Vulnerability CVE-2020-24553

Vulnerability Name:

CVE-2020-24553 (CCN-187776)

Assigned:

2020-08-01

Published:

2020-08-01

Updated:

2021-09-16

Summary:

Go before 1.14.8 and 1.15.x before 1.15.1 allows XSS because text/html is the default for CGI/FCGI handlers that lack a Content-Type header.

CVSS v3 Severity:

6.1 Medium (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

7.2 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

6.1 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N)
5.5 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N/E:P/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): None

CVSS v2 Severity:

4.3 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Medium Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

6.4 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): None

Vulnerability Type:

CWE-79

Vulnerability Consequences:

Cross-Site Scripting

References:

Source: MITRE
Type: CNA
CVE-2020-24553

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:1584

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:1587

Source: MISC
Type: Exploit, Third Party Advisory, VDB Entry
http://packetstormsecurity.com/files/159049/Go-CGI-FastCGI-Transport-Cross-Site-Scripting.html

Source: FULLDISC
Type: Exploit, Mailing List, Third Party Advisory
20200902 [RT-SA-2020-004] Inconsistent Behavior of Go's CGI and FastCGI Transport May Lead to Cross-Site Scripting

Source: XF
Type: UNKNOWN
golang-cve202024553-xss(187776)

Source: CCN
Type: Golang Web bsite
GetGo

Source: MISC
Type: Mailing List, Third Party Advisory
https://groups.google.com/forum/#!topic/golang-announce/8wqlSbkLdPs

Source: FEDORA
Type: Mailing List, Third Party Advisory
FEDORA-2020-741cfa13d0

Source: CCN
Type: Packet Storm Security [09-02-2020]
Go CGI / FastCGI Transport Cross Site Scripting

Source: CCN
Type: Full-Disclosure Mailing List, Wed, 2 Sep 2020 09:16:14 +0200
[RT-SA-2020-004] Inconsistent Behavior of Go's CGI and FastCGI Transport May Lead to Cross-Site Scripting

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20200924-0003/

Source: CCN
Type: IBM Security Bulletin 6364975 (Watson Discovery)
IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Go

Source: CCN
Type: IBM Security Bulletin 6373028 (Cloud Automation Manager)
A security vulnerability in GO affects IBM Cloud Automation Manager.

Source: CCN
Type: IBM Security Bulletin 6378348 (Blockchain Platform for Cloud)
Upgrade to IBP v2.5.1 to address recent concerns/issues with Golang versions other than 1.14.7

Source: CCN
Type: IBM Security Bulletin 6380968 (Cloud Pak for Data)
Security Vulnerabilities affect IBM Cloud Pak for Data - Golang (CVE-2020-24553)

Source: CCN
Type: IBM Security Bulletin 6382370 (Cloud Pak for Multicloud Management)
A security vulnerability in Golang Go affects IBM Cloud Pak for Multicloud Management Managed Service.

Source: CCN
Type: IBM Security Bulletin 6403463 (Security Guardium Insights)
IBM Security Guardium Insights is affected by multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6412335 (Cloud Pak for Multicloud Management)
Security vulnerabilities in Go affect IBM Cloud Pak for Multicloud Management Hybrid GRC.

Source: CCN
Type: IBM Security Bulletin 6483659 (API Connect)
IBM API Connect is impacted by a vulnerability in Golang (CVE-2020-24553)

Source: CCN
Type: IBM Security Bulletin 6615221 (Robotic Process Automation for Cloud Pak)
Multiple Security Vulnerabilities may affect IBM Robotic Process Automation for Cloud Pak

Source: CCN
Type: IBM Security Bulletin 6831813 (Netcool Operations Insight)
Netcool Operations Insight v1.6.6 contains fixes for multiple security vulnerabilities.

Source: N/A
Type: Patch, Third Party Advisory
N/A

Source: CCN
Type: Oracle Critical Patch Update Advisory - April 2021
Oracle Critical Patch Update Advisory - April 2021

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpuApr2021.html

Source: CCN
Type: Oracle CPUJul2021
Oracle Critical Patch Update Advisory - July 2021

Source: MISC
Type: Exploit, Third Party Advisory
https://www.redteam-pentesting.de/advisories/rt-sa-2020-004

Vulnerable Configuration:

Configuration 1:

cpe:/a:golang:go:*:*:*:*:*:*:*:* (Version < 1.14.8)

OR cpe:/a:golang:go:*:*:*:*:*:*:*:* (Version >= 1.15.0 and < 1.15.1)

