Vulnerability CVE-2020-2816 - CERT Civis.Net

Vulnerability Name:

CVE-2020-2816 (CCN-179714)

Assigned:

2019-12-10

Published:

2020-04-14

Updated:

2022-06-30

Summary:

Vulnerability in the Java SE product of Oracle Java SE (component: JSSE). Supported versions that are affected are Java SE: 11.0.6 and 14. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTPS to compromise Java SE. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Java SE accessible data.
Note: This vulnerability can only be exploited by supplying data to APIs in the specified Component without using Untrusted Java Web Start applications or Untrusted Java applets, such as through a web service. CVSS 3.0 Base Score 7.5 (Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N).

CVSS v3 Severity:

7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

7.5 High (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N)
6.5 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): High Availibility (A): None

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:P/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Partial Availibility (A): None

7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:C/A:N)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): Complete Availibility (A): None

Vulnerability Type:

CWE-noinfo
CWE-358

Vulnerability Consequences:

Other

References:

Source: MITRE
Type: CNA
CVE-2020-2816

Source: SUSE
Type: Third Party Advisory
openSUSE-SU-2020:0757

Source: XF
Type: UNKNOWN
oracle-cpuapr2020-cve20202816(179714)

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20200416-0004/

Source: UBUNTU
Type: Third Party Advisory
USN-4337-1

Source: DEBIAN
Type: Third Party Advisory
DSA-4662

Source: CCN
Type: IBM Security Bulletin 6228088 (Watson Discovery)
IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Java

Source: CCN
Type: IBM Security Bulletin 6255260 (Watson Machine Learning)
Watson Machine Learning Service is impacted by security vulnerabilities in OpenJDK 11

Source: CCN
Type: IBM Security Bulletin 6326867 (Watson Knowledge Catalog for IBM Cloud Pak for Data)
Java Quarterly CPU affecting Watson Knowledge Catalog for IBM Cloud Pak for Data

Source: CCN
Type: IBM Security Bulletin 6409926 (Rational Functional Tester)
Multiple vulnerabilities in Open JDK affecting Rational Functional Tester

Source: CCN
Type: IBM Security Bulletin 6436421 (InfoSphere Information Server)
Multiple vulnerabilities in OpenJDK version 11 affect IBM InfoSphere Information Server

Source: CCN
Type: IBM Security Bulletin 6436567 (InfoSphere Information Server)
Multiple vulnerabilities in OpenJDK version 8 affect IBM InfoSphere Information Server

Source: CCN
Type: Oracle CPUApr2020
Oracle Critical Patch Update Advisory - April 2020

Source: MISC
Type: Vendor Advisory
https://www.oracle.com/security-alerts/cpuapr2020.html

Vulnerable Configuration:

Configuration 1:

cpe:/a:oracle:jdk:14.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jre:14.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:jdk:11.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:jre:11.0.6:*:*:*:*:*:*:*

Configuration 2:

cpe:/a:oracle:openjdk:8:-:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update102:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update112:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update152:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update162:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update172:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update192:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update20:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update202:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update65:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update71:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update73:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update74:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update77:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update91:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update101:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update241:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:-:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update85:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update80:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update241:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update92:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update72:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update66:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update60:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update40:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update212:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update111:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update121:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update131:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update141:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update151:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update161:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update171:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update181:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update191:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update201:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update211:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update45:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update51:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update25:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update31:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update5:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update11:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update221:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:8:update231:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:14:*:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:*:*:*:*:*:*:*:* (Version >= 11 and <= 11.0.6)

OR cpe:/a:oracle:openjdk:7:update251:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update231:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update221:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update211:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update201:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update191:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update181:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update171:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update161:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update151:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update101:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update111:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update121:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update131:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update141:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update1:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update10:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update11:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update13:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update15:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update17:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update2:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update21:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update25:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update3:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update4:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update40:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update45:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update5:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update51:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update55:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update6:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update60:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update65:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update67:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update7:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update72:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update76:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update9:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update91:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update95:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update97:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:7:update99:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:*:*:*:*:*:*:*:* (Version >= 13 and <= 13.0.2)

Configuration 3:

cpe:/a:netapp:cloud_backup:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:steelstore_cloud_integrated_storage:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:snapmanager:-:*:*:*:*:sap:*:*

OR cpe:/a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:storagegrid:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:storagegrid:*:*:*:*:*:*:*:* (Version >= 9.0.0 and <= 9.0.4)

