Vulnerability CVE-2021-23840 - CERT Civis.Net

Vulnerability Name:

CVE-2021-23840 (CCN-196848)

Assigned:

2021-02-16

Published:

2021-02-16

Updated:

2022-08-29

Summary:

Calls to EVP_CipherUpdate, EVP_EncryptUpdate and EVP_DecryptUpdate may overflow the output length argument in some cases where the input length is close to the maximum permissable length for an integer on the platform. In such cases the return value from the function call will be 1 (indicating success), but the output length value will be negative. This could cause applications to behave incorrectly or crash. OpenSSL versions 1.1.1i and below are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1j. OpenSSL versions 1.0.2x and below are affected by this issue. However OpenSSL 1.0.2 is out of support and no longer receiving public updates. Premium support customers of OpenSSL 1.0.2 should upgrade to 1.0.2y. Other users should upgrade to 1.1.1j. Fixed in OpenSSL 1.1.1j (Affected 1.1.1-1.1.1i). Fixed in OpenSSL 1.0.2y (Affected 1.0.2-1.0.2x).

CVSS v3 Severity:

7.5 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

7.5 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

7.5 High (REDHAT CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H)
6.5 Medium (REDHAT Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H/E:U/RL:O/RC:C)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): High

CVSS v2 Severity:

5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Partial

7.8 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): None Integrity (I): None Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Denial of Service

References:

Source: MITRE
Type: CNA
CVE-2021-23840

Source: CONFIRM
Type: Third Party Advisory
https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf

Source: XF
Type: UNKNOWN
openssl-cve202123840-dos(196848)

Source: CONFIRM
Type: Patch, Vendor Advisory
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=6a51b9e1d0cf0bf8515f7201b68fb0a3482b3dc1

Source: CONFIRM
Type: Broken Link
https://git.openssl.org/gitweb/?p=openssl.git;a=commitdiff;h=9b1129239f3ebb1d1c98ce9ed41d5c9476c47cb2

Source: CONFIRM
Type: Third Party Advisory
https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44846

Source: CONFIRM
Type: Third Party Advisory
https://kc.mcafee.com/corporate/index?page=content&id=SB10366

Source: MLIST
Type: Mailing List, Third Party Advisory
[bookkeeper-issues] 20210629 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

Source: MLIST
Type: Mailing List, Third Party Advisory
[bookkeeper-issues] 20210628 [GitHub] [bookkeeper] padma81 opened a new issue #2746: Security Vulnerabilities in CentOS 7 image, Upgrade image to CentOS 8

Source: CCN
Type: Node.js Blog, 2021-02-23
February 2021 Security Releases

Source: GENTOO
Type: Third Party Advisory
GLSA-202103-03

Source: CONFIRM
Type: Third Party Advisory
https://security.netapp.com/advisory/ntap-20210219-0009/

Source: DEBIAN
Type: Third Party Advisory
DSA-4855

Source: CCN
Type: IBM Security Bulletin 6416707 (WIoTP MessageGateway)
OpenSSL publicly disclosed vulnerabilities affect MessageGateway (CVE-2021-23841 CVE-2021-23840)

Source: CCN
Type: IBM Security Bulletin 6427489 (Sterling Connect:Express for UNIX)
IBM Sterling Connect:Express for UNIX is Affected by Multiple Vulnerabilities in OpenSSL

Source: CCN
Type: IBM Security Bulletin 6428997 (SDK for Node.js for Bluemix)
Multiple vulnerabilities affect IBM SDK for Node.js in IBM Cloud

Source: CCN
Type: IBM Security Bulletin 6429433 (Rational ClearQuest)
Vulnerabilities in OpenSSL affect IBM Rational ClearQuest

Source: CCN
Type: IBM Security Bulletin 6429603 (i)
OpenSSL for IBM i is affected by CVE-2021-23840 and CVE-2021-23841

Source: CCN
Type: IBM Security Bulletin 6430719 (z/Transaction Processing Facility)
z/TPF is affected by OpenSSL vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6433685 (Voice Gateway)
Multiple security vulnerabilities in Node.js affect IBM Voice Gateway

Source: CCN
Type: IBM Security Bulletin 6434197 (MQ for HPE NonStop)
IBM MQ for HP NonStop Server is affected by OpenSSL vulnerabilities CVE-2021-23839, CVE-2021-23840 and CVE-2021-23841

Source: CCN
Type: IBM Security Bulletin 6436083 (Business Automation Workflow)
Multiple vulnerabilities in node.js may affect configuration editor used in IBM Business Automation Workflow and IBM Business Process Manager (BPM) - CVE-2020-1971, CVE-2020-8265, CVE-2020-8287

