Vulnerability CVE-2019-9628

Vulnerability Name:

CVE-2019-9628 (CCN-159447)

Assigned:

2019-03-11

Published:

2019-03-11

Updated:

2022-04-18

Summary:

The XMLTooling library all versions prior to V3.0.4, provided with the OpenSAML and Shibboleth Service Provider software, contains an XML parsing class. Invalid data in the XML declaration causes an exception of a type that was not handled properly in the parser class and propagates an unexpected exception type.

CVSS v3 Severity:

7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N)
4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

5.0 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-755

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2019-9628

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2019:1235

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2019:1276

Source: MISC
Type: Issue Tracking, Third Party Advisory
https://bugs.launchpad.net/ubuntu/+source/xmltooling/+bug/1819912

Source: XF
Type: UNKNOWN
shibboleth-cve20199628-weak-security(159447)

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20190611-0003/

Source: CCN
Type: Shibboleth Service Provider Security Advisory [11 March 2019]
Shibboleth Service Provider Security Advisory [11 March 2019]

Source: MISC
Type: Third Party Advisory
https://shibboleth.net/community/advisories/secadv_20190311.txt

Source: UBUNTU
Type: Third Party Advisory
USN-3921-1

Source: MISC
Type: Third Party Advisory
https://wiki.shibboleth.net/confluence/display/SP3/SecurityAdvisories

Source: CCN
Type: WhiteSource Vulnerability Database
CVE-2019-9628

Vulnerable Configuration:

Configuration 1:

cpe:/a:xmltooling_project:xmltooling:*:*:*:*:*:*:*:* (Version < 3.0.4)

Configuration 2:

cpe:/o:canonical:ubuntu_linux:14.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:18.10:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:opensuse:leap:15.0:*:*:*:*:*:*:*