OR cpe:/a:netapp:oncommand_insight:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:active_iq_unified_manager:*:*:*:*:*:windows:*:* (Version >= 7.3

OR cpe:/a:netapp:active_iq_unified_manager:*:*:*:*:*:vsphere:*:* (Version >= 9.5

OR cpe:/a:netapp:7-mode_transition_tool:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:e-series_performance_analyzer:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:e-series_santricity_os_controller:*:*:*:*:*:*:*:* (Version >= 11.0.0 and <= 11.60.1)

OR cpe:/a:netapp:e-series_santricity_web_services:-:*:*:*:*:web_services_proxy:*:*

OR cpe:/a:netapp:plug-in_for_symantec_netbackup:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:santricity_unified_manager:-:*:*:*:*:*:*:*

OR cpe:/a:netapp:snapmanager:-:-:*:*:*:oracle:*:*

Configuration 4:

cpe:/o:canonical:ubuntu_linux:18.04:*:*:*:lts:*:*:*

OR cpe:/o:canonical:ubuntu_linux:19.10:*:*:*:*:*:*:*

OR cpe:/o:canonical:ubuntu_linux:16.04:*:*:*:esm:*:*:*

Configuration 5:

cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

OR cpe:/o:opensuse:leap:15.1:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration RedHat 6:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration CCN 1:

cpe:/a:oracle:openjdk:11.0.6:*:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:13.0.2:*:*:*:*:*:*:*

