MCAFEE FOUNDSTONE FSL UPDATE 2019-NOV-27€¦ · 2019-DEC-03 FSL version 7.6.137 MCAFEE FOUNDSTONE FSL UPDATE To better protect your environment McAfee has created this FSL check

2019-DEC-03FSL version 7.6.137

MCAFEE FOUNDSTONE FSL UPDATE

To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is adetailed summary of the new and updated checks included with this release.

NEW CHECKS

148583 - SuSE Linux 15.0, 15.1 openSUSE-SU-2019:2549-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2011-2767

DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2019:2549-1

ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:

https://lists.opensuse.org/opensuse-updates/2019-11/msg00133.html

SuSE Linux 15.0x86_64apache2-mod_perl-devel-2.0.11-lp150.2.3.1apache2-mod_perl-debugsource-2.0.11-lp150.2.3.1apache2-mod_perl-2.0.11-lp150.2.3.1apache2-mod_perl-debuginfo-2.0.11-lp150.2.3.1

SuSE Linux 15.1x86_64apache2-mod_perl-debuginfo-2.0.11-lp151.3.3.1apache2-mod_perl-2.0.11-lp151.3.3.1apache2-mod_perl-devel-2.0.11-lp151.3.3.1apache2-mod_perl-debugsource-2.0.11-lp151.3.3.1

25838 - Google Chrome Multiple Vulnerabilities Prior To 78.0.3904.70

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2019-13699, CVE-2019-13700, CVE-2019-13701, CVE-2019-13702, CVE-2019-13703, CVE-2019-13704, CVE-2019-13705, CVE-2019-13706, CVE-2019-13707, CVE-2019-13708, CVE-2019-13709, CVE-2019-13710, CVE-2019-13711, CVE-2019-13713, CVE-2019-13714, CVE-2019-13715, CVE-2019-13716, CVE-2019-13717, CVE-2019-13718, CVE-2019-13719, CVE-2019-15903

DescriptionMultiple vulnerabilities are present in some versions of Google Chrome.

Observation

Google Chrome is a popular web browser.

Multiple vulnerabilities are present in some versions of Google Chrome. The flaws lie in multiple components. Successful exploitation could allow an attacker to affect integrity, confidentiality and availability of the target.

164051 - Oracle Enterprise Linux ELSA-2019-3735 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2019-11043

DescriptionThe scan detected that the host is missing the following update:ELSA-2019-3735


http://oss.oracle.com/pipermail/el-errata/2019-November/009383.html

OEL8x86_64php-pecl-apcu-5.1.12-2.module+el8.1.0+5443+bc1aeb77php-process-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-ldap-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-pdo-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-gmp-7.2.11-4.module+el8.1.0+5443+bc1aeb77libzip-tools-1.5.1-2.module+el8.1.0+5443+bc1aeb77php-pear-1.10.5-9.module+el8.1.0+5443+bc1aeb77php-mbstring-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-enchant-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-recode-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-odbc-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-opcache-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-gd-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-xmlrpc-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-snmp-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-bcmath-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-pecl-apcu-devel-5.1.12-2.module+el8.1.0+5443+bc1aeb77php-pgsql-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-cli-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-pecl-zip-1.15.3-1.module+el8.1.0+5443+bc1aeb77apcu-panel-5.1.12-2.module+el8.1.0+5443+bc1aeb77php-dba-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-intl-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-xml-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-fpm-7.2.11-4.module+el8.1.0+5443+bc1aeb77libzip-1.5.1-2.module+el8.1.0+5443+bc1aeb77php-embedded-7.2.11-4.module+el8.1.0+5443+bc1aeb77libzip-devel-1.5.1-2.module+el8.1.0+5443+bc1aeb77php-soap-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-devel-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-dbg-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-common-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-json-7.2.11-4.module+el8.1.0+5443+bc1aeb77php-mysqlnd-7.2.11-4.module+el8.1.0+5443+bc1aeb77






OEL8x86_64libzip-1.5.2-1.module+el8.1.0+5441+020cccf5php-pdo-7.3.5-5.module+el8.1.0+5441+020cccf5php-pear-1.10.9-1.module+el8.1.0+5441+020cccf5php-pecl-apcu-devel-5.1.17-1.module+el8.1.0+5441+020cccf5php-enchant-7.3.5-5.module+el8.1.0+5441+020cccf5php-ldap-7.3.5-5.module+el8.1.0+5441+020cccf5php-recode-7.3.5-5.module+el8.1.0+5441+020cccf5apcu-panel-5.1.17-1.module+el8.1.0+5441+020cccf5php-snmp-7.3.5-5.module+el8.1.0+5441+020cccf5php-gd-7.3.5-5.module+el8.1.0+5441+020cccf5php-soap-7.3.5-5.module+el8.1.0+5441+020cccf5php-cli-7.3.5-5.module+el8.1.0+5441+020cccf5php-mbstring-7.3.5-5.module+el8.1.0+5441+020cccf5php-process-7.3.5-5.module+el8.1.0+5441+020cccf5php-pgsql-7.3.5-5.module+el8.1.0+5441+020cccf5php-dbg-7.3.5-5.module+el8.1.0+5441+020cccf5php-fpm-7.3.5-5.module+el8.1.0+5441+020cccf5libzip-tools-1.5.2-1.module+el8.1.0+5441+020cccf5php-7.3.5-5.module+el8.1.0+5441+020cccf5php-pecl-apcu-5.1.17-1.module+el8.1.0+5441+020cccf5php-pecl-zip-1.15.4-1.module+el8.1.0+5441+020cccf5php-dba-7.3.5-5.module+el8.1.0+5441+020cccf5php-json-7.3.5-5.module+el8.1.0+5441+020cccf5php-bcmath-7.3.5-5.module+el8.1.0+5441+020cccf5php-xml-7.3.5-5.module+el8.1.0+5441+020cccf5php-odbc-7.3.5-5.module+el8.1.0+5441+020cccf5php-gmp-7.3.5-5.module+el8.1.0+5441+020cccf5php-intl-7.3.5-5.module+el8.1.0+5441+020cccf5php-embedded-7.3.5-5.module+el8.1.0+5441+020cccf5php-opcache-7.3.5-5.module+el8.1.0+5441+020cccf5php-devel-7.3.5-5.module+el8.1.0+5441+020cccf5php-xmlrpc-7.3.5-5.module+el8.1.0+5441+020cccf5php-common-7.3.5-5.module+el8.1.0+5441+020cccf5php-mysqlnd-7.3.5-5.module+el8.1.0+5441+020cccf5libzip-devel-1.5.2-1.module+el8.1.0+5441+020cccf5

183139 - FreeBSD FreeBSD Intel CPU Microcode Update (fbe10a8a-05a1-11ea-9dfa-f8b156ac3ff9)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes

Risk Level: HighCVE: CVE-2017-5715, CVE-2018-11091, CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2019-11135, CVE-2019-11139

DescriptionThe scan detected that the host is missing the following update:FreeBSD -- Intel CPU Microcode Update (fbe10a8a-05a1-11ea-9dfa-f8b156ac3ff9)


http://www.vuxml.org/freebsd/fbe10a8a-05a1-11ea-9dfa-f8b156ac3ff9.html

Affected packages: 12.1 <= FreeBSD-kernel < 12.1_112.0 <= FreeBSD-kernel < 12.0_1211.3 <= FreeBSD-kernel < 11.3_5

131479 - Debian Linux 9.0 DSA-4576-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2019-11037

DescriptionThe scan detected that the host is missing the following update:DSA-4576-1


http://www.debian.org/security/2019/dsa-4576

Debian 9.0allphp-imagick_3.4.3~rc2-2+deb9u1

132523 - Oracle VM OVMSA-2019-0056 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle VM Patches and HotfixesRisk Level: HighCVE: CVE-2017-18551, CVE-2018-12207, CVE-2019-11135, CVE-2019-14835, CVE-2019-15213, CVE-2019-15215, CVE-2019-15217, CVE-2019-15916, CVE-2019-16994, CVE-2019-16995, CVE-2019-17053, CVE-2019-17055

DescriptionThe scan detected that the host is missing the following update:OVMSA-2019-0056


http://oss.oracle.com/pipermail/oraclevm-errata/2019-November/000968.html

OVM3.4x86_64kernel-uek-firmware-4.1.12-124.33.4.el6uekkernel-uek-4.1.12-124.33.4.el6uek

148553 - SuSE Linux 15.1 openSUSE-SU-2019:2556-1 Update Is Not Installed





SuSE Linux 15.1x86_64haproxy-debuginfo-2.0.5+git0.d905f49a-lp151.2.3.1haproxy-debugsource-2.0.5+git0.d905f49a-lp151.2.3.1haproxy-2.0.5+git0.d905f49a-lp151.2.3.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2019-17594, CVE-2019-17595




SuSE Linux 15.1x86_64terminfo-base-6.1-lp151.6.3.1libncurses5-6.1-lp151.6.3.1libncurses6-debuginfo-6.1-lp151.6.3.1ncurses-utils-6.1-lp151.6.3.1ncurses-devel-32bit-6.1-lp151.6.3.1tack-6.1-lp151.6.3.1libncurses6-32bit-6.1-lp151.6.3.1ncurses5-devel-6.1-lp151.6.3.1ncurses-utils-debuginfo-6.1-lp151.6.3.1

terminfo-6.1-lp151.6.3.1libncurses6-6.1-lp151.6.3.1terminfo-iterm-6.1-lp151.6.3.1tack-debuginfo-6.1-lp151.6.3.1ncurses-devel-6.1-lp151.6.3.1libncurses6-32bit-debuginfo-6.1-lp151.6.3.1ncurses5-devel-32bit-6.1-lp151.6.3.1ncurses-devel-debuginfo-6.1-lp151.6.3.1libncurses5-32bit-6.1-lp151.6.3.1ncurses-devel-32bit-debuginfo-6.1-lp151.6.3.1libncurses5-debuginfo-6.1-lp151.6.3.1ncurses-debugsource-6.1-lp151.6.3.1libncurses5-32bit-debuginfo-6.1-lp151.6.3.1terminfo-screen-6.1-lp151.6.3.1

i586terminfo-base-6.1-lp151.6.3.1libncurses5-6.1-lp151.6.3.1libncurses6-debuginfo-6.1-lp151.6.3.1ncurses-utils-6.1-lp151.6.3.1tack-6.1-lp151.6.3.1ncurses5-devel-6.1-lp151.6.3.1ncurses-utils-debuginfo-6.1-lp151.6.3.1terminfo-6.1-lp151.6.3.1libncurses6-6.1-lp151.6.3.1terminfo-iterm-6.1-lp151.6.3.1tack-debuginfo-6.1-lp151.6.3.1ncurses-devel-6.1-lp151.6.3.1ncurses-devel-debuginfo-6.1-lp151.6.3.1libncurses5-debuginfo-6.1-lp151.6.3.1ncurses-debugsource-6.1-lp151.6.3.1terminfo-screen-6.1-lp151.6.3.1






