Vulnerability CVE-2015-5346 - CERT Civis.Net

Vulnerability Name:

CVE-2015-5346 (CCN-110854)

Assigned:

2015-07-01

Published:

2016-02-22

Updated:

2018-07-19

Summary:

Session fixation vulnerability in Apache Tomcat 7.x before 7.0.66, 8.x before 8.0.30, and 9.x before 9.0.0.M2, when different session settings are used for deployments of multiple versions of the same web application, might allow remote attackers to hijack web sessions by leveraging use of a requestedSessionSSL field for an unintended request, related to CoyoteAdapter.java and Request.java.

CVSS v3 Severity:

8.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

4.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N)
3.8 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

8.1 High (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

6.8 Medium (REDHAT CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2015-5346

Source: SUSE
Type: UNKNOWN
SUSE-SU-2016:0769

Source: SUSE
Type: UNKNOWN
SUSE-SU-2016:0822

Source: SUSE
Type: UNKNOWN
openSUSE-SU-2016:0865

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/135890/Apache-Tomcat-Session-Fixation.html

Source: CCN
Type: RHSA-2016-1087
Moderate: Red Hat JBoss Web Server 3.0.3 update

Source: CCN
Type: RHSA-2016-1088
Moderate: Red Hat JBoss Web Server 3.0.3 update

Source: CCN
Type: RHSA-2016-1089
Moderate: Red Hat JBoss Web Server 3.0.3 security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1089

Source: CCN
Type: RHSA-2016-2046
Important: tomcat security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:2046

Source: CCN
Type: RHSA-2016-2807
Important: Red Hat JBoss Web Server 2.1.2 security update for Tomcat 7

Source: REDHAT
Type: UNKNOWN
RHSA-2016:2807

Source: CCN
Type: RHSA-2016-2808
Important: Red Hat JBoss Web Server 2.1.2 security update for Tomcat 7

Source: REDHAT
Type: UNKNOWN
RHSA-2016:2808

Source: BUGTRAQ
Type: UNKNOWN
20160222 [SECURITY] CVE-2015-5346 Apache Tomcat Session fixation

Source: CCN
Type: BugTraq Mailing List, Mon, 22 Feb 2016 11:23:02 +0000
[SECURITY] CVE-2015-5346 Apache Tomcat Session fixation

Source: CONFIRM
Type: UNKNOWN
http://svn.apache.org/viewvc?view=revision&revision=1713184

Source: CONFIRM
Type: UNKNOWN
http://svn.apache.org/viewvc?view=revision&revision=1713185

Source: CONFIRM
Type: UNKNOWN
http://svn.apache.org/viewvc?view=revision&revision=1713187

Source: CONFIRM
Type: UNKNOWN
http://svn.apache.org/viewvc?view=revision&revision=1723414

Source: CONFIRM
Type: UNKNOWN
http://svn.apache.org/viewvc?view=revision&revision=1723506

Source: CCN
Type: Apache Web site
Apache Tomcat 7.x vulnerabilities

Source: CONFIRM
Type: Vendor Advisory
http://tomcat.apache.org/security-7.html

Source: CONFIRM
Type: Vendor Advisory
http://tomcat.apache.org/security-8.html

Source: CONFIRM
Type: Vendor Advisory
http://tomcat.apache.org/security-9.html

Source: DEBIAN
Type: UNKNOWN
DSA-3530

Source: DEBIAN
Type: UNKNOWN
DSA-3552

Source: DEBIAN
Type: UNKNOWN
DSA-3609

Source: CCN
Type: IBM Security Bulletin N1021269 (Server Firmware, HMC and SDMC)
Multiple vulnerabilities in tomcat affect Power Hardware Management Console

Source: CCN
Type: IBM Security Bulletin 1005846 (Storwize V7000 (2076))
Multiple vulnerabilities in Apache Tomcat affect IBM SAN Volume Controller and Storwize Family

Source: CCN
Type: IBM Security Bulletin S1008121 (FlashSystem 840)
Vulnerabilities in Apache Tomcat affect the IBM FlashSystem models 840 and 900

