Vulnerability CVE-2018-16597

Vulnerability Name:

CVE-2018-16597 (CCN-150572)

Assigned:

2018-07-29

Published:

2018-07-29

Updated:

2019-10-03

Summary:

An issue was discovered in the Linux kernel before 4.8. Incorrect access checking in overlayfs mounts could be used by local attackers to modify or truncate files in the underlying filesystem.

CVSS v3 Severity:

5.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N)
4.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
3.5 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

5.3 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L)
4.6 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

4.9 Medium (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): None

2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-863
CWE-862

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2018-16597

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2018:3202

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/153702/Slackware-Security-Advisory-Slackware-14.2-kernel-Updates.html

Source: BID
Type: Third Party Advisory, VDB Entry
105394

Source: CCN
Type: BID-105394
Linux Kernel CVE-2018-16597 Local Security Bypass Vulnerability

Source: CONFIRM
Type: Issue Tracking, Patch, Third Party Advisory
https://bugzilla.suse.com/show_bug.cgi?id=1106512

Source: XF
Type: UNKNOWN
linux-kernel-cve201816597-sec-bypass(150572)

Source: CCN
Type: Linux Kernel GIT Repository
ovl: modify ovl_permission() to do checks on two inodes

Source: CONFIRM
Type: Patch, Third Party Advisory
https://git.kernel.org/pub/scm/linux/kernel/git/torvalds/linux.git/commit/?id=c0ca3d70e8d3cf81e2255a217f7ca402f5ed0862

Source: BUGTRAQ
Type: UNKNOWN
20190722 [slackware-security] Slackware 14.2 kernel (SSA:2019-202-01)

Source: CONFIRM
Type: Patch, Third Party Advisory
https://security.netapp.com/advisory/ntap-20190204-0001/

Source: CONFIRM
Type: Third Party Advisory
https://support.f5.com/csp/article/K22691834

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-16597

Vulnerable Configuration:

Configuration 1:

cpe:/o:linux:linux_kernel:*:*:*:*:*:*:*:* (Version < 4.8)

Configuration 2:

cpe:/a:netapp:active_iq_performance_analytics_services:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:element_software:-:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:opensuse:leap:42.3:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/o:linux:linux_kernel:4.18.6:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201816597	V	CVE-2018-16597	2022-09-02
oval:org.opensuse.security:def:45825	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:11163	P	Security update for c-toxcore (Moderate)	2021-12-30
oval:org.opensuse.security:def:46316	P	Security update for xen (Moderate)	2021-12-01
oval:org.opensuse.security:def:55259	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:59806	P	Security update for webkit2gtk3 (Important)	2021-10-06
oval:org.opensuse.security:def:61480	P	lftp-4.8.4-3.9 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61566	P	libqpdf21-8.0.2-1.5 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61604	P	logrotate-3.13.0-4.3.9 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61647	P	rpm-32bit-4.14.1-10.16.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:60366	P	Security update for xen (Moderate)	2021-09-21
oval:org.opensuse.security:def:61450	P	git-core-2.16.4-3.9.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61641	P	python3-requests-2.20.0-4.24 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:23961	P	Security update for openexr (Important)	2021-09-02
oval:org.opensuse.security:def:23648	P	Security update for cpio (Important)	2021-08-23
oval:org.opensuse.security:def:11116	P	Security update for libhts (Low)	2021-08-22
oval:org.opensuse.security:def:14760	P	rsyslog-8.24.0-3.16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14786	P	tpm2.0-tools-3.1.1-1.16 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14856	P	cpio-2.11-36.3.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47012	P	libdcerpc-atsvc0-4.2.4-26.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13957	P	libspice-client-glib-2_0-8-0.31-7.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14907	P	gpg2-2.0.24-9.8.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47226	P	cpp48-4.8.5-30.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14927	P	iputils-s20121221-2.17 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47310	P	libX11-6-1.6.2-11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14951	P	libX11-6-1.6.2-12.5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15045	P	libospf0-1.1.1-17.7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13935	P	libnm-glib-vpn1-1.0.12-8.6 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15072	P	libsndfile1-1.0.25-36.16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14411	P	xf86-video-intel-2.99.917.770_gcb6ba2da-1.23 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47372	P	liblua5_2-32bit-5.2.4-6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48230	P	libyaml-0-2-0.1.6-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47436	P	libxslt-tools-1.1.28-16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47467	P	perl-LWP-Protocol-https-6.04-5.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14389	P	sysconfig-0.84.0-13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14752	P	python3-requests-2.7.0-2.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47538	P	xscreensaver-5.22-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15119	P	mariadb-10.2.25-3.19.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48176	P	libpoppler-glib8-0.43.0-16.15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15130	P	openvpn-2.3.8-16.20.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15146	P	perl-HTML-Parser-3.71-1.145 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:45903	P	Security update for libcares2 (Important)	2021-08-10
oval:org.opensuse.security:def:62291	P	postgresql-13-8.30 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62782	P	libexempi-devel-2.4.5-3.3.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62749	P	gdm-3.34.1-8.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:23925	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:46642	P	dbus-1-1.8.16-14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15784	P	libXv-devel-1.0.10-3.57 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13565	P	java-1_7_1-ibm-1.7.1_sr3.10-14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12602	P	libpng12-0-1.2.50-19.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61295	P	libudisks2-0-2.6.5-1.47 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46774	P	libspice-server1-0.12.5-2.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13584	P	libXinerama1-1.1.3-3.55 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12615	P	libquicktime0-1.2.4-14.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61245	P	libjson-c-devel-0.13-1.19 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46865	P	w3m-0.5.3-153.145 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13659	P	libudisks2-0-2.1.3-1.14 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13253	P	aaa_base-13.2+git20140911.61c1681-1.16 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12302	P	mipv6d-2.0.2.umip.0.4-19.77 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13684	P	opie-2.4-724.65 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13275	P	cpio-2.11-26.126 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12324	P	pidgin-plugin-otr-4.0.2-1.29 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11272	P	clamav-0.98.4-1.46 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13284	P	dbus-1-1.8.8-1.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46799	P	opensc-0.13.0-1.122 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12370	P	wdiff-1.2.1-3.64 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11297	P	fetchmail-6.3.26-5.