Vulnerability CVE-2017-13077 - CERT Civis.Net

Vulnerability Name:

CVE-2017-13077 (CCN-133431)

Assigned:

2017-10-16

Published:

2017-10-16

Updated:

2019-10-03

Summary:

Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK) during the four-way handshake, allowing an attacker within radio range to replay, decrypt, or spoof frames.

CVSS v3 Severity:

6.8 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N)
6.1 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Adjacent Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): None

8.1 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N)
7.3 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Adjacent Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): None

8.1 High (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N)
7.3 High (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Adjacent Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): None

CVSS v2 Severity:

5.4 Medium (CVSS v2 Vector: AV:A/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Adjacent_Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.8 High (CCN CVSS v2 Vector: AV:A/AC:L/Au:N/C:C/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Adjacent_Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-330
CWE-323

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2017-13077

Source: CCN
Type: FortiGuard Advisory FG-IR-17-196
Key Reinstallation Attacks: Cryptographic/protocol attack against WPA2

Source: CCN
Type: Aruba Product Security Advisory Advisory ID: ARUBA-PSA-2017-007
WPA2 Key Reinstallation Vulnerabilities

Source: CONFIRM
Type: Third Party Advisory
http://www.arubanetworks.com/assets/alert/ARUBA-PSA-2017-007.txt

Source: DEBIAN
Type: Third Party Advisory
DSA-3999

Source: CCN
Type: IBM Security Bulletin T1026222 (PowerKVM)
Vulnerabilities in wpa_supplicant affect PowerKVM (KRACK)

Source: CCN
Type: US-CERT VU#228519
Wi-Fi Protected Access II (WPA2) handshake traffic can be manipulated to induce nonce and session key reuse

Source: CERT-VN
Type: Third Party Advisory, US Government Resource
VU#228519

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpuapr2018-3678067.html

Source: CCN
Type: Oracle CPUJan2018
Oracle Critical Patch Update Advisory - January 2018

Source: CONFIRM
Type: UNKNOWN
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Source: BID
Type: Third Party Advisory, VDB Entry
101274

Source: CCN
Type: BID-101274
WPA2 Key Reinstallation Multiple Security Weaknesses

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1039573

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1039576

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1039577

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1039578

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1039581

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1039585

Source: SECTRACK
Type: UNKNOWN
1041432

Source: UBUNTU
Type: Third Party Advisory
USN-3455-1

Source: CCN
Type: Wi-Fi Alliance Web site
WPA2 (Wi-Fi Protected Access 2)

Source: REDHAT
Type: Third Party Advisory
RHSA-2017:2907

Source: REDHAT
Type: Third Party Advisory
RHSA-2017:2911

Source: CONFIRM
Type: Third Party Advisory
https://access.redhat.com/security/vulnerabilities/kracks

Source: CONFIRM
Type: UNKNOWN
https://cert-portal.siemens.com/productcert/pdf/ssa-901333.pdf

Source: CONFIRM
Type: UNKNOWN
https://cert.vde.com/en-us/advisories/vde-2017-003

Source: CONFIRM
Type: UNKNOWN
https://cert.vde.com/en-us/advisories/vde-2017-005

Source: XF
Type: UNKNOWN
wpa2-cve201713077-sec-bypass(133431)

Source: MLIST
Type: UNKNOWN
[debian-lts-announce] 20181113 [SECURITY] [DLA 1573-1] firmware-nonfree security update

Source: CCN
Type: INTEL-SA-00101
One or more Intel Products affected by the Wi-Fi Protected Access II (WPA2) protocol vulnerability

Source: FREEBSD
Type: Third Party Advisory
FreeBSD-SA-17:07

Source: GENTOO
Type: UNKNOWN
GLSA-201711-03

Source: CONFIRM
Type: UNKNOWN
https://source.android.com/security/bulletin/2017-11-01

Source: CONFIRM
Type: UNKNOWN
https://source.android.com/security/bulletin/2018-04-01

Source: CONFIRM
Type: UNKNOWN
https://source.android.com/security/bulletin/2018-06-01

