Vulnerability CVE-2018-12882

Vulnerability Name:

CVE-2018-12882 (CCN-145424)

Assigned:

2018-06-03

Published:

2018-06-03

Updated:

2019-03-12

Summary:

exif_read_from_impl in ext/exif/exif.c in PHP 7.2.x through 7.2.7 allows attackers to trigger a use-after-free (in exif_read_from_file) because it closes a stream that it is not responsible for closing. The vulnerable code is reachable through the PHP exif_read_data function.

CVSS v3 Severity:

9.8 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-416

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2018-12882

Source: CCN
Type: IBM Security Bulletin 733925 (System x Blades)
Vulnerability in PHP affects IBM BladeCenter Advanced Management Module (AMM)

Source: CCN
Type: IBM Security Bulletin 734713 (PureFlex System & Flex System)
IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in php (CVE-2018-10548 CVE-2018-12882)

Source: CCN
Type: IBM Security Bulletin 787455 (Lotus Protector for Mail Security)
IBM Lotus Protector for Mail Security has released fixes in response to the public disclosed vulnerability for PHP (CVE-2018-12882)

Source: BID
Type: Third Party Advisory, VDB Entry
104551

Source: CCN
Type: BID-104551
PHP 'ext/exif/exif.c' Denial of Service Vulnerability

Source: CCN
Type: PHP Bug #76409
heap use after free in _php_stream_free

Source: CONFIRM
Type: Issue Tracking, Patch, Vendor Advisory
https://bugs.php.net/bug.php?id=76409

Source: XF
Type: UNKNOWN
php-cve201812882-dos(145424)

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20181109-0001/

Source: UBUNTU
Type: Third Party Advisory
USN-3702-1

Source: UBUNTU
Type: Third Party Advisory
USN-3702-2

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-12882

Vulnerable Configuration:

Configuration 1:

cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.2.0 and <= 7.2.7)

Configuration 2:

cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Configuration 3:

cpe:/a:netapp:storage_automation_store:-:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:php:php:7.2.7:-:*:*:*:*:*:*

