Vulnerability CVE-2020-7060

Vulnerability Name:

CVE-2020-7060 (CCN-175204)

Assigned:

2020-01-21

Published:

2020-01-21

Updated:

2022-07-01

Summary:

When using certain mbstring functions to convert multibyte encodings, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause function mbfl_filt_conv_big5_wchar to read past the allocated buffer. This may lead to information disclosure or crash.

CVSS v3 Severity:

9.1 Critical (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H)
7.9 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): None Availibility (A): High

7.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
6.8 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Local Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): Required
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

6.5 Medium (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L)
5.7 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): None Availibility (A): Low

CVSS v2 Severity:

6.4 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): None Availibility (A): Partial

6.8 Medium (CCN CVSS v2 Vector: AV:L/AC:L/Au:S/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Local Access Complexity (AC): Low Athentication (Au): Single_Instance
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-125
CWE-119

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2020-7060

Source: SUSE
Type: Mailing List, Third Party Advisory
openSUSE-SU-2020:0341

Source: CCN
Type: Sec Bug #79037
global buffer-overflow in `mbfl_filt_conv_big5_wchar`

Source: MISC
Type: Exploit, Patch, Vendor Advisory
https://bugs.php.net/bug.php?id=79037

Source: XF
Type: UNKNOWN
php-cve20207060-bo(175204)

Source: MLIST
Type: Mailing List, Third Party Advisory
[debian-lts-announce] 20200228 [SECURITY] [DLA 2124-1] php5 security update

Source: BUGTRAQ
Type: Mailing List, Third Party Advisory
20200218 [SECURITY] [DSA 4626-1] php7.3 security update

Source: BUGTRAQ
Type: Mailing List, Third Party Advisory
20200219 [SECURITY] [DSA 4628-1] php7.0 security update

Source: BUGTRAQ
Type: Mailing List, Third Party Advisory
20210116 Re: [SECURITY] [DSA 4628-1] php7.0 security update

Source: GENTOO
Type: Third Party Advisory
GLSA-202003-57

Source: CONFIRM
Type: Mailing List, Third Party Advisory
https://security.netapp.com/advisory/ntap-20200221-0002/

Source: UBUNTU
Type: Patch, Third Party Advisory
USN-4279-1

Source: DEBIAN
Type: Third Party Advisory
DSA-4626

Source: DEBIAN
Type: Third Party Advisory
DSA-4628

Source: CCN
Type: IBM Security Bulletin 6208333 (API Connect)
IBM API Connect is impacted by vulnerabilities in PHP (CVE-2020-7060, CVE-2020-7059)

Source: CCN
Type: Oracle Critical Patch Update Advisory - April 2021
Oracle Critical Patch Update Advisory - April 2021

Source: MISC
Type: Third Party Advisory
https://www.oracle.com/security-alerts/cpuApr2021.html

Source: CCN
Type: Oracle CPUJul2020
Oracle Critical Patch Update Advisory - July 2020

Source: MISC
Type: Third Party Advisory
https://www.oracle.com/security-alerts/cpujul2020.html

Source: CCN
Type: PHP Web site
PHP 7 ChangeLog

Source: CONFIRM
Type: Patch, Third Party Advisory
https://www.tenable.com/security/tns-2021-14

Vulnerable Configuration:

Configuration 1:

cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.4.0 and < 7.4.2)

OR cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.2.0 and < 7.2.27)

OR cpe:/a:php:php:*:*:*:*:*:*:*:* (Version >= 7.3.0 and < 7.3.14)

Configuration 2:

cpe:/a:tenable:tenable.sc:*:*:*:*:*:*:*:* (Version < 5.19.0)

Configuration 3:

cpe:/a:oracle:communications_diameter_signaling_router:*:*:*:*:*:*:*:* (Version >= 8.0 and <= 8.4)

