Vulnerability Name:

CVE-2018-8036 (CCN-145592)

Assigned:2018-06-29
Published:2018-06-29
Updated:2019-10-03
Summary:In Apache PDFBox 1.8.0 to 1.8.14 and 2.0.0RC1 to 2.0.10, a carefully crafted (or fuzzed) file can trigger an infinite loop which leads to an out of memory exception in Apache PDFBox's AFMParser.
CVSS v3 Severity:6.5 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
5.7 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H)
4.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): High
CVSS v2 Severity:4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
4.6 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:N/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Complete
Vulnerability Type:CWE-835
Vulnerability Consequences:Denial of Service
References:Source: MITRE
Type: CNA
CVE-2018-8036

Source: CCN
Type: oss-sec Mailing List, Fri, 29 Jun 2018 08:23:14 +0200
[CVE-2018-8036] DoS (OOM) Vulnerability in Apache PDFBox's AFMParser

Source: CCN
Type: IBM Security Bulletin 885544 (Business Automation Workflow)
An Apache PDFBox security vulnerability has been identified with the embedded Content Manager used by IBM Business Automation Workflow (CVE-2018-8036)

Source: REDHAT
Type: Third Party Advisory
RHSA-2018:2669

Source: XF
Type: UNKNOWN
apache-cve20188036-dos(145592)

Source: MLIST
Type: Mailing List, Vendor Advisory
[users] 20180629 [CVE-2018-8036] DoS (OOM) Vulnerability in Apache PDFBox's AFMParser

Source: MLIST
Type: UNKNOWN
[syncope-dev] 20200423 Re: Time to cut 2.1.6 / 2.0.15?

Source: FEDORA
Type: UNKNOWN
FEDORA-2019-6fa01d12b4

Source: FEDORA
Type: UNKNOWN
FEDORA-2019-9e91afa2be

Source: CCN
Type: Apache PDFBox Web site
Apache PDFBox

Source: CCN
Type: IBM Security Bulletin 716315 (FileNet Content Manager)
IBM FileNet Content Manager affected by Apache PDFBox security vulnerability

Source: CCN
Type: IBM Security Bulletin 740165 (Emptoris Contract Management)
Apache PDFBox affects IBM Emptoris Contract Management

Source: CCN
Type: IBM Security Bulletin 742717 (QRadar SIEM)
Apache PDFBox as used in IBM QRadar Incident Forensics is vulnerable to Publicly disclosed vulnerability. (CVE-2018-8036)

Source: CCN
Type: IBM Security Bulletin 6443667 (Log Analysis)
Vulnerability in Apache PDFBox affects Apache Solr shipped with IBM Operations Analytics - Log Analysis (CVE-2018-8036)

Source: CCN
Type: IBM Security Bulletin 6967333 (QRadar SIEM)
IBM QRadar SIEM includes components with known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6987499 (Business Automation Workflow traditional)
Multiple vulnerabilities in DITA may affect IBM Business Automation Workflow and IBM Case Manager

Source: CCN
Type: IBM Security Bulletin 734681 (Transformation Extender)
A Vulnerability in Apache PDFBox Affects Transformation Extender