Source: CCN
Type: IBM Security Bulletin S1008122 (FlashSystem V840)
Vulnerabilities in Apache Tomcat affect the IBM FlashSystem model V840

Source: CCN
Type: IBM Security Bulletin S1008123 (FlashSystem V9000)
Vulnerabilities in Apache Tomcat affect the IBM FlashSystem model V9000

Source: CCN
Type: IBM Security Bulletin 1976103 (Rational License Key Server)
Multiple Security Vulnerabilities in Apache Tomcat affect IBM RLKS Administration and Reporting Tool

Source: CCN
Type: IBM Security Bulletin 1980499 (Rational Directory Server)
Security bulletin: Rational Directory Server (Tivoli) is affected by an Apache Tomcat vulnerabilities

Source: CCN
Type: IBM Security Bulletin 1980693 (Tivoli Application Dependency Discovery Manager)
Open Source Apache Tomcat vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (TADDM) February 2016

Source: CCN
Type: IBM Security Bulletin 1981427 (Rational Test Workbench)
Rational Test Control Panel in Rational Test Workbench and Rational Test Virtualization Server affected by multiple Apache Tomcat vulnerabilities

Source: CCN
Type: IBM Security Bulletin 1982178 (Integration Bus)
WebSphere Message Broker and IBM Integration Bus are affected by Open Source Tomcat vulnerability (CVE-2015-5346 )

Source: CCN
Type: IBM Security Bulletin 1983435 (Algo One)
Vulnerability OpenSource Apache Tomcat affects IBM Algorithmics Algo Risk Application - CVE-2015-5345 CVE-2015-5346 CVE-2016-0706 CVE-2016-0714 CVE-2016-0763

Source: CCN
Type: IBM Security Bulletin 1983458 (WebSphere Application Server Community Edition)
Vulnerabilities in Apache Tomcat may affect IBM WebSphere Application Server Community Edition

Source: CCN
Type: IBM Security Bulletin 1984137 (Algo One)
Vulnerabilities in OpenSource Apache Tomcat affecting IBM Algo One Core ( CVE-2015-5345 CVE-2015-5346 )

Source: CCN
Type: IBM Security Bulletin 1987473 (Algo Audit and Compliance)
Multiple OpenSource Apache Tomcat vulnerabilities in IBM Algo Audit and Compliance

Source: CCN
Type: IBM Security Bulletin 1987480 (Algo One)
OpenSource Apache Tomcat Vulnerabilityaffects IBM Algorithmics Counterparty Credit Risk

Source: CCN
Type: IBM Security Bulletin C1000126 (UrbanCode Deploy)
Multiple vulnerabilities in Apache Tomcat affect IBM UrbanCode Deploy (CVE-2015-5345, CVE-2015-5346, CVE-2015-5351)

Source: CCN
Type: IBM Security Bulletin C1000171 (UrbanCode Release)
Multiple vulnerabilities in Apache Tomcat affect IBM UrbanCode Release

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/bulletinjan2016-2867206.html

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/topics/security/linuxbulletinoct2016-3090545.html

Source: BID
Type: UNKNOWN
83323

Source: CCN
Type: BID-83323
Apache Tomcat CVE-2015-5346 Session Fixation Vulnerability

Source: SECTRACK
Type: UNKNOWN
1035069

Source: UBUNTU
Type: UNKNOWN
USN-3024-1

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1087

Source: REDHAT
Type: UNKNOWN
RHSA-2016:1088

Source: CONFIRM
Type: UNKNOWN
https://bto.bluecoat.com/security-advisory/sa118

Source: CONFIRM
Type: UNKNOWN
https://bz.apache.org/bugzilla/show_bug.cgi?id=58809

Source: XF
Type: UNKNOWN
apache-tomcat-cve20155346-session-hijacking(110854)

Source: CONFIRM
Type: UNKNOWN
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05150442

Source: CONFIRM
Type: UNKNOWN
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05158626

