Vulnerability CVE-2019-5737

Vulnerability Name:

CVE-2019-5737 (CCN-158093)

Assigned:

2019-02-28

Published:

2019-02-28

Updated:

2020-10-16

Summary:

In Node.js including 6.x before 6.17.0, 8.x before 8.15.1, 10.x before 10.15.2, and 11.x before 11.10.1, an attacker can cause a Denial of Service (DoS) by establishing an HTTP or HTTPS connection in keep-alive mode and by sending headers very slowly. This keeps the connection and associated resources alive for a long period of time. Potential attacks are mitigated by the use of a load balancer or other proxy layer. This vulnerability is an extension of CVE-2018-12121, addressed in November and impacts all active Node.js release lines including 6.x before 6.17.0, 8.x before 8.15.1, 10.x before 10.15.2, and 11.x before 11.10.1.

CVSS v3 Severity:

7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.9 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H)
5.2 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): High Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.3 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
4.6 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.4 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): High Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Type:

CWE-770
CWE-400

Vulnerability Consequences:

Denial of Service

References:

Vulnerable Configuration:

Configuration 1:

cpe:/a:nodejs:node.js:*:*:*:*:lts:*:*:* (Version >= 6.0.0 and < 6.17.0)

OR cpe:/a:nodejs:node.js:*:*:*:*:lts:*:*:* (Version >= 8.0.0 and < 8.15.1)

OR cpe:/a:nodejs:node.js:*:*:*:*:lts:*:*:* (Version >= 10.0.0 and < 10.15.2)

OR cpe:/a:nodejs:node.js:*:*:*:*:lts:*:*:* (Version >= 11.0.0 and < 11.10.1)

Configuration 2:

cpe:/o:opensuse:leap:42.3:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration CCN 1:

cpe:/a:nodejs:node.js:6.0.0:*:*:*:*:*:*:*

OR cpe:/a:nodejs:node.js:8.0.0:*:*:*:*:*:*:*

OR cpe:/a:nodejs:node.js:10.0.0:*:*:*:*:*:*:*

OR cpe:/a:nodejs:node.js:11.0.0:*:*:*:*:*:*:*

AND

cpe:/a:ibm:api_connect:5.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:18.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_private:2.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:2018.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:18.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_private:3.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_private:3.1.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:event_streams:2018.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:18.0.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_private:3.1.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:5.0.8.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:19.0.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:2018.4.1.4:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:51990	P	Security update for podman (Important)	2023-01-27
oval:org.opensuse.security:def:51989	P	Security update for xen (Important)	2023-01-26
oval:org.opensuse.security:def:51956	P	Security update for the Linux Kernel (Important)	2022-11-18
oval:org.opensuse.security:def:51955	P	Security update for xen (Important)	2022-11-16
oval:org.opensuse.security:def:20195737	V	CVE-2019-5737	2022-09-02
oval:org.opensuse.security:def:94261	P	(Important)	2022-07-14
oval:org.opensuse.security:def:94259	P	(Important)	2022-07-12
oval:org.opensuse.security:def:1682	P	Security update for apache2 (Important) (in QA)	2022-06-14
oval:org.opensuse.security:def:1681	P	Security update for qemu (Important) (in QA)	2022-06-13
oval:org.opensuse.security:def:1095	P	Security update for wavpack (Moderate)	2022-03-28
oval:org.opensuse.security:def:1094	P	Security update for libqt5-qtbase (Important)	2022-03-15
oval:org.opensuse.security:def:4306	P	Security update for the Linux Kernel (Important)	2022-03-09
oval:org.opensuse.security:def:1691	P	Security update for mariadb (Important)	2022-03-04
oval:org.opensuse.security:def:1689	P	Security update for python-Twisted (Important)	2022-02-18
oval:org.opensuse.security:def:59874	P	Security update for MozillaFirefox (Important) (in QA)	2022-01-14
oval:org.opensuse.security:def:32286	P	Security update for MozillaFirefox (Important) (in QA)	2022-01-14
oval:org.opensuse.security:def:4305	P	Security update for the Linux Kernel (Important)	2022-01-13
oval:org.opensuse.security:def:57541	P	Security update for MozillaFirefox (Important)	2021-12-12
oval:org.opensuse.security:def:33753	P	Security update for MozillaFirefox (Important)	2021-12-12
oval:org.opensuse.security:def:33060	P	Security update for MozillaFirefox (Important)	2021-12-12
oval:org.opensuse.security:def:4172	P	Security update for MozillaFirefox (Important)	2021-12-10
oval:org.opensuse.security:def:4171	P	Security update for wireshark (Moderate)	2021-12-06
oval:org.opensuse.security:def:30159	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:33742	P	Security update for postgresql10 (Important)	2021-11-22
oval:org.opensuse.security:def:51692	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-11-19
oval:org.opensuse.security:def:51693	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-11-19
oval:org.opensuse.security:def:38744	P	Security update for bind (Important)	2021-11-09
oval:org.opensuse.security:def:33037	P	Security update for tomcat (Important)	2021-11-03
oval:org.opensuse.security:def:35273	P	Security update for util-linux (Moderate)	2021-10-20
oval:org.opensuse.security:def:58026	P	Security update for the Linux Kernel (Live Patch 40 for SLE 12 SP3) (Important)	2021-10-18
oval:org.opensuse.security:def:29429	P	Security update for libqt5-qtbase (Important)	2021-09-30
oval:org.opensuse.security:def:57096	P	Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important)	2021-09-23
oval:org.opensuse.security:def:4281	P	Security update for the Linux Kernel (Important)	2021-09-23
oval:org.opensuse.security:def:66930	P	Security update for ffmpeg (Important)	2021-09-23
oval:org.opensuse.security:def:66928	P	Security update for grafana-piechart-panel (Moderate)	2021-09-21
oval:org.opensuse.security:def:71348	P	mozilla-nspr-32bit-4.20-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71349	P	mutt-1.10.1-3.3.4 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:4280	P	Security update for crmsh (Important)	2021-09-16
oval:org.opensuse.security:def:64762	P	Security update for apache2 (Important)	2021-09-03
oval:org.opensuse.security:def:64761	P	Security update for java-11-openjdk (Important)	2021-09-03
oval:org.opensuse.security:def:29418	P	Security update for file (Important)	2021-09-02
oval:org.opensuse.security:def:29417	P	Security update for libesmtp (Important)	2021-09-02
oval:org.opensuse.security:def:30120	P	Security update for bind (Moderate)	2021-08-30
oval:org.opensuse.security:def:70284	P	Security update for mariadb (Moderate)	2021-08-25
oval:org.opensuse.security:def:34514	P	Security update for qemu (Moderate)	2021-08-23
