Vulnerability Name:

CVE-2015-7940 (CCN-107739)

Assigned:2015-10-22
Published:2015-10-22
Updated:2019-01-16
Summary:The Bouncy Castle Java library before 1.51 does not validate a point is withing the elliptic curve, which makes it easier for remote attackers to obtain private keys via a series of crafted elliptic curve Diffie Hellman (ECDH) key exchanges, aka an "invalid curve attack."
CVSS v3 Severity:5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): None
Availibility (A): None
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): None
Availibility (A): None
Vulnerability Type:CWE-310
CWE-200
Vulnerability Consequences:Obtain Information
References:Source: MITRE
Type: CNA
CVE-2015-7940

Source: FEDORA
Type: UNKNOWN
FEDORA-2015-7d95466eda

Source: SUSE
Type: Third Party Advisory
openSUSE-SU-2015:1911

Source: CCN
Type: RHSA-2016-2035
Important: Red Hat JBoss Fuse 6.3 security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:2035

Source: CCN
Type: RHSA-2016-2036
Important: Red Hat JBoss A-MQ 6.3 security update

Source: REDHAT
Type: UNKNOWN
RHSA-2016:2036

Source: CCN
Type: oss-sec Mailing List, Thu, 22 Oct 2015 12:25:12 +0200
CVE Request: invalid curve attack on bouncycastle

Source: CCN
Type: oss-sec Mailing List, Thu, 22 Oct 2015 14:08:10 -0400 (EDT)
Re: CVE Request: invalid curve attack on bouncycastle

Source: MISC
Type: Technical Description
http://web-in-security.blogspot.ca/2015/09/practical-invalid-curve-attacks.html

Source: CCN
Type: Bouncy Castle Web site
Bouncy Castle

Source: DEBIAN
Type: UNKNOWN
DSA-3417

Source: CCN
Type: IBM Security Bulletin 1975234
Open-source Bouncy Castle vulnerability affects IBM WebSphere Cast Iron (CVE-2015-7940)

Source: CCN
Type: IBM Security Bulletin 1978824 (Rational Performance Tester)
A vulnerbility in Bouncy Castle affects Rational Performance Tester (CVE-2015-7940 )

Source: CCN
Type: IBM Security Bulletin 2005279 (WebSphere Portal)
Multiple Vulnerabilities affect IBM WebSphere Portal Rich Media Edition

Source: CCN
Type: IBM Security Bulletin 2008901 (Security Guardium)
IBM Security Guardium is affected by Using Components with Known Vulnerabilities

Source: MLIST
Type: Third Party Advisory, VDB Entry
[oss-security] 20151022 CVE Request: invalid curve attack on bouncycastle

Source: MLIST
Type: Third Party Advisory, VDB Entry
[oss-security] 20151022 Re: CVE Request: invalid curve attack on bouncycastle

Source: CCN
Type: Oracle CPUApr2017
Oracle Critical Patch Update Advisory - April 2017

Source: CCN
Type: Oracle CPUApr2018
Oracle Critical Patch Update Advisory - April 2018

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

Source: CCN
Type: Oracle CPUJan2017
Oracle Critical Patch Update Advisory - January 2017

Source: CCN
Type: Oracle CPUJan2018
Oracle Critical Patch Update Advisory - January 2018

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Source: CCN
Type: Oracle CPUJul2017
Oracle Critical Patch Update Advisory - July 2017

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html

Source: CCN
Type: Oracle CPUJul2018
Oracle Critical Patch Update Advisory - July 2018

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

Source: CCN
Type: Oracle CPUOct2016
Oracle Critical Patch Update Advisory - October 2016

Source: CONFIRM
Type: Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html

Source: CCN
Type: Oracle CPUOct2017
Oracle Critical Patch Update Advisory - October 2017

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html

Source: BID
Type: UNKNOWN
79091

Source: CCN
Type: BID-79091
Bouncy Castle CVE-2015-7940 Information Disclosure Vulnerability

Source: SECTRACK
Type: UNKNOWN
1037036

Source: SECTRACK
Type: UNKNOWN
1037046

Source: SECTRACK
Type: UNKNOWN
1037053

Source: XF
Type: UNKNOWN
bouncycastle-cve20157940-info-disc(107739)

Source: CCN
Type: Bouncy Castle GIT Repository
Add automatic EC point validation for decoded points and for multipli

Source: UBUNTU
Type: UNKNOWN
USN-3727-1

Source: CCN
Type: IBM Security Bulletin 6320835 (Security Guardium Data Encryption)
Multiple Vulnerabilities in IBM Guardium Data Encryption (GDE)

Source: CCN
Type: IBM Security Bulletin 6494697 (Tivoli Business Service Manager)
Multiple vulnerabilities in Bouncy Castle Java Cryptography affect IBM Tivoli Business Manager

Source: CCN
Type: Oracle CPUApr2020
Oracle Critical Patch Update Advisory - April 2020