Source: CCN
Type: IBM Security Bulletin 6437245 (InfoSphere Information Server)
Multiple vulnerabilities in Node.js affect IBM InfoSphere Information Server

Source: CCN
Type: IBM Security Bulletin 6438719 (Cloud Transformation Advisor)
IBM Cloud Transformation Advisor is affected by multiple Node.js vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6439501 (WebSphere MQ)
WebSphere MQ for HP NonStop Server is affected by multiple OpenSSL vulnerabilities CVE-2021-23839, CVE-2021-23840 and CVE-2021-23841

Source: CCN
Type: IBM Security Bulletin 6443405 (AIX)
Vulnerabilities in OpenSSL affect AIX (CVE-2021-23839, CVE-2021-23840, and CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6445489 (Spectrum Protect Backup-Archive Client)
Vulnerabilities in OpenSSL affect IBM Spectrum Protect Backup-Archive Client NetApp Services (CVE-2020-1971, CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6448842 (App Connect Enterprise Certified Container)
IBM App Connect Enterprise Certified Container may be vulnerable to multiple denial of service through the Node.js runtime

Source: CCN
Type: IBM Security Bulletin 6452233 (Sterling Connect:Direct for HP NonStop)
Multiple OpenSSL Vulnerabilities Affect IBM Connect:Direct for HP NonStop

Source: CCN
Type: IBM Security Bulletin 6453063 (Cloud Automation Manager)
A security vulnerability in Node.js affects IBM Cloud Automation Manager

Source: CCN
Type: IBM Security Bulletin 6453079 (Cloud Pak for Multicloud Management)
A security vulnerability in Node.js affects IBM Cloud Pak for Multicloud Management Managed Service

Source: CCN
Type: IBM Security Bulletin 6453637 (Watson Explorer)
Vulnerability affects Watson Explorer Foundational Components (CVE-2021-23840)

Source: CCN
Type: IBM Security Bulletin 6454803 (Spectrum Control)
Vulnerabilities in XStream, Java, OpenSSL, WebSphere Application Server Liberty and Node.js affect IBM Spectrum Control

Source: CCN
Type: IBM Security Bulletin 6456295 (MQ)
IBM MQ is vulnerable to an issue within OpenSSL (CVE-2021-23840)

Source: CCN
Type: IBM Security Bulletin 6458259 (Aspera High-Speed Transfer Server (HSTS))
OpenSSL vulnerabilites impacting Aspera High-Speed Transfer Server, Aspera High-Speed Transfer Endpoint, Aspera Desktop Client 4.0 and earlier (CVE-2021-23839, CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6458629 (Aspera High-Speed Transfer Server (HSTS))
OpenSSL vulnerabilites impacting Aspera High-Speed Transfer Server, Aspera High-Speed Transfer Endpoint, Aspera Desktop Client 4.0 and earlier (CVE-2021-23839, CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6462927 (Rational ClearCase)
Vulnerability in OpenSSL affects IBM Rational ClearCase (CVE-2020-1971, CVE-2021-23839, CVE-2021-23840, CVE-2021-23841, CVE-2021-23839, CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6463275 (Event Streams)
IBM Event Streams is potentially affected by multiple node vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6463979 (Integration Bus)
Vulnerabilities in OpenSSL affect IBM Integration Bus and IBM App Connect Enterprise v11 (CVE-2021-23839, CVE-2021-23840)

Source: CCN
Type: IBM Security Bulletin 6472137 (Netcool/System Service Monitor)
Multiple vulnerabilities in OpenSSL affect IBM Tivoli Netcool System Service Monitors/Application Service Monitors

Source: CCN
Type: IBM Security Bulletin 6473493 (InfoSphere Information Server)
Multiple vulnerabilities in OpenSSL affects IBM InfoSphere Information Server

Source: CCN
Type: IBM Security Bulletin 6473525 (API Connect)
IBM API Connect is impacted by vulnerabilities in node.js and OpenSSL (CVE-2021-23840, CVE-2021-22884, CVE-2021-22883)

Source: CCN
Type: IBM Security Bulletin 6475919 (Rational Rhapsody Design Manager)
Multiple vulnerabilites affect Engineering Lifecycle Management and IBM Engineering products.

