View
2
Download
0
Category
Preview:
Citation preview
2018-DEC-20FSL version 7.6.86
MCAFEE FOUNDSTONE FSL UPDATE
To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is adetailed summary of the new and updated checks included with this release.
NEW CHECKS
24479 - AVEVA InTouch Edge HMI Multiple Vulnerabilities (LFSEC00000130)
Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-17914, CVE-2018-17916
DescriptionMultiple vulnerabilities are present in some versions of AVEVA InTouch Edge HMI.
ObservationAVEVA InTouch EDge HMI is a tool to build SCADA, HMI applications.
Multiple vulnerabilities are present in some versions of AVEVA InTouch Edge HMI. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code on the target system.
24550 - IBM AIX Solaris Remote Code Execution Vulnerability
Category: SSH Module -> NonIntrusive -> AIX Patches and HotfixesRisk Level: HighCVE: CVE-2017-3623
DescriptionA vulnerability is present in some versions of IBM AIX.
ObservationAIX is a Unix-like operating system developed by IBM.
A vulnerability is present in some versions of IBM AIX. The flaw lies in the Solaris Kernel RPC component. Successful exploitation could allow a remote attacker to execute arbitrary code within the context of the target server.
24539 - (HT209345) Apple iTunes Vulnerabilities Prior To 12.9.2
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-4437, CVE-2018-4438, CVE-2018-4439, CVE-2018-4440, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443,CVE-2018-4464
DescriptionMultiple vulnerabilities are present in some versions of Apple iTunes.
ObservationApple iTunes is a media management software.
Multiple vulnerabilities are present in some versions of Apple iTunes. The flaws lie in several components. Successful exploitation could allow an attacker to remotely execute arbitrary code and cause spoofing attack on the target system.
160488 - CentOS 7 CESA-2018-3347 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-1000805
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3347
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023119.html
CentOS 7noarchpython-paramiko-2.1.1-9.el7python-paramiko-doc-2.1.1-9.el7
24535 - AVEVA Citect SCADA Uncontroled Search Path Vulnerability (LFSEC00000134)
Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-7799
DescriptionA vulnerability is present in some versions of AVEVA Citect SCADA.
ObservationAVEVA Citect SCADA is a SCADA solution for industrial process.
A vulnerability is present in some versions of AVEVA Citect SCADA. The flaw lies in Schneider Electric Software Update utility. Successful exploitation could allow an attacker to execute arbitrary code on the target system.
24560 - Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2018-8653)
Category: Windows Host Assessment -> Patches and Hotfixes (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-8653
DescriptionA vulnerability is present in some versions of Microsoft Internet Explorer.
ObservationInternet Explorer is a graphical web browser developed by Microsoft.
A vulnerability is present in some versions of Microsoft Internet Explorer. The flaw is due to improper handling of objects in memory. Successful exploitation could allow an attacker to execute arbitrary code in the context of the current user.
160486 - CentOS 7 CESA-2018-3651 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-14633, CVE-2018-14646
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3651
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023132.html
CentOS 7x86_64kernel-debug-3.10.0-957.1.3.el7bpftool-3.10.0-957.1.3.el7kernel-tools-3.10.0-957.1.3.el7kernel-headers-3.10.0-957.1.3.el7perf-3.10.0-957.1.3.el7kernel-3.10.0-957.1.3.el7kernel-tools-libs-3.10.0-957.1.3.el7kernel-debug-devel-3.10.0-957.1.3.el7python-perf-3.10.0-957.1.3.el7kernel-devel-3.10.0-957.1.3.el7kernel-tools-libs-devel-3.10.0-957.1.3.el7
24490 - INVT Electric VT-Designer Multiple Vulnerabilities (ICSA-18-333-01)
Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-18983, CVE-2018-18987
DescriptionMultiple vulnerabilities are present in some versions of INVT Electric VT-Designer.
ObservationINVT Electric VT-Designer is an HMI programming software.
Multiple vulnerabilities are present in some versions of INVT Electric VT-Designer. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code and cause a denial of service condition.
24544 - (HT209340) Apple iOS Multiple Vulnerabilities Prior To 12.1.1
Category: Wireless Assessment -> NonIntrusive -> iOS
Risk Level: HighCVE: CVE-2018-4303, CVE-2018-4429, CVE-2018-4430, CVE-2018-4431, CVE-2018-4435, CVE-2018-4436, CVE-2018-4437,CVE-2018-4438, CVE-2018-4439, CVE-2018-4440, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443, CVE-2018-4445, CVE-2018-4446, CVE-2018-4447, CVE-2018-4460, CVE-2018-4461, CVE-2018-4464, CVE-2018-4465
DescriptionMultiple vulnerabilities are present in some versions of Apple iOS.
ObservationApple iOS is the operating system used by Apple iPhone, iPad, and iPod touch.
Multiple vulnerabilities are present in some versions of Apple iOS. The flaws lie in multiple components. Successful exploitation could allow an attacker to cause a denial of service condition, disclose sensitive information, execute arbitrary code or escalate privileges.
24545 - (HT209346) Apple iCloud Vulnerabilities Prior To 7.9
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-4437, CVE-2018-4438, CVE-2018-4439, CVE-2018-4440, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443,CVE-2018-4464
DescriptionMultiple vulnerabilities are present in some versions of Apple iCloud.
ObservationApple iCloud is a manager for the Apple's cloud-based storage service.
Multiple vulnerabilities are present in some versions of Apple iCloud. The flaws lie in many components. Successful exploitation could allow an attacker to execute arbitrary code on the target system.
24546 - (HT209344) Apple Safari Vulnerabilities Prior To 12.0.2
Category: SSH Module -> NonIntrusive -> Mac OS X Patches and HotfixesRisk Level: HighCVE: CVE-2018-4437, CVE-2018-4438, CVE-2018-4439, CVE-2018-4440, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443,CVE-2018-4445, CVE-2018-4464
DescriptionMultiple vulnerabilities are present in some versions of Apple Safari.
ObservationApple Safari is a popular web browser.
Multiple vulnerabilities are present in some versions of Apple Safari. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code or spoofing attacks on the target system.
24555 - IBM WebSphere Application Server Vulnerability (ibm10738735)
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: High
CVE: CVE-2018-1904
DescriptionA vulnerability is present in some versions of IBM WebSphere Application Server.
ObservationIBM WebSphere Application Server is a server engine for Java EE Web applications.
A vulnerability is present in some versions of IBM WebSphere Application Server. The flaw lies in administrative client class. Successful exploitation could allow a remote attacker to execute random java codes in the target system.
147443 - SuSE SLES 12 SP3, 12 SP4, SLED 12 SP3, 12 SP4 SUSE-SU-2018:4089-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-4700
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4089-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004958.html
SuSE SLED 12 SP3x86_64cups-libs-1.7.5-20.20.1cups-client-1.7.5-20.20.1cups-1.7.5-20.20.1cups-debugsource-1.7.5-20.20.1cups-libs-debuginfo-32bit-1.7.5-20.20.1cups-libs-debuginfo-1.7.5-20.20.1cups-debuginfo-1.7.5-20.20.1cups-client-debuginfo-1.7.5-20.20.1cups-libs-32bit-1.7.5-20.20.1
SuSE SLED 12 SP4x86_64cups-libs-1.7.5-20.20.1cups-client-1.7.5-20.20.1cups-1.7.5-20.20.1cups-debugsource-1.7.5-20.20.1cups-libs-debuginfo-32bit-1.7.5-20.20.1cups-libs-debuginfo-1.7.5-20.20.1cups-debuginfo-1.7.5-20.20.1cups-client-debuginfo-1.7.5-20.20.1cups-libs-32bit-1.7.5-20.20.1
SuSE SLES 12 SP4x86_64cups-libs-1.7.5-20.20.1cups-client-1.7.5-20.20.1cups-1.7.5-20.20.1cups-debugsource-1.7.5-20.20.1
cups-libs-debuginfo-32bit-1.7.5-20.20.1cups-debuginfo-1.7.5-20.20.1cups-libs-32bit-1.7.5-20.20.1cups-client-debuginfo-1.7.5-20.20.1cups-libs-debuginfo-1.7.5-20.20.1
SuSE SLES 12 SP3x86_64cups-libs-1.7.5-20.20.1cups-client-1.7.5-20.20.1cups-1.7.5-20.20.1cups-debugsource-1.7.5-20.20.1cups-libs-debuginfo-32bit-1.7.5-20.20.1cups-debuginfo-1.7.5-20.20.1cups-libs-32bit-1.7.5-20.20.1cups-client-debuginfo-1.7.5-20.20.1cups-libs-debuginfo-1.7.5-20.20.1
147445 - SuSE Linux 15.0, 42.3 openSUSE-SU-2018:4117-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-12384, CVE-2018-12404
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4117-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00065.html
