Vulnerability CVE-2018-1304 - CERT Civis.Net

Vulnerability Name:

CVE-2018-1304 (CCN-139476)

Assigned:

2017-12-07

Published:

2018-01-31

Updated:

2019-10-03

Summary:

The URL pattern of "" (the empty string) which exactly maps to the context root was not correctly handled in Apache Tomcat 9.0.0.M1 to 9.0.4, 8.5.0 to 8.5.27, 8.0.0.RC1 to 8.0.49 and 7.0.0 to 7.0.84 when used as part of a security constraint definition. This caused the constraint to be ignored. It was, therefore, possible for unauthorised users to gain access to web application resources that should have been protected. Only security constraints with a URL pattern of the empty string were affected.

CVSS v3 Severity:

5.9 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N)
5.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): None Availibility (A): None

7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

6.5 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
5.7 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-noinfo
CWE-284

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2018-1304

Source: CCN
Type: oss-sec Mailing List, Fri, 23 Feb 2018 00:33:21 +0000
Fwd: [SECURITY] CVE-2018-1304 Security constraints mapped to context root are ignored

Source: CCN
Type: Apache Web site
Security constraint annotations applied too late CVE-2018-1305

Source: CCN
Type: IBM Security Bulletin T1027633 (Spectrum Symphony)
Vulnerability in Apache Tomcat affects IBM Platform Symphony, IBM Spectrum Symphony (CVE-2017-15698, CVE-2017-15706, CVE-2018-1323, CVE-2018-1305, CVE-2018-1304)

Source: CCN
Type: IBM Security Bulletin 2011364 (OpenPages GRC Platform)
IBM OpenPages GRC Platform has addressed multiple Apache Tomcat vulnerabilities.

Source: CCN
Type: IBM Security Bulletin 2015795 (Tivoli Application Dependency Discovery Manager)
Open Source Apache Tomcat vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (TADDM) (CVE-2017-15698, CVE-2017-15706, CVE-2018-1304, CVE-2018-1305)

Source: CCN
Type: IBM Security Bulletin 2016124 (Rational Build Forge)
Rational Build Forge Security Advisory for Apache Tomcat (CVE-2018-1304 and CVE-2018-1305)

Source: CCN
Type: IBM Security Bulletin 2017032 (WebSphere Cast Iron Cloud integration)
IBM WebSphere Cast Iron Solution is affected by Tomcat vulnerabilities

Source: CCN
Type: IBM Security Bulletin 2017328 (Rational DOORS Web Access)
Rational DOORS Web Access is affected by Apache Tomcat vulnerabilities

Source: CONFIRM
Type: Patch, Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujul2018-4258247.html

Source: CONFIRM
Type: Patch, Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpuoct2018-4428296.html

Source: BID
Type: Third Party Advisory, VDB Entry
103170

Source: CCN
Type: BID-103170
Apache Tomcat CVE-2018-1304 Security Bypass Vulnerability

Source: SECTRACK
Type: Third Party Advisory, VDB Entry
1040427

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:0465

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:0466

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:1320

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:1447

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:1448

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:1449

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:1450

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:1451

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:2939

Source: REDHAT
Type: UNKNOWN
RHSA-2019:2205

Source: XF
Type: UNKNOWN
apache-tomcat-cve20181304-sec-bypass(139476)

Source: MLIST
Type: Mailing List, Third Party Advisory
[tomcat-dev] 20190415 svn commit: r1857582 [18/22] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

Source: MLIST
Type: Mailing List, Vendor Advisory
[tomcat-dev] 20190319 svn commit: r1855831 [25/30] - in /tomcat/site/trunk: ./ docs/ xdocs/

Source: MLIST
Type: Mailing List, Vendor Advisory
[tomcat-dev] 20190325 svn commit: r1856174 [22/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/

Source: MLIST
Type: Mailing List, Third Party Advisory
[tomcat-dev] 20190415 svn commit: r1857582 [17/22] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

Source: MLIST
Type: Mailing List, Vendor Advisory
[tomcat-dev] 20190325 svn commit: r1856174 [23/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/

Source: MLIST
Type: Mailing List, Third Party Advisory
[tomcat-dev] 20190415 svn commit: r1857582 [19/22] - in /tomcat/site/trunk: docs/ xdocs/stylesheets/

Source: MLIST
Type: Mailing List, Third Party Advisory
[tomcat-dev] 20190413 svn commit: r1857494 [16/20] - in /tomcat/site/trunk: ./ docs/ xdocs/

Source: MLIST
Type: Mailing List, Third Party Advisory
[tomcat-dev] 20190413 svn commit: r1857494 [17/20] - in /tomcat/site/trunk: ./ docs/ xdocs/

Source: MISC
Type: Mailing List, Vendor Advisory
https://lists.apache.org/thread.html/b1d7e2425d6fd2cebed40d318f9365b44546077e10949b01b1f8a0fb@%3Cannounce.tomcat.apache.org%3E