SuSE Linux 15.0x86_64terminfo-6.1-lp150.9.1terminfo-base-6.1-lp150.9.1libncurses5-32bit-6.1-lp150.9.1ncurses5-devel-6.1-lp150.9.1ncurses-debugsource-6.1-lp150.9.1tack-6.1-lp150.9.1ncurses-devel-6.1-lp150.9.1

libncurses5-6.1-lp150.9.1terminfo-iterm-6.1-lp150.9.1ncurses-devel-debuginfo-6.1-lp150.9.1ncurses-utils-debuginfo-6.1-lp150.9.1libncurses5-32bit-debuginfo-6.1-lp150.9.1terminfo-screen-6.1-lp150.9.1libncurses5-debuginfo-6.1-lp150.9.1libncurses6-debuginfo-6.1-lp150.9.1tack-debuginfo-6.1-lp150.9.1libncurses6-32bit-6.1-lp150.9.1ncurses-devel-32bit-debuginfo-6.1-lp150.9.1libncurses6-6.1-lp150.9.1ncurses-devel-32bit-6.1-lp150.9.1libncurses6-32bit-debuginfo-6.1-lp150.9.1ncurses5-devel-32bit-6.1-lp150.9.1ncurses-utils-6.1-lp150.9.1

i586terminfo-6.1-lp150.9.1terminfo-base-6.1-lp150.9.1ncurses5-devel-6.1-lp150.9.1ncurses-debugsource-6.1-lp150.9.1tack-6.1-lp150.9.1ncurses-devel-6.1-lp150.9.1libncurses5-6.1-lp150.9.1terminfo-iterm-6.1-lp150.9.1ncurses-devel-debuginfo-6.1-lp150.9.1ncurses-utils-debuginfo-6.1-lp150.9.1terminfo-screen-6.1-lp150.9.1libncurses5-debuginfo-6.1-lp150.9.1libncurses6-debuginfo-6.1-lp150.9.1tack-debuginfo-6.1-lp150.9.1libncurses6-6.1-lp150.9.1ncurses-utils-6.1-lp150.9.1

148556 - SuSE SLES 12 SP4, SLED 12 SP4 SUSE-SU-2019:3066-1 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2019:3066-1


http://lists.suse.com/pipermail/sle-security-updates/2019-November/006180.html

SuSE SLED 12 SP4x86_64clamav-debuginfo-0.100.3-33.26.1clamav-debugsource-0.100.3-33.26.1clamav-0.100.3-33.26.1

SuSE SLES 12 SP4

x86_64clamav-debuginfo-0.100.3-33.26.1clamav-debugsource-0.100.3-33.26.1clamav-0.100.3-33.26.1

148557 - SuSE SLES 12 SP5 SUSE-SU-2019:3067-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2019-12523, CVE-2019-12526, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679




SuSE SLES 12 SP5x86_64squid-debuginfo-4.9-4.3.2squid-4.9-4.3.2squid-debugsource-4.9-4.3.2






SuSE Linux 15.1x86_64ghostscript-9.27-lp151.3.9.1ghostscript-x11-debuginfo-9.27-lp151.3.9.1ghostscript-x11-9.27-lp151.3.9.1ghostscript-debugsource-9.27-lp151.3.9.1ghostscript-mini-debuginfo-9.27-lp151.3.9.1ghostscript-mini-devel-9.27-lp151.3.9.1ghostscript-mini-9.27-lp151.3.9.1ghostscript-devel-9.27-lp151.3.9.1ghostscript-mini-debugsource-9.27-lp151.3.9.1ghostscript-debuginfo-9.27-lp151.3.9.1

i586ghostscript-9.27-lp151.3.9.1ghostscript-x11-debuginfo-9.27-lp151.3.9.1ghostscript-x11-9.27-lp151.3.9.1ghostscript-debugsource-9.27-lp151.3.9.1ghostscript-mini-debuginfo-9.27-lp151.3.9.1ghostscript-mini-devel-9.27-lp151.3.9.1ghostscript-mini-9.27-lp151.3.9.1ghostscript-devel-9.27-lp151.3.9.1ghostscript-mini-debugsource-9.27-lp151.3.9.1ghostscript-debuginfo-9.27-lp151.3.9.1

148559 - SuSE SLES 12 SP4, 12 SP5, SLED 12 SP4 SUSE-SU-2019:3064-1 Update Is Not Installed





SuSE SLES 12 SP4noarchcpio-lang-2.11-36.6.1

x86_64cpio-debugsource-2.11-36.6.1cpio-2.11-36.6.1cpio-debuginfo-2.11-36.6.1

SuSE SLED 12 SP4x86_64cpio-debugsource-2.11-36.6.1cpio-2.11-36.6.1cpio-debuginfo-2.11-36.6.1

noarchcpio-lang-2.11-36.6.1

SuSE SLES 12 SP5noarchcpio-lang-2.11-36.6.1

x86_64cpio-debugsource-2.11-36.6.1cpio-2.11-36.6.1cpio-debuginfo-2.11-36.6.1






SuSE Linux 15.0x86_64ghostscript-9.27-lp150.2.26.1ghostscript-mini-devel-9.27-lp150.2.26.1ghostscript-debugsource-9.27-lp150.2.26.1ghostscript-x11-9.27-lp150.2.26.1ghostscript-x11-debuginfo-9.27-lp150.2.26.1ghostscript-mini-9.27-lp150.2.26.1ghostscript-devel-9.27-lp150.2.26.1ghostscript-mini-debugsource-9.27-lp150.2.26.1ghostscript-mini-debuginfo-9.27-lp150.2.26.1ghostscript-debuginfo-9.27-lp150.2.26.1

i586ghostscript-9.27-lp150.2.26.1ghostscript-mini-devel-9.27-lp150.2.26.1ghostscript-debugsource-9.27-lp150.2.26.1ghostscript-x11-9.27-lp150.2.26.1ghostscript-x11-debuginfo-9.27-lp150.2.26.1ghostscript-mini-9.27-lp150.2.26.1ghostscript-devel-9.27-lp150.2.26.1ghostscript-mini-debugsource-9.27-lp150.2.26.1ghostscript-mini-debuginfo-9.27-lp150.2.26.1ghostscript-debuginfo-9.27-lp150.2.26.1






SuSE SLES 12 SP4

x86_64libsqlite3-0-3.8.10.2-9.15.1sqlite3-debugsource-3.8.10.2-9.15.1libsqlite3-0-debuginfo-3.8.10.2-9.15.1libsqlite3-0-32bit-3.8.10.2-9.15.1libsqlite3-0-debuginfo-32bit-3.8.10.2-9.15.1sqlite3-debuginfo-3.8.10.2-9.15.1sqlite3-3.8.10.2-9.15.1

SuSE SLED 12 SP4x86_64libsqlite3-0-3.8.10.2-9.15.1sqlite3-debugsource-3.8.10.2-9.15.1libsqlite3-0-debuginfo-3.8.10.2-9.15.1sqlite3-debuginfo-3.8.10.2-9.15.1libsqlite3-0-debuginfo-32bit-3.8.10.2-9.15.1libsqlite3-0-32bit-3.8.10.2-9.15.1sqlite3-3.8.10.2-9.15.1

SuSE SLES 12 SP5x86_64libsqlite3-0-3.8.10.2-9.15.1sqlite3-debugsource-3.8.10.2-9.15.1libsqlite3-0-debuginfo-3.8.10.2-9.15.1libsqlite3-0-32bit-3.8.10.2-9.15.1libsqlite3-0-debuginfo-32bit-3.8.10.2-9.15.1sqlite3-debuginfo-3.8.10.2-9.15.1sqlite3-3.8.10.2-9.15.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2019-2894, CVE-2019-2933, CVE-2019-2945, CVE-2019-2949, CVE-2019-2958, CVE-2019-2962, CVE-2019-2964,CVE-2019-2973, CVE-2019-2975, CVE-2019-2977, CVE-2019-2978, CVE-2019-2981, CVE-2019-2983, CVE-2019-2987, CVE-2019-2988, CVE-2019-2989, CVE-2019-2992, CVE-2019-2999




SuSE Linux 15.1i586java-11-openjdk-devel-11.0.5.0-lp151.3.9.2java-11-openjdk-demo-11.0.5.0-lp151.3.9.2java-11-openjdk-accessibility-debuginfo-11.0.5.0-lp151.3.9.2java-11-openjdk-debuginfo-11.0.5.0-lp151.3.9.2java-11-openjdk-accessibility-11.0.5.0-lp151.3.9.2java-11-openjdk-debugsource-11.0.5.0-lp151.3.9.2java-11-openjdk-11.0.5.0-lp151.3.9.2java-11-openjdk-src-11.0.5.0-lp151.3.9.2java-11-openjdk-jmods-11.0.5.0-lp151.3.9.2

java-11-openjdk-headless-11.0.5.0-lp151.3.9.2

noarchjava-11-openjdk-javadoc-11.0.5.0-lp151.3.9.2

x86_64java-11-openjdk-devel-11.0.5.0-lp151.3.9.2java-11-openjdk-demo-11.0.5.0-lp151.3.9.2java-11-openjdk-accessibility-debuginfo-11.0.5.0-lp151.3.9.2java-11-openjdk-debuginfo-11.0.5.0-lp151.3.9.2java-11-openjdk-accessibility-11.0.5.0-lp151.3.9.2java-11-openjdk-debugsource-11.0.5.0-lp151.3.9.2java-11-openjdk-11.0.5.0-lp151.3.9.2java-11-openjdk-src-11.0.5.0-lp151.3.9.2java-11-openjdk-jmods-11.0.5.0-lp151.3.9.2java-11-openjdk-headless-11.0.5.0-lp151.3.9.2