SuSE Linux 15.0x86_64libsoftokn3-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-sysinit-debuginfo-3.36.6-lp150.2.6.1libfreebl3-32bit-3.36.6-lp150.2.6.1mozilla-nss-sysinit-3.36.6-lp150.2.6.1mozilla-nss-sysinit-32bit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-32bit-debuginfo-3.36.6-lp150.2.6.1libsoftokn3-32bit-3.36.6-lp150.2.6.1mozilla-nss-tools-3.36.6-lp150.2.6.1mozilla-nss-certs-32bit-3.36.6-lp150.2.6.1mozilla-nss-32bit-3.36.6-lp150.2.6.1libsoftokn3-3.36.6-lp150.2.6.1libfreebl3-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-certs-32bit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-devel-3.36.6-lp150.2.6.1mozilla-nss-debugsource-3.36.6-lp150.2.6.1mozilla-nss-certs-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-certs-3.36.6-lp150.2.6.1mozilla-nss-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-3.36.6-lp150.2.6.1libfreebl3-32bit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-sysinit-32bit-3.36.6-lp150.2.6.1libfreebl3-3.36.6-lp150.2.6.1
libsoftokn3-32bit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-tools-debuginfo-3.36.6-lp150.2.6.1
i586libsoftokn3-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-sysinit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-sysinit-3.36.6-lp150.2.6.1mozilla-nss-tools-3.36.6-lp150.2.6.1libsoftokn3-3.36.6-lp150.2.6.1libfreebl3-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-devel-3.36.6-lp150.2.6.1mozilla-nss-debugsource-3.36.6-lp150.2.6.1mozilla-nss-certs-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-certs-3.36.6-lp150.2.6.1mozilla-nss-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-3.36.6-lp150.2.6.1libfreebl3-3.36.6-lp150.2.6.1mozilla-nss-tools-debuginfo-3.36.6-lp150.2.6.1
SuSE Linux 42.3x86_64mozilla-nss-debuginfo-32bit-3.36.6-54.1mozilla-nss-certs-3.36.6-54.1libfreebl3-32bit-3.36.6-54.1mozilla-nss-certs-debuginfo-32bit-3.36.6-54.1mozilla-nss-sysinit-32bit-3.36.6-54.1libsoftokn3-debuginfo-32bit-3.36.6-54.1libfreebl3-debuginfo-32bit-3.36.6-54.1libsoftokn3-debuginfo-3.36.6-54.1libfreebl3-3.36.6-54.1mozilla-nss-certs-debuginfo-3.36.6-54.1mozilla-nss-sysinit-debuginfo-3.36.6-54.1mozilla-nss-sysinit-debuginfo-32bit-3.36.6-54.1mozilla-nss-devel-3.36.6-54.1mozilla-nss-debugsource-3.36.6-54.1libsoftokn3-3.36.6-54.1mozilla-nss-tools-debuginfo-3.36.6-54.1mozilla-nss-32bit-3.36.6-54.1mozilla-nss-sysinit-3.36.6-54.1mozilla-nss-debuginfo-3.36.6-54.1mozilla-nss-3.36.6-54.1libsoftokn3-32bit-3.36.6-54.1mozilla-nss-tools-3.36.6-54.1libfreebl3-debuginfo-3.36.6-54.1mozilla-nss-certs-32bit-3.36.6-54.1
i586mozilla-nss-certs-3.36.6-54.1libsoftokn3-debuginfo-3.36.6-54.1libfreebl3-3.36.6-54.1mozilla-nss-certs-debuginfo-3.36.6-54.1mozilla-nss-sysinit-debuginfo-3.36.6-54.1mozilla-nss-devel-3.36.6-54.1mozilla-nss-debugsource-3.36.6-54.1libsoftokn3-3.36.6-54.1mozilla-nss-tools-debuginfo-3.36.6-54.1mozilla-nss-sysinit-3.36.6-54.1mozilla-nss-debuginfo-3.36.6-54.1mozilla-nss-3.36.6-54.1mozilla-nss-tools-3.36.6-54.1
libfreebl3-debuginfo-3.36.6-54.1
147446 - SuSE Linux 15.0 openSUSE-SU-2018:4156-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-10851, CVE-2018-14626
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4156-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00088.html
SuSE Linux 15.0x86_64pdns-debuginfo-4.1.2-lp150.3.6.1pdns-backend-mydns-debuginfo-4.1.2-lp150.3.6.1pdns-backend-godbc-4.1.2-lp150.3.6.1pdns-backend-lua-debuginfo-4.1.2-lp150.3.6.1pdns-backend-geoip-4.1.2-lp150.3.6.1pdns-backend-ldap-debuginfo-4.1.2-lp150.3.6.1pdns-backend-postgresql-4.1.2-lp150.3.6.1pdns-backend-remote-debuginfo-4.1.2-lp150.3.6.1pdns-debugsource-4.1.2-lp150.3.6.1pdns-backend-mydns-4.1.2-lp150.3.6.1pdns-backend-geoip-debuginfo-4.1.2-lp150.3.6.1pdns-backend-postgresql-debuginfo-4.1.2-lp150.3.6.1pdns-4.1.2-lp150.3.6.1pdns-backend-sqlite3-4.1.2-lp150.3.6.1pdns-backend-ldap-4.1.2-lp150.3.6.1pdns-backend-mysql-4.1.2-lp150.3.6.1pdns-backend-sqlite3-debuginfo-4.1.2-lp150.3.6.1pdns-backend-remote-4.1.2-lp150.3.6.1pdns-backend-mysql-debuginfo-4.1.2-lp150.3.6.1pdns-backend-lua-4.1.2-lp150.3.6.1pdns-backend-godbc-debuginfo-4.1.2-lp150.3.6.1
147447 - SuSE Linux 42.3 openSUSE-SU-2018:4141-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-4700
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4141-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00078.html
SuSE Linux 42.3x86_64cups-libs-1.7.5-12.9.1cups-libs-32bit-1.7.5-12.9.1cups-client-1.7.5-12.9.1cups-libs-debuginfo-32bit-1.7.5-12.9.1cups-debuginfo-1.7.5-12.9.1cups-libs-debuginfo-1.7.5-12.9.1cups-debugsource-1.7.5-12.9.1cups-ddk-1.7.5-12.9.1cups-client-debuginfo-1.7.5-12.9.1cups-1.7.5-12.9.1cups-devel-1.7.5-12.9.1cups-ddk-debuginfo-1.7.5-12.9.1
i586cups-libs-1.7.5-12.9.1cups-client-1.7.5-12.9.1cups-debuginfo-1.7.5-12.9.1cups-libs-debuginfo-1.7.5-12.9.1cups-debugsource-1.7.5-12.9.1cups-ddk-1.7.5-12.9.1cups-client-debuginfo-1.7.5-12.9.1cups-1.7.5-12.9.1cups-devel-1.7.5-12.9.1cups-ddk-debuginfo-1.7.5-12.9.1
147448 - SuSE Linux 42.3 openSUSE-SU-2018:4140-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19409, CVE-2018-19475, CVE-2018-19476, CVE-2018-19477
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4140-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00077.html
SuSE Linux 42.3x86_64libspectre-debugsource-0.2.7-17.4.2ghostscript-mini-9.26-14.12.1ghostscript-x11-9.26-14.12.1libspectre-devel-0.2.7-17.4.2ghostscript-debuginfo-9.26-14.12.1ghostscript-devel-9.26-14.12.1libspectre1-0.2.7-17.4.2ghostscript-x11-debuginfo-9.26-14.12.1ghostscript-mini-debugsource-9.26-14.12.1ghostscript-9.26-14.12.1
ghostscript-debugsource-9.26-14.12.1ghostscript-mini-debuginfo-9.26-14.12.1ghostscript-mini-devel-9.26-14.12.1libspectre1-debuginfo-0.2.7-17.4.2
i586libspectre-debugsource-0.2.7-17.4.2ghostscript-mini-9.26-14.12.1ghostscript-x11-9.26-14.12.1libspectre-devel-0.2.7-17.4.2ghostscript-debuginfo-9.26-14.12.1ghostscript-devel-9.26-14.12.1libspectre1-0.2.7-17.4.2ghostscript-x11-debuginfo-9.26-14.12.1ghostscript-mini-debugsource-9.26-14.12.1ghostscript-9.26-14.12.1ghostscript-debugsource-9.26-14.12.1ghostscript-mini-debuginfo-9.26-14.12.1ghostscript-mini-devel-9.26-14.12.1libspectre1-debuginfo-0.2.7-17.4.2
147449 - SuSE Linux 15.0 openSUSE-SU-2018:4105-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-4700
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4105-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00053.html
SuSE Linux 15.0x86_64libcupscgi1-debuginfo-2.2.7-lp150.2.6.1libcupsppdc1-32bit-2.2.7-lp150.2.6.1cups-debugsource-2.2.7-lp150.2.6.1cups-2.2.7-lp150.2.6.1cups-devel-2.2.7-lp150.2.6.1cups-ddk-2.2.7-lp150.2.6.1cups-debuginfo-2.2.7-lp150.2.6.1libcupsimage2-2.2.7-lp150.2.6.1libcupsmime1-32bit-debuginfo-2.2.7-lp150.2.6.1cups-ddk-debuginfo-2.2.7-lp150.2.6.1libcupsimage2-32bit-debuginfo-2.2.7-lp150.2.6.1libcupsppdc1-32bit-debuginfo-2.2.7-lp150.2.6.1libcups2-debuginfo-2.2.7-lp150.2.6.1libcups2-32bit-2.2.7-lp150.2.6.1libcups2-32bit-debuginfo-2.2.7-lp150.2.6.1libcups2-2.2.7-lp150.2.6.1libcupsppdc1-2.2.7-lp150.2.6.1libcupsimage2-debuginfo-2.2.7-lp150.2.6.1libcupsmime1-32bit-2.2.7-lp150.2.6.1
cups-config-2.2.7-lp150.2.6.1cups-client-2.2.7-lp150.2.6.1libcupscgi1-32bit-debuginfo-2.2.7-lp150.2.6.1libcupscgi1-32bit-2.2.7-lp150.2.6.1libcupsmime1-debuginfo-2.2.7-lp150.2.6.1cups-devel-32bit-2.2.7-lp150.2.6.1libcupsimage2-32bit-2.2.7-lp150.2.6.1libcupscgi1-2.2.7-lp150.2.6.1libcupsmime1-2.2.7-lp150.2.6.1libcupsppdc1-debuginfo-2.2.7-lp150.2.6.1cups-client-debuginfo-2.2.7-lp150.2.6.1
i586cups-devel-2.2.7-lp150.2.6.1libcupsmime1-2.2.7-lp150.2.6.1cups-client-debuginfo-2.2.7-lp150.2.6.1libcupscgi1-debuginfo-2.2.7-lp150.2.6.1libcupsppdc1-2.2.7-lp150.2.6.1cups-config-2.2.7-lp150.2.6.1cups-debuginfo-2.2.7-lp150.2.6.1libcupsimage2-2.2.7-lp150.2.6.1cups-ddk-2.2.7-lp150.2.6.1cups-2.2.7-lp150.2.6.1cups-debugsource-2.2.7-lp150.2.6.1libcups2-debuginfo-2.2.7-lp150.2.6.1libcupscgi1-2.2.7-lp150.2.6.1libcupsppdc1-debuginfo-2.2.7-lp150.2.6.1libcupsmime1-debuginfo-2.2.7-lp150.2.6.1libcupsimage2-debuginfo-2.2.7-lp150.2.6.1libcups2-2.2.7-lp150.2.6.1cups-ddk-debuginfo-2.2.7-lp150.2.6.1cups-client-2.2.7-lp150.2.6.1
147451 - SuSE Linux 15.0 openSUSE-SU-2018:4152-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-10851, CVE-2018-14626, CVE-2018-14644, CVE-2018-16855
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4152-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00087.html
SuSE Linux 15.0x86_64pdns-recursor-4.1.2-lp150.2.3.1pdns-recursor-debugsource-4.1.2-lp150.2.3.1pdns-recursor-debuginfo-4.1.2-lp150.2.3.1
147452 - SuSE Linux 15.0 openSUSE-SU-2018:4144-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes
Risk Level: HighCVE: CVE-2018-19519
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4144-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00081.html
SuSE Linux 15.0x86_64tcpdump-debuginfo-4.9.2-lp150.2.3.1tcpdump-4.9.2-lp150.2.3.1tcpdump-debugsource-4.9.2-lp150.2.3.1
147453 - SuSE Linux 15.0 openSUSE-SU-2018:4135-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-16847
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4135-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00072.html
SuSE Linux 15.0x86_64qemu-s390-2.11.2-lp150.7.15.1qemu-debuginfo-2.11.2-lp150.7.15.1qemu-block-iscsi-debuginfo-2.11.2-lp150.7.15.1qemu-ksm-2.11.2-lp150.7.15.1qemu-x86-debuginfo-2.11.2-lp150.7.15.1qemu-guest-agent-debuginfo-2.11.2-lp150.7.15.1qemu-x86-2.11.2-lp150.7.15.1qemu-extra-2.11.2-lp150.7.15.1qemu-linux-user-2.11.2-lp150.7.15.1qemu-block-ssh-debuginfo-2.11.2-lp150.7.15.1qemu-arm-debuginfo-2.11.2-lp150.7.15.1qemu-kvm-2.11.2-lp150.7.15.1qemu-block-curl-2.11.2-lp150.7.15.1qemu-lang-2.11.2-lp150.7.15.1qemu-ppc-2.11.2-lp150.7.15.1qemu-block-curl-debuginfo-2.11.2-lp150.7.15.1qemu-tools-2.11.2-lp150.7.15.1qemu-block-gluster-2.11.2-lp150.7.15.1qemu-block-rbd-debuginfo-2.11.2-lp150.7.15.1
