Vulnerability CVE-2014-4656

Vulnerability Name:

CVE-2014-4656 (CCN-94100)

Assigned:

2014-06-18

Published:

2014-06-18

Updated:

2020-08-14

Summary:

Multiple integer overflows in sound/core/control.c in the ALSA control implementation in the Linux kernel before 3.15.2 allow local users to cause a denial of service by leveraging /dev/snd/controlCX access, related to (1) index values in the snd_ctl_add function and (2) numid values in the snd_ctl_remove_numid_conflict function.

CVSS v3 Severity:

5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

4.6 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
3.4 Low (Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P)
3.4 Low (CCN Temporal CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

5.0 Medium (REDHAT CVSS v2 Vector: AV:L/AC:M/Au:S/C:N/I:P/A:C)
3.7 Low (REDHAT Temporal CVSS v2 Vector: AV:L/AC:M/Au:S/C:N/I:P/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Medium Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Complete

Vulnerability Type:

CWE-190

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2014-4656

Source: CONFIRM
Type: Patch, Vendor Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=883a1d49f0d77d30012f114b2e19fc141beb3e8e

Source: CONFIRM
Type: Patch, Vendor Advisory
http://git.kernel.org/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=ac902c112d90a89e59916f751c2745f4dbdbb4bd

Source: SUSE
Type: Mailing List, Third Party Advisory
SUSE-SU-2015:0812

Source: CCN
Type: RHSA-2014-1083
Important: kernel-rt security and bug fix update

Source: REDHAT
Type: Third Party Advisory
RHSA-2014:1083

Source: CCN
Type: RHSA-2014-1971
Important: kernel security and bug fix update

Source: CCN
Type: RHSA-2015-0087
Important: kernel security and bug fix update

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:0087

Source: CCN
Type: oss-security Mailing List, Tue 24 Jun 2014
CVE Request: Linux kernel ALSA core control API vulnerabilities

Source: SECUNIA
Type: Third Party Advisory
59434

Source: SECUNIA
Type: Third Party Advisory
59777

Source: SECUNIA
Type: Third Party Advisory
60545

Source: SECUNIA
Type: Third Party Advisory
60564

Source: CCN
Type: IBM Security Bulletin 1021943
PowerKVM Kernel Vulnerabilities - Multiple CVEs

Source: CONFIRM
Type: Release Notes, Vendor Advisory
http://www.kernel.org/pub/linux/kernel/v3.x/ChangeLog-3.15.2

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20140626 Re: CVE Request: Linux kernel ALSA core control API vulnerabilities

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1038201

Source: UBUNTU
Type: Third Party Advisory
USN-2334-1

Source: UBUNTU
Type: Third Party Advisory
USN-2335-1

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=1113470

Source: XF
Type: UNKNOWN
linux-kernel-cve20144656-bo(94100)

Source: CCN
Type: Linux Kernel GIT Repository
ALSA: control: Make sure that id->index does not overflow

Source: CONFIRM
Type: Patch, Third Party Advisory
https://github.com/torvalds/linux/commit/883a1d49f0d77d30012f114b2e19fc141beb3e8e

Source: CONFIRM
Type: Patch, Third Party Advisory
https://github.com/torvalds/linux/commit/ac902c112d90a89e59916f751c2745f4dbdbb4bd

Source: CONFIRM
Type: Third Party Advisory
https://source.android.com/security/bulletin/2017-04-01

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2014-4656

Vulnerable Configuration:

Configuration 1:

cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:* (Version < 3.15.2)

Configuration 2:

cpe:/o:suse:linux_enterprise_server:10:sp4:*:*:ltss:*:*:*

Configuration 3:

cpe:/o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*

Configuration 4:

cpe:/o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_eus:6.6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 10:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/o:linux:linux_kernel:3.15.1:*:*:*:*:*:*:*

OR cpe:/o:linux:linux_kernel:3.14.8:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux_server:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:7:*:*:*:*:*:*:*