Configuration 2:

cpe:/o:fedoraproject:fedora:33:*:*:*:*:*:*:*

Configuration 3:

cpe:/o:opensuse:leap:15.1:*:*:*:*:*:*:*

OR cpe:/o:opensuse:leap:15.2:*:*:*:*:*:*:*

Configuration 4:

cpe:/a:oracle:communications_cloud_native_core_policy:1.5.0:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration CCN 1:

cpe:/a:golang:go:1.14.7:*:*:*:*:*:*:*

OR cpe:/a:golang:go:1.15.0:-:*:*:*:*:*:*

AND

cpe:/a:ibm:watson_discovery:2.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:2018.4.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_data:2.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_data:3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:10.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_discovery:2.1.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium_insights:2.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:2018.4.1.16:*:*:*:*:*:*:*

OR cpe:/a:ibm:robotic_process_automation_for_cloud_pak:21.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:robotic_process_automation_for_cloud_pak:21.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:robotic_process_automation_for_cloud_pak:21.0.3:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:202024553	V	CVE-2020-24553	2022-09-02
oval:org.opensuse.security:def:3787	P	Security update for ldb, samba (Important)	2022-08-03
oval:org.opensuse.security:def:3304	P	mozilla-nspr-32bit-4.21-19.9.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3368	P	squashfs-4.3-6.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3046	P	curl-7.60.0-9.8 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3296	P	logrotate-3.11.0-2.14.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3277	P	libvirt-5.1.0-11.10 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3263	P	libsystemd0-228-155.21 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3135	P	libXdmcp6-1.1.1-12.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3372	P	stunnel-5.00-4.3.4 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3256	P	libsoup-2_4-1-2.62.2-5.7.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3127	P	libIlmImf-Imf_2_1-21-2.1.0-6.13.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3106	P	ibus-chewing-1.4.14-4.11 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3117	P	kdump-0.8.16-9.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3251	P	libshibsp-lite6-2.5.5-6.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3060	P	ecryptfs-utils-103-8.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3070	P	freeradius-server-3.0.19-1.48 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3366	P	socat-1.7.2.4-3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3354	P	rpm-32bit-4.11.2-16.21.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3369	P	squid-4.8-2.17 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3775	P	rpcbind-0.2.3-24.9.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3121	P	krb5-appl-clients-1.0.3-1.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3097	P	guestfs-data-1.32.4-21.3.10 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3061	P	elfutils-0.158-7.7.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3071	P	ft2demos-2.6.3-7.15.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3088	P	gpg2-2.0.24-9.8.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3082	P	glibc-2.22-100.15.4 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3068	P	flatpak-1.4.2-1.31 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3345	P	python-pyOpenSSL-16.0.0-4.17.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3056	P	dpdk-18.11.2-1.59 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3137	P	libXfixes3-32bit-5.0.1-7.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3315	P	pam-1.1.8-24.27.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3050	P	dbus-1-1.8.22-9.38 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3105	P	ibus-1.5.13-15.11.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3116	P	kbd-2.0.4-8.10.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94852	P	wpa_supplicant-2.9-4.33.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94853	P	xalan-j2-2.7.2-9.64 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95074	P	pam-modules-12.1-3.17 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:112333	P	go1.14-1.14.15-1.6 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:112334	P	go1.15-1.15.15-1.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:64641	P	Security update for p11-kit (Important)	2021-12-22
oval:org.opensuse.security:def:65687	P	Security update for xorg-x11-server (Important)	2021-12-21
oval:org.opensuse.security:def:64640	P	Security update for log4j12 (Important)	2021-12-17
oval:org.opensuse.security:def:101566	P	Security update for python3 (Moderate)	2021-12-16
oval:org.opensuse.security:def:101565	P	Security update for xorg-x11-server (Important)	2021-12-14
oval:org.opensuse.security:def:70506	P	Security update for webkit2gtk3 (Important)	2021-11-23
oval:org.opensuse.security:def:70507	P	Security update for java-1_8_0-openjdk (Important)	2021-11-23
oval:org.opensuse.security:def:105854	P	Security update for qemu (Important)	2021-11-04
oval:org.opensuse.security:def:105855	P	Security update for binutils (Moderate)	2021-11-04
oval:org.opensuse.security:def:73721	P	Security update for apache2 (Important)	2021-10-26
oval:org.opensuse.security:def:65316	P	Security update for flatpak (Important)	2021-10-20
oval:org.opensuse.security:def:65315	P	Security update for MozillaFirefox (Important)	2021-10-16
oval:org.opensuse.security:def:67284	P	Security update for libaom (Low)	2021-10-12
oval:org.opensuse.security:def:68663	P	Security update for the Linux Kernel (Important)	2021-10-12
oval:org.opensuse.security:def:65597	P	Security update for git (Low)	2021-10-06
oval:org.opensuse.security:def:68662	P	Security update for the Linux Kernel (Important)	2021-09-21
oval:org.opensuse.security:def:49451	P	Security update for php74-pear (Important)	2021-09-09