Source: CCN
Type: Apple security document HT208221
About the security content of macOS High Sierra 10.13.1, Security Update 2017-001 Sierra, and Security Update 2017-004 El Capitan

Source: CCN
Type: Apple security document HT208222
About the security content of iOS 11.1

Source: CCN
Type: Apple security document HT208258
About the security content of AirPort Base Station Firmware Update 7.6.9

Source: CCN
Type: Apple security document HT208354
About the security content of AirPort Base Station Firmware Update 7.7.9

Source: CCN
Type: Apple security document HT208847
About the security content of Wi-Fi Update for Boot Camp 6.4.0

Source: CONFIRM
Type: UNKNOWN
https://support.apple.com/HT208219

Source: CONFIRM
Type: UNKNOWN
https://support.apple.com/HT208220

Source: CONFIRM
Type: UNKNOWN
https://support.apple.com/HT208221

Source: CONFIRM
Type: UNKNOWN
https://support.apple.com/HT208222

Source: CONFIRM
Type: UNKNOWN
https://support.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03792en_us

Source: CONFIRM
Type: Third Party Advisory
https://support.lenovo.com/us/en/product_security/LEN-17420

Source: CCN
Type: Cisco Security Advisory cisco-sa-20171016-wpa
Multiple Vulnerabilities in Wi-Fi Protected Access and Wi-Fi Protected Access II

Source: CISCO
Type: Third Party Advisory
20171016 Multiple Vulnerabilities in Wi-Fi Protected Access and Wi-Fi Protected Access II

Source: MISC
Type: Third Party Advisory
https://w1.fi/security/2017-1/wpa-packet-number-reuse-with-replayed-messages.txt

Source: CCN
Type: KRACK Web site
Key Reinstallation Attacks Breaking WPA2 by forcing nonce reuse

Source: MISC
Type: Technical Description, Third Party Advisory
https://www.krackattacks.com/

Vulnerable Configuration:

Configuration 1:

cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:17.04:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:freebsd:freebsd:*:*:*:*:*:*:*:*

OR cpe:/o:freebsd:freebsd:10:*:*:*:*:*:*:*

OR cpe:/o:freebsd:freebsd:10.4:*:*:*:*:*:*:*

OR cpe:/o:freebsd:freebsd:11:*:*:*:*:*:*:*

OR cpe:/o:freebsd:freebsd:11.1:*:*:*:*:*:*:*

OR cpe:/o:opensuse:leap:42.2:*:*:*:*:*:*:*

OR cpe:/o:opensuse:leap:42.3:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:7:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:7:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:w1.fi:hostapd:0.2.4:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.2.5:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.2.6:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.2.8:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.3.7:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.3.9:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.3.10:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.3.11:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.4.7:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.4.8:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.4.9:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.4.10:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.4.11:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.5.7:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.5.8:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.5.9:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.5.10:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.5.11:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.6.8:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.6.9:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.6.10:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:0.7.3:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:1.0:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:1.1:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:2.0:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:2.1:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:2.2:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:2.3:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:2.4:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:2.5:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:hostapd:2.6:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.2.4:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.2.5:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.2.6:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.2.7:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.2.8:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.3.7:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.3.8:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.3.9:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.3.10:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.3.11:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.4.7:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.4.8:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.4.9:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.4.10:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.4.11:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.5.7:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.5.8:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.5.9:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.5.10:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.5.11:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.6.8:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.6.9:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.6.10:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:0.7.3:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:1.0:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:1.1:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:2.0:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:2.1:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:2.2:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:2.3:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:2.4:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:2.5:*:*:*:*:*:*:*

OR cpe:/a:w1.fi:wpa_supplicant:2.6:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:suse:linux_enterprise_desktop:12:sp2:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_desktop:12:sp3:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_point_of_sale:11:sp3:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_server:11:sp3:*:*:*:ltss:*:*

OR cpe:/o:suse:linux_enterprise_server:11:sp4:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_server:12:*:*:*:ltss:*:*:*