Source: N/A
Type: UNKNOWN
N/A

Vulnerable Configuration:Configuration 1:
  • cpe:/a:apache:pdfbox:*:*:*:*:*:*:*:* (Version > 1.8.0 and <= 1.8.14)
  • OR cpe:/a:apache:pdfbox:*:*:*:*:*:*:*:* (Version >= 2.0.0 and <= 2.0.10)
  • OR cpe:/a:apache:pdfbox:2.0.0:rc1:*:*:*:*:*:*
  • OR cpe:/a:apache:pdfbox:2.0.0:rc2:*:*:*:*:*:*
  • OR cpe:/a:apache:pdfbox:2.0.0:rc3:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:apache:pdfbox:1.8.0:*:*:*:*:*:*:*
  • OR cpe:/a:apache:pdfbox:2.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:apache:pdfbox:1.8.14:*:*:*:*:*:*:*
  • OR cpe:/a:apache:pdfbox:2.0.10:*:*:*:*:*:*:*
  • AND
  • cpe:/a:ibm:filenet_content_manager:5.2.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:emptoris_contract_management:10.1.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:9.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:filenet_content_manager:5.5.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:18.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:transformation_extender:9.0.0.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:emptoris_contract_management:10.0.0:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:emptoris_contract_management:10.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:emptoris_contract_management:10.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:emptoris_contract_management:10.0.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:emptoris_contract_management:10.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:emptoris_contract_management:10.1.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:18.0.0.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:19.0.0.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4:-:*:*:*:*:*:*
  • OR cpe:/a:ibm:log_analysis:1.3.1:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:log_analysis:1.3.2:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:log_analysis:1.3.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:log_analysis:1.3.4:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:log_analysis:1.3.5:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:log_analysis:1.3.6:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:20.0.0.1:*:*:*:traditional:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:20.0.0.2:*:*:*:traditional:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:21.0.1:*:*:*:traditional:*:*:*
  • OR cpe:/a:ibm:case_manager:5.3.3:*:*:*:*:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:22.0.1:*:*:*:traditional:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:21.0.3.1:*:*:*:traditional:*:*:*
  • OR cpe:/a:ibm:business_automation_workflow:22.0.2:*:*:*:traditional:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.opensuse.security:def:20188036
    V
    		CVE-2018-8036
    2023-06-22
    oval:org.opensuse.security:def:7990
    P
    		apache-pdfbox-2.0.23-150200.3.6.3 on GA media (Moderate)
    2023-06-20
    oval:org.opensuse.security:def:3365
    P
    		shim-14-25.6.1 on GA media (Moderate)
    2022-06-28
    oval:org.opensuse.security:def:2930
    P
    		ghostscript-9.52-161.1 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:94995
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:2940
    P
    		graphviz-2.48.0-150400.1.165 on GA media (Moderate)
    2022-06-22
    oval:org.opensuse.security:def:1329
    P
    		Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important)
    2022-04-25
    oval:org.opensuse.security:def:1797
    P
    		Security update for the Linux Kernel (Important)
    2022-04-13
    oval:org.opensuse.security:def:1375
    P
    		Security update for the Linux Kernel (Important)
    2022-01-26
    oval:org.opensuse.security:def:877
    P
    		Security update for bind (Moderate)
    2022-01-21
    oval:org.opensuse.security:def:111946
    P
    		apache-pdfbox-2.0.23-1.3 on GA media (Moderate)
    2022-01-17
    oval:org.opensuse.security:def:10192
    P
    		Security update for xorg-x11-server (Important)
    2021-12-14
    oval:org.opensuse.security:def:11151
    P
    		Security update for singularity (Moderate)
    2021-12-04
    oval:org.opensuse.security:def:64621
    P
    		Security update for ruby2.5 (Important)
    2021-12-01
    oval:org.opensuse.security:def:10349
    P
    		Security update for glibc (Moderate)
    2021-10-12
    oval:org.opensuse.security:def:105512
    P
    		apache-pdfbox-2.0.23-1.3 on GA media (Moderate)
    2021-10-01
    oval:org.opensuse.security:def:10155
    P
    		Security update for ffmpeg (Important)
    2021-09-23
    oval:org.opensuse.security:def:71208
    P
    		hplip-devel-3.18.6-5.7.1 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:71321
    P
    		libtag1-1.11.1-2.50 on GA media (Moderate)
    2021-09-21
    oval:org.opensuse.security:def:10330
    P
    		Security update for openssl-1_1 (Important)
    2021-08-24
    oval:org.opensuse.security:def:10130
    P
    		Security update for webkit2gtk3 (Important)
    2021-08-17
    oval:org.opensuse.security:def:10315
    P
    		Security update for c-ares (Important)
    2021-08-17
    oval:org.opensuse.security:def:48099
    P
    		libcairo-gobject2-1.15.2-25.3.2 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47534
    P
    		xlockmore-5.43-5.30 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47398
    P
    		libproxy1-0.4.13-16.3 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47951
    P
    		apache2-mod_jk-1.2.40-7.3.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47413
    P
    		libsrtp1-1.5.2-2.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47859
    P
    		ppc64-diag-2.7.4-1.18 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:48313
    P
    		stunnel-5.00-4.3.4 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47399
    P
    		libpulse-mainloop-glib0-32bit-5.0-4.1 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:47727
    P
    		libjbig2-2.0-12.13 on GA media (Moderate)
    2021-08-16