OR cpe:/a:ibm:powerkvm:2.1:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:7:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:8036	P	libtdsodbc0-1.1.36-150400.12.3 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:8058	P	perl-doc-5.26.1-150300.17.11.1 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:7794	P	rpcbind-0.2.3-5.9.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7816	P	tboot-20170711_1.10.2-150400.1.7 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:51962	P	Security update for net-snmp (Moderate)	2022-12-13
oval:org.opensuse.security:def:5334	P	Security update for postgresql13 (Important)	2022-08-26
oval:org.opensuse.security:def:5309	P	Security update for pcre2 (Important)	2022-07-27
oval:org.opensuse.security:def:6058	P	Security update for postgresql14 (Important)	2022-05-27
oval:org.opensuse.security:def:20144656	V	CVE-2014-4656	2022-05-20
oval:org.opensuse.security:def:6036	P	Security update for tiff (Important)	2022-05-16
oval:org.opensuse.security:def:5234	P	Security update for MozillaFirefox (Important)	2022-05-09
oval:org.opensuse.security:def:5376	P	Security update for apache2 (Important)	2022-03-21
oval:org.opensuse.security:def:5367	P	Security update for libcaca (Important)	2022-03-14
oval:org.opensuse.security:def:5215	P	Security update for MozillaFirefox (Important)	2022-01-18
oval:org.opensuse.security:def:52034	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:10671	P	Security update for gegl (Important)	2021-12-31
oval:org.opensuse.security:def:9124	P	Security update for p11-kit (Important)	2021-12-22
oval:org.opensuse.security:def:56106	P	Security update for xorg-x11-server (Important)	2021-12-14
oval:org.opensuse.security:def:7234	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP2) (Important)	2021-12-14
oval:org.opensuse.security:def:32240	P	Security update for the Linux Kernel (Live Patch 41 for SLE 12 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:31716	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:26181	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:9430	P	Security update for mariadb (Moderate)	2021-12-06
oval:org.opensuse.security:def:5160	P	Security update for ruby2.1 (Important)	2021-12-01
oval:org.opensuse.security:def:5153	P	Security update for php74 (Moderate)	2021-11-18
oval:org.opensuse.security:def:6992	P	Security update for the Linux Kernel (Live Patch 26 for SLE 15 SP1) (Important)	2021-11-17
oval:org.opensuse.security:def:55268	P	Security update for MozillaFirefox (Important)	2021-11-17
oval:org.opensuse.security:def:51690	P	Security update for MozillaFirefox (Important)	2021-11-17
oval:org.opensuse.security:def:7215	P	Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP2) (Important)	2021-11-17
oval:org.opensuse.security:def:10702	P	Security update for the Linux Kernel (Important)	2021-11-11
oval:org.opensuse.security:def:5147	P	Security update for binutils (Moderate)	2021-11-09
oval:org.opensuse.security:def:9415	P	Security update for Salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:9411	P	Security update for containerd, docker, runc (Important)	2021-10-25
oval:org.opensuse.security:def:5138	P	Security update for python3 (Moderate)	2021-10-20
oval:org.opensuse.security:def:6973	P	Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP1) (Important)	2021-10-12
oval:org.opensuse.security:def:33019	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:5129	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:9594	P	Security update for webkit2gtk3 (Important)	2021-10-04
oval:org.opensuse.security:def:26139	P	Security update for libvirt (Moderate)	2021-10-04
oval:org.opensuse.security:def:9402	P	Security update for libqt5-qtbase (Important)	2021-09-30
oval:org.opensuse.security:def:5107	P	Security update for xerces-c (Important)	2021-09-03
oval:org.opensuse.security:def:9396	P	Security update for xen (Important)	2021-09-03
oval:org.opensuse.security:def:9393	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:5820	P	Security update for mariadb (Moderate)	2021-08-25
oval:org.opensuse.security:def:5096	P	Security update for unrar (Moderate)	2021-08-25
oval:org.opensuse.security:def:9581	P	Security update for mariadb (Moderate)	2021-08-25
oval:org.opensuse.security:def:9572	P	Security update for openexr (Important)	2021-08-20
oval:org.opensuse.security:def:7156	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP2) (Important)	2021-08-17
oval:org.opensuse.security:def:7153	P	Security update for the Linux Kernel (Live Patch 9 for SLE 15 SP2) (Important)	2021-08-17
oval:org.opensuse.security:def:6958	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-08-17
oval:org.opensuse.security:def:5798	P	Security update for python-reportlab (Moderate)	2021-08-09
oval:org.opensuse.security:def:5085	P	Security update for webkit2gtk3 (Important)	2021-08-03
oval:org.opensuse.security:def:7143	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP2) (Important)	2021-07-28
oval:org.opensuse.security:def:7134	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP2) (Important)	2021-07-27
oval:org.opensuse.security:def:10687	P	Security update for transfig (Moderate)	2021-07-22
oval:org.opensuse.security:def:51928	P	Security update for systemd (Important)	2021-07-21
oval:org.opensuse.security:def:5077	P	Security update for systemd (Moderate)	2021-07-20
oval:org.opensuse.security:def:7125	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP2) (Important)	2021-07-16
oval:org.opensuse.security:def:38064	P	Security update for OpenEXR (Important)	2021-06-22
oval:org.opensuse.security:def:7107	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP2) (Important)	2021-06-18