qemu-arm-2.11.2-lp150.7.15.1qemu-linux-user-debuginfo-2.11.2-lp150.7.15.1qemu-guest-agent-2.11.2-lp150.7.15.1qemu-block-dmg-debuginfo-2.11.2-lp150.7.15.1qemu-block-iscsi-2.11.2-lp150.7.15.1qemu-block-dmg-2.11.2-lp150.7.15.1qemu-s390-debuginfo-2.11.2-lp150.7.15.1qemu-block-ssh-2.11.2-lp150.7.15.1qemu-block-gluster-debuginfo-2.11.2-lp150.7.15.1qemu-linux-user-debugsource-2.11.2-lp150.7.15.1qemu-block-rbd-2.11.2-lp150.7.15.1qemu-ppc-debuginfo-2.11.2-lp150.7.15.1qemu-debugsource-2.11.2-lp150.7.15.1qemu-extra-debuginfo-2.11.2-lp150.7.15.1qemu-testsuite-2.11.2-lp150.7.15.1qemu-2.11.2-lp150.7.15.1qemu-tools-debuginfo-2.11.2-lp150.7.15.1
noarchqemu-ipxe-1.0.0+-lp150.7.15.1qemu-vgabios-1.11.0-lp150.7.15.1qemu-sgabios-8-lp150.7.15.1qemu-seabios-1.11.0-lp150.7.15.1
147454 - SuSE Linux 42.3 openSUSE-SU-2018:4147-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-10839, CVE-2018-15746, CVE-2018-17958, CVE-2018-17962, CVE-2018-17963, CVE-2018-18849
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4147-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00084.html
SuSE Linux 42.3i586qemu-linux-user-2.9.1-50.1qemu-linux-user-debugsource-2.9.1-50.1qemu-linux-user-debuginfo-2.9.1-50.1
noarchqemu-vgabios-1.10.2-50.1qemu-ipxe-1.0.0+-50.1qemu-sgabios-8-50.1qemu-seabios-1.10.2-50.1
x86_64qemu-block-rbd-2.9.1-50.1qemu-ppc-debuginfo-2.9.1-50.1qemu-x86-2.9.1-50.1qemu-arm-debuginfo-2.9.1-50.1qemu-linux-user-debugsource-2.9.1-50.1
qemu-kvm-2.9.1-50.1qemu-linux-user-2.9.1-50.1qemu-ksm-2.9.1-50.1qemu-block-ssh-debuginfo-2.9.1-50.1qemu-extra-debuginfo-2.9.1-50.1qemu-ppc-2.9.1-50.1qemu-block-ssh-2.9.1-50.1qemu-tools-debuginfo-2.9.1-50.1qemu-lang-2.9.1-50.1qemu-tools-2.9.1-50.1qemu-block-dmg-debuginfo-2.9.1-50.1qemu-block-dmg-2.9.1-50.1qemu-testsuite-2.9.1-50.1qemu-block-rbd-debuginfo-2.9.1-50.1qemu-guest-agent-debuginfo-2.9.1-50.1qemu-2.9.1-50.1qemu-block-curl-debuginfo-2.9.1-50.1qemu-x86-debuginfo-2.9.1-50.1qemu-linux-user-debuginfo-2.9.1-50.1qemu-arm-2.9.1-50.1qemu-s390-debuginfo-2.9.1-50.1qemu-block-iscsi-debuginfo-2.9.1-50.1qemu-debugsource-2.9.1-50.1qemu-guest-agent-2.9.1-50.1qemu-s390-2.9.1-50.1qemu-block-curl-2.9.1-50.1qemu-extra-2.9.1-50.1qemu-block-iscsi-2.9.1-50.1
147455 - SuSE Linux 42.3 openSUSE-SU-2018:4148-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-17204, CVE-2018-17205, CVE-2018-17206
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4148-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00085.html
SuSE Linux 42.3x86_64openvswitch-debugsource-2.7.6-19.1openvswitch-devel-2.7.6-19.1openvswitch-ovn-docker-2.7.6-19.1openvswitch-test-debuginfo-2.7.6-19.1openvswitch-2.7.6-19.1openvswitch-ovn-vtep-debuginfo-2.7.6-19.1openvswitch-ovn-vtep-2.7.6-19.1python-openvswitch-2.7.6-19.1openvswitch-pki-2.7.6-19.1openvswitch-test-2.7.6-19.1openvswitch-ovn-central-debuginfo-2.7.6-19.1
openvswitch-ovn-common-debuginfo-2.7.6-19.1python-openvswitch-test-2.7.6-19.1openvswitch-ovn-central-2.7.6-19.1openvswitch-vtep-2.7.6-19.1openvswitch-ovn-host-debuginfo-2.7.6-19.1openvswitch-vtep-debuginfo-2.7.6-19.1openvswitch-debuginfo-2.7.6-19.1openvswitch-ovn-host-2.7.6-19.1openvswitch-ovn-common-2.7.6-19.1
i586openvswitch-debugsource-2.7.6-19.1openvswitch-devel-2.7.6-19.1openvswitch-ovn-docker-2.7.6-19.1openvswitch-test-debuginfo-2.7.6-19.1openvswitch-2.7.6-19.1openvswitch-ovn-vtep-debuginfo-2.7.6-19.1openvswitch-ovn-vtep-2.7.6-19.1python-openvswitch-2.7.6-19.1openvswitch-pki-2.7.6-19.1openvswitch-test-2.7.6-19.1openvswitch-ovn-central-debuginfo-2.7.6-19.1openvswitch-ovn-common-debuginfo-2.7.6-19.1python-openvswitch-test-2.7.6-19.1openvswitch-ovn-central-2.7.6-19.1openvswitch-vtep-2.7.6-19.1openvswitch-ovn-host-debuginfo-2.7.6-19.1openvswitch-vtep-debuginfo-2.7.6-19.1openvswitch-debuginfo-2.7.6-19.1openvswitch-ovn-host-2.7.6-19.1openvswitch-ovn-common-2.7.6-19.1
147456 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:4070-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-18849, CVE-2018-18883, CVE-2018-19961, CVE-2018-19962, CVE-2018-19965, CVE-2018-19966
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4070-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004952.html
SuSE SLED 12 SP3x86_64xen-libs-debuginfo-32bit-4.9.3_03-3.47.1xen-debugsource-4.9.3_03-3.47.1xen-libs-4.9.3_03-3.47.1xen-libs-debuginfo-4.9.3_03-3.47.1xen-4.9.3_03-3.47.1xen-libs-32bit-4.9.3_03-3.47.1
SuSE SLES 12 SP3
x86_64xen-libs-debuginfo-32bit-4.9.3_03-3.47.1xen-tools-debuginfo-4.9.3_03-3.47.1xen-debugsource-4.9.3_03-3.47.1xen-tools-domU-4.9.3_03-3.47.1xen-libs-4.9.3_03-3.47.1xen-libs-debuginfo-4.9.3_03-3.47.1xen-tools-domU-debuginfo-4.9.3_03-3.47.1xen-doc-html-4.9.3_03-3.47.1xen-4.9.3_03-3.47.1xen-libs-32bit-4.9.3_03-3.47.1xen-tools-4.9.3_03-3.47.1
147457 - SuSE SLES 12 SP3 SUSE-SU-2018:4128-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-17204, CVE-2018-17205, CVE-2018-17206
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4128-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004965.html
SuSE SLES 12 SP3x86_64openvswitch-debuginfo-2.7.6-3.23.1openvswitch-2.7.6-3.23.1openvswitch-debugsource-2.7.6-3.23.1
147458 - SuSE Linux 15.0 openSUSE-SU-2018:4133-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-18281
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4133-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00070.html
SuSE Linux 15.0x86_64kernel-kvmsmall-base-4.12.14-lp150.12.28.1kernel-default-debugsource-4.12.14-lp150.12.28.1kernel-vanilla-debugsource-4.12.14-lp150.12.28.1
kernel-kvmsmall-debuginfo-4.12.14-lp150.12.28.1kernel-vanilla-devel-debuginfo-4.12.14-lp150.12.28.1kernel-kvmsmall-devel-debuginfo-4.12.14-lp150.12.28.1kernel-kvmsmall-4.12.14-lp150.12.28.1kernel-vanilla-base-4.12.14-lp150.12.28.1kernel-kvmsmall-devel-4.12.14-lp150.12.28.1kernel-kvmsmall-base-debuginfo-4.12.14-lp150.12.28.1kernel-debug-debugsource-4.12.14-lp150.12.28.1kernel-obs-qa-4.12.14-lp150.12.28.1kernel-debug-base-debuginfo-4.12.14-lp150.12.28.1kernel-vanilla-4.12.14-lp150.12.28.1kernel-obs-build-debugsource-4.12.14-lp150.12.28.1kernel-default-base-4.12.14-lp150.12.28.1kernel-default-devel-debuginfo-4.12.14-lp150.12.28.1kernel-default-debuginfo-4.12.14-lp150.12.28.1kernel-default-devel-4.12.14-lp150.12.28.1kernel-debug-devel-4.12.14-lp150.12.28.1kernel-syms-4.12.14-lp150.12.28.1kernel-vanilla-base-debuginfo-4.12.14-lp150.12.28.1kernel-obs-build-4.12.14-lp150.12.28.1kernel-vanilla-devel-4.12.14-lp150.12.28.1kernel-debug-debuginfo-4.12.14-lp150.12.28.1kernel-kvmsmall-debugsource-4.12.14-lp150.12.28.1kernel-debug-4.12.14-lp150.12.28.1kernel-vanilla-debuginfo-4.12.14-lp150.12.28.1kernel-debug-base-4.12.14-lp150.12.28.1kernel-default-base-debuginfo-4.12.14-lp150.12.28.1kernel-default-4.12.14-lp150.12.28.1kernel-debug-devel-debuginfo-4.12.14-lp150.12.28.1
noarchkernel-docs-html-4.12.14-lp150.12.28.1kernel-docs-4.12.14-lp150.12.28.1kernel-source-vanilla-4.12.14-lp150.12.28.1kernel-source-4.12.14-lp150.12.28.1kernel-devel-4.12.14-lp150.12.28.1kernel-macros-4.12.14-lp150.12.28.1
147459 - SuSE Linux 42.3 openSUSE-SU-2018:4132-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-MAP-NOMATCH
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4132-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00069.html
SuSE Linux 42.3x86_64kernel-debug-base-4.4.165-81.1kernel-obs-build-debugsource-4.4.165-81.1
kernel-vanilla-devel-4.4.165-81.1kernel-obs-build-4.4.165-81.1kernel-default-base-4.4.165-81.1kernel-debug-debuginfo-4.4.165-81.1kernel-default-debuginfo-4.4.165-81.1kernel-default-debugsource-4.4.165-81.1kernel-debug-devel-4.4.165-81.1kernel-vanilla-4.4.165-81.1kernel-debug-base-debuginfo-4.4.165-81.1kernel-obs-qa-4.4.165-81.1kernel-debug-4.4.165-81.1kernel-default-devel-4.4.165-81.1kernel-vanilla-base-debuginfo-4.4.165-81.1kernel-default-base-debuginfo-4.4.165-81.1kernel-vanilla-debugsource-4.4.165-81.1kernel-debug-debugsource-4.4.165-81.1kernel-syms-4.4.165-81.1kernel-vanilla-base-4.4.165-81.1kernel-vanilla-debuginfo-4.4.165-81.1kernel-debug-devel-debuginfo-4.4.165-81.1kernel-default-4.4.165-81.1
noarchkernel-source-vanilla-4.4.165-81.1kernel-docs-html-4.4.165-81.1kernel-macros-4.4.165-81.1kernel-docs-4.4.165-81.1kernel-docs-pdf-4.4.165-81.1kernel-devel-4.4.165-81.1kernel-source-4.4.165-81.1
147460 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:4129-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-10839, CVE-2018-15746, CVE-2018-17958, CVE-2018-17962, CVE-2018-17963, CVE-2018-18849
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4129-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004966.html
SuSE SLED 12 SP3x86_64qemu-tools-2.9.1-6.22.3qemu-block-curl-2.9.1-6.22.3qemu-kvm-2.9.1-6.22.3qemu-2.9.1-6.22.3qemu-x86-2.9.1-6.22.3qemu-block-curl-debuginfo-2.9.1-6.22.3qemu-debugsource-2.9.1-6.22.3qemu-tools-debuginfo-2.9.1-6.22.3
noarchqemu-seabios-1.10.2-6.22.3qemu-vgabios-1.10.2-6.22.3qemu-sgabios-8-6.22.3qemu-ipxe-1.0.0+-6.22.3