OR cpe:/o:suse:openstack_cloud:6:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:6:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:6::client:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:6::computenode:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:6::server:*:*:*:*:*

Configuration RedHat 10:

cpe:/o:redhat:enterprise_linux:6::workstation:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201713077	V	CVE-2017-13077	2023-06-22
oval:org.opensuse.security:def:7829	P	wpa_supplicant-2.10-150500.1.3 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:51989	P	Security update for xen (Important)	2023-01-26
oval:org.opensuse.security:def:51958	P	Security update for grub2 (Important)	2022-11-21
oval:org.opensuse.security:def:4665	P	Security update for the Linux Kernel (Important)	2022-08-09
oval:org.opensuse.security:def:3423	P	aaa_base-13.2+git20140911.61c1681-38.13.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3178	P	libgnomesu-2.0.0-353.6.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3417	P	zypper-1.13.51-21.26.4 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3420	P	MozillaFirefox-68.1.0-109.92.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3830	P	xorg-x11-server-1.19.6-8.18 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3170	P	libexif12-0.6.21-8.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3164	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3818	P	w3m-0.5.3.git20161120-161.3.4 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3180	P	libgraphite2-3-1.3.1-10.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3405	P	xlockmore-5.43-5.30 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3419	P	ImageMagick-config-6-SUSE-6.8.8.1-71.126.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3396	P	w3m-0.5.3.git20161120-161.3.4 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3222	P	libopenssl-devel-1.0.2p-1.13 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94852	P	wpa_supplicant-2.9-4.33.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95125	P	librelp-devel-1.2.15-1.15 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:333	P	wpa_supplicant-2.9-4.29.1 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:386	P	wpa_supplicant-2.9-4.33.1 on GA media (Moderate)	2022-06-10
oval:org.opensuse.security:def:126887	P	Security update for wpa_supplicant (Important)	2022-05-26
oval:org.opensuse.security:def:127284	P	Security update for wpa_supplicant (Important)	2022-05-26
oval:org.opensuse.security:def:125722	P	Security update for wpa_supplicant (Important)	2022-05-26
oval:org.opensuse.security:def:5253	P	Security update for openldap2 (Important)	2022-05-20
oval:org.opensuse.security:def:4734	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:4593	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP5) (Important)	2022-05-09
oval:org.opensuse.security:def:5231	P	Security update for libcaca (Moderate)	2022-05-03
oval:org.opensuse.security:def:101838	P	Security update for go1.18 (Moderate)	2022-04-26
oval:org.opensuse.security:def:4584	P	Security update for the Linux Kernel (Live Patch 17 for SLE 12 SP5) (Important)	2022-04-25
oval:org.opensuse.security:def:4588	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP5) (Important)	2022-04-25
oval:org.opensuse.security:def:4577	P	Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP5) (Important)	2022-04-15
oval:org.opensuse.security:def:5372	P	Security update for openssl-1_1 (Important)	2022-03-15
oval:org.opensuse.security:def:4686	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP5) (Critical)	2022-02-16
oval:org.opensuse.security:def:94448	P	(Important)	2022-01-25
oval:org.opensuse.security:def:113587	P	wpa_supplicant-2.9-13.4 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:70583	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:4531	P	Security update for go1.17 (Moderate)	2021-12-23
oval:org.opensuse.security:def:68324	P	Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP2) (Important)	2021-12-14
oval:org.opensuse.security:def:70326	P	Security update for the Linux Kernel (Important)	2021-12-07
oval:org.opensuse.security:def:1789	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:67335	P	Security update for poppler (Important)	2021-12-01
oval:org.opensuse.security:def:66983	P	Security update for postgresql14 (Important)	2021-11-22
oval:org.opensuse.security:def:73905	P	Security update for python (Moderate)	2021-10-20
oval:org.opensuse.security:def:106973	P	wpa_supplicant-2.9-13.4 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:96645	P	libjasper4-2.0.14-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:1262	P	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP3) (Important)	2021-09-16
oval:org.opensuse.security:def:69077	P	Security update for apache2 (Important)	2021-09-03
oval:org.opensuse.security:def:49449	P	Security update for nodejs12 (Important)	2021-08-24
oval:org.opensuse.security:def:67240	P	Security update for openssl-1_1 (Important)	2021-08-24
