Vulnerability CVE-2019-19126

Vulnerability Name:

CVE-2019-19126 (CCN-172003)

Assigned:

2019-11-19

Published:

2019-11-19

Updated:

2022-11-08

Summary:

On the x86-64 architecture, the GNU C Library (aka glibc) before 2.31 fails to ignore the LD_PREFER_MAP_32BIT_EXEC environment variable during program execution after a security transition, allowing local attackers to restrict the possible mapping addresses for loaded libraries and thus bypass ASLR for a setuid program.

CVSS v3 Severity:

3.3 Low (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N)
2.9 Low (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

4.0 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
3.5 Low (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

2.9 Low (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N)
2.6 Low (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): None

CVSS v2 Severity:

2.1 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): None

2.1 Low (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-665
CWE-20

Vulnerability Consequences:

Bypass Security

References:

Source: MITRE
Type: CNA
CVE-2019-19126

Source: XF
Type: UNKNOWN
gnu-glibc-cve201919126-sec-bypass(172003)

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20221017 [SECURITY] [DLA 3152-1] glibc security update

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2020-c32e4b271c

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2020-1a3bdfde17

Source: CCN
Type: Sourceware Bugzilla Bug 25204
(CVE-2019-19126) - LD_PREFER_MAP_32BIT_EXEC not ignored in setuid binaries (CVE-2019-19126)

Source: MISC
Type: Issue Tracking, Patch, Third Party Advisory
https://sourceware.org/bugzilla/show_bug.cgi?id=25204

Source: UBUNTU
Type: Third Party Advisory
USN-4416-1

Source: CCN
Type: GNU Web site
The GNU C Library (glibc)

Source: CCN
Type: IBM Security Bulletin 6408848 (QRadar SIEM)
IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6411016 (QRadar SIEM)
IBM QRadar SIEM is vulnerable to using components with known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6829149 (Watson Speech Services Cartridge for Cloud Pak for Data)
IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in GNU C Library (CVE-2019-19126)

Source: CCN
Type: IBM Security Bulletin 6982841 (Netcool Operations Insight)
Netcool Operations Insight v1.6.8 addresses multiple security vulnerabilities.

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2019-19126

Vulnerable Configuration:

Configuration 1:

cpe:/a:gnu:glibc:*:*:*:*:*:*:x64:* (Version < 2.31)

Configuration 2:

cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

Configuration 3:

cpe:/o:fedoraproject:fedora:30:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:31:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration RedHat 3:

cpe:/a:redhat:enterprise_linux:8::crb:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:8::baseos:*:*:*:*:*

Configuration RedHat 6:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 10:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration CCN 1:

cpe:/a:gnu:binutils:2.30:*:*:*:*:*:*:*

AND

cpe:/a:ibm:qradar_security_information_and_event_manager:7.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4:-:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.0:-:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.3.3:p5:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.1:patch1:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_security_information_and_event_manager:7.4.2:p1:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:201919126	V	CVE-2019-19126	2023-06-22
oval:org.opensuse.security:def:8010	P	glibc-devel-32bit-2.31-150300.46.1 on GA media (Moderate)	2023-06-20
oval:org.opensuse.security:def:7510	P	glibc-2.31-150300.46.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:663	P	Security update for tiff (Low)	2022-08-03
oval:org.opensuse.security:def:3763	P	Security update for apache2 (Important)	2022-07-06
oval:org.opensuse.security:def:3109	P	jakarta-commons-fileupload-1.1.1-122.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3057	P	dracut-044.2-15.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3034	P	colord-gtk-lang-0.1.26-6.3 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3085	P	gnome-shell-3.20.4-77.23.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3775	P	rpcbind-0.2.3-24.9.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3056	P	dpdk-18.11.2-1.59 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3412	P	yast2-core-3.3.1-1.7 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3123	P	lftp-4.7.4-3.6.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3006	P	ant-1.9.4-3.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3076	P	gdk-pixbuf-loader-rsvg-2.40.20-5.6.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3044	P	cups-filters-1.0.58-19.5.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3115	P	java-1_8_0-openjdk-1.8.0.222-27.35.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3125	P	libHX28-3.18-1.18 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3385	P	tpm2.0-tools-3.1.4-1.12 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3067	P	file-5.22-10.12.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3038	P	cpp48-4.8.5-31.20.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3070	P	freeradius-server-3.0.19-1.48 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3424	P	accountsservice-0.6.42-16.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:1393	P	Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP3) (Important) (in QA)	2022-06-27
oval:org.opensuse.security:def:95015	P	glibc-devel-32bit-2.31-150300.20.7 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2935	P	glibc-2.31-150300.20.7 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2996	P	libbrotli-devel-1.0.7-3.3.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94565	P	glibc-2.31-150300.20.7 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:68	P	glibc-2.31-7.30 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:1505	P	Security update for MozillaThunderbird (Important)	2022-04-13
oval:org.opensuse.security:def:100432	P	(Important)	2022-03-10
oval:org.opensuse.security:def:112305	P	glibc-2.34-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:997	P	Security update for kubevirt, virt-api-container, virt-controller-container, virt-handler-container, virt-launcher-container, virt-operator-container (Important)	2022-01-10
oval:org.opensuse.security:def:68374	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important)	2021-11-19
oval:org.opensuse.security:def:69755	P	Security update for samba (Important)	2021-11-16
oval:org.opensuse.security:def:1739	P	Security update for rubygem-activerecord-5_1 (Moderate)	2021-11-09
oval:org.opensuse.security:def:65675	P	Security update for binutils (Moderate)	2021-11-09
oval:org.opensuse.security:def:65312	P	Security update for libaom (Low)	2021-10-12
oval:org.opensuse.security:def:68274	P	Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP2) (Important)	2021-10-12
oval:org.opensuse.security:def:105828	P	glibc-2.34-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:2143	P	qemu-3.1.0-7.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:48023	P	gnome-settings-daemon-3.20.1-50.16.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48271	P	perl-YAML-LibYAML-0.38-10.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48257	P	pam_ssh-2.0-1.39 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48022	P	gnome-keyring-3.20.0-28.3.18 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48351	P	xscreensaver-5.22-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48256	P	pam_krb5-2.4.4-4.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48158	P	libnm-glib-vpn1-1.0.12-13.12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48037	P	guile-2.0.9-9.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:2346	P	libmpg123-0-32bit-1.25.10-1.38 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2345	P	libltdl7-32bit-2.4.6-1.406 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2373	P	apache2-event-2.4.43-3.17.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2281	P	rmt-server-2.6.8-1.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2325	P	apache2-mod_php7-7.4.6-3.17.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2406	P	libstaroffice-0_0-0-0.0.7-7.3.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2356	P	oath-toolkit-2.6.2-1.15 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2342	P	libgstreamer-1_0-0-32bit-1.16.2-1.53 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2386	P	graphviz-gnome-2.40.1-6.6.8 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2290	P	subversion-server-1.10.6-3.15.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2358	P	perl-rrdtool-1.7.0-4.34 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2361	P	python2-SQLAlchemy-1.2.14-6.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2417	P	perl-rrdtool-1.7.0-4.34 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2377	P	djvulibre-3.5.27-9.28 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2285	P	sca-patterns-sle12-1.0.2-1.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2351	P	libunwind-32bit-1.2.1-2.13 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2412	P	libxslt1-32bit-1.1.32-3.8.24 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2419	P	pidgin-plugin-otr-4.0.2-1.61 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62086	P	glibc-2.31-7.30 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1919	P	glibc-devel-32bit-2.31-7.20 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100843	P	glib2-devel-2.62.6-3.6.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72727	P	glibc-devel-32bit-2.31-7.20 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72012	P	opie-32bit-2.4-1.96 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100844	P	glibc-2.31-7.30 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63008	P	glibc-devel-32bit-2.31-7.20 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71827	P	glibc-2.31-7.30 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:101266	P	glibc-devel-32bit-2.31-7.20 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71896	P	libhogweed4-3.4.1-4.15.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:49447	P	Security update for php72 (Important)	2021-08-06
