Vulnerability CVE-2019-0199

Vulnerability Name:

CVE-2019-0199 (CCN-158637)

Assigned:

2018-11-14

Published:

2019-03-25

Updated:

2019-05-28

Summary:

The HTTP/2 implementation in Apache Tomcat 9.0.0.M1 to 9.0.14 and 8.5.0 to 8.5.37 accepted streams with excessive numbers of SETTINGS frames and also permitted clients to keep streams open without reading/writing request/response data. By keeping streams open for requests that utilised the Servlet API's blocking I/O, clients were able to cause server-side threads to block eventually leading to thread exhaustion and a DoS.

CVSS v3 Severity:

7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Type:

CWE-400

Vulnerability Consequences:

Denial of Service

References:

Vulnerable Configuration:

Configuration 1:

cpe:/a:apache:tomcat:*:*:*:*:*:*:*:* (Version >= 8.5.0 and <= 8.5.37)

OR cpe:/a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m10:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m11:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m12:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m13:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m14:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m15:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m16:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m17:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m18:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m19:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m2:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m20:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m21:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m3:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m4:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m5:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m6:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m7:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m8:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m9:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:*:*:*:*:*:*:*:* (Version >= 9.0.1 and <= 9.0.14)

Configuration CCN 1:

cpe:/a:apache:tomcat:8.5.0:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:8.5.37:*:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.0:m1:*:*:*:*:*:*

OR cpe:/a:apache:tomcat:9.0.14:*:*:*:*:*:*:*

AND

cpe:/a:oracle:instantis_enterprisetrack:17.1:*:*:*:*:*:*:*

OR cpe:/a:oracle:instantis_enterprisetrack:17.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*

OR cpe:/a:oracle:instantis_enterprisetrack:17.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron:7.5.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron:7.5.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron:7.5.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron:7.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron:7.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_cast_iron:7.0.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:app_connect:7.5.2.0:*:*:*:professional:*:*:*

