Vulnerability CVE-2016-8734 - CERT Civis.Net

Vulnerability Name:

CVE-2016-8734 (CCN-119250)

Assigned:

2016-11-30

Published:

2016-11-30

Updated:

2020-10-20

Summary:

Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory.

CVSS v3 Severity:

6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H)
5.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

4.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:S/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2016-8734

Source: CCN
Type: Apache Web site
Unrestricted XML entity expansion in mod_dontdothat and Subversion clients using http(s)

Source: DEBIAN
Type: Third Party Advisory
DSA-3932

Source: BID
Type: Third Party Advisory, VDB Entry
94588

Source: CCN
Type: BID-94588
Apache Subversion CVE-2016-8734 XML External Entity Denial of Service Vulnerability

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1037361

Source: XF
Type: UNKNOWN
apache-subversion-cve20168734-dos(119250)

Source: MLIST
Type: Mailing List, Vendor Advisory
[announce] 20161129 [SECURITY] Apache Subversion 1.9.5 released

Source: CONFIRM
Type: Issue Tracking, Vendor Advisory
https://subversion.apache.org/security/CVE-2016-8734-advisory.txt

Source: MISC
Type: UNKNOWN
https://www.oracle.com/security-alerts/cpuoct2020.html

Vulnerable Configuration:

Configuration 1:

cpe:/a:apache:subversion:1.5.2:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.5.3:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.5.4:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.5.5:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.5.6:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.10:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.11:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.12:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.13:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.4:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.5:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.6:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.7:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.1:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.2:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.3:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.16:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.9.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.9.1:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.9.2:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.4.6:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.5.1:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.5.8:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.1:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.6:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.8:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.15:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.17:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.1:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.3:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.8:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.10:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.17:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.19:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.5:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.7:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.12:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.14:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.9.4:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.4.1:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.4.2:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.4.3:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.4.4:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.2:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.3:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.4:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.5:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.18:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.19:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.20:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.21:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.23:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.12:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.13:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.14:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.15:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.8:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.9:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.10:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.11:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.4.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.4.5:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.5.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.5.7:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.7:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.9:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.14:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.6.16:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.2:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.9:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.11:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.16:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.18:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.20:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.4:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.6:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.13:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.15:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.9.3:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:apache:subversion:1.6.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.5.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.4.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.7.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.8.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.9.0:*:*:*:*:*:*:*

