Vulnerability CVE-2017-16642

Vulnerability Name:

CVE-2017-16642 (CCN-134641)

Assigned:

2017-10-27

Published:

2017-10-27

Updated:

2019-08-19

Summary:

In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelib_meridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parse_date.c out-of-bounds reads affecting the php_parse_date function.
Note: this is a different issue than CVE-2017-11145.

CVSS v3 Severity:

7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N)
6.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): None Availibility (A): None

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
4.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

Vulnerability Type:

CWE-125

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2017-16642

Source: CCN
Type: PHP Web site
PHP

Source: CONFIRM
Type: Issue Tracking, Release Notes, Vendor Advisory
http://php.net/ChangeLog-5.php

Source: CONFIRM
Type: Issue Tracking, Release Notes, Vendor Advisory
http://php.net/ChangeLog-7.php

Source: CCN
Type: IBM Security Bulletin 2012637 (Lotus Protector for Mail Security)
Open Source PHP Vulnerabilities (CVE-2017-16642)

Source: BID
Type: Third Party Advisory, VDB Entry
101745

Source: CCN
Type: BID-101745
PHP CVE-2017-16642 Heap Based Buffer Overflow Vulnerability

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:1296

Source: REDHAT
Type: UNKNOWN
RHSA-2019:2519

Source: CCN
Type: PHP Sec Bug #75055
Out-Of-Bounds Read in timelib_meridian()

Source: CONFIRM
Type: Issue Tracking, Vendor Advisory
https://bugs.php.net/bug.php?id=75055

Source: XF
Type: UNKNOWN
php-cve201716642-info-disc(134641)

Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://github.com/derickr/timelib/commit/aa9156006e88565e1f1a5f7cc088b18322d57536

Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://github.com/php/php-src/commit/5c0455bf2c8cd3c25401407f158e820aa3b239e1

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20181123-0001/

Source: UBUNTU
Type: Third Party Advisory
USN-3566-1

Source: DEBIAN
Type: Third Party Advisory
DSA-4080

Source: DEBIAN
Type: Third Party Advisory
DSA-4081

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [11-09-2017]

Source: EXPLOIT-DB
Type: Exploit, Issue Tracking, Third Party Advisory, VDB Entry
43133

Vulnerable Configuration:

Configuration 1:

cpe:/a:php:php:*:*:*:*:*:*:*:* (Version < 5.6.32)

OR cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.0.0 and < 7.0.25)

OR cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.1.0 and < 7.1.11)

Configuration 2:

cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

Configuration 4:

cpe:/a:netapp:storage_automation_store:-:*:*:*:*:*:*:*

OR cpe:/o:netapp:clustered_data_ontap:-:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:php:php:5.6.1:-:*:*:*:*:*:*