oval:org.opensuse.security:def:47059	P	libpcsclite1-1.8.10-3.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47797	P	libtiff5-32bit-4.0.9-44.24.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47159	P	sudo-1.8.10p3-6.16 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46996	P	libXp6-1.0.2-3.57 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47090	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47850	P	perl-DBD-mysql-4.021-12.5.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46935	P	eog-3.20.4-7.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:4726	P	Security update for the Linux Kernel (Important)	2021-08-10
oval:org.opensuse.security:def:2427	P	python2-waitress-1.4.3-3.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:1933	P	libtdsodbc0-1.1.36-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1931	P	libgit2-28-0.28.4-1.28 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:101109	P	wpa_supplicant-2.9-4.29.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1937	P	ncurses-devel-32bit-6.1-5.6.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:101161	P	gstreamer-plugins-bad-1.16.2-7.22 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62351	P	wpa_supplicant-2.9-4.29.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71777	P	bluez-5.55-1.57 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1936	P	nasm-2.14.02-3.4.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72092	P	wpa_supplicant-2.9-4.29.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:70431	P	Security update for libnettle (Important)	2021-06-23
oval:org.opensuse.security:def:64532	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:74710	P	Security update for the Linux Kernel (Important)	2021-06-15
oval:org.opensuse.security:def:73648	P	Security update for libjpeg-turbo (Moderate)	2021-06-11
oval:org.opensuse.security:def:46853	P	systemtap-2.5-4.44 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:4551	P	Security update for xstream (Important)	2021-06-02
oval:org.opensuse.security:def:65640	P	Security update for xstream (Important)	2021-06-02
oval:org.opensuse.security:def:4721	P	Security update for the Linux Kernel (Important)	2021-04-13
oval:org.opensuse.security:def:67075	P	Security update for jetty-minimal (Important)	2021-03-24
oval:org.opensuse.security:def:49463	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:51168	P	Security update for java-1_8_0-ibm (Important)	2021-02-26
oval:org.opensuse.security:def:73766	P	Security update for subversion (Important)	2021-02-10
oval:org.opensuse.security:def:64644	P	Security update for subversion (Important)	2021-02-10
oval:org.opensuse.security:def:5397	P	Security update for the Linux Kernel (Important)	2021-01-14
oval:org.opensuse.security:def:51094	P	Security update for spice-gtk (Important)	2020-12-16
oval:org.opensuse.security:def:51854	P	Security update for python-cryptography (Moderate)	2020-12-04
oval:org.opensuse.security:def:72430	P	open-vm-tools-desktop-11.1.0-2.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71664	P	mailx-12.5-1.87 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4074	P	libvorbis-devel-1.3.3-10.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4061	P	libtag-devel-1.9.1-1.218 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72314	P	perl-MIME-Charset-1.012.2-1.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4714	P	Security update for python-PyYAML (Important)	2020-12-02
oval:org.opensuse.security:def:2579	P	Security update for wpa_supplicant (Moderate)	2020-12-02
oval:org.opensuse.security:def:4853	P	Security update for rsyslog (Moderate)	2020-12-02
oval:org.opensuse.security:def:4866	P	Security update for salt (Critical)	2020-12-02
oval:org.opensuse.security:def:2575	P	Security update for java-11-openjdk (Moderate)	2020-12-02
oval:org.opensuse.security:def:5543	P	Security update for wpa_supplicant (Moderate)	2020-12-02
oval:org.opensuse.security:def:4823	P	Security update for xmltooling (Moderate)	2020-12-02
oval:org.opensuse.security:def:4860	P	Security update for shibboleth-sp (Moderate)	2020-12-02
oval:org.opensuse.security:def:4800	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:5515	P	Security update for python-pip (Moderate)	2020-12-02
oval:org.opensuse.security:def:4877	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:24869	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:50925	P	Security update for unbound (Important)	2020-12-01
oval:org.opensuse.security:def:52045	P	Security update for libxml2 (Low)	2020-12-01
oval:org.opensuse.security:def:64990	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:68424	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:52151	P	Security update for google-compute-engine (Important)	2020-12-01
oval:org.opensuse.security:def:52506	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:50921	P	Security update for mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:51062	P	Security update for slirp4netns (Important)	2020-12-01
oval:org.opensuse.security:def:74584	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50828	P	Security update for bcm43xx-firmware (Moderate)	2020-12-01
