Vulnerability CVE-2015-5589 - CERT Civis.Net

Vulnerability Name:

CVE-2015-5589 (CCN-105327)

Assigned:

2015-07-17

Published:

2015-07-17

Updated:

2017-11-04

Summary:

The phar_convert_to_other function in ext/phar/phar_object.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 does not validate a file pointer before a close operation, which allows remote attackers to cause a denial of service (segmentation fault) or possibly have unspecified other impact via a crafted TAR archive that is mishandled in a Phar::convertToData call.

CVSS v3 Severity:

9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2015-5589

Source: CCN
Type: PHP GIT Repository
Fix bug #69958 - Segfault in Phar::convertToData on invalid file

Source: CONFIRM
Type: UNKNOWN
http://git.php.net/?p=php-src.git;a=commit;h=bf58162ddf970f63502837f366930e44d6a992cf

Source: MLIST
Type: UNKNOWN
[oss-security] 20150718 Re: CVE request: php - segmentation fault in Phar::convertToData; buffer overflow in phar_fix_filepath;

Source: CONFIRM
Type: UNKNOWN
http://php.net/ChangeLog-5.php

Source: CCN
Type: RHSA-2016-0457
Moderate: rh-php56-php security update

Source: CCN
Type: oss-security Mailing List, Fri, 17 Jul 2015 15:54:25 +0200
CVE request: php - segmentation fault in Phar::convertToData; buffer overflow in phar_fix_filepath

Source: CCN
Type: oss-security Mailing List, Sat, 18 Jul 2015 06:51:24 -0400 (EDT)
Re: CVE request: php - segmentation fault in Phar::convertToData; buffer overflow in phar_fix_filepath

Source: DEBIAN
Type: UNKNOWN
DSA-3344

Source: BID
Type: UNKNOWN
75974

Source: CCN
Type: BID-75974
PHP CVE-2015-5589 Remote Denial Of Service Vulnerability

Source: CONFIRM
Type: UNKNOWN
https://bugs.php.net/bug.php?id=69958

Source: XF
Type: UNKNOWN
php-cve20155589-dos(105327)

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2015-5589

Vulnerable Configuration:

Configuration 1:

cpe:/a:php:php:5.6.0:alpha1:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.0:alpha2:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.0:alpha3:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.0:alpha4:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.0:alpha5:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.0:beta1:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.0:beta2:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.0:beta3:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.0:beta4:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.1:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.2:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.3:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.4:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.5:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.6:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.7:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.8:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.9:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.10:-:*:*:*:*:*:*

Configuration 2:

cpe:/a:php:php:5.5.0:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha1:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha2:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha3:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha4:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha5:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:alpha6:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:beta1:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:beta2:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:beta3:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:beta4:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:rc1:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.0:rc2:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.1:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.2:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.3:*:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.4:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.5:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.6:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.7:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.8:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.9:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.10:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.11:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.12:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.13:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.14:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.15:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.16:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.17:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.18:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.19:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.20:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.21:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.22:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.23:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.24:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.25:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.5.26:-:*:*:*:*:*:*

Configuration 3:

cpe:/a:php:php:*:*:*:*:*:*:*:* (Version <= 5.4.42)

Configuration CCN 1:

cpe:/a:php:php:5.4.0:-:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20155589	V	CVE-2015-5589	2023-06-22
oval:org.opensuse.security:def:34674	P	Security update for python-numpy (Moderate) (in QA)	2022-01-17
oval:org.opensuse.security:def:9680	P	Security update for libsndfile (Important)	2022-01-11
oval:org.opensuse.security:def:10438	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:30287	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:31371	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:9884	P	Security update for go1.17 (Moderate)	2021-12-23
oval:org.opensuse.security:def:33758	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:9634	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:34609	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:10371	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:10368	P	Security update for ruby2.5 (Important)	2021-12-01
oval:org.opensuse.security:def:9619	P	Security update for python-Pygments (Important)	2021-12-01
oval:org.opensuse.security:def:10175	P	Security update for webkit2gtk3 (Important)	2021-11-23
oval:org.opensuse.security:def:32215	P	Security update for qemu (Important)	2021-11-10
oval:org.opensuse.security:def:9417	P	Security update for MozillaFirefox (Important)	2021-11-10
oval:org.opensuse.security:def:9612	P	Security update for MozillaFirefox (Important)	2021-11-10
oval:org.opensuse.security:def:30141	P	Security update for opensc (Important)	2021-10-29
oval:org.opensuse.security:def:10169	P	Security update for Salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:9604	P	Security update for dnsmasq (Moderate)	2021-10-27
oval:org.opensuse.security:def:34567	P	Security update for util-linux (Moderate)	2021-10-20
oval:org.opensuse.security:def:10162	P	Security update for glibc (Moderate)	2021-10-12
oval:org.opensuse.security:def:10346	P	Security update for curl (Moderate)	2021-10-06
oval:org.opensuse.security:def:29423	P	Security update for openssl (Low)	2021-09-20
oval:org.opensuse.security:def:10153	P	Security update for openssl-1_0_0 (Low)	2021-09-09
oval:org.opensuse.security:def:33971	P	Security update for openssl-1_0_0 (Low)	2021-09-09
oval:org.opensuse.security:def:9395	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:10147	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:11120	P	Security update for libspf2 (Critical)	2021-08-25
oval:org.opensuse.security:def:10139	P	Security update for djvulibre (Important)	2021-08-20
oval:org.opensuse.security:def:9387	P	Security update for spice-vdagent (Moderate)	2021-08-20
oval:org.opensuse.security:def:14255	P	libmms0-0.6.2-15.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14200	P	libXrandr2-1.5.0-6.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14045	P	tar-1.27.1-8.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14268	P	libotr5-4.0.0-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14063	P	xfsprogs-4.3.0-8.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14906	P	gnutls-3.3.27-3.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13907	P	libhivex0-1.3.10-4.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14082	P	apache-commons-httpclient-3.1-4.364 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14928	P	jakarta-commons-fileupload-1.1.1-122.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13929	P	libmpfr4-3.1.2-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13899	P	libfreetype6-2.6.3-7.8.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14244	P	libjpeg-turbo-1.3.1-30.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14175	P	java-1_7_1-ibm-1.7.1_sr4.5-37.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13997	P	pam-modules-12.1-23.12 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:30230	P	Security update for cpio (Important)	2021-08-14
oval:org.opensuse.security:def:9761	P	Security update for nodejs8 (Important)	2021-08-05
oval:org.opensuse.security:def:33945	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:11098	P	Security update for claws-mail (Moderate)	2021-07-16
oval:org.opensuse.security:def:10296	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:38241	P	Security update for microcode_ctl (Important)	2021-06-28
oval:org.opensuse.security:def:9544	P	Security update for ovmf (Important)	2021-06-25
oval:org.opensuse.security:def:10111	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:9742	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:31212	P	Security update for ovmf (Important)	2021-06-22
oval:org.opensuse.security:def:33934	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:33933	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:10277	P	Security update for spice-gtk (Moderate)	2021-06-10
oval:org.opensuse.security:def:9727	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:33927	P	Security update for caribou (Important)	2021-06-10
oval:org.opensuse.security:def:9525	P	Security update for qemu (Important)	2021-06-09
oval:org.opensuse.security:def:16505	P	libexempi-devel-2.2.1-5.7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16463	P	lhasa-devel-0.2.0-5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16634	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16590	P	libtidy-0_99-0-1.0.20100204cvs-25.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15880	P	php5-devel-5.5.14-39.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16647	P	rrdtool-devel-1.4.7-20.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124640	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36264	P	pcsc-lite-1.4.102-1.37.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16098	P	php5-devel-5.5.14-73.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16471	P	libXdmcp-devel-1.1.1-12.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36306	P	t1lib-5.1.1-100.21.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16348	P	php5-devel-5.5.14-108.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10086	P	Security update for dhcp (Important)	2021-06-02
oval:org.opensuse.security:def:10262	P	Security update for curl (Moderate)	2021-05-31