Source: CCN
Type: IBM Security Bulletin 6476346 (Security Verify Gateway)
Multiple Security Vulnerabilities fixed in Openssl as shipped with IBM Security Verify products

Source: CCN
Type: IBM Security Bulletin 6476624 (WA for ICP)
Potential vulnerability with Node.js

Source: CCN
Type: IBM Security Bulletin 6479349 (Workload Scheduler)
Multiple vulnerabilities in OpenSSL may affect IBM Workload Scheduler

Source: CCN
Type: IBM Security Bulletin 6479935 (MaaS360)
A vulnerability was identified and remediated in the IBM MaaS360 Cloud Extender (V2.103.000.051) and Modules

Source: CCN
Type: IBM Security Bulletin 6481677 (DataPower Gateway)
IBM DataPower Gateway vulnerable to a DoS

Source: CCN
Type: IBM Security Bulletin 6486335 (Cloud Private)
IBM Cloud Private is vulnerable to OpenSSL vulnerabilities (CVE-2021-23839, CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6486343 (Cloud Private)
IBM Cloud Private is vulnerable to OpenSSL and Node.js vulnerabilities (CVE-2021-23840, CVE-2021-22884, CVE-2021-22883)

Source: CCN
Type: IBM Security Bulletin 6487493 (c-type SAN directors and switches)
Vulnerability in NX-OS Firmware used by IBM c-type SAN directors and switches.

Source: CCN
Type: IBM Security Bulletin 6490371 (Aspera Shares)
Aspera Web Applications (Shares, Console) are affected by OpenSSL Vulnerabilities (CVE-2021-23839, CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6491653 (Security Verify Bridge)
ultiple vulnerabilities fixed in IBM Security Verify Bridge - Docker

Source: CCN
Type: IBM Security Bulletin 6507581 (InfoSphere Master Data Management)
IBM InfoSphere Master Data Management Server vulnerability in OpenSSL

Source: CCN
Type: IBM Security Bulletin 6520510 (Cognos Analytics)
IBM Cognos Analytics has addressed multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6538610 (App Connect Enterprise Certified Container)
IBM App Connect Enterprise Certified Container may be affected by openssl vulnerabilities CVE-2021-23840 and CVE-2021-23841

Source: CCN
Type: IBM Security Bulletin 6541298 (Cloud Pak for Automation)
Multiple security vulnerabilities fixed in Cloud Pak for Automation components

Source: CCN
Type: IBM Security Bulletin 6551876 (Cloud Pak for Security)
Cloud Pak for Security uses packages that are vulnerable to multiple CVEs

Source: CCN
Type: IBM Security Bulletin 6557172 (Integrated Analytics System)
Vulnerability in OpenSSL affects IBM Integrated Analytics System.

Source: CCN
Type: IBM Security Bulletin 6560126 (Sterling Connect:Direct for UNIX Certified Container)
IBM Sterling Connect:Direct for UNIX Certified Container is affected by multiple vulnerabilities in Red Hat Universal Base Image version 8.4-206.1626828523 and Binutils version 2.30-93

Source: CCN
Type: IBM Security Bulletin 6560154 (Flex System)
IBM RackSwitch firmware products are affected by vulnerabilities in OpenSSL

Source: CCN
Type: IBM Security Bulletin 6560158 (Flex System)
IBM Flex System switch firmware products are affected by vulnerabilities in OpenSSL

Source: CCN
Type: IBM Security Bulletin 6563575 (Security Guardium)
IBM Security Guardium is affected by OpenSSL denial of service vulnerabilities (CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6566041 (QRadar Network Security)
IBM QRadar Network Security is affected by denial of service vulnerabilities in OpenSSL (CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6570957 (Cognos Analytics)
IBM Cognos Analytics has addressed multiple vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6591203 (Netcool Agile Service Manager)
Multiple Vulnerabilities in Node.js affects IBM Netcool Agile Service Manager

Source: CCN
Type: IBM Security Bulletin 6601731 (Security Verify Access)
Multiple security vulnerabilities fixed in IBM Security Verify Access Appliance (CVE-2022-23308, CVE-2021-23840, CVE-2021-23841, CVE-2021-3712)

Source: CCN
Type: IBM Security Bulletin 6612587 (Cloud Pak System Software)
Multiple vulnerabilities in expat, glibc, http server, dojo, openssl shipped with IBM Cloud Pak System

Source: CCN
Type: IBM Security Bulletin 6618941 (Aspera Faspex)
IBM Aspera Faspex 4.4.2 has addressed multiple security vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6856409 (Cloud Pak for Security)
IBM Cloud Pak for Security includes components with multiple known vulnerabilities

Source: CCN
Type: IBM Security Bulletin 6952327 (Aspera Orchestrator)
IBM Aspera Orchestrator affected by OpenSSL vulnerabilities (CVE-2021-23839, CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: IBM Security Bulletin 6985591 (Safer Payments)
IBM Safer Payments is vulnerable to multiple OpenSSL vulnerabilities (CVE-2021-23839, CVE-2021-23840, CVE-2021-23841)