oval:org.opensuse.security:def:14083	P	apache2-2.4.23-28.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48077	P	libXfont1-1.5.1-11.3.12 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13987	P	mutt-1.6.0-54.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13994	P	opie-2.4-724.56 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14263	P	libnghttp2-14-1.7.1-1.84 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14355	P	ppp-2.4.7-3.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47944	P	alsa-1.0.27.2-15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14332	P	openssh-7.2p2-69.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47615	P	gdk-pixbuf-lang-2.34.0-19.17.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47631	P	grub2-2.02-11.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14286	P	libsmi-0.4.8-18.55 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14169	P	ibus-chewing-1.4.14-4.11 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14341	P	patch-2.7.5-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14133	P	fetchmail-6.3.26-12.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15015	P	libjpeg62-32bit-62.2.0-31.14.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14149	P	gnome-settings-daemon-3.20.1-49.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48317	P	syslog-service-2.0-778.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14992	P	libfreetype6-2.6.3-7.15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14084	P	apache2-mod_apparmor-2.8.2-49.21 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13995	P	p7zip-9.20.1-6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48168	P	libpcap1-1.8.1-10.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14356	P	procmail-3.22-267.12 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14015	P	python-cupshelpers-1.5.7-7.5 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47945	P	ant-1.9.4-3.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47616	P	gdk-pixbuf-loader-rsvg-2.40.20-5.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14287	P	libsndfile1-1.0.25-35.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14170	P	ipsec-tools-0.8.0-18.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14342	P	pcsc-ccid-1.4.25-4.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13985	P	mipv6d-2.0.2.umip.0.4-19.63 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47751	P	libnm-glib-vpn1-1.0.12-13.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14261	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15016	P	libjson-c2-0.11-2.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14150	P	gnome-shell-3.20.4-76.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14330	P	opensc-0.13.0-1.107 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14993	P	libgc1-7.2d-5.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14085	P	apache2-mod_jk-1.2.40-5.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14131	P	evince-3.20.1-5.66 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48169	P	libpcre1-32bit-8.39-8.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14016	P	python-imaging-1.1.7-21.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14288	P	libsnmp30-32bit-5.7.3-4.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48076	P	libXfixes3-32bit-5.0.1-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14343	P	perl-32bit-5.18.2-11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13986	P	mozilla-nspr-32bit-4.12-15.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:13993	P	openvswitch-2.5.1-24.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47752	P	libopenjp2-7-2.1.0-4.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47617	P	gdm-3.10.0.1-54.6.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14262	P	libnetpbm11-10.66.3-7.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14354	P	ppc64-diag-2.7.3-1.17 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14151	P	gnutls-3.3.27-1.10 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14331	P	openslp-2.0.0-17.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14994	P	libgcab-1_0-0-0.6-1.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47630	P	groff-1.22.2-5.287 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14168	P	hyper-v-7-13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14132	P	expat-2.1.0-20.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14017	P	python-libxml2-2.9.4-27.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15014	P	libjpeg-turbo-1.5.3-31.14.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48316	P	sysconfig-0.84.0-13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:100974	P	libsndfile-devel-1.0.28-5.5.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100972	P	libsha1detectcoll-devel-1.0.3-2.18 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:31224	P	Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP3) (Important)	2021-07-21
oval:org.opensuse.security:def:4141	P	Security update for caribou (Important)	2021-07-20
oval:org.opensuse.security:def:4140	P	Security update for MozillaFirefox (Important)	2021-07-19
oval:org.opensuse.security:def:30222	P	Security update for MozillaFirefox (Important)	2021-07-16
oval:org.opensuse.security:def:68009	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP1) (Important)	2021-07-14
oval:org.opensuse.security:def:68008	P	Security update for the Linux Kernel (Live Patch 22 for SLE 15 SP1) (Important)	2021-07-14
oval:org.opensuse.security:def:4200	P	Security update for gupnp (Important)	2021-06-24
oval:org.opensuse.security:def:66838	P	Security update for wireshark (Important)	2021-06-22
oval:org.opensuse.security:def:4199	P	Security update for wireshark (Important)	2021-06-22