oval:org.opensuse.security:def:9510	P	Security update for djvulibre (Important)	2021-05-19
oval:org.opensuse.security:def:9708	P	Security update for lz4 (Important)	2021-05-19
oval:org.opensuse.security:def:33903	P	Security update for samba (Important)	2021-05-04
oval:org.opensuse.security:def:38724	P	Security update for avahi (Moderate)	2021-05-04
oval:org.opensuse.security:def:35248	P	Security update for avahi (Moderate)	2021-05-04
oval:org.opensuse.security:def:9695	P	Security update for xen (Important)	2021-04-30
oval:org.opensuse.security:def:34409	P	Security update for qemu (Important)	2021-04-16
oval:org.opensuse.security:def:9686	P	Security update for spamassassin (Important)	2021-04-13
oval:org.opensuse.security:def:38657	P	Security update for MozillaFirefox (Important)	2021-04-01
oval:org.opensuse.security:def:31368	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:9861	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:34649	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:9862	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:9463	P	Security update for openldap2 (Important)	2021-03-08
oval:org.opensuse.security:def:29480	P	Security update for openldap2 (Important)	2021-03-03
oval:org.opensuse.security:def:10215	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:9854	P	Security update for grub2 (Important)	2021-03-02
oval:org.opensuse.security:def:34029	P	Security update for java-1_8_0-ibm (Important)	2021-02-26
oval:org.opensuse.security:def:10396	P	Security update for php7 (Important)	2021-02-24
oval:org.opensuse.security:def:9644	P	Security update for the Linux Kernel (Important)	2021-02-19
oval:org.opensuse.security:def:32254	P	Security update for openvswitch (Important)	2021-02-12
oval:org.opensuse.security:def:34625	P	Security update for perl-File-Path (Moderate)	2021-02-12
oval:org.opensuse.security:def:9836	P	Security update for subversion (Important)	2021-02-10
oval:org.opensuse.security:def:38608	P	Security update for ImageMagick (Moderate)	2021-01-15
oval:org.opensuse.security:def:30009	P	Security update for openssh (Moderate)	2021-01-05
oval:org.opensuse.security:def:10585	P	Security update for the Linux Kernel (Important)	2020-12-09
oval:org.opensuse.security:def:16913	P	libwpd-0_10-10-0.10.2-2.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16824	P	libical-devel-1.0.1-16.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35582	P	libapr-util1-1.3.4-12.20.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16925	P	lua-devel-5.2.4-6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16856	P	libopenssl-1_0_0-devel-1.0.2p-3.11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35626	P	pam_mount-0.47-13.13.65 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16947	P	perl-Tk-devel-804.031-5.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16678	P	ImageMagick-6.8.8.1-71.126.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35516	P	NetworkManager-0.7.0.r4359-15.22.49 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16714	P	doxygen-1.8.6-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35555	P	glib2-2.22.5-0.2.23 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:34320	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:29126	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:34263	P	Security update for postgresql94 (Important)	2020-12-01
oval:org.opensuse.security:def:38389	P	libusbmuxd4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27560	P	rubygem-json_pure on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10011	P	vsftpd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29878	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:29923	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:33147	P	libexif on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35000	P	Recommended update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:26830	P	t1lib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29772	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:34782	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:39448	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30770	P	Security update for augeas	2020-12-01
oval:org.opensuse.security:def:30670	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:10835	P	php5-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38002	P	mariadb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27223	P	libtspi1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30527	P	Security update for java-1_4_2-ibm	2020-12-01
oval:org.opensuse.security:def:33864	P	Security update for jasper	2020-12-01
oval:org.opensuse.security:def:27853	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37906	P	libkde4-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33601	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:35467	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:9912	P	libqt4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26480	P	Security update for okular (Moderate)	2020-12-01
oval:org.opensuse.security:def:38696	P	liblzo2-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28295	P	Security update for ncurses (Moderate)	2020-12-01
oval:org.opensuse.security:def:26404	P	Security update for irssi (Moderate)	2020-12-01
oval:org.opensuse.security:def:38549	P	augeas on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26893	P	fetchmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27122	P	fetchmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29922	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:29924	P	Security update for Mozilla	2020-12-01
oval:org.opensuse.security:def:33226	P	pcsc-ccid on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35101	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26981	P	libxml2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29821	P	Security update for java-1_6_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:35420	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:33135	P	libMagickCore1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30844	P	Security update for cyrus-imapd (Low)	2020-12-01
