Vulnerability CVE-2019-3870

Vulnerability Name:

CVE-2019-3870 (CCN-159189)

Assigned:

2019-04-08

Published:

2019-04-08

Updated:

2022-04-19

Summary:

A vulnerability was found in Samba from version (including) 4.9 to versions before 4.9.6 and 4.10.2. During the creation of a new Samba AD DC, files are created in a private subdirectory of the install location. This directory is typically mode 0700, that is owner (root) only access. However in some upgraded installations it will have other permissions, such as 0755, because this was the default before Samba 4.8. Within this directory, files are created with mode 0666, which is world-writable, including a sample krb5.conf, and the list of DNS names and servicePrincipalName values to update.

CVSS v3 Severity:

6.1 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H)
5.3 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): High

6.1 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H)
5.3 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): Low User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): High

CVSS v2 Severity:

3.6 Low (CVSS v2 Vector: AV:L/AC:L/Au:N/C:N/I:P/A:P)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Partial

5.2 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:N/I:P/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): Complete

Vulnerability Type:

CWE-276

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2019-3870

Source: CONFIRM
Type: Issue Tracking, Third Party Advisory
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-3870

Source: MISC
Type: Exploit, Issue Tracking, Patch, Vendor Advisory
https://bugzilla.samba.org/show_bug.cgi?id=13834

Source: XF
Type: UNKNOWN
samba-cve20193870-unauth-access(159189)

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2019-db21b5f1d2

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2019-cacf88eabf

Source: CONFIRM
Type: Third Party Advisory
https://support.f5.com/csp/article/K20804356

Source: CCN
Type: Samba Web site
World writable files in Samba AD DC private/ dir

Source: MISC
Type: Mitigation, Patch, Vendor Advisory
https://www.samba.org/samba/security/CVE-2019-3870.html

Source: CONFIRM
Type: Third Party Advisory
https://www.synology.com/security/advisory/Synology_SA_19_15

Vulnerable Configuration:

Configuration 1:

cpe:/a:samba:samba:*:*:*:*:*:*:*:* (Version >= 4.10.0 and < 4.10.2)

OR cpe:/a:samba:samba:*:*:*:*:*:*:*:* (Version >= 4.9.0 and < 4.9.6)

Configuration 2:

cpe:/o:fedoraproject:fedora:30:*:*:*:*:*:*:*

OR cpe:/o:fedoraproject:fedora:29:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:synology:directory_server:-:*:*:*:*:*:*:*

OR cpe:/a:synology:diskstation_manager:5.2:*:*:*:*:*:*:*

OR cpe:/a:synology:diskstation_manager:6.1:*:*:*:*:*:*:*

OR cpe:/a:synology:diskstation_manager:6.2:*:*:*:*:*:*:*

OR cpe:/a:synology:router_manager:1.2:*:*:*:*:*:*:*

Configuration 4:

cpe:/o:synology:skynas_firmware:-:*:*:*:*:*:*:*

AND

cpe:/h:synology:skynas:-:*:*:*:*:*:*:*

Configuration 5:

cpe:/o:synology:vs960hd_firmware:*:*:*:*:*:*:*:* (Version < 2.3.6-1720)

