Vulnerability CVE-2014-5120

Vulnerability Name:

CVE-2014-5120 (CCN-95499)

Assigned:

2014-07-31

Published:

2014-07-31

Updated:

2016-10-26

Summary:

gd_ctx.c in the GD component in PHP 5.4.x before 5.4.32 and 5.5.x before 5.5.16 does not ensure that pathnames lack %00 sequences, which might allow remote attackers to overwrite arbitrary files via crafted input to an application that calls the (1) imagegd, (2) imagegd2, (3) imagegif, (4) imagejpeg, (5) imagepng, (6) imagewbmp, or (7) imagewebp function.

CVSS v3 Severity:

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

6.4 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P)
4.7 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)
3.7 Low (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

4.3 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)
3.2 Low (REDHAT Temporal CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-20
CWE-626

Vulnerability Consequences:

File Manipulation

References:

Source: MITRE
Type: CNA
CVE-2014-5120

Source: APPLE
Type: UNKNOWN
APPLE-SA-2015-04-08-2

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2014:1133

Source: CONFIRM
Type: UNKNOWN
http://php.net/ChangeLog-5.php

Source: CCN
Type: RHSA-2014-1327
Moderate: php security update

Source: REDHAT
Type: UNKNOWN
RHSA-2014:1327

Source: REDHAT
Type: UNKNOWN
RHSA-2014:1765

Source: REDHAT
Type: UNKNOWN
RHSA-2014:1766

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

Source: CCN
Type: BID-69375
PHP CVE-2014-5120 Multiple Arbitrary File Overwrite Vulnerabilities

Source: CCN
Type: PHP Web site
CVE-2014-5120 Null byte injection possible with imagexxx functions

Source: CONFIRM
Type: Vendor Advisory
https://bugs.php.net/bug.php?id=67730

Source: XF
Type: UNKNOWN
php-cve20145120-file-overwrite(95499)

Source: CONFIRM
Type: UNKNOWN
https://support.apple.com/HT204659

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2014-5120

Vulnerable Configuration:

Configuration 1:

cpe:/a:php:php:5.4.0:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.0:beta2:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.0:beta2:32-bit:*:*:*:*:*