oval:org.opensuse.security:def:30689	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:30758	P	Security update for apache2-mod_jk (Moderate)	2020-12-01
oval:org.opensuse.security:def:38139	P	bind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27307	P	tcpdump on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30582	P	Security update for ntp (Important)	2020-12-01
oval:org.opensuse.security:def:9930	P	libupsclient1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31512	P	Recommended update for python 2.7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:9925	P	libtasn1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34769	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:26608	P	libxml2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28330	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26405	P	Security update for sox (Moderate)	2020-12-01
oval:org.opensuse.security:def:26957	P	libneon27 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27136	P	gnome-screensaver on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30560	P	Security update for OpenSSL	2020-12-01
oval:org.opensuse.security:def:26881	P	dbus-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33361	P	Security update for openssl1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:35158	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:27034	P	stunnel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35461	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29137	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:30976	P	Security update for guestfs	2020-12-01
oval:org.opensuse.security:def:27599	P	Security update for PHP5	2020-12-01
oval:org.opensuse.security:def:30733	P	Security update for OpenEXR (Moderate)	2020-12-01
oval:org.opensuse.security:def:30759	P	Security update for apache2-mod_nss (Moderate)	2020-12-01
oval:org.opensuse.security:def:27458	P	libldb-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30631	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:9977	P	python-pywbem on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33815	P	Security update for glib2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31533	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:10563	P	libxcb-composite0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34780	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:26689	P	ed on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29565	P	Security update for OpenEXR (Moderate)	2020-12-01
oval:org.opensuse.security:def:31424	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:34713	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:38768	P	patch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37907	P	libkpathsea6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27085	P	apache2-mod_security2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27180	P	libecpg6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30597	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:26882	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33456	P	Security update for icu	2020-12-01
oval:org.opensuse.security:def:27083	P	apache2-mod_perl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10447	P	gnome-settings-daemon-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17585	P	Security update for bind (Moderate)	2020-12-01
oval:org.opensuse.security:def:29206	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:31068	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:27613	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:29125	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:34165	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:38299	P	libhogweed2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27511	P	lxc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29935	P	Security update for libidn (Moderate)	2020-12-01
oval:org.opensuse.security:def:9992	P	squid on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29860	P	Security update for the Linux Kernel	2020-12-01
oval:org.opensuse.security:def:31577	P	Security update for sudo (Important)	2020-12-01
oval:org.opensuse.security:def:33136	P	libQtWebKit4-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34864	P	Security update for clamav (Important)	2020-12-01
oval:org.opensuse.security:def:26746	P	libfreebl3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29718	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:31473	P	Security update for procmail	2020-12-01
oval:org.opensuse.security:def:34738	P	Security update for LibVNCServer (Critical)	2020-12-01
oval:org.opensuse.security:def:39406	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:34768	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:10813	P	libxml2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37918	P	libmodplug1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27166	P	kvm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30373	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:27818	P	Security update for libssh2_org	2020-12-01
oval:org.opensuse.security:def:33513	P	Security update for perl-HTML-Parser	2020-12-01
oval:org.opensuse.security:def:35408	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:9903	P	libpng15-15 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10460	P	lhasa-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17611	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26416	P	Security update for nginx (Moderate)	2020-12-01
oval:org.opensuse.security:def:29337	P	Security update for spacewalk	2020-12-01
oval:org.opensuse.security:def:31125	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:27657	P	Security update for qemu	2020-12-01
oval:org.opensuse.security:def:31409	P	Security update for php53 (Moderate)	2020-12-01
oval:com.ubuntu.precise:def:20155589000	V	CVE-2015-5589 on Ubuntu 12.04 LTS (precise) - medium.	2016-05-16
oval:com.ubuntu.trusty:def:20155589000	V	CVE-2015-5589 on Ubuntu 14.04 LTS (trusty) - medium.	2016-05-16
oval:org.cisecurity:def:116	P	DSA-3344-1 -- php5 -- security update	2016-02-08