Vulnerability CVE-2015-8806

Vulnerability Name:

CVE-2015-8806 (CCN-110613)

Assigned:

2016-02-03

Published:

2016-02-03

Updated:

2020-09-11

Summary:

dict.c in libxml2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via an unexpected character immediately after the "<!DOCTYPE html" substring in a crafted HTML document.

CVSS v3 Severity:

7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

4.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L)
3.8 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

4.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-noinfo

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2015-8806

Source: CCN
Type: oss-sec Mailing List, Wed, 3 Feb 2016 12:12:16 -0500 (EST)
Re: Out-of-bounds Read in the libxml2's htmlParseNameComplex() function

Source: CCN
Type: IBM Security Bulletin 0717169 (Security Guardium)
IBM Security Guardium is affected by a OpenSource LibXML2 vulnerability

Source: CCN
Type: IBM Security Bulletin T1024318 (Flex System Manager Node)
IBM Flex System Manager (FSM) is affected by multiple libxml2 vulnerabilities

Source: CCN
Type: IBM Security Bulletin 1995691 (Cognos Business Intelligence)
IBM Cognos Business Intelligence Server 2016Q4 Security Updater : IBM Cognos Business Intelligence Server is affected by multiple vulnerabilities.

Source: CCN
Type: IBM Security Bulletin 1996032 (Tivoli Common Reporting)
IBM Tivoli Common Reporting (TCR) 2016Q4 Security Updater : TCR is affected by multiple vulnerabilities.

Source: CCN
Type: IBM Security Bulletin 1996417 (Cognos Analytics)
IBM Cognos Analytics is affected by multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 2001687 (Connections Docs)
IBM Connections Docs is Vulnerable to a Denial of Service (CVE-2015-8806)

Source: CCN
Type: IBM Security Bulletin 2010192 (Streams)
IBM Streams may be affected by XMLsoft Libxml2 vulnerabilities

Source: MLIST
Type: Mailing List, Third Party Advisory
[oss-security] 20160203 Re: Out-of-bounds Read in the libxml2's htmlParseNameComplex() function

Source: CONFIRM
Type: Third Party Advisory
http://www.oracle.com/technetwork/topics/security/bulletinjul2016-3090568.html

Source: BID
Type: Third Party Advisory, VDB Entry
82071

Source: CCN
Type: BID-82071
libxml2 CVE-2015-8806 Denial of Service Vulnerability

Source: UBUNTU
Type: Third Party Advisory
USN-2994-1

Source: CCN
Type: XMLsoft Web site
The XML C parser and toolkit of Gnome

Source: MISC
Type: Issue Tracking, Vendor Advisory
https://bugzilla.gnome.org/show_bug.cgi?id=749115

Source: CCN
Type: Red Hat Bugzilla Bug 1304636
(CVE-2015-8806) CVE-2015-8806 libxml2: heap-buffer overread in dict.c

Source: XF
Type: UNKNOWN
libxml2-cve20158806-dos(110613)

Source: GENTOO
Type: Third Party Advisory
GLSA-201701-37

Source: DEBIAN
Type: Third Party Advisory
DSA-3593

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2015-8806

Vulnerable Configuration:

Configuration 1:

cpe:/a:xmlsoft:libxml2:*:*:*:*:*:*:*:* (Version < 2.9.4)

Configuration 2:

cpe:/o:canonical:ubuntu_linux:12.04:*:*:*:esm:*:*:*

OR cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

OR cpe:/o:canonical:ubuntu_linux:15.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

Configuration 3:

cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:xmlsoft:libxml2:2.9.3:*:*:*:*:*:*:*

AND

cpe:/a:ibm:cognos_business_intelligence:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_business_intelligence:10.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_business_intelligence:10.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_business_intelligence:10.2.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_common_reporting:3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_common_reporting:3.1.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_common_reporting:3.1.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_common_reporting:3.1.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_common_reporting:3.1.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_analytics:11:*:*:*:*:*:*:*