SuSE Linux 15.1x86_64libcups2-32bit-debuginfo-2.2.7-lp151.6.3.1cups-debuginfo-2.2.7-lp151.6.3.1libcupsmime1-2.2.7-lp151.6.3.1libcupsmime1-debuginfo-2.2.7-lp151.6.3.1libcupsimage2-2.2.7-lp151.6.3.1libcupsimage2-32bit-2.2.7-lp151.6.3.1libcups2-32bit-2.2.7-lp151.6.3.1libcupsmime1-32bit-debuginfo-2.2.7-lp151.6.3.1libcupsppdc1-32bit-debuginfo-2.2.7-lp151.6.3.1libcupsimage2-debuginfo-2.2.7-lp151.6.3.1libcupsppdc1-32bit-2.2.7-lp151.6.3.1libcupsimage2-32bit-debuginfo-2.2.7-lp151.6.3.1cups-2.2.7-lp151.6.3.1cups-devel-2.2.7-lp151.6.3.1cups-client-debuginfo-2.2.7-lp151.6.3.1cups-ddk-debuginfo-2.2.7-lp151.6.3.1cups-ddk-2.2.7-lp151.6.3.1libcupsppdc1-debuginfo-2.2.7-lp151.6.3.1cups-client-2.2.7-lp151.6.3.1libcupscgi1-2.2.7-lp151.6.3.1libcupscgi1-32bit-debuginfo-2.2.7-lp151.6.3.1cups-config-2.2.7-lp151.6.3.1cups-debugsource-2.2.7-lp151.6.3.1

libcups2-2.2.7-lp151.6.3.1libcupscgi1-debuginfo-2.2.7-lp151.6.3.1libcupsppdc1-2.2.7-lp151.6.3.1libcupscgi1-32bit-2.2.7-lp151.6.3.1cups-devel-32bit-2.2.7-lp151.6.3.1libcupsmime1-32bit-2.2.7-lp151.6.3.1libcups2-debuginfo-2.2.7-lp151.6.3.1

i586cups-debuginfo-2.2.7-lp151.6.3.1cups-client-2.2.7-lp151.6.3.1cups-2.2.7-lp151.6.3.1libcupscgi1-2.2.7-lp151.6.3.1cups-config-2.2.7-lp151.6.3.1libcupsmime1-debuginfo-2.2.7-lp151.6.3.1cups-debugsource-2.2.7-lp151.6.3.1cups-ddk-debuginfo-2.2.7-lp151.6.3.1cups-devel-2.2.7-lp151.6.3.1libcupsppdc1-debuginfo-2.2.7-lp151.6.3.1libcupsppdc1-2.2.7-lp151.6.3.1libcupsimage2-2.2.7-lp151.6.3.1libcupsmime1-2.2.7-lp151.6.3.1cups-client-debuginfo-2.2.7-lp151.6.3.1libcupsimage2-debuginfo-2.2.7-lp151.6.3.1libcupscgi1-debuginfo-2.2.7-lp151.6.3.1cups-ddk-2.2.7-lp151.6.3.1libcups2-debuginfo-2.2.7-lp151.6.3.1libcups2-2.2.7-lp151.6.3.1






SuSE Linux 15.0x86_64djvulibre-debuginfo-3.5.27-lp150.2.6.1libdjvulibre21-3.5.27-lp150.2.6.1djvulibre-doc-3.5.27-lp150.2.6.1libdjvulibre-devel-3.5.27-lp150.2.6.1djvulibre-debugsource-3.5.27-lp150.2.6.1djvulibre-3.5.27-lp150.2.6.1libdjvulibre21-debuginfo-3.5.27-lp150.2.6.1

i586djvulibre-debuginfo-3.5.27-lp150.2.6.1libdjvulibre21-3.5.27-lp150.2.6.1

djvulibre-doc-3.5.27-lp150.2.6.1libdjvulibre-devel-3.5.27-lp150.2.6.1djvulibre-debugsource-3.5.27-lp150.2.6.1djvulibre-3.5.27-lp150.2.6.1libdjvulibre21-debuginfo-3.5.27-lp150.2.6.1






SuSE Linux 15.1x86_64libdjvulibre-devel-3.5.27-lp151.3.6.1djvulibre-3.5.27-lp151.3.6.1djvulibre-debugsource-3.5.27-lp151.3.6.1djvulibre-debuginfo-3.5.27-lp151.3.6.1libdjvulibre21-debuginfo-3.5.27-lp151.3.6.1libdjvulibre21-3.5.27-lp151.3.6.1djvulibre-doc-3.5.27-lp151.3.6.1

i586libdjvulibre-devel-3.5.27-lp151.3.6.1djvulibre-3.5.27-lp151.3.6.1djvulibre-debugsource-3.5.27-lp151.3.6.1djvulibre-debuginfo-3.5.27-lp151.3.6.1libdjvulibre21-debuginfo-3.5.27-lp151.3.6.1libdjvulibre21-3.5.27-lp151.3.6.1djvulibre-doc-3.5.27-lp151.3.6.1






SuSE Linux 15.0x86_64libcupscgi1-32bit-debuginfo-2.2.7-lp150.2.13.1libcupsimage2-debuginfo-2.2.7-lp150.2.13.1libcupsimage2-32bit-2.2.7-lp150.2.13.1cups-debuginfo-2.2.7-lp150.2.13.1libcups2-32bit-debuginfo-2.2.7-lp150.2.13.1libcupsmime1-32bit-debuginfo-2.2.7-lp150.2.13.1cups-client-2.2.7-lp150.2.13.1libcups2-2.2.7-lp150.2.13.1libcupsppdc1-32bit-2.2.7-lp150.2.13.1cups-devel-32bit-2.2.7-lp150.2.13.1libcupsmime1-2.2.7-lp150.2.13.1libcupscgi1-32bit-2.2.7-lp150.2.13.1libcupsimage2-32bit-debuginfo-2.2.7-lp150.2.13.1cups-ddk-2.2.7-lp150.2.13.1libcups2-debuginfo-2.2.7-lp150.2.13.1cups-debugsource-2.2.7-lp150.2.13.1cups-ddk-debuginfo-2.2.7-lp150.2.13.1libcupsppdc1-32bit-debuginfo-2.2.7-lp150.2.13.1cups-devel-2.2.7-lp150.2.13.1cups-client-debuginfo-2.2.7-lp150.2.13.1libcupsppdc1-2.2.7-lp150.2.13.1libcups2-32bit-2.2.7-lp150.2.13.1libcupscgi1-2.2.7-lp150.2.13.1libcupsimage2-2.2.7-lp150.2.13.1libcupsmime1-debuginfo-2.2.7-lp150.2.13.1libcupsppdc1-debuginfo-2.2.7-lp150.2.13.1cups-2.2.7-lp150.2.13.1cups-config-2.2.7-lp150.2.13.1libcupscgi1-debuginfo-2.2.7-lp150.2.13.1libcupsmime1-32bit-2.2.7-lp150.2.13.1

i586libcups2-2.2.7-lp150.2.13.1cups-ddk-2.2.7-lp150.2.13.1cups-client-2.2.7-lp150.2.13.1libcupsimage2-debuginfo-2.2.7-lp150.2.13.1cups-ddk-debuginfo-2.2.7-lp150.2.13.1cups-debugsource-2.2.7-lp150.2.13.1cups-devel-2.2.7-lp150.2.13.1libcupsmime1-2.2.7-lp150.2.13.1libcupscgi1-debuginfo-2.2.7-lp150.2.13.1cups-config-2.2.7-lp150.2.13.1cups-2.2.7-lp150.2.13.1libcupscgi1-2.2.7-lp150.2.13.1libcupsppdc1-2.2.7-lp150.2.13.1libcups2-debuginfo-2.2.7-lp150.2.13.1cups-debuginfo-2.2.7-lp150.2.13.1libcupsimage2-2.2.7-lp150.2.13.1libcupsmime1-debuginfo-2.2.7-lp150.2.13.1libcupsppdc1-debuginfo-2.2.7-lp150.2.13.1cups-client-debuginfo-2.2.7-lp150.2.13.1

148569 - SuSE SLED 15 SUSE-SU-2019:3078-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: High

CVE: CVE-2019-17177, CVE-2019-17178




SuSE SLED 15x86_64freerdp-devel-2.0.0~rc4-3.10.1libfreerdp2-debuginfo-2.0.0~rc4-3.10.1freerdp-debuginfo-2.0.0~rc4-3.10.1winpr2-devel-2.0.0~rc4-3.10.1freerdp-2.0.0~rc4-3.10.1libwinpr2-2.0.0~rc4-3.10.1libwinpr2-debuginfo-2.0.0~rc4-3.10.1freerdp-debugsource-2.0.0~rc4-3.10.1libfreerdp2-2.0.0~rc4-3.10.1






SuSE Linux 15.0x86_64libpmi0-debuginfo-17.11.13-lp150.5.24.1slurm-sview-debuginfo-17.11.13-lp150.5.24.1slurm-sjstat-17.11.13-lp150.5.24.1slurm-sql-debuginfo-17.11.13-lp150.5.24.1slurm-munge-17.11.13-lp150.5.24.1slurm-torque-17.11.13-lp150.5.24.1slurm-plugins-17.11.13-lp150.5.24.1slurm-auth-none-17.11.13-lp150.5.24.1libslurm32-debuginfo-17.11.13-lp150.5.24.1slurm-doc-17.11.13-lp150.5.24.1slurm-slurmdbd-17.11.13-lp150.5.24.1slurm-node-17.11.13-lp150.5.24.1perl-slurm-17.11.13-lp150.5.24.1libpmi0-17.11.13-lp150.5.24.1slurm-plugins-debuginfo-17.11.13-lp150.5.24.1

slurm-auth-none-debuginfo-17.11.13-lp150.5.24.1slurm-lua-debuginfo-17.11.13-lp150.5.24.1perl-slurm-debuginfo-17.11.13-lp150.5.24.1slurm-devel-17.11.13-lp150.5.24.1slurm-debuginfo-17.11.13-lp150.5.24.1slurm-munge-debuginfo-17.11.13-lp150.5.24.1slurm-pam_slurm-debuginfo-17.11.13-lp150.5.24.1slurm-sview-17.11.13-lp150.5.24.1slurm-seff-17.11.13-lp150.5.24.1slurm-openlava-17.11.13-lp150.5.24.1slurm-lua-17.11.13-lp150.5.24.1slurm-sql-17.11.13-lp150.5.24.1slurm-torque-debuginfo-17.11.13-lp150.5.24.1slurm-pam_slurm-17.11.13-lp150.5.24.1slurm-debugsource-17.11.13-lp150.5.24.1slurm-node-debuginfo-17.11.13-lp150.5.24.1libslurm32-17.11.13-lp150.5.24.1slurm-17.11.13-lp150.5.24.1slurm-slurmdbd-debuginfo-17.11.13-lp150.5.24.1slurm-config-17.11.13-lp150.5.24.1