OR cpe:/o:opensuse:leap:42.3:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:shibboleth:service_provider:*:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:7594	P	libgtk-vnc-2_0-0-1.3.1-150400.3.3.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:7572	P	libXxf86dga-devel-1.1.4-1.24 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:20199628	V	CVE-2019-9628	2022-09-02
oval:org.opensuse.security:def:606	P	Security update for aws-iam-authenticator (Important)	2022-07-29
oval:org.opensuse.security:def:3506	P	gnome-shell-search-provider-nautilus-3.20.3-23.12.10 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3289	P	libxmltooling6-1.5.6-3.9.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:95136	P	libxmltooling-devel-3.1.0-1.26 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94228	P	(Moderate)	2022-04-28
oval:org.opensuse.security:def:1057	P	Security update for python (Moderate)	2022-04-01
oval:org.opensuse.security:def:112930	P	libxmltooling-devel-3.2.0-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:8923	P	Security update for MozillaFirefox (Important) (in QA)	2022-01-14
oval:org.opensuse.security:def:23774	P	Security update for java-1_7_1-ibm (Moderate) (in QA)	2022-01-04
oval:org.opensuse.security:def:10431	P	Security update for xorg-x11-server (Important)	2021-12-21
oval:org.opensuse.security:def:8691	P	Security update for xorg-x11-server (Important)	2021-12-14
oval:org.opensuse.security:def:1579	P	Security update for python-pip (Moderate)	2021-12-13
oval:org.opensuse.security:def:8872	P	Security update for mozilla-nss (Important)	2021-12-06
oval:org.opensuse.security:def:68079	P	Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP1) (Important)	2021-11-17
oval:org.opensuse.security:def:1641	P	Security update for salt (Moderate)	2021-10-27
oval:org.opensuse.security:def:4164	P	Security update for fetchmail (Moderate)	2021-10-20
oval:org.opensuse.security:def:4160	P	Security update for libqt5-qtsvg (Moderate)	2021-10-12
oval:org.opensuse.security:def:8847	P	Security update for apache2 (Important)	2021-10-12
oval:org.opensuse.security:def:4157	P	Security update for ffmpeg (Moderate)	2021-10-06
oval:org.opensuse.security:def:9596	P	Security update for curl (Moderate)	2021-10-06
oval:org.opensuse.security:def:106385	P	libxmltooling-devel-3.2.0-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:45616	P	Security update for apache2 (Important)	2021-09-27
oval:org.opensuse.security:def:63224	P	libxmltooling-devel-1.6.4-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61479	P	less-530-1.6 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:97024	P	libxmltooling-devel-1.6.4-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:71319	P	libssh2-1-1.8.0-4.6.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61565	P	libpython3_6m1_0-3.6.5-3.11.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61603	P	libzzip-0-13-0.13.69-3.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61646	P	rpcbind-0.2.3-5.3.1 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:103714	P	libxmltooling-devel-1.6.4-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61447	P	gdk-pixbuf-loader-rsvg-2.42.3-1.49 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:90059	P	libxmltooling-devel-1.6.4-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:2135	P	libxmltooling-devel-1.6.4-3.3.2 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:61638	P	python3-pip-10.0.1-1.9 on GA media (Moderate)	2021-09-21
oval:org.opensuse.security:def:10655	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:4150	P	Security update for ffmpeg (Important)	2021-09-02
oval:org.opensuse.security:def:8645	P	Security update for dovecot23 (Moderate)	2021-08-31
oval:org.opensuse.security:def:51643	P	Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP3) (Important)	2021-08-25
oval:org.opensuse.security:def:23958	P	Security update for unrar (Moderate)	2021-08-25
oval:org.opensuse.security:def:23957	P	Security update for openssl-1_1 (Important)	2021-08-24
oval:org.opensuse.security:def:9574	P	Security update for djvulibre (Important)	2021-08-20
oval:org.opensuse.security:def:66897	P	Security update for libass (Important)	2021-08-20
oval:org.opensuse.security:def:23645	P	Security update for MozillaFirefox (Important)	2021-08-17
oval:org.opensuse.security:def:47907	P	transfig-3.2.5e-2.3.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48039	P	gvim-7.4.326-17.3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48131	P	libjavascriptcoregtk-3_0-0-2.4.11-23.20 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48279	P	python-PyYAML-3.12-26.6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47578	P	cpio-2.11-36.3.4 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15108	P	libxmltooling6-1.5.6-3.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48228	P	libxmltooling6-1.5.6-3.9.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47257	P	ft2demos-2.6.3-7.10.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47579	P	cpp48-4.8.5-31.17.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47308	P	libQt5Concurrent5-5.6.2-5.9 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47593	P	dhcp-4.3.3-10.14.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47714	P	libgssglue1-0.4-3.76 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:63386	P	yast2-rmt-1.3.2-3.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63518	P	rsvg-view-2.42.9-3.