Source: MLIST
Type: Mailing List, Vendor Advisory
[tomcat-dev] 20190325 svn commit: r1856174 [24/29] - in /tomcat/site/trunk: docs/ xdocs/ xdocs/stylesheets/

Source: MLIST
Type: Mailing List, Third Party Advisory
[tomcat-dev] 20190413 svn commit: r1857496 [3/4] - in /tomcat/site/trunk: ./ docs/ xdocs/

Source: MLIST
Type: Mailing List, Vendor Advisory
[tomcat-dev] 20190319 svn commit: r1855831 [24/30] - in /tomcat/site/trunk: ./ docs/ xdocs/

Source: MLIST
Type: UNKNOWN
[tomcat-dev] 20200203 svn commit: r1873527 [25/30] - /tomcat/site/trunk/docs/

Source: MLIST
Type: UNKNOWN
[tomcat-dev] 20200213 svn commit: r1873980 [29/34] - /tomcat/site/trunk/docs/

Source: MLIST
Type: UNKNOWN
[tomcat-dev] 20200203 svn commit: r1873527 [24/30] - /tomcat/site/trunk/docs/

Source: MLIST
Type: UNKNOWN
[tomcat-dev] 20200213 svn commit: r1873980 [27/34] - /tomcat/site/trunk/docs/

Source: MLIST
Type: UNKNOWN
[tomcat-dev] 20200213 svn commit: r1873980 [28/34] - /tomcat/site/trunk/docs/

Source: MLIST
Type: Issue Tracking, Third Party Advisory
[debian-lts-announce] 20180306 [SECURITY] [DLA 1301-1] tomcat7 security update

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20180627 [SECURITY] [DLA 1400-1] tomcat7 security update

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20180729 [SECURITY] [DLA 1450-1] tomcat8 security update

Source: CONFIRM
Type: Patch, Third Party Advisory
https://security.netapp.com/advisory/ntap-20180706-0001/

Source: UBUNTU
Type: Third Party Advisory
USN-3665-1

Source: DEBIAN
Type: Third Party Advisory
DSA-4281

Source: CCN
Type: IBM Security Bulletin 719117 (QRadar SIEM)
Apache Tomcat as used in IBM QRadar SIEM is vulnerable to security constraint bypass. (CVE-2018-1304, CVE-2018-1305)

Source: CCN
Type: IBM Security Bulletin C1000378 (UrbanCode Deploy)
Multiple Vulnerabilities in Apache Tomcat affects IBM UrbanCode Deploy (CVE-2018-1304, CVE-2018-1305)

Source: CCN
Type: IBM Security Bulletin 1142626 (Cognos Business Intelligence)
IBM Cognos Business Intelligence has addressed multiple vulnerabilties

Source: CCN
Type: IBM Security Bulletin 1284802 (Cognos Controller)
IBM Cognos Controller 2020Q1 Security Updater: Multiple Security Vulnerabilities have been identified in IBM Cognos Controller

Source: CCN
Type: IBM Security Bulletin 6568787 (Cloud Pak for Security)
Cloud Pak for Security contains packages that have multiple vulnerabilities

Source: N/A
Type: UNKNOWN
N/A

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html

Source: MISC
Type: UNKNOWN
https://www.oracle.com/technetwork/security-advisory/cpujul2019-5072835.html

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-1304

Vulnerable Configuration:

Configuration 1:

cpe:/a:apache:tomcat:*:*:*:*:*:*:*:* (Version >= 7.0.0 and <= 7.0.84)

OR cpe:/a:apache:tomcat:*:*:*:*:*:*:*:* (Version >= 8.0.0 and <= 8.0.49)

OR cpe:/a:apache:tomcat:8.0.0:rc1:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:*:*:*:*:*:*:*:* (Version >= 8.5.0 and <= 8.5.27)

OR cpe:/a:apache:tomcat:*:*:*:*:*:*:*:* (Version >= 9.0.0 and <= 9.0.4)

OR cpe:/a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m10:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m11:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m12:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m13:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m14:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m15:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m16:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m17:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m18:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m19:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m2:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m20:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m21:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m22:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m23:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m24:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m25:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m26:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m27:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m3:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m4:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m5:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m6:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m7:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m8:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m9:*:*:*:*:*:*

Configuration 2:

cpe:/a:redhat:jboss_enterprise_application_platform:6:*:*:*:*:*:*:*

OR cpe:/a:redhat:jboss_enterprise_application_platform:6.4:*:*:*:*:*:*:*

OR cpe:/a:redhat:jboss_enterprise_web_server:3.0.0:*:*:*:*:*:*:*

AND

cpe:/o:redhat:enterprise_linux:6.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:7.0:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:debian:debian_linux:7.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:17.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Configuration 5:

cpe:/a:oracle:fusion_middleware:12.2.1.3.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_guest_access:4.2.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:hospitality_guest_access:4.2.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:micros_relate_crm_software:11.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:secure_global_desktop:5.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:secure_global_desktop:5.4:*:*:*:*:*:*:*