AND

cpe:/a:ibm:lotus_protector:2.8.1:*:*:*:mail_security:*:*:*

OR cpe:/a:ibm:lotus_protector:2.8.3:*:*:*:mail_security:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201812882	V	CVE-2018-12882	2023-06-22
oval:org.opensuse.security:def:8075	P	apache2-mod_php7-7.4.33-150400.4.22.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:51969	P	Security update for vim (Important)	2022-11-29
oval:org.opensuse.security:def:51935	P	Security update for libksba (Critical)	2022-10-21
oval:org.opensuse.security:def:639	P	Security update for grafana (Important) (in QA)	2022-10-06
oval:org.opensuse.security:def:94257	P	(Important)	2022-07-11
oval:org.opensuse.security:def:4299	P	Security update for resource-agents (Moderate)	2022-07-08
oval:org.opensuse.security:def:3434	P	apache2-mod_perl-2.0.8-11.43 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3540	P	krb5-1.12.5-40.37.7 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:95064	P	apache2-mod_php7-7.4.25-150400.2.8 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95170	P	apache2-mod_php8-8.0.10-150400.2.8 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:1678	P	Security update for 389-ds (Important)	2022-06-14
oval:org.opensuse.security:def:4295	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:1091	P	Security update for vim (Important)	2022-03-04
oval:org.opensuse.security:def:1687	P	Security update for wireshark (Moderate)	2022-02-14
oval:org.opensuse.security:def:113132	P	php7-7.4.24-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:113137	P	php8-8.0.11-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:10711	P	Security update for MozillaThunderbird (Important)	2022-01-12
oval:org.opensuse.security:def:10439	P	Security update for SDL2 (Important) (in QA)	2022-01-12
oval:org.opensuse.security:def:10710	P	Security update for the Linux Kernel (Important) (in QA)	2022-01-07
oval:org.opensuse.security:def:10438	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:4240	P	Security update for openssh (Important)	2021-12-22
oval:org.opensuse.security:def:30158	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:10372	P	Security update for aaa_base (Moderate)	2021-12-03
oval:org.opensuse.security:def:10371	P	Security update for the Linux Kernel (Important)	2021-12-02
oval:org.opensuse.security:def:29455	P	Security update for webkit2gtk3 (Important)	2021-12-01
oval:org.opensuse.security:def:32232	P	Security update for webkit2gtk3 (Important)	2021-12-01
oval:org.opensuse.security:def:4285	P	Security update for pcre (Moderate)	2021-11-10
oval:org.opensuse.security:def:10170	P	Security update for qemu (Important)	2021-11-04
oval:org.opensuse.security:def:34584	P	Security update for tomcat (Important)	2021-11-03
oval:org.opensuse.security:def:33036	P	Security update for binutils (Moderate)	2021-11-02
oval:org.opensuse.security:def:29438	P	Security update for qemu (Important)	2021-10-28
oval:org.opensuse.security:def:10169	P	Security update for Salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:4163	P	Security update for python (Moderate)	2021-10-20
oval:org.opensuse.security:def:30137	P	Security update for MozillaFirefox (Important)	2021-10-15
oval:org.opensuse.security:def:51672	P	Security update for webkit2gtk3 (Important)	2021-10-06
oval:org.opensuse.security:def:106567	P	php8-8.0.11-1.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:106565	P	php7-7.4.24-1.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:71345	P	logrotate-3.13.0-4.3.9 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:30247	P	Security update for openssl (Low)	2021-09-20
oval:org.opensuse.security:def:66926	P	Security update for xen (Moderate)	2021-09-18
oval:org.opensuse.security:def:4151	P	Security update for libaom (Important)	2021-09-09
oval:org.opensuse.security:def:64758	P	Security update for libesmtp (Important)	2021-09-03
oval:org.opensuse.security:def:10147	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:10148	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:11120	P	Security update for libspf2 (Critical)	2021-08-25
oval:org.opensuse.security:def:33962	P	Security update for openssl-1_0_0 (Important)	2021-08-24
oval:org.opensuse.security:def:70282	P	Security update for openssl-1_0_0 (Important)	2021-08-24
oval:org.opensuse.security:def:10139	P	Security update for djvulibre (Important)	2021-08-20
oval:org.opensuse.security:def:10140	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:48073	P	libXcursor1-1.1.14-4.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14966	P	libXtst6-1.2.2-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14213	P	libass5-0.10.2-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14107	P	cracklib-2.9.0-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47627	P	gnutls-3.3.27-3.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14950	P	libSoundTouch0-1.7.1-5.11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14083	P	apache2-2.4.23-28.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13973	P	libvncclient0-0.9.9-16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48313	P	stunnel-5.00-4.3.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14972	P	libapr-util1-1.5.3-2.8.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13937	P	libotr5-4.0.0-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13945	P	libpoppler44-0.24.4-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14293	P	libsrtp1-1.5.2-2.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14219	P	libdmx1-1.1.3-3.51 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47941	P	SuSEfirewall2-3.6.312.333-3.13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47612	P	fuse-2.9.3-6.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14120	P	dhcp-4.3.3-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14089	P	audiofile-0.3.6-10.