oval:org.opensuse.security:def:6911	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:9351	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:9349	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:31642	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:9530	P	Security update for spice (Important)	2021-06-11
oval:org.opensuse.security:def:42571	P	kernel-default-3.0.101-63.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13569	P	kernel-default-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11545	P	gnome-keyring-3.10.1-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48728	P	kernel-default-extra-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36582	P	xen-devel-4.4.2_08-1.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17059	P	kernel-default-extra-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36142	P	gstreamer-0_10-plugins-base-0.10.35-5.15.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11328	P	kernel-default-3.12.28-4.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46447	P	kernel-default-3.12.28-4.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15587	P	kernel-docs-3.12.28-4.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:76624	P	kernel-default-3.12.28-4.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11473	P	w3m-0.5.3-153.145 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11566	P	kernel-default-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36114	P	e2fsprogs-1.41.9-2.14.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46689	P	kernel-default-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15766	P	kernel-docs-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36164	P	kernel-default-3.0.101-63.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:76862	P	kernel-default-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11523	P	e2fsprogs-1.42.11-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13327	P	kernel-default-3.12.28-4.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36186	P	libfreebl3-3.17.3-0.8.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11495	P	autofs-5.0.9-8.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48678	P	kernel-default-extra-3.12.28-4.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17009	P	kernel-default-extra-3.12.28-4.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36428	P	kernel-docs-3.0.101-63.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36075	P	PackageKit-0.3.14-2.30.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:31631	P	Security update for gstreamer-plugins-bad (Important)	2021-06-07
oval:org.opensuse.security:def:31630	P	Security update for polkit (Important)	2021-06-03
oval:org.opensuse.security:def:26055	P	Security update for hivex (Moderate)	2021-05-26
oval:org.opensuse.security:def:7092	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP2) (Important)	2021-05-25
oval:org.opensuse.security:def:7085	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP2) (Important)	2021-05-25
oval:org.opensuse.security:def:33908	P	Security update for graphviz (Critical)	2021-05-19
oval:org.opensuse.security:def:9326	P	Security update for lz4 (Important)	2021-05-19
oval:org.opensuse.security:def:26053	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:10640	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:10075	P	Security update for java-11-openjdk (Important)	2021-05-11
oval:org.opensuse.security:def:10254	P	Security update for java-11-openjdk (Important)	2021-05-11
oval:org.opensuse.security:def:32084	P	Security update for gdm (Important)	2021-04-28
oval:org.opensuse.security:def:7077	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP2) (Important)	2021-04-28
oval:org.opensuse.security:def:51139	P	Security update for xen (Important)	2021-04-20
oval:org.opensuse.security:def:55998	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:9303	P	Security update for spamassassin (Important)	2021-04-12
oval:org.opensuse.security:def:7067	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP2) (Important)	2021-04-07
oval:org.opensuse.security:def:6865	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)	2021-04-07
oval:org.opensuse.security:def:10232	P	Security update for MozillaFirefox (Important)	2021-04-01
oval:org.opensuse.security:def:5200	P	Security update for evolution-data-server (Moderate)	2021-03-19
oval:org.opensuse.security:def:51755	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:9102	P	Security update for wpa_supplicant (Important)	2021-03-08
oval:org.opensuse.security:def:33088	P	Security update for MozillaFirefox (Important)	2021-03-01
oval:org.opensuse.security:def:9094	P	Security update for rpmlint (Moderate)	2021-03-01
oval:org.opensuse.security:def:33076	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:7200	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP2) (Important)	2021-02-10
oval:org.opensuse.security:def:10652	P	Security update for MozillaThunderbird (Important)	2021-02-01
oval:org.opensuse.security:def:5071	P	Security update for postgresql, postgresql12, postgresql13 (Important)	2021-01-26
oval:org.opensuse.security:def:9505	P	Security update for ImageMagick (Moderate)	2021-01-18
oval:org.opensuse.security:def:10637	P	Security update for MozillaThunderbird (Important)	2021-01-14
oval:org.opensuse.security:def:38102	P	Security update for clamav (Moderate)	2021-01-05
oval:org.opensuse.security:def:5398	P	Security update for gimp (Moderate)	2021-01-04
oval:org.opensuse.security:def:9281	P	Security update for python3 (Important)	2020-12-23
oval:org.opensuse.security:def:25977	P	Security update for openssl-1_1 (Important)	2020-12-10
oval:org.opensuse.security:def:4962	P	Security update for openssl-1_0_0 (Important)	2020-12-09
