Vulnerability CVE-2017-11147

Vulnerability Name:

CVE-2017-11147 (CCN-129104)

Assigned:

2017-07-10

Published:

2017-07-10

Updated:

2022-07-20

Summary:

In PHP before 5.6.30 and 7.x before 7.0.15, the PHAR archive handler could be used by attackers supplying malicious archive files to crash the PHP interpreter or potentially disclose information due to a buffer over-read in the phar_parse_pharfile function in ext/phar/phar.c.

CVSS v3 Severity:

9.1 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H)
7.9 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): None Availibility (A): High

8.2 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H)
7.1 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): High

CVSS v2 Severity:

6.4 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): Partial

8.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): Complete

Vulnerability Type:

CWE-125

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2017-11147

Source: CONFIRM
Type: Broken Link, Mailing List, Vendor Advisory
http://git.php.net/?p=php-src.git;a=commit;h=e5246580a85f031e1a3b8064edbaa55c1643a451

Source: CCN
Type: oss-sec Mailing List, Mon, 10 Jul 2017 13:33:53 +0200
Re: CVE IDs needed for PHP vulnerabilites (affects 5.6.30 and 7.0.20)

Source: CONFIRM
Type: Mailing List, Patch, Third Party Advisory
http://openwall.com/lists/oss-security/2017/07/10/6

Source: CCN
Type: PHP Web site
Version 5.6.31

Source: CONFIRM
Type: Release Notes, Vendor Advisory
http://php.net/ChangeLog-5.php

Source: CCN
Type: PHP Web site
Version 7.1.7

Source: CONFIRM
Type: Release Notes, Vendor Advisory
http://php.net/ChangeLog-7.php

Source: BID
Type: Third Party Advisory, VDB Entry
99607

Source: CCN
Type: BID-99607
PHP CVE-2017-11147 Memory Corruption Vulnerability

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:1296

Source: CCN
Type: PHP Sec Bug #73773
Seg fault when loading hostile phar

Source: CONFIRM
Type: Exploit, Issue Tracking, Vendor Advisory
https://bugs.php.net/bug.php?id=73773

Source: XF
Type: UNKNOWN
php-phar-cve201711147-dos(129104)

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20180112-0001/

Source: CONFIRM
Type: Third Party Advisory
https://www.tenable.com/security/tns-2017-12

Vulnerable Configuration:

Configuration 1:

cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.1.0 and < 7.1.1)

OR cpe:/a:php:php:*:*:*:*:*:*:*:* (Version < 5.6.30)

OR cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.0.0 and < 7.0.15)

Configuration 2:

cpe:/a:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:php:php:7.0.14:-:*:*:*:*:*:*

