Vulnerability CVE-2019-18218

Vulnerability Name:

CVE-2019-18218 (CCN-169693)

Assigned:

2019-08-26

Published:

2019-08-26

Updated:

2022-11-09

Summary:

cdf_read_property_info in cdf.c in file through 5.37 does not restrict the number of CDF_VECTOR elements, which allows a heap-based buffer overflow (4-byte out-of-bounds write).

CVSS v3 Severity:

7.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
6.8 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

9.8 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H)
8.5 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

7.8 High (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
6.8 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-787
CWE-122

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2019-18218

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0677

Source: MISC
Type: Exploit, Issue Tracking, Third Party Advisory
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=16780

Source: XF
Type: UNKNOWN
file-cve201918218-bo(169693)

Source: CCN
Type: file GIT Repository
Limit the number of elements in a vector (found by oss-fuzz)

Source: MISC
Type: Patch, Third Party Advisory
https://github.com/file/file/commit/46a8443f76cec4b41ec736eca396984c74664f84

Source: MLIST
Type: Third Party Advisory
[debian-lts-announce] 20191023 [SECURITY] [DLA 1969-1] file security update

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20210715 [SECURITY] [DLA 2708-1] php7.0 security update

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2019-97dcb2762a

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2019-18036b898e

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2019-554c3c691f

Source: GENTOO
Type: Third Party Advisory
GLSA-202003-24

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20200115-0001/

Source: UBUNTU
Type: Third Party Advisory
USN-4172-1

Source: UBUNTU
Type: Third Party Advisory
USN-4172-2

Source: DEBIAN
Type: Third Party Advisory
DSA-4550

Source: CCN
Type: IBM Security Bulletin 6214488 (Vyatta 5600)
Vyatta 5600 vRouter Software Patches - Release 1801-ze

Source: CCN
Type: IBM Security Bulletin 6551876 (Cloud Pak for Security)
Cloud Pak for Security uses packages that are vulnerable to multiple CVEs

Source: CCN
Type: IBM Security Bulletin 6854981 (Cloud Pak for Security)
IBM Cloud Pak for Security includes components with multiple known vulnerabilities

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2019-18218

Source: CCN
Type: WhiteSource Vulnerability Database
WS-2019-0557

Vulnerable Configuration:

Configuration 1:

cpe:/a:file_project:file:*:*:*:*:*:*:*:* (Version <= 5.37)

Configuration 2:

cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:opensuse:leap:15.1:*:*:*:*:*:*:*

Configuration 4:

cpe:/a:netapp:active_iq_unified_manager:*:*:*:*:*:linux:*:* (Version >= 7.3

Configuration 5:

cpe:/o:fedoraproject:fedora:29:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:30:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:31:*:*:*:*:*:*:*

Configuration 6:

cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:19.04:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:esm:*:*:*

OR cpe:/o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

OR cpe:/o:canonical:ubuntu_linux:12.04:*:*:*:-:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::crb:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:8::baseos:*:*:*:*:*

Configuration CCN 1:

cpe:/a:file_project:file:5.37:*:*:*:*:*:*:*

AND

cpe:/h:ibm:vyatta_5600:*:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_security:1.7.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_security:1.10.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_security:1.10.6.0:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201918218	V	CVE-2019-18218	2023-06-22
oval:org.opensuse.security:def:7494	P	file-5.32-7.14.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:51951	P	Security update for containerized-data-importer (Important)	2022-11-14
oval:org.opensuse.security:def:650	P	Security update for apache2-mod_wsgi (Moderate) (in QA)	2022-10-04
oval:org.opensuse.security:def:4675	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP5) (Important)	2022-08-11
oval:org.opensuse.security:def:3659	P	Security update for python-numpy (Moderate)	2022-08-03
oval:org.opensuse.security:def:3647	P	Security update for python-M2Crypto (Important)	2022-07-22
oval:org.opensuse.security:def:3821	P	xalan-j2-2.7.0-264.133 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3007	P	apache-commons-beanutils-1.9.2-3.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3815	P	vino-3.20.2-5.8 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3832	P	xscreensaver-5.22-7.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3048	P	cyrus-sasl-2.1.26-8.7.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:2999	P	ImageMagick-config-6-SUSE-6.8.8.1-71.126.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3038	P	cpp48-4.8.5-31.20.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3009	P	apache-commons-httpclient-3.1-4.364 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:2922	P	freetype2-devel-2.10.1-4.8.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2960	P	kernel-64kb-5.14.21-150400.22.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2918	P	fetchmail-6.4.22-20.26.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2928	P	gdk-pixbuf-devel-2.42.6-150400.3.8 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2969	P	libHX-devel-3.22-1.26 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2940	P	graphviz-2.48.0-150400.1.165 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2993	P	libaom3-3.2.0-150400.1.8 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2919	P	file-5.32-7.14.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2954	P	iscsiuio-0.7.8.6-150400.37.6 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94549	P	file-5.32-7.14.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:54	P	file-5.32-7.11.2 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:1665	P	Security update for pgadmin4 (Important)	2022-05-04
oval:org.opensuse.security:def:983	P	Security update for perl-DBD-SQLite (Moderate)	2022-03-28
oval:org.opensuse.security:def:4691	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP5) (Important)	2022-03-01
oval:org.opensuse.security:def:100419	P	(Important)	2022-02-18
oval:org.opensuse.security:def:112224	P	file-5.40-1.14 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:51707	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:64629	P	Security update for wireshark (Moderate)	2021-12-06
oval:org.opensuse.security:def:68300	P	Security update for the Linux Kernel (Live Patch 13 for SLE 15 SP2) (Important)	2021-11-17
oval:org.opensuse.security:def:68537	P	Security update for java-11-openjdk (Important)	2021-11-16
oval:org.opensuse.security:def:64799	P	Security update for samba (Important)	2021-11-15
oval:com.redhat.rhsa:def:20214374	P	RHSA-2021:4374: file security update (Moderate)	2021-11-09
oval:org.opensuse.security:def:69742	P	Security update for containerd, docker, runc (Important)	2021-10-25
oval:org.opensuse.security:def:49454	P	Security update for python3 (Moderate)	2021-10-20
oval:org.opensuse.security:def:74741	P	Security update for ncurses (Moderate)	2021-10-20
oval:org.opensuse.security:def:51673	P	Security update for apache2 (Important)	2021-10-06
oval:org.opensuse.security:def:105754	P	file-5.40-1.14 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:49188	P	Security update for compat-openssl098 (Low)	2021-09-13
oval:org.opensuse.security:def:33710	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:85728	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:29418	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:59791	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:5106	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:55946	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:88184	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:31678	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:83450	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:23665	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:127161	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:58003	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:51653	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:33968	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:86142	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:30123	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:60352	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:56066	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:88500	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:32180	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:84206	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:23963	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:58818	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:34529	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:86644	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:30243	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:82625	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:125596	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:57087	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:89188	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:32995	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:84664	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:26119	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:59533	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:55241	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:87459	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:31264	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:83330	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:126764	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:57501	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:89446	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:48183	P	libqpdf18-7.1.1-3.3.