OR cpe:/a:apache:subversion:1.9.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20168734	V	CVE-2016-8734	2023-06-22
oval:org.opensuse.security:def:8066	P	subversion-bash-completion-1.14.1-150400.3.8 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:7811	P	subversion-1.14.1-150400.3.8 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:629	P	Security update for python-Flask-Security-Too (Moderate) (in QA)	2022-09-27
oval:org.opensuse.security:def:569	P	Security update for libnbd (Moderate)	2022-07-11
oval:org.opensuse.security:def:3205	P	libltdl7-2.4.2-17.4.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3429	P	apache-commons-httpclient-3.1-4.364 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3529	P	jakarta-commons-fileupload-1.1.1-122.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:1597	P	Security update for the Linux Kernel (Important)	2022-06-24
oval:org.opensuse.security:def:95059	P	subversion-bash-completion-1.14.1-150400.3.8 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95159	P	subversion-server-1.14.1-150400.3.8 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94835	P	subversion-1.14.1-150400.3.8 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:1075	P	Security update for webkit2gtk3 (Important)	2022-06-14
oval:org.opensuse.security:def:313	P	subversion-1.10.6-3.15.1 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:274	P	powerpc-utils-1.3.8-7.1 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:1368	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15 SP3) (Important)	2022-06-06
oval:org.opensuse.security:def:1661	P	Security update for python-Twisted (Moderate)	2022-04-29
oval:org.opensuse.security:def:869	P	Security update for python-pip (Moderate)	2022-04-28
oval:org.opensuse.security:def:1321	P	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP3) (Important)	2022-04-25
oval:org.opensuse.security:def:1242	P	Security update for cyrus-sasl (Important)	2022-03-07
oval:org.opensuse.security:def:1425	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP3) (Critical)	2022-02-16
oval:org.opensuse.security:def:94248	P	(Important)	2022-01-28
oval:org.opensuse.security:def:895	P	Security update for qemu (Low)	2022-01-25
oval:org.opensuse.security:def:1542	P	Security update for apache2 (Important)	2022-01-17
oval:org.opensuse.security:def:112862	P	libsvn_auth_gnome_keyring-1-0-1.9.5-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:10430	P	Security update for libsndfile (Important)	2022-01-11
oval:org.opensuse.security:def:916	P	Security update for libvirt (Important)	2022-01-04
oval:org.opensuse.security:def:10708	P	Security update for gegl (Important)	2021-12-31
oval:org.opensuse.security:def:68097	P	Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP1) (Important)	2021-12-14
oval:org.opensuse.security:def:1789	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:10699	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:100664	P	(Important)	2021-10-12
oval:org.opensuse.security:def:10347	P	Security update for MozillaFirefox (Important)	2021-10-11
oval:org.opensuse.security:def:106323	P	libsvn_auth_gnome_keyring-1-0-1.9.5-1.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:10657	P	Security update for ffmpeg (Important)	2021-09-23
oval:org.opensuse.security:def:103732	P	subversion-server-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63242	P	subversion-server-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71360	P	patch-2.7.6-3.5 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71247	P	libblkid-devel-2.33.1-2.28 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:2153	P	subversion-server-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:90077	P	subversion-server-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:103468	P	subversion-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71337	P	libxml2-2-2.9.7-3.6.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71399	P	subversion-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:96778	P	subversion-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61658	P	subversion-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:97042	P	subversion-server-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:89813	P	subversion-1.10.0-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71169	P	dhcp-4.3.5-4.15 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:64573	P	Security update for openssl-1_1 (Low)	2021-09-07
oval:org.opensuse.security:def:66917	P	Security update for java-11-openjdk (Important)	2021-09-03
oval:org.opensuse.security:def:64750	P	Security update for dbus-1 (Moderate)	2021-08-23
oval:org.opensuse.security:def:10322	P	Security update for openexr (Important)	2021-08-20
oval:org.opensuse.security:def:70273	P	Security update for postgresql10 (Moderate)	2021-08-19
oval:org.opensuse.security:def:47526	P	wget-1.14-20.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47643	P	hplip-3.16.11-1.33 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47794	P	libtasn1-4.9-3.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48057	P	kernel-default-4.12.14-120.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47921	P	xen-4.11.0_08-1.11 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47438	P	libz1-1.2.8-11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47719	P	libicu-doc-52.1-8.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47791	P	libssh4-0.6.3-12.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47437	P	libyaml-0-2-0.1.6-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48149	P	libmodplug1-0.8.9.0+git20170610.f6dd59a-15.4.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47952	P	apache2-mod_nss-1.0.14-19.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47452	P	openssh-7.2p2-69.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47851	P	perl-HTML-Parser-3.71-1.145 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48005	P	fetchmail-6.3.26-12.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48297	P	rsync-3.1.3-1.19 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48151	P	libmspack0-0.4-14.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48023	P	gnome-settings-daemon-3.20.1-50.16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47573	P	cifs-utils-6.5-9.3.