OR cpe:/a:php:php:5.6.29:-:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201711147	V	CVE-2017-11147	2022-09-02
oval:org.opensuse.security:def:10439	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:10710	P	Security update for the Linux Kernel (Important) (in QA)	2022-01-07
oval:org.opensuse.security:def:10438	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:10372	P	Security update for aaa_base (Moderate)	2021-12-03
oval:org.opensuse.security:def:10371	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:38680	P	Security update for OpenEXR (Moderate)	2021-12-01
oval:org.opensuse.security:def:30154	P	Security update for xen (Moderate)	2021-11-29
oval:org.opensuse.security:def:32228	P	Security update for java-1_7_0-openjdk (Important)	2021-11-24
oval:org.opensuse.security:def:10170	P	Security update for qemu (Important)	2021-11-04
oval:org.opensuse.security:def:10169	P	Security update for Salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:30243	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:10147	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:10148	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:11120	P	Security update for libspf2 (Critical)	2021-08-25
oval:org.opensuse.security:def:10139	P	Security update for djvulibre (Important)	2021-08-20
oval:org.opensuse.security:def:10140	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:33958	P	Security update for fetchmail (Moderate)	2021-08-18
oval:org.opensuse.security:def:14290	P	libspice-client-glib-2_0-8-0.33-1.33 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14950	P	libSoundTouch0-1.7.1-5.11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14278	P	libproxy1-0.4.13-16.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13952	P	libruby2_1-2_1-2.1.2-12.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14068	P	xorg-x11-server-7.6_1.18.3-57.34 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14105	P	cpio-2.11-35.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14223	P	libfreebl3-3.29.5-57.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13921	P	liblcms1-1.19-17.28 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14266	P	libopenssl-devel-1.0.2j-59.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14291	P	libspice-server1-0.12.8-1.17 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14951	P	libX11-6-1.6.2-12.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13929	P	libmpfr4-3.1.2-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14019	P	python-pywbem-0.7.0-4.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14085	P	apache2-mod_jk-1.2.40-5.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14197	P	libXinerama1-1.1.3-3.54 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13922	P	libldap-2_4-2-2.4.41-18.25.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14928	P	jakarta-commons-fileupload-1.1.1-122.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14267	P	libopus0-1.1-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13930	P	libmspack0-0.4-14.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14020	P	python-requests-2.8.1-6.11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14086	P	apache2-mod_nss-1.0.14-18.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14198	P	libXp6-1.0.2-3.57 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14277	P	libpoppler-glib8-0.43.0-15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14929	P	jakarta-taglibs-standard-1.1.1-255.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13951	P	libraptor2-0-2.0.10-3.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14067	P	xorg-x11-libs-7.6-45.14 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14104	P	coreutils-8.25-12.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14222	P	libexif12-0.6.21-6.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:35261	P	Security update for the Linux Kernel (Important)	2021-08-10
oval:org.opensuse.security:def:31225	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-07-21
oval:org.opensuse.security:def:33947	P	Security update for curl (Moderate)	2021-07-21
oval:org.opensuse.security:def:33946	P	Security update for systemd (Important)	2021-07-21
oval:org.opensuse.security:def:11099	P	Security update for fossil (Moderate)	2021-07-17
oval:org.opensuse.security:def:11098	P	Security update for claws-mail (Moderate)	2021-07-16
oval:org.opensuse.security:def:10685	P	Security update for the Linux Kernel (Important)	2021-07-15
oval:org.opensuse.security:def:38024	P	Security update for csync2 (Moderate)	2021-07-12
oval:org.opensuse.security:def:10296	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:38679	P	Security update for OpenEXR (Important)	2021-06-22
oval:org.opensuse.security:def:10277	P	Security update for spice-gtk (Moderate)	2021-06-10
oval:org.opensuse.security:def:10278	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:124641	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36319	P	vte-0.22.5-0.2.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16635	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16999	P	empathy-3.10.3-1.131 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17118	P	libfbembed2_5-2.5.2.26539-13.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17206	P	libvdpau1-32bit-1.1.1-6.73 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11412	P	libvorbis0-1.3.3-8.23 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17278	P	libsilc-1_1-2-1.1.10-24.128 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17029	P	libvirt-client-32bit-1.2.5-13.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17171	P	gstreamer-0_10-plugins-base-0.10.36-17.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17238	P	gnome-shell-calendar-3.20.4-77.17.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17286	P	libwpd-0_10-10-0.10.2-2.4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36277	P	pure-ftpd-1.0.22-3.25.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17283	P	libvpx1-32bit-1.3.0-3.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17033	P	pulseaudio-module-bluetooth-5.0-2.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17175	P	java-1_7_0-openjdk-plugin-1.6.2-2.8.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17242	P	gwenhywfar-lang-4.9.0beta-3.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124640	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17291	P	pidgin-plugin-otr-4.0.2-1.29 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11434	P	pcsc-ccid-1.4.14-1.45 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16634	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16995	P	bogofilter-1.2.4-3.56 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17114	P	lhasa-0.2.0-5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17202	P	libsilc-1_1-2-1.1.10-24.128 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10263	P	Security update for ceph (Important)	2021-06-02