Configuration 4:

cpe:/o:opensuse:leap:15.1:*:*:*:*:*:*:*

Configuration 5:

cpe:/o:debian:debian_linux:8.0:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration CCN 1:

cpe:/a:php:php:7.3.0:-:*:*:*:*:*:*

OR cpe:/a:php:php:7.2.0:-:*:*:*:*:*:*

OR cpe:/a:php:php:7.4.0:-:*:*:*:*:*:*

OR cpe:/a:php:php:7.4.1:-:*:*:*:*:*:*

AND

cpe:/a:ibm:api_connect:5.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:5.0.8.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:2018.4.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:2018.4.1.10:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:52002	P	Security update for haproxy (Critical)	2023-02-14
oval:org.opensuse.security:def:51992	P	Security update for vim (Moderate)	2023-01-30
oval:org.opensuse.security:def:51973	P	Security update for cni (Important)	2022-12-20
oval:org.opensuse.security:def:20207060	V	CVE-2020-7060	2022-09-02
oval:org.opensuse.security:def:4738	P	Security update for oracleasm (Important)	2022-08-10
oval:org.opensuse.security:def:3153	P	libapr-util1-1.5.3-2.8.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3215	P	libncurses5-32bit-5.9-64.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3221	P	libopenssl-1_0_0-devel-1.0.2p-3.11.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3145	P	libXrender1-0.9.8-7.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3203	P	libldb1-1.5.4-1.28 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3126	P	libICE6-1.0.8-12.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3194	P	libjbig2-2.0-12.13 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3218	P	libnghttp2-14-1.7.1-1.84 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3112	P	java-1_7_0-openjdk-1.7.0.231-43.27.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3164	P	libdcerpc-binding0-32bit-4.10.5+git.129.35f7bb6e177-1.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3217	P	libnetpbm11-10.66.3-8.7.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3100	P	gvim-7.4.326-17.3.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3105	P	ibus-1.5.13-15.11.2 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:4297	P	Security update for drbd (Important)	2022-06-22
oval:org.opensuse.security:def:5274	P	Security update for webkit2gtk3 (Important)	2022-06-15
oval:org.opensuse.security:def:4616	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP5) (Important)	2022-06-05
oval:org.opensuse.security:def:4609	P	Security update for the Linux Kernel (Live Patch 24 for SLE 12 SP5) (Important)	2022-05-21
oval:org.opensuse.security:def:4611	P	Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP5) (Important)	2022-05-21
oval:org.opensuse.security:def:5249	P	Security update for MozillaFirefox (Important)	2022-05-19
oval:org.opensuse.security:def:4604	P	Security update for the Linux Kernel (Important)	2022-05-16
oval:org.opensuse.security:def:4754	P	Security update for openldap2 (Important)	2022-05-16
oval:org.opensuse.security:def:4599	P	Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP5) (Important)	2022-05-10
oval:org.opensuse.security:def:4596	P	Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP5) (Important)	2022-05-09
oval:org.opensuse.security:def:4588	P	Security update for the Linux Kernel (Live Patch 25 for SLE 12 SP5) (Important)	2022-04-25
oval:org.opensuse.security:def:4592	P	Security update for the Linux Kernel (Live Patch 28 for SLE 12 SP5) (Important)	2022-04-25
oval:org.opensuse.security:def:4591	P	Security update for the Linux Kernel (Live Patch 27 for SLE 12 SP5) (Important)	2022-04-25
oval:org.opensuse.security:def:4577	P	Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP5) (Important)	2022-04-15
oval:org.opensuse.security:def:4706	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP5) (Important)	2022-03-29
oval:org.opensuse.security:def:4564	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP5) (Important)	2022-03-29
oval:org.opensuse.security:def:4740	P	Security update for the Linux RT Kernel (Critical)	2022-02-22
oval:org.opensuse.security:def:4678	P	Security update for the Linux Kernel (Live Patch 16 for SLE 12 SP5) (Critical)	2022-02-16
oval:org.opensuse.security:def:4661	P	Security update for the Linux Kernel (Live Patch 18 for SLE 12 SP5) (Important)	2022-02-01