Source: MLIST
Type: UNKNOWN
[tomcat-dev] 20200213 svn commit: r1873980 [27/34] - /tomcat/site/trunk/docs/

Source: GENTOO
Type: UNKNOWN
GLSA-201705-09

Source: CONFIRM
Type: UNKNOWN
https://security.netapp.com/advisory/ntap-20180531-0001/

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2015-5346

Vulnerable Configuration:

Configuration 1:

cpe:/a:apache:tomcat:7.0.0:beta:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.2:beta:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.4:beta:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.5:beta:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.6:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.10:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.11:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.12:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.14:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.16:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.19:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.20:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.21:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.22:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.23:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.25:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.26:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.27:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.28:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.29:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.30:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.32:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.33:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.34:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.35:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.37:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.39:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.40:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.41:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.42:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.47:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.50:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.52:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.53:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.54:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.55:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.56:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.57:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.59:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.61:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.62:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.63:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.64:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:7.0.65:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.0:rc1:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.0:rc10:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.0:rc3:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.0:rc5:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.1:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.3:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.11:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.12:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.14:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.15:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.17:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.18:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.20:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.21:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.22:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.23:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.24:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.26:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.27:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.28:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0.29:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*

Configuration 2:

cpe:/o:canonical:ubuntu_linux:12.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

Configuration 3:

cpe:/o:debian:debian_linux:7.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:apache:tomcat:7:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0:*:*:*:*:*:*:*

AND

cpe:/a:ibm:rational_directory_server:5.2.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:integration_bus:9.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:6.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:6.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:6.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:6.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:7.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:7.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:algo_audit_and_compliance:2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:algo_one:4.9:*:*:*:*:*:*:*

OR cpe:/a:ibm:algo_one:5.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.2.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_application_server:3.0.0.4:-:community:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:algo_one:4.9.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.1.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.1.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.5.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.5.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:7.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:7.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.1.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.5.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.0.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.0.1.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_test_workbench:8.5.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.9:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:7.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4.9:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.10:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.11:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:7.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_license_key_server:8.1.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:integration_bus:10.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:algo_one:5.1.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_hpc_node_eus:7.2:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server_aus:7.2:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server_eus:7.2:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:7:*:*:*:*:*:*:*

OR cpe:/a:ibm:storwize_v7000_software:7.6.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.0.1.12:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.1:*:*:*:*:*:*:*