OR cpe:/a:ibm:connections_docs:2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:3.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:3.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:4.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:4.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:4.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_common_reporting:3.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:4.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_analytics:11.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:streams:4.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:10.1.3:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20158806	V	CVE-2015-8806	2022-05-20
oval:org.opensuse.security:def:33108	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:33109	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:34610	P	Security update for MozillaFirefox (Important)	2021-12-12
oval:org.opensuse.security:def:19570	P	Security update for the Linux Kernel (Important)	2021-12-08
oval:org.opensuse.security:def:29453	P	Security update for ruby2.1 (Important)	2021-12-01
oval:org.opensuse.security:def:33996	P	Security update for pcre (Moderate)	2021-11-10
oval:org.opensuse.security:def:35276	P	Security update for pcre (Moderate)	2021-11-10
oval:org.opensuse.security:def:34582	P	Security update for transfig (Important)	2021-10-29
oval:org.opensuse.security:def:33731	P	Security update for postgresql10 (Important)	2021-10-20
oval:org.opensuse.security:def:31292	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:34566	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:33018	P	Security update for webkit2gtk3 (Important)	2021-10-06
oval:org.opensuse.security:def:55951	P	Security update for ghostscript (Critical)	2021-09-21
oval:org.opensuse.security:def:34541	P	Security update for gtk-vnc (Moderate)	2021-09-16
oval:org.opensuse.security:def:30116	P	Security update for python-PyYAML (Important)	2021-08-24
oval:org.opensuse.security:def:13884	P	libXxf86dga1-1.1.4-3.58 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14089	P	audiofile-0.3.6-10.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13819	P	file-5.19-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13995	P	p7zip-9.20.1-6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14064	P	xinetd-2.3.15-7.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13867	P	libQt5WebKit5-5.6.1-9.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14021	P	qemu-2.6.1-27.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14076	P	aaa_base-13.2+git20140911.61c1681-36.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14748	P	python-pyOpenSSL-16.0.0-4.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13902	P	libgnomesu-2.0.0-353.6.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14726	P	pcsc-ccid-1.4.25-4.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13820	P	fontconfig-2.11.1-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13996	P	pam-1.1.8-14.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14065	P	xlockmore-5.43-5.30 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14749	P	python-pywbem-0.7.0-4.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13883	P	libXvnc1-1.6.0-12.6 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14088	P	at-3.1.14-7.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13903	P	libgoa-1_0-0-3.20.4-7.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14727	P	perl-32bit-5.18.2-12.17.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13866	P	libQt5Concurrent5-5.6.1-11.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14020	P	python-requests-2.8.1-6.11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14075	P	MozillaFirefox-52.2.0esr-108.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:34502	P	Security update for the Linux Kernel (Important)	2021-08-10
oval:org.opensuse.security:def:31236	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-07-27
oval:org.opensuse.security:def:20473	P	Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP5) (Important)	2021-07-22
oval:org.opensuse.security:def:41439	P	Security update for the Linux Kernel (Important)	2021-07-13
oval:org.opensuse.security:def:32121	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:38369	P	Security update for xterm (Important)	2021-06-14
oval:org.opensuse.security:def:31199	P	Security update for freeradius-server (Moderate)	2021-06-11
oval:org.opensuse.security:def:20447	P	Security update for the Linux Kernel (Important)	2021-06-09
oval:org.opensuse.security:def:13730	P	sudo-1.8.10p3-1.62 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13722	P	shim-0.9-2.14 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16637	P	postgresql10-devel-10.5-1.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17156	P	bogofilter-1.2.4-5.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17245	P	java-1_7_0-openjdk-plugin-1.6.2-2.8.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12617	P	libraw9-0.15.4-21.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11419	P	libzmq3-4.0.4-2.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11549	P	gnutls-3.2.15-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11732	P	unixODBC-2.3.1-4.95 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11411	P	libvirt-1.2.5-13.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11666	P	libxerces-c-3_1-3.1.1-4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11793	P	dracut-044-87.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12595	P	libopus0-1.1-3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16603	P	libxcb-composite0-1.10-4.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17079	P	libuuid-devel-2.25-30.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16595	P	libunrar-devel-5.0.14-3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17046	P	dia-0.97.2-13.253 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11534	P	flash-player-11.2.202.548-111.