Vulnerability CVE-2018-15120

Vulnerability Name:

CVE-2018-15120 (CCN-148905)

Assigned:

2018-08-24

Published:

2018-08-24

Updated:

2021-07-14

Summary:

libpango in Pango 1.40.8 through 1.42.3, as used in hexchat and other products, allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via crafted text with invalid Unicode sequences.

CVSS v3 Severity:

6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
5.9 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
4.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

Vulnerability Type:

CWE-119

Vulnerability Consequences:

Denial of Service

References:

Source: MISC
Type: Exploit, Third Party Advisory
http://52.117.224.77/xfce4-pdos.webm

Source: MITRE
Type: CNA
CVE-2018-15120

Source: XF
Type: UNKNOWN
libpango-cve201815120-dos(148905)

Source: CCN
Type: pango GIT Repository
pango

Source: CONFIRM
Type: Release Notes, Third Party Advisory
https://github.com/GNOME/pango/blob/1.42.4/NEWS

Source: CONFIRM
Type: Patch, Third Party Advisory
https://github.com/GNOME/pango/commit/71aaeaf020340412b8d012fe23a556c0420eda5f

Source: MISC
Type: Third Party Advisory
https://i.redd.it/v7p4n2ptu0s11.jpg

Source: MLIST
Type: Patch, Third Party Advisory
[distributor-list] 20180820 A critical pango fix

Source: CCN
Type: Packet Storm Security [08-27-2018]
Libpango 1.40.8 Denial Of Service

Source: GENTOO
Type: Third Party Advisory
GLSA-201811-07

Source: UBUNTU
Type: Third Party Advisory
USN-3750-1

Source: MISC
Type: Exploit, Patch, Third Party Advisory, VDB Entry
https://www.exploit-db.com/exploits/45263

Source: EXPLOIT-DB
Type: EXPLOIT
Offensive Security Exploit Database [08-27-2018]

Source: EXPLOIT-DB
Type: Exploit, Patch, Third Party Advisory, VDB Entry
45263

Source: MISC
Type: Exploit, Third Party Advisory
https://www.ign.com/articles/2018/10/16/ps4s-are-reportedly-being-bricked-and-sony-is-working-on-a-fix

Source: MISC
Type: Third Party Advisory
https://www.reddit.com/r/PS4/comments/9o5efg/message_bricking_console_megathread/

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-15120

Vulnerable Configuration:

Configuration 1:

cpe:/a:gnome:pango:*:*:*:*:*:*:*:* (Version >= 1.40.8 and <= 1.42.3)

Configuration 2:

cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201815120	V	CVE-2018-15120	2023-06-22
oval:org.opensuse.security:def:7638	P	libpango-1_0-0-1.50.4-150400.1.5 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7955	P	libpango-1_0-0-32bit-1.50.4-150400.1.5 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:792	P	Security update for webkit2gtk3 (Important)	2022-10-01
oval:org.opensuse.security:def:770	P	Security update for go1.18 (Important)	2022-09-21
oval:org.opensuse.security:def:93826	P	(Important)	2022-07-06
oval:org.opensuse.security:def:3052	P	dhcp-4.3.3-10.16.4 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3333	P	pigz-2.3-5.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94682	P	libpango-1_0-0-1.50.4-150400.1.5 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94963	P	libpango-1_0-0-32bit-1.50.4-150400.1.5 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:175	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:464	P	Security update for python39 (Moderate)	2022-05-02
oval:org.opensuse.security:def:1717	P	Security update for nodejs12 (Important)	2022-04-28
oval:org.opensuse.security:def:1230	P	Security update for java-1_8_0-ibm (Important)	2022-01-18
oval:org.opensuse.security:def:112398	P	hexchat-2.14.3-4.4 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:112756	P	libpango-1_0-0-1.48.10-1.3 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:1602	P	Security update for the Linux Kernel (Important)	2022-01-14
oval:org.opensuse.security:def:69757	P	Security update for java-1_8_0-openjdk (Important)	2021-11-23
oval:org.opensuse.security:def:1128	P	Security update for the Linux Kernel (Important)	2021-10-12
oval:org.opensuse.security:def:105908	P	hexchat-2.14.3-4.4 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:106228	P	libpango-1_0-0-1.48.10-1.3 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:1484	P	Security update for postgresql13 (Moderate)	2021-09-29
oval:org.opensuse.security:def:64579	P	Security update for the Linux Kernel (Important)	2021-09-23
oval:org.opensuse.security:def:61553	P	libpango-1_0-0-1.40.14-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:103363	P	libpango-1_0-0-1.40.14-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71294	P	libpango-1_0-0-1.40.14-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71166	P	cyrus-sasl-2.1.26-5.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:89708	P	libpango-1_0-0-1.40.14-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:96673	P	libpango-1_0-0-1.40.14-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71279	P	libminizip1-1.2.11-3.6.4 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:49188	P	Security update for compat-openssl098 (Low)	2021-09-13
oval:org.opensuse.security:def:47762	P	libpcsclite1-1.8.10-7.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47984	P	cups-pk-helper-0.2.5-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46986	P	libQt5Concurrent5-5.6.1-11.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47866	P	python-imaging-1.1.7-21.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48213	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47449	P	ntp-4.2.8p10-63.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47313	P	libXext6-1.3.2-3.60 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47686	P	libXv1-1.0.10-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47642	P	hardlink-1.0-6.38 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48312	P	strongswan-5.1.3-26.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47314	P	libXfixes3-32bit-5.0.1-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48300	P	ruby-2.1-1.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47446	P	mipv6d-2.0.2.umip.0.4-19.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47883	P	rzsz-0.12.21~rc-1001.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48046	P	ipsec-tools-0.8.0-19.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47000	P	libXtst6-1.2.2-3.59 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47747	P	libncurses5-32bit-5.9-58.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48014	P	gdk-pixbuf-lang-2.34.0-19.17.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48076	P	libXfixes3-32bit-5.0.1-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48111	P	libfreebl3-3.45-58.31.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47748	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47900	P	sysvinit-tools-2.88+-99.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47774	P	libqpdf18-7.1.1-3.3.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48142	P	libldb1-1.5.4-1.28 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47328	P	libXxf86vm1-1.1.3-3.53 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47538	P	xscreensaver-5.22-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47121	P	pcsc-ccid-1.4.14-1.42 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48228	P	libxmltooling6-1.5.6-3.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46985	P	libMagickCore-6_Q16-1-6.8.8.1-33.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48208	P	libtirpc-netconfig-1.0.1-17.13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:1970	P	python2-numpy-gnu-hpc-1.16.5-1.164 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:101212	P	libpango-1_0-0-32bit-1.44.7+11-1.25 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1944	P	perl-DNS-LDNS-1.7.0-4.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1104	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100786	P	autofs-5.1.3-7.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62806	P	libpango-1_0-0-32bit-1.44.7+11-1.25 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1948	P	perl-YAML-LibYAML-0.69-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1942	P	perl-Archive-Extract-0.80-1.24 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62193	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100951	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72525	P	libpango-1_0-0-32bit-1.44.7+11-1.25 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1246	P	systemd-bash-completion-234-24.82.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71934	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1953	P	python39-tools-3.9.4-2.9 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:48905	P	gimp-2.8.18-9.3.26 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48873	P	libtag1-32bit-1.9.1-1.265 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48662	P	argyllcms-1.6.3-1.179 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70951	P	libXi-devel-1.7.9-1.23 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48940	P	libplist++3-1.12-20.3.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48904	P	gegl-0_2-0.2.0-14.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48476	P	libXvMC1-1.0.8-3.56 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48541	P	libpulse-mainloop-glib0-5.0-2.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:69862	P	Security update for gstreamer-plugins-bad (Important)	2021-06-08