Source: CCN
Type: OpenSSL Security Advisory [16 February 2021]
OpenSSL Security Advisory [16 February 2021]

Source: CONFIRM
Type: Vendor Advisory
https://www.openssl.org/news/secadv/20210216.txt

Source: N/A
Type: Patch, Third Party Advisory
N/A

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpuApr2021.html

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpuapr2022.html

Source: CCN
Type: Oracle CPUJan2022
Oracle Critical Patch Update Advisory - January 2022

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpujan2022.html

Source: MISC
Type: Patch, Third Party Advisory
https://www.oracle.com/security-alerts/cpuoct2021.html

Source: CONFIRM
Type: Third Party Advisory
https://www.tenable.com/security/tns-2021-03

Source: CONFIRM
Type: Third Party Advisory
https://www.tenable.com/security/tns-2021-09

Source: CONFIRM
Type: Third Party Advisory
https://www.tenable.com/security/tns-2021-10

Vulnerable Configuration:

Configuration 1:

cpe:/a:openssl:openssl:*:*:*:*:*:*:*:* (Version >= 1.0.2 and < 1.0.2y)

OR cpe:/a:openssl:openssl:*:*:*:*:*:*:*:* (Version >= 1.1.1 and < 1.1.1j)

Configuration 2:

cpe:/o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 3:

cpe:/a:tenable:nessus_network_monitor:5.11.1:*:*:*:*:*:*:*

OR cpe:/a:tenable:nessus_network_monitor:5.12.0:*:*:*:*:*:*:*

OR cpe:/a:tenable:nessus_network_monitor:5.12.1:*:*:*:*:*:*:*

OR cpe:/a:tenable:nessus_network_monitor:5.13.0:*:*:*:*:*:*:*

OR cpe:/a:tenable:nessus_network_monitor:5.11.0:*:*:*:*:*:*:*

OR cpe:/a:tenable:log_correlation_engine:*:*:*:*:*:*:*:* (Version < 6.0.8)

Configuration 4:

cpe:/a:oracle:business_intelligence:12.2.1.3.0:*:*:*:enterprise:*:*:*

OR cpe:/a:oracle:jd_edwards_world_security:a9.4:*:*:*:*:*:*:*

OR cpe:/a:oracle:business_intelligence:12.2.1.4.0:*:*:*:enterprise:*:*:*

OR cpe:/a:oracle:business_intelligence:5.5.0.0.0:*:*:*:enterprise:*:*:*

OR cpe:/a:oracle:enterprise_manager_for_storage_management:13.4.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:enterprise_manager_ops_center:12.4.0.0:*:*:*:*:*:*:*

OR cpe:/a:oracle:graalvm:20.3.1.2:*:*:*:enterprise:*:*:*

OR cpe:/a:oracle:graalvm:21.0.0.2:*:*:*:enterprise:*:*:*

OR cpe:/a:oracle:graalvm:19.3.5:*:*:*:enterprise:*:*:*

OR cpe:/a:oracle:mysql_server:*:*:*:*:*:*:*:* (Version >= 8.0.15 and < 8.0.23)

OR cpe:/a:oracle:mysql_server:*:*:*:*:*:*:*:* (Version < 5.7.33)

OR cpe:/a:oracle:nosql_database:*:*:*:*:*:*:*:* (Version < 20.3)

OR cpe:/a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:* (Version < 9.2.6.0)

OR cpe:/a:oracle:business_intelligence:5.9.0.0.0:*:*:*:enterprise:*:*:*

OR cpe:/a:oracle:communications_cloud_native_core_policy:1.15.0:*:*:*:*:*:*:*

Configuration 5:

cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_1:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_2:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_3:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_4:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_5:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_6:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:-:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:*:*:*:*:*:*:*:* (Version < 5.10.0)

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_7:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_8:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_9:*:*:*:*:*:*

OR cpe:/a:mcafee:epolicy_orchestrator:5.10.0:update_10:*:*:*:*:*:*

Configuration 6:

cpe:/o:fujitsu:m10-1_firmware:*:*:*:*:*:*:*:* (Version < xcp2410)

AND

cpe:/h:fujitsu:m10-1:-:*:*:*:*:*:*:*

Configuration 7:

cpe:/o:fujitsu:m10-4_firmware:*:*:*:*:*:*:*:* (Version < xcp2410)

AND

cpe:/h:fujitsu:m10-4:-:*:*:*:*:*:*:*

Configuration 8:

cpe:/o:fujitsu:m10-4s_firmware:*:*:*:*:*:*:*:* (Version < xcp2410)