OR cpe:/a:ibm:app_connect:7.5.3.0:*:*:*:professional:*:*:*

OR cpe:/a:ibm:urbancode_deploy:7.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium_data_encryption:3.0.0.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:7689	P	libunwind-1.5.0-4.5.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7667	P	libsmi-0.4.8-1.29 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:51999	P	Security update for tiff (Important)	2023-02-10
oval:org.opensuse.security:def:51980	P	Security update for sudo (Important)	2023-01-20
oval:org.opensuse.security:def:51979	P	Security update for conmon (Moderate)	2022-12-29
oval:org.opensuse.security:def:51965	P	Security update for libdb-4_8 (Low)	2022-11-24
oval:org.opensuse.security:def:51946	P	Security update for expat (Important)	2022-11-07
oval:org.opensuse.security:def:51945	P	Security update for the Linux Kernel (Important)	2022-11-01
oval:org.opensuse.security:def:51936	P	Security update for tiff (Important)	2022-10-21
oval:org.opensuse.security:def:643	P	Security update for python-paramiko (Important) (in QA)	2022-09-30
oval:org.opensuse.security:def:20190199	V	CVE-2019-0199	2022-09-02
oval:org.opensuse.security:def:4302	P	Security update for the Linux Kernel (Important)	2022-08-09
oval:org.opensuse.security:def:94262	P	(Important)	2022-07-14
oval:org.opensuse.security:def:3806	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3491	P	ft2demos-2.6.3-7.15.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3223	P	libopenssl1_1-1.1.1c-2.17.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3544	P	libFLAC++6-1.3.0-11.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3233	P	libpng12-0-1.2.50-19.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3211	P	libmpfr4-3.1.2-7.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3503	P	gnome-keyring-3.20.0-28.3.18 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3384	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3221	P	libopenssl-1_0_0-devel-1.0.2p-3.11.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:95174	P	tomcat-9.0.36-150200.22.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:4296	P	Security update for the Linux Kernel (Important)	2022-06-20
oval:org.opensuse.security:def:4295	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:4306	P	Security update for the Linux Kernel (Important)	2022-03-09
oval:org.opensuse.security:def:1692	P	Security update for cyrus-sasl (Important)	2022-03-07
oval:org.opensuse.security:def:4303	P	Security update for samba (Critical)	2022-02-14
oval:org.opensuse.security:def:113536	P	tomcat-9.0.36-8.4 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:4305	P	Security update for the Linux Kernel (Important)	2022-01-13
oval:org.opensuse.security:def:4174	P	Security update for fetchmail (Moderate)	2021-12-14
oval:org.opensuse.security:def:7007	P	Security update for the Linux Kernel (Live Patch 25 for SLE 15 SP1) (Important)	2021-12-14
oval:org.opensuse.security:def:4173	P	Security update for ImageMagick (Moderate)	2021-12-10
oval:org.opensuse.security:def:8869	P	Security update for poppler (Important)	2021-12-01
oval:org.opensuse.security:def:51702	P	Security update for java-1_7_0-openjdk (Important)	2021-11-24
oval:org.opensuse.security:def:6716	P	Security update for the Linux Kernel (Live Patch 25 for SLE 15) (Important)	2021-11-17
oval:org.opensuse.security:def:23985	P	Security update for postgresql10 (Important)	2021-10-20
oval:org.opensuse.security:def:51683	P	Security update for postgresql10 (Important)	2021-10-20
oval:org.opensuse.security:def:68750	P	Security update for python (Moderate)	2021-10-20
oval:org.opensuse.security:def:8850	P	Security update for python-Pygments (Important)	2021-10-20
oval:org.opensuse.security:def:4162	P	Security update for flatpak (Important)	2021-10-20
oval:org.opensuse.security:def:51682	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:4161	P	Security update for MozillaFirefox (Important)	2021-10-16
oval:org.opensuse.security:def:65313	P	Security update for webkit2gtk3 (Important)	2021-10-12
oval:org.opensuse.security:def:6708	P	Security update for the Linux Kernel (Live Patch 25 for SLE 15) (Important)	2021-10-12
oval:org.opensuse.security:def:106932	P	tomcat-9.0.36-8.4 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:23675	P	Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important)	2021-09-23
oval:org.opensuse.security:def:66931	P	Security update for hivex (Moderate)	2021-09-23
oval:org.opensuse.security:def:63222	P	libvirt-5.1.0-6.9 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:6965	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-09-16
oval:org.opensuse.security:def:51656	P	Security update for transfig (Moderate)	2021-09-16
oval:org.opensuse.security:def:9033	P	Security update for java-11-openjdk (Important)	2021-09-03
oval:org.opensuse.security:def:70287	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:8835	P	Security update for xen (Important)	2021-09-02
oval:org.opensuse.security:def:4150	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:9020	P	Security update for php7 (Important)	2021-08-20
oval:org.opensuse.security:def:69526	P	Security update for java-1_8_0-openjdk (Important)	2021-08-20