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11668	P	libyaml-0-2-0.1.6-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11719	P	socat-1.7.2.4-1.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42596	P	libgdiplus0-2.6.7-0.5.76 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11644	P	libreoffice-5.0.2.2-13.14 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11774	P	coolkey-1.1.0-147.71 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11957	P	libvirt-2.0.0-26.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11636	P	libpoppler-glib8-0.24.4-3.14 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13751	P	xen-4.5.1_12-2.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36173	P	libQtWebKit4-32bit-4.6.3-5.34.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17057	P	icu-52.1-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17010	P	lcms-1.19-17.31 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17279	P	libstaroffice-0_0-0-0.0.5-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36132	P	g3utils-1.1.36-26.31 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42641	P	log4net-1.2.10-1.36 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11487	P	zoo-2.10-1020.62 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11643	P	libraw9-0.15.4-3.88 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11710	P	rhythmbox-3.0.2-1.92 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11759	P	alsa-1.0.27.2-11.10 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11893	P	libid3tag0-0.15.1b-182.58 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11944	P	libspice-server1-0.12.7-6.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13729	P	stunnel-5.00-3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13721	P	sblim-sfcb-1.4.8-8.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13752	P	xf86-video-intel-2.99.914-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:34453	P	Security update for shim (Important)	2021-06-08
oval:org.opensuse.security:def:17045	P	cyrus-sasl-digestmd5-32bit-2.1.26-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17188	P	libjavascriptcoregtk-1_0-0-2.4.11-23.20 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17257	P	libgstfft-1_0-0-32bit-1.8.3-12.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12392	P	SuSEfirewall2-3.6.312.333-3.13.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11441	P	pidgin-otr-4.0.0-6.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11568	P	krb5-appl-clients-1.0.3-1.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12370	P	wdiff-1.2.1-3.64 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11712	P	rpm-32bit-4.11.2-10.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11868	P	libXvnc1-1.6.0-12.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11935	P	libraw9-0.15.4-3.88 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:30202	P	Security update for libwebp (Critical)	2021-06-02
oval:org.opensuse.security:def:41269	P	Security update for djvulibre (Important)	2021-05-31
oval:org.opensuse.security:def:32931	P	Security update for djvulibre (Important)	2021-05-31
oval:org.opensuse.security:def:41541	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:35248	P	Security update for avahi (Moderate)	2021-05-04
oval:org.opensuse.security:def:56012	P	Security update for samba (Important)	2021-04-29
oval:org.opensuse.security:def:33900	P	Security update for java-1_7_0-openjdk (Moderate)	2021-04-29
oval:org.opensuse.security:def:32083	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:55877	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:30059	P	Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:33788	P	Security update for openssl-1_1 (Important)	2021-03-25
oval:org.opensuse.security:def:35288	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:34651	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:33777	P	Security update for openldap2 (Important)	2021-03-03
oval:org.opensuse.security:def:34640	P	Security update for java-1_8_0-ibm (Important)	2021-02-26
oval:org.opensuse.security:def:38429	P	Security update for python-Jinja2 (Important)	2021-02-25
oval:org.opensuse.security:def:34639	P	Security update for glibc (Moderate)	2021-02-25
oval:org.opensuse.security:def:33766	P	Security update for screen (Important)	2021-02-17
oval:org.opensuse.security:def:34024	P	Security update for screen (Important)	2021-02-17
oval:org.opensuse.security:def:33765	P	Security update for jasper (Important)	2021-02-16
oval:org.opensuse.security:def:31341	P	Security update for jasper (Important)	2021-02-16
oval:org.opensuse.security:def:55839	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)	2021-02-10
oval:org.opensuse.security:def:34622	P	Security update for python36 (Important)	2021-02-10
oval:org.opensuse.security:def:33944	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:30011	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:29396	P	Security update for sudo (Important)	2021-01-27
oval:org.opensuse.security:def:41109	P	Security update for ImageMagick (Moderate)	2021-01-15
oval:org.opensuse.security:def:29310	P	Security update for xen (Moderate)	2020-12-22
oval:org.opensuse.security:def:33876	P	Security update for postgresql12 (Important)	2020-12-04