oval:org.opensuse.security:def:49450	P	Security update for php72 (Important)	2021-09-02
oval:org.opensuse.security:def:64748	P	Security update for libmspack (Moderate)	2021-08-20
oval:org.opensuse.security:def:2365	P	python2-opencv-3.3.1-6.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63495	P	libstaroffice-0_0-0-0.0.7-7.3.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2355	P	nping-7.70-3.12.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2423	P	python2-ecdsa-0.13.3-3.7.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63357	P	memcached-1.5.6-4.5.30 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2430	P	sane-backends-32bit-1.0.32-6.6.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2350	P	libsybdb5-1.1.36-3.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2421	P	python2-SQLAlchemy-1.3.22-2.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2346	P	libmpg123-0-32bit-1.25.10-1.38 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2416	P	perl-32bit-5.26.1-15.87 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2403	P	libreoffice-7.1.2.2-2.3 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63097	P	ntp-4.2.8p15-4.13.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2392	P	libSDL2-2_0-0-32bit-2.0.8-9.63 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2420	P	postgresql-test-13-8.30 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2431	P	strongswan-nm-5.8.2-11.8.4 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2387	P	hdf5-gnu-hpc-1.10.7-2.25 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2415	P	openconnect-7.08-6.9.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2422	P	python2-Werkzeug-1.0.1-1.10 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2409	P	libvncserver0-0.9.10-4.25.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2383	P	gegl-0.4.16-1.99 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2417	P	perl-rrdtool-1.7.0-4.34 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2389	P	java-11-openjdk-javadoc-11.0.10.0-3.53.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63125	P	kernel-azure-5.3.18-36.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2404	P	libsndfile1-32bit-1.0.28-5.5.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2380	P	ffmpeg-3.4.2-9.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2393	P	libexif12-32bit-0.6.22-5.6.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63093	P	libcgroup-devel-0.41.rc1-1.10.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2376	P	dia-0.97.3-4.3.3 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2388	P	icedtea-web-1.7.1-5.13 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2364	P	python2-keystoneclient-3.15.0-2.33 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2410	P	libvorbis0-32bit-1.3.6-4.3.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2384	P	gimp-2.10.12-7.25 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2354	P	libxslt1-32bit-1.1.32-3.8.24 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2390	P	lame-3.100-1.33 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2349	P	libsnmp30-32bit-5.7.3-8.24 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63100	P	postgresql10-10.16-8.29.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2381	P	finch-2.13.0-10.105 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2345	P	libltdl7-32bit-2.4.6-1.406 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2377	P	djvulibre-3.5.27-9.28 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:71900	P	libipa_hbac-devel-1.16.1-21.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72016	P	pam_ssh-2.1-2.27 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72728	P	go1.14-1.14.15-1.35.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:101267	P	go1.14-1.14.15-1.35.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71899	P	libidn2-0-2.2.0-3.6.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72015	P	pam_krb5-2.4.13-1.36 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1920	P	go1.14-1.14.15-1.35.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:63009	P	go1.14-1.14.15-1.35.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:73854	P	Security update for systemd (Important)	2021-07-20
oval:org.opensuse.security:def:67189	P	Security update for containerd (Moderate)	2021-07-20
oval:org.opensuse.security:def:64544	P	Security update for sqlite3 (Important)	2021-07-14
oval:org.opensuse.security:def:101787	P	Security update for go1.16 (Important)	2021-06-28
oval:org.opensuse.security:def:65226	P	Security update for gupnp (Important)	2021-06-24
oval:org.opensuse.security:def:73841	P	Security update for wireshark (Important)	2021-06-22
oval:org.opensuse.security:def:65225	P	Security update for wireshark (Important)	2021-06-22
oval:org.opensuse.security:def:73842	P	Security update for apache2 (Important)	2021-06-22
oval:org.opensuse.security:def:67150	P	Security update for java-1_8_0-openjdk (Moderate)	2021-06-17
oval:org.opensuse.security:def:67151	P	Security update for postgresql12 (Moderate)	2021-06-17
oval:org.opensuse.security:def:68560	P	Security update for libjpeg-turbo (Moderate)	2021-06-11
oval:org.opensuse.security:def:68559	P	Security update for djvulibre (Important)	2021-06-10