AND

cpe:/h:fujitsu:m10-4s:-:*:*:*:*:*:*:*

Configuration 9:

cpe:/o:fujitsu:m12-1_firmware:*:*:*:*:*:*:*:* (Version < xcp2410)

AND

cpe:/h:fujitsu:m12-1:-:*:*:*:*:*:*:*

Configuration 10:

cpe:/o:fujitsu:m12-2_firmware:*:*:*:*:*:*:*:* (Version < xcp2410)

AND

cpe:/h:fujitsu:m12-2:-:*:*:*:*:*:*:*

Configuration 11:

cpe:/o:fujitsu:m12-2s_firmware:*:*:*:*:*:*:*:* (Version < xcp2410)

AND

cpe:/h:fujitsu:m12-2s:-:*:*:*:*:*:*:*

Configuration 12:

cpe:/o:fujitsu:m10-1_firmware:*:*:*:*:*:*:*:* (Version < xcp3110)

AND

cpe:/h:fujitsu:m10-1:-:*:*:*:*:*:*:*

Configuration 13:

cpe:/o:fujitsu:m10-4_firmware:*:*:*:*:*:*:*:* (Version < xcp3110)

AND

cpe:/h:fujitsu:m10-4:-:*:*:*:*:*:*:*

Configuration 14:

cpe:/o:fujitsu:m10-4s_firmware:*:*:*:*:*:*:*:* (Version < xcp3110)

AND

cpe:/h:fujitsu:m10-4s:-:*:*:*:*:*:*:*

Configuration 15:

cpe:/o:fujitsu:m12-1_firmware:*:*:*:*:*:*:*:* (Version < xcp3110)

AND

cpe:/h:fujitsu:m12-1:-:*:*:*:*:*:*:*

Configuration 16:

cpe:/o:fujitsu:m12-2_firmware:*:*:*:*:*:*:*:* (Version < xcp3110)

AND

cpe:/h:fujitsu:m12-2:-:*:*:*:*:*:*:*

Configuration 17:

cpe:/o:fujitsu:m12-2s_firmware:*:*:*:*:*:*:*:* (Version < xcp3110)

AND

cpe:/h:fujitsu:m12-2s:-:*:*:*:*:*:*:*

Configuration 18:

cpe:/a:nodejs:node.js:*:*:*:*:-:*:*:* (Version >= 15.0.0 and < 15.10.0)

OR cpe:/a:nodejs:node.js:*:*:*:*:-:*:*:* (Version >= 14.0.0 and <= 14.14.0)

OR cpe:/a:nodejs:node.js:*:*:*:*:-:*:*:* (Version >= 10.0.0 and <= 10.12.0)

OR cpe:/a:nodejs:node.js:*:*:*:*:-:*:*:* (Version >= 12.0.0 and <= 12.12.0)

OR cpe:/a:nodejs:node.js:14.15.0:*:*:*:lts:*:*:*

OR cpe:/a:nodejs:node.js:*:*:*:*:lts:*:*:* (Version >= 12.13.0 and < 12.21.0)

OR cpe:/a:nodejs:node.js:*:*:*:*:lts:*:*:* (Version >= 10.13.0 and < 10.24.0)

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:7:*:*:*:*:*:*:*

Configuration RedHat 2:

cpe:/o:redhat:enterprise_linux:7::client:*:*:*:*:*

Configuration RedHat 3:

cpe:/o:redhat:enterprise_linux:7::computenode:*:*:*:*:*

Configuration RedHat 4:

cpe:/o:redhat:enterprise_linux:7::server:*:*:*:*:*

Configuration RedHat 5:

cpe:/o:redhat:enterprise_linux:7::workstation:*:*:*:*:*

Configuration RedHat 6:

cpe:/a:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 7:

cpe:/a:redhat:enterprise_linux:8::appstream:*:*:*:*:*

Configuration RedHat 8:

cpe:/o:redhat:enterprise_linux:8:*:*:*:*:*:*:*

Configuration RedHat 9:

cpe:/o:redhat:enterprise_linux:8::baseos:*:*:*:*:*

Configuration CCN 1:

cpe:/a:openssl:openssl:1.0.0:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:1.0.2:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:1.0.1:*:*:*:*:*:*:*

OR cpe:/a:nodejs:node.js:10:*:*:*:*:*:*:*

OR cpe:/a:openssl:openssl:1.1.1:*:*:*:*:*:*:*

OR cpe:/a:nodejs:node.js:12:*:*:*:*:*:*:*

OR cpe:/a:nodejs:node.js:14.0:*:*:*:*:*:*:*

AND

cpe:/o:ibm:aix:7.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_clearcase:8.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_process_manager:8.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_clearcase:8.0.0:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.1:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:websphere_mq:5.3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_explorer:11.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:infosphere_master_data_management:11.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:netcool/system_service_monitor:4.0.1:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:5.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_explorer:11.0.1:*:*:*:*:*:*:*