Configuration 6:

cpe:/a:redhat:jboss_middleware:1:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:apache:tomcat:7:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.0:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9:*:*:*:*:*:*:*

AND

cpe:/a:ibm:urbancode_deploy:6.1.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.2.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.5.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.5.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.5.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.5.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_business_intelligence:10.2.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:tivoli_application_dependency_discovery_manager:7.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.0.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:openpages_grc_platform:7.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.5.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.5.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.1.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6.1.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron_cloud_integration:7.5.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.1.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6.1.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6.1.8:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6.1.9:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.4.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.5.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_doors_web_access:9.6.1.10:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_build_forge:8.0.0.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_controller:10.3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_symphony:7.2.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.1.3.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.5.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.6.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.6.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.7.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_build_forge:8.0.0.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.7.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:urbancode_deploy:6.2.7.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_controller:10.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_controller:10.4.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_controller:10.4.1:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:7689	P	libunwind-1.5.0-4.5.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7667	P	libsmi-0.4.8-1.29 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:20181304	V	CVE-2018-1304	2022-09-02
oval:org.opensuse.security:def:42307	P	Security update for qemu (Important)	2022-07-04
oval:org.opensuse.security:def:3384	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3806	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:124356	P	tomcat-9.0.12-1.7 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:42304	P	Security update for the Linux Kernel (Important)	2022-06-24
oval:org.opensuse.security:def:42182	P	Security update for gzip (Important)	2022-05-10
oval:org.opensuse.security:def:42256	P	Security update for protobuf (Moderate)	2022-03-30
oval:org.opensuse.security:def:42212	P	Security update for glibc (Important)	2022-03-14
oval:org.opensuse.security:def:42200	P	Security update for ucode-intel (Important)	2022-02-25
oval:org.opensuse.security:def:42199	P	Security update for the Linux RT Kernel (Critical)	2022-02-21
oval:org.opensuse.security:def:42201	P	Security update for libmspack (Low)	2022-01-13
oval:org.opensuse.security:def:58941	P	Security update for apache2 (Important)	2022-01-12
oval:org.opensuse.security:def:35293	P	Security update for openexr (Important)	2022-01-12
oval:org.opensuse.security:def:61103	P	Security update for libqt4 (Important)	2021-12-22
oval:org.opensuse.security:def:38368	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:7007	P	Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP1) (Important)	2021-12-14
oval:org.opensuse.security:def:38367	P	Security update for xorg-x11-server (Important)	2021-12-14
oval:org.opensuse.security:def:58060	P	Security update for glib-networking (Important)	2021-12-13
oval:org.opensuse.security:def:42244	P	Security update for python-Babel (Important)	2021-12-06
oval:org.opensuse.security:def:29454	P	Security update for clamav (Moderate)	2021-12-01
oval:org.opensuse.security:def:34603	P	Security update for clamav (Moderate)	2021-12-01
oval:org.opensuse.security:def:57537	P	Security update for webkit2gtk3 (Important)	2021-12-01
oval:org.opensuse.security:def:8869	P	Security update for poppler (Important)	2021-12-01
oval:org.opensuse.security:def:31713	P	Security update for clamav (Moderate)	2021-12-01
oval:org.opensuse.security:def:58866	P	Security update for samba (Important)	2021-11-19
oval:org.opensuse.security:def:6716	P	Security update for the Linux Kernel (Live Patch 25 for SLE 15) (Important)	2021-11-17
oval:org.opensuse.security:def:57118	P	Security update for transfig (Important)	2021-10-29
oval:org.opensuse.security:def:8850	P	Security update for python-Pygments (Important)	2021-10-20
oval:org.opensuse.security:def:42130	P	Security update for krb5 (Moderate)	2021-10-18
oval:org.opensuse.security:def:40620	P	Security update for ncurses (Moderate)	2021-10-18
oval:org.opensuse.security:def:42227	P	Security update for rpm (Important)	2021-10-15
oval:org.opensuse.security:def:6708	P	Security update for the Linux Kernel (Live Patch 25 for SLE 15) (Important)	2021-10-12
oval:org.opensuse.security:def:60368	P	Security update for the Linux Kernel (Important)	2021-09-22
oval:org.opensuse.security:def:63239	P	spice-gtk-devel-0.35-1.48 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61556	P	libpcsclite1-1.8.24-1.14 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61557	P	libpng12-0-1.2.57-2.18 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61448	P	ghostscript-9.26a-3.15.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61418	P	coreutils-8.29-2.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:63201	P	dhcp-relay-4.3.5-4.15 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:30128	P	Security update for ghostscript (Critical)	2021-09-21