148571 - SuSE SLED 15 SP1 SUSE-SU-2019:3079-1 Update Is Not Installed





SuSE SLED 15 SP1x86_64freerdp-2.0.0~rc4-10.4.1freerdp-debugsource-2.0.0~rc4-10.4.1freerdp-debuginfo-2.0.0~rc4-10.4.1libfreerdp2-debuginfo-2.0.0~rc4-10.4.1winpr2-devel-2.0.0~rc4-10.4.1libfreerdp2-2.0.0~rc4-10.4.1libwinpr2-2.0.0~rc4-10.4.1freerdp-devel-2.0.0~rc4-10.4.1libwinpr2-debuginfo-2.0.0~rc4-10.4.1



Description

The scan detected that the host is missing the following update:openSUSE-SU-2019:2545-1



SuSE Linux 15.0x86_64chromedriver-debuginfo-78.0.3904.108-lp150.257.1chromedriver-78.0.3904.108-lp150.257.1chromium-78.0.3904.108-lp150.257.1chromium-debugsource-78.0.3904.108-lp150.257.1chromium-debuginfo-78.0.3904.108-lp150.257.1






SuSE Linux 15.1x86_64chromedriver-78.0.3904.108-lp151.2.48.1chromedriver-debuginfo-78.0.3904.108-lp151.2.48.1chromium-debugsource-78.0.3904.108-lp151.2.48.1chromium-debuginfo-78.0.3904.108-lp151.2.48.1chromium-78.0.3904.108-lp151.2.48.1

148574 - SuSE SLES 12 SP4 SUSE-SU-2019:3032-1 Update Is Not Installed





SuSE SLES 12 SP4x86_64dpdk-debugsource-17.11.7-5.3.2libdpdk-17_11-debuginfo-17.11.7-5.3.2dpdk-kmp-default-debuginfo-17.11.7_k4.12.14_95.37-5.3.2dpdk-tools-17.11.7-5.3.2dpdk-tools-debuginfo-17.11.7-5.3.2dpdk-debuginfo-17.11.7-5.3.2libdpdk-17_11-17.11.7-5.3.2dpdk-kmp-default-17.11.7_k4.12.14_95.37-5.3.2dpdk-17.11.7-5.3.2






SuSE SLES 12 SP4x86_64cups-libs-debuginfo-1.7.5-20.26.1cups-libs-32bit-1.7.5-20.26.1cups-client-debuginfo-1.7.5-20.26.1cups-1.7.5-20.26.1cups-debugsource-1.7.5-20.26.1cups-client-1.7.5-20.26.1cups-libs-debuginfo-32bit-1.7.5-20.26.1cups-libs-1.7.5-20.26.1cups-debuginfo-1.7.5-20.26.1

SuSE SLED 12 SP4x86_64cups-libs-debuginfo-1.7.5-20.26.1cups-libs-32bit-1.7.5-20.26.1cups-client-debuginfo-1.7.5-20.26.1cups-1.7.5-20.26.1cups-debugsource-1.7.5-20.26.1cups-client-1.7.5-20.26.1cups-libs-debuginfo-32bit-1.7.5-20.26.1cups-libs-1.7.5-20.26.1cups-debuginfo-1.7.5-20.26.1

SuSE SLES 12 SP5x86_64cups-libs-debuginfo-1.7.5-20.26.1cups-libs-32bit-1.7.5-20.26.1

cups-client-debuginfo-1.7.5-20.26.1cups-1.7.5-20.26.1cups-debugsource-1.7.5-20.26.1cups-client-1.7.5-20.26.1cups-libs-debuginfo-32bit-1.7.5-20.26.1cups-libs-1.7.5-20.26.1cups-debuginfo-1.7.5-20.26.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12527, CVE-2019-12529, CVE-2019-12854, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-3688




SuSE Linux 15.1x86_64squid-4.9-lp151.2.7.1squid-debuginfo-4.9-lp151.2.7.1squid-debugsource-4.9-lp151.2.7.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2019-12523, CVE-2019-12525, CVE-2019-12526, CVE-2019-12527, CVE-2019-12529, CVE-2019-12854, CVE-2019-13345, CVE-2019-18676, CVE-2019-18677, CVE-2019-18678, CVE-2019-18679, CVE-2019-3688




SuSE Linux 15.0x86_64squid-debuginfo-4.9-lp150.13.1squid-4.9-lp150.13.1squid-debugsource-4.9-lp150.13.1

148579 - SuSE SLES 12 SP4, 12 SP5 SUSE-SU-2019:3076-1 Update Is Not Installed





SuSE SLES 12 SP4x86_64mailman-2.1.17-3.11.1mailman-debuginfo-2.1.17-3.11.1mailman-debugsource-2.1.17-3.11.1

SuSE SLES 12 SP5x86_64mailman-2.1.17-3.11.1mailman-debuginfo-2.1.17-3.11.1mailman-debugsource-2.1.17-3.11.1

148580 - SuSE SLED 12 SP4, 12 SP5 SUSE-SU-2019:3077-1 Update Is Not Installed





SuSE SLED 12 SP4x86_64libfreerdp2-debuginfo-2.0.0~git.1463131968.4e66df7-12.11.1freerdp-2.0.0~git.1463131968.4e66df7-12.11.1freerdp-debugsource-2.0.0~git.1463131968.4e66df7-12.11.1libfreerdp2-2.0.0~git.1463131968.4e66df7-12.11.1freerdp-debuginfo-2.0.0~git.1463131968.4e66df7-12.11.1

SuSE SLED 12 SP5x86_64libfreerdp2-debuginfo-2.0.0~git.1463131968.4e66df7-12.11.1freerdp-2.0.0~git.1463131968.4e66df7-12.11.1freerdp-debugsource-2.0.0~git.1463131968.4e66df7-12.11.1libfreerdp2-2.0.0~git.1463131968.4e66df7-12.11.1

freerdp-debuginfo-2.0.0~git.1463131968.4e66df7-12.11.1






SuSE SLES 12 SP4x86_64aspell-ispell-0.60.6.1-18.3.1aspell-debugsource-0.60.6.1-18.3.1libaspell15-debuginfo-32bit-0.60.6.1-18.3.1libaspell15-debuginfo-0.60.6.1-18.3.1libaspell15-32bit-0.60.6.1-18.3.1libaspell15-0.60.6.1-18.3.1aspell-0.60.6.1-18.3.1aspell-debuginfo-0.60.6.1-18.3.1

SuSE SLED 12 SP4x86_64libaspell15-32bit-0.60.6.1-18.3.1aspell-debugsource-0.60.6.1-18.3.1libaspell15-debuginfo-0.60.6.1-18.3.1libaspell15-debuginfo-32bit-0.60.6.1-18.3.1libaspell15-0.60.6.1-18.3.1aspell-0.60.6.1-18.3.1aspell-debuginfo-0.60.6.1-18.3.1

SuSE SLES 12 SP5x86_64aspell-ispell-0.60.6.1-18.3.1aspell-debugsource-0.60.6.1-18.3.1libaspell15-debuginfo-32bit-0.60.6.1-18.3.1libaspell15-debuginfo-0.60.6.1-18.3.1libaspell15-32bit-0.60.6.1-18.3.1libaspell15-0.60.6.1-18.3.1aspell-0.60.6.1-18.3.1aspell-debuginfo-0.60.6.1-18.3.1



Description

The scan detected that the host is missing the following update:openSUSE-SU-2019:2555-1



SuSE Linux 15.0x86_64haproxy-debugsource-2.0.5+git0.d905f49a-lp150.2.13.1haproxy-2.0.5+git0.d905f49a-lp150.2.13.1haproxy-debuginfo-2.0.5+git0.d905f49a-lp150.2.13.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2019-2894, CVE-2019-2933, CVE-2019-2945, CVE-2019-2949, CVE-2019-2958, CVE-2019-2962, CVE-2019-2964,CVE-2019-2973, CVE-2019-2975, CVE-2019-2977, CVE-2019-2978, CVE-2019-2981, CVE-2019-2983, CVE-2019-2987, CVE-2019-2988, CVE-2019-2989, CVE-2019-2992, CVE-2019-2999




SuSE Linux 15.0x86_64java-11-openjdk-demo-11.0.5.0-lp150.2.28.1java-11-openjdk-debugsource-11.0.5.0-lp150.2.28.1java-11-openjdk-headless-11.0.5.0-lp150.2.28.1java-11-openjdk-accessibility-debuginfo-11.0.5.0-lp150.2.28.1java-11-openjdk-devel-11.0.5.0-lp150.2.28.1java-11-openjdk-src-11.0.5.0-lp150.2.28.1java-11-openjdk-jmods-11.0.5.0-lp150.2.28.1java-11-openjdk-11.0.5.0-lp150.2.28.1java-11-openjdk-accessibility-11.0.5.0-lp150.2.28.1java-11-openjdk-debuginfo-11.0.5.0-lp150.2.28.1

noarchjava-11-openjdk-javadoc-11.0.5.0-lp150.2.28.1



Description

The scan detected that the host is missing the following update:ELSA-2019-3890



OEL8x86_64ghostscript-tools-printing-9.25-5.el8_1.1libgs-9.25-5.el8_1.1ghostscript-doc-9.25-5.el8_1.1ghostscript-9.25-5.el8_1.1ghostscript-tools-dvipdf-9.25-5.el8_1.1ghostscript-x11-9.25-5.el8_1.1ghostscript-tools-fonts-9.25-5.el8_1.1libgs-devel-9.25-5.el8_1.1






OEL8x86_64SDL-devel-1.2.15-36.el8_1SDL-1.2.15-36.el8_1


Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-12207, CVE-2019-0154, CVE-2019-0155, CVE-2019-11135




OEL8x86_64kernel-tools-4.18.0-147.0.2.el8_1kernel-headers-4.18.0-147.0.2.el8_1kernel-abi-whitelists-4.18.0-147.0.2.el8_1kernel-core-4.18.0-147.0.2.el8_1kernel-debug-4.18.0-147.0.2.el8_1perf-4.18.0-147.0.2.el8_1kernel-cross-headers-4.18.0-147.0.2.el8_1kernel-debug-modules-extra-4.18.0-147.0.2.el8_1kernel-modules-4.18.0-147.0.2.el8_1kernel-4.18.0-147.0.2.el8_1kernel-tools-libs-devel-4.18.0-147.0.2.el8_1kernel-tools-libs-4.18.0-147.0.2.el8_1kernel-debug-modules-4.18.0-147.0.2.el8_1kernel-debug-core-4.18.0-147.0.2.el8_1bpftool-4.18.0-147.0.2.el8_1kernel-doc-4.18.0-147.0.2.el8_1python3-perf-4.18.0-147.0.2.el8_1kernel-debug-devel-4.18.0-147.0.2.el8_1kernel-devel-4.18.0-147.0.2.el8_1kernel-modules-extra-4.18.0-147.0.2.el8_1