oval:org.opensuse.security:def:2452	P	icedtea-web-1.7.1-1.48 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48919	P	libIlmImf-Imf_2_1-21-32bit-2.1.0-6.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48864	P	libpcsclite1-32bit-1.8.10-6.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48900	P	finch-2.12.0-3.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:62876	P	perl-doc-5.26.1-5.41 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2453	P	imobiledevice-tools-1.2.0+git20170122.45fda81-1.44 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2467	P	libwmf-0_2-7-0.2.8.4-2.30 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48920	P	libSoundTouch0-32bit-1.7.1-5.3.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48902	P	gcc48-gij-32bit-4.8.5-31.17.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48901	P	freerdp-2.0.0~git.1463131968.4e66df7-12.3.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48881	P	pulseaudio-module-bluetooth-5.0-4.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48862	P	libosip2-3.5.0-20.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2465	P	libstaroffice-0_0-0-0.0.5-1.22 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2468	P	libwpd-0_10-10-0.10.2-1.28 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2458	P	libopencv3_3-3.3.1-4.5 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48882	P	python-devel-2.7.13-27.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48863	P	libpcrecpp0-32bit-8.39-7.1 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2466	P	libvncclient0-0.9.10-2.21 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:2459	P	libotr-devel-4.1.1-2.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:64504	P	Security update for fribidi (Important)	2021-05-19
oval:org.opensuse.security:def:70399	P	Security update for lz4 (Important)	2021-05-19
oval:org.opensuse.security:def:70398	P	Security update for the Linux Kernel (Important)	2021-05-18
oval:org.opensuse.security:def:51550	P	Security update for libnettle (Important)	2021-04-28
oval:org.opensuse.security:def:51551	P	Security update for gdm (Important)	2021-04-28
oval:org.opensuse.security:def:67056	P	Security update for the Linux Kernel (Important)	2021-03-09
oval:org.opensuse.security:def:67055	P	Security update for 389-ds (Moderate)	2021-03-08
oval:org.opensuse.security:def:70532	P	Security update for screen (Important)	2021-02-17
oval:org.opensuse.security:def:73720	P	Security update for java-11-openjdk (Important)	2021-02-09
oval:org.opensuse.security:def:69034	P	Security update for xen (Moderate)	2020-12-22
oval:com.redhat.rhsa:def:20205493	P	RHSA-2020:5493: go-toolset:rhel8 security update (Moderate)	2020-12-15
oval:org.opensuse.security:def:49045	P	libzmq3-4.0.4-15.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63155	P	krb5-plugin-kdb-ldap-1.15.2-4.25 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62699	P	libsrt1-1.3.4-1.45 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72271	P	libgme-devel-0.6.2-1.17 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72387	P	libexiv2-26-0.26-6.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49046	P	libzzip-0-13-0.13.67-10.14.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62675	P	libjasper-devel-2.0.14-3.11.8 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63596	P	libwmf-0_2-7-0.2.8.4-2.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49007	P	libcares2-32bit-1.9.1-9.4.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63303	P	skopeo-0.1.41-4.11.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62676	P	libjbig2-32bit-2.1-1.31 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49008	P	libdirectfb-1_7-1-32bit-1.7.1-6.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4010	P	libmspack-devel-0.4-14.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:4023	P	libopus-devel-1.1-3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49769	P	ant-antlr on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49885	P	gv on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49768	P	ant on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49999	P	dpdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50212	P	xorg-x11-server-wayland on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:68931	P	Security update for java-1_8_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:49649	P	libSoundTouch0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49932	P	clamsap on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50095	P	rmt-server on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51443	P	Security update for pcp (Important)	2020-12-01
oval:org.opensuse.security:def:51505	P	Security update for go1.14 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49492	P	vino on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50109	P	apache-commons-beanutils on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:73975	P	Security update for go1.14 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49841	P	kernel-docs on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50944	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:74484	P	Security update for shadowsocks-libev (Moderate)	2020-12-01
oval:org.opensuse.security:def:74610	P	Security update for go1.14 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49395	P	conky on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49607	P	ImageMagick on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50870	P	Security update for wicked (Important)	2020-12-01
oval:org.opensuse.security:def:51043	P	Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Important)	2020-12-01
oval:org.opensuse.security:def:52158	P	Security update for freerdp (Important)	2020-12-01
oval:org.opensuse.security:def:52220	P	Security update for go1.14 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49250	P	libunbound2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64175	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:64908	P	Security update for ucode-intel (Important)	2020-12-01
oval:org.opensuse.security:def:50553	P	Security update for bluez (Moderate)	2020-12-01
oval:org.opensuse.security:def:50063	P	ipmitool-bmc-snmp-proxy on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63946	P	Security update for ruby2.1 (Important)	2020-12-01
oval:org.opensuse.security:def:50043	P	yast2-rmt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50213	P	Mesa-dri-nouveau on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49354	P	wicked on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50315	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:63799	P	Security update for binutils (Moderate)	2020-12-01