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47943	P	accountsservice-0.6.42-16.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48089	P	libXvnc1-1.6.0-22.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48216	P	libvirt-5.1.0-11.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47542	P	zoo-2.10-1020.56 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47766	P	libpng16-16-1.6.8-14.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48091	P	libXxf86vm1-1.1.3-3.53 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47541	P	yast2-users-3.2.11-1.47 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46931	P	e2fsprogs-1.42.11-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48247	P	opensc-0.13.0-3.3.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47556	P	apache2-mod_nss-1.0.14-19.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47898	P	syslog-service-2.0-778.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48305	P	shadow-4.2.1-34.20 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47091	P	libvdpau1-1.1.1-6.73 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47124	P	perl-HTML-Parser-3.71-1.145 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48318	P	sysstat-12.0.2-10.24.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47090	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47677	P	libXfont2-2-2.0.3-1.19 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47990	P	dbus-1-glib-0.100.2-3.58 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47105	P	mipv6d-2.0.2.umip.0.4-19.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47256	P	freeradius-server-3.0.14-1.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47597	P	dpdk-17.11.4-3.6 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47870	P	python-requests-2.11.1-6.28.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48138	P	libkpathsea6-6.2.0dev-22.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47596	P	dovecot22-2.2.31-19.11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47226	P	cpp48-4.8.5-30.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47348	P	libgnomesu-2.0.0-353.6.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47611	P	ft2demos-2.6.3-7.15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48002	P	eog-3.20.4-7.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48352	P	yast2-3.2.50-4.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47391	P	libpcsclite1-1.8.10-6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47419	P	libthai-data-0.1.25-4.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47496	P	rtkit-0.11_git201205151338-8.14 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47390	P	libpcre1-32bit-8.39-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47732	P	libksba8-1.3.0-23.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48094	P	libarchive13-3.1.2-26.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47405	P	libruby2_1-2_1-2.1.9-18.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47551	P	apache-commons-daemon-1.0.15-6.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47710	P	libgme0-0.6.0-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47925	P	xlockmore-5.43-5.30 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48242	P	mipv6d-2.0.2.umip.0.4-19.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47856	P	pigz-2.3-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:101405	P	subversion-server-1.10.6-3.15.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63379	P	subversion-server-1.10.6-3.15.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2290	P	subversion-server-1.10.6-3.15.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:72072	P	subversion-1.10.6-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72763	P	subversion-bash-completion-1.10.6-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62331	P	subversion-1.10.6-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100876	P	libX11-6-1.6.5-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63044	P	subversion-bash-completion-1.10.6-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100961	P	libprocps7-3.3.15-7.16.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1020	P	krb5-1.16.3-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1955	P	subversion-bash-completion-1.10.6-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:101089	P	subversion-1.10.6-3.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:10120	P	Security update for curl (Moderate)	2021-07-21
oval:org.opensuse.security:def:69882	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:66842	P	Security update for ovmf (Important)	2021-06-24
oval:org.opensuse.security:def:68007	P	Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:67997	P	Security update for the Linux Kernel (Live Patch 23 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:10098	P	Security update for MozillaFirefox (Important)	2021-06-09
oval:org.opensuse.security:def:66825	P	Security update for MozillaFirefox (Important)	2021-06-09
oval:org.opensuse.security:def:48594	P	perl-5.18.2-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48661	P	ImageMagick-6.8.8.1-5.21 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48715	P	dia-0.97.2-13.253 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48456	P	libFLAC++6-1.3.0-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17272	P	libpodofo0_9_2-0.9.2-3.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17160	P	drm-kmp-default-4.9.33_k4.4.73_5-2.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48602	P	ppp-2.4.7-1.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48665	P	colord-1.1.7-2.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48540	P	libproxy1-0.4.13-16.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17191	P	libndp0-1.6-2.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11381	P	libmysqlclient18-10.0.11-6.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16585	P	libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48667	P	dia-0.97.2-13.253 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11359	P	libfbembed2_5-2.5.2.26539-13.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46796	P	mutt-1.5.21-49.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17227	P	colord-1.3.3-12.