Vulnerability CVE-2017-9227

Vulnerability Name:

CVE-2017-9227 (CCN-127148)

Assigned:

2017-05-24

Published:

2017-05-24

Updated:

2022-07-20

Summary:

An issue was discovered in Oniguruma 6.2.0, as used in Oniguruma-mod in Ruby through 2.4.1 and mbstring in PHP through 7.1.5. A stack out-of-bounds read occurs in mbc_enc_len() during regular expression searching. Invalid handling of reg->dmin in forward_search_range() could result in an invalid pointer dereference, as an out-of-bounds read from a stack buffer.

CVSS v3 Severity:

9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
6.4 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

CWE-125

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2017-9227

Source: CCN
Type: IBM Security Bulletin T1025810 (Flex System Manager Node)
Multiple vulnerabilities in php5 affect IBM Flex System Manager (FSM) (CVE-2017-9227, CVE-2017-9226 CVE-2017-9224)

Source: BID
Type: Third Party Advisory, VDB Entry
100538

Source: CCN
Type: BID-100538
Oniguruma CVE-2017-9227 Out of Bounds Read Memory Corruption Vulnerability

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:1296

Source: XF
Type: UNKNOWN
oniguruma-cve20179227-bo(127148)

Source: CONFIRM
Type: Patch, Third Party Advisory
https://github.com/kkos/oniguruma/commit/9690d3ab1f9bcd2db8cbe1fe3ee4a5da606b8814

Source: CCN
Type: oniguruma GIT Repository
Bug in mbc_enc_len #58

Source: CONFIRM
Type: Exploit, Issue Tracking, Patch, Third Party Advisory
https://github.com/kkos/oniguruma/issues/58

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2017-9227

Vulnerable Configuration:

Configuration 1:

cpe:/a:oniguruma_project:oniguruma:6.2.0:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.1.0 and < 7.1.7)

OR cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.0.0 and < 7.0.21)

OR cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 5.6.0 and < 5.6.31)

Configuration CCN 1:

cpe:/a:oniguruma_project:oniguruma:6.2.0:*:*:*:*:*:*:*

AND

cpe:/h:ibm:flex_system_manager_node:*:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20179227	V	CVE-2017-9227	2022-09-02
oval:org.opensuse.security:def:10439	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:9885	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:10710	P	Security update for the Linux Kernel (Important) (in QA)	2022-01-07
oval:org.opensuse.security:def:10438	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:30167	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:29492	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:9884	P	Security update for go1.17 (Moderate)	2021-12-23
oval:org.opensuse.security:def:10372	P	Security update for aaa_base (Moderate)	2021-12-03
oval:org.opensuse.security:def:10371	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:30152	P	Security update for java-1_8_0-openjdk (Important)	2021-11-23
oval:org.opensuse.security:def:32226	P	Security update for webkit2gtk3 (Important)	2021-11-23
oval:org.opensuse.security:def:10175	P	Security update for webkit2gtk3 (Important)	2021-11-23
oval:org.opensuse.security:def:10176	P	Security update for java-1_8_0-openjdk (Important)	2021-11-23
oval:org.opensuse.security:def:29448	P	Security update for postgresql10 (Important)	2021-11-22
oval:org.opensuse.security:def:38744	P	Security update for bind (Important)	2021-11-09
oval:org.opensuse.security:def:10170	P	Security update for qemu (Important)	2021-11-04
oval:org.opensuse.security:def:10169	P	Security update for Salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:34578	P	Security update for python (Moderate)	2021-10-26
oval:org.opensuse.security:def:33029	P	Security update for ncurses (Moderate)	2021-10-20
oval:org.opensuse.security:def:10162	P	Security update for glibc (Moderate)	2021-10-12
oval:org.opensuse.security:def:29431	P	Security update for webkit2gtk3 (Important)	2021-10-06
oval:org.opensuse.security:def:30130	P	Security update for sqlite3 (Important)	2021-09-23
oval:org.opensuse.security:def:10154	P	Security update for ghostscript (Critical)	2021-09-15
oval:org.opensuse.security:def:10153	P	Security update for openssl-1_0_0 (Low)	2021-09-09
oval:org.opensuse.security:def:10147	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:30241	P	Security update for openexr (Important)	2021-09-02
oval:org.opensuse.security:def:10148	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:11120	P	Security update for libspf2 (Critical)	2021-08-25
oval:org.opensuse.security:def:10140	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:10139	P	Security update for djvulibre (Important)	2021-08-20
oval:org.opensuse.security:def:14274	P	libpng15-15-1.5.22-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14016	P	python-imaging-1.1.7-21.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14288	P	libsnmp30-32bit-5.7.3-4.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14064	P	xinetd-2.3.15-7.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14926	P	ipsec-tools-0.8.0-19.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14082	P	apache-commons-httpclient-3.1-4.364 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13927	P	libmms0-0.6.2-15.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14948	P	libQt5WebKit5-5.6.2-1.31 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14101	P	clamav-0.99.2-32.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14264	P	libnm-glib-vpn1-1.0.12-12.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13949	P	libpython3_4m1_0-3.4.1-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14194	P	libXfixes3-32bit-5.0.1-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14275	P	libpng16-16-1.6.8-14.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:33956	P	Security update for libcares2 (Important)	2021-08-16
oval:org.opensuse.security:def:14017	P	python-libxml2-2.9.4-27.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14219	P	libdmx1-1.1.3-3.51 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14065	P	xlockmore-5.43-5.30 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14083	P	apache2-2.4.23-28.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14102	P	colord-gtk-lang-0.1.26-6.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14195	P	libXfont1-1.5.1-10.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13918	P	libjpeg-turbo-1.3.1-30.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14220	P	libecpg6-9.6.3-2.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14287	P	libsndfile1-1.0.25-35.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14925	P	ibus-chewing-1.4.14-4.11 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13919	P	libjson-c2-0.11-2.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13926	P	liblzo2-2-2.08-1.13 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14947	P	libQt5Concurrent5-5.6.2-6.15.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14263	P	libnghttp2-14-1.7.1-1.84 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13948	P	libpython2_7-1_0-2.7.9-24.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:38715	P	Security update for aspell (Important)	2021-08-12
oval:org.opensuse.security:def:33945	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:31223	P	Security update for systemd (Important)	2021-07-21
oval:org.opensuse.security:def:11099	P	Security update for fossil (Moderate)	2021-07-17
oval:org.opensuse.security:def:11098	P	Security update for claws-mail (Moderate)	2021-07-16
oval:org.opensuse.security:def:10685	P	Security update for the Linux Kernel (Important)	2021-07-15
oval:org.opensuse.security:def:35259	P	Security update for the Linux Kernel (Important)	2021-07-14
oval:org.opensuse.security:def:10296	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:10112	P	Security update for ovmf (Important)	2021-06-25
oval:org.opensuse.security:def:29392	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:10111	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:10277	P	Security update for spice-gtk (Moderate)	2021-06-10
oval:org.opensuse.security:def:10278	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:17153	P	NetworkManager-1.0.12-12.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16634	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17189	P	libmikmod3-3.2.0-4.59 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17299	P	telepathy-idle-0.2.0-1.62 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124641	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16635	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16348	P	php5-devel-5.5.14-108.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36275	P	procmail-3.22-240.8.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11412	P	libvorbis0-1.3.3-8.23 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17055	P	gnome-shell-calendar-3.10.4-40.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36317	P	virt-utils-1.2.1-10.41 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11434	P	pcsc-ccid-1.4.14-1.45 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17112	P	kernel-default-extra-4.4.21-69.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17143	P	pidgin-otr-4.0.0-11.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16349	P	php7-devel-7.0.7-49.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17179	P	libFLAC++6-32bit-1.3.0-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17289	P	libzzip-0-13-0.13.67-10.14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124640	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17065	P	libgio-fam-2.38.2-5.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:17122	P	libjavascriptcoregtk-1_0-0-2.4.11-23.20 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32934	P	Security update for polkit (Important)	2021-06-03