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48197	P	libspice-server1-0.12.8-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48182	P	libpython3_6m1_0-3.6.8-2.13 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48318	P	sysstat-12.0.2-10.24.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:2398	P	liblcms2-2-32bit-2.9-3.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2342	P	libgstreamer-1_0-0-32bit-1.16.2-1.53 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2387	P	hdf5-gnu-hpc-1.10.7-2.25 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2354	P	libxslt1-32bit-1.1.32-3.8.24 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2393	P	libexif12-32bit-0.6.22-5.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2400	P	libmwaw-0_3-3-0.3.17-4.9.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2327	P	nodejs12-12.21.0-4.13.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2358	P	perl-rrdtool-1.7.0-4.34 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2323	P	apache-commons-beanutils-1.9.4-1.68 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63375	P	sca-patterns-sle15-1.0.1-12.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2332	P	ffmpeg-3.4.2-9.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2367	P	rsvg-view-2.42.8-3.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:72749	P	pam-devel-32bit-1.3.0-6.29.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71877	P	libXxf86dga-devel-1.1.4-1.24 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71813	P	file-5.32-7.11.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71993	P	libykcs11-1-1.6.2-4.30 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62072	P	file-5.32-7.11.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100830	P	file-5.32-7.11.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:65293	P	Security update for MozillaFirefox (Important)	2021-07-19
oval:org.opensuse.security:def:51603	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:68200	P	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP2) (Important)	2021-06-18
oval:org.opensuse.security:def:62879	P	systemtap-3.2-5.64 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48511	P	libjbig2-2.0-12.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62872	P	perl-Net-Libproxy-0.4.15-2.42 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48643	P	vsftpd-3.0.2-31.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48735	P	libid3tag0-0.15.1b-182.58 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48841	P	gstreamer-0_10-plugins-good-0.10.31-16.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62876	P	perl-doc-5.26.1-5.41 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48883	P	raptor-2.0.10-3.67 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48859	P	libmysqlclient_r18-10.0.30-28.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48840	P	gstreamer-0_10-plugins-base-0.10.36-17.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:64687	P	Security update for dtc (Low)	2021-05-13
oval:org.opensuse.security:def:69637	P	Security update for stunnel (Important)	2021-05-03
oval:org.opensuse.security:def:68640	P	Security update for python-aiohttp (Important)	2021-04-26
oval:org.opensuse.security:def:65559	P	Security update for the Linux Kernel (Important)	2021-04-16
oval:org.opensuse.security:def:52030	P	Security update for nghttp2 (Important)	2021-03-24
oval:org.opensuse.security:def:68803	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:64527	P	Security update for permissions (Moderate)	2021-01-22
oval:org.opensuse.security:def:51147	P	Security update for openssh (Moderate)	2021-01-05
oval:org.opensuse.security:def:64283	P	Security update for flac (Moderate)	2020-12-24
oval:org.opensuse.security:def:65203	P	Security update for PackageKit (Low)	2020-12-22
oval:org.opensuse.security:def:51483	P	Security update for MozillaFirefox (Critical)	2020-12-21
oval:org.opensuse.security:def:3901	P	giflib-devel-5.0.5-12.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4002	P	liblcms-devel-1.19-17.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:48985	P	freerdp-2.0.0~git.1463131968.4e66df7-12.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71480	P	file-5.32-7.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63578	P	gnome-shell-calendar-3.26.2+20180130.0d9c74212-4.16.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4037	P	libproxy-devel-0.4.13-16.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71653	P	libxml2-2-2.9.7-3.19.8 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4030	P	libpcscspy0-1.8.10-7.6.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3913	P	gstreamer-plugins-bad-devel-1.8.3-17.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:93706	P	file-5.32-7.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116643	P	file-5.32-7.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62904	P	kernel-docs-4.12.14-195.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72143	P	libSDL2-2_0-0-2.0.8-1.34 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3929	P	libHX-devel-3.18-1.18 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4025	P	libotr-devel-4.0.0-9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2303	P	nodejs8-8.11.1-1.19 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61739	P	file-5.32-7.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63082	P	libcgroup-devel-0.41.rc1-1.10.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49037	P	libstaroffice-0_0-0-0.0.6-10.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72633	P	pam-devel-32bit-1.3.0-6.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72259	P	libXinerama1-32bit-1.1.3-1.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3870	P	crash-devel-7.2.1-6.42 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3985	P	libgssglue-devel-0.4-3.76 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71540	P	libXt-devel-1.1.5-2.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107085	P	file-5.32-7.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4033	P	libpng16-compat-devel-1.6.8-14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72959	P	Security update for MozillaThunderbird (Important)	2020-12-01