SuSE SLES 12 SP3noarchqemu-seabios-1.10.2-6.22.3qemu-vgabios-1.10.2-6.22.3qemu-sgabios-8-6.22.3qemu-ipxe-1.0.0+-6.22.3
x86_64qemu-lang-2.9.1-6.22.3qemu-kvm-2.9.1-6.22.3qemu-tools-2.9.1-6.22.3qemu-block-rbd-debuginfo-2.9.1-6.22.3qemu-guest-agent-2.9.1-6.22.3qemu-block-ssh-debuginfo-2.9.1-6.22.3qemu-block-curl-debuginfo-2.9.1-6.22.3qemu-x86-debuginfo-2.9.1-6.22.3qemu-debugsource-2.9.1-6.22.3qemu-block-rbd-2.9.1-6.22.3qemu-guest-agent-debuginfo-2.9.1-6.22.3qemu-block-iscsi-2.9.1-6.22.3qemu-block-curl-2.9.1-6.22.3qemu-block-iscsi-debuginfo-2.9.1-6.22.3qemu-tools-debuginfo-2.9.1-6.22.3qemu-block-ssh-2.9.1-6.22.3qemu-2.9.1-6.22.3qemu-x86-2.9.1-6.22.3
147461 - SuSE Linux 15.0 openSUSE-SU-2018:4174-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-15750, CVE-2018-15751
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4174-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00091.html
SuSE Linux 15.0x86_64salt-syndic-2018.3.0-lp150.3.17.1python2-salt-2018.3.0-lp150.3.17.1salt-2018.3.0-lp150.3.17.1salt-minion-2018.3.0-lp150.3.17.1salt-doc-2018.3.0-lp150.3.17.1python3-salt-2018.3.0-lp150.3.17.1salt-master-2018.3.0-lp150.3.17.1
salt-ssh-2018.3.0-lp150.3.17.1salt-proxy-2018.3.0-lp150.3.17.1salt-api-2018.3.0-lp150.3.17.1salt-cloud-2018.3.0-lp150.3.17.1
noarchsalt-zsh-completion-2018.3.0-lp150.3.17.1salt-fish-completion-2018.3.0-lp150.3.17.1salt-bash-completion-2018.3.0-lp150.3.17.1
147463 - SuSE Linux 15.0 openSUSE-SU-2018:4138-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19409, CVE-2018-19475, CVE-2018-19476, CVE-2018-19477
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4138-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00075.html
SuSE Linux 15.0x86_64ghostscript-devel-9.26-lp150.2.9.1libspectre1-0.2.8-lp150.2.6.2ghostscript-debugsource-9.26-lp150.2.9.1ghostscript-mini-devel-9.26-lp150.2.9.1libspectre-devel-0.2.8-lp150.2.6.2libspectre-debugsource-0.2.8-lp150.2.6.2ghostscript-mini-9.26-lp150.2.9.1ghostscript-9.26-lp150.2.9.1libspectre1-debuginfo-0.2.8-lp150.2.6.2ghostscript-x11-debuginfo-9.26-lp150.2.9.1ghostscript-x11-9.26-lp150.2.9.1ghostscript-mini-debugsource-9.26-lp150.2.9.1ghostscript-debuginfo-9.26-lp150.2.9.1ghostscript-mini-debuginfo-9.26-lp150.2.9.1
i586ghostscript-mini-9.26-lp150.2.9.1ghostscript-mini-debugsource-9.26-lp150.2.9.1ghostscript-debuginfo-9.26-lp150.2.9.1ghostscript-mini-debuginfo-9.26-lp150.2.9.1ghostscript-devel-9.26-lp150.2.9.1ghostscript-x11-debuginfo-9.26-lp150.2.9.1ghostscript-x11-9.26-lp150.2.9.1ghostscript-debugsource-9.26-lp150.2.9.1ghostscript-mini-devel-9.26-lp150.2.9.1ghostscript-9.26-lp150.2.9.1
147464 - SuSE SLES 11 SP4 SUSE-SU-2018:4121-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2016-10729
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4121-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004963.html
SuSE SLES 11 SP4i586amanda-2.5.2.1-188.5.1
x86_64amanda-2.5.2.1-188.5.1
147466 - SuSE SLES 12 SP3, 12 SP4, SLED 12 SP3, 12 SP4 SUSE-SU-2018:4179-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-15518, CVE-2018-19873
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4179-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004976.html
SuSE SLED 12 SP3x86_64libQt5Sql5-sqlite-5.6.2-6.15.2libQt5Sql5-5.6.2-6.15.2libQt5Sql5-mysql-5.6.2-6.15.2libQt5Sql5-postgresql-5.6.2-6.15.2libQt5OpenGL5-debuginfo-5.6.2-6.15.2libQt5Widgets5-debuginfo-5.6.2-6.15.2libQt5Network5-debuginfo-5.6.2-6.15.2libQt5Gui5-5.6.2-6.15.2libQt5Sql5-mysql-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-debuginfo-5.6.2-6.15.2libQt5Test5-5.6.2-6.15.2libQt5Core5-5.6.2-6.15.2libQt5Xml5-debuginfo-5.6.2-6.15.2libQt5PrintSupport5-debuginfo-5.6.2-6.15.2libqt5-qtbase-debugsource-5.6.2-6.15.2libQt5Sql5-sqlite-debuginfo-5.6.2-6.15.2libQt5Concurrent5-5.6.2-6.15.2
libQt5DBus5-5.6.2-6.15.2libQt5PrintSupport5-5.6.2-6.15.2libQt5Gui5-debuginfo-5.6.2-6.15.2libQt5Network5-5.6.2-6.15.2libQt5Core5-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-5.6.2-6.15.2libQt5Widgets5-5.6.2-6.15.2libQt5OpenGL5-5.6.2-6.15.2libQt5Concurrent5-debuginfo-5.6.2-6.15.2libQt5Xml5-5.6.2-6.15.2libQt5DBus5-debuginfo-5.6.2-6.15.2libQt5Sql5-postgresql-debuginfo-5.6.2-6.15.2libQt5Test5-debuginfo-5.6.2-6.15.2libQt5Sql5-debuginfo-5.6.2-6.15.2
SuSE SLED 12 SP4x86_64libQt5Sql5-sqlite-5.6.2-6.15.2libQt5Sql5-5.6.2-6.15.2libQt5Sql5-mysql-5.6.2-6.15.2libQt5Sql5-postgresql-5.6.2-6.15.2libQt5OpenGL5-debuginfo-5.6.2-6.15.2libQt5Widgets5-debuginfo-5.6.2-6.15.2libQt5Network5-debuginfo-5.6.2-6.15.2libQt5Gui5-5.6.2-6.15.2libQt5Sql5-mysql-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-debuginfo-5.6.2-6.15.2libQt5Test5-5.6.2-6.15.2libQt5Core5-5.6.2-6.15.2libQt5Xml5-debuginfo-5.6.2-6.15.2libQt5PrintSupport5-debuginfo-5.6.2-6.15.2libqt5-qtbase-debugsource-5.6.2-6.15.2libQt5Sql5-sqlite-debuginfo-5.6.2-6.15.2libQt5Concurrent5-5.6.2-6.15.2libQt5DBus5-5.6.2-6.15.2libQt5PrintSupport5-5.6.2-6.15.2libQt5Gui5-debuginfo-5.6.2-6.15.2libQt5Network5-5.6.2-6.15.2libQt5Core5-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-5.6.2-6.15.2libQt5Widgets5-5.6.2-6.15.2libQt5OpenGL5-5.6.2-6.15.2libQt5Concurrent5-debuginfo-5.6.2-6.15.2libQt5Xml5-5.6.2-6.15.2libQt5DBus5-debuginfo-5.6.2-6.15.2libQt5Sql5-postgresql-debuginfo-5.6.2-6.15.2libQt5Test5-debuginfo-5.6.2-6.15.2libQt5Sql5-debuginfo-5.6.2-6.15.2
SuSE SLES 12 SP4x86_64libQt5Sql5-sqlite-5.6.2-6.15.2libQt5Sql5-5.6.2-6.15.2libQt5Sql5-mysql-5.6.2-6.15.2libQt5Sql5-postgresql-5.6.2-6.15.2libQt5OpenGL5-debuginfo-5.6.2-6.15.2libQt5Widgets5-debuginfo-5.6.2-6.15.2libQt5Network5-debuginfo-5.6.2-6.15.2libQt5Gui5-5.6.2-6.15.2libQt5Sql5-mysql-debuginfo-5.6.2-6.15.2
libQt5Sql5-unixODBC-debuginfo-5.6.2-6.15.2libQt5Test5-5.6.2-6.15.2libQt5Core5-5.6.2-6.15.2libQt5Xml5-debuginfo-5.6.2-6.15.2libQt5PrintSupport5-debuginfo-5.6.2-6.15.2libqt5-qtbase-debugsource-5.6.2-6.15.2libQt5Sql5-sqlite-debuginfo-5.6.2-6.15.2libQt5Concurrent5-5.6.2-6.15.2libQt5DBus5-5.6.2-6.15.2libQt5PrintSupport5-5.6.2-6.15.2libQt5Gui5-debuginfo-5.6.2-6.15.2libQt5Network5-5.6.2-6.15.2libQt5Core5-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-5.6.2-6.15.2libQt5Widgets5-5.6.2-6.15.2libQt5OpenGL5-5.6.2-6.15.2libQt5Concurrent5-debuginfo-5.6.2-6.15.2libQt5Xml5-5.6.2-6.15.2libQt5DBus5-debuginfo-5.6.2-6.15.2libQt5Sql5-postgresql-debuginfo-5.6.2-6.15.2libQt5Test5-debuginfo-5.6.2-6.15.2libQt5Sql5-debuginfo-5.6.2-6.15.2
SuSE SLES 12 SP3x86_64libQt5Sql5-sqlite-5.6.2-6.15.2libQt5Sql5-5.6.2-6.15.2libQt5Sql5-mysql-5.6.2-6.15.2libQt5Sql5-postgresql-5.6.2-6.15.2libQt5OpenGL5-debuginfo-5.6.2-6.15.2libQt5Widgets5-debuginfo-5.6.2-6.15.2libQt5Network5-debuginfo-5.6.2-6.15.2libQt5Gui5-5.6.2-6.15.2libQt5Sql5-mysql-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-debuginfo-5.6.2-6.15.2libQt5Test5-5.6.2-6.15.2libQt5Core5-5.6.2-6.15.2libQt5Xml5-debuginfo-5.6.2-6.15.2libQt5PrintSupport5-debuginfo-5.6.2-6.15.2libqt5-qtbase-debugsource-5.6.2-6.15.2libQt5Sql5-sqlite-debuginfo-5.6.2-6.15.2libQt5Concurrent5-5.6.2-6.15.2libQt5DBus5-5.6.2-6.15.2libQt5PrintSupport5-5.6.2-6.15.2libQt5Gui5-debuginfo-5.6.2-6.15.2libQt5Network5-5.6.2-6.15.2libQt5Core5-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-5.6.2-6.15.2libQt5Widgets5-5.6.2-6.15.2libQt5OpenGL5-5.6.2-6.15.2libQt5Concurrent5-debuginfo-5.6.2-6.15.2libQt5Xml5-5.6.2-6.15.2libQt5DBus5-debuginfo-5.6.2-6.15.2libQt5Sql5-postgresql-debuginfo-5.6.2-6.15.2libQt5Test5-debuginfo-5.6.2-6.15.2libQt5Sql5-debuginfo-5.6.2-6.15.2
147467 - SuSE Linux 15.0, 42.3 openSUSE-SU-2018:4124-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes
Risk Level: HighCVE: CVE-2018-19968, CVE-2018-19969, CVE-2018-19970
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4124-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00067.html
SuSE Linux 15.0noarchphpMyAdmin-4.8.4-lp150.2.12.1
SuSE Linux 42.3noarchphpMyAdmin-4.8.4-24.1
147469 - SuSE SLES 12 SP3, 12 SP4, SLED 12 SP3, 12 SP4 SUSE-SU-2018:4149-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-19519
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4149-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004969.html
SuSE SLED 12 SP3x86_64tcpdump-4.9.2-14.8.1tcpdump-debugsource-4.9.2-14.8.1tcpdump-debuginfo-4.9.2-14.8.1
SuSE SLED 12 SP4x86_64tcpdump-4.9.2-14.8.1tcpdump-debugsource-4.9.2-14.8.1tcpdump-debuginfo-4.9.2-14.8.1
SuSE SLES 12 SP4x86_64tcpdump-4.9.2-14.8.1tcpdump-debugsource-4.9.2-14.8.1tcpdump-debuginfo-4.9.2-14.8.1
SuSE SLES 12 SP3x86_64
tcpdump-4.9.2-14.8.1tcpdump-debugsource-4.9.2-14.8.1tcpdump-debuginfo-4.9.2-14.8.1
147470 - SuSE SLES 12 SP4, SLED 12 SP4 SUSE-SU-2018:3882-2 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2017-11591, CVE-2017-11683, CVE-2017-14859, CVE-2017-14862, CVE-2017-14864, CVE-2017-17669, CVE-2018-10958, CVE-2018-10998, CVE-2018-11531
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:3882-2
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004960.html
SuSE SLED 12 SP4x86_64exiv2-debuginfo-0.23-12.5.1libexiv2-12-debuginfo-0.23-12.5.1libexiv2-12-0.23-12.5.1exiv2-debugsource-0.23-12.5.1
SuSE SLES 12 SP4x86_64exiv2-debuginfo-0.23-12.5.1libexiv2-12-debuginfo-0.23-12.5.1libexiv2-12-0.23-12.5.1exiv2-debugsource-0.23-12.5.1
147471 - SuSE SLES 12 SP4, SLED 12 SP4 SUSE-SU-2018:3770-2 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-16850