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2267	P	libxmltooling-devel-3.1.0-1.26 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63356	P	libxmltooling-devel-3.1.0-1.26 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:101382	P	libxmltooling-devel-3.1.0-1.26 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62065	P	dstat-0.7.3-2.16 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62238	P	libvirt-libs-7.1.0-4.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62288	P	perl-XML-Twig-3.52-3.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62041	P	cairo-devel-1.16.0-1.55 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100941	P	libnewt0_52-0.52.20-5.35 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62746	P	gcab-1.1-1.15 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62779	P	libcdio16-0.94-6.9.2 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62042	P	ceph-common-15.2.9.83+g4275378de0-3.17.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:6934	P	Security update for the Linux Kernel (Live Patch 24 for SLE 15 SP1) (Important)	2021-07-27
oval:org.opensuse.security:def:8623	P	Security update for qemu (Important)	2021-07-23
oval:org.opensuse.security:def:6689	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:64732	P	Security update for systemd (Important)	2021-07-20
oval:org.opensuse.security:def:6921	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1) (Important)	2021-07-14
oval:org.opensuse.security:def:8615	P	Security update for arpwatch (Important)	2021-06-28
oval:org.opensuse.security:def:70253	P	Security update for arpwatch (Important)	2021-06-28
oval:org.opensuse.security:def:6912	P	Security update for the Linux Kernel (Live Patch 19 for SLE 15 SP1) (Important)	2021-06-18
oval:org.opensuse.security:def:10680	P	Security update for MozillaThunderbird (Important)	2021-06-17
oval:org.opensuse.security:def:46327	P	Security update for xorg-x11-libX11 (Important)	2021-06-15
oval:org.opensuse.security:def:23922	P	Security update for freeradius-server (Moderate)	2021-06-11
oval:org.opensuse.security:def:51909	P	Security update for qemu (Important)	2021-06-10
oval:org.opensuse.security:def:11404	P	libsoup-2_4-1-2.44.2-1.46 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46407	P	docker-1.2.0-3.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62845	P	bsh2-2.0.0.b6-3.102 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48493	P	libfreetype6-2.6.3-7.8.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:63063	P	libopenssl-1_0_0-devel-1.0.2n-1.32 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48577	P	mipv6d-2.0.2.umip.0.4-19.63 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46466	P	libXv1-1.0.10-3.56 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:11382	P	libneon27-0.30.0-3.65 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46525	P	libvirt-1.2.5-13.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46745	P	liblzo2-2-2.08-1.13 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46554	P	perl-LWP-Protocol-https-6.04-5.4 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46796	P	mutt-1.5.21-49.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46619	P	autofs-5.0.9-8.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48639	P	unzip-6.00-32.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48704	P	raptor-2.0.10-3.67 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61176	P	graphite2-devel-1.3.11-2.12 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61261	P	libopenssl-devel-1.1.0h-1.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48735	P	libid3tag0-0.15.1b-182.58 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:61381	P	xdg-utils-20170508-3.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48806	P	libvdpau1-32bit-1.1.1-6.73 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:8772	P	Security update for libwebp (Critical)	2021-06-04
oval:org.opensuse.security:def:66805	P	Security update for dhcp (Important)	2021-06-02
oval:org.opensuse.security:def:23910	P	Security update for libwebp (Critical)	2021-06-02
oval:org.opensuse.security:def:23580	P	Security update for dhcp (Important)	2021-06-01
oval:org.opensuse.security:def:6903	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15 SP1) (Important)	2021-05-25
oval:org.opensuse.security:def:23575	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:4127	P	Security update for fribidi (Important)	2021-05-19
oval:org.opensuse.security:def:8753	P	Security update for java-11-openjdk (Important)	2021-05-11
oval:org.opensuse.security:def:67979	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15 SP1) (Important)	2021-04-28
oval:org.opensuse.security:def:51542	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2021-04-28
oval:org.opensuse.security:def:8936	P	Security update for sudo (Important)	2021-04-20
oval:org.opensuse.security:def:8738	P	Security update for xorg-x11-server (Important)	2021-04-14
oval:org.opensuse.security:def:73588	P	Security update for cifs-utils (Moderate)	2021-04-13
oval:org.opensuse.security:def:23546	P	Security update for fwupdate (Important)	2021-04-08
oval:org.opensuse.security:def:6870	P	Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP1) (Important)	2021-04-07
oval:org.opensuse.security:def:8914	P	Security update for nghttp2 (Important)	2021-03-24
oval:org.opensuse.security:def:10423	P	Security update for ldb (Important)	2021-03-24
oval:org.opensuse.security:def:8905	P	Security update for postgresql12 (Moderate)	2021-03-03
oval:org.opensuse.security:def:24030	P	Security update for openldap2 (Important)	2021-03-03
oval:org.opensuse.security:def:60461	P	Security update for ImageMagick (Moderate)	2021-02-25