OEL8x86_64kernel-abi-whitelists-4.18.0-147.0.3.el8_1kernel-tools-libs-4.18.0-147.0.3.el8_1kernel-devel-4.18.0-147.0.3.el8_1kernel-debug-modules-extra-4.18.0-147.0.3.el8_1kernel-headers-4.18.0-147.0.3.el8_1kernel-debug-core-4.18.0-147.0.3.el8_1kernel-tools-libs-devel-4.18.0-147.0.3.el8_1kernel-debug-devel-4.18.0-147.0.3.el8_1kernel-doc-4.18.0-147.0.3.el8_1kernel-modules-4.18.0-147.0.3.el8_1kernel-tools-4.18.0-147.0.3.el8_1kernel-core-4.18.0-147.0.3.el8_1kernel-debug-4.18.0-147.0.3.el8_1kernel-debug-modules-4.18.0-147.0.3.el8_1python3-perf-4.18.0-147.0.3.el8_1

kernel-cross-headers-4.18.0-147.0.3.el8_1bpftool-4.18.0-147.0.3.el8_1perf-4.18.0-147.0.3.el8_1kernel-4.18.0-147.0.3.el8_1kernel-modules-extra-4.18.0-147.0.3.el8_1


Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2017-14991, CVE-2017-15102, CVE-2017-18551, CVE-2018-20169, CVE-2019-11135, CVE-2019-14284



http://oss.oracle.com/pipermail/el-errata/2019-November/009353.htmlhttp://oss.oracle.com/pipermail/el-errata/2019-November/009352.html

OEL7x86_64kernel-uek-3.8.13-118.40.1.el7uekdtrace-modules-3.8.13-118.40.1.el7uek-0.4.5-3.el7kernel-uek-doc-3.8.13-118.40.1.el7uekkernel-uek-debug-3.8.13-118.40.1.el7uekkernel-uek-debug-devel-3.8.13-118.40.1.el7uekkernel-uek-devel-3.8.13-118.40.1.el7uekkernel-uek-firmware-3.8.13-118.40.1.el7uek

OEL6x86_64kernel-uek-firmware-3.8.13-118.40.1.el6uekkernel-uek-debug-3.8.13-118.40.1.el6uekdtrace-modules-3.8.13-118.40.1.el6uek-0.4.5-3.el6kernel-uek-debug-devel-3.8.13-118.40.1.el6uekkernel-uek-3.8.13-118.40.1.el6uekkernel-uek-devel-3.8.13-118.40.1.el6uekkernel-uek-doc-3.8.13-118.40.1.el6uek






OEL8x86_64sudo-1.8.25p1-8.el8_1


Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2017-14991, CVE-2017-15102, CVE-2017-18509, CVE-2017-18551, CVE-2018-20169, CVE-2019-11135, CVE-2019-14284




OEL6x86_64kernel-uek-doc-2.6.39-400.316.1.el6uekkernel-uek-debug-2.6.39-400.316.1.el6uekkernel-uek-2.6.39-400.316.1.el6uekkernel-uek-devel-2.6.39-400.316.1.el6uekkernel-uek-firmware-2.6.39-400.316.1.el6uekkernel-uek-debug-devel-2.6.39-400.316.1.el6uek

i386kernel-uek-doc-2.6.39-400.316.1.el6uekkernel-uek-debug-2.6.39-400.316.1.el6uekkernel-uek-2.6.39-400.316.1.el6uekkernel-uek-devel-2.6.39-400.316.1.el6uekkernel-uek-firmware-2.6.39-400.316.1.el6uekkernel-uek-debug-devel-2.6.39-400.316.1.el6uek

171171 - Amazon Linux AMI ALAS-2019-1322 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-12207

DescriptionThe scan detected that the host is missing the following update:ALAS-2019-1322


https://alas.aws.amazon.com/ALAS-2019-1322.html

Amazon Linux AMIx86_64kernel-tools-debuginfo-4.14.154-99.181.amzn1kernel-devel-4.14.154-99.181.amzn1kernel-4.14.154-99.181.amzn1kernel-debuginfo-common-x86_64-4.14.154-99.181.amzn1kernel-debuginfo-4.14.154-99.181.amzn1kernel-tools-4.14.154-99.181.amzn1perf-debuginfo-4.14.154-99.181.amzn1perf-4.14.154-99.181.amzn1kernel-tools-devel-4.14.154-99.181.amzn1kernel-headers-4.14.154-99.181.amzn1

i686kernel-tools-debuginfo-4.14.154-99.181.amzn1kernel-devel-4.14.154-99.181.amzn1kernel-4.14.154-99.181.amzn1kernel-debuginfo-4.14.154-99.181.amzn1kernel-tools-4.14.154-99.181.amzn1perf-debuginfo-4.14.154-99.181.amzn1kernel-debuginfo-common-i686-4.14.154-99.181.amzn1perf-4.14.154-99.181.amzn1kernel-tools-devel-4.14.154-99.181.amzn1kernel-headers-4.14.154-99.181.amzn1

195867 - Fedora Linux 30 FEDORA-2019-1fb95ae48d Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2019-17040, CVE-2019-17041, CVE-2019-17042

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-1fb95ae48d


https://lists.fedoraproject.org/archives/list/[email protected]/2019/11/?count=200&page=2

Fedora Core 30

rsyslog-8.1911.0-1.fc30

195868 - Fedora Linux 30 FEDORA-2019-e4819c6510 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-e4819c6510



Fedora Core 30

oniguruma-6.9.2-3.fc30

195872 - Fedora Linux 29 FEDORA-2019-52445dce42 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2019-16892

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-52445dce42



Fedora Core 29

rubygem-rubyzip-1.1.7-10.fc29

195883 - Fedora Linux 30 FEDORA-2019-0182d0b304 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-0182d0b304



Fedora Core 30


195884 - Fedora Linux 31 FEDORA-2019-ea7d5876a4 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: High

CVE: CVE-2019-17040, CVE-2019-17041, CVE-2019-17042

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-ea7d5876a4



Fedora Core 31

rsyslog-8.1911.0-1.fc31

195885 - Fedora Linux 29 FEDORA-2019-6a931c8eec Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-6a931c8eec



Fedora Core 29

oniguruma-6.9.1-3.fc29

195895 - Fedora Linux 31 FEDORA-2019-8ecd991303 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-8ecd991303



Fedora Core 31


196539 - Red Hat Enterprise Linux RHSA-2019-3979 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2019-14821, CVE-2019-15239

DescriptionThe scan detected that the host is missing the following update:RHSA-2019-3979


http://www.redhat.com/archives/rhsa-announce/2019-November/msg00128.html

RHEL7Dx86_64kernel-tools-3.10.0-1062.7.1.el7kernel-tools-debuginfo-3.10.0-1062.7.1.el7bpftool-debuginfo-3.10.0-1062.7.1.el7bpftool-3.10.0-1062.7.1.el7perf-debuginfo-3.10.0-1062.7.1.el7kernel-tools-libs-devel-3.10.0-1062.7.1.el7kernel-debuginfo-common-x86_64-3.10.0-1062.7.1.el7kernel-headers-3.10.0-1062.7.1.el7kernel-devel-3.10.0-1062.7.1.el7kernel-tools-libs-3.10.0-1062.7.1.el7python-perf-debuginfo-3.10.0-1062.7.1.el7kernel-debuginfo-3.10.0-1062.7.1.el7kernel-debug-debuginfo-3.10.0-1062.7.1.el7kernel-debug-3.10.0-1062.7.1.el7kernel-3.10.0-1062.7.1.el7python-perf-3.10.0-1062.7.1.el7perf-3.10.0-1062.7.1.el7kernel-debug-devel-3.10.0-1062.7.1.el7

noarchkernel-abi-whitelists-3.10.0-1062.7.1.el7kernel-doc-3.10.0-1062.7.1.el7

RHEL7Snoarchkernel-abi-whitelists-3.10.0-1062.7.1.el7kernel-doc-3.10.0-1062.7.1.el7

x86_64kernel-tools-3.10.0-1062.7.1.el7kernel-tools-debuginfo-3.10.0-1062.7.1.el7bpftool-debuginfo-3.10.0-1062.7.1.el7bpftool-3.10.0-1062.7.1.el7perf-debuginfo-3.10.0-1062.7.1.el7kernel-tools-libs-devel-3.10.0-1062.7.1.el7kernel-debuginfo-common-x86_64-3.10.0-1062.7.1.el7kernel-headers-3.10.0-1062.7.1.el7kernel-devel-3.10.0-1062.7.1.el7kernel-tools-libs-3.10.0-1062.7.1.el7

python-perf-debuginfo-3.10.0-1062.7.1.el7kernel-debuginfo-3.10.0-1062.7.1.el7kernel-debug-debuginfo-3.10.0-1062.7.1.el7kernel-debug-3.10.0-1062.7.1.el7kernel-3.10.0-1062.7.1.el7python-perf-3.10.0-1062.7.1.el7perf-3.10.0-1062.7.1.el7kernel-debug-devel-3.10.0-1062.7.1.el7

RHEL7WSx86_64kernel-tools-3.10.0-1062.7.1.el7kernel-tools-debuginfo-3.10.0-1062.7.1.el7bpftool-debuginfo-3.10.0-1062.7.1.el7bpftool-3.10.0-1062.7.1.el7perf-debuginfo-3.10.0-1062.7.1.el7kernel-tools-libs-devel-3.10.0-1062.7.1.el7kernel-debuginfo-common-x86_64-3.10.0-1062.7.1.el7kernel-headers-3.10.0-1062.7.1.el7kernel-devel-3.10.0-1062.7.1.el7kernel-tools-libs-3.10.0-1062.7.1.el7python-perf-debuginfo-3.10.0-1062.7.1.el7kernel-debuginfo-3.10.0-1062.7.1.el7kernel-debug-debuginfo-3.10.0-1062.7.1.el7kernel-debug-3.10.0-1062.7.1.el7kernel-3.10.0-1062.7.1.el7python-perf-3.10.0-1062.7.1.el7perf-3.10.0-1062.7.1.el7kernel-debug-devel-3.10.0-1062.7.1.el7

noarchkernel-abi-whitelists-3.10.0-1062.7.1.el7kernel-doc-3.10.0-1062.7.1.el7


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2019-13616




RHEL7Dx86_64SDL-devel-1.2.15-14.el7_7SDL-static-1.2.15-14.el7_7SDL-1.2.15-14.el7_7SDL-debuginfo-1.2.15-14.el7_7

RHEL7S

x86_64SDL-devel-1.2.15-14.el7_7SDL-static-1.2.15-14.el7_7SDL-1.2.15-14.el7_7SDL-debuginfo-1.2.15-14.el7_7