OR cpe:/a:redhat:jboss_web_server:3.0.2:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server_tus:7.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:8135	P	Security update for netty, netty-tcnative (Important)	2023-06-21
oval:org.opensuse.security:def:8041	P	nasm-2.15.05-150500.1.2 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:8026	P	jsr-305-3.0.2-150200.3.7.5 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:8060	P	policycoreutils-devel-3.1-150400.1.5 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:8202	P	Security update for php8 (Moderate) (in QA)	2023-06-15
oval:org.opensuse.security:def:7678	P	libsystemd0-249.16-150400.8.25.7 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7631	P	libopenssl-3-devel-3.0.8-150500.3.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7876	P	colord-color-profiles-1.4.5-150400.4.3.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7555	P	libXcursor-devel-1.1.15-1.18 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7585	P	libcroco-0.6.13-150400.9.5 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7863	P	python3-kubernetes-8.0.1-150100.3.7.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7845	P	zypper-1.14.59-150400.3.12.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7563	P	libXp-devel-1.0.3-1.24 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7854	P	docker-libnetwork-0.7.0.1+gitr2908_55e924b8a842-4.31.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7667	P	libsmi-0.4.8-1.29 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7812	P	sudo-1.9.12p1-150500.5.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7979	P	texlive-collection-basic-2021.185.svn56569-150400.19.4 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7903	P	hplip-3.21.10-150400.3.5.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7787	P	python3-targetcli-fb-2.1.54-150500.6.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7933	P	libgupnp-1_2-1-1.4.3-150400.1.6 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7712	P	libzzip-0-13-0.13.69-3.10.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7911	P	libSDL-1_2-0-1.2.15-150000.3.19.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7689	P	libunwind-1.5.0-4.5.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7693	P	libvmtools-devel-12.2.0-150300.26.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:8193	P	Security update for mariadb (Low)	2023-06-09
oval:org.opensuse.security:def:8160	P	Security update for python-Flask (Important)	2023-05-22
oval:org.opensuse.security:def:643	P	Security update for python-paramiko (Important) (in QA)	2022-09-30
oval:org.opensuse.security:def:20155346	V	CVE-2015-5346	2022-09-02
oval:org.opensuse.security:def:94262	P	(Important)	2022-07-14
oval:org.opensuse.security:def:3384	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3806	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3544	P	libFLAC++6-1.3.0-11.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:124356	P	tomcat-9.0.12-1.7 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:1683	P	Security update for dpdk (Important) (in QA)	2022-06-24
oval:org.opensuse.security:def:95174	P	tomcat-9.0.36-150200.22.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:1674	P	Security update for mariadb (Important)	2022-06-07
oval:org.opensuse.security:def:1692	P	Security update for cyrus-sasl (Important)	2022-03-07
oval:org.opensuse.security:def:1087	P	Security update for MozillaFirefox (Important)	2022-03-03
oval:org.opensuse.security:def:113535	P	tomcat-8.0.36-3.3 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:60439	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:8884	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:41915	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:7007	P	Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP1) (Important)	2021-12-14
oval:org.opensuse.security:def:8869	P	Security update for poppler (Important)	2021-12-01
oval:org.opensuse.security:def:6716	P	Security update for the Linux Kernel (Live Patch 25 for SLE 15) (Important)	2021-11-17
oval:org.opensuse.security:def:57526	P	Security update for MozillaFirefox (Important)	2021-11-17
oval:org.opensuse.security:def:55969	P	Security update for samba (Important)	2021-11-16
oval:org.opensuse.security:def:8862	P	Security update for tomcat (Important)	2021-11-16
oval:org.opensuse.security:def:9054	P	Security update for binutils (Moderate)	2021-11-04
oval:org.opensuse.security:def:40648	P	Security update for opensc (Important)	2021-10-29
oval:org.opensuse.security:def:60401	P	Security update for python (Moderate)	2021-10-26
oval:org.opensuse.security:def:8850	P	Security update for python-Pygments (Important)	2021-10-20
oval:org.opensuse.security:def:41790	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:59808	P	Security update for curl (Moderate)	2021-10-12
oval:org.opensuse.security:def:6708	P	Security update for the Linux Kernel (Live Patch 25 for SLE 15) (Important)	2021-10-12
oval:org.opensuse.security:def:106931	P	tomcat-8.0.36-3.3 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:56075	P	Security update for libqt5-qtbase (Important)	2021-09-30
oval:org.opensuse.security:def:66931	P	Security update for hivex (Moderate)	2021-09-23
oval:org.opensuse.security:def:61556	P	libpcsclite1-1.8.24-1.14 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63239	P	spice-gtk-devel-0.35-1.48 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61580	P	libtag1-1.11.1-2.50 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63201	P	dhcp-relay-4.3.5-4.15 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61557	P	libpng12-0-1.2.57-2.18 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71350	P	opensc-0.19.0-1.14 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:6965	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-09-16
oval:org.opensuse.security:def:64763	P	Security update for openssl-1_1 (Low)	2021-09-07
oval:org.opensuse.security:def:9033	P	Security update for java-11-openjdk (Important)	2021-09-03
oval:org.opensuse.security:def:9032	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:70287	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:8835	P	Security update for xen (Important)	2021-09-02