AND

cpe:/h:synology:vs960hd:-:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:samba:samba:4.9.2:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20193870	V	CVE-2019-3870	2023-06-22
oval:org.opensuse.security:def:7661	P	libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7662	P	libsamba-policy-devel-4.17.7+git.330.4057cd7a27a-150500.1.2 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7447	P	bcel-5.2-150200.11.3.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7469	P	cpp7-7.5.0+r278197-4.30.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:723	P	Security update for postgresql14 (Important)	2022-09-01
oval:org.opensuse.security:def:422	P	Security update for trivy (Moderate)	2022-08-06
oval:org.opensuse.security:def:6343	P	Security update for freerdp (Critical)	2022-07-11
oval:org.opensuse.security:def:3071	P	ft2demos-2.6.3-7.15.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3164	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3072	P	fuse-2.9.3-6.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3584	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94702	P	libsamba-policy-devel-4.15.5+git.328.f1f29505d84-150400.1.44 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94701	P	libsamba-errors-devel-4.13.13+git.539.fdbc44a8598-3.20.2 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:16	P	bind-devel-9.16.6-20.39 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:129	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:1058	P	Security update for MozillaFirefox (Important)	2022-04-07
oval:org.opensuse.security:def:951	P	Security update for ucode-intel (Important)	2022-02-25
oval:org.opensuse.security:def:112125	P	ctdb-4.14.6+git.182.2205d5224e3-1.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:69815	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:10431	P	Security update for xorg-x11-server (Important)	2021-12-21
oval:org.opensuse.security:def:10385	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:7294	P	Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP3) (Important)	2021-12-14
oval:org.opensuse.security:def:93779	P	(Important)	2021-12-06
oval:org.opensuse.security:def:6488	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:10363	P	Security update for tomcat (Important)	2021-11-16
oval:org.opensuse.security:def:105662	P	Security update for MozillaFirefox (Important)	2021-11-10
oval:org.opensuse.security:def:10355	P	Security update for busybox (Important)	2021-10-27
oval:org.opensuse.security:def:10663	P	Security update for ffmpeg (Moderate)	2021-10-26
oval:org.opensuse.security:def:64593	P	Security update for strongswan (Important)	2021-10-19
oval:org.opensuse.security:def:7272	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP3) (Important)	2021-10-12
oval:org.opensuse.security:def:67569	P	Security update for the Linux Kernel (Important)	2021-09-23
oval:org.opensuse.security:def:103321	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:96631	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71380	P	python3-pyOpenSSL-17.5.0-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61511	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:89666	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71267	P	libjavascriptcoregtk-4_0-18-2.24.1-3.24.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71252	P	libdcerpc-binding0-32bit-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:8647	P	Security update for xerces-c (Important)	2021-09-02
oval:org.opensuse.security:def:10654	P	Security update for MozillaThunderbird (Important)	2021-08-30
oval:org.opensuse.security:def:69710	P	Security update for fetchmail (Moderate)	2021-08-20
oval:org.opensuse.security:def:14983	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47942	P	aaa_base-13.2+git20140911.61c1681-38.13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47858	P	powerpc-utils-1.3.5-3.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47644	P	hyper-v-7-7.5 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47496	P	rtkit-0.11_git201205151338-8.14 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47404	P	libraptor2-0-2.0.10-3.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47272	P	gpg2-2.0.24-8.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47079	P	libsqlite3-0-3.8.10.2-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46958	P	gpgme-1.5.1-1.11 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46944	P	gd-2.1.0-12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48173	P	libpng15-15-1.5.22-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48025	P	gnome-shell-search-provider-nautilus-3.20.3-23.12.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46943	P	fuse-2.9.3-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47933	P	yubikey-manager-0.6.0-1.27 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47801	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47608	P	file-5.22-10.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47487	P	qemu-2.9.0-5.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47473	P	powerpc-utils-1.3.3-5.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48171	P	libplist3-1.12-20.3.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48100	P	libcares2-1.9.1-9.4.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48103	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48069	P	libSDL-1_2-0-1.2.15-15.11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47472	P	policycoreutils-2.5-9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48004	P	expat-2.1.0-21.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:71888	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100905	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62147	P	libdcerpc-binding0-32bit-4.13.4+git.187.5ad4708741a-1.34 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:8628	P	Security update for nodejs8 (Important)	2021-08-05
oval:org.opensuse.security:def:68027	P	Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP1) (Important)	2021-07-27
oval:org.opensuse.security:def:8811	P	Security update for MozillaFirefox (Important)	2021-07-27
oval:org.opensuse.security:def:6451	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:67539	P	Security update for the Linux Kernel (Important)	2021-07-14
oval:org.opensuse.security:def:8798	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:8613	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:1472	P	Security update for apache2 (Important)	2021-06-22
oval:org.opensuse.security:def:8789	P	Security update for salt (Critical)	2021-06-21
oval:org.opensuse.security:def:6470	P	Security update for the Linux Kernel (Important)	2021-06-15
oval:org.opensuse.security:def:8780	P	Security update for spice-gtk (Moderate)	2021-06-10