oval:org.opensuse.security:def:9011	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:47144	P	res-signingkeys-3.0.18-26.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48325	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15205	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47093	P	libvncclient0-0.9.9-16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:63418	P	tomcat-9.0.36-3.24.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:101419	P	tomcat-9.0.36-3.24.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2329	P	tomcat-9.0.36-3.24.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63354	P	libvirt-7.1.0-4.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63458	P	strongswan-nm-5.8.2-9.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62365	P	zsh-5.6-5.17 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62074	P	flac-devel-1.3.2-3.6.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100975	P	libsnmp30-5.7.3-8.24 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62366	P	zypper-1.14.43-3.20.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62349	P	whois-5.3.0-1.16 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72103	P	yast2-users-4.3.10-1.41 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71987	P	libxerces-c-3_2-3.2.3-1.28 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63047	P	xstream-1.4.15-3.5.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72761	P	python39-tools-3.9.4-2.9 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:4209	P	Security update for spice-vdagent (Important)	2021-08-05
oval:org.opensuse.security:def:6940	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-07-27
oval:org.opensuse.security:def:9002	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:66839	P	Security update for apache2 (Important)	2021-06-22
oval:org.opensuse.security:def:51594	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-06-18
oval:org.opensuse.security:def:23610	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-06-18
oval:org.opensuse.security:def:8788	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:46455	P	libXcursor1-1.1.14-3.59 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62845	P	bsh2-2.0.0.b6-3.102 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:63556	P	libwmf-0_2-7-0.2.8.4-2.30 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:8969	P	Security update for pam_radius (Moderate)	2021-06-08
oval:org.opensuse.security:def:23915	P	Security update for libX11 (Important)	2021-06-08
oval:org.opensuse.security:def:46390	P	cifs-utils-6.4-3.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:8944	P	Security update for avahi (Moderate)	2021-06-04
oval:org.opensuse.security:def:49145	P	Security update for slurm_20_11 (Important)	2021-05-27
oval:org.opensuse.security:def:4193	P	Security update for libass (Moderate)	2021-05-20
oval:org.opensuse.security:def:73622	P	Recommended update for grub2 (Moderate)	2021-05-19
oval:org.opensuse.security:def:4189	P	Security update for openexr (Important)	2021-05-04
oval:org.opensuse.security:def:4190	P	Security update for avahi (Moderate)	2021-05-04
oval:org.opensuse.security:def:4271	P	Security update for samba (Important)	2021-04-29
oval:org.opensuse.security:def:9693	P	Security update for MozillaFirefox (Important)	2021-04-29
oval:org.opensuse.security:def:8742	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:51139	P	Security update for xen (Important)	2021-04-20
oval:org.opensuse.security:def:51874	P	Security update for xen (Important)	2021-04-19
oval:org.opensuse.security:def:51873	P	Security update for qemu (Important)	2021-04-16
oval:org.opensuse.security:def:6865	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)	2021-04-07
oval:org.opensuse.security:def:9671	P	Security update for libass (Important)	2021-03-24
oval:org.opensuse.security:def:8720	P	Security update for glib2 (Important)	2021-03-19
oval:org.opensuse.security:def:7016	P	Security update for the Linux Kernel (Live Patch 21 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:4290	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:8712	P	Security update for python-cryptography (Important)	2021-03-03
oval:org.opensuse.security:def:4181	P	Security update for ImageMagick (Moderate)	2021-02-25
oval:org.opensuse.security:def:51159	P	Security update for the Linux Kernel (Important)	2021-02-11
oval:org.opensuse.security:def:6998	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-02-10
oval:org.opensuse.security:def:49298	P	Security update for python-urllib3 (Moderate)	2021-02-03
oval:org.opensuse.security:def:74300	P	Security update for MozillaFirefox (Important)	2021-02-01
oval:org.opensuse.security:def:51604	P	Security update for postgresql, postgresql12, postgresql13 (Important)	2021-01-26
oval:org.opensuse.security:def:4130	P	Security update for gdk-pixbuf (Moderate)	2021-01-21
oval:org.opensuse.security:def:4131	P	Security update for wavpack (Moderate)	2021-01-21
oval:org.opensuse.security:def:4068	P	Security update for ImageMagick (Moderate)	2021-01-18
oval:org.opensuse.security:def:51140	P	Security update for openldap2 (Moderate)	2021-01-15
oval:org.opensuse.security:def:4270	P	Security update for the Linux Kernel (Important)	2021-01-15
oval:org.opensuse.security:def:23619	P	Security update for openssh (Moderate)	2021-01-05
oval:org.opensuse.security:def:51666	P	Security update for java-1_8_0-ibm (Moderate)	2021-01-05
oval:org.opensuse.security:def:51893	P	Security update for flac (Moderate)	2021-01-04
oval:org.opensuse.security:def:4970	P	Security update for openexr (Moderate)	2020-12-23
oval:org.opensuse.security:def:69421	P	Security update for python3 (Important)	2020-12-23
oval:org.opensuse.security:def:4967	P	Security update for MozillaFirefox (Critical)	2020-12-21
oval:org.opensuse.security:def:6846	P	Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP1) (Important)	2020-12-07
oval:org.opensuse.security:def:23866	P	Security update for python-cryptography (Moderate)	2020-12-04