oval:org.opensuse.security:def:9024	P	Security update for aws-cli, python-boto3, python-botocore, python-service_identity, python-trustme, python-urllib3 (Moderate)	2021-08-23
oval:org.opensuse.security:def:41236	P	Security update for cpio (Important)	2021-08-23
oval:org.opensuse.security:def:9020	P	Security update for php7 (Important)	2021-08-20
oval:org.opensuse.security:def:8368	P	Security update for haproxy (Important)	2021-08-18
oval:org.opensuse.security:def:9011	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:47516	P	tomcat-8.0.43-23.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47937	P	DirectFB-1.7.1-6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15205	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:83822	P	tomcat-8.0.43-23.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47744	P	libmspack0-0.4-14.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14048	P	tomcat-8.0.36-11.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47623	P	gnome-keyring-3.20.0-28.3.18 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48078	P	libXfont2-2-2.0.3-1.19 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47905	P	tomcat-9.0.12-1.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47609	P	fontconfig-2.11.1-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47946	P	apache-commons-beanutils-1.9.2-3.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:87946	P	tomcat-9.0.12-1.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47753	P	libopenssl-1_0_0-devel-1.0.2p-2.11 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48309	P	squashfs-4.3-6.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14396	P	tomcat-8.0.43-23.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47632	P	gstreamer-1.8.3-9.5 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48161	P	libopenssl-devel-1.0.2p-1.13 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48325	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47618	P	ghostscript-9.25-23.13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47608	P	file-5.22-10.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47168	P	tomcat-8.0.36-11.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48318	P	sysstat-12.0.2-10.24.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14785	P	tomcat-9.0.12-1.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:80578	P	tomcat-8.0.36-11.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48170	P	libpcsclite1-1.8.10-7.6.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47617	P	gdm-3.10.0.1-54.6.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48069	P	libSDL-1_2-0-1.2.15-15.11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:63418	P	tomcat-9.0.36-3.24.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2329	P	tomcat-9.0.36-3.24.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63340	P	libfreebl3-hmac-3.53.1-3.51.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63373	P	sblim-sfcb-1.4.9-5.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:101419	P	tomcat-9.0.36-3.24.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62346	P	vim-8.0.1568-5.14.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62216	P	libsndfile-devel-1.0.28-5.5.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1096	P	libnm0-1.22.10-3.7.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62022	P	apache-commons-io-2.6-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100975	P	libsnmp30-5.7.3-8.24 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63005	P	dpkg-1.19.0.4-2.30 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:60319	P	Security update for webkit2gtk3 (Important)	2021-08-03
oval:org.opensuse.security:def:6940	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-07-27
oval:org.opensuse.security:def:9002	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:59508	P	Security update for MozillaFirefox (Important)	2021-07-16
oval:org.opensuse.security:def:68010	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1) (Important)	2021-07-14
oval:org.opensuse.security:def:8322	P	Security update for crmsh (Moderate)	2021-07-02
oval:org.opensuse.security:def:8613	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:66839	P	Security update for apache2 (Important)	2021-06-22
oval:org.opensuse.security:def:8788	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:41185	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:9345	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:8600	P	Security update for spice-gtk (Important)	2021-06-09
oval:org.opensuse.security:def:36153	P	jakarta-commons-httpclient3-3.0.1-253.36.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36138	P	gnome-screensaver-2.28.3-0.39.17 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48836	P	gimp-2.8.18-8.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42553	P	gvim-7.2-8.15.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48765	P	bogofilter-1.2.4-5.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:8969	P	Security update for pam_radius (Moderate)	2021-06-08
oval:org.opensuse.security:def:36542	P	ppp-devel-2.4.5.git-2.29.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36486	P	libsndfile-devel-1.0.20-2.6.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48734	P	libgio-fam-2.38.2-5.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48607	P	python-libxml2-2.9.4-27.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36592	P	xorg-x11-server-sdk-7.4-27.105.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36504	P	libwpd-0_8-8-0.8.14-4.33 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15517	P	tomcat-8.0.36-11.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36385	P	ctdb-devel-1.0.114.6-0.11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48669	P	finch-2.10.9-5.15 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48845	P	kernel-default-extra-4.4.73-5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48523	P	libmpfr4-3.1.2-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36553	P	quagga-0.99.15-0.14.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36445	P	libexif-devel-0.6.17-2.14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36249	P	nagios-plugins-1.4.16-0.13.