oval:org.opensuse.security:def:6843	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP1) (Important)	2020-12-07
oval:org.opensuse.security:def:9273	P	Security update for xen (Important)	2020-12-04
oval:org.opensuse.security:def:35784	P	mipv6d-2.0.2.umip.0.4-8.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35807	P	perl-libwww-perl-5.816-2.23.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35872	P	bzip2-1.0.5-34.253.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35559	P	gpg2-2.0.9-25.25.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:36026	P	radvd-1.1-1.24.4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35725	P	kdelibs3-3.5.10-23.27.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35944	P	libcap-progs-2.11-2.17.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35717	P	gzip-1.3.12-69.19.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35833	P	tftp-0.48-101.20.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35967	P	libpulse-browse0-0.9.23-0.7.128 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35565	P	hplip-3.9.8-3.4.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35900	P	fuse-2.8.7-0.9.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35660	P	NetworkManager-gnome-0.7.1-5.22.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4869	P	Security update for rmt-server (Moderate)	2020-12-02
oval:org.opensuse.security:def:4996	P	Security update for php7 (Important)	2020-12-02
oval:org.opensuse.security:def:4839	P	Security update for subversion (Important)	2020-12-02
oval:org.opensuse.security:def:4847	P	Security update for dovecot23 (Important)	2020-12-02
oval:org.opensuse.security:def:5385	P	Security update for rmt-server (Important)	2020-12-02
oval:org.opensuse.security:def:4977	P	Security update for php7 (Important)	2020-12-02
oval:org.opensuse.security:def:4915	P	Security update for squid (Moderate)	2020-12-02
oval:org.opensuse.security:def:37316	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10544	P	libsndfile-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28686	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:32776	P	python on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7309	P	accountsservice on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33164	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7398	P	gstreamer-plugins-bad on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38862	P	libmikmod3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28391	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:28470	P	Security update for xorg-x11-libs (Moderate)	2020-12-01
oval:org.opensuse.security:def:35317	P	Security update for mgetty (Important)	2020-12-01
oval:org.opensuse.security:def:9232	P	python-cupshelpers on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55713	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:52355	P	Security update for java-1_8_0-openj9 (Important)	2020-12-01
oval:org.opensuse.security:def:56310	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:53916	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:35085	P	Security update for jpeg (Moderate)	2020-12-01
oval:org.opensuse.security:def:35097	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:9170	P	libvdpau1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52200	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26431	P	Security update for tor (Moderate)	2020-12-01
oval:org.opensuse.security:def:52797	P	Security update for the Linux Kernel (Live Patch 16 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:38854	P	kernel-default-extra on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25917	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:31940	P	Recommended update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:37955	P	libruby2_1-2_1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32345	P	Security update for spice (Important)	2020-12-01
oval:org.opensuse.security:def:38174	P	e2fsprogs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25989	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:37755	P	cpp48 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10796	P	libsvn_auth_gnome_keyring-1-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29082	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:38152	P	cpio on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10885	P	avahi-compat-howl-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32401	P	Security update for vim (Moderate)	2020-12-01
oval:org.opensuse.security:def:51796	P	Security update for gdm (Moderate)	2020-12-01
oval:org.opensuse.security:def:52521	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:54867	P	libgnomesu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54890	P	libmodplug1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51354	P	Security update for spice-vdagent (Important)	2020-12-01
oval:org.opensuse.security:def:51377	P	Security update for ant (Moderate)	2020-12-01
oval:org.opensuse.security:def:37648	P	policycoreutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26607	P	libvorbis on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38063	P	shim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10822	P	mozilla-nss-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27391	P	e2fsprogs-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6835	P	rsync on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37411	P	cvs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28827	P	Security update for Ruby	2020-12-01