oval:org.opensuse.security:def:66836	P	Security update for gupnp (Important)	2021-06-18
oval:org.opensuse.security:def:32949	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:48676	P	gnome-shell-calendar-3.10.4-22.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48844	P	java-1_7_0-openjdk-plugin-1.6.2-2.8.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48614	P	res-signingkeys-3.0.18-26.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48772	P	gcc48-gij-32bit-4.8.5-30.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48677	P	java-1_7_0-openjdk-plugin-1.5.1-1.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:57934	P	Security update for MozillaFirefox (Important)	2021-06-08
oval:org.opensuse.security:def:48615	P	rpcbind-0.2.3-21.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48773	P	gd-32bit-2.1.0-12.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48530	P	libopenssl-devel-1.0.2j-55.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48741	P	libproxy1-networkmanager-32bit-0.4.11-11.6 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48531	P	libotr5-4.0.0-9.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48843	P	imobiledevice-tools-1.2.0-7.31 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48742	P	libqt4-sql-mysql-32bit-4.8.6-4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:33657	P	Security update for djvulibre (Important)	2021-05-31
oval:org.opensuse.security:def:31180	P	Security update for djvulibre (Important)	2021-05-31
oval:org.opensuse.security:def:73619	P	Security update for dtc (Low)	2021-05-13
oval:org.opensuse.security:def:34430	P	Security update for xen (Important)	2021-05-12
oval:org.opensuse.security:def:38743	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:38090	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:51883	P	Security update for bind (Important)	2021-05-04
oval:org.opensuse.security:def:51884	P	Security update for samba (Important)	2021-05-04
oval:org.opensuse.security:def:30071	P	Security update for cups (Important)	2021-04-30
oval:org.opensuse.security:def:33899	P	Security update for permissions (Important)	2021-04-29
oval:org.opensuse.security:def:34418	P	Security update for curl (Moderate)	2021-04-28
oval:org.opensuse.security:def:34419	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:31159	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-04-28
oval:org.opensuse.security:def:39535	P	Security update for tomcat6 (Important)	2021-04-21
oval:org.opensuse.security:def:30178	P	Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP2) (Important)	2021-04-12
oval:org.opensuse.security:def:32892	P	Security update for fwupdate (Important)	2021-04-08
oval:org.opensuse.security:def:33104	P	Security update for tar (Low)	2021-03-29
oval:org.opensuse.security:def:64674	P	Security update for python3 (Moderate)	2021-03-24
oval:org.opensuse.security:def:64675	P	Security update for zstd (Moderate)	2021-03-24
oval:org.opensuse.security:def:60481	P	Security update for python3 (Moderate)	2021-03-19
oval:org.opensuse.security:def:68108	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:32275	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:68109	P	Security update for the Linux Kernel (Live Patch 17 for SLE 15 SP1) (Important)	2021-03-17
oval:org.opensuse.security:def:58100	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2021-03-17
oval:org.opensuse.security:def:28955	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP2) (Important)	2021-03-17
oval:org.opensuse.security:def:32274	P	Security update for glib2 (Important)	2021-03-16
oval:org.opensuse.security:def:33781	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:34650	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:4183	P	Security update for gnome-autoar (Moderate)	2021-03-02
oval:org.opensuse.security:def:38089	P	Security update for bind (Important)	2021-02-18
oval:org.opensuse.security:def:30016	P	Security update for the Linux Kernel (Live Patch 37 for SLE 12 SP2) (Important)	2021-02-10
oval:org.opensuse.security:def:32998	P	Security update for python-urllib3 (Moderate)	2021-02-03
oval:org.opensuse.security:def:51150	P	Security update for openvswitch (Important)	2021-02-03
oval:org.opensuse.security:def:51149	P	Security update for MozillaFirefox (Important)	2021-01-29
oval:org.opensuse.security:def:73621	P	Security update for dnsmasq (Important)	2021-01-19
oval:org.opensuse.security:def:4184	P	Security update for MozillaFirefox (Important)	2021-01-12
oval:org.opensuse.security:def:70286	P	Security update for dovecot23 (Important)	2021-01-05
oval:org.opensuse.security:def:4958	P	Security update for fontforge (Moderate)	2020-12-04
oval:org.opensuse.security:def:57826	P	Security update for python-cryptography (Moderate)	2020-12-04
oval:org.opensuse.security:def:63400	P	nodejs10-10.15.2-1.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103744	P	nodejs8-8.15.1-3.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4078	P	libwsman-devel-2.4.11-21.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90088	P	nodejs10-10.15.2-1.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4098	P	ncurses-devel-5.9-64.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4957	P	Security update for gdm (Important)	2020-12-03