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13297	P	freeradius-server-3.0.3-3.10 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12417	P	cpp48-4.8.5-31.17.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13423	P	opie-2.4-724.56 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12432	P	dosfstools-3.0.26-6.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12451	P	gd-2.1.0-24.9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13728	P	strongswan-5.1.3-18.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46748	P	libmpfr4-3.1.2-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12526	P	libXvMC1-1.0.8-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13738	P	tigervnc-1.4.3-7.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12551	P	libgnomesu-2.0.0-353.6.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13751	P	xen-4.5.1_12-2.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11339	P	libXfont1-1.4.7-2.9 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11348	P	libXvMC1-1.0.8-3.57 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13431	P	perl-Config-IniFiles-2.82-3.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61179	P	grub2-2.02-17.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:15807	P	libgssglue-devel-0.4-3.83 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61262	P	libopus0-1.2.1-1.29 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11361	P	libfreetype6-2.5.3-2.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13453	P	shim-0.7-14.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61382	P	xen-libs-4.10.1_04-1.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11999	P	python-cupshelpers-1.5.7-7.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61325	P	pam_krb5-2.4.13-1.36 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12294	P	libz1-1.2.8-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13502	P	bash-4.2-75.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61164	P	fuse-2.9.7-1.49 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46450	P	libHX28-3.18-1.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:23913	P	Security update for MozillaFirefox (Important)	2021-06-08
oval:org.opensuse.security:def:12021	P	sysconfig-0.84.0-13.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:13549	P	gnutls-3.2.15-11.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:12593	P	libopenssl0_9_8-0.9.8j-106.6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61202	P	libX11-6-1.6.5-1.41 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:23583	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-06-04
oval:org.opensuse.security:def:45696	P	Security update for dhcp (Important)	2021-06-01
oval:org.opensuse.security:def:26062	P	Security update for djvulibre (Important)	2021-05-31
oval:org.opensuse.security:def:43618	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:44972	P	Security update for libxml2 (Moderate)	2021-05-11
oval:org.opensuse.security:def:43617	P	Security update for libxml2 (Moderate)	2021-05-11
oval:org.opensuse.security:def:60245	P	Security update for samba (Important)	2021-04-29
oval:org.opensuse.security:def:55178	P	Security update for java-1_7_0-openjdk (Moderate)	2021-04-29
oval:org.opensuse.security:def:11197	P	Security update for fluidsynth (Important)	2021-04-18
oval:org.opensuse.security:def:26027	P	Security update for glibc (Important)	2021-04-13
oval:org.opensuse.security:def:23547	P	Security update for spamassassin (Important)	2021-04-12
oval:org.opensuse.security:def:60462	P	Security update for glibc (Moderate)	2021-02-25
oval:org.opensuse.security:def:23174	P	Security update for jasper (Important)	2021-02-16
oval:org.opensuse.security:def:11178	P	Security update for privoxy (Moderate)	2021-02-12
oval:org.opensuse.security:def:61078	P	Security update for ImageMagick (Important)	2021-01-22
oval:org.opensuse.security:def:23576	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:61973	P	rsync-3.1.3-4.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62419	P	hplip-3.17.9-3.38 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61727	P	dbus-1-glib-0.108-1.29 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12975	P	libcdio14-0.90-6.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61697	P	audit-devel-2.8.1-10.7 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62520	P	gdk-pixbuf-query-loaders-32bit-2.36.11-3.19 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62612	P	MozillaFirefox-68.8.0-3.87.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12983	P	libexif12-0.6.21-8.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62650	P	libQt5OpenGLExtensions-devel-static-5.12.7-2.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13005	P	libjavascriptcoregtk-3_0-0-2.4.11-23.20 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13051	P	libprocps3-3.3.9-11.18.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62699	P	libsrt1-1.3.4-1.45 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13098	P	libwsman1-2.4.11-21.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13113	P	mariadb-10.2.25-3.19.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13132	P	pam_u2f-1.0.8-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13207	P	vorbis-tools-1.4.0-26.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13232	P	puppet-3.6.2-3.62 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61768	P	ipmitool-1.8.18+git20200204.7ccea28-1.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:44019	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:11070	P	libssh2-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54415	P	DirectFB on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22359	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:44921	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:17446	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:43629	P	Security update for kernel-firmware (Moderate)	2020-12-01