OR cpe:/a:php:php:5.4.0:rc2:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.1:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.2:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.3:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.4:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.5:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.6:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.7:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.8:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.9:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.10:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.11:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.12:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.12:rc1:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.12:rc2:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.13:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.13:rc1:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.14:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.14:rc1:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.15:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.15:rc1:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.16:rc1:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.17:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.18:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.19:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.20:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.21:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.22:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.23:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.24:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.25:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.26:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.27:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.28:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.29:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.30:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.4.31:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha1:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha2:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha3:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha4:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha5:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha6:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:beta1:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:beta2:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:beta3:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:beta4:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:rc1:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:rc2:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.1:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.2:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.3:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.4:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.5:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.6:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.7:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.8:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.9:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.10:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.11:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.12:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.13:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.14:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.15:-:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:php:php:5.6.0:rc2:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux_hpc_node:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:7:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:7735	P	patch-2.7.6-150000.5.3.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7736	P	perl-5.26.1-150300.17.11.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7713	P	log4j-2.17.2-150200.4.24.13 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7714	P	log4j12-1.2.17-4.9.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:20145120	V	CVE-2014-5120	2022-09-02
oval:org.opensuse.security:def:1678	P	Security update for 389-ds (Important)	2022-06-14
oval:org.opensuse.security:def:1670	P	Security update for redis (Moderate)	2022-05-25
oval:org.opensuse.security:def:1091	P	Security update for vim (Important)	2022-03-04
oval:org.opensuse.security:def:1083	P	Security update for tiff (Important)	2022-02-17
oval:org.opensuse.security:def:111960	P	apache2-mod_php5-5.6.28-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:111961	P	apache2-mod_php7-7.0.14-1.4 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:10711	P	Security update for MozillaThunderbird (Important)	2022-01-12
oval:org.opensuse.security:def:9885	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:10439	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:9680	P	Security update for libsndfile (Important)	2022-01-11
oval:org.opensuse.security:def:10710	P	Security update for the Linux Kernel (Important) (in QA)	2022-01-07
oval:org.opensuse.security:def:10438	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:9884	P	Security update for go1.17 (Moderate)	2021-12-23
oval:org.opensuse.security:def:9635	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:9634	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:7011	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-12-14
oval:org.opensuse.security:def:7012	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP1) (Important)	2021-12-14
oval:org.opensuse.security:def:10372	P	Security update for aaa_base (Moderate)	2021-12-03
oval:org.opensuse.security:def:105525	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:10371	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:9426	P	Security update for poppler (Important)	2021-12-01
oval:org.opensuse.security:def:9619	P	Security update for python-Pygments (Important)	2021-12-01
oval:org.opensuse.security:def:10368	P	Security update for ruby2.5 (Important)	2021-12-01
oval:org.opensuse.security:def:10176	P	Security update for java-1_8_0-openjdk (Important)	2021-11-23
oval:org.opensuse.security:def:10175	P	Security update for webkit2gtk3 (Important)	2021-11-23
oval:org.opensuse.security:def:6987	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-11-17
oval:org.opensuse.security:def:105524	P	Security update for samba (Important)	2021-11-16
oval:org.opensuse.security:def:9613	P	Security update for tomcat (Important)	2021-11-16
oval:org.opensuse.security:def:9417	P	Security update for MozillaFirefox (Important)	2021-11-10
oval:org.opensuse.security:def:9612	P	Security update for MozillaFirefox (Important)	2021-11-10
oval:org.opensuse.security:def:10170	P	Security update for qemu (Important)	2021-11-04
oval:org.opensuse.security:def:9605	P	Security update for busybox (Important)	2021-10-27
oval:org.opensuse.security:def:10169	P	Security update for Salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:9604	P	Security update for dnsmasq (Moderate)	2021-10-27
oval:org.opensuse.security:def:10162	P	Security update for glibc (Moderate)	2021-10-12
oval:org.opensuse.security:def:10346	P	Security update for curl (Moderate)	2021-10-06
oval:org.opensuse.security:def:71345	P	logrotate-3.13.0-4.3.9 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:10154	P	Security update for ghostscript (Critical)	2021-09-15
oval:org.opensuse.security:def:10153	P	Security update for openssl-1_0_0 (Low)	2021-09-09
oval:org.opensuse.security:def:64758	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:9395	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:10148	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:10147	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:11120	P	Security update for libspf2 (Critical)	2021-08-25
oval:org.opensuse.security:def:10139	P	Security update for djvulibre (Important)	2021-08-20
oval:org.opensuse.security:def:10140	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:9387	P	Security update for spice-vdagent (Moderate)	2021-08-20