oval:org.opensuse.security:def:10262	P	Security update for curl (Moderate)	2021-05-31
oval:org.opensuse.security:def:34422	P	Security update for samba (Important)	2021-04-29
oval:org.opensuse.security:def:10216	P	Security update for wpa_supplicant (Important)	2021-03-08
oval:org.opensuse.security:def:10215	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:32267	P	Security update for grub2 (Important)	2021-03-02
oval:org.opensuse.security:def:10397	P	Security update for salt (Critical)	2021-02-26
oval:org.opensuse.security:def:34638	P	Security update for ImageMagick (Moderate)	2021-02-25
oval:org.opensuse.security:def:10396	P	Security update for php7 (Important)	2021-02-24
oval:org.opensuse.security:def:30022	P	Security update for openvswitch (Important)	2021-02-12
oval:org.opensuse.security:def:34580	P	Security update for the Linux Kernel (Important)	2021-02-09
oval:org.opensuse.security:def:10297	P	Security update for go1.14 (Moderate)	2021-01-26
oval:org.opensuse.security:def:11121	P	Security update for viewvc (Moderate)	2021-01-19
oval:org.opensuse.security:def:34042	P	Security update for MozillaFirefox (Important)	2021-01-12
oval:org.opensuse.security:def:34333	P	Security update for openssl-1_1 (Important)	2020-12-10
oval:org.opensuse.security:def:29948	P	Security update for python-cryptography (Moderate)	2020-12-04
oval:org.opensuse.security:def:17320	P	gimp-2.8.18-9.3.26 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16991	P	zlib-devel-1.2.11-9.42 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35639	P	star-1.5final-28.19 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17352	P	libnewt0_52-0.52.16-1.83 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17325	P	gstreamer-0_10-plugins-good-0.10.31-16.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35568	P	java-1_6_0-ibm-1.6.0_sr7.0-1.6.21 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17380	P	pulseaudio-module-bluetooth-5.0-4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16948	P	php7-devel-7.0.7-50.85.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17384	P	raptor-2.0.10-3.67 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16987	P	xorg-x11-devel-7.6-45.14 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35529	P	cifs-mount-3.4.3-1.17.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35595	P	libopenssl0_9_8-0.9.8h-30.27.11 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17348	P	libmwaw-0_3-3-0.3.14-7.12.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31081	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:26895	P	findutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17462	P	Security update for compat-openssl098 (Important)	2020-12-01
oval:org.opensuse.security:def:17529	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:17671	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:10447	P	gnome-settings-daemon-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34726	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:30771	P	Security update for augeas (Moderate)	2020-12-01
oval:org.opensuse.security:def:34178	P	Security update for openssl1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:10752	P	libjson-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10461	P	lib3ds-1-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10529	P	libpcscspy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10591	P	python3-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38746	P	libxerces-c-3_1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39429	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:34782	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:38263	P	libXv1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38411	P	logrotate on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38630	P	krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18109	P	Security update for libical (Moderate)	2020-12-01
oval:org.opensuse.security:def:34781	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:27626	P	Security update for IBM Java 6	2020-12-01
oval:org.opensuse.security:def:31384	P	Security update for openvpn (Important)	2020-12-01
oval:org.opensuse.security:def:26970	P	libsamplerate on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27179	P	libdrm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27320	P	wireshark on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27524	P	openCryptoki on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17441	P	Security update for MozillaFirefox (Moderate)	2020-12-01
oval:org.opensuse.security:def:17762	P	Security update for gdk-pixbuf (Moderate)	2020-12-01
oval:org.opensuse.security:def:18426	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:31525	P	Security update for rsyslog	2020-12-01
oval:org.opensuse.security:def:31590	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:30783	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:30989	P	Security update for jakarta-commons-collections (Moderate)	2020-12-01
oval:org.opensuse.security:def:31138	P	Security update for lcms	2020-12-01
oval:org.opensuse.security:def:31381	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:31486	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:17745	P	Security update for spice (Moderate)	2020-12-01
oval:org.opensuse.security:def:35433	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:29937	P	Security update for libjasper	2020-12-01
oval:org.opensuse.security:def:17467	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:17534	P	Security update for cups, cups154 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17676	P	Security update for LibreOffice (Moderate)	2020-12-01
oval:org.opensuse.security:def:10448	P	gnome-shell-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38790	P	res-signingkeys on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39470	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:34793	P	Security update for amanda (Moderate)	2020-12-01
oval:org.opensuse.security:def:35013	P	Security update for gpg2 (Important)	2020-12-01
oval:org.opensuse.security:def:35171	P	Security update for krb5	2020-12-01