oval:org.opensuse.security:def:51728	P	Security update for openvswitch (Important)	2021-02-12
oval:org.opensuse.security:def:64645	P	Security update for wpa_supplicant (Important)	2021-02-11
oval:org.opensuse.security:def:6643	P	Security update for the Linux Kernel (Live Patch 17 for SLE 15) (Important)	2020-12-07
oval:org.opensuse.security:def:6845	P	Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP1) (Important)	2020-12-07
oval:org.opensuse.security:def:61970	P	radvd-2.17-3.18 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:13102	P	libxmltooling6-1.5.6-3.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62513	P	eog-3.26.2-3.39 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62416	P	gstreamer-plugins-bad-1.12.5-1.40 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2197	P	libxmltooling-devel-1.6.4-3.3.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62711	P	open-vm-tools-desktop-11.1.0-2.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4082	P	libxmltooling-devel-1.5.6-3.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63286	P	libxmltooling-devel-1.6.4-3.3.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61696	P	apr-util-devel-1.6.1-10.21 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3943	P	libXpm-devel-3.5.11-5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61726	P	dbus-1-1.12.2-8.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:117165	P	libxmltooling-devel-1.6.4-3.3.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3955	P	libapr1-1.5.1-4.5.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62517	P	flatpak-1.2.3-2.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3995	P	libjasper-devel-1.900.14-195.15.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62609	P	wavpack-5.1.0-4.3.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:16918	P	libxmltooling-devel-1.5.6-3.9.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4026	P	libpacemaker-devel-1.1.21+20190809.bf34b44fa-1.17 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62647	P	imlib2-loaders-1.4.10-1.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4038	P	libptexenc1-1.3.2dev-22.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62696	P	librsvg-devel-2.46.4-1.31 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107607	P	libxmltooling-devel-1.6.4-3.3.2 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4054	P	libsoup-devel-2.62.2-5.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63622	P	imobiledevice-tools-1.2.0+git20180427.26373b3-1.40 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4110	P	pango-devel-1.40.1-9.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3935	P	libXcursor-devel-1.1.14-4.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71432	P	alsa-1.1.5-6.6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61765	P	gtk2-devel-2.24.32+67-2.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4802	P	Security update for dpdk (Moderate)	2020-12-02
oval:org.opensuse.security:def:4823	P	Security update for xmltooling (Moderate)	2020-12-02
oval:org.opensuse.security:def:45468	P	Security update for librelp (Important)	2020-12-01
oval:org.opensuse.security:def:37255	P	libsqlite3-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22760	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:18178	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:63865	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:23287	P	Security update for xmltooling (Moderate)	2020-12-01
oval:org.opensuse.security:def:44030	P	Security update for sqlite3 (Important)	2020-12-01
oval:org.opensuse.security:def:23464	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:10561	P	libwebkit2gtk-3_0-25 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51800	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:45057	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:63815	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:17724	P	Security update for php5 (Important)	2020-12-01
oval:org.opensuse.security:def:37345	P	unixODBC on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22799	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:24420	P	Security update for ovmf (Moderate)	2020-12-01
oval:org.opensuse.security:def:18200	P	Security update for libapr-util1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49966	P	libxmltooling-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63900	P	Security update for xmltooling (Moderate)	2020-12-01
oval:org.opensuse.security:def:50453	P	Security update for python-urllib3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:44134	P	Security update for perl (Important)	2020-12-01
oval:org.opensuse.security:def:23534	P	Security update for python-numpy (Important)	2020-12-01
oval:org.opensuse.security:def:10580	P	openslp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51834	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:50020	P	libxmltooling-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60987	P	Security update for ntp (Moderate)	2020-12-01
oval:org.opensuse.security:def:17758	P	Recommended update for git (Moderate)	2020-12-01
oval:org.opensuse.security:def:37505	P	libapr-util1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:45958	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:24432	P	Security update for ucode-intel (Important)	2020-12-01
oval:org.opensuse.security:def:24628	P	Security update for xmltooling (Moderate)	2020-12-01
oval:org.opensuse.security:def:36865	P	kbd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50475	P	Security update for dhcp (Moderate)	2020-12-01