oval:org.opensuse.security:def:10087	P	Security update for polkit (Important)	2021-06-03
oval:org.opensuse.security:def:10263	P	Security update for ceph (Important)	2021-06-02
oval:org.opensuse.security:def:10086	P	Security update for dhcp (Important)	2021-06-02
oval:org.opensuse.security:def:10262	P	Security update for curl (Moderate)	2021-05-31
oval:org.opensuse.security:def:38743	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:34420	P	Security update for gdm (Important)	2021-04-28
oval:org.opensuse.security:def:34040	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:9862	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:9863	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:10216	P	Security update for wpa_supplicant (Important)	2021-03-08
oval:org.opensuse.security:def:10215	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:9854	P	Security update for grub2 (Important)	2021-03-02
oval:org.opensuse.security:def:9855	P	Security update for bind (Important)	2021-03-02
oval:org.opensuse.security:def:32265	P	Security update for MozillaFirefox (Important)	2021-03-01
oval:org.opensuse.security:def:10397	P	Security update for salt (Critical)	2021-02-26
oval:org.opensuse.security:def:33086	P	Security update for ImageMagick (Moderate)	2021-02-25
oval:org.opensuse.security:def:10396	P	Security update for php7 (Important)	2021-02-24
oval:org.opensuse.security:def:34636	P	Security update for avahi (Moderate)	2021-02-23
oval:org.opensuse.security:def:30020	P	Security update for python (Important)	2021-02-11
oval:org.opensuse.security:def:10163	P	Security update for python-urllib3 (Moderate)	2021-02-08
oval:org.opensuse.security:def:33944	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:10297	P	Security update for go1.14 (Moderate)	2021-01-26
oval:org.opensuse.security:def:11121	P	Security update for viewvc (Moderate)	2021-01-19
oval:org.opensuse.security:def:38319	P	Security update for squid3 (Critical)	2020-12-30
oval:org.opensuse.security:def:38677	P	Security update for OpenEXR (Moderate)	2020-12-21
oval:org.opensuse.security:def:34331	P	Security update for openssl-1_0_0 (Important)	2020-12-09
oval:org.opensuse.security:def:16928	P	mozilla-nspr-devel-4.21-19.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17331	P	kernel-default-extra-4.12.14-120.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16938	P	obs-service-set_version-0.5.11-1.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16936	P	nut-cgi-2.7.4-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35637	P	ruby-1.8.7.p72-5.24.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17378	P	openconnect-7.08-1.27 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16970	P	slf4j-1.7.12-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35527	P	boost-license-1.36.0-11.17 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17390	P	typelib-1_0-EvinceDocument-3_0-3.20.2-6.27.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16948	P	php7-devel-7.0.7-50.85.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35566	P	ipsec-tools-0.7.3-1.1.93 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35593	P	libnetpbm10-10.26.44-101.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16946	P	pango-devel-1.40.1-9.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17388	P	telepathy-gabble-0.18.3-5.7 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16980	P	vte2-devel-0.28.2-19.7 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17321	P	gnome-online-accounts-3.20.8-10.4.50 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:29946	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:38158	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33435	P	Security update for dbus	2020-12-01
oval:org.opensuse.security:def:32720	P	libnetpbm10 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9993	P	squidGuard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29289	P	Security update for Real Time Linux Kernel	2020-12-01
oval:org.opensuse.security:def:35478	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30700	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:38788	P	quagga on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34219	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26892	P	expat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38260	P	libXrender1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33474	P	Security update for libesmtp	2020-12-01
oval:org.opensuse.security:def:37927	P	libnm-glib-vpn1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32799	P	tomcat6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10012	P	w3m on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29343	P	Security update for cobbler (Important)	2020-12-01
oval:org.opensuse.security:def:30744	P	Security update for ansible (Important)	2020-12-01
oval:org.opensuse.security:def:39426	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:26893	P	fetchmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38318	P	libldb1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33497	P	Security update for lvm2, lvm2-clvm, lvm2-clvm-debuginfo, lvm2-clvm-debugsource, lvm2-debuginfo, lvm2-debugsource	2020-12-01
oval:org.opensuse.security:def:37938	P	libpcsclite1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10447	P	gnome-settings-daemon-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39468	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30298	P	Security update for strongswan (Important)	2020-12-01
oval:org.opensuse.security:def:38408	P	libz1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38716	P	libproxy1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34793	P	Security update for amanda (Moderate)	2020-12-01
oval:org.opensuse.security:def:30781	P	Security update for bind	2020-12-01
oval:org.opensuse.security:def:38022	P	pcsc-ccid on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10460	P	lhasa-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32709	P	libexif on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30384	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:38568	P	ctags on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31523	P	Security update for rsync (Moderate)	2020-12-01
oval:org.opensuse.security:def:35431	P	Security update for openssl1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34779	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:30855	P	Security update for dnsmasq (Important)	2020-12-01
oval:org.opensuse.security:def:38159	P	cups-filters on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34685	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:10453	P	hplip-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30538	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:38627	P	kbd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31544	P	Security update for Samba	2020-12-01