oval:org.opensuse.security:def:35421	P	Security update for openssl (Important)	2020-12-01
oval:org.opensuse.security:def:38747	P	libxml2-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28343	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37930	P	libopenssl-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38025	P	perl-Config-IniFiles on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38264	P	libXvMC1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38412	P	logwatch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38631	P	krb5-appl-clients on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17449	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:18113	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:37928	P	libopenjp2-7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30702	P	Security update for MozillaFirefox, mozilla-nss, mozilla-nspr (Important)	2020-12-01
oval:org.opensuse.security:def:30386	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:30595	P	Security update for php5 (Important)	2020-12-01
oval:org.opensuse.security:def:17728	P	Security update for ntp (Important)	2020-12-01
oval:org.opensuse.security:def:17767	P	Security update for ldb, samba, talloc, tdb, tevent (Important)	2020-12-01
oval:org.opensuse.security:def:18431	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26894	P	file-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17405	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:17493	P	Security update for kernel-firmware (Important)	2020-12-01
oval:org.opensuse.security:def:17639	P	Security update for jasper (Moderate)	2020-12-01
oval:org.opensuse.security:def:10460	P	lhasa-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34687	P	Security update for xen (Moderate)	2020-12-01
oval:org.opensuse.security:def:34751	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:30772	P	Security update for augeas (Moderate)	2020-12-01
oval:org.opensuse.security:def:34276	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:10761	P	libmusicbrainz-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10483	P	libapr1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10576	P	nut-cgi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10610	P	xfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38718	P	libpython2_7-1_0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38791	P	rpcbind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39471	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37940	P	libpng12-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38161	P	curl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38321	P	liblua5_2-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38571	P	cups-pk-helper on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17471	P	Security update for perl-DBI (Important)	2020-12-01
oval:org.opensuse.security:def:18135	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:27612	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:27670	P	Security update for rubygem-rack-cache	2020-12-01
oval:org.opensuse.security:def:31422	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26906	P	gmime on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27098	P	coolkey on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27236	P	lxc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27471	P	libpixman-1-0-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27573	P	texlive on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17453	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:18400	P	Security update for poppler (Moderate)	2020-12-01
oval:org.opensuse.security:def:37929	P	libopenssl-1_0_0-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31546	P	Security update for sane-backends (Moderate)	2020-12-01
oval:org.opensuse.security:def:30857	P	Security update for dnsmasq (Moderate)	2020-12-01
oval:org.opensuse.security:def:31437	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17733	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:34795	P	Security update for ansible (Moderate)	2020-12-01
oval:org.opensuse.security:def:35474	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29936	P	Security update for libidn (Moderate)	2020-12-01
oval:org.opensuse.security:def:17410	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:17498	P	Security update for ucode-intel (Moderate)	2020-12-01
oval:org.opensuse.security:def:17644	P	Security update for elfutils (Moderate)	2020-12-01
oval:org.opensuse.security:def:10774	P	libplist++-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39428	P	Security update for python-urllib3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34877	P	Security update for curl	2020-12-01
oval:org.opensuse.security:def:35114	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:35480	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38719	P	libpython3_4m1_0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28308	P	Security update for opensc (Moderate)	2020-12-01
oval:org.opensuse.security:def:10453	P	hplip-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37941	P	libpng15-15 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38162	P	cvs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38322	P	liblzo2-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38572	P	curl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17437	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:17475	P	Security update for freetype2 (Important)	2020-12-01
oval:org.opensuse.security:def:18139	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30683	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:30746	P	Security update for ansible (Moderate)	2020-12-01
oval:org.opensuse.security:def:30300	P	Security update for strongswan (Moderate)	2020-12-01
oval:org.opensuse.security:def:30540	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:30644	P	Security update for xorg-x11-libXrender	2020-12-01
oval:org.opensuse.security:def:17740	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18405	P	Security update for nasm (Moderate)	2020-12-01
oval:com.ubuntu.artful:def:201711147000	V	CVE-2017-11147 on Ubuntu 17.10 (artful) - medium.	2017-07-10
oval:com.ubuntu.xenial:def:2017111470000000	V	CVE-2017-11147 on Ubuntu 16.04 LTS (xenial) - medium.	2017-07-10
oval:com.ubuntu.trusty:def:201711147000	V	CVE-2017-11147 on Ubuntu 14.04 LTS (trusty) - medium.	2017-07-10
oval:com.ubuntu.xenial:def:201711147000	V	CVE-2017-11147 on Ubuntu 16.04 LTS (xenial) - medium.	2017-07-10

BACK