oval:org.opensuse.security:def:44299	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:17716	P	Security update for quagga (Low)	2020-12-01
oval:org.opensuse.security:def:23783	P	Security update for libxslt (Moderate)	2020-12-01
oval:org.opensuse.security:def:17843	P	Security update for php5 (Important)	2020-12-01
oval:org.opensuse.security:def:37564	P	libotr5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:46015	P	Security update for shibboleth-sp (Moderate)	2020-12-01
oval:org.opensuse.security:def:24470	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:6621	P	gpgme on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50608	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:44414	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:18410	P	Security update for libxml2 (Low)	2020-12-01
oval:org.opensuse.security:def:45695	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:44982	P	Security update for perl (Important)	2020-12-01
oval:org.opensuse.security:def:23839	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:17900	P	Security update for bsh2 (Important)	2020-12-01
oval:org.opensuse.security:def:46044	P	Security update for perl (Important)	2020-12-01
oval:org.opensuse.security:def:45743	P	Security update for xmltooling (Moderate)	2020-12-01
oval:org.opensuse.security:def:50841	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:44489	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:23787	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:18422	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:18864	P	Security update for xmltooling (Moderate)	2020-12-01
oval:org.opensuse.security:def:44993	P	Security update for python3-requests (Moderate)	2020-12-01
oval:org.opensuse.security:def:17931	P	Security update for ImageMagick (Important)	2020-12-01
oval:org.opensuse.security:def:46107	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:6613	P	glib2-lang on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:17968	P	Security update for libXpm (Moderate)	2020-12-01
oval:org.opensuse.security:def:51004	P	Security update for zeromq (Moderate)	2020-12-01
oval:org.opensuse.security:def:44606	P	Security update for libzypp, zypper (Moderate)	2020-12-01
oval:org.opensuse.security:def:23834	P	Security update for mailman (Important)	2020-12-01
oval:org.opensuse.security:def:18444	P	Security update for spice (Important)	2020-12-01
oval:org.opensuse.security:def:50028	P	qemu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:60025	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:45103	P	Security update for java-1_8_0-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:17967	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50082	P	libxmltooling-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18002	P	Security update for gstreamer-plugins-base (Low)	2020-12-01
oval:org.opensuse.security:def:6736	P	libpcre1-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51108	P	Security update for libnettle (Moderate)	2020-12-01
oval:org.opensuse.security:def:44795	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:25140	P	Security update for xmltooling (Moderate)	2020-12-01
oval:org.opensuse.security:def:44018	P	Security update for the Linux Kernel (Live Patch 32 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:60047	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:45285	P	Security update for libtirpc (Important)	2020-12-01
oval:org.opensuse.security:def:24079	P	Security update for freeradius-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:18077	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:17960	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18087	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:6751	P	libraw9 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51272	P	Security update for fwupd (Important)	2020-12-01
oval:org.opensuse.security:def:44865	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:60207	P	Security update for java-1_7_1-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:45406	P	Security update for dpdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:24149	P	Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:18109	P	Security update for libical (Moderate)	2020-12-01
oval:org.opensuse.security:def:22866	P	Security update for java-1_7_1-ibm (Moderate)	2020-12-01
oval:org.opensuse.security:def:45469	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:18144	P	Security update for evince (Important)	2020-12-01
oval:org.opensuse.security:def:6770	P	libtirpc-netconfig on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24596	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:50452	P	Security update for python-Werkzeug (Moderate)	2020-12-01
oval:org.opensuse.security:def:45487	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:24292	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:37613	P	libyaml-0-2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22878	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:73470	P	python3-cupshelpers on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19108	P	Security update for xmltooling (Moderate)	2020-12-01
oval:org.opensuse.security:def:45481	P	Security update for openssl (Moderate)	2020-12-01
oval:org.opensuse.security:def:18175	P	Security update for libwpd (Important)	2020-12-01
oval:org.opensuse.security:def:70148	P	apache-pdfbox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22332	P	Security update for curl (Important)	2020-12-01