oval:org.opensuse.security:def:61580	P	libtag1-1.11.1-2.50 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:55950	P	Security update for openssl (Low)	2021-09-20
oval:org.opensuse.security:def:20514	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP5) (Important)	2021-09-16
oval:org.opensuse.security:def:6965	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-09-16
oval:org.opensuse.security:def:20506	P	Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP5) (Important)	2021-09-16
oval:org.opensuse.security:def:20980	P	Security update for php74-pear (Important)	2021-09-09
oval:org.opensuse.security:def:9033	P	Security update for java-11-openjdk (Important)	2021-09-03
oval:org.opensuse.security:def:8835	P	Security update for xen (Important)	2021-09-02
oval:org.opensuse.security:def:31260	P	Security update for aspell (Important)	2021-08-25
oval:org.opensuse.security:def:33707	P	Security update for aspell (Important)	2021-08-25
oval:org.opensuse.security:def:30116	P	Security update for python-PyYAML (Important)	2021-08-24
oval:org.opensuse.security:def:30117	P	Security update for openssl (Important)	2021-08-24
oval:org.opensuse.security:def:31669	P	Security update for cpio (Important)	2021-08-23
oval:org.opensuse.security:def:34513	P	Security update for cpio (Important)	2021-08-23
oval:org.opensuse.security:def:9020	P	Security update for php7 (Important)	2021-08-20
oval:org.opensuse.security:def:8368	P	Security update for haproxy (Important)	2021-08-18
oval:org.opensuse.security:def:9011	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:14866	P	cvs-1.12.12-182.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48325	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15105	P	libxcb-dri2-0-1.10-4.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15204	P	tftp-5.2-11.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14785	P	tomcat-9.0.12-1.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14910	P	grub2-2.02-12.15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14719	P	p7zip-9.20.1-7.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15031	P	libmspack0-0.4-14.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14815	P	zsh-5.0.5-6.7.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15205	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15089	P	libu2f-host0-1.1.6-3.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15178	P	rsyslog-8.24.0-3.28.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14711	P	mutt-1.10.1-55.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14886	P	file-5.22-10.12.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47905	P	tomcat-9.0.12-1.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15004	P	libical1-1.0.1-16.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14745	P	python-doc-2.7.13-28.11.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15170	P	python3-3.4.6-25.29.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:87946	P	tomcat-9.0.12-1.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15078	P	libsqlite3-0-3.8.10.2-9.12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:63373	P	sblim-sfcb-1.4.9-5.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63340	P	libfreebl3-hmac-3.53.1-3.51.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63005	P	dpkg-1.19.0.4-2.30 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62022	P	apache-commons-io-2.6-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62346	P	vim-8.0.1568-5.14.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62216	P	libsndfile-devel-1.0.28-5.5.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:58795	P	Security update for webkit2gtk3 (Important)	2021-08-03
oval:org.opensuse.security:def:6940	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-07-27
oval:org.opensuse.security:def:59769	P	Security update for systemd (Important)	2021-07-21
oval:org.opensuse.security:def:9002	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:8322	P	Security update for crmsh (Moderate)	2021-07-02
oval:org.opensuse.security:def:8613	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:31647	P	Security update for libgcrypt (Important)	2021-06-24
oval:org.opensuse.security:def:57951	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-06-18
oval:org.opensuse.security:def:8788	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:57026	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:31203	P	Security update for apache2 (Important)	2021-06-17
oval:org.opensuse.security:def:8600	P	Security update for spice-gtk (Important)	2021-06-09
oval:org.opensuse.security:def:59747	P	Security update for apache2-mod_auth_openidc (Important)	2021-06-08
oval:org.opensuse.security:def:34456	P	Security update for libX11 (Important)	2021-06-08
oval:org.opensuse.security:def:61368	P	tar-1.30-1.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15463	P	openssh-7.2p2-55.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36542	P	ppp-devel-2.4.5.git-2.29.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:8969	P	Security update for pam_radius (Moderate)	2021-06-08
oval:org.opensuse.security:def:36543	P	pwlib-1.10.10-120.35.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15538	P	yast2-core-3.1.23-6.38 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:33663	P	Security update for the Linux Kernel (Important)	2021-06-08
oval:org.opensuse.security:def:42565	P	kdebase3-runtime-3.5.10-20.31 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61287	P	libsqlite3-0-3.23.1-1.10 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15766	P	kernel-docs-3.12.49-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15325	P	ibus-chewing-1.4.14-4.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15565	P	evince-devel-3.10.3-1.213 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42736	P	xorg-x11-7.4-9.65.46 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62875	P	perl-YAML-LibYAML-0.59-1.16 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15369	P	libecpg6-9.4.9-14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36442	P	libdhcp6client-1_0-2-1.0.22-3.21.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16226	P	libXxf86dga-devel-1.1.4-3.58 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61201	P	libQt5Concurrent-devel-5.9.4-6.48 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15490	P	python-requests-2.8.1-6.11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15743	P	freeradius-server-devel-3.0.3-10.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15274	P	cups-filters-1.0.58-13.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36554	P	ruby-devel-1.8.7.p357-0.9.17.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15549	P	augeas-devel-1.2.0-1.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:42634	P	libvirt-1.2.5-3.76 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61325	P	pam_krb5-2.4.13-1.36 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15345	P	libXext6-1.3.2-3.60 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:36400	P	file-devel-4.24-43.27.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:16203	P	kernel-docs-4.4.73-5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:8591	P	Security update for slurm_18_08 (Important)	2021-06-04