oval:org.opensuse.security:def:48700	P	libzmq3-4.0.4-2.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48863	P	libpcrecpp0-32bit-8.39-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48629	P	supportutils-3.0-85.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48598	P	perl-Tk-804.031-3.76 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48533	P	libpcsclite1-1.8.10-3.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11314	P	gnome-shell-3.10.4-22.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48809	P	libwebkit2gtk3-lang-2.12.5-1.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48471	P	libXrandr2-1.5.0-6.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48387	P	coreutils-8.25-12.8 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11336	P	libXcursor1-1.1.14-3.60 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70892	P	dnsmasq-2.78-1.38 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:70909	P	ghostscript-9.23-1.16 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:71022	P	libsha1detectcoll-devel-1.0.3-2.18 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:10676	P	Security update for gstreamer, gstreamer-plugins-bad, gstreamer-plugins-base, gstreamer-plugins-good, gstreamer-plugins-ugly (Important)	2021-06-01
oval:org.opensuse.security:def:8747	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:64680	P	Security update for ceph (Important)	2021-05-04
oval:org.opensuse.security:def:70779	P	Security update for MozillaThunderbird (Important)	2021-04-29
oval:org.opensuse.security:def:8566	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:9471	P	Security update for nghttp2 (Important)	2021-03-24
oval:org.opensuse.security:def:8722	P	Security update for ruby2.5 (Important)	2021-03-24
oval:org.opensuse.security:def:6321	P	Security update for evolution-data-server (Moderate)	2021-03-19
oval:org.opensuse.security:def:9449	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:6313	P	Security update for python (Important)	2021-02-11
oval:org.opensuse.security:def:6720	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15) (Important)	2021-02-10
oval:org.opensuse.security:def:64322	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:6645	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15) (Important)	2020-12-07
oval:org.opensuse.security:def:116716	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71553	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107158	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:100492	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61812	P	libdcerpc-binding0-32bit-4.11.5+git.161.74bc5e6ec8e-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16850	P	libndr-devel-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12802	P	ctdb-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103191	P	ctdb-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:96501	P	ctdb-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:12977	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4014	P	libndr-devel-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:89536	P	ctdb-4.9.5+git.149.9593f64a5c3-1.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:37130	P	gnome-settings-daemon on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49859	P	perl-PerlMagick on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37073	P	autofs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6778	P	libvte9 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36972	P	mozilla-nspr-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6745	P	libpulse-mainloop-glib0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36836	P	gd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36752	P	squashfs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66367	P	cpp7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36741	P	python-pyOpenSSL on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6626	P	gstreamer-0_10-plugins-base on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38237	P	lcms2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6611	P	ghostscript on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73032	P	apache2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6564	P	busybox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6518	P	telepathy-gabble on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6496	P	python-requests on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64105	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:36740	P	python-libxml2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67669	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49164	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6634	P	gzip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73150	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6621	P	gpgme on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67439	P	Security update for python-setuptools (Important)	2020-12-01
oval:org.opensuse.security:def:6612	P	gimp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37599	P	libupsclient1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8520	P	shim on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37555	P	libmusicbrainz4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8498	P	powerpc-utils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37527	P	libgssglue1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64235	P	curl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37488	P	libXcursor1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10612	P	xorg-x11-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49913	P	libsamba-policy0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10587	P	polkit-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6809	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10512	P	libjpeg62-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6796	P	mutt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10493	P	libexif-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6787	P	libzip2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49110	P	graphviz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:10478	P	libXv-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6603	P	freerdp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:66459	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6570	P	coreutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38279	P	libdcerpc-binding0-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6545	P	zoo on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:8490	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6436	P	libspice-server1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37439	P	ghostscript on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64192	P	ctdb on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:6389	P	libjavascriptcoregtk-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37380	P	apache2-mod_apparmor on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37220	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:67927	P	libpcre2-posix2 on GA media (Moderate)	2020-12-01
oval:com.ubuntu.cosmic:def:20193870000	V	CVE-2019-3870 on Ubuntu 18.10 (cosmic) - medium.	2019-04-09
oval:com.ubuntu.cosmic:def:201938700000000	V	CVE-2019-3870 on Ubuntu 18.10 (cosmic) - medium.	2019-04-09
oval:com.ubuntu.bionic:def:20193870000	V	CVE-2019-3870 on Ubuntu 18.04 LTS (bionic) - medium.	2019-04-09
oval:com.ubuntu.bionic:def:201938700000000	V	CVE-2019-3870 on Ubuntu 18.04 LTS (bionic) - medium.	2019-04-09
oval:com.ubuntu.xenial:def:20193870000	V	CVE-2019-3870 on Ubuntu 16.04 LTS (xenial) - medium.	2019-04-09
oval:com.ubuntu.xenial:def:201938700000000	V	CVE-2019-3870 on Ubuntu 16.04 LTS (xenial) - medium.	2019-04-09
oval:com.ubuntu.trusty:def:20193870000	V	CVE-2019-3870 on Ubuntu 14.04 LTS (trusty) - medium.	2019-04-09

BACK