oval:org.opensuse.security:def:4701	P	Security update for the Linux Kernel (Important)	2022-01-13
oval:org.opensuse.security:def:4543	P	Security update for the Linux Kernel (Live Patch 19 for SLE 12 SP5) (Important)	2021-12-14
oval:org.opensuse.security:def:4536	P	Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP5) (Important)	2021-12-14
oval:org.opensuse.security:def:4236	P	Security update for openssh (Important)	2021-12-06
oval:org.opensuse.security:def:65681	P	Security update for the Linux Kernel (Important)	2021-12-06
oval:org.opensuse.security:def:69553	P	Security update for busybox (Important)	2021-10-27
oval:org.opensuse.security:def:38662	P	Security update for MozillaFirefox (Important)	2021-10-01
oval:org.opensuse.security:def:4220	P	Security update for grilo (Important)	2021-09-23
oval:org.opensuse.security:def:64578	P	Security update for hivex (Moderate)	2021-09-23
oval:org.opensuse.security:def:4492	P	Security update for the Linux Kernel (Live Patch 22 for SLE 12 SP5) (Important)	2021-09-16
oval:org.opensuse.security:def:38770	P	Security update for cpio (Important)	2021-08-23
oval:org.opensuse.security:def:4478	P	Security update for the Linux Kernel (Live Patch 8 for SLE 12 SP5) (Important)	2021-08-17
oval:org.opensuse.security:def:4466	P	Security update for the Linux Kernel (Live Patch 20 for SLE 12 SP5) (Important)	2021-08-17
oval:org.opensuse.security:def:4474	P	Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP5) (Important)	2021-08-17
oval:org.opensuse.security:def:14313	P	libxcb-dri2-0-1.10-3.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14387	P	sudo-1.8.20p2-1.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15020	P	liblcms1-1.19-17.28 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14109	P	cron-4.2-58.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14163	P	gv-3.7.4-1.36 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14288	P	libsnmp30-32bit-5.7.3-4.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14368	P	quagga-0.99.22.1-15.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14318	P	libz1-1.2.8-11.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14041	P	sysconfig-0.84.0-13.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15025	P	liblua5_2-32bit-5.2.4-6.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14114	P	curl-7.37.0-36.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14195	P	libXfont1-1.5.1-10.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14357	P	python-2.7.13-27.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14011	P	ppc64-diag-2.7.1-5.6 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14293	P	libsrtp1-1.5.2-2.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14373	P	rrdtool-1.4.7-20.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14019	P	python-pywbem-0.7.0-4.3 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15042	P	libopenssl1_1-1.1.1c-2.17.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14046	P	tcpdump-4.5.1-10.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14176	P	java-1_8_0-ibm-1.8.0_sr4.5-29.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14200	P	libXrandr2-1.5.0-6.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14362	P	python-libxml2-2.9.4-45.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14382	P	squashfs-4.3-6.2 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14016	P	python-imaging-1.1.7-21.15 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14024	P	res-signingkeys-3.0.18-26.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:15047	P	libpango-1_0-0-1.40.1-9.5 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14158	P	gstreamer-plugins-base-1.8.3-12.11 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:14181	P	krb5-1.12.5-39.1 on GA media (Moderate)	2021-08-16
oval:org.opensuse.security:def:63469	P	ffmpeg-3.4.2-9.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:62767	P	libSDL2-2_0-0-2.0.8-9.63 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62763	P	libICE6-32bit-1.0.9-1.25 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62795	P	liblouis-data-3.11.0-1.42 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62770	P	libXinerama1-32bit-1.1.3-1.22 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:72471	P	gnome-settings-daemon-3.34.2+0-4.3.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:4208	P	Security update for webkit2gtk3 (Important)	2021-08-03