oval:org.opensuse.security:def:49974	P	rarpd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50139	P	bluez-cups on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51444	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:51506	P	Security update for go1.15 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49210	P	libpainter0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50158	P	libotr-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50778	P	Security update for xrdp (Important)	2020-12-01
oval:org.opensuse.security:def:49842	P	libgit2-26 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64390	P	libsystemd0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:74962	P	Security update for ntp (Moderate)	2020-12-01
oval:org.opensuse.security:def:75095	P	Security update for go1.14 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50060	P	graphviz-tcl on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50167	P	libwpd-0_10-10 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49608	P	MozillaFirefox on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:52393	P	Security update for freerdp (Important)	2020-12-01
oval:org.opensuse.security:def:52455	P	Security update for go1.14 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49914	P	mercurial on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50777	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:50064	P	krb5-plugin-kdb-ldap on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49709	P	perl-MIME-Charset on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50044	P	389-ds on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50882	P	Security update for git (Important)	2020-12-01
oval:org.opensuse.security:def:49355	P	wpa_supplicant on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50533	P	Security update for ceph (Moderate)	2020-12-01
oval:org.opensuse.security:def:49582	P	libusbmuxd-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49975	P	rsyslog-module-gssapi on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50140	P	bogofilter-common on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51488	P	Security update for osc (Moderate)	2020-12-01
oval:org.opensuse.security:def:49211	P	libpango-1_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50374	P	Security update for libxslt (Moderate)	2020-12-01
oval:org.opensuse.security:def:51011	P	Security update for java-11-openjdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:49564	P	libndp-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49884	P	reiserfs-kmp-default on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64850	P	Security update for bzip2 (Important)	2020-12-01
oval:org.opensuse.security:def:49563	P	libmpg123-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50274	P	Security update for openssl-1_1 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49998	P	dovecot23 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50168	P	openconnect on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49648	P	libSDL2-2_0-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64288	P	krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:65020	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:50123	P	nodejs8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49931	P	clamsap on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50094	P	rarpd on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49491	P	typelib-1_0-JavaScriptCore-4_0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64182	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:50108	P	yast2-rmt on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49916	P	python-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50713	P	Security update for clamav (Important)	2020-12-01
oval:org.opensuse.security:def:51117	P	Security update for gnutls (Important)	2020-12-01
oval:org.opensuse.security:def:70640	P	Security update for go1.14 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49394	P	colord-color-profiles on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64048	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:49788	P	libgit2-26 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50643	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:50809	P	Security update for xorg-x11-server (Important)	2020-12-01
oval:org.opensuse.security:def:51489	P	Security update for python3 (Important)	2020-12-01
oval:org.opensuse.security:def:49249	P	libudisks2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:63721	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:64432	P	perl-Archive-Zip on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:110790	P	Security update for go1.14 (Moderate)	2020-10-02
oval:org.opensuse.security:def:110234	P	Security update for go1.14 (Moderate)	2020-10-01
oval:org.opensuse.security:def:117746	P	Security update for go1.15 (Moderate)	2020-09-29
oval:org.opensuse.security:def:97639	P	Security update for go1.15 (Moderate)	2020-09-29
oval:org.opensuse.security:def:108232	P	Security update for go1.15 (Moderate)	2020-09-29
oval:org.opensuse.security:def:104329	P	Security update for go1.15 (Moderate)	2020-09-29
oval:org.opensuse.security:def:90674	P	Security update for go1.15 (Moderate)	2020-09-29
oval:org.opensuse.security:def:104328	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:90673	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:75414	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:98018	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:108453	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:75683	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:104708	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:91053	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:117745	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:97638	P	Security update for go1.14 (Moderate)	2020-09-28
oval:org.opensuse.security:def:108231	P	Security update for go1.14 (Moderate)	2020-09-28

BACK