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:3770-2
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004954.html
SuSE SLED 12 SP4x86_64postgresql10-debuginfo-10.6-1.6.1libecpg6-debuginfo-10.6-1.6.1libpq5-debuginfo-10.6-1.6.1
libpq5-10.6-1.6.1postgresql10-libs-debugsource-10.6-1.6.1postgresql10-10.6-1.6.1postgresql10-debugsource-10.6-1.6.1libpq5-debuginfo-32bit-10.6-1.6.1libpq5-32bit-10.6-1.6.1libecpg6-10.6-1.6.1
SuSE SLES 12 SP4noarchpostgresql10-docs-10.6-1.6.1
x86_64postgresql10-libs-debugsource-10.6-1.6.1postgresql10-debugsource-10.6-1.6.1libpq5-10.6-1.6.1libpq5-debuginfo-10.6-1.6.1libecpg6-10.6-1.6.1postgresql10-contrib-10.6-1.6.1postgresql10-server-10.6-1.6.1postgresql10-debuginfo-10.6-1.6.1postgresql10-contrib-debuginfo-10.6-1.6.1libecpg6-debuginfo-10.6-1.6.1postgresql10-server-debuginfo-10.6-1.6.1libpq5-32bit-10.6-1.6.1postgresql10-10.6-1.6.1libpq5-debuginfo-32bit-10.6-1.6.1
147473 - SuSE SLED 12 SP4 SUSE-SU-2018:3587-2 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2017-0358
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:3587-2
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004961.html
SuSE SLED 12 SP4x86_64libntfs-3g84-debuginfo-2013.1.13-5.3.1ntfs-3g-2013.1.13-5.3.1ntfs-3g-debuginfo-2013.1.13-5.3.1libntfs-3g84-2013.1.13-5.3.1ntfsprogs-debuginfo-2013.1.13-5.3.1ntfsprogs-2013.1.13-5.3.1ntfs-3g_ntfsprogs-debugsource-2013.1.13-5.3.1
147474 - SuSE SLES 12 SP3, 12 SP4, SLED 12 SP3, 12 SP4 SUSE-SU-2018:4090-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes
Risk Level: HighCVE: CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19409, CVE-2018-19475, CVE-2018-19476, CVE-2018-19477
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4090-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004959.html
SuSE SLED 12 SP3x86_64ghostscript-x11-9.26-23.16.1ghostscript-debugsource-9.26-23.16.1libspectre1-debuginfo-0.2.7-12.4.1ghostscript-debuginfo-9.26-23.16.1libspectre1-0.2.7-12.4.1ghostscript-9.26-23.16.1libspectre-debugsource-0.2.7-12.4.1ghostscript-x11-debuginfo-9.26-23.16.1
SuSE SLED 12 SP4x86_64ghostscript-x11-9.26-23.16.1ghostscript-debugsource-9.26-23.16.1libspectre1-debuginfo-0.2.7-12.4.1ghostscript-debuginfo-9.26-23.16.1libspectre1-0.2.7-12.4.1ghostscript-9.26-23.16.1libspectre-debugsource-0.2.7-12.4.1ghostscript-x11-debuginfo-9.26-23.16.1
SuSE SLES 12 SP4x86_64ghostscript-x11-9.26-23.16.1ghostscript-debugsource-9.26-23.16.1libspectre1-debuginfo-0.2.7-12.4.1ghostscript-debuginfo-9.26-23.16.1libspectre1-0.2.7-12.4.1ghostscript-9.26-23.16.1libspectre-debugsource-0.2.7-12.4.1ghostscript-x11-debuginfo-9.26-23.16.1
SuSE SLES 12 SP3x86_64ghostscript-x11-9.26-23.16.1ghostscript-debugsource-9.26-23.16.1libspectre1-debuginfo-0.2.7-12.4.1ghostscript-debuginfo-9.26-23.16.1libspectre1-0.2.7-12.4.1ghostscript-9.26-23.16.1libspectre-debugsource-0.2.7-12.4.1ghostscript-x11-debuginfo-9.26-23.16.1
147475 - SuSE Linux 42.3 openSUSE-SU-2018:4111-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-18849, CVE-2018-18883, CVE-2018-19961, CVE-2018-19962, CVE-2018-19965, CVE-2018-19966
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4111-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00059.html
SuSE Linux 42.3x86_64xen-tools-domU-4.9.3_03-34.1xen-doc-html-4.9.3_03-34.1xen-tools-4.9.3_03-34.1xen-debugsource-4.9.3_03-34.1xen-libs-4.9.3_03-34.1xen-tools-debuginfo-4.9.3_03-34.1xen-tools-domU-debuginfo-4.9.3_03-34.1xen-4.9.3_03-34.1xen-libs-debuginfo-4.9.3_03-34.1xen-devel-4.9.3_03-34.1
147476 - SuSE Linux 42.3 openSUSE-SU-2018:4151-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-10851, CVE-2018-14626, CVE-2018-14644
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4151-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00086.html
SuSE Linux 42.3x86_64pdns-recursor-4.0.5-9.1pdns-recursor-debugsource-4.0.5-9.1pdns-recursor-debuginfo-4.0.5-9.1
147477 - SuSE SLES 12 SP3 SUSE-SU-2018:4088-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: High
CVE: CVE-2018-17456
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4088-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004957.html
SuSE SLES 12 SP3x86_64git-debugsource-2.12.3-27.17.2git-core-debuginfo-2.12.3-27.17.2git-core-2.12.3-27.17.2
160487 - CentOS 7 CESA-2018-3738 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-16395
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3738
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023122.html
CentOS 7i686ruby-libs-2.0.0.648-34.el7_6
noarchrubygems-devel-2.0.14.1-34.el7_6rubygem-rdoc-4.0.0-34.el7_6rubygem-minitest-4.3.2-34.el7_6ruby-irb-2.0.0.648-34.el7_6rubygems-2.0.14.1-34.el7_6rubygem-rake-0.9.6-34.el7_6ruby-doc-2.0.0.648-34.el7_6
x86_64rubygem-io-console-0.4.2-34.el7_6ruby-2.0.0.648-34.el7_6ruby-libs-2.0.0.648-34.el7_6ruby-devel-2.0.0.648-34.el7_6ruby-tcltk-2.0.0.648-34.el7_6rubygem-json-1.7.7-34.el7_6rubygem-psych-2.0.0-34.el7_6rubygem-bigdecimal-1.2.0-34.el7_6
160490 - CentOS 7 CESA-2018-3408 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-17456
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3408
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023102.html
CentOS 7x86_64git-svn-1.8.3.1-20.el7git-1.8.3.1-20.el7git-daemon-1.8.3.1-20.el7git-gnome-keyring-1.8.3.1-20.el7
noarchemacs-git-1.8.3.1-20.el7git-p4-1.8.3.1-20.el7git-gui-1.8.3.1-20.el7git-hg-1.8.3.1-20.el7git-all-1.8.3.1-20.el7perl-Git-1.8.3.1-20.el7git-instaweb-1.8.3.1-20.el7gitk-1.8.3.1-20.el7git-cvs-1.8.3.1-20.el7git-email-1.8.3.1-20.el7perl-Git-SVN-1.8.3.1-20.el7git-bzr-1.8.3.1-20.el7emacs-git-el-1.8.3.1-20.el7gitweb-1.8.3.1-20.el7
160491 - CentOS 7 CESA-2018-3665 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-15688
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3665
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023116.html
CentOS 7
i686NetworkManager-libnm-devel-1.12.0-8.el7_6NetworkManager-libnm-1.12.0-8.el7_6NetworkManager-glib-devel-1.12.0-8.el7_6NetworkManager-glib-1.12.0-8.el7_6
noarchNetworkManager-dispatcher-routing-rules-1.12.0-8.el7_6NetworkManager-config-server-1.12.0-8.el7_6
x86_64NetworkManager-ppp-1.12.0-8.el7_6NetworkManager-wifi-1.12.0-8.el7_6NetworkManager-team-1.12.0-8.el7_6NetworkManager-bluetooth-1.12.0-8.el7_6NetworkManager-glib-1.12.0-8.el7_6NetworkManager-glib-devel-1.12.0-8.el7_6NetworkManager-libnm-devel-1.12.0-8.el7_6NetworkManager-libnm-1.12.0-8.el7_6NetworkManager-ovs-1.12.0-8.el7_6NetworkManager-adsl-1.12.0-8.el7_6NetworkManager-tui-1.12.0-8.el7_6NetworkManager-wwan-1.12.0-8.el7_6NetworkManager-1.12.0-8.el7_6
160492 - CentOS 7 CESA-2018-3532 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-12389, CVE-2018-12390, CVE-2018-12392, CVE-2018-12393
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3532
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023128.html
CentOS 7x86_64thunderbird-60.3.0-1.el7.centos
160495 - CentOS 7 CESA-2018-3761 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-16863
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3761
Observation
Updates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023101.html
CentOS 7i686ghostscript-9.07-31.el7_6.3ghostscript-devel-9.07-31.el7_6.3
noarchghostscript-doc-9.07-31.el7_6.3
x86_64ghostscript-gtk-9.07-31.el7_6.3ghostscript-devel-9.07-31.el7_6.3ghostscript-9.07-31.el7_6.3ghostscript-cups-9.07-31.el7_6.3
160497 - CentOS 7 CESA-2018-3410 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-14665
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3410
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023131.html
CentOS 7i686xorg-x11-server-devel-1.20.1-5.1.el7
noarchxorg-x11-server-source-1.20.1-5.1.el7
x86_64xorg-x11-server-Xvfb-1.20.1-5.1.el7xorg-x11-server-Xephyr-1.20.1-5.1.el7xorg-x11-server-Xnest-1.20.1-5.1.el7xorg-x11-server-Xwayland-1.20.1-5.1.el7xorg-x11-server-common-1.20.1-5.1.el7xorg-x11-server-Xorg-1.20.1-5.1.el7xorg-x11-server-devel-1.20.1-5.1.el7xorg-x11-server-Xdmx-1.20.1-5.1.el7
163775 - Oracle Enterprise Linux ELSA-2018-3834 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-15911, CVE-2018-16541, CVE-2018-16802, CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-
18284, CVE-2018-19134, CVE-2018-19409
DescriptionThe scan detected that the host is missing the following update:ELSA-2018-3834
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://oss.oracle.com/pipermail/el-errata/2018-December/008339.html
OEL7x86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-doc-9.07-31.el7_6.6ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6
163776 - Oracle Enterprise Linux ELSA-2018-4304 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-1000204, CVE-2018-10322, CVE-2018-10902, CVE-2018-10940, CVE-2018-1108, CVE-2018-1118, CVE-2018-1120, CVE-2018-13094, CVE-2018-16658, CVE-2018-18445, CVE-2018-18710, CVE-2018-5333, CVE-2018-5848, CVE-2018-7755, CVE-2018-8043
DescriptionThe scan detected that the host is missing the following update:ELSA-2018-4304
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://oss.oracle.com/pipermail/el-errata/2018-December/008330.html