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47613	P	g3utils-1.1.36-58.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14035	P	squid-3.5.21-23.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13943	P	libpolkit0-0.113-5.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13951	P	libraptor2-0-2.0.10-3.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14299	P	libthai-data-0.1.25-4.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48165	P	libospf0-1.1.1-17.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14306	P	libvirglrenderer0-0.5.0-11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14238	P	libipa_hbac0-1.13.4-33.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14282	P	libqt4-32bit-4.8.6-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14126	P	e2fsprogs-1.42.11-15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47748	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14101	P	clamav-0.99.2-32.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14041	P	sysconfig-0.84.0-13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14944	P	libHX28-3.18-1.18 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13967	P	libtiff5-32bit-4.0.6-26.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14312	P	libwireshark8-2.2.7-47.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14244	P	libjpeg-turbo-1.3.1-30.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14288	P	libsnmp30-32bit-5.7.3-4.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:2418	P	php7-embed-7.4.6-3.17.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:101415	P	apache2-mod_php7-7.4.6-3.17.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63448	P	php7-embed-7.4.6-1.11 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:94292	P	php7-embed-7.4.6-1.11 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63507	P	php7-embed-7.4.6-3.17.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2325	P	apache2-mod_php7-7.4.6-3.17.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:107671	P	php7-embed-7.4.6-1.11 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2359	P	php7-embed-7.4.6-1.11 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:101005	P	php7-embed-7.4.6-1.11 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63414	P	apache2-mod_php7-7.4.6-3.17.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:100970	P	libseccomp-devel-2.4.1-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:33951	P	Security update for webkit2gtk3 (Important)	2021-08-03
oval:org.opensuse.security:def:33950	P	Security update for dbus-1 (Important)	2021-08-02
oval:org.opensuse.security:def:31229	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-07-21
oval:org.opensuse.security:def:10686	P	Security update for the Linux Kernel (Important)	2021-07-20
oval:org.opensuse.security:def:11099	P	Security update for fossil (Moderate)	2021-07-17
oval:org.opensuse.security:def:11098	P	Security update for claws-mail (Moderate)	2021-07-16
oval:org.opensuse.security:def:10685	P	Security update for the Linux Kernel (Important)	2021-07-15
oval:org.opensuse.security:def:10296	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:68005	P	Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:66834	P	Security update for jetty-minimal (Important)	2021-06-17
oval:org.opensuse.security:def:10277	P	Security update for spice-gtk (Moderate)	2021-06-10
oval:org.opensuse.security:def:10278	P	Security update for ucode-intel (Important)	2021-06-10
oval:org.opensuse.security:def:16635	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124640	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48769	P	empathy-3.12.12-5.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11412	P	libvorbis0-1.3.3-8.23 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:124641	P	php7-devel-7.0.7-50.52.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36281	P	python-pam-0.5.0-3.20.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11434	P	pcsc-ccid-1.4.14-1.45 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48840	P	gstreamer-0_10-plugins-base-0.10.36-17.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48611	P	qemu-2.6.1-27.15 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48738	P	libmysqlclient_r18-10.0.21-1.17 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11413	P	libvte9-0.28.2-17.83 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11435	P	perl-32bit-5.18.2-3.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16634	P	php5-devel-5.5.14-109.41.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48527	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48673	P	gd-32bit-2.1.0-3.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:32941	P	Security update for spice (Important)	2021-06-08
oval:org.opensuse.security:def:36323	P	wpa_supplicant-0.7.1-6.15.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10263	P	Security update for ceph (Important)	2021-06-02
oval:org.opensuse.security:def:10262	P	Security update for curl (Moderate)	2021-05-31
oval:org.opensuse.security:def:73617	P	Security update for the Linux Kernel (Important)	2021-05-12
oval:org.opensuse.security:def:34426	P	Security update for avahi (Moderate)	2021-05-04
oval:org.opensuse.security:def:4120	P	Security update for MozillaFirefox (Important)	2021-04-23
oval:org.opensuse.security:def:29350	P	Security update for qemu (Important)	2021-04-22
oval:org.opensuse.security:def:30174	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:31142	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-04-07
oval:org.opensuse.security:def:34046	P	Security update for openssl-1_1 (Important)	2021-03-25
oval:org.opensuse.security:def:64671	P	Security update for ruby2.5 (Important)	2021-03-24
