Vulnerability CVE-2018-1139

Vulnerability Name:

CVE-2018-1139 (CCN-148707)

Assigned:

2017-12-04

Published:

2018-08-14

Updated:

2022-08-29

Summary:

A flaw was found in the way samba before 4.7.9 and 4.8.4 allowed the use of weak NTLMv1 authentication even when NTLMv1 was explicitly disabled. A man-in-the-middle attacker could use this flaw to read the credential and other details passed between the samba server and client.

CVSS v3 Severity:

8.1 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H)
7.1 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

5.4 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
4.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Adjacent Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

5.4 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
4.7 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Adjacent Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

4.8 Medium (CCN CVSS v2 Vector: AV:A/AC:L/Au:N/C:P/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Adjacent_Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-522
CWE-20

Vulnerability Consequences:

Obtain Information

References:

Source: MITRE
Type: CNA
CVE-2018-1139

Source: CCN
Type: IBM Security Bulletin 796402 (Spectrum Protect Plus)
Multiple Samba vulnerabilities affect IBM Spectrum Protect Plus (CVE-2018-1139, CVE-2018-1140, CVE-2018-10858, CVE-2018-10918, CVE-2018-10919)

Source: BID
Type: Third Party Advisory, VDB Entry
105084

Source: CCN
Type: BID-105084
Samba CVE-2018-1139 Remote Security Bypass Vulnerability

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:2612

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:2613

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:3056

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-1139

Source: XF
Type: UNKNOWN
samba-cve20181139-info-disc(148707)

Source: GENTOO
Type: Third Party Advisory
GLSA-202003-52

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20180814-0001/

Source: UBUNTU
Type: Third Party Advisory
USN-3738-1

Source: CCN
Type: IBM Security Bulletin 730345 (i)
Multiple Vulnerabilities in Samba affect IBM i

Source: CCN
Type: IBM Security Bulletin 874886 (QRadar SIEM)
IBM QRadar SIEM is vulnerable to Publicly disclosed Samba vulnerabilities (CVE-2018-10858, CVE-2018-1139)

Source: CCN
Type: Mend Vulnerability Database
CVE-2018-1139

Source: CCN
Type: Samba Web site
Weak authentication protocol allowed

Source: CONFIRM
Type: Third Party Advisory
https://www.samba.org/samba/security/CVE-2018-1139.html

Vulnerable Configuration:

Configuration 1:

cpe:/a:samba:samba:*:*:*:*:*:*:*:* (Version >= 4.8.0 and < 4.8.4)

OR cpe:/a:samba:samba:*:*:*:*:*:*:*:* (Version >= 4.7.0 and < 4.7.9)

Configuration 2:

cpe:/o:redhat:enterprise_linux_desktop:7.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_workstation:7.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:samba:samba:4.7.8:*:*:*:*:*:*:*