OEL7x86_64kernel-uek-devel-4.14.35-1818.5.4.el7uekkernel-uek-debug-devel-4.14.35-1818.5.4.el7uekkernel-uek-tools-4.14.35-1818.5.4.el7uekkernel-uek-4.14.35-1818.5.4.el7uekkernel-uek-doc-4.14.35-1818.5.4.el7uekkernel-uek-debug-4.14.35-1818.5.4.el7uek
163778 - Oracle Enterprise Linux ELSA-2018-4307 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-1000004, CVE-2018-18386, CVE-2018-8043
DescriptionThe scan detected that the host is missing the following update:
ELSA-2018-4307
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://oss.oracle.com/pipermail/el-errata/2018-December/008333.htmlhttp://oss.oracle.com/pipermail/el-errata/2018-December/008332.html
OEL7x86_64kernel-uek-firmware-4.1.12-124.23.2.el7uekkernel-uek-devel-4.1.12-124.23.2.el7uekkernel-uek-debug-devel-4.1.12-124.23.2.el7uekkernel-uek-4.1.12-124.23.2.el7uekkernel-uek-doc-4.1.12-124.23.2.el7uekkernel-uek-debug-4.1.12-124.23.2.el7uek
OEL6x86_64kernel-uek-4.1.12-124.23.2.el6uekkernel-uek-debug-devel-4.1.12-124.23.2.el6uekkernel-uek-firmware-4.1.12-124.23.2.el6uekkernel-uek-debug-4.1.12-124.23.2.el6uekkernel-uek-doc-4.1.12-124.23.2.el6uekkernel-uek-devel-4.1.12-124.23.2.el6uek
171051 - Amazon Linux AMI ALAS-2018-1130 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-16873, CVE-2018-16874, CVE-2018-16875
DescriptionThe scan detected that the host is missing the following update:ALAS-2018-1130
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://alas.aws.amazon.com/ALAS-2018-1130.html
Amazon Linux AMIi686golang-1.10.6-1.47.amzn1golang-bin-1.10.6-1.47.amzn1
noarchgolang-tests-1.10.6-1.47.amzn1golang-docs-1.10.6-1.47.amzn1golang-src-1.10.6-1.47.amzn1golang-misc-1.10.6-1.47.amzn1
x86_64golang-bin-1.10.6-1.47.amzn1golang-1.10.6-1.47.amzn1
golang-race-1.10.6-1.47.amzn1
171053 - Amazon Linux AMI ALAS-2018-1125 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-16843, CVE-2018-16844
DescriptionThe scan detected that the host is missing the following update:ALAS-2018-1125
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://alas.aws.amazon.com/ALAS-2018-1125.html
Amazon Linux AMIx86_64nginx-debuginfo-1.14.1-2.34.amzn1nginx-mod-http-perl-1.14.1-2.34.amzn1nginx-mod-mail-1.14.1-2.34.amzn1nginx-all-modules-1.14.1-2.34.amzn1nginx-1.14.1-2.34.amzn1nginx-mod-http-xslt-filter-1.14.1-2.34.amzn1nginx-mod-http-geoip-1.14.1-2.34.amzn1nginx-mod-http-image-filter-1.14.1-2.34.amzn1nginx-mod-stream-1.14.1-2.34.amzn1
i686nginx-debuginfo-1.14.1-2.34.amzn1nginx-mod-http-perl-1.14.1-2.34.amzn1nginx-mod-stream-1.14.1-2.34.amzn1nginx-1.14.1-2.34.amzn1nginx-all-modules-1.14.1-2.34.amzn1nginx-mod-http-image-filter-1.14.1-2.34.amzn1nginx-mod-mail-1.14.1-2.34.amzn1nginx-mod-http-geoip-1.14.1-2.34.amzn1nginx-mod-http-xslt-filter-1.14.1-2.34.amzn1
175513 - Scientific Linux Security ERRATA Important: ghostscript on SL7.x x86_64 (1812-9988)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: HighCVE: CVE-2018-15911, CVE-2018-16541, CVE-2018-16802, CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19134, CVE-2018-19409
DescriptionThe scan detected that the host is missing the following update:Security ERRATA Important: ghostscript on SL7.x x86_64 (1812-9988)
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://listserv.fnal.gov/scripts/wa.exe?A2=ind1812&L=scientific-linux-errata&F=&S=&P=9988
SL7x86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-debuginfo-9.07-31.el7_6.6ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6
noarchghostscript-doc-9.07-31.el7_6.6
194599 - Fedora Linux 28 FEDORA-2018-ca03363d57 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2018-18311, CVE-2018-18312, CVE-2018-18313, CVE-2018-18314, CVE-2018-6797, CVE-2018-6798, CVE-2018-6913
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-ca03363d57
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=3
Fedora Core 28
perl-5.26.3-415.fc28
196220 - Red Hat Enterprise Linux RHSA-2018-3834 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-15911, CVE-2018-16541, CVE-2018-16802, CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19134, CVE-2018-19409
DescriptionThe scan detected that the host is missing the following update:RHSA-2018-3834
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.redhat.com/archives/rhsa-announce/2018-December/msg00031.html
RHEL7Dx86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-debuginfo-9.07-31.el7_6.6
ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6
noarchghostscript-doc-9.07-31.el7_6.6
RHEL7Snoarchghostscript-doc-9.07-31.el7_6.6
x86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-debuginfo-9.07-31.el7_6.6ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6
RHEL7WSx86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-debuginfo-9.07-31.el7_6.6ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6
noarchghostscript-doc-9.07-31.el7_6.6
196223 - Red Hat Enterprise Linux RHSA-2018-3822 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2017-11176, CVE-2017-15265, CVE-2017-8824
DescriptionThe scan detected that the host is missing the following update:RHSA-2018-3822
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.redhat.com/archives/rhsa-announce/2018-December/msg00026.html
RHEL5i386kernel-debug-2.6.18-436.el5kernel-xen-debuginfo-2.6.18-436.el5kernel-PAE-devel-2.6.18-436.el5kernel-PAE-2.6.18-436.el5kernel-debuginfo-common-2.6.18-436.el5kernel-headers-2.6.18-436.el5kernel-debug-debuginfo-2.6.18-436.el5kernel-xen-2.6.18-436.el5kernel-PAE-debuginfo-2.6.18-436.el5kernel-xen-devel-2.6.18-436.el5kernel-devel-2.6.18-436.el5kernel-debug-devel-2.6.18-436.el5
kernel-2.6.18-436.el5kernel-debuginfo-2.6.18-436.el5
noarchkernel-doc-2.6.18-436.el5
x86_64kernel-debug-devel-2.6.18-436.el5kernel-debuginfo-common-2.6.18-436.el5kernel-debug-2.6.18-436.el5kernel-xen-debuginfo-2.6.18-436.el5kernel-headers-2.6.18-436.el5kernel-2.6.18-436.el5kernel-xen-2.6.18-436.el5kernel-debuginfo-2.6.18-436.el5kernel-debug-debuginfo-2.6.18-436.el5kernel-devel-2.6.18-436.el5kernel-xen-devel-2.6.18-436.el5
24538 - Omron CX-Supervisor Multiple Vulnerabilities (ICSA-18-290-01)
Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-17905, CVE-2018-17907, CVE-2018-17909, CVE-2018-17913
DescriptionMultiple vulnerabilities are present in some versions of Omron CX-Supervisor.
ObservationCX-Supervisor boasts powerful functions for a wide range of PC based HMI requirements.
Multiple vulnerabilities are present in some versions of Omron CX-Supervisor. The flaws lie in processing of project files. Successful exploitation could allow an attacker to execute remote code on the target system.
24547 - Google Chrome Multiple Vulnerabilities Prior To 71.0.3578.80
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-17480, CVE-2018-17481, CVE-2018-18335, CVE-2018-18336, CVE-2018-18337, CVE-2018-18338, CVE-2018-18339, CVE-2018-18340, CVE-2018-18341, CVE-2018-18342, CVE-2018-18343, CVE-2018-18344, CVE-2018-18345, CVE-2018-18346, CVE-2018-18347, CVE-2018-18348, CVE-2018-18349, CVE-2018-18350, CVE-2018-18351, CVE-2018-18352, CVE-2018-18353, CVE-2018-18354, CVE-2018-18355, CVE-2018-18356, CVE-2018-18357, CVE-2018-18358, CVE-2018-18359
DescriptionMultiple vulnerabilities are present in some versions of Google Chrome.
ObservationGoogle Chrome is a popular web browser.
Multiple vulnerabilities are present in some versions of Google Chrome. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code in the context of the browser, obtain sensitive information, conduct spoofing attacks, bypass security restrictions and perform unauthorized actions, or cause denial-of-service conditions.
24548 - Google Chrome Multiple Vulnerabilities Prior To 71.0.3578.80
Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: MediumCVE: CVE-2018-17480, CVE-2018-17481, CVE-2018-18335, CVE-2018-18336, CVE-2018-18337, CVE-2018-18338, CVE-2018-18339, CVE-2018-18340, CVE-2018-18341, CVE-2018-18342, CVE-2018-18343, CVE-2018-18344, CVE-2018-18345, CVE-2018-18346, CVE-2018-18347, CVE-2018-18348, CVE-2018-18349, CVE-2018-18350, CVE-2018-18351, CVE-2018-18352, CVE-2018-18353, CVE-2018-18354, CVE-2018-18355, CVE-2018-18356, CVE-2018-18357, CVE-2018-18358, CVE-2018-18359
DescriptionMultiple vulnerabilities are present in some versions of Google Chrome.
ObservationGoogle Chrome is a popular web browser.
Multiple vulnerabilities are present in some versions of Google Chrome. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code in the context of the browser, obtain sensitive information, conduct spoofing attacks, bypass security restrictions and perform unauthorized actions, or cause denial-of-service conditions.
88993 - Slackware Linux 14.2 SSA:2018-345-01 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Slackware Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498
DescriptionThe scan detected that the host is missing the following update:SSA:2018-345-01
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2018&m=slackware-security.401034
Slackware 14.2x86_64mozilla-firefox-60.4.0esr-x86_64-1
i686mozilla-firefox-60.4.0esr-i686-1
131260 - Debian Linux 9.0 DSA-4354-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498
DescriptionThe scan detected that the host is missing the following update:DSA-4354-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.