RHEL7WSx86_64SDL-devel-1.2.15-14.el7_7SDL-static-1.2.15-14.el7_7SDL-1.2.15-14.el7_7SDL-debuginfo-1.2.15-14.el7_7


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2019-13723, CVE-2019-13724




RHEL6Di386chromium-browser-debuginfo-78.0.3904.108-1.el6_10chromium-browser-78.0.3904.108-1.el6_10

i686chromium-browser-debuginfo-78.0.3904.108-1.el6_10chromium-browser-78.0.3904.108-1.el6_10

x86_64chromium-browser-debuginfo-78.0.3904.108-1.el6_10chromium-browser-78.0.3904.108-1.el6_10

RHEL6Si386chromium-browser-debuginfo-78.0.3904.108-1.el6_10chromium-browser-78.0.3904.108-1.el6_10



RHEL6WSi386chromium-browser-debuginfo-78.0.3904.108-1.el6_10

chromium-browser-78.0.3904.108-1.el6_10








RHEL7Dx86_64389-ds-base-libs-1.3.9.1-12.el7_7389-ds-base-1.3.9.1-12.el7_7389-ds-base-devel-1.3.9.1-12.el7_7389-ds-base-snmp-1.3.9.1-12.el7_7389-ds-base-debuginfo-1.3.9.1-12.el7_7

RHEL7Sx86_64389-ds-base-libs-1.3.9.1-12.el7_7389-ds-base-1.3.9.1-12.el7_7389-ds-base-devel-1.3.9.1-12.el7_7389-ds-base-snmp-1.3.9.1-12.el7_7389-ds-base-debuginfo-1.3.9.1-12.el7_7

RHEL7WSx86_64389-ds-base-libs-1.3.9.1-12.el7_7389-ds-base-1.3.9.1-12.el7_7389-ds-base-devel-1.3.9.1-12.el7_7389-ds-base-snmp-1.3.9.1-12.el7_7389-ds-base-debuginfo-1.3.9.1-12.el7_7



Description

The scan detected that the host is missing the following update:RHSA-2019-3968



RHEL7Sppc64qemu-kvm-tools-ma-2.12.0-33.el7_7.1qemu-img-ma-2.12.0-33.el7_7.1qemu-kvm-ma-2.12.0-33.el7_7.1qemu-kvm-common-ma-2.12.0-33.el7_7.1qemu-kvm-ma-debuginfo-2.12.0-33.el7_7.1

25848 - Cisco IOS Software HTTP Client Information Disclosure Vulnerability

Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and HotfixesRisk Level: MediumCVE: CVE-2019-12665

DescriptionA vulnerability is present in some versions of Cisco IOS.

ObservationCisco IOS is an operating system used in Cisco devices.

A vulnerability is present in some versions of Cisco IOS. The flaw lies in HTTP client feature. Successful exploitation could allow an unauthenticated, remote attacker to retrieve sensitive information from the target system.

25850 - Joomla CSRF in com_template overrides view Vulnerability (20191001)

Category: General Vulnerability Assessment -> NonIntrusive -> Web ServerRisk Level: MediumCVE: CVE-2019-18650

DescriptionA vulnerability is present in some versions of Joomla!.

ObservationJoomla! is a content management system.

A vulnerability is present in some versions of Joomla!. The flaw lies in the com_template component. Successful exploitation could allow an attacker to conduct cross-site request forgery attacks.

25851 - Joomla Path Disclosure in phpuft8 mapping files Vulnerability (20191002)

Category: General Vulnerability Assessment -> NonIntrusive -> Web ServerRisk Level: MediumCVE: CVE-2019-18674

Description

A vulnerability is present in some versions of Joomla!.

ObservationJoomla! is a content management system.

A vulnerability is present in some versions of Joomla!. The flaw lies in the phpuft8 mapping files. Successful exploitation by an attacker could result in the disclosure of sensitive information.


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2016-5102, CVE-2018-17000, CVE-2019-14973, CVE-2019-6128, CVE-2019-7663




SuSE SLES 12 SP4x86_64tiff-4.0.9-44.42.1libtiff5-4.0.9-44.42.1tiff-debuginfo-4.0.9-44.42.1libtiff5-32bit-4.0.9-44.42.1libtiff5-debuginfo-4.0.9-44.42.1libtiff5-debuginfo-32bit-4.0.9-44.42.1tiff-debugsource-4.0.9-44.42.1

SuSE SLED 12 SP4x86_64libtiff5-4.0.9-44.42.1tiff-debuginfo-4.0.9-44.42.1libtiff5-32bit-4.0.9-44.42.1libtiff5-debuginfo-4.0.9-44.42.1libtiff5-debuginfo-32bit-4.0.9-44.42.1tiff-debugsource-4.0.9-44.42.1

SuSE SLES 12 SP5x86_64tiff-4.0.9-44.42.1libtiff5-4.0.9-44.42.1tiff-debuginfo-4.0.9-44.42.1libtiff5-32bit-4.0.9-44.42.1libtiff5-debuginfo-4.0.9-44.42.1libtiff5-debuginfo-32bit-4.0.9-44.42.1tiff-debugsource-4.0.9-44.42.1


Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes

Risk Level: MediumCVE: CVE-2017-15102, CVE-2017-15128, CVE-2017-18551, CVE-2018-12207, CVE-2019-11135, CVE-2019-11478, CVE-2019-14284, CVE-2019-14835, CVE-2019-15213, CVE-2019-15215, CVE-2019-15217, CVE-2019-15916, CVE-2019-16994, CVE-2019-16995, CVE-2019-17053, CVE-2019-17055



http://oss.oracle.com/pipermail/el-errata/2019-November/009350.htmlhttp://oss.oracle.com/pipermail/el-errata/2019-November/009351.html

OEL7x86_64kernel-uek-firmware-4.1.12-124.33.4.el7uekkernel-uek-debug-4.1.12-124.33.4.el7uekkernel-uek-debug-devel-4.1.12-124.33.4.el7uekkernel-uek-doc-4.1.12-124.33.4.el7uekkernel-uek-4.1.12-124.33.4.el7uekkernel-uek-devel-4.1.12-124.33.4.el7uek

OEL6x86_64kernel-uek-debug-4.1.12-124.33.4.el6uekkernel-uek-firmware-4.1.12-124.33.4.el6uekkernel-uek-doc-4.1.12-124.33.4.el6uekkernel-uek-devel-4.1.12-124.33.4.el6uekkernel-uek-debug-devel-4.1.12-124.33.4.el6uekkernel-uek-4.1.12-124.33.4.el6uek


Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2019-10160, CVE-2019-16056, CVE-2019-9636, CVE-2019-9740, CVE-2019-9947, CVE-2019-9948




Amazon Linux AMIx86_64python34-libs-3.4.10-1.49.amzn1python34-debuginfo-3.4.10-1.49.amzn1python34-test-3.4.10-1.49.amzn1python34-3.4.10-1.49.amzn1python34-devel-3.4.10-1.49.amzn1

python34-tools-3.4.10-1.49.amzn1

i686python34-libs-3.4.10-1.49.amzn1python34-debuginfo-3.4.10-1.49.amzn1python34-test-3.4.10-1.49.amzn1python34-3.4.10-1.49.amzn1python34-devel-3.4.10-1.49.amzn1python34-tools-3.4.10-1.49.amzn1

195871 - Fedora Linux 30 FEDORA-2019-021c968423 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12126, CVE-2018-12127, CVE-2018-12130, CVE-2018-12207, CVE-2019-0154, CVE-2019-0155, CVE-2019-10126, CVE-2019-10207, CVE-2019-11091, CVE-2019-11135, CVE-2019-11477, CVE-2019-11478, CVE-2019-11479, CVE-2019-11884, CVE-2019-12378, CVE-2019-12379, CVE-2019-12380, CVE-2019-12381, CVE-2019-12382, CVE-2019-12454, CVE-2019-12455, CVE-2019-12456, CVE-2019-12614, CVE-2019-12817, CVE-2019-13631, CVE-2019-14814, CVE-2019-14815, CVE-2019-14816, CVE-2019-14821, CVE-2019-15504, CVE-2019-15505, CVE-2019-15538, CVE-2019-17052, CVE-2019-17053, CVE-2019-17054, CVE-2019-17055, CVE-2019-17056, CVE-2019-17666, CVE-2019-19043, CVE-2019-19046, CVE-2019-19050, CVE-2019-19053, CVE-2019-19054, CVE-2019-19055, CVE-2019-19056, CVE-2019-19057, CVE-2019-19058, CVE-2019-19059, CVE-2019-19062, CVE-2019-19063, CVE-2019-19064, CVE-2019-19066, CVE-2019-19068, CVE-2019-19070, CVE-2019-19071, CVE-2019-19072, CVE-2019-19073, CVE-2019-19074, CVE-2019-3846, CVE-2019-3900

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-021c968423



Fedora Core 30

kernel-5.3.12-200.fc30

195873 - Fedora Linux 29 FEDORA-2019-7debdd1807 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2019-10216, CVE-2019-14811, CVE-2019-14812, CVE-2019-14813, CVE-2019-14817, CVE-2019-14869, CVE-2019-3835, CVE-2019-3838, CVE-2019-6116

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-7debdd1807



Fedora Core 29

ghostscript-9.27-2.fc29

195882 - Fedora Linux 30 FEDORA-2019-ce3385517b Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-18443, CVE-2018-18444

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-ce3385517b



Fedora Core 30

mingw-OpenEXR-2.2.1-5.fc30

195889 - Fedora Linux 31 FEDORA-2019-5b062c4a3b Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-5b062c4a3b



Fedora Core 31

mingw-OpenEXR-2.3.0-3.fc31mingw-ilmbase-2.3.0-3.fc31

148575 - SuSE SLED 15, 15 SP1 SUSE-SU-2019:3046-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2016-9798




SuSE SLED 15x86_64bluez-cups-5.48-5.19.1bluez-debuginfo-5.48-5.19.1bluez-debugsource-5.48-5.19.1bluez-cups-debuginfo-5.48-5.19.1

SuSE SLED 15 SP1x86_64bluez-cups-5.48-5.19.1bluez-debuginfo-5.48-5.19.1bluez-debugsource-5.48-5.19.1bluez-cups-debuginfo-5.48-5.19.1


Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2019-16276




Amazon Linux AMIi686golang-bin-1.12.8-1.52.amzn1golang-1.12.8-1.52.amzn1

noarchgolang-docs-1.12.8-1.52.amzn1golang-misc-1.12.8-1.52.amzn1golang-src-1.12.8-1.52.amzn1golang-tests-1.12.8-1.52.amzn1

x86_64golang-bin-1.12.8-1.52.amzn1golang-1.12.8-1.52.amzn1golang-race-1.12.8-1.52.amzn1