oval:org.opensuse.security:def:48746	P	libssh4-0.6.3-8.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:71064	P	p7zip-16.02-5.10 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48601	P	pigz-2.3-5.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48374	P	autofs-5.0.9-21.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48851	P	libdirectfb-1_7-1-32bit-1.7.1-6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48459	P	libMagickCore-6_Q16-1-6.8.8.1-33.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48448	P	jakarta-commons-fileupload-1.1.1-120.113 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48799	P	libqt4-sql-mysql-32bit-4.8.6-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48439	P	guestfs-data-1.32.4-14.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48460	P	libQt5Concurrent5-5.6.1-11.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48470	P	libXp6-1.0.2-3.57 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48808	P	libwebkit2gtk-3_0-25-2.4.8-16.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:64492	P	Security update for java-11-openjdk (Important)	2021-05-11
oval:org.opensuse.security:def:1987	P	openldap2-2.4.46-9.3.1 on GA media (Moderate)	2021-04-29
oval:org.opensuse.security:def:70004	P	Security update for python (Moderate)	2021-03-11
oval:org.opensuse.security:def:73444	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:66753	P	Security update for slurm_20_02 (Moderate)	2021-01-15
oval:org.opensuse.security:def:64277	P	Security update for gcc7 (Moderate)	2020-12-10
oval:org.opensuse.security:def:51082	P	Security update for python-cryptography (Moderate)	2020-12-04
oval:org.opensuse.security:def:89923	P	libpango-1_0-0-32bit-1.40.14-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1962	P	libpmi0-18.08.5-1.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1997	P	openldap2-back-meta-2.4.46-9.28.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1868	P	jcl-over-slf4j-1.7.30-1.34 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:100539	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62691	P	libpango-1_0-0-32bit-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72292	P	libpango-1_0-0-32bit-1.40.14-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61859	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103578	P	libpango-1_0-0-32bit-1.40.14-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1964	P	libmunge2-0.5.14-4.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72410	P	libpango-1_0-0-32bit-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:94073	P	libpango-1_0-0-32bit-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49034	P	libreoffice-6.2.7.1-43.56.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:48975	P	bash-lang-4.3-83.23.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71600	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107205	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116763	P	libpango-1_0-0-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1992	P	java-1_8_0-openjdk-1.8.0.242-3.30.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1999	P	reiserfs-kmp-default-5.3.18-22.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62573	P	libpango-1_0-0-32bit-1.40.14-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:66414	P	Security update for xen (Important)	2020-12-03
oval:org.opensuse.security:def:107452	P	libpango-1_0-0-32bit-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117010	P	libpango-1_0-0-32bit-1.44.7+11-1.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2637	P	Security update for ImageMagick (Moderate)	2020-12-02
oval:org.opensuse.security:def:2647	P	Security update for pango (Moderate)	2020-12-02
oval:org.opensuse.security:def:49157	P	libXxf86vm-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73326	P	sysstat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51020	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:67926	P	libpango-1_0-0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50305	P	Security update for pango (Moderate)	2020-12-01
oval:org.opensuse.security:def:73197	P	libpango-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49575	P	librsvg-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66661	P	yast2-users on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49515	P	gd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66506	P	libpango-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49211	P	libpango-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49640	P	hplip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49419	P	libQt5OpenGLExtensions-devel-static on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49671	P	libjasper-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67611	P	glibc-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49633	P	gnome-shell-search-provider-nautilus on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49569	P	libpango-1_0-0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:70109	P	libpango-1_0-0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73079	P	flac-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64364	P	libpango-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67826	P	tpm2.0-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49508	P	emacs-x11 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50251	P	openconnect on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67711	P	libpango-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49744	P	libtidy-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49687	P	libpango-1_0-0-32bit on GA media (Moderate)	2020-12-01
oval:com.ubuntu.bionic:def:201815120000	V	CVE-2018-15120 on Ubuntu 18.04 LTS (bionic) - medium.	2018-08-24
oval:com.ubuntu.bionic:def:2018151200000000	V	CVE-2018-15120 on Ubuntu 18.04 LTS (bionic) - medium.	2018-08-24
oval:com.ubuntu.trusty:def:201815120000	V	CVE-2018-15120 on Ubuntu 14.04 LTS (trusty) - medium.	2018-08-24
oval:com.ubuntu.xenial:def:2018151200000000	V	CVE-2018-15120 on Ubuntu 16.04 LTS (xenial) - medium.	2018-08-24
oval:com.ubuntu.xenial:def:201815120000	V	CVE-2018-15120 on Ubuntu 16.04 LTS (xenial) - medium.	2018-08-24

BACK