Source: N/A
Type: UNKNOWN
N/A

Source: CONFIRM
Type: UNKNOWN
https://www.oracle.com/technetwork/security-advisory/cpujan2019-5072801.html

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2015-7940

Vulnerable Configuration:Configuration 1:
  • cpe:/o:opensuse:leap:42.1:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:13.1:*:*:*:*:*:*:*
  • OR cpe:/o:opensuse:opensuse:13.2:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/a:bouncycastle:bouncy-castle-crypto-package:*:*:*:*:*:*:*:* (Version <= 1.50)

    • Configuration 3:
  • cpe:/a:oracle:application_testing_suite:12.5.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:application_testing_suite:12.5.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:application_testing_suite:12.5.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:enterprise_manager_ops_center:12.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:enterprise_manager_ops_center:12.2.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.54:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:peoplesoft_enterprise_peopletools:8.55:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:virtual_desktop_infrastructure:3.5.2:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:bouncycastle:legion-of-the-bouncy-castle:1.50:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:websphere_portal:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.3.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.3.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.3.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.5.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.5.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_portal:8.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.0.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.1.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.2.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.5.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.5.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.5.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.5.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.6.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.6.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.7:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.7.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.5.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.7.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.5.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:retail_open_commerce_platform_cloud_service:5.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:enterprise_manager:12.1.0.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.7.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:rational_performance_tester:8.7.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:business_intelligence:11.1.1.9.0::~~enterprise~~~:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:jdeveloper:12.1.3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:jdeveloper:12.2.1.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:micros_lucas:2.9.5:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:enterprise_manager:13.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:flexcube_universal_banking:11.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:flexcube_universal_banking:11.4.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:flexcube_universal_banking:12.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:flexcube_universal_banking:12.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:flexcube_universal_banking:12.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:flexcube_universal_banking:12.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:flexcube_universal_banking:12.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:retail_convenience_and_fuel_pos_software:2.1.132:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:business_process_management_suite:11.1.1.7.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:business_process_management_suite:11.1.1.9.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:business_process_management_suite:12.1.3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:business_process_management_suite:12.2.1.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:retail_open_commerce_platform_cloud_service:4.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:retail_open_commerce_platform_cloud_service:5.1:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:retail_open_commerce_platform_cloud_service:5.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:retail_open_commerce_platform_cloud_service:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:enterprise_repository:12.1.3.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:communications_convergence:3.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:communications_convergence:3.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium:10.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:webcenter_portal:11.1.1.9.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:webcenter_portal:12.2.1.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:webcenter_portal:12.2.1.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:business_intelligence:12.2.1.3.0::~~enterprise~~~:*:*:*:*:*
  • OR cpe:/a:oracle:jdeveloper:12.2.1.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:oracle:business_intelligence:12.2.1.4.0::~~enterprise~~~:*:*:*:*:*
  • OR cpe:/a:ibm:tivoli_business_service_manager:6.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:security_guardium_data_encryption:3.0.0.2:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20157940
    V
    		CVE-2015-7940
    2023-06-22
    oval:org.opensuse.security:def:7993
    P
    		bouncycastle-1.72-150200.3.12.1 on GA media (Moderate)
    2023-06-20
    oval:org.opensuse.security:def:3368
    P
    		squashfs-4.3-6.2 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:94998
    P
    		bouncycastle-1.64-3.3.1 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:1378
    P
    		Security update for the Linux Kernel (Live Patch 6 for SLE 15 SP3) (Important)
    2022-06-06
    oval:org.opensuse.security:def:112021
    P
    		bouncycastle-1.54-1.2 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:105577
    P
    		bouncycastle-1.54-1.2 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:101251