oval:org.opensuse.security:def:4461	P	Security update for the Linux Kernel (Live Patch 9 for SLE 12 SP5) (Important)	2021-07-27
oval:org.opensuse.security:def:4448	P	Security update for the Linux Kernel (Live Patch 12 for SLE 12 SP5) (Important)	2021-07-22
oval:org.opensuse.security:def:38024	P	Security update for csync2 (Moderate)	2021-07-12
oval:org.opensuse.security:def:51920	P	Security update for openexr (Important)	2021-06-24
oval:org.opensuse.security:def:4135	P	Security update for libjpeg-turbo (Moderate)	2021-06-11
oval:org.opensuse.security:def:64520	P	Security update for the Linux Kernel (Important)	2021-06-08
oval:org.opensuse.security:def:38814	P	Security update for dhcp (Important)	2021-06-01
oval:org.opensuse.security:def:69118	P	Security update for postgresql13 (Moderate)	2021-05-27
oval:org.opensuse.security:def:4411	P	Security update for the Linux Kernel (Live Patch 15 for SLE 12 SP5) (Important)	2021-05-25
oval:org.opensuse.security:def:64690	P	Security update for libxml2 (Important)	2021-05-19
oval:org.opensuse.security:def:74632	P	Security update for python3 (Moderate)	2021-05-11
oval:org.opensuse.security:def:4122	P	Security update for webkit2gtk3 (Important)	2021-04-29
oval:org.opensuse.security:def:51553	P	Security update for tomcat (Important)	2021-04-29
oval:org.opensuse.security:def:69448	P	Security update for xen (Important)	2021-04-19
oval:org.opensuse.security:def:5016	P	Security update for the Linux Kernel (Important)	2021-04-15
oval:org.opensuse.security:def:4721	P	Security update for the Linux Kernel (Important)	2021-04-13
oval:org.opensuse.security:def:51186	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP2) (Important)	2021-03-17
oval:org.opensuse.security:def:52026	P	Security update for python (Moderate)	2021-03-16
oval:org.opensuse.security:def:4177	P	Security update for python-bottle (Important)	2021-02-16
oval:org.opensuse.security:def:51729	P	Security update for the Linux Kernel (Important)	2021-02-12
oval:org.opensuse.security:def:4731	P	Security update for the Linux Kernel (Important)	2021-02-11
oval:org.opensuse.security:def:51719	P	Security update for the Linux Kernel (Live Patch 34 for SLE 12 SP3) (Important)	2021-02-10
oval:org.opensuse.security:def:51588	P	Security update for ImageMagick (Important)	2021-01-22
oval:org.opensuse.security:def:51151	P	Security update for java-1_8_0-ibm (Moderate)	2021-01-05
oval:org.opensuse.security:def:4114	P	Security update for PackageKit (Low)	2020-12-22
oval:org.opensuse.security:def:38809	P	Security update for cyrus-sasl (Important)	2020-12-18
oval:org.opensuse.security:def:4368	P	Security update for the Linux Kernel (Live Patch 7 for SLE 12 SP5) (Important)	2020-12-07
oval:org.opensuse.security:def:62973	P	perl-Config-IniFiles-2.94-1.23 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63616	P	gegl-0_3-0.3.34-1.30 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3859	P	bash-devel-4.3-83.23.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:72355	P	gnome-shell-3.34.4+4-1.58 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:63266	P	gtk-vnc-devel-1.0.0-2.35 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:3872	P	cyrus-sasl-devel-2.1.26-8.7.1 on GA media (Moderate)	2020-12-03
oval:org.opensuse.security:def:5566	P	Security update for php7 (Important)	2020-12-02
oval:org.opensuse.security:def:4349	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:4870	P	Security update for dpdk (Moderate)	2020-12-02
oval:org.opensuse.security:def:4744	P	Security update for rsyslog (Moderate)	2020-12-02
oval:org.opensuse.security:def:4897	P	Security update for dpdk (Critical)	2020-12-02
oval:org.opensuse.security:def:5392	P	Security update for openldap2 (Important)	2020-12-02
oval:org.opensuse.security:def:4342	P	Security update for the Linux Kernel (Live Patch 14 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4356	P	Security update for the Linux Kernel (Important)	2020-12-02
oval:org.opensuse.security:def:4344	P	Security update for the Linux Kernel (Live Patch 12 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4884	P	Security update for salt (Moderate)	2020-12-02