oval:org.opensuse.security:def:65585	P	Security update for go1.15 (Moderate)	2021-07-19
oval:org.opensuse.security:def:65222	P	Security update for libopenmpt (Moderate)	2021-06-09
oval:org.opensuse.security:def:48860	P	libndp0-1.6-2.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48798	P	libproxy1-networkmanager-32bit-0.4.13-16.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48392	P	ctags-5.8-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48483	P	libasan2-5.3.1+r233831-9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48937	P	libosip2-3.5.0-20.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48859	P	libmysqlclient_r18-10.0.30-28.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48943	P	libproxy1-networkmanager-32bit-0.4.13-16.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48717	P	finch-2.10.9-8.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48723	P	gnome-online-accounts-3.10.5-1.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48817	P	telepathy-gabble-0.18.3-5.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48575	P	logwatch-7.4.3-15.65 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48799	P	libqt4-sql-mysql-32bit-4.8.6-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48957	P	libzmq3-4.0.4-14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48878	P	libzmq3-4.0.4-14.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48585	P	openvswitch-2.5.1-24.15 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48809	P	libwebkit2gtk3-lang-2.12.5-1.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:68556	P	Security update for python-httplib2 (Moderate)	2021-05-31
oval:org.opensuse.security:def:49146	P	Security update for slurm_20_11 (Important)	2021-05-27
oval:org.opensuse.security:def:69650	P	Security update for djvulibre (Important)	2021-05-19
oval:org.opensuse.security:def:66718	P	Security update for curl (Moderate)	2021-04-01
oval:org.opensuse.security:def:49083	P	Security update for salt (Critical)	2021-02-26
oval:org.opensuse.security:def:68659	P	Security update for terraform (Moderate)	2021-02-01
oval:org.opensuse.security:def:66810	P	Security update for wavpack (Moderate)	2021-01-21
oval:org.opensuse.security:def:51857	P	Security update for xen (Important)	2020-12-07
oval:org.opensuse.security:def:2312	P	nodejs8-8.15.1-3.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:94130	P	glibc-devel-32bit-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72259	P	libXinerama1-32bit-1.1.3-1.22 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107509	P	glibc-devel-32bit-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62951	P	glibc-devel-32bit-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71493	P	glibc-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116656	P	glibc-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2300	P	apache2-mod_php7-7.2.5-2.9 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71614	P	libqpdf26-9.0.2-1.36 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72375	P	libXp6-32bit-1.0.3-1.24 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2316	P	apache-commons-fileupload-1.4-1.63 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49004	P	libIlmImf-Imf_2_1-21-32bit-2.1.0-6.13.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117067	P	glibc-devel-32bit-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:93719	P	glibc-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61752	P	glibc-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:1862	P	glibc-devel-32bit-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49021	P	libnewt0_52-0.52.16-1.83 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49050	P	python-devel-2.7.13-28.31.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72670	P	glibc-devel-32bit-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71727	P	supportutils-3.1.9-5.24.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107098	P	glibc-2.26-13.48.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2705	P	Security update for webkit2gtk3 (Important)	2020-12-02
oval:org.opensuse.security:def:2772	P	Security update for MozillaFirefox (Important)	2020-12-02
oval:org.opensuse.security:def:2725	P	Security update for MozillaFirefox (Important)	2020-12-02
oval:org.opensuse.security:def:2693	P	Security update for ghostscript (Important)	2020-12-02
oval:org.opensuse.security:def:2764	P	Security update for openexr (Low)	2020-12-02
oval:org.opensuse.security:def:2774	P	Security update for webkit2gtk3 (Important)	2020-12-02
oval:org.opensuse.security:def:70166	P	Security update for python (Important)	2020-12-02
oval:org.opensuse.security:def:2687	P	Security update for gnutls (Important)	2020-12-02
oval:org.opensuse.security:def:2719	P	Security update for ibus (Important)	2020-12-02
oval:org.opensuse.security:def:49290	P	Security update for python-setuptools (Important)	2020-12-02
oval:org.opensuse.security:def:2758	P	Security update for webkit2gtk3 (Moderate)	2020-12-02
oval:org.opensuse.security:def:2683	P	Security update for webkit2gtk3 (Important)	2020-12-02
oval:org.opensuse.security:def:2734	P	Security update for cups (Important)	2020-12-02
oval:org.opensuse.security:def:49179	P	libjavascriptcoregtk-4_0-18 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51379	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:49543	P	libcairo2-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50701	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:50580	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:50146	P	gimp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73501	P	glibc-devel-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49219	P	libpoppler-cpp0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49255	P	libvorbis-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49484	P	pulseaudio on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:68919	P	Security update for libxslt (Moderate)	2020-12-01