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48774	P	gimp-2.8.18-4.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36285	P	quagga-0.99.15-0.14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36165	P	krb5-1.6.3-133.49.66.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48743	P	libraw9-0.15.4-3.88 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48616	P	rpm-4.11.2-15.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36154	P	java-1_7_1-ibm-1.7.1_sr3.0-1.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48678	P	kernel-default-extra-3.12.28-4.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48532	P	libpango-1_0-0-1.40.1-9.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42598	P	libgtop-2.28.0-1.13.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62875	P	perl-YAML-LibYAML-0.59-1.16 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36554	P	ruby-devel-1.8.7.p357-0.9.17.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48637	P	tomcat-8.0.36-11.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36195	P	libltdl7-2.2.6-2.131.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36543	P	pwlib-1.10.10-120.35.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:8944	P	Security update for avahi (Moderate)	2021-06-04
oval:org.opensuse.security:def:8591	P	Security update for slurm_18_08 (Important)	2021-06-04
oval:org.opensuse.security:def:9332	P	Security update for dhcp (Important)	2021-06-02
oval:org.opensuse.security:def:73622	P	Recommended update for grub2 (Moderate)	2021-05-19
oval:org.opensuse.security:def:8582	P	Security update for djvulibre (Important)	2021-05-19
oval:org.opensuse.security:def:9323	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:9693	P	Security update for MozillaFirefox (Important)	2021-04-29
oval:org.opensuse.security:def:8742	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:20430	P	Security update for the Linux Kernel (Live Patch 15 for SLE 12 SP5) (Important)	2021-04-28
oval:org.opensuse.security:def:40962	P	Security update for util-linux (Important)	2021-04-14
oval:org.opensuse.security:def:60223	P	Security update for fwupdate (Important)	2021-04-08
oval:org.opensuse.security:def:6865	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)	2021-04-07
oval:org.opensuse.security:def:56969	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:41156	P	Security update for MozillaFirefox (Important)	2021-04-01
oval:org.opensuse.security:def:64676	P	Security update for openssl-1_1 (Important)	2021-03-25
oval:org.opensuse.security:def:19527	P	Security update for hawk2 (Important)	2021-03-24
oval:org.opensuse.security:def:9671	P	Security update for libass (Important)	2021-03-24
oval:org.opensuse.security:def:8720	P	Security update for glib2 (Important)	2021-03-19
oval:org.opensuse.security:def:68110	P	Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:7016	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:60478	P	Security update for python (Moderate)	2021-03-16
oval:org.opensuse.security:def:8712	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:9100	P	Security update for postgresql12 (Moderate)	2021-03-03
oval:org.opensuse.security:def:38089	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:58897	P	Security update for jasper (Important)	2021-02-16
oval:org.opensuse.security:def:58896	P	Security update for wpa_supplicant (Important)	2021-02-15
oval:org.opensuse.security:def:19455	P	Security update for the Linux Kernel (Important)	2021-02-11
oval:org.opensuse.security:def:6998	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-02-10
oval:org.opensuse.security:def:57075	P	Security update for openvswitch (Important)	2021-02-02
oval:org.opensuse.security:def:57943	P	Security update for ImageMagick (Important)	2021-01-22
oval:org.opensuse.security:def:57919	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:58919	P	Security update for MozillaFirefox (Important)	2021-01-12
oval:org.opensuse.security:def:9281	P	Security update for python3 (Important)	2020-12-23
oval:org.opensuse.security:def:8536	P	Security update for openssh (Moderate)	2020-12-18
oval:org.opensuse.security:def:57838	P	Security update for openssl (Important)	2020-12-11
oval:org.opensuse.security:def:56919	P	Security update for python (Important)	2020-12-11
oval:org.opensuse.security:def:6846	P	Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP1) (Important)	2020-12-07
oval:org.opensuse.security:def:9273	P	Security update for xen (Important)	2020-12-04
oval:org.opensuse.security:def:36037	P	sudo-1.7.6p2-0.17.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63393	P	tomcat-9.0.5-1.34 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35901	P	fvwm2-2.5.26-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2322	P	tomcat-9.0.35-1.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71463	P	cron-4.2-6.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35817	P	radvd-1.1-1.24.4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90090	P	tomcat-9.0.14-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35806	P	perl-Tk-804.028-50.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63290	P	openslp-server-2.0.0-6.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103745	P	tomcat-9.0.14-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63402	P	tomcat-9.0.14-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61749	P	giflib-devel-5.1.4-2.19 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2304	P	tomcat-9.0.5-1.34 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107641	P	tomcat-9.0.35-1.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117199	P	tomcat-9.0.35-1.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35805	P	perl-HTML-Parser-3.56-1.18.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63411	P	tomcat-9.0.35-1.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63107	P	apache2-mod_wsgi-4.5.18-2.27 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62556	P	libimobiledevice-devel-1.2.0+git20170122.45fda81-1.44 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2313	P	tomcat-9.0.14-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13197	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:19276	P	Security update for apache2 (Important)	2020-12-01