OR cpe:/a:samba:samba:4.8.3:*:*:*:*:*:*:*

AND

cpe:/o:ibm:i:7.2:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_protect_plus:10.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_protect_plus:10.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_protect_plus:10.1.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20181139	V	CVE-2018-1139	2023-06-22
oval:org.opensuse.security:def:7447	P	bcel-5.2-150200.11.3.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7469	P	cpp7-7.5.0+r278197-4.30.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7661	P	libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7662	P	libsamba-policy-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:723	P	Security update for postgresql14 (Important)	2022-09-01
oval:org.opensuse.security:def:422	P	Security update for trivy (Moderate)	2022-08-06
oval:org.opensuse.security:def:6343	P	Security update for freerdp (Critical)	2022-07-11
oval:org.opensuse.security:def:3071	P	ft2demos-2.6.3-7.15.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3164	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3072	P	fuse-2.9.3-6.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3584	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94702	P	libsamba-policy-devel-4.15.5+git.328.f1f29505d84-150400.1.44 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94701	P	libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:16	P	bind-devel-9.16.6-20.39 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:129	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:1058	P	Security update for MozillaFirefox (Important)	2022-04-07
oval:org.opensuse.security:def:951	P	Security update for ucode-intel (Important)	2022-02-25
oval:org.opensuse.security:def:112125	P	ctdb-4.14.6+git.182.2205d5224e3-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:69815	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:10431	P	Security update for xorg-x11-server (Important)	2021-12-21
oval:org.opensuse.security:def:10385	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:7294	P	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:4235	P	Security update for wireshark (Moderate)	2021-12-06
oval:org.opensuse.security:def:6488	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:93779	P	(Important)	2021-12-06
oval:org.opensuse.security:def:10363	P	Security update for tomcat (Important)	2021-11-16
oval:org.opensuse.security:def:105662	P	Security update for MozillaFirefox (Important)	2021-11-10
oval:org.opensuse.security:def:10355	P	Security update for busybox (Important)	2021-10-27
oval:org.opensuse.security:def:10663	P	Security update for ffmpeg (Moderate)	2021-10-26
oval:org.opensuse.security:def:64593	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:7272	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important)	2021-10-12
oval:org.opensuse.security:def:4223	P	Security update for libaom (Low)	2021-10-12
oval:org.opensuse.security:def:67569	P	Security update for the Linux Kernel (Important)	2021-09-23
oval:org.opensuse.security:def:103321	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:96631	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61511	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:89666	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71267	P	libjavascriptcoregtk-4_0-18-2.24.1-3.24.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71380	P	python3-pyOpenSSL-17.5.0-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71252	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:8647	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:4150	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:10654	P	Security update for MozillaThunderbird (Important)	2021-08-30
oval:org.opensuse.security:def:1215	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:69710	P	Security update for fetchmail (Moderate)	2021-08-20
oval:org.opensuse.security:def:46944	P	gd-2.1.0-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48069	P	libSDL-1_2-0-1.2.15-15.11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47079	P	libsqlite3-0-3.8.10.2-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47747	P	libncurses5-32bit-5.9-58.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48171	P	libplist3-1.12-20.3.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47404	P	libraptor2-0-2.0.10-3.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14983	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47472	P	policycoreutils-2.5-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48061	P	lcms2-2.7-9.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47644	P	hyper-v-7-7.5 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48285	P	python-numpy-1.8.0-5.8.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47942	P	aaa_base-13.2+git20140911.61c1681-38.13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47473	P	powerpc-utils-1.3.3-5.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47608	P	file-5.22-10.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47933	P	yubikey-manager-0.6.0-1.27 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47732	P	libksba8-1.3.0-23.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48173	P	libpng15-15-1.5.22-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48004	P	expat-2.1.0-21.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46958	P	gpgme-1.5.1-1.11 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47733	P	liblcms1-1.19-17.28 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48100	P	libcares2-1.9.1-9.4.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47272	P	gpg2-2.0.24-8.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47868	P	python-pyOpenSSL-16.0.0-4.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47496	P	rtkit-0.11_git201205151338-8.14 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48193	P	libsnmp30-32bit-5.7.3-6.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47858	P	powerpc-utils-1.3.5-3.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47487	P	qemu-2.9.0-5.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48103	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46943	P	fuse-2.9.3-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47801	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48025	P	gnome-shell-search-provider-nautilus-3.20.3-23.12.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:71888	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100905	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62147	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:8628	P	Security update for nodejs8 (Important)	2021-08-05
oval:org.opensuse.security:def:68027	P	Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP1) (Important)	2021-07-27
oval:org.opensuse.security:def:8811	P	Security update for MozillaFirefox (Important)	2021-07-27
oval:org.opensuse.security:def:6451	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:67539	P	Security update for the Linux Kernel (Important)	2021-07-14
oval:org.opensuse.security:def:8798	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:8613	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:4137	P	Security update for gupnp (Important)	2021-06-24
oval:org.opensuse.security:def:1472	P	Security update for apache2 (Important)	2021-06-22
oval:org.opensuse.security:def:8789	P	Security update for salt (Critical)	2021-06-21
oval:org.opensuse.security:def:6470	P	Security update for the Linux Kernel (Important)	2021-06-15
oval:org.opensuse.security:def:8780	P	Security update for spice-gtk (Moderate)	2021-06-10
oval:org.opensuse.security:def:48387	P	coreutils-8.25-12.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48793	P	libmysqlclient_r18-10.0.27-12.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48889	P	typelib-1_0-Gtk-2_0-2.24.31-7.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70909	P	ghostscript-9.23-1.16 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:71022	P	libsha1detectcoll-devel-1.0.3-2.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48647	P	wpa_supplicant-2.2-14.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48598	P	perl-Tk-804.031-3.76 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48700	P	libzmq3-4.0.4-2.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48471	P	libXrandr2-1.5.0-6.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48858	P	libmikmod3-3.2.0-4.59 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48809	P	libwebkit2gtk3-lang-2.12.5-1.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48960	P	pidgin-plugin-otr-4.0.2-1.29 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48433	P	gnutls-3.2.15-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48533	P	libpcsclite1-1.8.10-3.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48863	P	libpcrecpp0-32bit-8.39-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48731	P	libdirectfb-1_7-1-32bit-1.7.1-4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48629	P	supportutils-3.0-85.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11314	P	gnome-shell-3.10.4-22.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11336	P	libXcursor1-1.1.14-3.60 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70892	P	dnsmasq-2.78-1.38 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10676	P	Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly (Important)	2021-06-01