oval:org.opensuse.security:def:50754	P	Security update for libmspack (Low)	2020-12-01
oval:org.opensuse.security:def:49097	P	gc-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49585	P	libxcb-render0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50650	P	Security update for wavpack (Low)	2020-12-01
oval:org.opensuse.security:def:64866	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:69396	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:50030	P	rmt-server on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49976	P	salt-api on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50333	P	Security update for libarchive (Moderate)	2020-12-01
oval:org.opensuse.security:def:50879	P	Security update for ipmitool (Important)	2020-12-01
oval:org.opensuse.security:def:51518	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:49435	P	libexiv2-26 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64419	P	mutt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49339	P	syslog-service on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66294	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:51421	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:52092	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:49181	P	libjpeg62 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51782	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:73077	P	file on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49819	P	bouncycastle on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:69293	P	Security update for the Linux Kernel (Live Patch 15 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:49581	P	libtiff5-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50187	P	gnome-photos on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50353	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:50983	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50585	P	Security update for wicked (Important)	2020-12-01
oval:org.opensuse.security:def:63725	P	Security update for elfutils (Low)	2020-12-01
oval:org.opensuse.security:def:64420	P	opensc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49091	P	file on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50332	P	Security update for lcms2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49410	P	gnome-shell on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50072	P	libmariadb-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49308	P	python3-Jinja2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53122	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:49332	P	socat on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49909	P	python-azure-agent on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49786	P	jython on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50425	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:50485	P	Security update for zziplib (Moderate)	2020-12-01
oval:org.opensuse.security:def:65469	P	Security update for libopenmpt (Important)	2020-12-01
oval:org.opensuse.security:def:63954	P	Security update for adns (Important)	2020-12-01
oval:org.opensuse.security:def:66049	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:50740	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:50145	P	gegl-0_3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50681	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50041	P	vsftpd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53058	P	Security update for librsvg (Moderate)	2020-12-01
oval:org.opensuse.security:def:68906	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:49428	P	libass-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49243	P	libtasn1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64953	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:49436	P	libgme-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49932	P	clamsap on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50515	P	Security update for permissions (Moderate)	2020-12-01
oval:org.opensuse.security:def:50716	P	Security update for postgresql (Moderate)	2020-12-01
oval:org.opensuse.security:def:51417	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:74874	P	Security update for file (Moderate)	2020-12-01
oval:org.opensuse.security:def:65959	P	Security update for the Linux Kernel (Live Patch 7 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:50686	P	Security update for lz4 (Moderate)	2020-12-01
oval:org.opensuse.security:def:66386	P	file on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:110536	P	Security update for file (Moderate)	2020-05-22
oval:org.opensuse.security:def:91638	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:104306	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:90279	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:97616	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:104580	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:99858	P	(Moderate)	2020-05-18
oval:org.opensuse.security:def:90651	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:97890	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:105293	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:100195	P	(Moderate)	2020-05-18
oval:org.opensuse.security:def:75286	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:90925	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:103934	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:98603	P	Security update for file (Moderate)	2020-05-18
oval:org.opensuse.security:def:76476	P	Security update for file (Moderate)	2020-05-18
oval:com.ubuntu.disco:def:2019182180000000	V	CVE-2019-18218 on Ubuntu 19.04 (disco) - medium.	2019-10-21
oval:com.ubuntu.bionic:def:2019182180000000	V	CVE-2019-18218 on Ubuntu 18.04 LTS (bionic) - medium.	2019-10-21
oval:com.ubuntu.xenial:def:2019182180000000	V	CVE-2019-18218 on Ubuntu 16.04 LTS (xenial) - medium.	2019-10-21

BACK