oval:org.opensuse.security:def:7367	P	emacs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29138	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:33231	P	perl-libwww-perl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37366	P	yast2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10594	P	rpm-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35475	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27162	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51117	P	Security update for gnutls (Important)	2020-12-01
oval:org.opensuse.security:def:26290	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:52593	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:26489	P	Security update for php7-imagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:54154	P	accountsservice on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35327	P	Security update for microcode_ctl (Important)	2020-12-01
oval:org.opensuse.security:def:35339	P	Security update for mutt	2020-12-01
oval:org.opensuse.security:def:26319	P	Security update for kde-cli-tools5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26695	P	fetchmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32406	P	Security update for wavpack (Moderate)	2020-12-01
oval:org.opensuse.security:def:38904	P	kernel-default-extra on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10514	P	libksba-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10522	P	libmysqlclient-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32719	P	libneon27 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38005	P	mipv6d on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33125	P	kdenetwork4-filesharing on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7385	P	git-core on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38224	P	jakarta-commons-fileupload on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53990	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28390	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:28402	P	Security update for spice (Important)	2020-12-01
oval:org.opensuse.security:def:32490	P	avahi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9217	P	perl-Config-IniFiles on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55547	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:52247	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:56272	P	Security update for gimp (Moderate)	2020-12-01
oval:org.opensuse.security:def:52640	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:35086	P	Security update for jpeg (Low)	2020-12-01
oval:org.opensuse.security:def:25998	P	Security update for libreoffice (Important)	2020-12-01
oval:org.opensuse.security:def:52759	P	Security update for the Linux Kernel (Live Patch 12 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:36824	P	dracut on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25714	P	Security update for libpng16 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25789	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:31848	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:37795	P	giflib-progs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10771	P	libpcp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38130	P	at on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37698	P	vino on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10721	P	libblkid-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29033	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:38113	P	DirectFB on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10872	P	LibVNCServer-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29820	P	Security update for java-1_6_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:36624	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37461	P	gzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52447	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:54868	P	libgraphite2-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51279	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:26392	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:27426	P	kernel-docs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51355	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:37547	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26554	P	ghostscript-fonts-other on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32296	P	Security update for procmail (Moderate)	2020-12-01
oval:org.opensuse.security:def:10813	P	libxml2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26753	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37315	P	python-pywbem on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37327	P	sblim-sfcb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10590	P	python-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28743	P	Security update for libgcrypt	2020-12-01
oval:org.opensuse.security:def:32863	P	freetype2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7334	P	bzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29121	P	Security update for java-1_7_0-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:33187	P	libtiff3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10564	P	libxerces-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10572	P	mozilla-nss-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28601	P	Security update for telepathy-gabble	2020-12-01
oval:org.opensuse.security:def:35418	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:9251	P	rzsz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56391	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:54228	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35181	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:52485	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:26445	P	Security update for chromium (Important)	2020-12-01