oval:org.opensuse.security:def:56558	P	Security update for polkit (Moderate)	2020-12-01
oval:org.opensuse.security:def:37182	P	libapr-util1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41835	P	Security update for Linux Kernel Live Patch 9 for SLE 12 (Important)	2020-12-01
oval:org.opensuse.security:def:38039	P	python-PyYAML on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50115	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37058	P	DirectFB on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:40717	P	Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:8524	P	squidGuard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41738	P	Security update for libqt4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:19730	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:19725	P	Security update for Linux Kernel Live Patch 16 for SLE 12 (Important)	2020-12-01
oval:org.opensuse.security:def:37344	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:40963	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:9162	P	libtasn1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56241	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:19672	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:37777	P	ecryptfs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73504	P	guile on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56418	P	Security update for perl-XML-LibXML (Moderate)	2020-12-01
oval:org.opensuse.security:def:37022	P	squashfs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:40283	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:36974	P	ntp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37607	P	libvte9 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8449	P	libssh2-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41674	P	Security update for webkitgtk (Moderate)	2020-12-01
oval:org.opensuse.security:def:57800	P	libgssglue1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36664	P	libipa_hbac0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9147	P	libruby2_1-2_1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19639	P	Security update for sblim-sfcb (Moderate)	2020-12-01
oval:org.opensuse.security:def:57634	P	Security update for postgresql94 (Important)	2020-12-01
oval:org.opensuse.security:def:37749	P	cifs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38813	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56396	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:59327	P	Security update for gcc10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:36932	P	libpcsclite1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37661	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9251	P	rzsz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10005	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36963	P	libxerces-c-3_1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37506	P	libapr1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41498	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:57726	P	glib2-lang on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36620	P	iputils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60528	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55395	P	tar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37710	P	xlockmore on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38133	P	augeas on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:59075	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:37602	P	libvirglrenderer0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38459	P	python-imaging on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50124	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37370	P	DirectFB on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41396	P	Security update for mailman (Important)	2020-12-01
oval:org.opensuse.security:def:20404	P	Security update for gstreamer-plugins-good (Important)	2020-12-01
oval:org.opensuse.security:def:37692	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18810	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:57241	P	Security update for pixman	2020-12-01
oval:org.opensuse.security:def:37442	P	glib2-lang on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37286	P	openslp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37012	P	rpcbind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50061	P	grub2-x86_64-xen on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18776	P	Security update for libxslt (Moderate)	2020-12-01
oval:org.opensuse.security:def:38061	P	sblim-sfcb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8224	P	tar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37302	P	perl-Tk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41919	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:37352	P	wget on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37973	P	libtiff5-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19751	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:37275	P	libyaml-0-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:40539	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:8430	P	libpng16-16 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36968	P	logwatch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56395	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:18718	P	Security update for gwenhywfar (Moderate)	2020-12-01
oval:org.opensuse.security:def:60107	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:38022	P	pcsc-ccid on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8211	P	shim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36962	P	libxcb-dri2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36875	P	libXRes1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37914	P	liblua5_2-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19087	P	Security update for audit (Moderate)	2020-12-01