oval:org.opensuse.security:def:22479	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:45744	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:54581	P	libopenssl0_9_8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22398	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18594	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:59624	P	Security update for krb5-appl (Important)	2020-12-01
oval:org.opensuse.security:def:43733	P	Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:22543	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:17896	P	Security update for openssl (Important)	2020-12-01
oval:org.opensuse.security:def:60025	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:54866	P	libgme0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:45001	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:24599	P	Security update for ovmf (Important)	2020-12-01
oval:org.opensuse.security:def:24622	P	Security update for apache2 (Important)	2020-12-01
oval:org.opensuse.security:def:59646	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:43898	P	Security update for bash (Moderate)	2020-12-01
oval:org.opensuse.security:def:22583	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:17908	P	Security update for libqt4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:23298	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:54974	P	pam-modules on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:45058	P	Security update for sane-backends (Important)	2020-12-01
oval:org.opensuse.security:def:44013	P	Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:22636	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:25331	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:17930	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:44020	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:23351	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:44984	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:60060	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:44088	P	Security update for bash (Important)	2020-12-01
oval:org.opensuse.security:def:22761	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:45961	P	Security update for bzip2 (Important)	2020-12-01
oval:org.opensuse.security:def:25345	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:18568	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:21923	P	Security update for clamav (Important)	2020-12-01
oval:org.opensuse.security:def:44031	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:23467	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:17454	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:44205	P	Security update for tigervnc (Critical)	2020-12-01
oval:org.opensuse.security:def:22800	P	Security update for tomcat (Important)	2020-12-01
oval:org.opensuse.security:def:46018	P	Security update for icu (Moderate)	2020-12-01
oval:org.opensuse.security:def:25389	P	Security update for perl-DBI (Important)	2020-12-01
oval:org.opensuse.security:def:60026	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:44135	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:23537	P	Security update for kernel-firmware (Important)	2020-12-01
oval:org.opensuse.security:def:22465	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:60990	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:17488	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:44394	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:46047	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:53735	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:60048	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:44300	P	Recommended update for ucode-intel (Important)	2020-12-01
oval:org.opensuse.security:def:55066	P	bind-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22477	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:24632	P	Security update for soundtouch (Moderate)	2020-12-01
oval:org.opensuse.security:def:17573	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:60559	P	unrar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44464	P	Security update for permissions (Moderate)	2020-12-01
oval:org.opensuse.security:def:46110	P	Security update for spice-gtk (Moderate)	2020-12-01
oval:org.opensuse.security:def:56609	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:60208	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:44415	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:55140	P	guile on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22507	P	Security update for libvirt (Moderate)	2020-12-01
oval:org.opensuse.security:def:44985	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:24695	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:17630	P	Security update for kernel-source (Moderate)	2020-12-01
oval:org.opensuse.security:def:60860	P	Security update for dnsmasq (Moderate)	2020-12-01
oval:org.opensuse.security:def:44490	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:23790	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:23145	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:22325	P	Security update for apache2 (Important)	2020-12-01
oval:org.opensuse.security:def:44996	P	Security update for ntp (Moderate)	2020-12-01
oval:org.opensuse.security:def:24821	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:17661	P	Security update for LibVNCServer (Moderate)	2020-12-01