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:71104	P	subversion-1.10.0-1.24 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46795	P	mozilla-nspr-32bit-4.10.10-9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48698	P	libvirt-client-32bit-1.2.5-13.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48956	P	libyaml-cpp0_5-0.5.3-3.3.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17264	P	libnautilus-extension1-32bit-3.20.3-23.6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48511	P	libjbig2-2.0-12.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46810	P	patch-2.7.5-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48657	P	yast2-3.1.206-36.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48769	P	empathy-3.12.12-5.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:72597	P	subversion-bash-completion-1.10.0-1.24 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48595	P	perl-Config-IniFiles-2.82-3.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48722	P	gimp-2.8.10-1.164 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61363	P	subversion-1.10.0-1.24 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48451	P	kbd-1.15.5-8.7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48389	P	cpp48-4.8.5-30.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48753	P	pidgin-otr-4.0.0-6.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48516	P	libldap-2_4-2-2.4.41-18.25.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62878	P	subversion-bash-completion-1.10.0-1.24 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48824	P	bash-lang-4.3-82.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48547	P	libsmi-0.4.8-18.55 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48498	P	libgraphite2-3-1.3.1-6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48618	P	rsyslog-8.4.0-14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48436	P	groff-1.22.2-5.287 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17018	P	libmysqlclient_r18-10.0.11-6.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48563	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124591	P	libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:71056	P	minicom-2.7.1-1.19 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17103	P	gcc48-gij-32bit-4.8.5-30.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:73608	P	Security update for permissions (Important)	2021-05-04
oval:org.opensuse.security:def:10247	P	Security update for stunnel (Important)	2021-05-03
oval:org.opensuse.security:def:66750	P	Security update for libdwarf (Low)	2021-04-22
oval:org.opensuse.security:def:70198	P	Security update for open-iscsi (Important)	2021-04-13
oval:org.opensuse.security:def:64469	P	Security update for opensc (Moderate)	2021-04-13
oval:org.opensuse.security:def:10228	P	Security update for libass (Important)	2021-03-24
oval:org.opensuse.security:def:64663	P	Security update for openldap2 (Important)	2021-03-08
oval:org.opensuse.security:def:10411	P	Security update for openldap2 (Important)	2021-03-08
oval:org.opensuse.security:def:10408	P	Security update for postgresql12 (Moderate)	2021-03-03
oval:org.opensuse.security:def:10213	P	Security update for grub2 (Important)	2021-03-02
oval:org.opensuse.security:def:64660	P	Security update for bind (Important)	2021-03-02
oval:org.opensuse.security:def:10400	P	Security update for rpmlint (Moderate)	2021-03-01
oval:org.opensuse.security:def:10398	P	Security update for glibc (Important)	2021-02-26
oval:org.opensuse.security:def:69987	P	Security update for glibc (Important)	2021-02-26
oval:org.opensuse.security:def:67816	P	Security update for the Linux Kernel (Important)	2021-02-11
oval:org.opensuse.security:def:10389	P	Security update for openvswitch (Important)	2021-02-11
oval:org.opensuse.security:def:10166	P	Security update for java-11-openjdk (Important)	2021-02-09
oval:org.opensuse.security:def:10090	P	Security update for wavpack (Moderate)	2021-01-21
oval:org.opensuse.security:def:94163	P	(Important)	2021-01-20
oval:org.opensuse.security:def:93951	P	(Moderate)	2021-01-20
oval:org.opensuse.security:def:10632	P	Security update for PackageKit (Low)	2020-12-22
oval:org.opensuse.security:def:16976	P	typelib-1_0-WebKit2WebExtension-4_0-2.24.4-2.47.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61984	P	subversion-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116888	P	subversion-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2098	P	subversion-server-1.10.0-1.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17306	P	bash-lang-4.3-83.23.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90005	P	subversion-bash-completion-1.10.0-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62984	P	subversion-bash-completion-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17391	P	typelib-1_0-Gtk-2_0-2.24.31-9.6.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49010	P	libgadu3-1.11.4-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1837	P	subversion-bash-completion-1.10.0-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107330	P	subversion-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63306	P	subversion-server-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17337	P	libatalk12-3.1.0-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117100	P	subversion-bash-completion-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17369	P	libtag1-32bit-1.9.1-1.265 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16895	P	libsvn_auth_gnome_keyring-1-0-1.10.6-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71450	P	bubblewrap-0.4.1-1.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1895	P	subversion-bash-completion-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107542	P	subversion-bash-completion-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117185	P	subversion-server-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72645	P	subversion-bash-completion-1.10.0-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2217	P	subversion-server-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103660	P	subversion-bash-completion-1.10.0-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63187	P	subversion-server-1.10.0-1.