OR cpe:/o:ibm:aix:7.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:infosphere_master_data_management:11.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_rhapsody_design_manager:6.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_explorer:11.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_clearquest:9.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:workload_scheduler:9.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_process_manager:8.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_clearcase:9.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:infosphere_information_server:11.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:qradar_network_security:5.4.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:workload_automation:9.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_explorer:12.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:sterling_connect:express:1.5.0:*:*:*:unix:*:*:*

OR cpe:/a:ibm:integration_bus:10.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:app_connect:11.0.0.0:*:*:*:enterprise:*:*:*

OR cpe:/a:ibm:qradar_network_security:5.5.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:datapower_gateway:2018.4.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_explorer:12.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_explorer:12.0.2:*:*:*:*:*:*:*

OR cpe:/o:ibm:i:7.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:mq:8.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:mq:9.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:mq:9.1.0:*:*:*:continuous_delivery:*:*:*

OR cpe:/a:ibm:spectrum_control:5.3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_control:5.3.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_control:5.3.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_control:5.3.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:vios:3.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:event_streams:2019.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_protect_backup-archive_client:7.1.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_protect_backup-archive_client:8.1.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:voice_gateway:1.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:voice_gateway:1.0.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:mq_for_hpe_nonstop:8.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:mq_for_hpe_nonstop:8.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:aspera_console:3.4.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:aspera_shares:1.9.14:*:*:*:*:*:*:*

OR cpe:/a:ibm:watson_explorer:12.0.3:*:deep_analytics:*:analytical_components:*:*:*

OR cpe:/a:ibm:voice_gateway:1.0.2.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:voice_gateway:1.0.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:11.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:11.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:workload_automation:9.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_private:3.2.1:cd:*:*:*:*:*:*

OR cpe:/a:ibm:event_streams:2019.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:voice_gateway:1.0.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:18.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:19.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:business_automation_workflow:20.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_clearquest:9.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:rational_clearquest:9.0.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:event_streams:2019.4.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:event_streams:10.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_private:3.2.2:cd:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_control:5.3.4:*:standard:*:*:*:*:*

OR cpe:/a:ibm:spectrum_control:5.3.5:*:standard:*:*:*:*:*

OR cpe:/a:ibm:spectrum_control:5.3.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_control:5.3.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:11.2:*:*:*:*:*:*:*

OR cpe:/a:ibm:voice_gateway:1.0.6:*:*:*:*:*:*:*

OR cpe:/a:ibm:mq:9.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:event_streams:2019.4.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:event_streams:10.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_control:5.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_verify_access:10.0.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:voice_gateway:1.0.7:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_transformation_advisor:2.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:workload_scheduler:9.5:*:*:*:*:*:*:*

OR cpe:/a:ibm:spectrum_protect_backup-archive_client:8.1.11.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:11.3:*:*:*:*:*:*:*

OR cpe:/a:ibm:event_streams:10.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_automation:21.0.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:api_connect:5.0.8.11:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_automation:21.0.2:-:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_security:1.7.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_analytics:11.2.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_analytics:11.1.7:-:*:*:*:*:*:*

OR cpe:/a:ibm:security_verify_access:10.0.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_guardium:11.4:*:*:*:*:*:*:*

OR cpe:/a:ibm:cognos_analytics:11.2.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_verify_access:10.0.1.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:aspera_faspex:4.4.1:*:*:*:*:*:*:*

OR cpe:/a:ibm:security_verify_access:10.0.3.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_security:1.10.0.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:cloud_pak_for_security:1.10.6.0:*:*:*:*:*:*:*