oval:org.opensuse.security:def:8944	P	Security update for avahi (Moderate)	2021-06-04
oval:org.opensuse.security:def:30202	P	Security update for libwebp (Critical)	2021-06-02
oval:org.opensuse.security:def:8582	P	Security update for djvulibre (Important)	2021-05-19
oval:org.opensuse.security:def:39187	P	Security update for libxml2 (Moderate)	2021-05-11
oval:org.opensuse.security:def:42066	P	Security update for libxml2 (Moderate)	2021-05-05
oval:org.opensuse.security:def:9693	P	Security update for MozillaFirefox (Important)	2021-04-29
oval:org.opensuse.security:def:8742	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:33639	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:31608	P	Security update for xen (Important)	2021-04-19
oval:org.opensuse.security:def:58719	P	Security update for xorg-x11-server (Important)	2021-04-14
oval:org.opensuse.security:def:31605	P	Security update for xorg-x11-server (Important)	2021-04-14
oval:org.opensuse.security:def:6865	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)	2021-04-07
oval:org.opensuse.security:def:57192	P	Security update for MozillaFirefox (Important)	2021-03-31
oval:org.opensuse.security:def:60489	P	Security update for tomcat (Important)	2021-03-30
oval:org.opensuse.security:def:9671	P	Security update for libass (Important)	2021-03-24
oval:org.opensuse.security:def:40973	P	Security update for wavpack (Important)	2021-03-19
oval:org.opensuse.security:def:8720	P	Security update for glib2 (Important)	2021-03-19
oval:org.opensuse.security:def:43741	P	Security update for openssl1 (Moderate)	2021-03-17
oval:org.opensuse.security:def:7016	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:33097	P	Security update for glib2 (Important)	2021-03-16
oval:org.opensuse.security:def:58916	P	Security update for git (Important)	2021-03-09
oval:org.opensuse.security:def:8712	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:31347	P	Security update for java-1_8_0-ibm (Important)	2021-02-26
oval:org.opensuse.security:def:28942	P	Security update for java-1_8_0-ibm (Important)	2021-02-26
oval:org.opensuse.security:def:6998	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-02-10
oval:org.opensuse.security:def:20549	P	Security update for the Linux Kernel (Live Patch 13 for SLE 12 SP5) (Important)	2021-02-10
oval:org.opensuse.security:def:32962	P	Security update for sudo (Important)	2021-01-26
oval:org.opensuse.security:def:39231	P	Security update for mutt (Moderate)	2021-01-22
oval:org.opensuse.security:def:43153	P	Security update for avahi (Moderate)	2021-01-18
oval:org.opensuse.security:def:20968	P	Security update for php72 (Moderate)	2021-01-14
oval:org.opensuse.security:def:58833	P	Security update for java-1_8_0-ibm (Moderate)	2021-01-05
oval:org.opensuse.security:def:59746	P	Security update for java-1_7_1-ibm (Moderate)	2021-01-04
oval:org.opensuse.security:def:35236	P	Security update for cyrus-sasl (Important)	2020-12-28
oval:org.opensuse.security:def:57393	P	Security update for cyrus-sasl (Important)	2020-12-28
oval:org.opensuse.security:def:55788	P	Security update for cyrus-sasl (Important)	2020-12-28
oval:org.opensuse.security:def:55787	P	Security update for clamav (Important)	2020-12-22
oval:org.opensuse.security:def:28873	P	Security update for xen (Moderate)	2020-12-22
oval:org.opensuse.security:def:56918	P	Security update for openssl (Important)	2020-12-11
oval:org.opensuse.security:def:43740	P	Security update for openssl1 (Important)	2020-12-09
oval:org.opensuse.security:def:28862	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:6846	P	Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP1) (Important)	2020-12-07
oval:org.opensuse.security:def:28861	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2) (Important)	2020-12-07
oval:org.opensuse.security:def:29301	P	Security update for postgresql12 (Important)	2020-12-04
oval:org.opensuse.security:def:9273	P	Security update for xen (Important)	2020-12-04
oval:org.opensuse.security:def:35543	P	expat-2.0.1-88.26.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35690	P	emacs-22.3-4.36.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35657	P	LibVNCServer-0.9.1-154.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:31559	P	Security update for gdm (Important)	2020-12-03
oval:org.opensuse.security:def:63290	P	openslp-server-2.0.0-6.12.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35762	P	libpulse-browse0-0.9.23-0.7.128 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61749	P	giflib-devel-5.1.4-2.19 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35651	P	xen-4.0.0_21091_04-0.2.6 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:42456	P	unixODBC_23-2.3.1-0.9.40 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35602	P	libsndfile-1.0.20-2.1.46 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35616	P	mutt-1.5.17-42.33.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35718	P	hplip-3.11.10-0.6.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62556	P	libimobiledevice-devel-1.2.0+git20170122.45fda81-1.44 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13197	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63107	P	apache2-mod_wsgi-4.5.18-2.27 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:22046	P	Security update for apache-commons-httpclient (Important)	2020-12-01
oval:org.opensuse.security:def:6738	P	libplist++3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19043	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:56633	P	Security update for libraw (Low)	2020-12-01