oval:org.opensuse.security:def:49514	P	gcab on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:25010	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:52444	P	Security update for ovmf (Moderate)	2020-12-01
oval:org.opensuse.security:def:65730	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:49610	P	PackageKit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50864	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:49305	P	ppc64-diag on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24968	P	Security update for avahi (Moderate)	2020-12-01
oval:org.opensuse.security:def:49432	P	libcups2-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49221	P	libprocps7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52184	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:52291	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:50810	P	Security update for libjpeg-turbo (Moderate)	2020-12-01
oval:org.opensuse.security:def:53573	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:52117	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:75050	P	Security update for ldb, samba (Important)	2020-12-01
oval:org.opensuse.security:def:49534	P	libXcursor1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:68974	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:50756	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:53503	P	Security update for mozilla-nss (Moderate)	2020-12-01
oval:org.opensuse.security:def:24818	P	Security update for ppp (Important)	2020-12-01
oval:org.opensuse.security:def:50852	P	Security update for python-waitress (Moderate)	2020-12-01
oval:org.opensuse.security:def:51015	P	Security update for libX11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49579	P	libtag-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52227	P	Security update for libproxy (Important)	2020-12-01
oval:org.opensuse.security:def:75183	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:49363	P	yast2-buildtools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24954	P	Security update for gstreamer-plugins-base (Important)	2020-12-01
oval:org.opensuse.security:def:50958	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:53718	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:52095	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:52256	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:74026	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:49682	P	libnetpbm-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50995	P	Security update for spice-gtk (Moderate)	2020-12-01
oval:org.opensuse.security:def:53646	P	Security update for ntp (Moderate)	2020-12-01
oval:org.opensuse.security:def:52263	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:50686	P	Security update for lz4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:25648	P	Security update for python36 (Important)	2020-12-01
oval:org.opensuse.security:def:50821	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:52370	P	Security update for opencv (Moderate)	2020-12-01
oval:org.opensuse.security:def:50596	P	Security update for nmap (Moderate)	2020-12-01
oval:org.opensuse.security:def:70691	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:49367	P	yubikey-manager on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:65108	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:52201	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:65077	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:25682	P	Security update for wpa_supplicant (Moderate)	2020-12-01
oval:org.opensuse.security:def:110878	P	Security update for wpa_supplicant (Moderate)	2020-11-27
oval:org.opensuse.security:def:110334	P	Security update for wpa_supplicant (Moderate)	2020-11-26
oval:org.opensuse.security:def:90402	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:107827	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:97367	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:75457	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:91096	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:108504	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:117342	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:98061	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:75734	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:104057	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:org.opensuse.security:def:104751	P	Security update for wpa_supplicant (Moderate)	2020-11-19
oval:com.redhat.rhsa:def:20172911	P	RHSA-2017:2911: wpa_supplicant security update (Important)	2017-10-18
oval:com.redhat.rhsa:def:20172907	P	RHSA-2017:2907: wpa_supplicant security update (Important)	2017-10-17
oval:com.ubuntu.xenial:def:2017130770000000	V	CVE-2017-13077 on Ubuntu 16.04 LTS (xenial) - high.	2017-10-17
oval:com.ubuntu.trusty:def:201713077000	V	CVE-2017-13077 on Ubuntu 14.04 LTS (trusty) - high.	2017-10-16
oval:com.ubuntu.xenial:def:201713077000	V	CVE-2017-13077 on Ubuntu 16.04 LTS (xenial) - high.	2017-10-16