oval:org.opensuse.security:def:28306	P	Recommended update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:35472	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28698	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:30987	P	Security update for ipsec-tools (Moderate)	2020-12-01
oval:org.opensuse.security:def:38261	P	libXt6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33173	P	libpoppler-glib4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34724	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:17412	P	Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:26904	P	glib2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30593	P	Security update for openvpn	2020-12-01
oval:org.opensuse.security:def:31588	P	Security update for tcpdump (Moderate)	2020-12-01
oval:org.opensuse.security:def:28341	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28699	P	Security update for gnutls	2020-12-01
oval:org.opensuse.security:def:31079	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:33329	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:27610	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:34749	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:18050	P	Security update for libgit2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:26968	P	librpcsecgss on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34176	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:30642	P	Security update for xorg-x11-libXfixes	2020-12-01
oval:org.opensuse.security:def:10448	P	gnome-shell-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10813	P	libxml2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31136	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:38409	P	libzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33386	P	Security update for compat-openssl097g (Moderate)	2020-12-01
oval:org.opensuse.security:def:27624	P	Security update for inn	2020-12-01
oval:org.opensuse.security:def:18076	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:27096	P	clamav on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34274	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:10774	P	libplist++-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10835	P	php5-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38569	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27668	P	Security update for rubygem-json_pure	2020-12-01
oval:org.opensuse.security:def:37925	P	libnetpbm11 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27177	P	libcap-progs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34791	P	Security update for a2ps	2020-12-01
oval:org.opensuse.security:def:31379	P	Security update for openssl1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38628	P	kdump on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29934	P	Security update for libical (Moderate)	2020-12-01
oval:org.opensuse.security:def:10461	P	lib3ds-1-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9930	P	libupsclient1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27234	P	logwatch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17422	P	Security update for compat-openssl098 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28710	P	Security update for icedtea-web	2020-12-01
oval:org.opensuse.security:def:34875	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:31435	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:10752	P	libjson-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29935	P	Security update for libidn (Moderate)	2020-12-01
oval:org.opensuse.security:def:10483	P	libapr1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9977	P	python-pywbem on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27318	P	w3m on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18060	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:32708	P	libdrm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28779	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:35011	P	Security update for GPG2	2020-12-01
oval:org.opensuse.security:def:31484	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:10761	P	libmusicbrainz-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10814	P	libxslt-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10529	P	libpcscspy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:9992	P	squid on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27469	P	libotr-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38787	P	qemu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18086	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28910	P	Security update for gcc5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:35112	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:10836	P	php7-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34780	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:10576	P	nut-cgi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10011	P	vsftpd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27522	P	obex-data-server on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39425	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:37926	P	libnghttp2-14 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28996	P	Security update for gnutls	2020-12-01
oval:org.opensuse.security:def:35169	P	Security update for krb5 (Important)	2020-12-01
oval:org.opensuse.security:def:38676	P	libgypsy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17400	P	Security update for ipmitool (Important)	2020-12-01
oval:org.opensuse.security:def:37937	P	libpcre1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10591	P	python3-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27571	P	taglib-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31382	P	Security update for openvpn	2020-12-01
oval:org.opensuse.security:def:39467	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30769	P	Security update for audiofile (Moderate)	2020-12-01
oval:org.opensuse.security:def:9931	P	libusbmuxd4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29053	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:33541	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:38021	P	patch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10610	P	xfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31420	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30770	P	Security update for augeas	2020-12-01
oval:org.opensuse.security:def:9978	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29137	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:35419	P	Security update for openssl (Important)	2020-12-01
oval:org.opensuse.security:def:30681	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:34179	P	Security update for openssl1 (Moderate)	2020-12-01
oval:com.ubuntu.artful:def:20179227000	V	CVE-2017-9227 on Ubuntu 17.10 (artful) - medium.	2017-05-24
oval:com.ubuntu.bionic:def:20179227000	V	CVE-2017-9227 on Ubuntu 18.04 LTS (bionic) - medium.	2017-05-24
oval:com.ubuntu.bionic:def:201792270000000	V	CVE-2017-9227 on Ubuntu 18.04 LTS (bionic) - medium.	2017-05-24
oval:com.ubuntu.trusty:def:20179227000	V	CVE-2017-9227 on Ubuntu 14.04 LTS (trusty) - medium.	2017-05-24
oval:com.ubuntu.xenial:def:201792270000000	V	CVE-2017-9227 on Ubuntu 16.04 LTS (xenial) - medium.	2017-05-24
oval:com.ubuntu.xenial:def:20179227000	V	CVE-2017-9227 on Ubuntu 16.04 LTS (xenial) - medium.	2017-05-24

BACK