oval:org.opensuse.security:def:30777	P	Security update for axis (Moderate)	2020-12-01
oval:org.opensuse.security:def:33600	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:39158	P	empathy on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44722	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:30296	P	Security update for strongswan	2020-12-01
oval:org.opensuse.security:def:8292	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38794	P	rsyslog on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:55810	P	Security update for gdk-pixbuf (Moderate)	2020-12-01
oval:org.opensuse.security:def:30334	P	Security update for tomcat6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:22304	P	Security update for procps (Important)	2020-12-01
oval:org.opensuse.security:def:37442	P	glib2-lang on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:42912	P	Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:37357	P	xen on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30894	P	Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:36974	P	ntp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8430	P	libpng16-16 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19919	P	Security update for bind (Moderate)	2020-12-01
oval:org.opensuse.security:def:41384	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:19388	P	Security update for spice (Moderate)	2020-12-01
oval:org.opensuse.security:def:34978	P	Security update for ghostscript-library (Moderate)	2020-12-01
oval:org.opensuse.security:def:40295	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:19668	P	Security update for Linux Kernel Live Patch 8 for SLE 12 (Important)	2020-12-01
oval:org.opensuse.security:def:34999	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:40864	P	Security update for dbus-1 (Important)	2020-12-01
oval:org.opensuse.security:def:33551	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:30885	P	Security update for MozillaFirefox	2020-12-01
oval:org.opensuse.security:def:23268	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:38501	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30905	P	Security update for freeradius	2020-12-01
oval:org.opensuse.security:def:38703	P	libneon27 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44211	P	Security update for sane-backends (Important)	2020-12-01
oval:org.opensuse.security:def:37710	P	xlockmore on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:43073	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:9251	P	rzsz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20822	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:18914	P	Security update for libssh2_org (Important)	2020-12-01
oval:org.opensuse.security:def:20693	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:36932	P	libpcsclite1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41890	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:60983	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:41510	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:32390	P	Security update for tomcat6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:41366	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:59929	P	Security update for python3 (Important)	2020-12-01
oval:org.opensuse.security:def:6831	P	rhythmbox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19135	P	Security update for libssh (Important)	2020-12-01
oval:org.opensuse.security:def:39437	P	Security update for python-pip (Moderate)	2020-12-01
oval:org.opensuse.security:def:45417	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:34138	P	Security update for ntp (Moderate)	2020-12-01
oval:org.opensuse.security:def:38889	P	colord on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56188	P	Security update for wpa_supplicant (Important)	2020-12-01
oval:org.opensuse.security:def:30480	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:22482	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:37661	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29596	P	Security update for aspell (Moderate)	2020-12-01
oval:org.opensuse.security:def:21004	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:38039	P	python-PyYAML on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:42990	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:40608	P	Security update for ppp (Important)	2020-12-01
oval:org.opensuse.security:def:22101	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:37194	P	libfreebl3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8524	P	squidGuard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20064	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:7029	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20050	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12) (Important)	2020-12-01
oval:org.opensuse.security:def:32871	P	gmime on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19789	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:41042	P	Security update for squid (Important)	2020-12-01
oval:org.opensuse.security:def:58230	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:34869	P	Security update for cpio	2020-12-01
oval:org.opensuse.security:def:39584	P	Security update for dovecot22 (Low)	2020-12-01
oval:org.opensuse.security:def:57230	P	Security update for krb5	2020-12-01
oval:org.opensuse.security:def:31567	P	Security update for squid3 (Important)	2020-12-01
oval:org.opensuse.security:def:40609	P	Security update for python3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31111	P	Security update for krb5 (Important)	2020-12-01
oval:org.opensuse.security:def:33249	P	radvd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38851	P	gnome-online-accounts on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44517	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:29557	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:22588	P	Security update for libssh2_org (Important)	2020-12-01
oval:org.opensuse.security:def:37777	P	ecryptfs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32872	P	gnome-screensaver on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38379	P	libtag1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:43856	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:29159	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:20765	P	Security update for the Linux Kernel (Live Patch 17 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:37182	P	libapr-util1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20134	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12) (Important)	2020-12-01