oval:org.opensuse.security:def:68105	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:33093	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:32271	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:10216	P	Security update for wpa_supplicant (Important)	2021-03-08
oval:org.opensuse.security:def:10215	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:34642	P	Security update for MozillaFirefox (Important)	2021-03-01
oval:org.opensuse.security:def:10397	P	Security update for salt (Critical)	2021-02-26
oval:org.opensuse.security:def:10396	P	Security update for php7 (Important)	2021-02-24
oval:org.opensuse.security:def:4179	P	Security update for webkit2gtk3 (Important)	2021-02-22
oval:org.opensuse.security:def:30026	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:35265	P	Security update for python-urllib3 (Moderate)	2021-02-03
oval:org.opensuse.security:def:29399	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:10297	P	Security update for go1.14 (Moderate)	2021-01-26
oval:org.opensuse.security:def:11121	P	Security update for viewvc (Moderate)	2021-01-19
oval:org.opensuse.security:def:4292	P	Security update for hawk2 (Important)	2021-01-12
oval:org.opensuse.security:def:28917	P	Security update for dovecot22 (Important)	2021-01-04
oval:org.opensuse.security:def:70177	P	Security update for flac (Moderate)	2020-12-24
oval:org.opensuse.security:def:51863	P	Security update for xen (Moderate)	2020-12-22
oval:org.opensuse.security:def:38652	P	Security update for MozillaFirefox (Critical)	2020-12-21
oval:org.opensuse.security:def:34337	P	Security update for python36 (Important)	2020-12-17
oval:org.opensuse.security:def:29952	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:31085	P	Security update for xen (Important)	2020-12-07
oval:org.opensuse.security:def:4959	P	Security update for postgresql12 (Important)	2020-12-04
oval:org.opensuse.security:def:35533	P	cups-1.3.9-8.30.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4078	P	libwsman-devel-2.4.11-21.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2317	P	apache2-mod_php7-7.4.6-1.11 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71458	P	conntrack-tools-1.4.5-1.46 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107636	P	apache2-mod_php7-7.4.6-1.11 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35599	P	libpython2_6-1_0-2.6.0-8.9.20 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63397	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16948	P	php7-devel-7.0.7-50.85.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4065	P	libtiff-devel-4.0.9-44.30.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63406	P	apache2-mod_php7-7.4.6-1.11 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16949	P	php72-devel-7.2.5-1.26.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35643	P	systemtap-1.0-0.15.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35572	P	kdelibs4-4.3.5-0.2.46 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90085	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4057	P	libssh-devel-0.8.7-1.31 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117194	P	apache2-mod_php7-7.4.6-1.11 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17372	P	libvpx1-32bit-1.3.0-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:17380	P	pulseaudio-module-bluetooth-5.0-4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2308	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103740	P	apache2-mod_php7-7.2.5-4.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4937	P	Security update for postgresql10 (Important)	2020-12-02
oval:org.opensuse.security:def:4260	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:32715	P	libicu-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10529	P	libpcscspy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17623	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:30599	P	Security update for php53 (Important)	2020-12-01
oval:org.opensuse.security:def:30687	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:34755	P	Security update for MozillaFirefox, MozillaFirefox-branding-SLED, firefox-gcc5, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:10454	P	icecream on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10462	P	libHX-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50731	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:17606	P	security update for xen (Moderate)	2020-12-01
oval:org.opensuse.security:def:35425	P	Security update for openssl1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:10762	P	libmysqlclient-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26898	P	freetype2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:26910	P	gstreamer-0_10-plugins-base on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38337	P	libopenssl-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27577	P	vte-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27630	P	Security update for lcms	2020-12-01
oval:org.opensuse.security:def:33548	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:32716	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38183	P	flatpak on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29296	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:33393	P	Security update for spacewalk	2020-12-01
oval:org.opensuse.security:def:33481	P	Security update for libnetpbm	2020-12-01
oval:org.opensuse.security:def:10774	P	libplist++-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35437	P	Security update for openvpn-openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:50128	P	apache2-mod_php7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37950	P	libqpdf18 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17499	P	Security update for bluez (Important)	2020-12-01