oval:org.opensuse.security:def:47605	P	evince-3.20.2-6.22.9 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47740	P	libmicrohttpd10-0.9.30-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48065	P	libICE6-1.0.8-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48305	P	shadow-4.2.1-34.20 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47604	P	eog-3.20.4-7.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47613	P	g3utils-1.1.36-58.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47748	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48073	P	libXcursor1-1.1.14-4.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48313	P	stunnel-5.00-4.3.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47612	P	fuse-2.9.3-6.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:9762	P	Security update for cpio (Important)	2021-08-16
oval:org.opensuse.security:def:47619	P	giflib-progs-5.0.5-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47933	P	yubikey-manager-0.6.0-1.27 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48157	P	libnghttp2-14-1.7.1-1.84 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47627	P	gnutls-3.3.27-3.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47941	P	SuSEfirewall2-3.6.312.333-3.13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48165	P	libospf0-1.1.1-17.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:9761	P	Security update for nodejs8 (Important)	2021-08-05
oval:org.opensuse.security:def:10686	P	Security update for the Linux Kernel (Important)	2021-07-20
oval:org.opensuse.security:def:11099	P	Security update for fossil (Moderate)	2021-07-17
oval:org.opensuse.security:def:11098	P	Security update for claws-mail (Moderate)	2021-07-16
oval:org.opensuse.security:def:10685	P	Security update for the Linux Kernel (Important)	2021-07-15
oval:org.opensuse.security:def:10296	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:9544	P	Security update for ovmf (Important)	2021-06-25
oval:org.opensuse.security:def:9743	P	Security update for ovmf (Important)	2021-06-25
oval:org.opensuse.security:def:10112	P	Security update for ovmf (Important)	2021-06-25
oval:org.opensuse.security:def:10111	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:9742	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:6911	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:6912	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:68005	P	Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:9351	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:9728	P	Security update for containerd, docker, runc (Important)	2021-06-11
oval:org.opensuse.security:def:10278	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:9727	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:10277	P	Security update for spice-gtk (Moderate)	2021-06-10
oval:org.opensuse.security:def:9525	P	Security update for qemu (Important)	2021-06-09
oval:org.opensuse.security:def:48730	P	libIlmImf-Imf_2_1-21-32bit-2.1.0-4.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48840	P	gstreamer-0_10-plugins-base-0.10.36-17.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11435	P	perl-32bit-5.18.2-3.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124641	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16348	P	php5-devel-5.5.14-108.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48611	P	qemu-2.6.1-27.15 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11412	P	libvorbis0-1.3.3-8.23 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36501	P	libwebkit-1_0-1-1.0.1-0.1.141 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15880	P	php5-devel-5.5.14-39.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48738	P	libmysqlclient_r18-10.0.21-1.17 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36543	P	pwlib-1.10.10-120.35.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16349	P	php7-devel-7.0.7-49.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11413	P	libvte9-0.28.2-17.83 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48665	P	colord-1.1.7-2.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48761	P	ImageMagick-6.8.8.1-33.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36502	P	libwebkit-1_0-2-1.2.7-0.17.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16098	P	php5-devel-5.5.14-73.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36544	P	python-32bit-2.6.9-0.35.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48519	P	liblua5_2-5.2.2-4.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16634	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48832	P	freerdp-2.0.0~git.1463131968.4e66df7-11.69 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11434	P	pcsc-ccid-1.4.14-1.45 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124640	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48673	P	gd-32bit-2.1.0-3.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48769	P	empathy-3.12.12-5.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16099	P	php7-devel-7.0.7-15.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48603	P	procmail-3.22-267.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48527	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16635	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15687	P	php5-devel-5.5.14-4.20 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10087	P	Security update for polkit (Important)	2021-06-03
oval:org.opensuse.security:def:9332	P	Security update for dhcp (Important)	2021-06-02
oval:org.opensuse.security:def:10086	P	Security update for dhcp (Important)	2021-06-02
oval:org.opensuse.security:def:9515	P	Security update for dhcp (Important)	2021-06-02
oval:org.opensuse.security:def:10263	P	Security update for ceph (Important)	2021-06-02
oval:org.opensuse.security:def:10262	P	Security update for curl (Moderate)	2021-05-31
oval:org.opensuse.security:def:9510	P	Security update for djvulibre (Important)	2021-05-19
oval:org.opensuse.security:def:9708	P	Security update for lz4 (Important)	2021-05-19
oval:org.opensuse.security:def:6893	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:9502	P	Security update for samba (Important)	2021-05-04
oval:org.opensuse.security:def:9317	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:9695	P	Security update for xen (Important)	2021-04-30
oval:org.opensuse.security:def:7075	P	Security update for the Linux Kernel (Live Patch 2 for SLE 15 SP2) (Important)	2021-04-28
oval:org.opensuse.security:def:7076	P	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP2) (Important)	2021-04-28
oval:org.opensuse.security:def:9493	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:6892	P	Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP1) (Important)	2021-04-28
oval:org.opensuse.security:def:9686	P	Security update for spamassassin (Important)	2021-04-13
oval:org.opensuse.security:def:6877	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15 SP1) (Important)	2021-04-07
oval:org.opensuse.security:def:6878	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1) (Important)	2021-04-07
oval:org.opensuse.security:def:7062	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP2) (Important)	2021-04-07
oval:org.opensuse.security:def:7063	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP2) (Important)	2021-04-07
oval:org.opensuse.security:def:9681	P	Security update for MozillaFirefox (Important)	2021-04-01
oval:org.opensuse.security:def:64671	P	Security update for ruby2.5 (Important)	2021-03-24
oval:org.opensuse.security:def:68105	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:9861	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:9862	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:9863	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:10216	P	Security update for wpa_supplicant (Important)	2021-03-08
oval:org.opensuse.security:def:9463	P	Security update for openldap2 (Important)	2021-03-08
oval:org.opensuse.security:def:10215	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:9854	P	Security update for grub2 (Important)	2021-03-02
oval:org.opensuse.security:def:9855	P	Security update for bind (Important)	2021-03-02
oval:org.opensuse.security:def:10397	P	Security update for salt (Critical)	2021-02-26
oval:org.opensuse.security:def:10396	P	Security update for php7 (Important)	2021-02-24
oval:org.opensuse.security:def:9451	P	Security update for php7 (Important)	2021-02-24
oval:org.opensuse.security:def:9644	P	Security update for the Linux Kernel (Important)	2021-02-19
oval:org.opensuse.security:def:9837	P	Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Important)	2021-02-11
oval:org.opensuse.security:def:6986	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15 SP1) (Important)	2021-02-10
oval:org.opensuse.security:def:9836	P	Security update for subversion (Important)	2021-02-10