oval:org.opensuse.security:def:2312	P	nodejs8-8.15.1-3.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71462	P	cracklib-2.9.6-9.3 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35911	P	gstreamer-0_10-plugins-base-0.10.35-5.15.8 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63401	P	nodejs8-8.15.1-3.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107638	P	nodejs10-10.19.0-1.18.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117196	P	nodejs10-10.19.0-1.18.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:90089	P	nodejs8-8.15.1-3.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4099	P	net-snmp-devel-5.7.3-6.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2319	P	nodejs10-10.19.0-1.18.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4085	P	libzip-devel-0.11.1-13.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63408	P	nodejs10-10.19.0-1.18.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107640	P	nodejs8-8.17.0-8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117198	P	nodejs8-8.17.0-8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2321	P	nodejs8-8.17.0-8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:103743	P	nodejs10-10.15.2-1.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4077	P	libwpd-0_10-10-0.10.2-2.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4086	P	libzmq3-4.0.4-15.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:35952	P	libgnomesu-1.0.0-307.10.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63410	P	nodejs8-8.17.0-8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2311	P	nodejs10-10.15.2-1.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71461	P	cpp7-7.5.0+r278197-4.16.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4315	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4980	P	Security update for nodejs8 (Moderate)	2020-12-02
oval:org.opensuse.security:def:4316	P	Security update for the Linux Kernel (Live Patch 5 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4260	P	Security update for the Linux Kernel (Live Patch 6 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4312	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:4261	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:4319	P	Security update for the Linux Kernel (Live Patch 1 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4313	P	Security update for the Linux Kernel (Live Patch 0 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4979	P	Security update for nodejs10 (Moderate)	2020-12-02
oval:org.opensuse.security:def:59438	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:4320	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:38004	P	minicom on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:58219	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:50751	P	Security update for jasper (Low)	2020-12-01
oval:org.opensuse.security:def:32592	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28700	P	Security update for gnutls (Moderate)	2020-12-01
oval:org.opensuse.security:def:38636	P	libQt5Concurrent5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60780	P	Security update for spice (Moderate)	2020-12-01
oval:org.opensuse.security:def:38854	P	kernel-default-extra on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50076	P	libsaml-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50122	P	nodejs10 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50596	P	Security update for nmap (Moderate)	2020-12-01
oval:org.opensuse.security:def:33521	P	Security update for strongswan	2020-12-01
oval:org.opensuse.security:def:29720	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:38387	P	libunwind on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51797	P	Security update for freerdp (Important)	2020-12-01
oval:org.opensuse.security:def:38783	P	python-libxml2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:34909	P	Security update for dnsmasq (Moderate)	2020-12-01
oval:org.opensuse.security:def:30494	P	Security update for Mozilla Firefox	2020-12-01
oval:org.opensuse.security:def:35114	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:29729	P	Security update for Mozilla Firefox (Important)	2020-12-01
oval:org.opensuse.security:def:38475	P	rtkit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35229	P	Security update for libmspack (Moderate)	2020-12-01
oval:org.opensuse.security:def:73501	P	glibc-devel-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60938	P	Security update for nodejs6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:28474	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:38328	P	libmusicbrainz4 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53410	P	Security update for nodejs10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30408	P	Security update for xorg-x11-libX11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:51254	P	Security update for ffmpeg (Important)	2020-12-01
oval:org.opensuse.security:def:34056	P	Security update for libvorbis (Moderate)	2020-12-01
oval:org.opensuse.security:def:39494	P	Security update for nodejs6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:39534	P	Security update for nodejs10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34806	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:31015	P	Security update for java-1_7_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:34202	P	Security update for perl-Archive-Zip (Moderate)	2020-12-01
oval:org.opensuse.security:def:56695	P	Security update for libdb-4_8 (Moderate)	2020-12-01