oval:org.opensuse.security:def:36638	P	libXp6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41610	P	Security update for bluez (Important)	2020-12-01
oval:org.opensuse.security:def:19285	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:34820	P	Security update for atftp (Important)	2020-12-01
oval:org.opensuse.security:def:34345	P	Security update for squid3 (Important)	2020-12-01
oval:org.opensuse.security:def:39911	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:36962	P	libxcb-dri2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18957	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:34358	P	Security update for t1lib	2020-12-01
oval:org.opensuse.security:def:39129	P	libwebkit2gtk3-lang on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56467	P	Security update for MozillaFirefox, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:30722	P	Security update for MozillaFirefox (Moderate)	2020-12-01
oval:org.opensuse.security:def:39119	P	libproxy1-networkmanager-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44693	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:29658	P	Security update for curl (Important)	2020-12-01
oval:org.opensuse.security:def:21668	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:19660	P	Security update for rsync (Moderate)	2020-12-01
oval:org.opensuse.security:def:22264	P	Security update for ibus (Important)	2020-12-01
oval:org.opensuse.security:def:37352	P	wget on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37329	P	socat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30893	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:36963	P	libxerces-c-3_1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8415	P	libmms0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19881	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:35383	P	Security update for ntp (Moderate)	2020-12-01
oval:org.opensuse.security:def:41320	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:58626	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:19376	P	Security update for hunspell (Low)	2020-12-01
oval:org.opensuse.security:def:34934	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:39657	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:57809	P	libjasper1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34915	P	Security update for elfutils	2020-12-01
oval:org.opensuse.security:def:40712	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:57776	P	libXv1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33494	P	Security update for libvirt	2020-12-01
oval:org.opensuse.security:def:39070	P	bluez-cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30865	P	Security update for emacs	2020-12-01
oval:org.opensuse.security:def:22630	P	Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:38459	P	python-imaging on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:43836	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:41354	P	Security update for vim (Moderate)	2020-12-01
oval:org.opensuse.security:def:38600	P	gdm on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44136	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:20910	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:43028	P	Security update for libqt5-qtbase (Moderate)	2020-12-01
oval:org.opensuse.security:def:20796	P	Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:34126	P	Security update for nmap (Important)	2020-12-01
oval:org.opensuse.security:def:20635	P	Security update for openssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:36875	P	libXRes1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41788	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:60682	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:41481	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:32351	P	Security update for squid (Moderate)	2020-12-01
oval:org.opensuse.security:def:41355	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:6784	P	libxslt-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19101	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:39277	P	Security update for containerd, docker, docker-runc, go, go1.11, go1.12, golang-github-docker-libnetwork (Important)	2020-12-01
oval:org.opensuse.security:def:30826	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:39186	P	libgadu3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44779	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:30333	P	Security update for tomcat6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34127	P	Security update for mozilla-nspr, mozilla-nss	2020-12-01
oval:org.opensuse.security:def:38805	P	supportutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30423	P	Security update for xorg-x11-libXt	2020-12-01
oval:org.opensuse.security:def:22357	P	Security update for tigervnc (Important)	2020-12-01
oval:org.opensuse.security:def:37602	P	libvirglrenderer0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:42976	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:37401	P	cpio on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:42945	P	Security update for openssh (Moderate)	2020-12-01
oval:org.opensuse.security:def:57370	P	Security update for gtk2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:22054	P	Security update for gcc10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37058	P	DirectFB on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8449	P	libssh2-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20031	P	Security update for the Linux Kernel (Live Patch 29 for SLE 12) (Important)	2020-12-01
oval:org.opensuse.security:def:19412	P	Security update for LibreOffice (Moderate)	2020-12-01
oval:org.opensuse.security:def:40337	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:8300	P	ecryptfs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19703	P	Security update for libpng16 (Moderate)	2020-12-01
oval:org.opensuse.security:def:35135	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:31503	P	Security update for python27 (Moderate)	2020-12-01