OR cpe:/a:php:php:7.1.0:-:*:*:*:*:*:*

OR cpe:/a:php:php:7.0:*:*:*:*:*:*:*

AND

cpe:/a:ibm:lotus_protector:2.8.1:*:*:*:mail_security:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201716642	V	CVE-2017-16642	2022-09-02
oval:org.opensuse.security:def:10439	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:10710	P	Security update for the Linux Kernel (Important) (in QA)	2022-01-07
oval:org.opensuse.security:def:10438	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:10372	P	Security update for aaa_base (Moderate)	2021-12-03
oval:org.opensuse.security:def:10371	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:32229	P	Security update for ruby2.1 (Important)	2021-12-01
oval:org.opensuse.security:def:30155	P	Security update for ruby2.1 (Important)	2021-12-01
oval:org.opensuse.security:def:39476	P	Security update for speex (Moderate)	2021-11-19
oval:org.opensuse.security:def:10170	P	Security update for qemu (Important)	2021-11-04
oval:org.opensuse.security:def:34581	P	Security update for opensc (Important)	2021-10-29
oval:org.opensuse.security:def:10169	P	Security update for Salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:30244	P	Security update for Mesa (Moderate)	2021-09-16
oval:org.opensuse.security:def:10147	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:10148	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:11120	P	Security update for libspf2 (Critical)	2021-08-25
oval:org.opensuse.security:def:33959	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:10139	P	Security update for djvulibre (Important)	2021-08-20
oval:org.opensuse.security:def:10140	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:14295	P	libsystemd0-228-142.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14955	P	libXext6-1.3.2-4.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14283	P	libquicktime0-1.2.4-10.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13957	P	libspice-client-glib-2_0-8-0.31-7.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14073	P	zoo-2.10-1020.56 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14110	P	ctags-5.8-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14228	P	libgnomesu-2.0.0-353.6.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13926	P	liblzo2-2-2.08-1.13 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14271	P	libpcsclite1-1.8.10-6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14296	P	libtag1-1.9.1-1.218 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14956	P	libXfixes3-32bit-5.0.1-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13934	P	libnghttp2-14-1.7.1-1.84 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14024	P	res-signingkeys-3.0.18-26.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14090	P	augeas-1.2.0-15.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14202	P	libXt6-1.1.4-3.57 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13927	P	libmms0-0.6.2-15.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14933	P	java-1_8_0-ibm-1.8.0_sr5.40-30.54.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14272	P	libplist3-1.12-19.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13935	P	libnm-glib-vpn1-1.0.12-8.6 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14025	P	rpcbind-0.2.3-21.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14091	P	autofs-5.0.9-27.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14203	P	libXtst6-1.2.2-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:35262	P	Security update for libcares2 (Important)	2021-08-16
oval:org.opensuse.security:def:14282	P	libqt4-32bit-4.8.6-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14934	P	java-1_8_0-openjdk-1.8.0.222-27.35.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13956	P	libsoup-2_4-1-2.54.1-4.5 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14072	P	yast2-users-3.1.57-16.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14109	P	cron-4.2-58.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14227	P	libgme0-0.6.0-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:31226	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-07-21
oval:org.opensuse.security:def:33948	P	Security update for linuxptp (Important)	2021-07-21
oval:org.opensuse.security:def:33947	P	Security update for curl (Moderate)	2021-07-21
oval:org.opensuse.security:def:11099	P	Security update for fossil (Moderate)	2021-07-17
oval:org.opensuse.security:def:11098	P	Security update for claws-mail (Moderate)	2021-07-16
oval:org.opensuse.security:def:10685	P	Security update for the Linux Kernel (Important)	2021-07-15
oval:org.opensuse.security:def:10296	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:10277	P	Security update for spice-gtk (Moderate)	2021-06-10
oval:org.opensuse.security:def:10278	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:124641	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17053	P	gimp-2.8.10-1.164 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36320	P	w3m-0.5.2-132.2.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16635	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17061	P	libIlmImf-Imf_2_1-21-32bit-2.1.0-4.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17180	P	libIlmImf-Imf_2_1-21-32bit-2.1.0-4.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17268	P	libosip2-3.5.0-20.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11412	P	libvorbis0-1.3.3-8.23 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17092	P	ImageMagick-6.8.8.1-33.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17234	P	gd-32bit-2.1.0-24.9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17301	P	typelib-1_0-Gtk-2_0-2.24.31-7.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36278	P	python-2.6.9-0.35.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17095	P	bash-lang-4.3-78.39 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17237	P	gnome-online-accounts-3.20.5-9.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124640	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17050	P	freerdp-1.0.2-7.9 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11434	P	pcsc-ccid-1.4.14-1.45 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16634	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17058	P	java-1_7_0-openjdk-plugin-1.6.1-2.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17177	P	lcms-1.19-17.31 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17265	P	libndp0-1.6-2.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10263	P	Security update for ceph (Important)	2021-06-02