oval:org.opensuse.security:def:59280	P	Security update for dovecot22 (Important)	2020-12-01
oval:org.opensuse.security:def:38225	P	jakarta-taglibs-standard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37992	P	libxslt-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38005	P	mipv6d on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:32736	P	libvirt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28906	P	Security update for flash-player (Important)	2020-12-01
oval:org.opensuse.security:def:60909	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:58169	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:50752	P	Security update for mariadb-connector-c (Important)	2020-12-01
oval:org.opensuse.security:def:29863	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:38637	P	libQt5WebKit5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29011	P	Security update for graphviz (Low)	2020-12-01
oval:org.opensuse.security:def:38855	P	lcms on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50078	P	libspice-server-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50123	P	nodejs8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:56696	P	Security update for drm (Moderate)	2020-12-01
oval:org.opensuse.security:def:30716	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:38784	P	python-pyOpenSSL on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:30409	P	Security update for xorg-x11-libX11 (Moderate)	2020-12-01
oval:org.opensuse.security:def:60181	P	Security update for postgresql, postgresql96, postgresql10 and postgresql12 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38694	P	libltdl7 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:58138	P	Security update for bzip2 (Important)	2020-12-01
oval:org.opensuse.security:def:30897	P	Security update for Mozilla Firefox (Important)	2020-12-01
oval:org.opensuse.security:def:50617	P	Security update for glib2 (Important)	2020-12-01
oval:org.opensuse.security:def:32498	P	cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28616	P	Security update for xorg-x11-libXext	2020-12-01
oval:org.opensuse.security:def:38476	P	ruby on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60696	P	Security update for krb5-appl (Important)	2020-12-01
oval:org.opensuse.security:def:38810	P	tar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73503	P	graphviz-perl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:70179	P	log4j12-javadoc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33439	P	Security update for ethereal and wireshark	2020-12-01
oval:org.opensuse.security:def:29633	P	Security update for clamav (Moderate)	2020-12-01
oval:org.opensuse.security:def:38329	P	libmysqlclient18 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52064	P	Security update for java-1_8_0-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:53411	P	Security update for nodejs8 (Moderate)	2020-12-01
oval:org.opensuse.security:def:30420	P	Security update for xorg-x11-libXpm (Moderate)	2020-12-01
oval:org.opensuse.security:def:57375	P	Security update for jasper	2020-12-01
oval:org.opensuse.security:def:35055	P	Security update for java-1_6_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:31120	P	Security update for krb5	2020-12-01
oval:org.opensuse.security:def:34271	P	Security update for puppet (Moderate)	2020-12-01
oval:org.opensuse.security:def:50068	P	libecpg6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:37995	P	libz1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:59691	P	Security update for freetype2 (Important)	2020-12-01
oval:org.opensuse.security:def:38385	P	libu2f-host0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35202	P	Security update for PostgreSQL 9.1	2020-12-01
oval:org.opensuse.security:def:59257	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:28343	P	Security update for php53 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38226	P	java-11-openjdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51417	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37993	P	libyaml-0-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38006	P	mozilla-nspr-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60859	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:56858	P	Security update for systemd (Important)	2020-12-01
oval:org.opensuse.security:def:34749	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:30860	P	Security update for e2fsprogs (Moderate)	2020-12-01
oval:org.opensuse.security:def:34163	P	Security update for openssl (Important)	2020-12-01
oval:org.opensuse.security:def:38856	P	libIlmImf-Imf_2_1-21-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53340	P	Security update for postgresql12 (Important)	2020-12-01
oval:org.opensuse.security:def:50130	P	nodejs10 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28264	P	Security update for mercurial (Moderate)	2020-12-01
oval:org.opensuse.security:def:59258	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:38088	P	update-alternatives on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60599	P	Security update for dnsmasq (Moderate)	2020-12-01
oval:org.opensuse.security:def:39492	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:34949	P	Security update for Mozilla Firefox (Important)	2020-12-01
oval:org.opensuse.security:def:50986	P	Security update for bind (Moderate)	2020-12-01