oval:org.opensuse.security:def:39545	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30929	P	Security update for ghostscript-library (Important)	2020-12-01
oval:org.opensuse.security:def:23297	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:57371	P	Security update for gdk2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30979	P	Security update for hunspell (Low)	2020-12-01
oval:org.opensuse.security:def:33192	P	libwsman1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38761	P	openvswitch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44328	P	Security update for qpdf (Moderate)	2020-12-01
oval:org.opensuse.security:def:29508	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:37749	P	cifs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:43102	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:43752	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:29073	P	Security update for compat-wireless, compat-wireless-debuginfo, compat-wireless-debugsource, compat-wireless-kmp-default, compat-wireless-kmp-pae, compat-wireless-kmp-trace, compat-wireless-kmp-xen	2020-12-01
oval:org.opensuse.security:def:20727	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:37022	P	squashfs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20122	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:41561	P	Security update for dovecot22 (Important)	2020-12-01
oval:org.opensuse.security:def:41458	P	Security update for libqt5-qtbase (Important)	2020-12-01
oval:org.opensuse.security:def:60183	P	Security update for kernel-firmware (Important)	2020-12-01
oval:org.opensuse.security:def:19173	P	Security update for pcp (Important)	2020-12-01
oval:org.opensuse.security:def:34762	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:39496	P	Security update for nodejs6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:39869	P	Security update for libjpeg-turbo (Moderate)	2020-12-01
oval:org.opensuse.security:def:45465	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:18922	P	Security update for sqlite3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34222	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:39026	P	libcares2-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56361	P	Security update for freetype2 (Important)	2020-12-01
oval:org.opensuse.security:def:30567	P	Security update for libvirt	2020-12-01
oval:org.opensuse.security:def:22521	P	Security update for openslp (Important)	2020-12-01
oval:org.opensuse.security:def:44642	P	Security update for mozilla-nspr, mozilla-nss (Moderate)	2020-12-01
oval:org.opensuse.security:def:29614	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:21642	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:38081	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34903	P	Security update for dhcpcd (Important)	2020-12-01
oval:org.opensuse.security:def:22200	P	Security update for hostinfo, supportutils (Important)	2020-12-01
oval:org.opensuse.security:def:37295	P	pam_ssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8549	P	xen on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37290	P	opie on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20076	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:19847	P	Security update for Linux Kernel Live Patch 24 for SLE 12 (Important)	2020-12-01
oval:org.opensuse.security:def:41144	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:58516	P	Security update for libxml2 (Low)	2020-12-01
oval:org.opensuse.security:def:34908	P	Security update for dnsmasq (Moderate)	2020-12-01
oval:org.opensuse.security:def:39612	P	Security update for libcares2 (Low)	2020-12-01
oval:org.opensuse.security:def:57311	P	Security update for cpio	2020-12-01
oval:org.opensuse.security:def:34904	P	Security update for djvulibre (Moderate)	2020-12-01
oval:org.opensuse.security:def:33337	P	Security update for openssl1	2020-12-01
oval:org.opensuse.security:def:39011	P	gegl-0_2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44587	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:22600	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:37821	P	ibus-chewing on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:43791	P	Security update for the Linux Kernel (Live Patch 17 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:32883	P	ibutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38463	P	python-pywbem on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44021	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:29216	P	Security update for perl-XML-LibXML (Important)	2020-12-01
oval:org.opensuse.security:def:20877	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:37241	P	libpoppler44 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:20158	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12) (Important)	2020-12-01
oval:org.opensuse.security:def:38793	P	rsync on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36774	P	xinetd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:41719	P	Security update for mutt (Important)	2020-12-01
oval:org.opensuse.security:def:19318	P	Security update for nasm (Moderate)	2020-12-01
oval:org.opensuse.security:def:41436	P	Security update for shim (Moderate)	2020-12-01
oval:org.opensuse.security:def:34385	P	Security update for tomcat6 (Moderate)	2020-12-01
oval:com.redhat.rhsa:def:20192205	P	RHSA-2019:2205: tomcat security, bug fix, and enhancement update (Moderate)	2019-08-06
oval:org.opensuse.security:def:81651	P	Security update for tomcat (Moderate)	2018-03-26
oval:org.opensuse.security:def:85093	P	Security update for tomcat (Moderate)	2018-03-26
oval:com.ubuntu.bionic:def:201813040000000	V	CVE-2018-1304 on Ubuntu 18.04 LTS (bionic) - medium.	2018-02-28
oval:com.ubuntu.artful:def:20181304000	V	CVE-2018-1304 on Ubuntu 17.10 (artful) - medium.	2018-02-28
oval:com.ubuntu.xenial:def:20181304000	V	CVE-2018-1304 on Ubuntu 16.04 LTS (xenial) - medium.	2018-02-28
oval:com.ubuntu.xenial:def:201813040000000	V	CVE-2018-1304 on Ubuntu 16.04 LTS (xenial) - medium.	2018-02-28
oval:com.ubuntu.bionic:def:20181304000	V	CVE-2018-1304 on Ubuntu 18.04 LTS (bionic) - medium.	2018-02-28
oval:com.ubuntu.cosmic:def:20181304000	V	CVE-2018-1304 on Ubuntu 18.10 (cosmic) - medium.	2018-02-28
oval:com.ubuntu.cosmic:def:201813040000000	V	CVE-2018-1304 on Ubuntu 18.10 (cosmic) - medium.	2018-02-28
oval:com.ubuntu.trusty:def:20181304000	V	CVE-2018-1304 on Ubuntu 14.04 LTS (trusty) - medium.	2018-02-28