For more information see:
http://www.debian.org/security/2018/dsa-4354
Debian 9.0allfirefox-esr_60.4.0esr-1~deb9u1
147444 - SuSE Linux 15.0, 42.3 openSUSE-SU-2018:4112-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4112-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00060.html
SuSE Linux 15.0x86_64MozillaFirefox-60.4.0-lp150.3.30.1MozillaFirefox-debuginfo-60.4.0-lp150.3.30.1MozillaFirefox-debugsource-60.4.0-lp150.3.30.1MozillaFirefox-translations-other-60.4.0-lp150.3.30.1MozillaFirefox-branding-upstream-60.4.0-lp150.3.30.1MozillaFirefox-buildsymbols-60.4.0-lp150.3.30.1MozillaFirefox-devel-60.4.0-lp150.3.30.1MozillaFirefox-translations-common-60.4.0-lp150.3.30.1
SuSE Linux 42.3x86_64MozillaFirefox-60.4.0-125.1MozillaFirefox-debugsource-60.4.0-125.1MozillaFirefox-translations-other-60.4.0-125.1MozillaFirefox-buildsymbols-60.4.0-125.1MozillaFirefox-branding-upstream-60.4.0-125.1MozillaFirefox-debuginfo-60.4.0-125.1MozillaFirefox-translations-common-60.4.0-125.1MozillaFirefox-devel-60.4.0-125.1
147462 - SuSE SLES 11 SP4 SUSE-SU-2018:4120-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2016-10092, CVE-2016-10093, CVE-2016-10094
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4120-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004962.html
SuSE SLES 11 SP4i586libtiff3-3.8.2-141.169.26.1tiff-3.8.2-141.169.26.1
x86_64libtiff3-3.8.2-141.169.26.1tiff-3.8.2-141.169.26.1libtiff3-32bit-3.8.2-141.169.26.1
147465 - SuSE Linux 15.0 openSUSE-SU-2018:4122-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-17481
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4122-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00066.html
SuSE Linux 15.0x86_64chromium-debuginfo-71.0.3578.98-lp150.2.33.1chromedriver-71.0.3578.98-lp150.2.33.1chromium-71.0.3578.98-lp150.2.33.1chromium-debugsource-71.0.3578.98-lp150.2.33.1chromedriver-debuginfo-71.0.3578.98-lp150.2.33.1
147472 - SuSE Linux 42.3 openSUSE-SU-2018:4142-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-17480, CVE-2018-17481, CVE-2018-18335, CVE-2018-18336, CVE-2018-18337, CVE-2018-18338, CVE-2018-18339, CVE-2018-18340, CVE-2018-18341, CVE-2018-18342, CVE-2018-18343, CVE-2018-18344, CVE-2018-18345, CVE-2018-18346, CVE-2018-18347, CVE-2018-18348, CVE-2018-18349, CVE-2018-18350, CVE-2018-18351, CVE-2018-18352, CVE-2018-18353, CVE-2018-18354, CVE-2018-18355, CVE-2018-18356, CVE-2018-18357, CVE-2018-18358, CVE-2018-18359
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4142-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.
For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00079.html
SuSE Linux 42.3x86_64chromedriver-debuginfo-71.0.3578.98-189.1chromium-71.0.3578.98-189.1chromedriver-71.0.3578.98-189.1chromium-debuginfo-71.0.3578.98-189.1chromium-debugsource-71.0.3578.98-189.1
160489 - CentOS 7 CESA-2018-3650 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2018-15908, CVE-2018-15909, CVE-2018-16511, CVE-2018-16539
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3650
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023100.html
CentOS 7i686ghostscript-devel-9.07-31.el7_6.1ghostscript-9.07-31.el7_6.1
noarchghostscript-doc-9.07-31.el7_6.1
x86_64ghostscript-9.07-31.el7_6.1ghostscript-gtk-9.07-31.el7_6.1ghostscript-cups-9.07-31.el7_6.1ghostscript-devel-9.07-31.el7_6.1
160493 - CentOS 7 CESA-2018-3521 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3150, CVE-2018-3169, CVE-2018-3180, CVE-2018-3183
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3521
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023105.html
CentOS 7x86_64java-11-openjdk-javadoc-debug-11.0.1.13-3.el7_6java-11-openjdk-jmods-11.0.1.13-3.el7_6java-11-openjdk-javadoc-zip-11.0.1.13-3.el7_6java-11-openjdk-headless-debug-11.0.1.13-3.el7_6java-11-openjdk-devel-11.0.1.13-3.el7_6java-11-openjdk-headless-11.0.1.13-3.el7_6java-11-openjdk-javadoc-11.0.1.13-3.el7_6java-11-openjdk-src-debug-11.0.1.13-3.el7_6java-11-openjdk-src-11.0.1.13-3.el7_6java-11-openjdk-demo-debug-11.0.1.13-3.el7_6java-11-openjdk-javadoc-zip-debug-11.0.1.13-3.el7_6java-11-openjdk-debug-11.0.1.13-3.el7_6java-11-openjdk-demo-11.0.1.13-3.el7_6java-11-openjdk-jmods-debug-11.0.1.13-3.el7_6java-11-openjdk-devel-debug-11.0.1.13-3.el7_6java-11-openjdk-11.0.1.13-3.el7_6
i686java-11-openjdk-javadoc-debug-11.0.1.13-3.el7_6java-11-openjdk-jmods-11.0.1.13-3.el7_6java-11-openjdk-javadoc-zip-11.0.1.13-3.el7_6java-11-openjdk-headless-debug-11.0.1.13-3.el7_6java-11-openjdk-devel-11.0.1.13-3.el7_6java-11-openjdk-headless-11.0.1.13-3.el7_6java-11-openjdk-javadoc-11.0.1.13-3.el7_6java-11-openjdk-src-debug-11.0.1.13-3.el7_6java-11-openjdk-src-11.0.1.13-3.el7_6java-11-openjdk-demo-debug-11.0.1.13-3.el7_6java-11-openjdk-javadoc-zip-debug-11.0.1.13-3.el7_6java-11-openjdk-debug-11.0.1.13-3.el7_6java-11-openjdk-demo-11.0.1.13-3.el7_6java-11-openjdk-jmods-debug-11.0.1.13-3.el7_6java-11-openjdk-devel-debug-11.0.1.13-3.el7_6java-11-openjdk-11.0.1.13-3.el7_6
160494 - CentOS 7 CESA-2018-3350 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3169, CVE-2018-3180, CVE-2018-3214
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3350
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023106.html
CentOS 7x86_64java-1.7.0-openjdk-headless-1.7.0.201-2.6.16.1.el7_6
java-1.7.0-openjdk-accessibility-1.7.0.201-2.6.16.1.el7_6java-1.7.0-openjdk-demo-1.7.0.201-2.6.16.1.el7_6java-1.7.0-openjdk-src-1.7.0.201-2.6.16.1.el7_6java-1.7.0-openjdk-devel-1.7.0.201-2.6.16.1.el7_6java-1.7.0-openjdk-1.7.0.201-2.6.16.1.el7_6
noarchjava-1.7.0-openjdk-javadoc-1.7.0.201-2.6.16.1.el7_6
163777 - Oracle Enterprise Linux ELSA-2018-3833 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498
DescriptionThe scan detected that the host is missing the following update:ELSA-2018-3833
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://oss.oracle.com/pipermail/el-errata/2018-December/008340.html
OEL7x86_64firefox-60.4.0-1.0.1.el7
175512 - Scientific Linux Security ERRATA Critical: firefox on SL7.x x86_64 (1812-10475)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498
DescriptionThe scan detected that the host is missing the following update:Security ERRATA Critical: firefox on SL7.x x86_64 (1812-10475)
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://listserv.fnal.gov/scripts/wa.exe?A2=ind1812&L=scientific-linux-errata&F=&S=&P=10475
SL7x86_64firefox-debuginfo-60.4.0-1.el7firefox-60.4.0-1.el7
175514 - Scientific Linux Security ERRATA Critical: firefox on SL6.x i386/x86_64 (1812-10886)
Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498
DescriptionThe scan detected that the host is missing the following update:Security ERRATA Critical: firefox on SL6.x i386/x86_64 (1812-10886)
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://listserv.fnal.gov/scripts/wa.exe?A2=ind1812&L=scientific-linux-errata&F=&S=&P=10886
SL6x86_64firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6
i386firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6
196219 - Red Hat Enterprise Linux RHSA-2018-3831 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498
DescriptionThe scan detected that the host is missing the following update:RHSA-2018-3831
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.redhat.com/archives/rhsa-announce/2018-December/msg00029.html
RHEL6Dx86_64firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6
i386firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6
RHEL6Si386firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6
x86_64firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6
RHEL6WSx86_64firefox-60.4.0-1.el6
firefox-debuginfo-60.4.0-1.el6
i386firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6
196221 - Red Hat Enterprise Linux RHSA-2018-3833 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498
DescriptionThe scan detected that the host is missing the following update:RHSA-2018-3833
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.redhat.com/archives/rhsa-announce/2018-December/msg00030.html
RHEL7Dx86_64firefox-debuginfo-60.4.0-1.el7firefox-60.4.0-1.el7
RHEL7Sx86_64firefox-debuginfo-60.4.0-1.el7firefox-60.4.0-1.el7
RHEL7WSx86_64firefox-debuginfo-60.4.0-1.el7firefox-60.4.0-1.el7
196222 - Red Hat Enterprise Linux RHSA-2018-3823 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2017-15265
DescriptionThe scan detected that the host is missing the following update:RHSA-2018-3823
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.redhat.com/archives/rhsa-announce/2018-December/msg00025.html
RHEL5_9Si386kernel-xen-devel-2.6.18-348.42.1.el5
kernel-PAE-devel-2.6.18-348.42.1.el5kernel-devel-2.6.18-348.42.1.el5kernel-headers-2.6.18-348.42.1.el5kernel-debuginfo-2.6.18-348.42.1.el5kernel-debug-devel-2.6.18-348.42.1.el5kernel-debug-2.6.18-348.42.1.el5kernel-PAE-debuginfo-2.6.18-348.42.1.el5kernel-debuginfo-common-2.6.18-348.42.1.el5kernel-xen-debuginfo-2.6.18-348.42.1.el5kernel-2.6.18-348.42.1.el5kernel-PAE-2.6.18-348.42.1.el5kernel-debug-debuginfo-2.6.18-348.42.1.el5kernel-xen-2.6.18-348.42.1.el5
noarchkernel-doc-2.6.18-348.42.1.el5
x86_64kernel-xen-devel-2.6.18-348.42.1.el5kernel-xen-debuginfo-2.6.18-348.42.1.el5kernel-xen-2.6.18-348.42.1.el5kernel-debuginfo-common-2.6.18-348.42.1.el5kernel-debug-devel-2.6.18-348.42.1.el5kernel-devel-2.6.18-348.42.1.el5kernel-headers-2.6.18-348.42.1.el5kernel-debuginfo-2.6.18-348.42.1.el5kernel-debug-debuginfo-2.6.18-348.42.1.el5kernel-2.6.18-348.42.1.el5kernel-debug-2.6.18-348.42.1.el5
24543 - IBM WebSphere Application Server Privilege Escalation Vulnerability (ibm10735767)
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-1840
DescriptionA vulnerability is present in some versions of IBM WebSphere Application Server.
ObservationIBM WebSphere Application Server is a server engine for Java EE Web applications.
A vulnerability is present in some versions of IBM WebSphere Application Server. The flaw is in the configuration of security domain. Successful exploitation could allow an attacker to gain elevated privileges on the target system.
24553 - IBM WebSphere Application Server Vulnerability (ibm10738727)
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-1901
DescriptionA vulnerability is present in some versions of IBM WebSphere Application Server.
ObservationIBM WebSphere Application Server is a server engine for Java EE Web applications.
A vulnerability is present in some versions of IBM WebSphere Application Server. The flaw is due to the use of incorrect cache values. Successful exploitation could allow a remote attacker to escalate the privileges of the target system.
24554 - IBM WebSphere Application Server Liberty Vulnerability (ibm10738727)
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-1901
DescriptionA vulnerability is present in some versions of IBM WebSphere Application Server Liberty.
ObservationIBM WebSphere Application Server Liberty is a server engine for Java EE Web applications.
A vulnerability is present in some versions of IBM WebSphere Application Server Liberty. The flaw is due to the use of incorrect cache values. Successful exploitation could allow a remote attacker to escalate the privileges of the target system.
24557 - IBM WebSphere Application Server Vulnerability (ibm10742301)
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-1926
DescriptionA Cross-site request forgery vulnerability is present in some versions of IBM WebSphere Application Server.
ObservationIBM WebSphere Application Server is a server engine for Java EE Web applications.
A Cross-site request forgery vulnerability is present in some versions of IBM WebSphere Application Server. The flaw is due to improper validation of user supplied input. Exploitation could allow a malicious user to conduct undesired actions on the target.
