2014-4608 on Ubuntu 12.04 LTS (precise) - medium.	2014-07-03
oval:com.ubuntu.xenial:def:201446080000000	V	CVE-2014-4608 on Ubuntu 16.04 LTS (xenial) - medium.	2014-07-03
oval:com.ubuntu.trusty:def:20144608000	V	CVE-2014-4608 on Ubuntu 14.04 LTS (trusty) - medium.	2014-07-03
oval:com.ubuntu.xenial:def:20144608000	V	CVE-2014-4608 on Ubuntu 16.04 LTS (xenial) - medium.	2014-07-03

BACK