oval:org.opensuse.security:def:4352	P	Security update for the Linux Kernel (Live Patch 16 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4838	P	Security update for mariadb, mariadb-connector-c (Important)	2020-12-02
oval:org.opensuse.security:def:5535	P	Security update for python-waitress (Moderate)	2020-12-02
oval:org.opensuse.security:def:4317	P	Security update for the Linux Kernel (Live Patch 4 for SLE 15) (Important)	2020-12-02
oval:org.opensuse.security:def:4813	P	Security update for ovmf (Important)	2020-12-02
oval:org.opensuse.security:def:4994	P	Security update for nodejs8 (Important)	2020-12-02
oval:org.opensuse.security:def:5420	P	Security update for php7 (Important)	2020-12-02
oval:org.opensuse.security:def:4877	P	Security update for xen (Important)	2020-12-02
oval:org.opensuse.security:def:18440	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:18282	P	Security update for git (Moderate)	2020-12-01
oval:org.opensuse.security:def:18481	P	Fixing security issues on OBS toolchain (Important)	2020-12-01
oval:org.opensuse.security:def:53523	P	Security update for samba (Moderate)	2020-12-01
oval:org.opensuse.security:def:50223	P	enigmail on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50793	P	Security update for perl-XML-Twig (Moderate)	2020-12-01
oval:org.opensuse.security:def:38842	P	cyrus-sasl-digestmd5-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:65771	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:18031	P	Security update for ghostscript (Important)	2020-12-01
oval:org.opensuse.security:def:18402	P	Security update for systemd (Moderate)	2020-12-01
oval:org.opensuse.security:def:18503	P	Security update for poppler (Moderate)	2020-12-01
oval:org.opensuse.security:def:18039	P	Security update for python3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:51447	P	Security update for graphviz (Moderate)	2020-12-01
oval:org.opensuse.security:def:51454	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:38726	P	libsoup-2_4-1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50966	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:19179	P	Security update for php72 (Important)	2020-12-01
oval:org.opensuse.security:def:49618	P	eog on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38114	P	ImageMagick-config-6-SUSE on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18657	P	Recommended update for php7 (Moderate)	2020-12-01
oval:org.opensuse.security:def:69015	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50631	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:18083	P	Security update for freeradius-server (Moderate)	2020-12-01
oval:org.opensuse.security:def:63845	P	Security update for permissions (Moderate)	2020-12-01
oval:org.opensuse.security:def:51867	P	Security update for ppp (Important)	2020-12-01
oval:org.opensuse.security:def:52309	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:39525	P	Security update for php72 (Important)	2020-12-01
oval:org.opensuse.security:def:50654	P	Security update for python-SQLAlchemy (Important)	2020-12-01
oval:org.opensuse.security:def:38256	P	libXinerama1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19389	P	Security update for spice-gtk (Moderate)	2020-12-01
oval:org.opensuse.security:def:53447	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:18382	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:18246	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:52110	P	Security update for libmspack (Low)	2020-12-01
oval:org.opensuse.security:def:50915	P	Security update for libvpx (Moderate)	2020-12-01
oval:org.opensuse.security:def:50123	P	nodejs8 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38502	P	tpm2.0-tools on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:72906	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:18292	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:18491	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:18515	P	Security update for unixODBC (Moderate)	2020-12-01
oval:org.opensuse.security:def:53666	P	Security update for libX11 (Important)	2020-12-01
oval:org.opensuse.security:def:38018	P	pam_krb5 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51276	P	Security update for MozillaFirefox (Moderate)	2020-12-01