Amazon Linux AMIx86_64libapreq2-2.13-38.2.amzn1libapreq2-libs-2.13-38.2.amzn1perl-libapreq2-2.13-38.2.amzn1libapreq2-devel-2.13-38.2.amzn1libapreq2-debuginfo-2.13-38.2.amzn1

i686libapreq2-2.13-38.2.amzn1libapreq2-libs-2.13-38.2.amzn1perl-libapreq2-2.13-38.2.amzn1libapreq2-devel-2.13-38.2.amzn1libapreq2-debuginfo-2.13-38.2.amzn1

178786 - Gentoo Linux GLSA-201911-06 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixesRisk Level: MediumCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:GLSA-201911-06


https://security.gentoo.org/glsa/201911-06

Affected packages: www-client/chromium < 78.0.3904.87www-client/google-chrome < 78.0.3904.87






Affected packages: www-plugins/adobe-flash < 32.0.0.255






Affected packages: dev-libs/expat < 2.2.8






Affected packages: www-client/firefox < 68.2.0www-client/firefox-bin < 68.2.0

183142 - FreeBSD urllib3 Multiple Vulnerabilities (87270ba5-03d3-11ea-b81f-3085a9a95629)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: MediumCVE: CVE-2018-20060, CVE-2019-11236, CVE-2019-11324

DescriptionThe scan detected that the host is missing the following update:urllib3 -- multiple vulnerabilities (87270ba5-03d3-11ea-b81f-3085a9a95629)


http://www.vuxml.org/freebsd/87270ba5-03d3-11ea-b81f-3085a9a95629.html

Affected packages: py27-urllib3 < 1.24.3,1py35-urllib3 < 1.24.3,1py36-urllib3 < 1.24.3,1py37-urllib3 < 1.24.3,1py38-urllib3 < 1.24.3,1

195861 - Fedora Linux 31 FEDORA-2019-951d5dcaf9 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-951d5dcaf9



Fedora Core 31

thunderbird-enigmail-2.1.3-4.fc31

195864 - Fedora Linux 30 FEDORA-2019-76f546b7b8 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-76f546b7b8



Fedora Core 30

mingw-freeimage-3.18.0-7.fc30freeimage-3.18.0-6.fc30

195875 - Fedora Linux 31 FEDORA-2019-655994894e Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-655994894e



Fedora Core 31

freeimage-3.18.0-6.fc31mingw-freeimage-3.18.0-7.fc31

195877 - Fedora Linux 29 FEDORA-2019-941d57ed72 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-941d57ed72



Fedora Core 29

thunderbird-enigmail-2.1.3-4.fc29


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-20852, CVE-2019-16056




RHEL6Sx86_64python27-tkinter-2.7.17-2.el6python27-python-devel-2.7.17-2.el6python27-python-2.7.17-2.el6python27-python-tools-2.7.17-2.el6python27-python-test-2.7.17-2.el6python27-python-debuginfo-2.7.17-2.el6python27-python-debug-2.7.17-2.el6python27-python-libs-2.7.17-2.el6

RHEL6WSx86_64python27-tkinter-2.7.17-2.el6python27-python-devel-2.7.17-2.el6python27-python-2.7.17-2.el6python27-python-tools-2.7.17-2.el6python27-python-test-2.7.17-2.el6python27-python-debuginfo-2.7.17-2.el6python27-python-debug-2.7.17-2.el6python27-python-libs-2.7.17-2.el6

RHEL7Sppc64lepython27-python-libs-2.7.17-2.el7python27-python-debuginfo-2.7.17-2.el7python27-python-devel-2.7.17-2.el7python27-tkinter-2.7.17-2.el7python27-python-2.7.17-2.el7python27-python-debug-2.7.17-2.el7python27-python-test-2.7.17-2.el7python27-python-tools-2.7.17-2.el7

RHEL7WSx86_64python27-python-libs-2.7.17-2.el7python27-python-debuginfo-2.7.17-2.el7python27-python-devel-2.7.17-2.el7python27-tkinter-2.7.17-2.el7python27-python-2.7.17-2.el7python27-python-debug-2.7.17-2.el7python27-python-test-2.7.17-2.el7python27-python-tools-2.7.17-2.el7

25842 - (VMSA-2019-0019) VMware Workstation Pro Denial Of Service Vulnerability

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2019-5536

Description

A vulnerability is present in some versions of VMware Workstation Pro.

ObservationVMware Workstation Pro is a virtualization software.

A vulnerability is present in some versions of VMware Workstation Pro. The flaw lies in shader functionality. Successful exploitation could allow an attacker to cause a denial of service condition on the target system.

25845 - Cisco Adaptive Security Appliance Software SSL VPN Denial Of Service Vulnerability (cisco-sa-20191002-asa-ssl-vpn-dos)

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: MediumCVE: CVE-2019-12677

DescriptionA vulnerability is present in some versions of Cisco ASA Software.

ObservationCisco Adaptive Security Appliance is a firewall device.

A vulnerability is present in some versions of Cisco ASA Software. The flaw is due to improper handling of Base64 encoded strings. Successful exploitation could allow an unauthenticated remote attacker to cause a denial of service condition on the target system.

25847 - (JSA10974) Juniper Junos OS PKI Key Pairs Are Exported With Insecure File Permissions Vulnerability

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: MediumCVE: CVE-2019-0073

DescriptionA vulnerability is present in some versions of Juniper Junos OS.

ObservationJuniper Junos OS is an operating system used in Juniper devices.

A vulnerability is present in some versions of Juniper Junos OS. The flaw lays in the PKI key pairs. Successful exploitation could allow a malicious local user to obtain access to files with an unknown impact.

96070 - Ubuntu Linux 16.04, 18.04, 19.04, 19.10 USN-4198-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: MediumCVE: CVE-2019-15142, CVE-2019-15143, CVE-2019-15144, CVE-2019-15145, CVE-2019-18804

DescriptionThe scan detected that the host is missing the following update:USN-4198-1


https://lists.ubuntu.com/archives/ubuntu-security-announce/2019-November/005217.html

Ubuntu 16.04

libdjvulibre21_3.5.27.1-5ubuntu0.1

Ubuntu 19.04


Ubuntu 19.10


Ubuntu 18.04







Amazon Linux AMIx86_64glibc-static-2.17-292.178.amzn1glibc-utils-2.17-292.178.amzn1glibc-devel-2.17-292.178.amzn1nscd-2.17-292.178.amzn1glibc-common-2.17-292.178.amzn1glibc-debuginfo-2.17-292.178.amzn1glibc-debuginfo-common-2.17-292.178.amzn1glibc-2.17-292.178.amzn1glibc-headers-2.17-292.178.amzn1

i686glibc-static-2.17-292.178.amzn1glibc-utils-2.17-292.178.amzn1glibc-devel-2.17-292.178.amzn1nscd-2.17-292.178.amzn1glibc-2.17-292.178.amzn1glibc-debuginfo-2.17-292.178.amzn1glibc-debuginfo-common-2.17-292.178.amzn1glibc-common-2.17-292.178.amzn1glibc-headers-2.17-292.178.amzn1






Amazon Linux AMIx86_64blktrace-debuginfo-1.0.5-9.16.amzn1blktrace-1.0.5-9.16.amzn1

i686blktrace-1.0.5-9.16.amzn1blktrace-debuginfo-1.0.5-9.16.amzn1

195865 - Fedora Linux 30 FEDORA-2019-746b0b02f7 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2019-16707

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-746b0b02f7



Fedora Core 30

mingw-hunspell-1.7.0-6.fc30

195866 - Fedora Linux 29 FEDORA-2019-bf8b97d604 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-bf8b97d604



Fedora Core 29

koji-1.19.1-1.fc29

195888 - Fedora Linux 31 FEDORA-2019-074bf7d2d3 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2019-16707

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-074bf7d2d3



Fedora Core 31

mingw-hunspell-1.7.0-6.fc31

195892 - Fedora Linux 30 FEDORA-2019-f923712bab Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2019-15142, CVE-2019-15143, CVE-2019-15144, CVE-2019-15145, CVE-2019-18804

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-f923712bab



Fedora Core 30

mingw-djvulibre-3.5.27-7.fc30

195897 - Fedora Linux 31 FEDORA-2019-6bc8be9d84 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: Medium

CVE: CVE-2019-15142, CVE-2019-15143, CVE-2019-15144, CVE-2019-15145, CVE-2019-18804

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-6bc8be9d84



Fedora Core 31

mingw-djvulibre-3.5.27-7.fc31


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-19519




RHEL7Dx86_64tcpdump-debuginfo-4.9.2-4.el7_7.1tcpdump-4.9.2-4.el7_7.1

RHEL7Sx86_64tcpdump-debuginfo-4.9.2-4.el7_7.1tcpdump-4.9.2-4.el7_7.1

RHEL7WSx86_64tcpdump-debuginfo-4.9.2-4.el7_7.1tcpdump-4.9.2-4.el7_7.1

89052 - Slackware Linux 14.0, 14.1, 14.2 SSA:2019-324-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and HotfixesRisk Level: LowCVE: CVE-2019-6477

DescriptionThe scan detected that the host is missing the following update:

SSA:2019-324-01


http://www.slackware.com/security/viewer.php?l=slackware-security&y=2019&m=slackware-security.422136

Slackware 14.0x86_64bind-9.11.13-x86_64-1


i586bind-9.11.13-i586-1


131478 - Debian Linux 10.0 DSA-4575-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: LowCVE: CVE-2019-13723, CVE-2019-13724

DescriptionThe scan detected that the host is missing the following update:DSA-4575-1


http://www.debian.org/security/2019/dsa-4575

Debian 10.0allchromium_78.0.3904.108-1~deb10u1

183138 - FreeBSD asterisk SIP Request Can Change Address Of A SIP Peer (a8d94711-0d03-11ea-87ca-001999f8d30b)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2019-18790

DescriptionThe scan detected that the host is missing the following update:asterisk -- SIP request can change address of a SIP peer (a8d94711-0d03-11ea-87ca-001999f8d30b)

ObservationUpdates often remediate critical security problems that should be quickly addressed.