oval:org.opensuse.security:def:30304	P	Security update for syslog-ng (Moderate)	2020-12-01
oval:org.opensuse.security:def:10752	P	libjson-c-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17422	P	Security update for compat-openssl098 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17430	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:30993	P	Security update for jasper	2020-12-01
oval:org.opensuse.security:def:35118	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:10611	P	xfsprogs-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17884	P	Security update for libmspack (Moderate)	2020-12-01
oval:org.opensuse.security:def:31388	P	Security update for openwsman (Important)	2020-12-01
oval:org.opensuse.security:def:38040	P	python-cupshelpers on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27324	P	xdg-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10447	P	gnome-settings-daemon-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38812	P	tftp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37951	P	libqt4-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29003	P	Security update for rubygem-bundler	2020-12-01
oval:org.opensuse.security:def:38740	P	libvdpau1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17856	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:50065	P	libapr-util1-dbd-mysql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28706	P	Security update for gstreamer-0_10-plugins-bad	2020-12-01
oval:org.opensuse.security:def:34182	P	Security update for openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:10591	P	python3-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17765	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:17822	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:30750	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:39486	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34797	P	Security update for ansible, python-straight-plugin (Moderate)	2020-12-01
oval:org.opensuse.security:def:10530	P	libpng12-compat-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51129	P	Security update for vim (Important)	2020-12-01
oval:org.opensuse.security:def:17673	P	Security update for MozillaFirefox, MozillaFirefox-branding-SLE, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:31441	P	Security update for pixman (Moderate)	2020-12-01
oval:org.opensuse.security:def:31529	P	Security update for rzsz (Moderate)	2020-12-01
oval:org.opensuse.security:def:27102	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38587	P	emacs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38695	P	liblua5_2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73499	P	gdb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31426	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28705	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:28717	P	Security update for kdebase4-workspace	2020-12-01
oval:org.opensuse.security:def:32806	P	xdg-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38343	P	libpango-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34799	P	Security update for ansible (Moderate)	2020-12-01
oval:org.opensuse.security:def:10483	P	libapr1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17587	P	Security update for php5 (Important)	2020-12-01
oval:org.opensuse.security:def:30544	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:34730	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:10775	P	libpng12-compat-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53390	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50597	P	Security update for gnutls (Important)	2020-12-01
oval:org.opensuse.security:def:17549	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:10753	P	libksba-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18494	P	Security update for gd (Moderate)	2020-12-01
oval:org.opensuse.security:def:34226	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38279	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27528	P	opie on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27616	P	Security update for freeradius	2020-12-01
oval:org.opensuse.security:def:38046	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29144	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:33336	P	Security update for curl	2020-12-01
oval:org.opensuse.security:def:33442	P	Security update for expat	2020-12-01
oval:org.opensuse.security:def:10448	P	gnome-shell-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17414	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:17906	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:50074	P	libosinfo-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29941	P	Security update for openLDAP	2020-12-01
oval:org.opensuse.security:def:30861	P	Security update for ecryptfs-utils (Moderate)	2020-12-01
oval:org.opensuse.security:def:35017	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:10592	P	quagga-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51397	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:17815	P	Security update for php5 (Important)	2020-12-01
oval:org.opensuse.security:def:17872	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:31594	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:39492	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34785	P	Security update for OpenEXR (Moderate)	2020-12-01
oval:org.opensuse.security:def:37956	P	libsaml8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27240	P	mipv6d on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38762	P	opie on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18520	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38593	P	fontconfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38701	P	libmusicbrainz4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28312	P	Security update for openssl (Important)	2020-12-01