oval:org.opensuse.security:def:51290	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:38667	P	libexif12 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50892	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:66217	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:18041	P	Security update for libtcnative-1-0 (Moderate)	2020-12-01
oval:org.opensuse.security:def:38030	P	perl-XML-LibXML on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18624	P	Security update for libgit2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18727	P	Security update for wireshark (Moderate)	2020-12-01
oval:org.opensuse.security:def:39562	P	Security update for php72 (Important)	2020-12-01
oval:org.opensuse.security:def:18049	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50719	P	Security update for samba (Important)	2020-12-01
oval:org.opensuse.security:def:52134	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:52101	P	Security update for ant (Moderate)	2020-12-01
oval:org.opensuse.security:def:19189	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50632	P	Security update for glibc (Moderate)	2020-12-01
oval:org.opensuse.security:def:38119	P	accountsservice on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50756	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:18296	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18215	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:52242	P	Security update for binutils (Moderate)	2020-12-01
oval:org.opensuse.security:def:50779	P	Security update for cairo (Moderate)	2020-12-01
oval:org.opensuse.security:def:49972	P	python3-pywbem on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38412	P	logwatch on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53595	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:18256	P	Security update for xen (Important)	2020-12-01
oval:org.opensuse.security:def:64311	P	libXv-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51039	P	Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork, runc (Important)	2020-12-01
oval:org.opensuse.security:def:38507	P	unrar on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38882	P	telepathy-gabble on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38019	P	pam_ssh on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18512	P	Security update for mariadb (Important)	2020-12-01
oval:org.opensuse.security:def:18424	P	Security update for quagga (Important)	2020-12-01
oval:org.opensuse.security:def:18715	P	Security update for tiff (Important)	2020-12-01
oval:org.opensuse.security:def:18525	P	Security update for mercurial (Moderate)	2020-12-01
oval:org.opensuse.security:def:38023	P	perl-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:51423	P	Security update for python3 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50626	P	Security update for ruby-bundled-gems-rpmhelper, ruby2.5 (Important)	2020-12-01
oval:org.opensuse.security:def:52062	P	Security update for libgcrypt (Moderate)	2020-12-01
oval:org.opensuse.security:def:18253	P	Security update for jasper (Moderate)	2020-12-01
oval:org.opensuse.security:def:38035	P	ppc64-diag on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19153	P	Security update for gegl (Moderate)	2020-12-01
oval:org.opensuse.security:def:39567	P	Security update for php5 (Moderate)	2020-12-01
oval:org.opensuse.security:def:18261	P	Security update for libsndfile (Moderate)	2020-12-01
oval:org.opensuse.security:def:18158	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:51833	P	Security update for libqt5-qtbase (Moderate)	2020-12-01
oval:org.opensuse.security:def:52273	P	Security update for containerd, docker, docker-runc, golang-github-docker-libnetwork (Moderate)	2020-12-01
oval:org.opensuse.security:def:52247	P	Security update for python (Moderate)	2020-12-01
oval:org.opensuse.security:def:19415	P	Security update for php72 (Important)	2020-12-01
oval:org.opensuse.security:def:50757	P	Security update for libxml2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:49765	P	zlib-devel-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38354	P	libproxy1 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:74765	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:50878	P	Security update for mutt (Important)	2020-12-01
oval:org.opensuse.security:def:18225	P	Security update for ImageMagick (Moderate)	2020-12-01
