Vulnerability CVE-2015-5122

Vulnerability Name:

CVE-2015-5122 (CCN-104539)

Assigned:

2015-07-10

Published:

2015-07-10

Updated:

2021-09-08

Summary:

Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 on Windows and OS X, 14.x through 18.0.0.203 on Windows and OS X, 11.x through 11.2.202.481 on Linux, and 12.x through 18.0.0.204 on Linux Chrome installations allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted Flash content that leverages improper handling of the opaqueBackground property, as exploited in the wild in July 2015.

CVSS v3 Severity:

8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
8.2 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

6.8 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2015-5122

Source: CCN
Type: Google Chrome Releases Web site
Stable Channel Update

Source: SUSE
Type: Mailing List, Third Party Advisory
SUSE-SU-2015:1255

Source: SUSE
Type: Mailing List, Third Party Advisory
SUSE-SU-2015:1258

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2015:1267

Source: HP
Type: Mailing List, Third Party Advisory
HPSBMU03409

Source: MISC
Type: Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/132663/Adobe-Flash-opaqueBackground-Use-After-Free.html

Source: REDHAT
Type: Third Party Advisory
RHSA-2015:1235

Source: CCN
Type: US-CERT VU#338736
Adobe Flash ActionScript 3 opaqueBackground use-after-free vulnerability

Source: CERT-VN
Type: Third Party Advisory, US Government Resource
VU#338736

Source: MISC
Type: Third Party Advisory
http://www.rapid7.com/db/modules/exploit/multi/browser/adobe_flash_opaque_background_uaf

Source: BID
Type: Third Party Advisory, VDB Entry
75712

Source: CCN
Type: BID-75712
Adobe Flash Player CVE-2015-5122 Use After Free Remote Memory Corruption Vulnerability

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1032890

Source: CERT
Type: Third Party Advisory, US Government Resource
TA15-195A

Source: XF
Type: UNKNOWN
adobe-flash-cve20155122-code-exec(104539)

Source: HP
Type: Third Party Advisory
HPSBHF03509

Source: CONFIRM
Type: Third Party Advisory
https://h20564.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c04952467

Source: CCN
Type: Adobe Security Bulletin APSA15-04
Security Advisory for Adobe Flash Player

Source: CONFIRM
Type: Vendor Advisory
https://helpx.adobe.com/security/products/flash-player/apsa15-04.html

Source: CCN
Type: Adobe Security Bulletin APSB15-18
Security updates available for Adobe Flash Player

Source: CONFIRM
Type: Vendor Advisory
https://helpx.adobe.com/security/products/flash-player/apsb15-18.html

Source: CCN
Type: Packet Storm Security [07-13-2015]
Adobe Flash opaqueBackground Use After Free

Source: MISC
Type: Third Party Advisory
https://perception-point.io/2018/04/11/breaking-cfi-cve-2015-5122-coop/

Source: MISC
Type: Third Party Advisory
https://perception-point.io/new/breaking-cfi.php

Source: GENTOO
Type: Third Party Advisory
GLSA-201508-01

Source: CCN
Type: Microsoft Security Advisory 2755801
Update for Vulnerabilities in Adobe Flash Player in Internet Explorer

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [07-13-2015]

Source: EXPLOIT-DB
Type: Third Party Advisory, VDB Entry
37599

Source: MISC
Type: Third Party Advisory
https://www.fireeye.com/blog/threat-research/2015/07/cve-2015-5122_-_seco.html

Vulnerable Configuration:

Configuration 1:

cpe:/a:adobe:flash_player:*:*:*:*:esr:*:*:* (Version >= 13.0 and <= 13.0.0.302)

OR cpe:/a:adobe:flash_player:*:*:*:*:*:chrome:*:* (Version >= 18.0 and <= 18.0.0.203)

OR cpe:/a:adobe:flash_player_desktop_runtime:*:*:*:*:*:*:*:* (Version >= 18.0 and <= 18.0.0.203)

AND

cpe:/o:microsoft:windows:-:*:*:*:*:*:*:*

OR cpe:/o:apple:macos:-:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:adobe:flash_player:*:*:*:*:*:chrome:*:* (Version >= 18.0 and <= 18.0.0.204)