oval:org.opensuse.security:def:60646	P	Security update for nfs-utils (Moderate)	2020-12-01
oval:org.opensuse.security:def:24341	P	Security update for postgresql10 (Moderate)	2020-12-01
oval:org.opensuse.security:def:37652	P	procmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22908	P	Security update for postgresql, postgresql96, postgresql10 and postgresql12 (Moderate)	2020-12-01
oval:org.opensuse.security:def:53185	P	Security update for qemu (Moderate)	2020-12-01
oval:org.opensuse.security:def:60988	P	Security update for mozilla-nspr, mozilla-nss (Important)	2020-12-01
oval:org.opensuse.security:def:45594	P	Security update for dnsmasq (Moderate)	2020-12-01
oval:org.opensuse.security:def:18211	P	Security update for evince (Important)	2020-12-01
oval:org.opensuse.security:def:10722	P	libbotan-1_10-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53254	P	Security update for xmltooling (Moderate)	2020-12-01
oval:org.opensuse.security:def:36866	P	kernel-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22379	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:60767	P	Security update for pdns (Moderate)	2020-12-01
oval:org.opensuse.security:def:45822	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:37680	P	squidGuard on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18838	P	Security update for python (Important)	2020-12-01
oval:org.opensuse.security:def:44981	P	Security update for adns (Important)	2020-12-01
oval:org.opensuse.security:def:61010	P	Security update for dpdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:45778	P	Security update for qemu (Moderate)	2020-12-01
oval:org.opensuse.security:def:18321	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:10731	P	libexpat-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22324	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:36877	P	libXext6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22478	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:60960	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:45900	P	Security update for the Linux Kernel (Live Patch 35 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:37724	P	alsa on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:45902	P	Security update for the Linux Kernel (Live Patch 33 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:18353	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:10744	P	libid3tag-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:36961	P	libvte9 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22542	P	Security update for smt (Moderate)	2020-12-01
oval:org.opensuse.security:def:25108	P	Security update for sssd (Moderate)	2020-12-01
oval:org.opensuse.security:def:60024	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:10453	P	hplip-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:45986	P	Security update for libpcap (Important)	2020-12-01
oval:org.opensuse.security:def:44920	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:37097	P	cyrus-sasl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22582	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:63720	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:23295	P	Security update for clamav (Important)	2020-12-01
oval:org.opensuse.security:def:10499	P	libgnutls-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:46120	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:44971	P	Security update for krb5-appl (Important)	2020-12-01
oval:org.opensuse.security:def:37198	P	libgnomesu on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:22635	P	Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP2) (Important)	2020-12-01
oval:org.opensuse.security:def:18166	P	Security update for xerces-j2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:63760	P	Security update for rsyslog (Important)	2020-12-01
oval:org.opensuse.security:def:38362	P	libraptor2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:44019	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:23348	P	Security update for qemu (Important)	2020-12-01
oval:org.opensuse.security:def:10546	P	libspice-server-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:45000	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:19082	P	Security update for apache2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38404	P	libxmltooling6 on GA media (Moderate)	2020-12-01
oval:com.ubuntu.xenial:def:201996280000000	V	CVE-2019-9628 on Ubuntu 16.04 LTS (xenial) - medium.	2019-04-11
oval:com.ubuntu.bionic:def:20199628000	V	CVE-2019-9628 on Ubuntu 18.04 LTS (bionic) - medium.	2019-04-11
oval:com.ubuntu.cosmic:def:20199628000	V	CVE-2019-9628 on Ubuntu 18.10 (cosmic) - medium.	2019-04-11
oval:com.ubuntu.cosmic:def:201996280000000	V	CVE-2019-9628 on Ubuntu 18.10 (cosmic) - medium.	2019-04-11
oval:com.ubuntu.trusty:def:20199628000	V	CVE-2019-9628 on Ubuntu 14.04 LTS (trusty) - medium.	2019-04-11
oval:com.ubuntu.bionic:def:201996280000000	V	CVE-2019-9628 on Ubuntu 18.04 LTS (bionic) - medium.	2019-04-11
oval:com.ubuntu.xenial:def:20199628000	V	CVE-2019-9628 on Ubuntu 16.04 LTS (xenial) - medium.	2019-04-11
oval:org.opensuse.security:def:126454	P	Security update for xmltooling (Moderate)	2019-04-10
oval:org.opensuse.security:def:85371	P	Security update for xmltooling (Moderate)	2019-04-10
oval:org.opensuse.security:def:87103	P	Security update for xmltooling (Moderate)	2019-04-10
oval:org.opensuse.security:def:126065	P	Security update for xmltooling (Moderate)	2019-04-10
oval:org.opensuse.security:def:88878	P	Security update for xmltooling (Moderate)	2019-04-10

BACK