    oval:org.opensuse.security:def:2250
    P
    		libfpm_pb0-1.1.1-2.29 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:2285
    P
    		sca-patterns-sle12-1.0.2-1.1 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:2246
    P
    		libapr-util1-dbd-mysql-1.6.1-16.43 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:2279
    P
    		qemu-5.2.0-9.18 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:2292
    P
    		sysstat-isag-12.0.2-3.27.1 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:2234
    P
    		dhcp-relay-4.3.5-6.6.1 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:2259
    P
    		libshibsp-lite8-3.1.0-1.30 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:2290
    P
    		subversion-server-1.10.6-3.15.1 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:2224
    P
    		389-ds-1.4.4.14~git0.37dc95673-1.1 on GA media (Moderate)
    2021-08-10
    oval:org.opensuse.security:def:62990
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:101248
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:72709
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:1901
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:100825
    P
    		ecryptfs-utils-111-2.31 on GA media (Moderate)
    2021-08-09
    oval:org.opensuse.security:def:64534
    P
    		Security update for wireshark (Important)
    2021-06-22
    oval:org.opensuse.security:def:49080
    P
    		Security update for Salt (Important)
    2021-06-21
    oval:org.opensuse.security:def:48555
    P
    		libsystemd0-228-117.12 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48733
    P
    		libgadu3-1.11.4-1.12 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48459
    P
    		libMagickCore-6_Q16-1-6.8.8.1-33.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:16392
    P
    		apache-pdfbox-1.8.12-3.5.4 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48397
    P
    		cvs-1.12.12-181.54 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48877
    P
    		libwmf-0_2-7-0.2.8.4-242.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48732
    P
    		libfbembed2_5-2.5.2.26539-13.42 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48524
    P
    		libmspack0-0.4-14.4 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:124398
    P
    		apache-pdfbox-1.8.12-3.5.4 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48626
    P
    		strongswan-5.1.3-22.1 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:48751
    P
    		libwmf-0_2-7-0.2.8.4-242.3 on GA media (Moderate)
    2021-06-08
    oval:org.opensuse.security:def:66792
    P
    		Security update for libX11 (Moderate)
    2021-05-26
    oval:org.opensuse.security:def:10055
    P
    		Security update for fwupdate (Important)
    2021-04-08
    oval:org.opensuse.security:def:10424
    P
    		Security update for libzypp, zypper (Moderate)
    2021-03-25
    oval:org.opensuse.security:def:10222
    P
    		Security update for openssl-1_0_0 (Moderate)
    2021-03-11
    oval:org.opensuse.security:def:10219
    P
    		Security update for openssl-1_1 (Moderate)
    2021-03-09
    oval:org.opensuse.security:def:10200
    P
    		Security update for wpa_supplicant (Important)
    2021-02-11
    oval:org.opensuse.security:def:10197
    P
    		Security update for subversion (Important)
    2021-02-10
    oval:org.opensuse.security:def:11173
    P
    		Security update for segv_handler (Moderate)
    2021-02-02
    oval:org.opensuse.security:def:10268
    P
    		Security update for wavpack (Moderate)
    2021-01-21
    oval:org.opensuse.security:def:67968
    P
    		Security update for the Linux Kernel (Important)
    2021-01-14
    oval:org.opensuse.security:def:10206
    P
    		Security update for nodejs10 (Moderate)
    2021-01-11
    oval:org.opensuse.security:def:10036
    P
    		Security update for java-1_8_0-ibm (Moderate)
    2020-12-23
    oval:org.opensuse.security:def:66700
    P
    		Security update for clamav-database (Important)
    2020-12-14
    oval:org.opensuse.security:def:107491
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2215
    P
    		spice-gtk-devel-0.37-1.92 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:3851
    P
    		apache-pdfbox-1.8.12-3.5.4 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:1844
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:2219
    P
    		uuidd-2.33.1-4.5.1 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:117049
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:89965
    P
    		apache-pdfbox-1.8.12-5.6.3 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62886
    P
    		apache-pdfbox-1.8.12-5.6.3 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:16687
    P
    		apache-pdfbox-1.8.12-3.5.4 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:94112
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:72605
    P
    		apache-pdfbox-1.8.12-5.6.3 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:103620
    P
    		apache-pdfbox-1.8.12-5.6.3 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:62933
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:72652
    P
    		apache-pdfbox-1.8.16-1.68 on GA media (Moderate)
    2020-12-03
    oval:org.opensuse.security:def:17477
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:50037
    P
    		stunnel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17653
    P
    		Security update for MozillaFirefox, mozilla-nspr, mozilla-nss (Important)
    2020-12-01
    oval:org.opensuse.security:def:10491
    P
    		libdmx-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10879
    P
    		apache-pdfbox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:51313
    P
    		Security update for librsvg (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:9928
    P
    		libtiff5 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17830
    P
    		Security update for the Linux Kernel (Important)
    2020-12-01
    oval:org.opensuse.security:def:17953
    P