oval:org.opensuse.security:def:10262	P	Security update for curl (Moderate)	2021-05-31
oval:org.opensuse.security:def:38724	P	Security update for avahi (Moderate)	2021-05-04
oval:org.opensuse.security:def:34423	P	Security update for cups (Important)	2021-04-30
oval:org.opensuse.security:def:34043	P	Security update for glib2 (Important)	2021-03-16
oval:org.opensuse.security:def:10216	P	Security update for wpa_supplicant (Important)	2021-03-08
oval:org.opensuse.security:def:10215	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:32268	P	Security update for openldap2 (Important)	2021-03-03
oval:org.opensuse.security:def:10397	P	Security update for salt (Critical)	2021-02-26
oval:org.opensuse.security:def:34639	P	Security update for glibc (Moderate)	2021-02-25
oval:org.opensuse.security:def:10396	P	Security update for php7 (Important)	2021-02-24
oval:org.opensuse.security:def:30023	P	Security update for wpa_supplicant (Important)	2021-02-15
oval:org.opensuse.security:def:10297	P	Security update for go1.14 (Moderate)	2021-01-26
oval:org.opensuse.security:def:11121	P	Security update for viewvc (Moderate)	2021-01-19
oval:org.opensuse.security:def:38723	P	Security update for avahi (Moderate)	2021-01-18
oval:org.opensuse.security:def:38796	P	Security update for curl (Moderate)	2020-12-21
oval:org.opensuse.security:def:34334	P	Security update for python (Important)	2020-12-11
oval:org.opensuse.security:def:29949	P	Security update for postgresql12 (Important)	2020-12-04
oval:org.opensuse.security:def:17374	P	libwpd-0_10-10-0.10.2-2.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35640	P	sudo-1.6.9p17-21.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17377	P	libzzip-0-13-0.13.67-10.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17332	P	lcms-1.19-17.31 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35569	P	kde4-kgreeter-plugins-4.3.5-0.8.35 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16948	P	php7-devel-7.0.7-50.85.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17340	P	libfbembed2_5-2.5.2.26539-15.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17335	P	libIlmImf-Imf_2_1-21-32bit-2.1.0-6.13.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17304	P	PackageKit-gstreamer-plugin-1.1.3-24.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31082	P	Security update for gdm (Important)	2020-12-03
oval:org.opensuse.security:def:17343	P	libgstfft-1_0-0-32bit-1.8.3-13.3.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35530	P	clamav-0.96-0.12.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35596	P	libpng12-0-1.2.31-5.12.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:26896	P	foomatic-filters on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17516	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:17583	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:17725	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:10447	P	gnome-settings-daemon-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34727	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:30772	P	Security update for augeas (Moderate)	2020-12-01
oval:org.opensuse.security:def:34179	P	Security update for openssl1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:10752	P	libjson-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10461	P	lib3ds-1-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10529	P	libpcscspy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10591	P	python3-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38684	P	libjasper1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38751	P	logwatch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39434	P	Security update for python3-requests (Moderate)	2020-12-01
oval:org.opensuse.security:def:34783	P	Recommended update for NetworkManager-kde4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38029	P	perl-Tk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38268	P	libapr-util1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38416	P	memcached on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38635	P	libMagickCore-6_Q16-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18172	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:34782	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:27627	P	Security update for IBM Java 7	2020-12-01
oval:org.opensuse.security:def:31385	P	Security update for openvpn-openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:26971	P	libsndfile on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27180	P	libecpg6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27321	P	wpa_supplicant on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27525	P	openldap2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17503	P	Security update for compat-openssl098 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17816	P	Security update for postgresql94 (Important)	2020-12-01
oval:org.opensuse.security:def:18480	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17414	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:31526	P	Security update for rsyslog (Moderate)	2020-12-01
oval:org.opensuse.security:def:31591	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:30784	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:30990	P	Security update for jakarta-commons-fileupload	2020-12-01
oval:org.opensuse.security:def:31139	P	Security update for less (Moderate)	2020-12-01
oval:org.opensuse.security:def:31382	P	Security update for openvpn	2020-12-01
oval:org.opensuse.security:def:31487	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:17797	P	Security update for fontconfig (Low)	2020-12-01
oval:org.opensuse.security:def:35434	P	Security update for openvpn	2020-12-01
oval:org.opensuse.security:def:29938	P	Security update for libksba	2020-12-01
oval:org.opensuse.security:def:17519	P	Security update for python, python-base, python-doc (Moderate)	2020-12-01
oval:org.opensuse.security:def:17586	P	Security update for augeas (Moderate)	2020-12-01
oval:org.opensuse.security:def:17728	P	Security update for ntp (Important)	2020-12-01
oval:org.opensuse.security:def:10448	P	gnome-shell-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38795	P	rtkit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39475	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34794	P	Security update for ansible (Moderate)	2020-12-01
oval:org.opensuse.security:def:35014	P	Security update for gpg2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:35172	P	Security update for krb5	2020-12-01