oval:org.opensuse.security:def:29940	P	Security update for libksba (Moderate)	2020-12-01
oval:org.opensuse.security:def:10576	P	nut-cgi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17733	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:30648	P	Security update for zypper	2020-12-01
oval:org.opensuse.security:def:30706	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:34786	P	Security update for OpenEXR (Moderate)	2020-12-01
oval:org.opensuse.security:def:10484	P	libarchive-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50966	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:17637	P	Security update for util-linux (Moderate)	2020-12-01
oval:org.opensuse.security:def:31385	P	Security update for openvpn-openssl1 (Important)	2020-12-01
oval:org.opensuse.security:def:35484	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:39444	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50574	P	Security update for Mesa (Moderate)	2020-12-01
oval:org.opensuse.security:def:26974	P	libsss_idmap0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38427	P	opie on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27674	P	Security update for subversion	2020-12-01
oval:org.opensuse.security:def:18544	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:35478	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32727	P	libpython2_6-1_0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38285	P	libexif12 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33504	P	Security update for ntp	2020-12-01
oval:org.opensuse.security:def:10453	P	hplip-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10461	P	lib3ds-1-3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17556	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:30390	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:34691	P	Security update for xorg-x11-libX11	2020-12-01
oval:org.opensuse.security:def:10761	P	libmusicbrainz-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52044	P	Security update for libidn2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28347	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50575	P	Security update for libvpx (Important)	2020-12-01
oval:org.opensuse.security:def:17464	P	Security update for perl-DBI (Important)	2020-12-01
oval:org.opensuse.security:def:35175	P	Security update for kvm (Important)	2020-12-01
oval:org.opensuse.security:def:51776	P	Security update for opencv (Moderate)	2020-12-01
oval:org.opensuse.security:def:53320	P	Security update for dovecot23 (Important)	2020-12-01
oval:org.opensuse.security:def:30776	P	Security update for axis (Moderate)	2020-12-01
oval:org.opensuse.security:def:38177	P	emacs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27475	P	libpulse-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10460	P	lhasa-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34186	P	Security update for openvpn (Important)	2020-12-01
oval:org.opensuse.security:def:50119	P	apache2-mod_php7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37944	P	libpoppler-glib8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37962	P	libspice-client-glib-2_0-8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29060	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:33180	P	libsndfile on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38768	P	patch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18570	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34280	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:10610	P	xfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17834	P	Security update for python3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30775	P	Security update for avahi (Moderate)	2020-12-01
oval:org.opensuse.security:def:30787	P	Security update for bind (Critical)	2020-12-01
oval:org.opensuse.security:def:34881	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:10577	P	ocaml on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51233	P	Security update for evince (Important)	2020-12-01
oval:org.opensuse.security:def:17783	P	Security update for gimp (Moderate)	2020-12-01
oval:org.opensuse.security:def:31490	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:31550	P	Security update for shim (Moderate)	2020-12-01
oval:org.opensuse.security:def:38806	P	sysconfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37945	P	libprocps3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:27183	P	libexiv2-4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38646	P	libXp6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38734	P	libtcnative-1-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39450	P	Security update for php5 (Important)	2020-12-01
oval:org.opensuse.security:def:26899	P	fuse on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28786	P	Security update for mozilla-nss (Moderate)	2020-12-01
oval:org.opensuse.security:def:38433	P	pam_ssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29499	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:com.ubuntu.bionic:def:2018128820000000	V	CVE-2018-12882 on Ubuntu 18.04 LTS (bionic) - medium.	2018-06-26
oval:com.ubuntu.xenial:def:2018128820000000	V	CVE-2018-12882 on Ubuntu 16.04 LTS (xenial) - medium.	2018-06-26
oval:com.ubuntu.artful:def:201812882000	V	CVE-2018-12882 on Ubuntu 17.10 (artful) - medium.	2018-06-25
oval:com.ubuntu.bionic:def:201812882000	V	CVE-2018-12882 on Ubuntu 18.04 LTS (bionic) - medium.	2018-06-25
oval:com.ubuntu.trusty:def:201812882000	V	CVE-2018-12882 on Ubuntu 14.04 LTS (trusty) - medium.	2018-06-25
oval:com.ubuntu.xenial:def:201812882000	V	CVE-2018-12882 on Ubuntu 16.04 LTS (xenial) - medium.	2018-06-25

BACK