oval:org.opensuse.security:def:61901	P	libvirt-libs-6.0.0-11.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4067	P	libtool-2.4.2-17.4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63185	P	squid-4.0.23-3.47 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2486	P	gimp-2.8.22-3.42 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2528	P	gimp-2.10.12-1.100 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62681	P	libmicrohttpd-devel-0.9.57-1.33 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61877	P	libseccomp-devel-2.4.1-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2524	P	enigmail-2.1.5-3.22.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2482	P	dia-0.97.3-2.32 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4076	P	libwmf-0_2-7-0.2.8.4-242.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49000	P	kernel-default-extra-4.12.14-120.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4089	P	lua-devel-5.2.4-6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62566	P	libmp3lame-devel-3.100-1.33 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49018	P	libmysqlclient_r18-10.0.40.1-2.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117199	P	tomcat-9.0.35-1.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2496	P	libmwaw-0_3-3-0.3.14-4.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63411	P	tomcat-9.0.35-1.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2502	P	libpurple-2.13.0-3.35 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:48999	P	java-1_7_0-openjdk-plugin-1.6.2-2.8.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2534	P	kernel-default-extra-5.3.18-22.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62899	P	git-2.16.4-3.9.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:46361	P	python-pycrypto-2.6.1-1.15 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2492	P	imobiledevice-tools-1.2.0+git20170122.45fda81-1.44 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4095	P	mysql-connector-java-5.1.42-5.4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2504	P	libreoffice-6.1.3.2-6.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2533	P	imobiledevice-tools-1.2.0+git20180427.26373b3-1.40 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49010	P	libgadu3-1.11.4-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4108	P	osc-0.162.1-15.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2322	P	tomcat-9.0.35-1.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4087	P	libzypp-devel-16.20.0-2.39.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49028	P	libplist++3-1.12-20.3.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61878	P	libserf-1-1-1.3.9-2.31 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107641	P	tomcat-9.0.35-1.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49009	P	libfbembed2_5-2.5.2.26539-15.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2514	P	Mesa-dri-nouveau-19.3.4-45.31 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62547	P	libcairo2-32bit-1.15.10-4.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2543	P	libproxy1-config-gnome3-0.4.15-2.42 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2518	P	PackageKit-gstreamer-plugin-1.1.13-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4075	P	libvpx-devel-1.3.0-3.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63596	P	libwmf-0_2-7-0.2.8.4-2.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62389	P	ImageMagick-7.0.7.34-1.6 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4088	P	libzzip-0-13-0.13.67-10.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13197	P	tomcat-9.0.21-3.13.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2784	P	Security update for ImageMagick (Moderate)	2020-12-02
oval:org.opensuse.security:def:2813	P	Security update for MozillaFirefox, MozillaFirefox-branding-SLE (Important)	2020-12-02
oval:org.opensuse.security:def:2567	P	Security update for wireshark (Moderate)	2020-12-02
oval:org.opensuse.security:def:4310	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:2563	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:2581	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:2583	P	Security update for ceph (Moderate)	2020-12-02
oval:org.opensuse.security:def:4947	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:2798	P	Security update for evince (Important)	2020-12-02
oval:org.opensuse.security:def:4315	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4325	P	Security update for the Linux Kernel (Live Patch 15 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:2837	P	Security update for fwupd (Important)	2020-12-02
oval:org.opensuse.security:def:4329	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:2573	P	Security update for kernel-firmware (Important)	2020-12-02
oval:org.opensuse.security:def:4989	P	Security update for tomcat (Moderate)	2020-12-02
oval:org.opensuse.security:def:2851	P	Security update for MozillaFirefox (Moderate)	2020-12-02
oval:org.opensuse.security:def:2853	P	Security update for jasper (Moderate)	2020-12-02
oval:org.opensuse.security:def:2766	P	Security update for libsoup (Moderate)	2020-12-02
oval:org.opensuse.security:def:4948	P	Security update for spice (Moderate)	2020-12-02
oval:org.opensuse.security:def:2772	P	Security update for MozillaFirefox (Important)	2020-12-02
oval:org.opensuse.security:def:4250	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:2804	P	Security update for ibus (Important)	2020-12-02
oval:org.opensuse.security:def:2762	P	Security update for audiofile (Low)	2020-12-02