oval:org.opensuse.security:def:49838	P	jackson-databind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50446	P	Security update for python3 (Important)	2020-12-01
oval:org.opensuse.security:def:64940	P	Security update for Mesa (Moderate)	2020-12-01
oval:org.opensuse.security:def:50060	P	graphviz-tcl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49780	P	cups-ddk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49697	P	libsrtp2-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49934	P	389-ds on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49386	P	MozillaFirefox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50631	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:50870	P	Security update for wicked (Important)	2020-12-01
oval:org.opensuse.security:def:50048	P	apache2-mod_jk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49201	P	libnewt0_52 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49413	P	gtk2-data on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51440	P	Security update for python3 (Important)	2020-12-01
oval:org.opensuse.security:def:49604	P	vorbis-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49148	P	libXp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50814	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:72972	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:49570	P	libpcre2-posix2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49867	P	xorg-x11-server-sdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50103	P	sysstat-isag on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50190	P	icedtea-web on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50797	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:49207	P	libopenssl-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50415	P	Security update for libu2f-host, pam_u2f (Moderate)	2020-12-01
oval:org.opensuse.security:def:50526	P	Security update for libqt5-qtbase (Moderate)	2020-12-01
oval:org.opensuse.security:def:52208	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:49995	P	cyrus-sasl-sqlauxprop on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49104	P	glibc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49552	P	libimobiledevice-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49171	P	libgtk-vnc-2_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50030	P	rmt-server on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51795	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:66399	P	glibc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49200	P	libnetpbm11 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49952	P	libapr-util1-dbd-mysql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49382	P	docker-runc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51441	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:73383	P	gcab on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49928	P	python2-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50164	P	libstaroffice-0_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:70061	P	gvim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50541	P	Security update for unzip (Moderate)	2020-12-01
oval:org.opensuse.security:def:69022	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:49902	P	rmt-server-pubcloud on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50766	P	Security update for perl (Important)	2020-12-01
oval:org.opensuse.security:def:50760	P	Security update for rubygem-bundler (Moderate)	2020-12-01
oval:org.opensuse.security:def:65027	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:50350	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:49834	P	glibc-devel-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49795	P	openldap2-devel-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73090	P	glibc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49250	P	libunbound2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49777	P	checkbashisms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50091	P	python3-pywbem on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52146	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:49551	P	libical-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50303	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:49999	P	dpdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51502	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:49346	P	u-boot-rpiarm64 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49317	P	python3-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50280	P	Security update for java-10-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:50519	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:49351	P	vim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66307	P	Security update for openconnect (Moderate)	2020-12-01
oval:com.redhat.rhsa:def:20203861	P	RHSA-2020:3861: glibc security, bug fix, and enhancement update (Low)	2020-09-29
oval:com.redhat.rhsa:def:20201828	P	RHSA-2020:1828: glibc security, bug fix, and enhancement update (Low)	2020-04-28
oval:org.opensuse.security:def:104007	P	Security update for glibc (Moderate)	2020-01-30
oval:org.opensuse.security:def:90670	P	Security update for glibc (Moderate)	2020-01-30
oval:org.opensuse.security:def:97635	P	Security update for glibc (Moderate)	2020-01-30
oval:org.opensuse.security:def:104325	P	Security update for glibc (Moderate)	2020-01-30
oval:org.opensuse.security:def:91041	P	Security update for glibc (Moderate)	2020-01-30
oval:org.opensuse.security:def:75402	P	Security update for glibc (Moderate)	2020-01-30
oval:org.opensuse.security:def:98006	P	Security update for glibc (Moderate)	2020-01-30
oval:org.opensuse.security:def:104696	P	Security update for glibc (Moderate)	2020-01-30
oval:org.opensuse.security:def:90352	P	Security update for glibc (Moderate)	2020-01-30
oval:com.ubuntu.disco:def:2019191260000000	V	CVE-2019-19126 on Ubuntu 19.04 (disco) - medium.	2019-11-19
oval:com.ubuntu.bionic:def:2019191260000000	V	CVE-2019-19126 on Ubuntu 18.04 LTS (bionic) - medium.	2019-11-19
oval:com.ubuntu.xenial:def:2019191260000000	V	CVE-2019-19126 on Ubuntu 16.04 LTS (xenial) - medium.	2019-11-19

BACK