OR cpe:/a:oracle:openjdk:14:*:*:*:*:*:*:*

AND

cpe:/a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_discovery:2.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_discovery:2.1.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_machine_learning:1.1.2:*:accelerator:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20202816	V	CVE-2020-2816	2023-06-22
oval:org.opensuse.security:def:7535	P	java-11-openjdk-11.0.19.0-150000.3.96.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:52004	P	Security update for net-snmp (Moderate)	2023-01-12
oval:org.opensuse.security:def:51954	P	Security update for sudo (Important)	2022-11-15
oval:org.opensuse.security:def:5305	P	Security update for curl (Low) (in QA)	2022-08-24
oval:org.opensuse.security:def:682	P	Security update for python-M2Crypto (Important)	2022-08-05
oval:org.opensuse.security:def:3667	P	Security update for python-M2Crypto (Important)	2022-08-05
oval:org.opensuse.security:def:3714	P	Security update for python-numpy (Moderate)	2022-08-03
oval:org.opensuse.security:def:3708	P	Security update for git (Important)	2022-07-26
oval:org.opensuse.security:def:3725	P	Security update for the Linux Kernel (Live Patch 0 for SLE 15 SP4) (Important)	2022-07-21
oval:org.opensuse.security:def:4642	P	Security update for the Linux Kernel (Important)	2022-07-13
oval:org.opensuse.security:def:3679	P	Security update for ImageMagick (Moderate)	2022-07-06
oval:org.opensuse.security:def:4640	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP5) (Important)	2022-07-06
oval:org.opensuse.security:def:3762	P	Security update for python-Twisted (Important)	2022-07-06
oval:org.opensuse.security:def:4630	P	Security update for the Linux Kernel (Live Patch 31 for SLE 12 SP5) (Important)	2022-06-28
oval:org.opensuse.security:def:3815	P	vino-3.20.2-5.8 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3019	P	autofs-5.1.3-1.17 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3029	P	bzip2-1.0.6-30.8.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:4635	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2022-06-28
oval:org.opensuse.security:def:3801	P	sysvinit-tools-2.88+-101.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3013	P	apache2-mod_nss-1.0.14-19.9.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3789	P	spice-vdagent-0.16.0-8.5.15 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3027	P	bubblewrap-0.3.3-1.31 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:5280	P	Security update for php74 (Important)	2022-06-23
oval:org.opensuse.security:def:2960	P	kernel-64kb-5.14.21-150400.22.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94586	P	java-11-openjdk-11.0.15.0-150000.3.80.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2980	P	libXfont2-2-2.0.3-1.17 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2948	P	gtk2-devel-2.24.33-150400.2.11 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2974	P	libXRes1-1.2.0-1.18 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2942	P	groff-1.22.4-150400.3.4 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2938	P	gptfdisk-1.0.8-150400.1.7 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2956	P	java-11-openjdk-11.0.15.0-150000.3.80.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:2989	P	libXvMC-devel-1.0.10-1.23 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:1681	P	Security update for qemu (Important) (in QA)	2022-06-13
oval:org.opensuse.security:def:86	P	java-11-openjdk-11.0.10.0-3.53.1 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:4622	P	Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP5) (Important)	2022-06-06
oval:org.opensuse.security:def:4623	P	Security update for the Linux Kernel (Live Patch 29 for SLE 12 SP5) (Important)	2022-06-06
oval:org.opensuse.security:def:4608	P	Security update for the Linux Kernel (Live Patch 23 for SLE 12 SP5) (Important)	2022-05-21
oval:org.opensuse.security:def:4595	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP5) (Important)	2022-05-09
oval:org.opensuse.security:def:4573	P	Security update for the Linux Kernel (Important)	2022-04-14
oval:org.opensuse.security:def:4574	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP5) (Important)	2022-04-14
oval:org.opensuse.security:def:4567	P	Security update for the Linux Kernel (Live Patch 21 for SLE 12 SP5) (Important)	2022-04-13
oval:org.opensuse.security:def:4709	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP5) (Important)	2022-03-29
oval:org.opensuse.security:def:112455	P	java-11-openjdk-11.0.12.0-3.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:112457	P	java-13-openjdk-13.0.8.0-3.1 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:94268	P	(Important)	2022-01-11
oval:org.opensuse.security:def:51763	P	Security update for java-1_8_0-ibm (Important) (in QA)	2022-01-04
oval:org.opensuse.security:def:64828	P	Security update for openssh (Important)	2021-12-22
oval:org.opensuse.security:def:46345	P	Security update for xorg-x11-server (Important)	2021-12-20
oval:org.opensuse.security:def:69774	P	Security update for log4j (Important)	2021-12-17
oval:org.opensuse.security:def:68316	P	Security update for the Linux Kernel (Live Patch 16 for SLE 15 SP2) (Important)	2021-12-14
oval:org.opensuse.security:def:4523	P	Security update for aaa_base (Moderate)	2021-12-03
oval:org.opensuse.security:def:5164	P	Security update for webkit2gtk3 (Important)	2021-12-01
oval:org.opensuse.security:def:49456	P	Security update for php72 (Moderate)	2021-11-19
oval:org.opensuse.security:def:49455	P	Security update for php74 (Moderate)	2021-11-18
oval:org.opensuse.security:def:4509	P	Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP5) (Important)	2021-11-17
oval:org.opensuse.security:def:5142	P	Security update for cairo (Low)	2021-10-22
oval:org.opensuse.security:def:4505	P	Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP5) (Important)	2021-10-14
oval:org.opensuse.security:def:4504	P	Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP5) (Important)	2021-10-14