oval:org.opensuse.security:def:2843	P	Security update for vino (Moderate)	2020-12-02
oval:org.opensuse.security:def:2557	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:4322	P	Security update for the Linux Kernel (Live Patch 8 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4309	P	Security update for the Linux Kernel (Live Patch 9 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4969	P	Security update for tomcat (Moderate)	2020-12-02
oval:org.opensuse.security:def:4251	P	Security update for the Linux Kernel (Live Patch 10 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:2571	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:49279	P	nfs-client on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49360	P	xorg-x11-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51786	P	Security update for docker-runc (Important)	2020-12-01
oval:org.opensuse.security:def:50224	P	evolution on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63651	P	Security update for qemu (Moderate)	2020-12-01
oval:org.opensuse.security:def:45317	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:49761	P	python3-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24256	P	Security update for postgresql96 (Low)	2020-12-01
oval:org.opensuse.security:def:24306	P	Security update for procps (Moderate)	2020-12-01
oval:org.opensuse.security:def:53420	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:49496	P	ImageMagick on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63872	P	Security update for ovmf (Important)	2020-12-01
oval:org.opensuse.security:def:50586	P	Security update for sudo (Important)	2020-12-01
oval:org.opensuse.security:def:45430	P	Security update for glibc (Important)	2020-12-01
oval:org.opensuse.security:def:49989	P	apache2-mod_apparmor on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73504	P	guile on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50996	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:45822	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:63978	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:52054	P	Security update for libssh (Important)	2020-12-01
oval:org.opensuse.security:def:45304	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:50607	P	Security update for libpng16 (Low)	2020-12-01
oval:org.opensuse.security:def:37194	P	libfreebl3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51427	P	Security update for ncurses (Moderate)	2020-12-01
oval:org.opensuse.security:def:50079	P	libvirglrenderer0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37749	P	cifs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63736	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:23793	P	Security update for bzip2 (Important)	2020-12-01
oval:org.opensuse.security:def:37442	P	glib2-lang on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64080	P	Security update for perl-DBI (Important)	2020-12-01
oval:org.opensuse.security:def:64234	P	cups-filters on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38459	P	python-imaging on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50741	P	Security update for autoyast2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50149	P	gnome-shell-calendar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50245	P	libraw-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51243	P	Security update for SDL2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:74174	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:50584	P	Security update for libqt5-qtbase (Important)	2020-12-01
oval:org.opensuse.security:def:49630	P	gnome-desktop-lang on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51787	P	Security update for build (Moderate)	2020-12-01
oval:org.opensuse.security:def:50494	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50318	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:68647	P	Security update for nasm (Moderate)	2020-12-01
oval:org.opensuse.security:def:50031	P	rsyslog-module-gssapi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53330	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:65403	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:49506	P	conky on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50133	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50605	P	Security update for taglib (Low)	2020-12-01
oval:org.opensuse.security:def:49999	P	dpdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49594	P	pulseaudio on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52055	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50608	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:45614	P	Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:50089	P	postgresql-contrib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66098	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:45956	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:7029	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53400	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:50742	P	Security update for libvpx (Moderate)	2020-12-01
oval:org.opensuse.security:def:37295	P	pam_ssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50159	P	libproxy1-config-gnome3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50255	P	xorg-x11-server-wayland on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51244	P	Security update for jasper (Moderate)	2020-12-01
oval:org.opensuse.security:def:37602	P	libvirglrenderer0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24268	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:50585	P	Security update for wicked (Important)	2020-12-01