AND

cpe:/o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:adobe:flash_player:*:*:*:*:*:internet_explorer_11:*:* (Version >= 18.0 and <= 18.0.0.203)

OR cpe:/a:adobe:flash_player:*:*:*:*:*:internet_explorer_10:*:* (Version >= 18.0 and <= 18.0.0.203)

AND

cpe:/o:microsoft:windows_8.0:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_8.1:-:*:*:*:*:*:*:*

Configuration 4:

cpe:/a:adobe:flash_player:*:*:*:*:*:*:*:* (Version >= 11.0 and <= 11.2.202.481)

AND

cpe:/o:linux:linux_kernel:-:*:*:*:*:*:*:*

Configuration 5:

cpe:/o:redhat:enterprise_linux_workstation:5.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:5.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:5.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server_eus:6.6:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*

Configuration 6:

cpe:/o:suse:linux_enterprise_desktop:12:-:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_desktop:11:sp3:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_desktop:11:sp4:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_workstation_extension:12:*:*:*:*:*:*:*

OR cpe:/o:opensuse:evergreen:11.4:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:rhel_extras:6:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:rhel_extras:5:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20155122	V	CVE-2015-5122	2022-05-20
oval:org.opensuse.security:def:55317	P	Security update for MozillaFirefox (Important) (in QA)	2022-01-14
oval:org.opensuse.security:def:55995	P	Security update for apache2 (Important)	2022-01-12
oval:org.opensuse.security:def:10711	P	Security update for MozillaThunderbird (Important)	2022-01-12
oval:org.opensuse.security:def:56093	P	Security update for postgresql10 (Important)	2021-11-22
oval:org.opensuse.security:def:55262	P	Security update for opensc (Important)	2021-10-29
oval:org.opensuse.security:def:10692	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:47182	P	xf86-video-intel-2.99.917.641_ge4ef6e9-12.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47945	P	ant-1.9.4-3.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47087	P	libtiff5-32bit-4.0.6-26.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46941	P	freeradius-server-3.0.3-10.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47253	P	fetchmail-6.3.26-12.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47151	P	sblim-sfcb-1.4.8-8.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:57488	P	Security update for libcares2 (Important)	2021-08-16
oval:org.opensuse.security:def:47025	P	libgssglue1-0.4-3.76 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47891	P	squid-3.5.21-26.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:55927	P	Security update for systemd (Important)	2021-07-21
oval:org.opensuse.security:def:11237	P	Security update for inn (Important)	2021-07-08
oval:org.opensuse.security:def:11229	P	Security update for htmldoc (Important)	2021-06-18
oval:org.opensuse.security:def:55914	P	Security update for caribou (Important)	2021-06-10
oval:org.opensuse.security:def:11305	P	gd-2.1.0-3.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11535	P	freerdp-1.0.2-7.9 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46727	P	libgcrypt20-1.6.1-16.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11386	P	libpcsclite1-1.8.10-3.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11537	P	fuse-2.9.3-5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48718	P	flash-player-11.2.202.548-111.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12210	P	libid3tag0-0.15.1b-182.58 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46489	P	libjbig2-2.0-12.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11352	P	libblkid1-2.25-6.69 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11461	P	strongswan-5.1.3-4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11550	P	gpg2-2.0.24-1.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11534	P	flash-player-11.2.202.548-111.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11513	P	cups-pk-helper-0.2.5-3.75 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:76830	P	flash-player-11.2.202.548-111.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46580	P	sudo-1.8.10p3-1.21 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11367	P	libgudev-1_0-0-210-44.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11528	P	evince-3.10.3-1.213 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17049	P	flash-player-11.2.202.548-111.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11486	P	yast2-core-3.1.11-1.9 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12188	P	libblkid1-2.29.2-2.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10677	P	Security update for MozillaThunderbird (Moderate)	2021-06-04
oval:org.opensuse.security:def:51896	P	Security update for djvulibre (Important)	2021-05-31
oval:org.opensuse.security:def:6026	P	Security update for slurm (Important)	2021-05-31
oval:org.opensuse.security:def:56019	P	Security update for djvulibre (Important)	2021-05-19
oval:org.opensuse.security:def:6004	P	Security update for samba (Important)	2021-05-04
oval:org.opensuse.security:def:46357	P	cups154-1.5.4-2.13 on GA media (Moderate)	2021-04-29
oval:org.opensuse.security:def:38103	P	Security update for clamav (Important)	2021-04-14
oval:org.opensuse.security:def:55876	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:57562	P	Security update for openldap2 (Important)	2021-03-03
oval:org.opensuse.security:def:52002	P	Security update for python (Important)	2021-02-11
oval:org.opensuse.security:def:51723	P	Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:51485	P	Security update for cyrus-sasl (Important)	2020-12-28