OR cpe:/a:ibm:safer_payments:6.1.0.00:*:*:*:*:*:*:*

OR cpe:/a:ibm:safer_payments:6.2.0.00:*:*:*:*:*:*:*

OR cpe:/a:ibm:safer_payments:5.7.0.00:*:*:*:*:*:*:*

OR cpe:/a:ibm:safer_payments:6.0.0.00:*:*:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:8178	P	Security update for terraform-provider-helm (Important) (in QA)	2023-06-20
oval:org.opensuse.security:def:8179	P	Security update for terraform-provider-null (Important) (in QA)	2023-06-20
oval:org.opensuse.security:def:7630	P	libopenssl-1_1-devel-1.1.1l-150500.15.4 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:8084	P	libopenssl-1_0_0-devel-1.0.2p-150000.3.73.1 on GA media (Moderate)	2023-06-12
oval:org.opensuse.security:def:641	P	Security update for nodejs12 (Moderate) (in QA)	2022-09-30
oval:org.opensuse.security:def:93316	P	(Important)	2022-07-13
oval:org.opensuse.security:def:3442	P	axis-1.4-290.6.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3576	P	libasan2-32bit-5.3.1+r233831-12.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:3045	P	cups-pk-helper-0.2.5-5.1 on GA media (Moderate)	2022-06-28
oval:org.opensuse.security:def:94688	P	libpng16-16-1.6.34-3.9.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:95072	P	libopenssl-1_0_0-devel-1.0.2p-3.49.1 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:94675	P	libopenssl-1_1-devel-1.1.1l-150400.5.14 on GA media (Moderate)	2022-06-22
oval:org.opensuse.security:def:170	P	libopenssl-1_1-devel-1.1.1d-11.20.1 on GA media (Moderate)	2022-06-13
oval:org.opensuse.security:def:102233	P	Security update for subversion (Important)	2022-04-12
oval:org.opensuse.security:def:102230	P	Security update for 389-ds (Important)	2022-04-04
oval:org.opensuse.security:def:93326	P	(Important)	2022-03-07
oval:org.opensuse.security:def:99216	P	(Moderate)	2022-03-04
oval:org.opensuse.security:def:99206	P	(Critical)	2022-02-08
oval:org.opensuse.security:def:93163	P	(Moderate)	2022-02-04
oval:org.opensuse.security:def:102307	P	Security update for the Linux Kernel (Important)	2022-01-26
oval:org.opensuse.security:def:112740	P	libopenssl-1_0_0-devel-1.0.2u-6.2 on GA media (Moderate)	2022-01-17
oval:org.opensuse.security:def:112741	P	libopenssl-1_1-devel-1.1.1l-1.2 on GA media (Moderate)	2022-01-17
oval:com.redhat.rhsa:def:20214198	P	RHSA-2021:4198: edk2 security, bug fix, and enhancement update (Moderate)	2021-11-09
oval:com.redhat.rhsa:def:20214424	P	RHSA-2021:4424: openssl security and bug fix update (Moderate)	2021-11-09
oval:com.redhat.rhsa:def:20213798	P	RHSA-2021:3798: openssl security update (Moderate)	2021-10-12
oval:org.opensuse.security:def:106213	P	libopenssl-1_1-devel-1.1.1l-1.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:106212	P	libopenssl-1_0_0-devel-1.0.2u-6.2 on GA media (Moderate)	2021-10-01
oval:org.opensuse.security:def:99416	P	(Critical)	2021-09-20
oval:org.opensuse.security:def:99413	P	(Important)	2021-09-03
oval:org.opensuse.security:def:99403	P	(Important)	2021-08-14
oval:org.opensuse.security:def:101417	P	nodejs12-12.21.0-4.13.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:101401	P	sca-patterns-sle15-1.0.1-12.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2007	P	libopenssl-1_0_0-devel-1.0.2p-3.37.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63096	P	libopenssl-1_0_0-devel-1.0.2p-3.37.1 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:2327	P	nodejs12-12.21.0-4.13.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:63416	P	nodejs12-12.21.0-4.13.2 on GA media (Moderate)	2021-08-10
oval:org.opensuse.security:def:1099	P	libopenssl-1_1-devel-1.1.1d-11.20.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:62188	P	libopenssl-1_1-devel-1.1.1d-11.20.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:71929	P	libopenssl-1_1-devel-1.1.1d-11.20.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:100946	P	libopenssl-1_1-devel-1.1.1d-11.20.1 on GA media (Moderate)	2021-08-09
oval:org.opensuse.security:def:86748	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:30051	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:55874	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:82170	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:51760	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:33102	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:58925	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:84745	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:87566	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:31368	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:57191	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:82697	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:21431	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:85832	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:28963	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:54786	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:23772	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:51191	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:31748	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:57571	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:83258	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:86212	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:29490	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:55313	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:81125	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:32284	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:58107	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:84287	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:23203	P	Security update for openssl (Moderate)	2021-03-24
oval:org.opensuse.security:def:46082	P	Security update for openssl (Moderate)	2021-03-19
oval:org.opensuse.security:def:39296	P	Security update for openssl (Moderate)	2021-03-19
oval:org.opensuse.security:def:41652	P	Security update for openssl (Moderate)	2021-03-19
oval:org.opensuse.security:def:45107	P	Security update for openssl (Moderate)	2021-03-19
oval:org.opensuse.security:def:40677	P	Security update for openssl (Moderate)	2021-03-19
oval:org.opensuse.security:def:38273	P	Security update for openssl (Moderate)	2021-03-19
oval:org.opensuse.security:def:43726	P	Security update for openssl (Moderate)	2021-03-19
oval:org.opensuse.security:def:43741	P	Security update for openssl1 (Moderate)	2021-03-17
oval:org.opensuse.security:def:39311	P	Security update for openssl1 (Moderate)	2021-03-17
oval:org.opensuse.security:def:37536	P	Security update for openssl1 (Moderate)	2021-03-17
oval:org.opensuse.security:def:42821	P	Security update for openssl1 (Moderate)	2021-03-17
oval:org.opensuse.security:def:45123	P	Security update for openssl1 (Moderate)	2021-03-17
oval:org.opensuse.security:def:40693	P	Security update for openssl1 (Moderate)	2021-03-17
oval:org.opensuse.security:def:111275	P	Security update for openssl-1_0_0 (Moderate)	2021-03-16
oval:org.opensuse.security:def:52051	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:23759	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:51178	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:24037	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:49190	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:4753	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:20719	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:24063	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:23190	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:111271	P	Security update for openssl-1_1 (Moderate)	2021-03-16
oval:org.opensuse.security:def:51747	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:52025	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:125670	P	Security update for compat-openssl098 (Moderate)	2021-03-16