oval:org.opensuse.security:def:16846	P	libmspack-devel-0.4-14.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16922	P	libzmq3-4.0.4-15.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16810	P	libexif-devel-0.6.21-8.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16837	P	libksba-devel-1.3.0-23.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:41952	P	file-32bit-4.24-43.17 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16779	P	libXpm-devel-3.5.11-5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16988	P	xorg-x11-server-sdk-1.19.6-8.18 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16803	P	libcorosync-devel-2.3.6-9.13.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16795	P	libatalk12-3.1.0-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16722	P	flac-devel-1.3.0-11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16956	P	python3-devel-3.4.6-25.29.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16979	P	virglrenderer-devel-0.5.0-11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:41958	P	fvwm2-2.5.26-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31081	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:32555	P	libmusicbrainz4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33199	P	logwatch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27080	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33574	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:27425	P	kdelibs4-doc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33837	P	Security update for gpg2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27527	P	openslp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28557	P	Security update for GnuTLS	2020-12-01
oval:org.opensuse.security:def:28898	P	Security update for flash-player (Critical)	2020-12-01
oval:org.opensuse.security:def:34395	P	Security update for unzip (Moderate)	2020-12-01
oval:org.opensuse.security:def:29237	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:29337	P	Security update for spacewalk	2020-12-01
oval:org.opensuse.security:def:17717	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:39269	P	Security update for SLES 12-SP1 Docker image (Important)	2020-12-01
oval:org.opensuse.security:def:28545	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:29179	P	Security update for microcode_ctl (Moderate)	2020-12-01
oval:org.opensuse.security:def:34970	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:29538	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:35335	P	Security update for mozilla-nspr (Moderate)	2020-12-01
oval:org.opensuse.security:def:35450	P	Security update for perl (Moderate)	2020-12-01
oval:org.opensuse.security:def:30533	P	Security update for java-1_6_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:55726	P	Security update for libxml2 (Important)	2020-12-01
oval:org.opensuse.security:def:29099	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:37740	P	axis on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29972	P	Security update for librsvg	2020-12-01
oval:org.opensuse.security:def:18809	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:38119	P	accountsservice on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30355	P	Security update for w3m (Moderate)	2020-12-01
oval:org.opensuse.security:def:19026	P	Security update for sqlite3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30498	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:19096	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:38588	P	eog on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37728	P	apache-commons-httpclient on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19319	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:37825	P	jakarta-taglibs-standard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30937	P	Security update for glib2 (Important)	2020-12-01
oval:org.opensuse.security:def:19532	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:38210	P	gstreamer-plugins-good on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38478	P	sane-backends on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31401	P	Security update for perl-DBD-mysql (Moderate)	2020-12-01
oval:org.opensuse.security:def:19809	P	Security update for evince (Important)	2020-12-01
oval:org.opensuse.security:def:39227	P	python3-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19311	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:53015	P	Security update for python-ecdsa (Moderate)	2020-12-01
oval:org.opensuse.security:def:40572	P	Security update for shibboleth-sp (Moderate)	2020-12-01
oval:org.opensuse.security:def:53698	P	Security update for gcc10, nvptx-tools (Moderate)	2020-12-01
oval:org.opensuse.security:def:41028	P	Security update for wget (Important)	2020-12-01
oval:org.opensuse.security:def:54183	P	dnsmasq on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41189	P	Security update for ovmf (Moderate)	2020-12-01
oval:org.opensuse.security:def:55652	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:41006	P	Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:53478	P	Security update for zstd (Moderate)	2020-12-01
oval:org.opensuse.security:def:41370	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:54208	P	gnome-online-accounts on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41781	P	Security update for postgresql93 (Moderate)	2020-12-01
oval:org.opensuse.security:def:54482	P	gnome-settings-daemon on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41907	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:53078	P	Security update for rmt-server (Important)	2020-12-01
oval:org.opensuse.security:def:55461	P	Security update for compat-openssl098 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32874	P	gpg2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56118	P	Security update for systemd (Moderate)	2020-12-01
oval:org.opensuse.security:def:33231	P	perl-libwww-perl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33342	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:56962	P	Security update for freerdp (Important)	2020-12-01
oval:org.opensuse.security:def:17943	P	Security update for libxml2 (Important)	2020-12-01
oval:org.opensuse.security:def:55438	P	Security update for ntp (Critical)	2020-12-01
oval:org.opensuse.security:def:33120	P	kde4-kgreeter-plugins on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26999	P	openCryptoki on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33486	P	Security update for libpoppler	2020-12-01
oval:org.opensuse.security:def:27372	P	automake on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27513	P	lzo-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30570	P	Security update for libxml2 (Important)	2020-12-01