oval:org.opensuse.security:def:6738	P	libplist++3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50976	P	Security update for libqt5-qtbase (Important)	2020-12-01
oval:org.opensuse.security:def:24128	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:51806	P	Security update for ldb (Moderate)	2020-12-01
oval:org.opensuse.security:def:50328	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:51407	P	Security update for subversion (Moderate)	2020-12-01
oval:org.opensuse.security:def:37661	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53331	P	Security update for bind (Moderate)	2020-12-01
oval:org.opensuse.security:def:66190	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:6784	P	libxslt-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49776	P	cargo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49155	P	libXvnc1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50269	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:37710	P	xlockmore on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37777	P	ecryptfs-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36963	P	libxerces-c-3_1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49604	P	vorbis-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64122	P	Security update for mailman (Important)	2020-12-01
oval:org.opensuse.security:def:52074	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:72879	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:50627	P	Security update for glib2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49350	P	update-alternatives on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63738	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50359	P	Security update for git (Moderate)	2020-12-01
oval:org.opensuse.security:def:50214	P	MozillaThunderbird on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37821	P	ibus-chewing on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36974	P	ntp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49751	P	pam-devel-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53401	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:50761	P	Security update for gnutls (Important)	2020-12-01
oval:org.opensuse.security:def:45738	P	Security update for SDL (Moderate)	2020-12-01
oval:org.opensuse.security:def:50429	P	Security update for ucode-intel (Important)	2020-12-01
oval:org.opensuse.security:def:50525	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:38501	P	tomcat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49280	P	nmap on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37058	P	DirectFB on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51263	P	Security update for gstreamer-plugins-base (Important)	2020-12-01
oval:org.opensuse.security:def:46163	P	Security update for libxslt (Moderate)	2020-12-01
oval:org.opensuse.security:def:24976	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:50604	P	Security update for axis (Moderate)	2020-12-01
oval:org.opensuse.security:def:50977	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:37352	P	wget on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50598	P	Security update for python3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:70182	P	ocaml on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36962	P	libxcb-dri2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51408	P	Security update for spamassassin (Moderate)	2020-12-01
oval:org.opensuse.security:def:46243	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:53350	P	Security update for salt (Moderate)	2020-12-01
oval:org.opensuse.security:def:24177	P	Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:49425	P	libXrandr2-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:46302	P	Security update for squid (Important)	2020-12-01
oval:org.opensuse.security:def:24944	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:45305	P	Security update for libcgroup (Moderate)	2020-12-01
oval:org.opensuse.security:def:6831	P	rhythmbox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49874	P	libnss_slurm2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63701	P	Security update for java-1_7_0-openjdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:109924	P	Security update for tomcat (Moderate)	2019-07-25
oval:org.opensuse.security:def:98744	P	Security update for tomcat (Moderate)	2019-07-18
oval:org.opensuse.security:def:104424	P	Security update for tomcat (Moderate)	2019-07-18
oval:org.opensuse.security:def:105434	P	Security update for tomcat (Moderate)	2019-07-18
oval:org.opensuse.security:def:90769	P	Security update for tomcat (Moderate)	2019-07-18
oval:org.opensuse.security:def:97734	P	Security update for tomcat (Moderate)	2019-07-18
oval:org.opensuse.security:def:91794	P	Security update for tomcat (Moderate)	2019-07-18
oval:org.opensuse.security:def:88714	P	Security update for tomcat (Moderate)	2019-07-17
oval:org.opensuse.security:def:126290	P	Security update for tomcat (Moderate)	2019-07-17
oval:com.ubuntu.bionic:def:20190199000	V	CVE-2019-0199 on Ubuntu 18.04 LTS (bionic) - medium.	2019-04-10
oval:com.ubuntu.bionic:def:201901990000000	V	CVE-2019-0199 on Ubuntu 18.04 LTS (bionic) - medium.	2019-04-10
oval:com.ubuntu.cosmic:def:20190199000	V	CVE-2019-0199 on Ubuntu 18.10 (cosmic) - medium.	2019-04-10
oval:com.ubuntu.xenial:def:201901990000000	V	CVE-2019-0199 on Ubuntu 16.04 LTS (xenial) - medium.	2019-04-10
oval:com.ubuntu.xenial:def:20190199000	V	CVE-2019-0199 on Ubuntu 16.04 LTS (xenial) - medium.	2019-04-10
oval:com.ubuntu.cosmic:def:201901990000000	V	CVE-2019-0199 on Ubuntu 18.10 (cosmic) - medium.	2019-04-10

BACK