oval:org.opensuse.security:def:10163	P	Security update for python-urllib3 (Moderate)	2021-02-08
oval:org.opensuse.security:def:10297	P	Security update for go1.14 (Moderate)	2021-01-26
oval:org.opensuse.security:def:11121	P	Security update for viewvc (Moderate)	2021-01-19
oval:org.opensuse.security:def:35237	P	Security update for gimp (Moderate)	2020-12-29
oval:org.opensuse.security:def:35236	P	Security update for cyrus-sasl (Important)	2020-12-28
oval:org.opensuse.security:def:10586	P	Security update for PackageKit (Moderate)	2020-12-16
oval:org.opensuse.security:def:10585	P	Security update for the Linux Kernel (Important)	2020-12-09
oval:org.opensuse.security:def:7053	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:7054	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:35644	P	tar-1.20-23.23.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2308	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103740	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35863	P	apache2-2.2.12-1.38.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63397	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16948	P	php7-devel-7.0.7-50.85.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35753	P	libmusicbrainz4-2.1.5-5.18 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35820	P	ruby-1.8.7.p357-0.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35703	P	fvwm2-2.5.26-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35645	P	unrar-3.80.2-2.8 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:46364	P	apache2-mod_php5-5.5.14-4.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13244	P	apache2-mod_php5-5.5.14-4.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35791	P	ofed-1.5.2-0.22.23 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35864	P	apache2-mod_jk-1.2.26-1.30.110 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90085	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16949	P	php72-devel-7.2.5-1.26.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35704	P	g3utils-1.1.36-26.31 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:46365	P	apache2-mod_php7-7.0.7-15.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13245	P	apache2-mod_php7-7.0.7-15.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35792	P	openslp-1.2.0-172.22.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2300	P	apache2-mod_php7-7.2.5-2.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63389	P	apache2-mod_php7-7.2.5-2.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71458	P	conntrack-tools-1.4.5-1.46 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35752	P	libltdl7-2.2.6-2.131.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35819	P	rsyslog-5.8.7-0.5.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:9270	P	Security update for java-1_8_0-openjdk (Important)	2020-12-02
oval:org.opensuse.security:def:35005	P	Security update for gnutls	2020-12-01
oval:org.opensuse.security:def:10483	P	libapr1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10576	P	nut-cgi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10610	P	xfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9913	P	libraptor2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10813	P	libxml2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6755	P	libsmi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35016	P	Security update for graphviz (Low)	2020-12-01
oval:org.opensuse.security:def:35394	P	Security update for OpenSLP	2020-12-01
oval:org.opensuse.security:def:50065	P	libapr-util1-dbd-mysql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10448	P	gnome-shell-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9978	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10012	P	w3m on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50119	P	apache2-mod_php7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6784	P	libxslt-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10753	P	libksba-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9903	P	libpng15-15 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9925	P	libtasn1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9202	P	openslp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10484	P	libarchive-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10577	P	ocaml on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10611	P	xfsprogs-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10814	P	libxslt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9194	P	mariadb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35017	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:35395	P	Security update for openslp (Important)	2020-12-01
oval:org.opensuse.security:def:10460	P	lhasa-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9930	P	libupsclient1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9992	P	squid on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7044	P	libgraphite2-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10761	P	libmusicbrainz-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10563	P	libxcb-composite0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6785	P	libyaml-0-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10461	P	lib3ds-1-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10529	P	libpcscspy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10591	P	python3-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9904	P	libpng16-16 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9926	P	libtcnative-1-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35100	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:35337	P	Security update for Mozilla NSS	2020-12-01
oval:org.opensuse.security:def:35484	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:10453	P	hplip-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10774	P	libplist++-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10835	P	php5-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9931	P	libusbmuxd4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9993	P	squidGuard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6762	P	libsrtp1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6830	P	radvd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7045	P	libgssglue1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10762	P	libmysqlclient-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35004	P	Security update for gnuplot (Moderate)	2020-12-01
oval:org.opensuse.security:def:9912	P	libqt4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10564	P	libxerces-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9224	P	pigz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6754	P	libsilc-1_1-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10462	P	libHX-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10530	P	libpng12-compat-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10592	P	quagga-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50057	P	erlang-rabbitmq-client on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35006	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:35101	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:35338	P	Security update for mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:35485	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:10447	P	gnome-settings-daemon-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10454	P	icecream on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9977	P	python-pywbem on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10011	P	vsftpd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50111	P	apache2-mod_php7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10752	P	libjson-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10775	P	libpng12-compat-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10836	P	php7-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6763	P	libssh2-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6831	P	rhythmbox on GA media (Moderate)	2020-12-01
oval:org.mitre.oval:def:27173	P	ELSA-2014-1327 -- php security update (moderate)	2014-12-15
oval:org.mitre.oval:def:27209	P	RHSA-2014:1327: php security update (Moderate)	2014-12-01
oval:com.redhat.rhsa:def:20141327	P	RHSA-2014:1327: php security update (Moderate)	2014-09-30
oval:com.ubuntu.precise:def:20145120000	V	CVE-2014-5120 on Ubuntu 12.04 LTS (precise) - medium.	2014-08-22
oval:com.ubuntu.trusty:def:20145120000	V	CVE-2014-5120 on Ubuntu 14.04 LTS (trusty) - medium.	2014-08-22

BACK