    		Security update for gstreamer-0_10-plugins-base (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49770
    P
    		apache-pdfbox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:70043
    P
    		file-roller on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49477
    P
    		newt-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49964
    P
    		libvirt on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17919
    P
    		Security update for xerces-c (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17596
    P
    		Security update for bind (Important)
    2020-12-01
    oval:org.opensuse.security:def:18591
    P
    		Security update for ghostscript (Important)
    2020-12-01
    oval:org.opensuse.security:def:9906
    P
    		libpoppler-glib8 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17720
    P
    		Security update for libgcrypt (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17469
    P
    		Security update for MozillaFirefox (Important)
    2020-12-01
    oval:org.opensuse.security:def:10500
    P
    		libgpgme-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49816
    P
    		apache-pdfbox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10021
    P
    		xorg-x11 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49868
    P
    		zlib-devel-32bit on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10449
    P
    		graphite2-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49716
    P
    		spice-vdagent on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:73365
    P
    		MozillaFirefox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49320
    P
    		python3-urllib3 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:18617
    P
    		Security update for apache-pdfbox (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49801
    P
    		perl-Mail-SpamAssassin-Plugin-iXhash2 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17511
    P
    		Security update for pidgin (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17684
    P
    		Security update for gdk-pixbuf (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17931
    P
    		Security update for ImageMagick (Important)
    2020-12-01
    oval:org.opensuse.security:def:51375
    P
    		Security update for apache-pdfbox (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:73483
    P
    		apache-pdfbox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:9974
    P
    		python-imaging on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:17862
    P
    		Security update for MozillaFirefox, mozilla-nss (Important)
    2020-12-01
    oval:org.opensuse.security:def:49762
    P
    		subversion-bash-completion on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10857
    P
    		vte2-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:10513
    P
    		libjson-c-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:70148
    P
    		apache-pdfbox on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:9898
    P
    		libopenssl-devel on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49224
    P
    		libpython3_6m1_0 on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49933
    P
    		clamsap on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:67868
    P
    		fetchmailconf on GA media (Moderate)
    2020-12-01
    oval:org.opensuse.security:def:49711
    P
    		python-tk on GA media (Moderate)
    2020-12-01
    oval:com.ubuntu.bionic:def:201880360000000
    V
    		CVE-2018-8036 on Ubuntu 18.04 LTS (bionic) - low.
    2018-07-03
    oval:com.ubuntu.artful:def:20188036000
    V
    		CVE-2018-8036 on Ubuntu 17.10 (artful) - untriaged.
    2018-07-03
    oval:com.ubuntu.xenial:def:20188036000
    V
    		CVE-2018-8036 on Ubuntu 16.04 LTS (xenial) - low.
    2018-07-03
    oval:com.ubuntu.xenial:def:201880360000000
    V
    		CVE-2018-8036 on Ubuntu 16.04 LTS (xenial) - low.
    2018-07-03
    oval:com.ubuntu.bionic:def:20188036000
    V
    		CVE-2018-8036 on Ubuntu 18.04 LTS (bionic) - low.
    2018-07-03
    oval:com.ubuntu.disco:def:201880360000000
    V
    		CVE-2018-8036 on Ubuntu 19.04 (disco) - low.
    2018-07-03
    oval:com.ubuntu.cosmic:def:20188036000
    V
    		CVE-2018-8036 on Ubuntu 18.10 (cosmic) - low.
    2018-07-03
    oval:com.ubuntu.cosmic:def:201880360000000
    V
    		CVE-2018-8036 on Ubuntu 18.10 (cosmic) - low.
    2018-07-03
    oval:com.ubuntu.trusty:def:20188036000
    V
    		CVE-2018-8036 on Ubuntu 14.04 LTS (trusty) - low.
    2018-07-03
    BACK
    apache pdfbox *
    apache pdfbox *
    apache pdfbox 2.0.0 rc1
    apache pdfbox 2.0.0 rc2
    apache pdfbox 2.0.0 rc3
    apache pdfbox 1.8.0
    apache pdfbox 2.0.0
    apache pdfbox 1.8.14
    apache pdfbox 2.0.10
    ibm filenet content manager 5.2.1
    ibm emptoris contract management 10.1.0
    ibm transformation extender 9.0.0.2
    ibm filenet content manager 5.5.0
    ibm qradar security information and event manager 7.2
    ibm qradar security information and event manager 7.3
    ibm business automation workflow 18.0.0.1
    ibm transformation extender 9.0.0.3
    ibm emptoris contract management 10.0.0
    ibm emptoris contract management 10.0.1
    ibm emptoris contract management 10.0.2
    ibm emptoris contract management 10.0.4
    ibm emptoris contract management 10.1.1
    ibm emptoris contract management 10.1.3
    ibm business automation workflow 18.0.0.2
    ibm business automation workflow 19.0.0.1
    ibm qradar security information and event manager 7.4 -
    ibm log analysis 1.3.1
    ibm log analysis 1.3.2
    ibm log analysis 1.3.3
    ibm log analysis 1.3.4
    ibm log analysis 1.3.5
    ibm log analysis 1.3.6
    ibm business automation workflow 20.0.0.1
    ibm business automation workflow 20.0.0.2
    ibm business automation workflow 21.0.1
    ibm case manager 5.3.3
    ibm business automation workflow 22.0.1
    ibm business automation workflow 21.0.3.1
    ibm business automation workflow 22.0.2