oval:org.opensuse.security:def:4500	P	Security update for the Linux Kernel (Important)	2021-10-12
oval:org.opensuse.security:def:4496	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP5) (Important)	2021-10-12
oval:org.opensuse.security:def:4497	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP5) (Important)	2021-10-12
oval:org.opensuse.security:def:105959	P	java-11-openjdk-11.0.12.0-3.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:105960	P	java-13-openjdk-13.0.8.0-3.1 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:51664	P	Security update for the Linux Kernel (Live Patch 38 for SLE 12 SP3) (Important)	2021-09-23
oval:org.opensuse.security:def:4492	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2021-09-16
oval:org.opensuse.security:def:4479	P	Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP5) (Important)	2021-09-16
oval:org.opensuse.security:def:4489	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP5) (Important)	2021-09-16
oval:org.opensuse.security:def:64556	P	Security update for libsndfile (Critical)	2021-08-17
oval:org.opensuse.security:def:48334	P	vino-3.20.2-5.8 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46935	P	eog-3.20.4-7.7 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47642	P	hardlink-1.0-6.38 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48213	P	libusbmuxd4-1.0.10-2.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47695	P	libass5-0.10.2-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48198	P	libsqlite3-0-3.8.10.2-9.12.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:48199	P	libsrtp1-1.5.2-3.2.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:46904	P	chrony-2.3-3.110 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:47004	P	libXxf86dga1-1.1.4-3.58 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:2389	P	java-11-openjdk-javadoc-11.0.10.0-3.53.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:107647	P	java-11-openjdk-javadoc-11.0.7.0-3.42.4 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:100981	P	java-11-openjdk-javadoc-11.0.7.0-3.42.4 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63424	P	java-11-openjdk-javadoc-11.0.7.0-3.42.4 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2335	P	java-11-openjdk-javadoc-11.0.7.0-3.42.4 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:4279	P	Security update for the Linux Kernel (Important)	2021-08-10
oval:org.opensuse.security:def:63478	P	java-11-openjdk-javadoc-11.0.10.0-3.53.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:100862	P	java-11-openjdk-11.0.10.0-3.53.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62104	P	java-11-openjdk-11.0.10.0-3.53.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:1015	P	java-11-openjdk-11.0.10.0-3.53.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71845	P	java-11-openjdk-11.0.10.0-3.53.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:4463	P	Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP5) (Important)	2021-07-27
oval:org.opensuse.security:def:51619	P	Security update for the Linux Kernel (Important)	2021-07-22
oval:org.opensuse.security:def:68216	P	Security update for the Linux Kernel (Important)	2021-07-21
oval:org.opensuse.security:def:49123	P	Security update for containerd (Moderate)	2021-07-20
oval:org.opensuse.security:def:4443	P	Security update for the Linux Kernel (Live Patch 11 for SLE 12 SP5) (Important)	2021-07-15
oval:org.opensuse.security:def:4442	P	Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP5) (Important)	2021-07-14
oval:org.opensuse.security:def:65579	P	Security update for go1.15 (Important)	2021-06-30
oval:org.opensuse.security:def:64716	P	Security update for xterm (Important)	2021-06-18
oval:org.opensuse.security:def:4557	P	Security update for go1.16 (Moderate)	2021-06-18
oval:org.opensuse.security:def:51589	P	Security update for webkit2gtk3 (Important)	2021-06-17
oval:org.opensuse.security:def:69669	P	Security update for containerd, docker, runc (Important)	2021-06-11
oval:org.opensuse.security:def:48751	P	libwmf-0_2-7-0.2.8.4-242.3 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46698	P	libXRes1-1.0.7-3.54 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:72566	P	checkbashisms-2.15.1-1.49 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48659	P	yast2-users-3.1.57-16.7 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46841	P	sblim-sfcb-1.4.8-8.2 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46487	P	libipa_hbac0-1.11.5.1-5.11 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48899	P	empathy-3.12.13-8.3.28 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:48527	P	libneon27-0.30.0-3.64 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:46780	P	libupsclient1-2.7.1-4.84 on GA media (Moderate)	2021-06-08
oval:org.opensuse.security:def:64882	P	Security update for umoci (Important)	2021-06-04
oval:org.opensuse.security:def:51898	P	Security update for libwebp (Critical)	2021-06-02
oval:org.opensuse.security:def:93738	P	(Moderate)	2021-05-26
oval:org.opensuse.security:def:51555	P	Security update for cups (Important)	2021-04-30
oval:org.opensuse.security:def:4399	P	Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP5) (Important)	2021-04-28
oval:org.opensuse.security:def:4383	P	Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP5) (Important)	2021-04-07
oval:org.opensuse.security:def:4382	P	Security update for the Linux Kernel (Live Patch 6 for SLE 12 SP5) (Important)	2021-04-07
oval:org.opensuse.security:def:51182	P	Security update for the Linux Kernel (Live Patch 39 for SLE 12 SP2) (Important)	2021-03-17
oval:org.opensuse.security:def:52026	P	Security update for python (Moderate)	2021-03-16
oval:org.opensuse.security:def:52050	P	Security update for openldap2 (Important)	2021-03-03
oval:org.opensuse.security:def:64658	P	Security update for python-Jinja2 (Important)	2021-02-26
oval:org.opensuse.security:def:45824	P	Security update for java-1_7_1-ibm (Important)	2021-02-19
oval:org.opensuse.security:def:4732	P	Security update for the Linux Kernel (Moderate)	2021-01-12
oval:org.opensuse.security:def:51487	P	Security update for xen (Moderate)	2020-12-29
