Vulnerability CVE-2018-16857

Vulnerability Name:

CVE-2018-16857 (CCN-153466)

Assigned:

2018-11-28

Published:

2018-11-28

Updated:

2019-10-09

Summary:

Samba from version 4.9.0 and before version 4.9.3 that have AD DC configurations watching for bad passwords (to restrict brute forcing of passwords) in a window of more than 3 minutes may not watch for bad passwords at all. The primary risk from this issue is with regards to domains that have been upgraded from Samba 4.8 and earlier. In these cases the manual testing done to confirm an organisation's password policies apply as expected may not have been re-done after the upgrade.

CVSS v3 Severity:

5.9 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N)
5.2 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N)
5.2 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

5.4 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-358

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2018-16857

Source: BID
Type: Third Party Advisory, VDB Entry
106024

Source: CONFIRM
Type: Issue Tracking, Mitigation, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2018-16857

Source: XF
Type: UNKNOWN
samba-cve201816857-weak-security(153466)

Source: GENTOO
Type: UNKNOWN
GLSA-202003-52

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20181127-0001/

Source: CCN
Type: Samba Web site
Bad password count in AD DC not always effective

Source: CONFIRM
Type: Mitigation, Patch, Vendor Advisory
https://www.samba.org/samba/security/CVE-2018-16857.html

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2018-16857

Vulnerable Configuration:

Configuration 1:

cpe:/a:samba:samba:*:*:*:*:*:*:*:* (Version >= 4.9.0 and < 4.9.3)

Configuration CCN 1:

cpe:/a:samba:samba:4.9.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201816857	V	CVE-2018-16857	2023-06-22
oval:org.opensuse.security:def:7661	P	libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7662	P	libsamba-policy-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7447	P	bcel-5.2-150200.11.3.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7469	P	cpp7-7.5.0+r278197-4.30.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:723	P	Security update for postgresql14 (Important)	2022-09-01
oval:org.opensuse.security:def:422	P	Security update for trivy (Moderate)	2022-08-06
oval:org.opensuse.security:def:6343	P	Security update for freerdp (Critical)	2022-07-11
oval:org.opensuse.security:def:3071	P	ft2demos-2.6.3-7.15.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3164	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3072	P	fuse-2.9.3-6.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3584	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94702	P	libsamba-policy-devel-4.15.5+git.328.f1f29505d84-150400.1.44 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94701	P	libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:16	P	bind-devel-9.16.6-20.39 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:129	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:1058	P	Security update for MozillaFirefox (Important)	2022-04-07
oval:org.opensuse.security:def:951	P	Security update for ucode-intel (Important)	2022-02-25
oval:org.opensuse.security:def:112125	P	ctdb-4.14.6+git.182.2205d5224e3-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:69815	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:10431	P	Security update for xorg-x11-server (Important)	2021-12-21
oval:org.opensuse.security:def:10385	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:7294	P	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:93779	P	(Important)	2021-12-06
oval:org.opensuse.security:def:6488	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:10363	P	Security update for tomcat (Important)	2021-11-16
oval:org.opensuse.security:def:105662	P	Security update for MozillaFirefox (Important)	2021-11-10
oval:org.opensuse.security:def:10355	P	Security update for busybox (Important)	2021-10-27
oval:org.opensuse.security:def:10663	P	Security update for ffmpeg (Moderate)	2021-10-26
oval:org.opensuse.security:def:64593	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:7272	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important)	2021-10-12
oval:org.opensuse.security:def:67569	P	Security update for the Linux Kernel (Important)	2021-09-23
oval:org.opensuse.security:def:103321	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:96631	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71380	P	python3-pyOpenSSL-17.5.0-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61511	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:89666	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71267	P	libjavascriptcoregtk-4_0-18-2.24.1-3.24.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71252	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:8647	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:10654	P	Security update for MozillaThunderbird (Important)	2021-08-30
oval:org.opensuse.security:def:69710	P	Security update for fetchmail (Moderate)	2021-08-20
oval:org.opensuse.security:def:14983	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47942	P	aaa_base-13.2+git20140911.61c1681-38.13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47858	P	powerpc-utils-1.3.5-3.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47644	P	hyper-v-7-7.5 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47496	P	rtkit-0.11_git201205151338-8.14 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47404	P	libraptor2-0-2.0.10-3.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47272	P	gpg2-2.0.24-8.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47079	P	libsqlite3-0-3.8.10.2-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46958	P	gpgme-1.5.1-1.11 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46944	P	gd-2.1.0-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48173	P	libpng15-15-1.5.22-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48025	P	gnome-shell-search-provider-nautilus-3.20.3-23.12.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46943	P	fuse-2.9.3-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47933	P	yubikey-manager-0.6.0-1.27 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47801	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47608	P	file-5.22-10.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47487	P	qemu-2.9.0-5.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47473	P	powerpc-utils-1.3.3-5.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48171	P	libplist3-1.12-20.3.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48100	P	libcares2-1.9.1-9.4.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48103	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48069	P	libSDL-1_2-0-1.2.15-15.11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47472	P	policycoreutils-2.5-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48004	P	expat-2.1.0-21.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:71888	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100905	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62147	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:8628	P	Security update for nodejs8 (Important)	2021-08-05
oval:org.opensuse.security:def:68027	P	Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP1) (Important)	2021-07-27
oval:org.opensuse.security:def:8811	P	Security update for MozillaFirefox (Important)	2021-07-27
oval:org.opensuse.security:def:6451	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:67539	P	Security update for the Linux Kernel (Important)	2021-07-14
oval:org.opensuse.security:def:8798	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:8613	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:1472	P	Security update for apache2 (Important)	2021-06-22
oval:org.opensuse.security:def:8789	P	Security update for salt (Critical)	2021-06-21
oval:org.opensuse.security:def:6470	P	Security update for the Linux Kernel (Important)	2021-06-15
oval:org.opensuse.security:def:8780	P	Security update for spice-gtk (Moderate)	2021-06-10
oval:org.opensuse.security:def:48700	P	libzmq3-4.0.4-2.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48863	P	libpcrecpp0-32bit-8.39-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48629	P	supportutils-3.0-85.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48598	P	perl-Tk-804.031-3.76 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48533	P	libpcsclite1-1.8.10-3.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11314	P	gnome-shell-3.10.4-22.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48809	P	libwebkit2gtk3-lang-2.12.5-1.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48471	P	libXrandr2-1.5.0-6.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48387	P	coreutils-8.25-12.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11336	P	libXcursor1-1.1.14-3.60 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70892	P	dnsmasq-2.78-1.38 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70909	P	ghostscript-9.23-1.16 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:71022	P	libsha1detectcoll-devel-1.0.3-2.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10676	P	Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly (Important)	2021-06-01
oval:org.opensuse.security:def:8747	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:64680	P	Security update for ceph (Important)	2021-05-04
oval:org.opensuse.security:def:70779	P	Security update for MozillaThunderbird (Important)	2021-04-29
oval:org.opensuse.security:def:8566	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:9471	P	Security update for nghttp2 (Important)	2021-03-24
oval:org.opensuse.security:def:8722	P	Security update for ruby2.5 (Important)	2021-03-24
oval:org.opensuse.security:def:6321	P	Security update for evolution-data-server (Moderate)	2021-03-19
oval:org.opensuse.security:def:9449	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:6313	P	Security update for python (Important)	2021-02-11
oval:org.opensuse.security:def:6720	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15) (Important)	2021-02-10
oval:org.opensuse.security:def:64322	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:6645	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15) (Important)	2020-12-07
oval:org.opensuse.security:def:116716	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71553	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107158	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:100492	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61812	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16850	P	libndr-devel-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12802	P	ctdb-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103191	P	ctdb-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:96501	P	ctdb-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12977	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4014	P	libndr-devel-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:89536	P	ctdb-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:37130	P	gnome-settings-daemon on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49859	P	perl-PerlMagick on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37073	P	autofs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6778	P	libvte9 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36972	P	mozilla-nspr-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6745	P	libpulse-mainloop-glib0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36836	P	gd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36752	P	squashfs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66367	P	cpp7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36741	P	python-pyOpenSSL on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6626	P	gstreamer-0_10-plugins-base on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38237	P	lcms2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6611	P	ghostscript on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73032	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6564	P	busybox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6518	P	telepathy-gabble on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6496	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64105	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:36740	P	python-libxml2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67669	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49164	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6634	P	gzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73150	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6621	P	gpgme on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67439	P	Security update for python-setuptools (Important)	2020-12-01
oval:org.opensuse.security:def:6612	P	gimp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37599	P	libupsclient1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8520	P	shim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37555	P	libmusicbrainz4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8498	P	powerpc-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37527	P	libgssglue1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64235	P	curl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37488	P	libXcursor1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10612	P	xorg-x11-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49913	P	libsamba-policy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10587	P	polkit-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6809	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10512	P	libjpeg62-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6796	P	mutt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10493	P	libexif-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6787	P	libzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49110	P	graphviz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10478	P	libXv-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6603	P	freerdp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66459	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6570	P	coreutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38279	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6545	P	zoo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8490	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6436	P	libspice-server1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37439	P	ghostscript on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64192	P	ctdb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6389	P	libjavascriptcoregtk-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37380	P	apache2-mod_apparmor on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37220	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67927	P	libpcre2-posix2 on GA media (Moderate)	2020-12-01
oval:com.ubuntu.bionic:def:201816857000	V	CVE-2018-16857 on Ubuntu 18.04 LTS (bionic) - medium.	2018-11-28
oval:com.ubuntu.cosmic:def:2018168570000000	V	CVE-2018-16857 on Ubuntu 18.10 (cosmic) - medium.	2018-11-28
oval:com.ubuntu.cosmic:def:201816857000	V	CVE-2018-16857 on Ubuntu 18.10 (cosmic) - medium.	2018-11-28
oval:com.ubuntu.bionic:def:2018168570000000	V	CVE-2018-16857 on Ubuntu 18.04 LTS (bionic) - medium.	2018-11-28
oval:com.ubuntu.trusty:def:201816857000	V	CVE-2018-16857 on Ubuntu 14.04 LTS (trusty) - medium.	2018-11-28
oval:com.ubuntu.xenial:def:2018168570000000	V	CVE-2018-16857 on Ubuntu 16.04 LTS (xenial) - medium.	2018-11-28
oval:com.ubuntu.xenial:def:201816857000	V	CVE-2018-16857 on Ubuntu 16.04 LTS (xenial) - medium.	2018-11-28

BACK