oval:org.opensuse.security:def:64310	P	libXtst-devel on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53377	P	Security update for virt-bootstrap (Moderate)	2020-12-01
oval:org.opensuse.security:def:50901	P	Security update for spamassassin (Important)	2020-12-01
oval:org.opensuse.security:def:51023	P	Security update for libssh2_org (Moderate)	2020-12-01
oval:org.opensuse.security:def:38417	P	minicom on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38775	P	perl-XML-LibXML on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38837	P	ImageMagick on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:53740	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:18474	P	Security update for binutils (Moderate)	2020-12-01
oval:org.opensuse.security:def:18392	P	Security update for openslp (Moderate)	2020-12-01
oval:org.opensuse.security:def:64418	P	mozilla-nspr-32bit on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18493	P	Security update for java-1_7_1-ibm (Important)	2020-12-01
oval:org.opensuse.security:def:72788	P	Security update for MozillaFirefox (Important)	2020-12-01
oval:org.opensuse.security:def:51318	P	Security update for exiv2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:50382	P	Security update for nmap (Moderate)	2020-12-01
oval:org.opensuse.security:def:38721	P	libraptor2-0 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:50860	P	Security update for java-11-openjdk (Moderate)	2020-12-01
oval:org.opensuse.security:def:38887	P	bash-lang on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18434	P	Security update for postgresql96 (Important)	2020-12-01
oval:org.opensuse.security:def:18751	P	Security update for the Linux Kernel (Important)	2020-12-01
oval:org.opensuse.security:def:66125	P	Security update for mozilla-nspr, mozilla-nss (Moderate)	2020-12-01
oval:org.opensuse.security:def:49617	P	emacs-x11 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:18073	P	Security update for tiff (Moderate)	2020-12-01
oval:org.opensuse.security:def:52201	P	Security update for openldap2 (Moderate)	2020-12-01
oval:org.opensuse.security:def:52169	P	Security update for postgresql10 and postgresql12 (Moderate)	2020-12-01
oval:org.opensuse.security:def:39520	P	Security update for nodejs4 (Important)	2020-12-01
oval:org.opensuse.security:def:49637	P	gtk2-data on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:38251	P	libXext6 on GA media (Moderate)	2020-12-01
oval:org.opensuse.security:def:19163	P	Security update for xmlgraphics-batik (Moderate)	2020-12-01
oval:org.opensuse.security:def:52304	P	Security update for php7 (Important)	2020-12-01
oval:org.opensuse.security:def:18168	P	Security update for curl (Moderate)	2020-12-01
oval:org.opensuse.security:def:64174	P	Security update for java-1_7_0-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:52390	P	Security update for rust, rust-cbindgen (Moderate)	2020-12-01
oval:org.opensuse.security:def:50879	P	Security update for ipmitool (Important)	2020-12-01
oval:org.opensuse.security:def:50788	P	Security update for java-11-openjdk (Important)	2020-12-01
oval:org.opensuse.security:def:38359	P	libqpdf18 on GA media (Moderate)	2020-12-01
oval:com.redhat.rhsa:def:20203662	P	RHSA-2020:3662: php:7.3 security, bug fix, and enhancement update (Moderate)	2020-09-08
oval:org.opensuse.security:def:110427	P	Security update for php7 (Important)	2020-03-15
oval:org.opensuse.security:def:91161	P	Security update for php7 (Important)	2020-03-09
oval:org.opensuse.security:def:91821	P	Security update for php7 (Important)	2020-03-09
oval:org.opensuse.security:def:104816	P	Security update for php7 (Important)	2020-03-09
oval:org.opensuse.security:def:98126	P	Security update for php7 (Important)	2020-03-09
oval:org.opensuse.security:def:75522	P	Security update for php7 (Important)	2020-03-09
oval:org.opensuse.security:def:98771	P	Security update for php7 (Important)	2020-03-09
oval:org.opensuse.security:def:126146	P	Security update for php5 (Moderate)	2020-02-28
oval:org.opensuse.security:def:126136	P	Security update for php72 (Important)	2020-02-18
oval:com.ubuntu.bionic:def:202070600000000	V	CVE-2020-7060 on Ubuntu 18.04 LTS (bionic) - medium.	2020-02-10
oval:com.ubuntu.xenial:def:202070600000000	V	CVE-2020-7060 on Ubuntu 16.04 LTS (xenial) - medium.	2020-02-10

BACK