oval:org.opensuse.security:def:35422	P	Security update for openssl-certs	2020-12-01
oval:org.opensuse.security:def:38685	P	libjavascriptcoregtk-3_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38752	P	mailx on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28344	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37935	P	libotr5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38030	P	perl-XML-LibXML on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38269	P	libapr1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38417	P	minicom on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38636	P	libQt5Concurrent5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17512	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:18175	P	Security update for libwpd (Important)	2020-12-01
oval:org.opensuse.security:def:37933	P	libopus0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17443	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:30703	P	Security update for MozillaFirefox, MozillaFirefox-branding-SLED, firefox-gcc5, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:30387	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:30596	P	Security update for php5 (Important)	2020-12-01
oval:org.opensuse.security:def:17782	P	Security update for sqlite3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17819	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:18483	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26895	P	findutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17459	P	Security update for MozillaFirefox (Moderate)	2020-12-01
oval:org.opensuse.security:def:17547	P	Security update for libzip (Moderate)	2020-12-01
oval:org.opensuse.security:def:17693	P	Security update for libnettle (Moderate)	2020-12-01
oval:org.opensuse.security:def:10460	P	lhasa-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34688	P	Security update for xinetd	2020-12-01
oval:org.opensuse.security:def:34752	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:30773	P	Security update for automake	2020-12-01
oval:org.opensuse.security:def:34277	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:10761	P	libmusicbrainz-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10483	P	libapr1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10576	P	nut-cgi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10610	P	xfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37945	P	libprocps3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38166	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38326	P	libmpfr4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38576	P	dbus-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17534	P	Security update for cups, cups154 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18198	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27613	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:27671	P	Security update for rubygem-rdoc	2020-12-01
oval:org.opensuse.security:def:31423	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26907	P	gnome-screensaver on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27099	P	coreutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27237	P	mailman on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27472	P	libpng-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27574	P	trousers-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17515	P	Security update for libssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:18454	P	Security update for xerces-j2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37934	P	libospf0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17446	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:31547	P	Security update for sblim-sfcb (Moderate)	2020-12-01
oval:org.opensuse.security:def:30858	P	Security update for dosfstools (Moderate)	2020-12-01
oval:org.opensuse.security:def:31438	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17785	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:34796	P	Security update for ansible (Important)	2020-12-01
oval:org.opensuse.security:def:35475	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:29937	P	Security update for libjasper	2020-12-01
oval:org.opensuse.security:def:17462	P	Security update for compat-openssl098 (Important)	2020-12-01
oval:org.opensuse.security:def:17550	P	Security update for libksba (Moderate)	2020-12-01
oval:org.opensuse.security:def:17696	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:10774	P	libplist++-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39433	P	Security update for python-PyYAML (Important)	2020-12-01
oval:org.opensuse.security:def:34878	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:35115	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:35481	P	Recommended update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28309	P	Security update for openslp (Important)	2020-12-01
oval:org.opensuse.security:def:10453	P	hplip-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37946	P	libproxy1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38167	P	dhcp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38327	P	libmspack0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38577	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17500	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:17537	P	Security update for libmspack (Moderate)	2020-12-01
oval:org.opensuse.security:def:18201	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17411	P	Security update for mozilla-nspr, mozilla-nss (Moderate)	2020-12-01
oval:org.opensuse.security:def:30684	P	Security update for LibVNCServer (Moderate)	2020-12-01
oval:org.opensuse.security:def:30747	P	Security update for ansible (Moderate)	2020-12-01
oval:org.opensuse.security:def:30301	P	Security update for sudo, sudo-debuginfo, sudo-debugsource	2020-12-01
oval:org.opensuse.security:def:30541	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:30645	P	Security update for xorg-x11-libXt	2020-12-01
oval:org.opensuse.security:def:17794	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18457	P	Security update for curl (Moderate)	2020-12-01
oval:com.ubuntu.artful:def:201716642000	V	CVE-2017-16642 on Ubuntu 17.10 (artful) - low.	2017-11-07
oval:com.ubuntu.xenial:def:2017166420000000	V	CVE-2017-16642 on Ubuntu 16.04 LTS (xenial) - low.	2017-11-07
oval:com.ubuntu.trusty:def:201716642000	V	CVE-2017-16642 on Ubuntu 14.04 LTS (trusty) - low.	2017-11-07
oval:com.ubuntu.xenial:def:201716642000	V	CVE-2017-16642 on Ubuntu 16.04 LTS (xenial) - low.	2017-11-07

BACK