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16984	P	xen-devel-4.12.1_06-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4059	P	libsvn_auth_gnome_keyring-1-0-1.10.6-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71725	P	subversion-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107627	P	subversion-server-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62926	P	subversion-bash-completion-1.10.0-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72703	P	subversion-bash-completion-1.10.6-3.6.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:27035	P	sudo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73533	P	subversion-bash-completion on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73415	P	libcairo2-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27163	P	krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49755	P	perl-DNS-LDNS on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49809	P	subversion-bash-completion on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26959	P	libnewt0_52 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27244	P	mutt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67716	P	libpng16-16 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50048	P	apache2-mod_jk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50102	P	subversion-server on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27301	P	sysstat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17448	P	Security update for xerces-c (Moderate)	2020-12-01
oval:org.opensuse.security:def:73490	P	cargo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:70093	P	libjasper-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66539	P	libthai-data on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66631	P	subversion on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27385	P	cvs-doc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10721	P	libblkid-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49812	P	zlib-devel-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49866	P	subversion-bash-completion on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17479	P	Security update for spice-gtk (Moderate)	2020-12-01
oval:org.opensuse.security:def:18124	P	Security update for subversion (Important)	2020-12-01
oval:org.opensuse.security:def:18098	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:27536	P	php53-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17426	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:67907	P	libgypsy-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17515	P	Security update for libssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:64382	P	libsmi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49282	P	openslp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49336	P	subversion on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27589	P	xorg-x11-libxcb-devel-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17438	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:28408	P	Security update for subversion (Important)	2020-12-01
oval:org.opensuse.security:def:17625	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:28373	P	Recommended update for python-setuptools (Moderate)	2020-12-01
oval:org.opensuse.security:def:70168	P	graphviz-perl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27677	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:10476	P	libXt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27638	P	Security update for pcp	2020-12-01
oval:org.opensuse.security:def:17460	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:49929	P	python2-salt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49983	P	subversion-server on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17657	P	Security update for libpng12 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18412	P	Security update for subversion (Important)	2020-12-01
oval:org.opensuse.security:def:27691	P	Security update for xorg-x11-libXt	2020-12-01
oval:org.opensuse.security:def:18386	P	Security update for postgresql94 (Moderate)	2020-12-01
oval:org.opensuse.security:def:73322	P	subversion on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10523	P	libneon-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17714	P	Security update for ghostscript (Low)	2020-12-01
oval:org.opensuse.security:def:73204	P	libpolkit0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27735	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:49708	P	perl-File-Path on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49762	P	subversion-bash-completion on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10538	P	libreoffice-sdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17726	P	Security update for openssl (Important)	2020-12-01
oval:org.opensuse.security:def:11071	P	libsvn_auth_gnome_keyring-1-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:11049	P	libpoppler-cpp0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26971	P	libsndfile on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26960	P	libopensc2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10557	P	libusbmuxd-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17748	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:49984	P	uuidd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50038	P	subversion-server on GA media (Moderate)	2020-12-01
oval:com.ubuntu.cosmic:def:201687340000000	V	CVE-2016-8734 on Ubuntu 18.10 (cosmic) - low.	2017-10-16
oval:com.ubuntu.artful:def:20168734000	V	CVE-2016-8734 on Ubuntu 17.10 (artful) - low.	2017-10-16
oval:com.ubuntu.trusty:def:20168734000	V	CVE-2016-8734 on Ubuntu 14.04 LTS (trusty) - low.	2017-10-16
oval:com.ubuntu.bionic:def:201687340000000	V	CVE-2016-8734 on Ubuntu 18.04 LTS (bionic) - low.	2017-10-16
oval:com.ubuntu.bionic:def:20168734000	V	CVE-2016-8734 on Ubuntu 18.04 LTS (bionic) - low.	2017-10-16
oval:com.ubuntu.xenial:def:20168734000	V	CVE-2016-8734 on Ubuntu 16.04 LTS (xenial) - low.	2017-10-16
oval:com.ubuntu.xenial:def:201687340000000	V	CVE-2016-8734 on Ubuntu 16.04 LTS (xenial) - low.	2017-10-16
oval:com.ubuntu.cosmic:def:20168734000	V	CVE-2016-8734 on Ubuntu 18.10 (cosmic) - low.	2017-10-16
oval:com.ubuntu.disco:def:201687340000000	V	CVE-2016-8734 on Ubuntu 19.04 (disco) - low.	2017-10-16
oval:com.ubuntu.precise:def:20168734000	V	CVE-2016-8734 on Ubuntu 12.04 LTS (precise) - low.	2016-11-30