oval:org.opensuse.security:def:5344	P	Security update for flac (Moderate)	2020-12-24
oval:org.opensuse.security:def:54689	P	Security update for xen (Important)	2020-12-10
oval:org.opensuse.security:def:28864	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:10584	P	Security update for MozillaThunderbird (Important)	2020-12-07
oval:org.opensuse.security:def:54688	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:11259	P	ruby2.1-rubygem-chef-10.32.2-3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:5045	P	Security update for graphviz (Moderate)	2020-12-02
oval:org.opensuse.security:def:5075	P	Security update for rubygem-activesupport-5_1 (Critical)	2020-12-02
oval:org.opensuse.security:def:5183	P	Security update for mozilla-nss (Moderate)	2020-12-02
oval:org.opensuse.security:def:5302	P	Security update for zstd (Moderate)	2020-12-02
oval:org.opensuse.security:def:5121	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:5202	P	Security update for webkit2gtk3 (Important)	2020-12-02
oval:org.opensuse.security:def:5353	P	Security update for apache2 (Moderate)	2020-12-02
oval:org.opensuse.security:def:5053	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:5335	P	Security update for tomcat (Important)	2020-12-02
oval:org.opensuse.security:def:5168	P	Security update for nodejs8 (Critical)	2020-12-02
oval:org.opensuse.security:def:5277	P	Security update for spamassassin (Important)	2020-12-02
oval:org.opensuse.security:def:5366	P	Security update for samba (Important)	2020-12-02
oval:org.opensuse.security:def:51323	P	Security update for vim (Moderate)	2020-12-01
oval:org.opensuse.security:def:27659	P	Security update for rubygem-rack	2020-12-01
oval:org.opensuse.security:def:52561	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:56131	P	Security update for evince (Important)	2020-12-01
oval:org.opensuse.security:def:52670	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:52833	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:24673	P	Security update for ed (Low)	2020-12-01
oval:org.opensuse.security:def:28080	P	Security update for gcc48 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27965	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:54122	P	squashfs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37688	P	sysvinit-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55602	P	Security update for xdg-utils (Moderate)	2020-12-01
oval:org.opensuse.security:def:25046	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:54711	P	xscreensaver on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27244	P	mutt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27912	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:27450	P	libgpgme-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27653	P	Security update for libfreebl3	2020-12-01
oval:org.opensuse.security:def:53350	P	Security update for salt (Moderate)	2020-12-01
oval:org.opensuse.security:def:24959	P	Security update for netpbm (Moderate)	2020-12-01
oval:org.opensuse.security:def:28682	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:54471	P	fuse on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54634	P	mozilla-nspr-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37995	P	libz1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54075	P	libvte9 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25742	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:46045	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:10786	P	librsvg-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38214	P	gv on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27518	P	mozilla-xulrunner192-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52168	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:10875	P	aaa_base-malloccheck on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52671	P	Security update for the Linux Kernel (Live Patch 0 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:24536	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:27876	P	Security update for sendmail	2020-12-01
oval:org.opensuse.security:def:53909	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:52765	P	Security update for the Linux Kernel (Live Patch 15 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:37355	P	xalan-j2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37451	P	grub2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55151	P	java-1_7_0-openjdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28182	P	Security update for kernel modules packages (Moderate)	2020-12-01
oval:org.opensuse.security:def:55470	P	Security update for cups, cups154 (Moderate)	2020-12-01
oval:org.opensuse.security:def:10554	P	libtiff-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55819	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:51345	P	Security update for freetype2 (Important)	2020-12-01
oval:org.opensuse.security:def:27810	P	Security update for libqt4	2020-12-01
oval:org.opensuse.security:def:56212	P	Security update for xorg-x11-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:27461	P	libmspack-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53071	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:24756	P	Security update for tar (Moderate)	2020-12-01