oval:org.opensuse.security:def:33860	P	Security update for jakarta-commons-fileupload	2020-12-01
oval:org.opensuse.security:def:28841	P	Security update for vino	2020-12-01
oval:org.opensuse.security:def:34238	P	Security update for policycoreutils (Low)	2020-12-01
oval:org.opensuse.security:def:29188	P	Security update for mysql (Important)	2020-12-01
oval:org.opensuse.security:def:29293	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:29110	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:34871	P	Security update for cracklib (Moderate)	2020-12-01
oval:org.opensuse.security:def:29794	P	Security update for guile (Low)	2020-12-01
oval:org.opensuse.security:def:35423	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:29895	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17917	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:29098	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:29840	P	Security update for Linux kernel	2020-12-01
oval:org.opensuse.security:def:18751	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:38062	P	shadow on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18993	P	Security update for evince (Important)	2020-12-01
oval:org.opensuse.security:def:38428	P	ovmf on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19084	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:38544	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29756	P	Security update for ghostscript-library (Important)	2020-12-01
oval:org.opensuse.security:def:37741	P	bash on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30847	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:19498	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:38120	P	alsa on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19715	P	Security update for Linux Kernel Live Patch 13 for SLE 12 (Important)	2020-12-01
oval:org.opensuse.security:def:31380	P	Security update for openssl1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:19785	P	Security update for poppler (Moderate)	2020-12-01
oval:org.opensuse.security:def:38589	P	evince on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37729	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52875	P	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:40420	P	Security update for ucode-intel (Important)	2020-12-01
oval:org.opensuse.security:def:53532	P	Security update for java-1_8_0-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:40852	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:41144	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:54376	P	rsyslog on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52852	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:53240	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:41261	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:53923	P	MozillaFirefox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41717	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:54408	P	xlockmore on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41878	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:55439	P	Security update for openvpn (Important)	2020-12-01
oval:org.opensuse.security:def:32780	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33174	P	libproxy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56677	P	Security update for compat-openssl098 (Moderate)	2020-12-01
oval:org.opensuse.security:def:33319	P	vsftpd-openssl1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56881	P	Security update for sssd (Moderate)	2020-12-01
oval:org.opensuse.security:def:32556	P	libmysqlclient15-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26871	P	bzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33429	P	Security update for cpio	2020-12-01
oval:org.opensuse.security:def:27221	P	libtevent0-x86 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28209	P	Security update for libmspack (Moderate)	2020-12-01
oval:org.opensuse.security:def:19784	P	Security update for libxml2 (Important)	2020-12-01
oval:org.opensuse.security:def:26796	P	pam on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28756	P	Security update for libpng	2020-12-01
oval:org.opensuse.security:def:34149	P	Security update for openssh	2020-12-01
oval:org.opensuse.security:def:29134	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:29276	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:34735	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:35117	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:29745	P	Security update for gcc48 (Moderate)	2020-12-01
oval:org.opensuse.security:def:35384	P	Security update for ntp (Moderate)	2020-12-01
oval:org.opensuse.security:def:29851	P	Security update for Linux Kernel	2020-12-01
oval:org.opensuse.security:def:29767	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:18665	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:37961	P	libsoup-2_4-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18881	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:30459	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:38516	P	xalan-j2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30561	P	Security update for libotr	2020-12-01
oval:org.opensuse.security:def:19758	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29755	P	Security update for ghostscript-library (Important)	2020-12-01
oval:org.opensuse.security:def:37730	P	apache2-mod_apparmor on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30715	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:19440	P	Security update for memcached (Moderate)	2020-12-01
oval:org.opensuse.security:def:38063	P	shim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19682	P	Security update for apache2-mod_nss (Moderate)	2020-12-01
oval:org.opensuse.security:def:19773	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:38545	P	apache2-mod_jk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34063	P	Security update for libxml2 (Important)	2020-12-01