oval:org.opensuse.security:def:60980	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:11040	P	libotr-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:21931	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:60647	P	Security update for ardana-ansible, ardana-glance, ardana-horizon, ardana-input-model, ardana-manila, ardana-neutron, ardana-nova, ardana-octavia, ardana-tempest, crowbar-core, crowbar-ha, crowbar-openstack, crowbar-ui, galera-3, grafana, mariadb, mariadb-connector-c, novnc, openstack-cinder, openstack-glance, openstack-heat, openstack-horizon-plugin-neutron-vpnaas-ui, openstack-keystone, openstack-monasca-installer, openstack-neutron, openstack-neutron-gbp, openstack-neutron-lbaas, openstack-nova, python-amqp, python-ovs, python-pysaml2, python-python-engineio, python-urllib3, release-notes-suse-openstack-cloud, rubygem-easy_diff, rubygem-rest-client-1_6, venv-openstack-keystone (Moderate)	2020-12-01
oval:org.opensuse.security:def:44607	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:23837	P	Security update for permissions (Moderate)	2020-12-01
oval:org.opensuse.security:def:60991	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:45106	P	Security update for python-aws-sam-translator, python-boto3, python-botocore, python-cfn-lint, python-jsonschema, python-nose2, python-parameterized, python-pathlib2, python-pytest-cov, python-requests, python-s3transfer (Moderate)	2020-12-01
oval:org.opensuse.security:def:24902	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:17697	P	Security update for postgresql94 (Important)	2020-12-01
oval:org.opensuse.security:def:22867	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:53736	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:21978	P	Security update for mutt (Important)	2020-12-01
oval:org.opensuse.security:def:60768	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:44796	P	Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:56535	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:61013	P	Security update for dovecot22 (Important)	2020-12-01
oval:org.opensuse.security:def:45288	P	Security update for libsoup (Moderate)	2020-12-01
oval:org.opensuse.security:def:24958	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:17807	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:44519	P	Security update for krb5-appl (Important)	2020-12-01
oval:org.opensuse.security:def:22879	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:53758	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:22077	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:60961	P	Security update for krb5-appl (Important)	2020-12-01
oval:org.opensuse.security:def:44866	P	Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:45342	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:45409	P	Security update for freetype2 (Important)	2020-12-01
oval:org.opensuse.security:def:25041	P	Security update for libpcap (Important)	2020-12-01
oval:org.opensuse.security:def:17839	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:44570	P	Security update for java-1_7_1-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:22909	P	Security update for raptor (Important)	2020-12-01
oval:org.opensuse.security:def:46317	P	Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:53898	P	Security update for openconnect (Moderate)	2020-12-01
oval:org.opensuse.security:def:22141	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:59623	P	Security update for qemu (Moderate)	2020-12-01
oval:org.opensuse.security:def:45490	P	Security update for rzsz (Moderate)	2020-12-01
oval:org.opensuse.security:def:25191	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:44599	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:23290	P	Security update for postgresql96 (Moderate)	2020-12-01
oval:org.opensuse.security:def:46330	P	Security update for dpdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:54136	P	wdiff on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22181	P	Security update for libqt5-qtbase (Moderate)	2020-12-01
oval:org.opensuse.security:def:22333	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:45619	P	Security update for bzip2 (Important)	2020-12-01
oval:org.opensuse.security:def:25244	P	Security update for log4j (Important)	2020-12-01
oval:org.opensuse.security:def:44656	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:24631	P	Security update for kernel-source (Important)	2020-12-01
oval:org.opensuse.security:def:11048	P	libpodofo-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:54309	P	libsilc-1_1-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22234	P	Security update for glib2 (Important)	2020-12-01
oval:org.opensuse.security:def:22380	P	Security update for grub2 (Important)	2020-12-01
oval:org.opensuse.security:def:45294	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:87106	P	Security update for kernel-source (Important)	2019-04-16
oval:org.opensuse.security:def:85372	P	Security update for the Linux Kernel (Important)	2019-01-15
oval:org.opensuse.security:def:84970	P	Security update for the Linux Kernel (Important)	2018-10-04
oval:org.opensuse.security:def:79243	P	Security update for the Linux Kernel (Important)	2018-10-04
oval:com.ubuntu.bionic:def:2018165970000000	V	CVE-2018-16597 on Ubuntu 18.04 LTS (bionic) - medium.	2018-09-21
oval:com.ubuntu.bionic:def:201816597000	V	CVE-2018-16597 on Ubuntu 18.04 LTS (bionic) - medium.	2018-09-21
oval:com.ubuntu.xenial:def:2018165970000000	V	CVE-2018-16597 on Ubuntu 16.04 LTS (xenial) - medium.	2018-09-21
oval:com.ubuntu.cosmic:def:201816597000	V	CVE-2018-16597 on Ubuntu 18.10 (cosmic) - medium.	2018-09-21
oval:com.ubuntu.trusty:def:201816597000	V	CVE-2018-16597 on Ubuntu 14.04 LTS (trusty) - medium.	2018-09-21
oval:com.ubuntu.cosmic:def:2018165970000000	V	CVE-2018-16597 on Ubuntu 18.10 (cosmic) - medium.	2018-09-21
oval:com.ubuntu.xenial:def:201816597000	V	CVE-2018-16597 on Ubuntu 16.04 LTS (xenial) - medium.	2018-09-21
oval:com.redhat.rhsa:def:20162574	P	RHSA-2016:2574: kernel security, bug fix, and enhancement update (Important)	2016-11-03

BACK