oval:org.opensuse.security:def:32649	P	dbus-1-glib on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28852	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:38695	P	liblua5_2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60818	P	Security update for mariadb (Moderate)	2020-12-01
oval:org.opensuse.security:def:31900	P	Security update for Mozilla Firefox (Important)	2020-12-01
oval:org.opensuse.security:def:50594	P	Security update for libxslt (Moderate)	2020-12-01
oval:org.opensuse.security:def:50618	P	Security update for dbus-1 (Important)	2020-12-01
oval:org.opensuse.security:def:29777	P	Security update for GnuTLS	2020-12-01
oval:org.opensuse.security:def:38477	P	rzsz on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28994	P	Security update for conntrack-tools (Moderate)	2020-12-01
oval:org.opensuse.security:def:38811	P	tcpdump on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29693	P	Security update for expat (Moderate)	2020-12-01
oval:org.opensuse.security:def:70181	P	ncurses-devel-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:33427	P	Security update for Samba	2020-12-01
oval:org.opensuse.security:def:30626	P	Security update for Xen and libvirt	2020-12-01
oval:org.opensuse.security:def:38745	P	libxcb-dri2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52065	P	Security update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:59992	P	Security update for clamav (Important)	2020-12-01
oval:org.opensuse.security:def:38635	P	libMagickCore-6_Q16-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50069	P	libfpm_pb0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:39536	P	Security update for nodejs6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:32363	P	Security update for sudo (Moderate)	2020-12-01
oval:org.opensuse.security:def:28559	P	Security update for gtk2	2020-12-01
oval:org.opensuse.security:def:38386	P	libudisks2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51796	P	Security update for gdm (Moderate)	2020-12-01
oval:org.opensuse.security:def:38782	P	python-imaging on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28265	P	Security update for mercurial (Important)	2020-12-01
oval:org.opensuse.security:def:29501	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:38227	P	java-1_7_0-openjdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51418	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:34114	P	Security update for nagios (Moderate)	2020-12-01
oval:org.opensuse.security:def:37994	P	libykcs11-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:57269	P	Security update for Xen	2020-12-01
oval:org.opensuse.security:def:34896	P	Security update for cyrus-imapd (Low)	2020-12-01
oval:org.opensuse.security:def:31071	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:34227	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:58243	P	Security update for nodejs6 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38327	P	libmspack0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:35163	P	Security update for krb5 (Important)	2020-12-01
oval:org.opensuse.security:def:53341	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:50132	P	nodejs8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:28276	P	Security update for mysql (Moderate)	2020-12-01
oval:org.opensuse.security:def:51253	P	Security update for bluez (Moderate)	2020-12-01
oval:org.opensuse.security:def:39493	P	Security update for python3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:33428	P	Security update for clamav, clamav-db, clamav-debuginfo, clamav-debugsource	2020-12-01
oval:org.opensuse.security:def:50987	P	Security update for gcc10, nvptx-tools (Moderate)	2020-12-01
oval:org.opensuse.security:def:33810	P	Security update for ghostscript-library (Moderate)	2020-12-01
oval:org.opensuse.security:def:38696	P	liblzo2-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:29055	P	Security update for bind (Moderate)	2020-12-01
oval:org.opensuse.security:def:50595	P	Security update for graphviz (Moderate)	2020-12-01
oval:org.opensuse.security:def:56718	P	Security update for samba, talloc, tevent (Moderate)	2020-12-01
oval:org.opensuse.security:def:30773	P	Security update for automake	2020-12-01
oval:org.opensuse.security:def:38812	P	tftp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:31862	P	Security update for curl (Moderate)	2020-12-01
oval:com.redhat.rhsa:def:20192925	P	RHSA-2019:2925: nodejs:10 security update (Important)	2019-09-30
oval:org.opensuse.security:def:80878	P	Security update for nodejs6 (Moderate)	2019-03-29
oval:org.opensuse.security:def:84391	P	Security update for nodejs6 (Moderate)	2019-03-29
oval:com.ubuntu.xenial:def:201957370000000	V	CVE-2019-5737 on Ubuntu 16.04 LTS (xenial) - medium.	2019-03-28
oval:com.ubuntu.bionic:def:20195737000	V	CVE-2019-5737 on Ubuntu 18.04 LTS (bionic) - medium.	2019-03-28
oval:com.ubuntu.disco:def:201957370000000	V	CVE-2019-5737 on Ubuntu 19.04 (disco) - medium.	2019-03-28
oval:com.ubuntu.cosmic:def:20195737000	V	CVE-2019-5737 on Ubuntu 18.10 (cosmic) - medium.	2019-03-28
oval:com.ubuntu.cosmic:def:201957370000000	V	CVE-2019-5737 on Ubuntu 18.10 (cosmic) - medium.	2019-03-28
oval:com.ubuntu.trusty:def:20195737000	V	CVE-2019-5737 on Ubuntu 14.04 LTS (trusty) - medium.	2019-03-28
oval:com.ubuntu.bionic:def:201957370000000	V	CVE-2019-5737 on Ubuntu 18.04 LTS (bionic) - medium.	2019-03-28
oval:com.ubuntu.xenial:def:20195737000	V	CVE-2019-5737 on Ubuntu 16.04 LTS (xenial) - medium.	2019-03-28

BACK