oval:org.opensuse.security:def:64449	P	Security update for clamav (Moderate)	2020-12-14
oval:org.opensuse.security:def:64448	P	Security update for gcc7 (Moderate)	2020-12-10
oval:org.opensuse.security:def:66418	P	Security update for curl (Moderate)	2020-12-09
oval:org.opensuse.security:def:4366	P	Security update for the Linux Kernel (Live Patch 5 for SLE 12 SP5) (Important)	2020-12-07
oval:org.opensuse.security:def:72163	P	libhogweed4-32bit-3.4-2.12 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63607	P	PackageKit-gstreamer-plugin-1.1.13-2.16 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62933	P	apache-pdfbox-1.8.16-1.68 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:61771	P	java-11-openjdk-11.0.7.0-3.42.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62908	P	nasm-2.13.02-1.17 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72682	P	libtidy-devel-5.4.0-3.2.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3909	P	graphite2-devel-1.3.1-10.3.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:100451	P	java-11-openjdk-11.0.7.0-3.42.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71512	P	java-11-openjdk-11.0.7.0-3.42.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:2319	P	nodejs10-10.19.0-1.18.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63404	P	apache-commons-beanutils-1.9.4-1.68 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:116675	P	java-11-openjdk-11.0.7.0-3.42.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3888	P	fontconfig-devel-2.11.1-7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3912	P	gstreamer-devel-1.8.3-9.5 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71669	P	nmap-7.70-3.12.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3919	P	hplip-devel-3.16.11-1.33 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:71556	P	libfreebl3-3.47.1-3.37.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63111	P	apache2-mod_wsgi-4.5.18-2.27 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62905	P	libgit2-26-0.26.8-3.8.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72279	P	libkpathsea6-6.2.3-11.8.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:107117	P	java-11-openjdk-11.0.7.0-3.42.4 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3871	P	cups-ddk-1.7.5-20.23.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:62901	P	glibc-devel-32bit-2.26-8.21 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3915	P	gtk2-devel-2.24.31-9.6.28 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:49426	P	Security update for python3 (Important)	2020-12-02
oval:org.opensuse.security:def:4762	P	Security update for apache2-mod_jk (Important)	2020-12-02
oval:org.opensuse.security:def:5451	P	Security update for java-11-openjdk (Important)	2020-12-02
oval:org.opensuse.security:def:4354	P	Security update for the Linux Kernel (Live Patch 18 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4265	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4257	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4769	P	Security update for 389-ds (Important)	2020-12-02
oval:org.opensuse.security:def:4785	P	Security update for 389-ds (Important)	2020-12-02
oval:org.opensuse.security:def:4321	P	Security update for the Linux Kernel (Live Patch 7 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4375	P	Security update for the Linux Kernel (Live Patch 9 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4775	P	Security update for libvirt (Important)	2020-12-02
oval:org.opensuse.security:def:5423	P	Security update for spamassassin (Important)	2020-12-02
oval:org.opensuse.security:def:24714	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:49324	P	rpm-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50225	P	freerdp on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24438	P	Security update for screen (Moderate)	2020-12-01
oval:org.opensuse.security:def:24186	P	Security update for tomcat (Moderate)	2020-12-01
oval:org.opensuse.security:def:46257	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:64312	P	libXvMC-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24855	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:69329	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:53626	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:51454	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:52165	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:50946	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:52278	P	Security update for LibVNCServer (Important)	2020-12-01
oval:org.opensuse.security:def:45811	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:51220	P	Security update for netpbm (Moderate)	2020-12-01
oval:org.opensuse.security:def:24117	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:50688	P	Security update for nfs-utils (Moderate)	2020-12-01
oval:org.opensuse.security:def:51033	P	Security update for docker (Moderate)	2020-12-01
oval:org.opensuse.security:def:52060	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:52940	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50608	P	Security update for bind (Important)	2020-12-01
oval:org.opensuse.security:def:50535	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:52112	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:50226	P	gegl-0_3 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50050	P	apache2-mod_security2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50670	P	Security update for u-boot (Moderate)	2020-12-01
oval:org.opensuse.security:def:50665	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:49601	P	texlive-12many on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49113	P	grub2 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:24799	P	Security update for krb5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50774	P	Security update for openldap2 (Important)	2020-12-01
oval:org.opensuse.security:def:74903	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:24663	P	Security update for qemu (Moderate)	2020-12-01