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:1904
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:62993
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:72712
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:100828
    P
    		enscript-1.6.6-1.17 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:66795
    P
    		Security update for python-httplib2 (Moderate)
    2021-05-31
    oval:org.opensuse.security:def:66703
    P
    		Security update for slurm_18_08 (Important)
    2020-12-18
    oval:org.opensuse.security:def:1847
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:117052
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62936
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:72655
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:94115
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:107494
    P
    		bouncycastle-1.64-1.63 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:73486
    P
    		bouncycastle on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49765
    P
    		zlib-devel-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49819
    P
    		bouncycastle on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:73368
    P
    		accountsservice on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:70046
    P
    		fontforge on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:70151
    P
    		bouncycastle on GA media (Moderate)
    2020-12-01
    oval:org.cisecurity:def:349
    P
    		DSA-3417-1 -- bouncycastle -- security update
    2016-02-26
    oval:com.ubuntu.bionic:def:201579400000000
    V
    		CVE-2015-7940 on Ubuntu 18.04 LTS (bionic) - low.
    2015-11-09
    oval:com.ubuntu.artful:def:20157940000
    V
    		CVE-2015-7940 on Ubuntu 17.10 (artful) - low.
    2015-11-09
    oval:com.ubuntu.xenial:def:20157940000
    V
    		CVE-2015-7940 on Ubuntu 16.04 LTS (xenial) - low.
    2015-11-09
    oval:com.ubuntu.xenial:def:201579400000000
    V
    		CVE-2015-7940 on Ubuntu 16.04 LTS (xenial) - low.
    2015-11-09
    oval:com.ubuntu.bionic:def:20157940000
    V
    		CVE-2015-7940 on Ubuntu 18.04 LTS (bionic) - low.
    2015-11-09
    oval:com.ubuntu.precise:def:20157940000
    V
    		CVE-2015-7940 on Ubuntu 12.04 LTS (precise) - low.
    2015-11-09
    oval:com.ubuntu.trusty:def:20157940000
    V
    		CVE-2015-7940 on Ubuntu 14.04 LTS (trusty) - low.
    2015-11-09
    BACK
    opensuse leap 42.1
    opensuse opensuse 13.1
    opensuse opensuse 13.2
    bouncycastle bouncy-castle-crypto-package *
    oracle application testing suite 12.5.0.1
    oracle application testing suite 12.5.0.2
    oracle application testing suite 12.5.0.3
    oracle enterprise manager ops center 12.1.4
    oracle enterprise manager ops center 12.2.2
    oracle peoplesoft enterprise peopletools 8.54
    oracle peoplesoft enterprise peopletools 8.55
    oracle virtual desktop infrastructure 3.5.2
    bouncycastle legion-of-the-bouncy-castle 1.50
    ibm websphere portal 8.0
    ibm rational performance tester 8.3.0.2
    ibm rational performance tester 8.3.0.1
    ibm rational performance tester 8.3
    ibm rational performance tester 8.2
    ibm rational performance tester 8.5
    ibm rational performance tester 8.3.0.3
    ibm rational performance tester 8.5.0.1
    ibm rational performance tester 8.5.0.2
    ibm websphere portal 8.5
    ibm rational performance tester 8.2.0.1
    ibm rational performance tester 8.2.0.2
    ibm rational performance tester 8.2.0.3
    ibm rational performance tester 8.2.0.4
    ibm rational performance tester 8.2.0.5
    ibm rational performance tester 8.2.0.6
    ibm rational performance tester 8.2.1
    ibm rational performance tester 8.2.1.1
    ibm rational performance tester 8.2.1.2
    ibm rational performance tester 8.2.1.3
    ibm rational performance tester 8.2.1.4
    ibm rational performance tester 8.2.1.5
    ibm rational performance tester 8.5.1
    ibm rational performance tester 8.5.1.1
    ibm rational performance tester 8.5.1.2
    ibm rational performance tester 8.5.1.3
    ibm rational performance tester 8.6
    ibm websphere cast iron cloud integration 7.0.0
    ibm websphere cast iron cloud integration 7.0.0.1
    ibm websphere cast iron cloud integration 7.0.0.2
    ibm rational performance tester 8.6.0.1
    ibm rational performance tester 8.6.0.2
    ibm rational performance tester 8.7
    ibm rational performance tester 8.7.0.1
    ibm websphere cast iron cloud integration 7.5.0.0
    ibm security guardium 10.0
    ibm rational performance tester 8.7.0.2
    ibm websphere cast iron cloud integration 7.5.0.1
    oracle retail open commerce platform cloud service 5.0
    oracle enterprise manager 12.1.0.5
    ibm rational performance tester 8.7.1
    ibm rational performance tester 8.7.1.1
    oracle business intelligence 11.1.1.9.0
    ibm security guardium 10.0.1
    ibm security guardium 10.1
    ibm security guardium 10.1.2
    oracle jdeveloper 12.1.3.0.0
    oracle jdeveloper 12.2.1.2.0
    oracle micros lucas 2.9.5
    oracle enterprise manager 13.2
    oracle flexcube universal banking 11.3.0
    oracle flexcube universal banking 11.4.0
    oracle flexcube universal banking 12.0.1
    oracle flexcube universal banking 12.0.2
    oracle flexcube universal banking 12.0.3
    oracle flexcube universal banking 12.1.0
    oracle flexcube universal banking 12.2.0
    oracle retail convenience and fuel pos software 2.1.132
    oracle business process management suite 11.1.1.7.0
    oracle business process management suite 11.1.1.9.0
    oracle business process management suite 12.1.3.0.0
    oracle business process management suite 12.2.1.2.0
    oracle retail open commerce platform cloud service 4.0
    oracle retail open commerce platform cloud service 5.1
    oracle retail open commerce platform cloud service 5.3
    oracle retail open commerce platform cloud service 6.0
    oracle enterprise repository 12.1.3.0.0
    oracle communications convergence 3.0
    oracle communications convergence 3.0.1
    ibm security guardium 10.1.3
    oracle webcenter portal 11.1.1.9.0
    oracle webcenter portal 12.2.1.2.0
    oracle webcenter portal 12.2.1.3.0
    oracle business intelligence 12.2.1.3.0
    oracle jdeveloper 12.2.1.3.0
    oracle business intelligence 12.2.1.4.0
    ibm tivoli business service manager 6.2.0
    ibm security guardium data encryption 3.0.0.2