oval:org.opensuse.security:def:30630	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:40328	P	Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:53426	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:40750	P	Security update for xen (Moderate)	2020-12-01
oval:org.opensuse.security:def:54091	P	pam on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54295	P	libpng15-15 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:40316	P	Security update for openslp (Important)	2020-12-01
oval:org.opensuse.security:def:53100	P	Security update for cloud-init (Moderate)	2020-12-01
oval:org.opensuse.security:def:53757	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:41833	P	Security update for Linux Kernel Live Patch 12 for SLE 12 (Important)	2020-12-01
oval:org.opensuse.security:def:54601	P	libsmi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28244	P	Security update for libxml2 (Important)	2020-12-01
oval:org.opensuse.security:def:53077	P	Security update for cloud-init (Moderate)	2020-12-01
oval:org.opensuse.security:def:32645	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56569	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:33280	P	virt-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56843	P	Security update for dnsmasq (Moderate)	2020-12-01
oval:org.opensuse.security:def:26807	P	perl-spamassassin on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33334	P	Security update for curl (Important)	2020-12-01
oval:org.opensuse.security:def:27137	P	gnutls on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27474	P	libproxy-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27571	P	taglib-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39268	P	Security update for SLES 12 Docker image (Important)	2020-12-01
oval:org.opensuse.security:def:26795	P	opie on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28625	P	Security update for Image Magick	2020-12-01
oval:org.opensuse.security:def:34092	P	Security update for mgetty (Moderate)	2020-12-01
oval:org.opensuse.security:def:28982	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:29975	P	Security update for libsamplerate (Moderate)	2020-12-01
oval:org.opensuse.security:def:28546	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:35027	P	Security update for gtk2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29691	P	Security update for expat	2020-12-01
oval:org.opensuse.security:def:29833	P	Security update for kdebase4-workspace	2020-12-01
oval:org.opensuse.security:def:35494	P	Security update for policycoreutils (Low)	2020-12-01
oval:org.opensuse.security:def:18630	P	Security update for python, python-base (Moderate)	2020-12-01
oval:org.opensuse.security:def:37824	P	jakarta-commons-fileupload on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18843	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:38209	P	gstreamer-plugins-base on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30410	P	Security update for xorg-x11-libX11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38477	P	rzsz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30517	P	Security update for glibc	2020-12-01
oval:org.opensuse.security:def:19120	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:39226	P	python-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18622	P	Security update for exempi (Moderate)	2020-12-01
oval:org.opensuse.security:def:30641	P	Security update for xorg-x11-libXext	2020-12-01
oval:org.opensuse.security:def:19354	P	Security update for libsolv (Moderate)	2020-12-01
oval:org.opensuse.security:def:37962	P	libspice-client-glib-2_0-8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30994	P	Security update for jasper (Moderate)	2020-12-01
oval:org.opensuse.security:def:38370	P	libsolv-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38517	P	xdg-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31445	P	Security update for poppler (Moderate)	2020-12-01
oval:org.opensuse.security:def:30629	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:40317	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:53253	P	Security update for gnuplot (Moderate)	2020-12-01
oval:org.opensuse.security:def:40681	P	Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:53983	P	hardlink on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41092	P	Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:54257	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41218	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:52853	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:41017	P	Security update for sssd (Moderate)	2020-12-01
oval:org.opensuse.security:def:53651	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:54316	P	libssh2-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54520	P	libXfont1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17743	P	Security update for libxml2 (Important)	2020-12-01
oval:org.opensuse.security:def:41005	P	Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:32567	P	libsndfile on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55601	P	Security update for spice (Moderate)	2020-12-01
oval:org.opensuse.security:def:56284	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:56769	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:33386	P	Security update for compat-openssl097g (Moderate)	2020-12-01
oval:org.cisecurity:def:851	P	DSA-3593-1 -- libxml2 -- security update	2016-07-29
oval:org.opensuse.security:def:78585	P	Security update for libxml2 (Important)	2016-06-09
oval:org.opensuse.security:def:78360	P	Security update for libxml2 (Important)	2016-06-09
oval:com.ubuntu.precise:def:20158806000	V	CVE-2015-8806 on Ubuntu 12.04 LTS (precise) - low.	2016-04-13
oval:com.ubuntu.trusty:def:20158806000	V	CVE-2015-8806 on Ubuntu 14.04 LTS (trusty) - low.	2016-04-13
oval:com.ubuntu.xenial:def:201588060000000	V	CVE-2015-8806 on Ubuntu 16.04 LTS (xenial) - low.	2016-04-13
oval:com.ubuntu.xenial:def:20158806000	V	CVE-2015-8806 on Ubuntu 16.04 LTS (xenial) - low.	2016-04-13

BACK