oval:org.opensuse.security:def:65489	P	Security update for MozillaFirefox, MozillaFirefox-branding-SLE (Important)	2020-12-01
oval:org.opensuse.security:def:24385	P	Security update for kernel-source (Important)	2020-12-01
oval:org.opensuse.security:def:49355	P	wpa_supplicant on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49069	P	conntrack-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:64969	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:24126	P	Security update for the Linux Kernel (Live Patch 30 for SLE 12 SP3) (Important)	2020-12-01
oval:org.opensuse.security:def:46129	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:63983	P	Security update for openssl-1_0_0 (Moderate)	2020-12-01
oval:org.opensuse.security:def:45812	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:74770	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:73109	P	java-11-openjdk on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51349	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:68823	P	Security update for ceph, ceph-iscsi, ses-manual_en (Moderate)	2020-12-01
oval:org.opensuse.security:def:50810	P	Security update for libjpeg-turbo (Moderate)	2020-12-01
oval:org.opensuse.security:def:51488	P	Security update for osc (Moderate)	2020-12-01
oval:org.opensuse.security:def:52200	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:53411	P	Security update for nodejs8 (Moderate)	2020-12-01
oval:org.opensuse.security:def:51057	P	Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Moderate)	2020-12-01
oval:org.opensuse.security:def:51404	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:53004	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:50666	P	Security update for expat (Moderate)	2020-12-01
oval:org.opensuse.security:def:50871	P	Security update for postgresql10 (Important)	2020-12-01
oval:org.opensuse.security:def:72991	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:50787	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:50378	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:50445	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:49952	P	libapr-util1-dbd-mysql on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49259	P	libwireshark13 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:65892	P	Security update for the Linux Kernel (Live Patch 11 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:49474	P	libvpx-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50701	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:50702	P	Security update for cups (Important)	2020-12-01
oval:org.opensuse.security:def:24516	P	Security update for webkit2gtk3 (Important)	2020-12-01
oval:org.opensuse.security:def:24813	P	Security update for dnsmasq (Moderate)	2020-12-01
oval:org.opensuse.security:def:24308	P	Security update for libcgroup (Moderate)	2020-12-01
oval:org.opensuse.security:def:25527	P	Security update for java-11-openjdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:45941	P	Security update for spamassassin (Important)	2020-12-01
oval:org.opensuse.security:def:63754	P	Security update for python3 (Important)	2020-12-01
oval:org.opensuse.security:def:52093	P	Security update for libvpx (Moderate)	2020-12-01
oval:org.opensuse.security:def:69226	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15 SP1) (Important)	2020-12-01
oval:org.opensuse.security:def:53554	P	Security update for libvirt (Important)	2020-12-01
oval:org.opensuse.security:def:68926	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:51867	P	Security update for ppp (Important)	2020-12-01
oval:org.opensuse.security:def:53481	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:50788	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:51324	P	Security update for libexif (Moderate)	2020-12-01
oval:org.opensuse.security:def:25493	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:50822	P	Security update for cifs-utils (Moderate)	2020-12-01
oval:org.opensuse.security:def:51303	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:52135	P	Security update for ceph (Important)	2020-12-01
oval:org.opensuse.security:def:50767	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:50605	P	Security update for taglib (Low)	2020-12-01
oval:org.opensuse.security:def:66326	P	Security update for MozillaThunderbird (Moderate)	2020-12-01
oval:org.opensuse.security:def:50246	P	libreoffice on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50207	P	libwpd-0_10-10 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:65982	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:49806	P	perl-doc on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:49197	P	libmpg123-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50756	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:105221	P	Security update for java-11-openjdk (Important)	2020-07-07
oval:org.opensuse.security:def:91566	P	Security update for java-11-openjdk (Important)	2020-07-07
oval:org.opensuse.security:def:98531	P	Security update for java-11-openjdk (Important)	2020-07-07
oval:org.opensuse.security:def:110565	P	Security update for java-11-openjdk (Important)	2020-06-02
oval:org.opensuse.security:def:103949	P	Security update for java-11-openjdk (Important)	2020-05-29
oval:org.opensuse.security:def:100202	P	(Important)	2020-05-29
oval:org.opensuse.security:def:90294	P	Security update for java-11-openjdk (Important)	2020-05-29
oval:org.opensuse.security:def:104600	P	Security update for java-11-openjdk (Important)	2020-05-29
oval:org.opensuse.security:def:90945	P	Security update for java-11-openjdk (Important)	2020-05-29
oval:org.opensuse.security:def:97910	P	Security update for java-11-openjdk (Important)	2020-05-29
oval:org.opensuse.security:def:99865	P	(Important)	2020-05-29
oval:org.opensuse.security:def:75306	P	Security update for java-11-openjdk (Important)	2020-05-29
oval:com.redhat.rhsa:def:20201509	P	RHSA-2020:1509: java-11-openjdk security update (Important)	2020-04-21
oval:com.redhat.rhsa:def:20201514	P	RHSA-2020:1514: java-11-openjdk security update (Important)	2020-04-21