oval:org.opensuse.security:def:38771	P	perl-Config-IniFiles on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50133	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18589	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:40387	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:8415	P	libmms0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9256	P	socat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36940	P	libpython2_7-1_0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38081	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18632	P	Security update for audiofile (Moderate)	2020-12-01
oval:org.opensuse.security:def:55796	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:19489	P	Security update for gnome-settings-daemon (Moderate)	2020-12-01
oval:org.opensuse.security:def:36852	P	gvim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8514	P	rpm-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36774	P	xinetd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37754	P	cpio on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19063	P	Security update for LibVNCServer (Critical)	2020-12-01
oval:org.opensuse.security:def:40295	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:41327	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:9181	P	libxerces-c-3_1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36901	P	libfreebl3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37401	P	cpio on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50070	P	libfreebl3-hmac on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60556	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18597	P	Security update for texlive (Important)	2020-12-01
oval:org.opensuse.security:def:55558	P	Security update for evolution-data-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:59623	P	Security update for qemu (Moderate)	2020-12-01
oval:org.opensuse.security:def:36793	P	apache2-mod_nss on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37650	P	ppc64-diag on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8292	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36638	P	libXp6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6831	P	rhythmbox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37664	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41059	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:19051	P	Security update for libjpeg-turbo (Important)	2020-12-01
oval:org.opensuse.security:def:56838	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:9983	P	rpcbind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:40284	P	Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:41218	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:18993	P	Security update for evince (Important)	2020-12-01
oval:org.opensuse.security:def:37357	P	xen on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55418	P	xlockmore on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19397	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:36633	P	libXext6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41111	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:57869	P	libvorbis-doc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37274	P	libxml2-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6784	P	libxslt-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37295	P	pam_ssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:40995	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:56800	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:19766	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:41874	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:19268	P	Security update for shibboleth-sp (Moderate)	2020-12-01
oval:org.opensuse.security:def:8300	P	ecryptfs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41066	P	Security update for adns (Important)	2020-12-01
oval:org.opensuse.security:def:18960	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:56634	P	Security update for ntp (Moderate)	2020-12-01
oval:org.opensuse.security:def:37329	P	socat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:7029	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38501	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55396	P	tcpdump on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19311	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:56796	P	Security update for sqlite3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37241	P	libpoppler44 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41864	P	Security update for Linux Kernel Live Patch 9 for SLE 12 (Important)	2020-12-01
oval:org.opensuse.security:def:6738	P	libplist++3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37194	P	libfreebl3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:40819	P	Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:8549	P	xen on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56726	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:19742	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:70182	P	ocaml on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:40974	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:18848	P	Security update for openwsman (Important)	2020-12-01
oval:org.opensuse.security:def:56526	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:37290	P	opie on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37821	P	ibus-chewing on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50079	P	libvirglrenderer0 on GA media (Moderate)	2020-12-01
oval:com.redhat.rhsa:def:20162046	P	RHSA-2016:2046: tomcat security update (Important)	2016-10-10
oval:org.cisecurity:def:951	P	DSA-3609-1 -- tomcat8 -- security update	2016-08-12
oval:org.cisecurity:def:934	V	HPE HP-UX running Apache Tomcat 7, Multiple Remote Vulnerabilities	2016-08-12
oval:org.cisecurity:def:585	P	DSA-3530-1 -- tomcat6 -- security update	2016-07-01
oval:org.cisecurity:def:602	P	DSA-3552-1 -- tomcat7 -- security update	2016-07-01
oval:com.ubuntu.xenial:def:201553460000000	V	CVE-2015-5346 on Ubuntu 16.04 LTS (xenial) - low.	2016-02-25
oval:com.ubuntu.precise:def:20155346000	V	CVE-2015-5346 on Ubuntu 12.04 LTS (precise) - low.	2016-02-24
oval:com.ubuntu.trusty:def:20155346000	V	CVE-2015-5346 on Ubuntu 14.04 LTS (trusty) - low.	2016-02-24
oval:com.ubuntu.xenial:def:20155346000	V	CVE-2015-5346 on Ubuntu 16.04 LTS (xenial) - low.	2016-02-24