oval:org.opensuse.security:def:52878	P	Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:35328	P	Security update for microcode_ctl (Moderate)	2020-12-01
oval:org.opensuse.security:def:26262	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31997	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:38014	P	ovmf on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32384	P	Security update for tiff (Low)	2020-12-01
oval:org.opensuse.security:def:38812	P	tftp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25978	P	Security update for tcpdump, libpcap (Moderate)	2020-12-01
oval:org.opensuse.security:def:32625	P	NetworkManager-gnome on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37845	P	libSoundTouch0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10821	P	mozilla-nspr-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7376	P	ft2demos on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38180	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32400	P	Security update for vim (Important)	2020-12-01
oval:org.opensuse.security:def:32412	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:55441	P	Security update for tcpdump (Moderate)	2020-12-01
oval:org.opensuse.security:def:56198	P	Security update for SuSEfirewall2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:52559	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:36866	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55030	P	vorbis-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52685	P	Security update for the Linux Kernel (Live Patch 1 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:25713	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:25725	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:51517	P	Security update for dash (Moderate)	2020-12-01
oval:org.opensuse.security:def:37705	P	xdg-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10746	P	libimobiledevice-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26656	P	zoo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10835	P	php5-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29856	P	Security update for Linux Kernel	2020-12-01
oval:org.opensuse.security:def:37597	P	libtirpc-netconfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28979	P	Security update for strongswan (Moderate)	2020-12-01
oval:org.opensuse.security:def:10863	P	xfsprogs-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29182	P	Security update for mutt (Important)	2020-12-01
oval:org.opensuse.security:def:33869	P	Security update for jasper (Low)	2020-12-01
oval:org.opensuse.security:def:37365	P	xscreensaver on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37377	P	apache-commons-daemon on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10053	P	evince-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51116	P	Security update for soundtouch (Moderate)	2020-12-01
oval:org.opensuse.security:def:26343	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:27127	P	freetype2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33127	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35423	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:26403	P	Security update for ffmpeg (Moderate)	2020-12-01
oval:org.opensuse.security:def:26709	P	gmime on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32450	P	Security update for xen (Important)	2020-12-01
oval:org.mitre.oval:def:28305	P	ELSA-2014-3103 -- Unbreakable Enterprise kernel security update (important)	2015-03-16
oval:org.mitre.oval:def:27668	P	ELSA-2014-3105 -- Unbreakable Enterprise kernel security update (important)	2015-03-16
oval:org.mitre.oval:def:28482	P	ELSA-2014-3104 -- Unbreakable Enterprise kernel security update (important)	2015-02-23
oval:org.mitre.oval:def:28399	P	RHSA-2014:1971 -- kernel security and bug fix update (Important)	2015-02-23
oval:org.mitre.oval:def:28418	P	ELSA-2014-1971 -- kernel security and bug fix update (important)	2015-02-23
oval:com.redhat.rhsa:def:20150087	P	RHSA-2015:0087: kernel security and bug fix update (Important)	2015-01-27
oval:com.redhat.rhsa:def:20141971	P	RHSA-2014:1971: kernel security and bug fix update (Important)	2014-12-09
oval:org.mitre.oval:def:26571	P	SUSE-SU-2014:1138-1 -- Security update for the Linux Kernel	2014-11-10
oval:org.mitre.oval:def:26799	P	SUSE-SU-2014:1105-1 -- Security update for the Linux Kernel	2014-11-10
oval:org.mitre.oval:def:26732	P	USN-2334-1 -- linux vulnerabilities	2014-10-27
oval:org.mitre.oval:def:26081	P	USN-2333-1 -- linux-ec2 vulnerabilities	2014-10-27
oval:org.mitre.oval:def:26751	P	USN-2332-1 -- linux vulnerabilities	2014-10-27
oval:org.mitre.oval:def:26591	P	USN-2337-1 -- linux vulnerabilities	2014-10-27
oval:org.mitre.oval:def:26633	P	USN-2336-1 -- linux-lts-trusty vulnerabilities	2014-10-27
oval:org.mitre.oval:def:26346	P	USN-2335-1 -- linux-ti-omap4 vulnerabilities	2014-10-27
oval:org.mitre.oval:def:26192	P	SUSE-SU-2014:0910-1 -- Security update for Linux kernel	2014-09-15
oval:org.mitre.oval:def:25325	P	SUSE-SU-2014:0912-1 -- Security update for Linux kernel	2014-09-15
oval:org.mitre.oval:def:26250	P	SUSE-OU-2014:0907-1 -- Optional update for Linux kernel	2014-09-15
oval:org.mitre.oval:def:25414	P	SUSE-SU-2014:0911-1 -- Security update for Linux kernel	2014-09-15
oval:com.ubuntu.xenial:def:20144656000	V	CVE-2014-4656 on Ubuntu 16.04 LTS (xenial) - medium.	2014-07-03
oval:com.ubuntu.xenial:def:201446560000000	V	CVE-2014-4656 on Ubuntu 16.04 LTS (xenial) - medium.	2014-07-03
oval:com.ubuntu.precise:def:20144656000	V	CVE-2014-4656 on Ubuntu 12.04 LTS (precise) - medium.	2014-07-03
oval:com.ubuntu.trusty:def:20144656000	V	CVE-2014-4656 on Ubuntu 14.04 LTS (trusty) - medium.	2014-07-03

BACK