For more information see:

http://www.vuxml.org/freebsd/a8d94711-0d03-11ea-87ca-001999f8d30b.html

Affected packages: asterisk13 < 13.29.2asterisk16 < 16.6.2

183140 - FreeBSD asterisk Re-invite With T.38 And Malformed SDP Causes Crash (94c6951a-0d04-11ea-87ca-001999f8d30b)


DescriptionThe scan detected that the host is missing the following update:asterisk -- Re-invite with T.38 and malformed SDP causes crash (94c6951a-0d04-11ea-87ca-001999f8d30b)


http://www.vuxml.org/freebsd/94c6951a-0d04-11ea-87ca-001999f8d30b.html

Affected packages: asterisk13 < 13.29.2

183141 - FreeBSD asterisk AMI User Could Execute System Commands (49b61ab6-0d04-11ea-87ca-001999f8d30b)


DescriptionThe scan detected that the host is missing the following update:asterisk -- AMI user could execute system commands (49b61ab6-0d04-11ea-87ca-001999f8d30b)


http://www.vuxml.org/freebsd/49b61ab6-0d04-11ea-87ca-001999f8d30b.html

Affected packages: asterisk13 < 13.29.2asterisk16 < 16.6.2

183143 - FreeBSD unbound Parsing Vulnerability (ffc80e58-0dcb-11ea-9673-4c72b94353b5)


DescriptionThe scan detected that the host is missing the following update:unbound -- parsing vulnerability (ffc80e58-0dcb-11ea-9673-4c72b94353b5)


http://www.vuxml.org/freebsd/ffc80e58-0dcb-11ea-9673-4c72b94353b5.html

Affected packages: unbound < 1.9.5

183144 - FreeBSD clamav Denial-of-Service (DoS) vulnerability (6ade62d9-0f62-11ea-9673-4c72b94353b5)


DescriptionThe scan detected that the host is missing the following update:clamav -- Denial-of-Service (DoS) vulnerability (6ade62d9-0f62-11ea-9673-4c72b94353b5)


http://www.vuxml.org/freebsd/6ade62d9-0f62-11ea-9673-4c72b94353b5.html

Affected packages: clamav < 0.102.1,1

183145 - FreeBSD gitea Multiple Vulnerabilities (b12a341a-0932-11ea-bf09-080027e0baa0)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:gitea -- multiple vulnerabilities (b12a341a-0932-11ea-bf09-080027e0baa0)


http://www.vuxml.org/freebsd/b12a341a-0932-11ea-bf09-080027e0baa0.html

Affected packages: gitea < 1.9.10

183146 - FreeBSD FreeBSD Machine Check Exception On Page Size Change (edc0bf7e-05a1-11ea-9dfa-f8b156ac3ff9)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes

Risk Level: LowCVE: CVE-2018-12207

DescriptionThe scan detected that the host is missing the following update:FreeBSD -- Machine Check Exception on Page Size Change (edc0bf7e-05a1-11ea-9dfa-f8b156ac3ff9)


http://www.vuxml.org/freebsd/edc0bf7e-05a1-11ea-9dfa-f8b156ac3ff9.html

Affected packages: 12.1 <= FreeBSD-kernel < 12.1_112.0 <= FreeBSD-kernel < 12.0_1211.3 <= FreeBSD-kernel < 11.3_5

195862 - Fedora Linux 31 FEDORA-2019-34a75d7e61 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-12207, CVE-2019-0154, CVE-2019-0155, CVE-2019-11135, CVE-2019-19043, CVE-2019-19046, CVE-2019-19050, CVE-2019-19053, CVE-2019-19054, CVE-2019-19055, CVE-2019-19056, CVE-2019-19057, CVE-2019-19058, CVE-2019-19059, CVE-2019-19062, CVE-2019-19063, CVE-2019-19064, CVE-2019-19066, CVE-2019-19068, CVE-2019-19070, CVE-2019-19071, CVE-2019-19072, CVE-2019-19073, CVE-2019-19074

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-34a75d7e61



Fedora Core 31

kernel-5.3.12-300.fc31

195863 - Fedora Linux 29 FEDORA-2019-28d3cd20c0 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2019-12290

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-28d3cd20c0



Fedora Core 29

mingw-libidn2-2.3.0-1.fc29

195869 - Fedora Linux 31 FEDORA-2019-4c3ce3aa5c Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-4c3ce3aa5c



Fedora Core 31

systemd-243.4-1.fc31

195870 - Fedora Linux 30 FEDORA-2019-31b73b3e50 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-31b73b3e50



Fedora Core 30

chromium-78.0.3904.97-1.fc30

195874 - Fedora Linux 31 FEDORA-2019-5ae4fd9203 Update Is Not Installed


Description

The scan detected that the host is missing the following update:FEDORA-2019-5ae4fd9203



Fedora Core 31

php-symfony-2.8.52-1.fc31

195876 - Fedora Linux 31 FEDORA-2019-8b0ba02338 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-8b0ba02338



Fedora Core 31

php-symfony3-3.4.35-2.fc31

195878 - Fedora Linux 31 FEDORA-2019-f511b38b1f Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-f511b38b1f



Fedora Core 31

mingw-gdal-2.3.2-14.fc31mingw-cfitsio-3.470-2.fc31

195879 - Fedora Linux 31 FEDORA-2019-1ebb5c928e Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-1ebb5c928e



Fedora Core 31


195880 - Fedora Linux 30 FEDORA-2019-20e9736c97 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-20e9736c97



Fedora Core 30


195881 - Fedora Linux 29 FEDORA-2019-6dd4da1ba5 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-6dd4da1ba5



Fedora Core 29

chromium-78.0.3904.97-1.fc29

195886 - Fedora Linux 30 FEDORA-2019-90925dd5aa Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-90925dd5aa



Fedora Core 30

imapfilter-2.6.15-1.fc30

195887 - Fedora Linux 30 FEDORA-2019-6dcf885e38 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-6dcf885e38



Fedora Core 30

thunderbird-68.2.2-1.fc30

195890 - Fedora Linux 31 FEDORA-2019-019df9a459 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:

FEDORA-2019-019df9a459



Fedora Core 31

dpdk-18.11.2-3.fc31

195891 - Fedora Linux 31 FEDORA-2019-a6c5d70bde Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-a6c5d70bde



Fedora Core 31

imapfilter-2.6.15-1.fc31

195893 - Fedora Linux 29 FEDORA-2019-1a16af2158 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-1a16af2158



Fedora Core 29

thunderbird-68.2.2-1.fc29

195894 - Fedora Linux 30 FEDORA-2019-9c2ad3b018 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes

Risk Level: LowCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-9c2ad3b018



Fedora Core 30

php-symfony-2.8.52-1.fc30

195896 - Fedora Linux 30 FEDORA-2019-a6960910d8 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2019-a6960910d8



Fedora Core 30

mingw-gdal-2.3.2-7.fc30


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: LowCVE: CVE-2017-12652, CVE-2019-7317




SuSE SLES 12 SP4

x86_64libpng16-debugsource-1.6.8-15.5.2libpng16-16-debuginfo-1.6.8-15.5.2libpng16-16-debuginfo-32bit-1.6.8-15.5.2libpng16-16-1.6.8-15.5.2libpng16-16-32bit-1.6.8-15.5.2

SuSE SLED 12 SP4x86_64libpng16-16-32bit-1.6.8-15.5.2libpng16-16-1.6.8-15.5.2libpng16-16-debuginfo-32bit-1.6.8-15.5.2libpng16-debugsource-1.6.8-15.5.2libpng16-16-debuginfo-1.6.8-15.5.2

SuSE SLES 12 SP5x86_64libpng16-debugsource-1.6.8-15.5.2libpng16-16-debuginfo-1.6.8-15.5.2libpng16-16-debuginfo-32bit-1.6.8-15.5.2libpng16-16-1.6.8-15.5.2libpng16-16-32bit-1.6.8-15.5.2

ENHANCED CHECKS

The following checks have been updated. Enhancements may include optimizations, changes that reflect new information on avulnerability and anything else that improves upon an existing FSL check.


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5154, CVE-2018-5155, CVE-2018-5159, CVE-2018-5161, CVE-2018-5162, CVE-2018-5168,CVE-2018-5170, CVE-2018-5178, CVE-2018-5183, CVE-2018-5184, CVE-2018-5185, CVE-2019-17427, CVE-2019-18890

Update DetailsCVE is updated FASLScript is updated


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5154, CVE-2018-5155, CVE-2018-5159, CVE-2018-5161, CVE-2018-5162, CVE-2018-5168,CVE-2018-5170, CVE-2018-5178, CVE-2018-5183, CVE-2018-5184, CVE-2018-5185, CVE-2019-2938, CVE-2019-2974



Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2017-13194, CVE-2018-3639, CVE-2019-2126, CVE-2019-9232, CVE-2019-9325, CVE-2019-9371, CVE-2019-9433

Update Details

Risk is updated CVE is updated FASLScript is updated


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-2783, CVE-2018-2790, CVE-2018-2794, CVE-2018-2795, CVE-2018-2796, CVE-2018-2797, CVE-2018-2798,CVE-2018-2799, CVE-2018-2800

Update DetailsFASLScript is updated


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-3639, CVE-2019-6477



Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-3639, CVE-2019-15845, CVE-2019-16201, CVE-2019-16254, CVE-2019-16255


HOW TO UPDATE

FS1000 APPLIANCE customers should follow the instructions for Enterprise/Professional customers, below. In addition, we stronglyurge all appliance customers to authorize and install any Windows Update critical patches. The appliance will auto-download anycritical updates but will wait for your explicit authorization before installing.

FOUNDSTONE ENTERPRISE and PROFESSIONAL customers may obtain these new scripts using the FSUpdate Utility byselecting "FoundScan Update" on the help menu. Make sure that you have a valid FSUpdate username and password. The newvulnerability scripts will be automatically included in your scans if you have selected that option by right-clicking the selectedvulnerability category and checking the "Run New Checks" checkbox.

MANAGED SERVICE CUSTOMERS already have the newest update applied to their environment. The new vulnerability scripts willbe automatically included when your scans are next scheduled, provided the Run New Scripts option has been turned on.

MCAFEE TECHNICAL SUPPORT

ServicePortal: https://mysupport.mcafee.comMulti-National Phone Support available here:

http://www.mcafee.com/us/about/contact/index.htmlNon-US customers - Select your country from the list of Worldwide Offices.

This email may contain confidential and privileged material for the sole use of the intended recipient. Any review or distribution

https://mysupport.mcafee.com/

http://www.mcafee.com/us/about/contact/index.html

by others is strictly prohibited. If you are not the intended recipient please contact the sender and delete all copies.

Copyright 2019 McAfee, Inc.McAfee is a registered trademark of McAfee, Inc. and/or its affiliates

Documents

MCAFEE FOUNDSTONE FSL UPDATE 2019-NOV-27€¦ · 2019-DEC-03 FSL version 7.6.137 MCAFEE FOUNDSTONE FSL UPDATE To better protect your environment McAfee has created this FSL check