oval:org.opensuse.security:def:4129	P	Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly (Important)	2021-06-01
oval:org.opensuse.security:def:4192	P	Security update for fribidi (Important)	2021-05-19
oval:org.opensuse.security:def:8747	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:5031	P	Security update for avahi (Moderate)	2021-05-04
oval:org.opensuse.security:def:64680	P	Security update for ceph (Important)	2021-05-04
oval:org.opensuse.security:def:70779	P	Security update for MozillaThunderbird (Important)	2021-04-29
oval:org.opensuse.security:def:8566	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:8722	P	Security update for ruby2.5 (Important)	2021-03-24
oval:org.opensuse.security:def:9471	P	Security update for nghttp2 (Important)	2021-03-24
oval:org.opensuse.security:def:6321	P	Security update for evolution-data-server (Moderate)	2021-03-19
oval:org.opensuse.security:def:9449	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:6313	P	Security update for python (Important)	2021-02-11
oval:org.opensuse.security:def:6720	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15) (Important)	2021-02-10
oval:org.opensuse.security:def:64322	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:4367	P	Security update for the Linux Kernel (Live Patch 6 for SLE 12 SP5) (Important)	2020-12-07
oval:org.opensuse.security:def:4364	P	Security update for the Linux Kernel (Live Patch 3 for SLE 12 SP5) (Important)	2020-12-07
oval:org.opensuse.security:def:4371	P	Security update for the Linux Kernel (Live Patch 10 for SLE 12 SP5) (Important)	2020-12-07
oval:org.opensuse.security:def:6645	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15) (Important)	2020-12-07
oval:org.opensuse.security:def:116716	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71553	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107158	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:100492	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61812	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16850	P	libndr-devel-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12802	P	ctdb-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103191	P	ctdb-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1853	P	cpp9-9.3.1+git1296-1.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:96501	P	ctdb-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12977	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4014	P	libndr-devel-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:89536	P	ctdb-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:5009	P	Security update for nodejs8 (Moderate)	2020-12-02
oval:org.opensuse.security:def:4312	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:4251	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4332	P	Security update for the Linux Kernel (Live Patch 17 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4357	P	Security update for the Linux Kernel (Live Patch 20 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:64235	P	curl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6545	P	zoo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49164	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6603	P	freerdp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6496	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6796	P	mutt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49859	P	perl-PerlMagick on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6564	P	busybox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37488	P	libXcursor1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36752	P	squashfs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6626	P	gstreamer-0_10-plugins-base on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10478	P	libXv-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37555	P	libmusicbrainz4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36972	P	mozilla-nspr-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38237	P	lcms2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67669	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10512	P	libjpeg62-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6612	P	gimp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49913	P	libsamba-policy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37130	P	gnome-settings-daemon on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6778	P	libvte9 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8498	P	powerpc-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10612	P	xorg-x11-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6634	P	gzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67927	P	libpcre2-posix2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6436	P	libspice-server1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37380	P	apache2-mod_apparmor on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50236	P	libical-glib-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38279	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6570	P	coreutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66367	P	cpp7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36740	P	python-libxml2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8490	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6787	P	libzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50290	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:6518	P	telepathy-gabble on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6809	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36741	P	python-pyOpenSSL on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6611	P	ghostscript on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64105	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:37527	P	libgssglue1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66459	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36836	P	gd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73032	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10493	P	libexif-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37599	P	libupsclient1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73150	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37073	P	autofs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6745	P	libpulse-mainloop-glib0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67439	P	Security update for python-setuptools (Important)	2020-12-01
oval:org.opensuse.security:def:10587	P	polkit-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6621	P	gpgme on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49110	P	graphviz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6389	P	libjavascriptcoregtk-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37220	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64192	P	ctdb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8520	P	shim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37439	P	ghostscript on GA media (Moderate)	2020-12-01
oval:com.redhat.rhsa:def:20183056	P	RHSA-2018:3056: samba security, bug fix, and enhancement update (Moderate)	2018-10-30
oval:com.ubuntu.bionic:def:20181139000	V	CVE-2018-1139 on Ubuntu 18.04 LTS (bionic) - medium.	2018-08-22
oval:com.ubuntu.bionic:def:201811390000000	V	CVE-2018-1139 on Ubuntu 18.04 LTS (bionic) - medium.	2018-08-22
oval:com.ubuntu.trusty:def:20181139000	V	CVE-2018-1139 on Ubuntu 14.04 LTS (trusty) - medium.	2018-08-22
oval:com.ubuntu.xenial:def:201811390000000	V	CVE-2018-1139 on Ubuntu 16.04 LTS (xenial) - medium.	2018-08-22
oval:com.ubuntu.xenial:def:20181139000	V	CVE-2018-1139 on Ubuntu 16.04 LTS (xenial) - medium.	2018-08-22

BACK