oval:org.opensuse.security:def:28129	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:28009	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:54196	P	flash-player on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54472	P	gd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37745	P	busybox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55710	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:25060	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:28899	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:54851	P	libcairo-gobject2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38142	P	bubblewrap on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:57271	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:27232	P	log4net on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27308	P	tftp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10853	P	systemtap-sdt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24347	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:27735	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:53516	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:52653	P	Security update for the Linux Kernel (Live Patch 2 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:37356	P	xdg-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54872	P	libid3tag0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38054	P	rrdtool on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54113	P	qemu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25777	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:46031	P	Security update for krb5-appl (Important)	2020-12-01
oval:org.opensuse.security:def:46165	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:55368	P	python3-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10811	P	libxcb-composite0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38852	P	gnome-shell-calendar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27575	P	unixODBC_23-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52453	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:52693	P	Security update for the Linux Kernel (Live Patch 1 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:24617	P	Security update for sssd (Moderate)	2020-12-01
oval:org.opensuse.security:def:28027	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:27951	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:52846	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:37587	P	libspice-server1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28226	P	Security update for libssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:55544	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:10630	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:51322	P	Security update for jasper (Low)	2020-12-01
oval:org.opensuse.security:def:27863	P	Security update for Python	2020-12-01
oval:org.opensuse.security:def:27449	P	libgnutls-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27525	P	openldap2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53244	P	Security update for ovmf (Important)	2020-12-01
oval:org.opensuse.security:def:24906	P	Security update for atftp (Important)	2020-12-01
oval:org.opensuse.security:def:28647	P	Security update for compat-wireless, compat-wireless-debuginfo, compat-wireless-debugsource, compat-wireless-kmp-default, compat-wireless-kmp-pae, compat-wireless-kmp-trace, compat-wireless-kmp-xen	2020-12-01
oval:org.opensuse.security:def:54494	P	hplip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37835	P	krb5-appl-clients on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54001	P	libXfont1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25104	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:46032	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:55089	P	dbus-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38170	P	dovecot22 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:57345	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:27233	P	logrotate on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27436	P	libbz2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10862	P	xfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24337	P	Security update for texlive (Important)	2020-12-01
oval:org.opensuse.security:def:24410	P	Security update for libssh2_org (Important)	2020-12-01
oval:org.opensuse.security:def:27792	P	Security update for libgcrypt	2020-12-01
oval:org.opensuse.security:def:53801	P	Security update for ffmpeg (Important)	2020-12-01
oval:org.opensuse.security:def:52727	P	Security update for the Linux Kernel (Live Patch 9 for SLE 15) (Important)	2020-12-01
oval:org.opensuse.security:def:37367	P	yast2-core on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55045	P	xscreensaver on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28168	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:54194	P	file on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10562	P	libwmf-0_2-7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55534	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:55802	P	Security update for giflib (Moderate)	2020-12-01
oval:org.opensuse.security:def:38894	P	flash-player on GA media (Moderate)	2020-12-01
oval:org.cisecurity:def:465	V	Use-after-free vulnerability in the DisplayObject class in the ActionScript 3 (AS3) implementation in Adobe Flash Player 13.x through 13.0.0.302 and 14.x through 18.0.0.203 - CVE-2015-5122	2016-05-27
oval:com.redhat.rhsa:def:20151235	P	RHSA-2015:1235: flash-plugin security update (Critical)	2015-07-16
oval:org.opensuse.security:def:79979	P	Security update for flash-player (Critical)	2015-07-16
oval:org.opensuse.security:def:80196	P	Security update for flash-player (Critical)	2015-07-16
oval:org.opensuse.security:def:78178	P	Security update for flash-player (Critical)	2015-07-16
oval:com.ubuntu.precise:def:20155122000	V	CVE-2015-5122 on Ubuntu 12.04 LTS (precise) - medium.	2015-07-14
oval:com.ubuntu.trusty:def:20155122000	V	CVE-2015-5122 on Ubuntu 14.04 LTS (trusty) - medium.	2015-07-14

BACK