oval:org.opensuse.security:def:100126	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:69806	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:93023	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:99814	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:69608	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:92864	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:10416	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:99615	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:76129	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:92665	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:108899	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:10222	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:97282	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:117896	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:5972	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:67061	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:92466	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:9865	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:70556	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:95520	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:108973	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:9666	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:70362	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:93329	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:6467	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:67556	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:9468	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:70005	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:95594	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:93176	P	Security update for openssl-1_0_0 (Moderate)	2021-03-11
oval:org.opensuse.security:def:10413	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:99454	P	(Moderate)	2021-03-09
oval:org.opensuse.security:def:127232	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:24035	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:9105	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:99612	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:99021	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:76126	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:92662	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:108896	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:10219	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:92071	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:26207	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:97279	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:117581	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:5969	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:67058	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:34039	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:59862	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:92463	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:100380	P	(Moderate)	2021-03-09
oval:org.opensuse.security:def:9862	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:70553	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:95517	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:88579	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:9663	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:70359	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:126835	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:8910	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:89517	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:42157	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:100713	P	(Moderate)	2021-03-09
oval:org.opensuse.security:def:9465	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:52023	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:70002	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:125668	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:97277	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:93173	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:33781	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:59604	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:92266	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:100123	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:69803	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:93020	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:34651	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:73787	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:60474	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:88262	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:108067	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:99811	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:97278	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:8716	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:69605	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:5194	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:64665	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:92861	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:89259	P	Security update for openssl-1_1 (Moderate)	2021-03-09
oval:org.opensuse.security:def:34036	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:59859	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:88576	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:126832	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:89514	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:52020	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:125665	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:33778	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:59601	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:34648	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:60471	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:88259	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:5192	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:89256	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:127229	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:24032	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:26205	P	Security update for openssl-1_0_0 (Moderate)	2021-03-08
oval:org.opensuse.security:def:111245	P	Security update for nodejs10 (Important)	2021-03-03
oval:org.opensuse.security:def:92453	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:9852	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:70543	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:118596	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:20992	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:9653	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:70352	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:8900	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:109500	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:9458	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:69992	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:97254	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:69268	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:92256	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:96144	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:100113	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:69793	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:93010	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:99801	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:8709	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:69598	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:92851	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:10403	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:102834	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:9095	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:99602	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:99011	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:92652	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:10212	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:92061	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:49463	P	Security update for nodejs10 (Important)	2021-03-02
oval:org.opensuse.security:def:111241	P	Security update for nodejs12 (Important)	2021-02-27
oval:org.opensuse.security:def:109499	P	Security update for nodejs12 (Important)	2021-02-26
oval:org.opensuse.security:def:97246	P	Security update for nodejs12 (Important)	2021-02-26
oval:org.opensuse.security:def:69267	P	Security update for nodejs12 (Important)	2021-02-26
oval:org.opensuse.security:def:96143	P	Security update for nodejs12 (Important)	2021-02-26
oval:org.opensuse.security:def:102833	P	Security update for nodejs12 (Important)	2021-02-26
oval:org.opensuse.security:def:49461	P	Security update for nodejs12 (Important)	2021-02-26
oval:org.opensuse.security:def:118595	P	Security update for nodejs12 (Important)	2021-02-26
oval:org.opensuse.security:def:20990	P	Security update for nodejs12 (Important)	2021-02-26