147450 - SuSE Linux 42.3 openSUSE-SU-2018:4104-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2016-8610, CVE-2018-0734, CVE-2018-5407
DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4104-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.opensuse.org/opensuse-updates/2018-12/msg00052.html
SuSE Linux 42.3x86_64compat-openssl098-debugsource-0.9.8j-27.1libopenssl0_9_8-debuginfo-0.9.8j-27.1libopenssl0_9_8-32bit-0.9.8j-27.1libopenssl0_9_8-debuginfo-32bit-0.9.8j-27.1libopenssl0_9_8-0.9.8j-27.1
i586compat-openssl098-debugsource-0.9.8j-27.1libopenssl0_9_8-debuginfo-0.9.8j-27.1libopenssl0_9_8-0.9.8j-27.1
147468 - SuSE SLES 12 SP3, 12 SP4, SLED 12 SP3, 12 SP4 SUSE-SU-2018:4150-1 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2017-17740
DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4150-1
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.suse.com/pipermail/sle-security-updates/2018-December/004970.html
SuSE SLED 12 SP3x86_64libldap-2_4-2-2.4.41-18.43.1openldap2-client-debuginfo-2.4.41-18.43.1libldap-2_4-2-32bit-2.4.41-18.43.1libldap-2_4-2-debuginfo-32bit-2.4.41-18.43.1openldap2-client-2.4.41-18.43.1libldap-2_4-2-debuginfo-2.4.41-18.43.1openldap2-debugsource-2.4.41-18.43.1openldap2-debuginfo-2.4.41-18.43.1
SuSE SLED 12 SP4x86_64libldap-2_4-2-2.4.41-18.43.1openldap2-client-debuginfo-2.4.41-18.43.1libldap-2_4-2-32bit-2.4.41-18.43.1libldap-2_4-2-debuginfo-32bit-2.4.41-18.43.1openldap2-client-2.4.41-18.43.1libldap-2_4-2-debuginfo-2.4.41-18.43.1openldap2-debugsource-2.4.41-18.43.1openldap2-debuginfo-2.4.41-18.43.1
SuSE SLES 12 SP4x86_64libldap-2_4-2-2.4.41-18.43.1openldap2-back-meta-2.4.41-18.43.1openldap2-client-debuginfo-2.4.41-18.43.1libldap-2_4-2-32bit-2.4.41-18.43.1
openldap2-client-2.4.41-18.43.1openldap2-back-meta-debuginfo-2.4.41-18.43.1libldap-2_4-2-debuginfo-32bit-2.4.41-18.43.1libldap-2_4-2-debuginfo-2.4.41-18.43.1openldap2-2.4.41-18.43.1openldap2-debugsource-2.4.41-18.43.1openldap2-debuginfo-2.4.41-18.43.1
SuSE SLES 12 SP3x86_64libldap-2_4-2-2.4.41-18.43.1openldap2-back-meta-2.4.41-18.43.1openldap2-client-debuginfo-2.4.41-18.43.1libldap-2_4-2-32bit-2.4.41-18.43.1openldap2-client-2.4.41-18.43.1openldap2-back-meta-debuginfo-2.4.41-18.43.1libldap-2_4-2-debuginfo-32bit-2.4.41-18.43.1libldap-2_4-2-debuginfo-2.4.41-18.43.1openldap2-2.4.41-18.43.1openldap2-debugsource-2.4.41-18.43.1openldap2-debuginfo-2.4.41-18.43.1
160496 - CentOS 7 CESA-2018-3663 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14650
DescriptionThe scan detected that the host is missing the following update:CESA-2018-3663
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://lists.centos.org/pipermail/centos-announce/2018-December/023126.html
CentOS 7noarchsos-collector-1.5-3.el7_6
171052 - Amazon Linux AMI ALAS-2018-1104 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-11763
DescriptionThe scan detected that the host is missing the following update:ALAS-2018-1104
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://alas.aws.amazon.com/ALAS-2018-1104.html
Amazon Linux AMIi686mod24_session-2.4.37-1.83.amzn1mod24_ssl-2.4.37-1.83.amzn1httpd24-tools-2.4.37-1.83.amzn1mod24_proxy_html-2.4.37-1.83.amzn1mod24_ldap-2.4.37-1.83.amzn1httpd24-devel-2.4.37-1.83.amzn1mod24_md-2.4.37-1.83.amzn1httpd24-debuginfo-2.4.37-1.83.amzn1httpd24-2.4.37-1.83.amzn1
noarchhttpd24-manual-2.4.37-1.83.amzn1
x86_64mod24_session-2.4.37-1.83.amzn1mod24_ssl-2.4.37-1.83.amzn1httpd24-tools-2.4.37-1.83.amzn1mod24_proxy_html-2.4.37-1.83.amzn1mod24_ldap-2.4.37-1.83.amzn1httpd24-devel-2.4.37-1.83.amzn1mod24_md-2.4.37-1.83.amzn1httpd24-debuginfo-2.4.37-1.83.amzn1httpd24-2.4.37-1.83.amzn1
178692 - Gentoo Linux GLSA-201812-08 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixesRisk Level: MediumCVE: CVE-MAP-NOMATCH
DescriptionThe scan detected that the host is missing the following update:GLSA-201812-08
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://security.gentoo.org/glsa/201812-08
Affected packages: dev-lang/scala < 2.12.4
178693 - Gentoo Linux GLSA-201812-07 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixesRisk Level: MediumCVE: CVE-MAP-NOMATCH
DescriptionThe scan detected that the host is missing the following update:GLSA-201812-07
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://security.gentoo.org/glsa/201812-07
Affected packages: mail-filter/spamassassin < 3.4.2-r2
178694 - Gentoo Linux GLSA-201812-06 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixesRisk Level: MediumCVE: CVE-MAP-NOMATCH
DescriptionThe scan detected that the host is missing the following update:GLSA-201812-06
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://security.gentoo.org/glsa/201812-06
Affected packages: dev-db/couchdb <= 2.1.2
194591 - Fedora Linux 28 FEDORA-2018-66547a8c14 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14773, CVE-2018-14774, CVE-2018-19789, CVE-2018-19790
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-66547a8c14
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=1
Fedora Core 28
php-symfony3-3.4.20-1.fc28
194592 - Fedora Linux 28 FEDORA-2018-8c06b6defd Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14773, CVE-2018-14774, CVE-2018-19789, CVE-2018-19790
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-8c06b6defd
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=1
Fedora Core 28
php-symfony-2.8.49-1.fc28
194594 - Fedora Linux 28 FEDORA-2018-6edf04d9d6 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14773, CVE-2018-14774, CVE-2018-19789, CVE-2018-19790
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-6edf04d9d6
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=1
Fedora Core 28
php-symfony4-4.0.15-1.fc28
194596 - Fedora Linux 29 FEDORA-2018-cb410a3812 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-16056, CVE-2018-16057, CVE-2018-16058, CVE-2018-19622, CVE-2018-19623, CVE-2018-19624, CVE-2018-19625, CVE-2018-19626, CVE-2018-19627, CVE-2018-19628
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-cb410a3812
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=1
Fedora Core 29
wireshark-2.6.5-1.fc29
194583 - Fedora Linux 29 FEDORA-2018-2645eb8dab Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14625, CVE-2018-16862, CVE-2018-18710, CVE-2018-19407, CVE-2018-19824
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-2645eb8dab
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=1
Fedora Core 29
kernel-headers-4.19.9-300.fc29kernel-4.19.9-300.fc29
194597 - Fedora Linux 28 FEDORA-2018-1f6ca69276 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-0497, CVE-2018-19608
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-1f6ca69276
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=1
Fedora Core 28
mbedtls-2.14.1-1.fc28
24551 - (SB10258) McAfee Agent Use After Free Vulnerability
Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: LowCVE: CVE-2018-6703
DescriptionA vulnerability is present in some versions of McAfee Agent.
ObservationMcAfee Agent is client software used to communicate with McAfee ePolicy Orchestrator.
A vulnerability is present in some versions of McAfee Agent. The flaw is due to improper handling of a specially crafted TCP packet. Successful exploitation could allow an attacker to cause a denial of service condition.
182866 - FreeBSD wordpress Multiple Issues (4b98613c-0078-11e9-b05b-00e04c1ea73d)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH
DescriptionThe scan detected that the host is missing the following update:wordpress -- multiple issues (4b98613c-0078-11e9-b05b-00e04c1ea73d)
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.vuxml.org/freebsd/4b98613c-0078-11e9-b05b-00e04c1ea73d.html
Affected packages: wordpress < 5.0.1,1fr-wordpress < 5.0.1,1de-wordpress < 5.0.1zh_CN-wordpress < 5.0.1zh_TW-wordpress < 5.0.1ja-wordpress < 5.0.1ru-wordpress < 5.0.1
182867 - FreeBSD Mbed TLS Local Timing Attack On RSA Decryption (293f40a0-ffa1-11e8-b258-0011d823eebd)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2018-19608
DescriptionThe scan detected that the host is missing the following update:Mbed TLS -- Local timing attack on RSA decryption (293f40a0-ffa1-11e8-b258-0011d823eebd)
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.vuxml.org/freebsd/293f40a0-ffa1-11e8-b258-0011d823eebd.html
Affected packages: mbedtls < 2.14.1
182868 - FreeBSD Gitlab Arbitrary File Read In GitLab Project Import With Git LFS (757e6ee8-ff91-11e8-a148-001b217b3468)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2018-20144
DescriptionThe scan detected that the host is missing the following update:Gitlab -- Arbitrary File read in GitLab project import with Git LFS (757e6ee8-ff91-11e8-a148-001b217b3468)
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.vuxml.org/freebsd/757e6ee8-ff91-11e8-a148-001b217b3468.html
Affected packages: 11.5.0 <= gitlab-ce < 11.5.411.4.0 <= gitlab-ce < 11.4.1111.0.0 <= gitlab-ce < 11.4.0
182869 - FreeBSD phpMyAdmin Multiple Vulnerabilities (ed10ed3f-fddc-11e8-94cf-6805ca0b3d42)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH
DescriptionThe scan detected that the host is missing the following update:phpMyAdmin -- multiple vulnerabilities (ed10ed3f-fddc-11e8-94cf-6805ca0b3d42)
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.vuxml.org/freebsd/ed10ed3f-fddc-11e8-94cf-6805ca0b3d42.html
Affected packages: phpMyAdmin < 4.8.4phpMyAdmin-php56 < 4.8.4phpMyAdmin-php70 < 4.8.4phpMyAdmin-php71 < 4.8.4phpMyAdmin-php72 < 4.8.4
182870 - FreeBSD typo3 Multiple Vulnerabilities (bab29816-ff93-11e8-b05b-00e04c1ea73d)
Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH
DescriptionThe scan detected that the host is missing the following update:typo3 -- multiple vulnerabilities (bab29816-ff93-11e8-b05b-00e04c1ea73d)
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
http://www.vuxml.org/freebsd/bab29816-ff93-11e8-b05b-00e04c1ea73d.html
Affected packages: typo3-8 < 8.7.21typo3-9 < 9.5.2
194579 - Fedora Linux 29 FEDORA-2018-09b23ed9e5 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-4700
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-09b23ed9e5
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=2
Fedora Core 29
cups-2.2.8-7.fc29
194580 - Fedora Linux 29 FEDORA-2018-571ea64f3d Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-19608
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-571ea64f3d
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=1
Fedora Core 29
mbedtls-2.14.1-1.fc29
194581 - Fedora Linux 29 FEDORA-2018-7ebfe1e6f2 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-19518, CVE-2018-19935
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-7ebfe1e6f2
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=1
Fedora Core 29
php-7.2.13-2.fc29
194582 - Fedora Linux 29 FEDORA-2018-b38a4dd0c7 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-19789, CVE-2018-19790
DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-b38a4dd0c7
ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/2018/12/?count=200&page=1
Fedora Core 29
php-symfony-2.8.49-1.fc29
194584 - Fedora Linux 29 FEDORA-2018-6189ba2d87 Update Is Not Installed
Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes
Recommended