McAfee Foundstone FSL Update · php-symfony-var-dumper_2.8.7+dfsg-1.3+deb9u1 146923 - SuSE SLED 15 SUSE-SU-2018:2223-1 Update Is Not Installed Category: SSH Module -> NonIntrusive

2018-AUG-08FSL version 7.6.40

MCAFEE FOUNDSTONE FSL UPDATE

To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is adetailed summary of the new and updated checks included with this release.

NEW CHECKS

23932 - (JSA10874) Juniper Junos OS cURL Multiple Vulnerabilities

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2000-0973, CVE-2013-1944, CVE-2013-2174, CVE-2013-4545, CVE-2013-6422, CVE-2014-0015, CVE-2014-0138, CVE-2014-0139, CVE-2014-3613, CVE-2014-3707, CVE-2014-8150, CVE-2015-3143, CVE-2015-3148, CVE-2015-3153, CVE-2016-0754,CVE-2016-0755, CVE-2016-3739, CVE-2016-4802, CVE-2016-5419, CVE-2016-5420, CVE-2016-5421, CVE-2016-7141, CVE-2016-7167, CVE-2016-8615, CVE-2016-8616, CVE-2016-8617, CVE-2016-8618, CVE-2016-8619, CVE-2016-8620, CVE-2016-8621, CVE-2016-8622, CVE-2016-8623, CVE-2016-8624, CVE-2016-8625, CVE-2016-9586, CVE-2016-9952, CVE-2016-9953, CVE-2017-1000099, CVE-2017-1000100, CVE-2017-1000101, CVE-2017-1000254, CVE-2017-1000257, CVE-2017-7407, CVE-2017-8816,CVE-2017-8817, CVE-2017-8818, CVE-2017-9502, CVE-2018-1000005, CVE-2018-1000007, CVE-2018-1000120, CVE-2018-1000121, CVE-2018-1000122

DescriptionMultiple vulnerabilities are present in some versions of Juniper Junos.

ObservationJuniper Junos is an operating system used in Juniper device.

Multiple vulnerabilities are present in some versions of Juniper Junos. The flaws lie in the cURL/libcurl component. Successful exploitation could allow an attacker to obtain sensitive information, execute arbitrary remote code, bypass security restrictions or cause a denial of service.

131168 - Debian Linux 9.0 DSA-4259-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2017-17405, CVE-2017-17742, CVE-2017-17790, CVE-2018-1000073, CVE-2018-1000074, CVE-2018-1000075, CVE-2018-1000076, CVE-2018-1000077, CVE-2018-1000078, CVE-2018-1000079, CVE-2018-6914, CVE-2018-8777, CVE-2018-8778,CVE-2018-8779, CVE-2018-8780

DescriptionThe scan detected that the host is missing the following update:DSA-4259-1

ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:

http://www.debian.org/security/2018/dsa-4259

Debian 9.0allruby2.3_2.3.3-1+deb9u3

170993 - Amazon Linux AMI ALAS-2018-1049 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5390

DescriptionThe scan detected that the host is missing the following update:ALAS-2018-1049


https://alas.aws.amazon.com/ALAS-2018-1049.html

Amazon Linux AMIx86_64kernel-debuginfo-common-x86_64-4.14.59-64.43.amzn1kernel-tools-4.14.59-64.43.amzn1kernel-headers-4.14.59-64.43.amzn1kernel-tools-debuginfo-4.14.59-64.43.amzn1kernel-4.14.59-64.43.amzn1kernel-tools-devel-4.14.59-64.43.amzn1kernel-devel-4.14.59-64.43.amzn1perf-4.14.59-64.43.amzn1perf-debuginfo-4.14.59-64.43.amzn1kernel-debuginfo-4.14.59-64.43.amzn1

i686kernel-tools-debuginfo-4.14.59-64.43.amzn1kernel-tools-4.14.59-64.43.amzn1kernel-headers-4.14.59-64.43.amzn1perf-4.14.59-64.43.amzn1kernel-4.14.59-64.43.amzn1kernel-tools-devel-4.14.59-64.43.amzn1kernel-devel-4.14.59-64.43.amzn1kernel-debuginfo-common-i686-4.14.59-64.43.amzn1perf-debuginfo-4.14.59-64.43.amzn1kernel-debuginfo-4.14.59-64.43.amzn1

23923 - Apache Tomcat Vulnerability Prior To 9.0.8

Category: General Vulnerability Assessment -> NonIntrusive -> Web ServerRisk Level: HighCVE: CVE-2018-1336

DescriptionA vulnerability is present in some versions of Apache Tomcat.

ObservationApache Tomcat is an open source software implementation of the Java Servlet and JavaServer Pages technologies.

A vulnerability is present in some versions of Apache Tomcat. The flaw lies in UTF-8 decoder component. Successful exploitation could allow an attacker to cause denial of service condition.


Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2018-11319




Debian 9.0allvim-syntastic_3.7.0-1+deb9u2

23919 - (JSA10875) Juniper SRX Series ISC BIND Named Vulnerabilities

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2017-3138, CVE-2017-3142, CVE-2017-3143, CVE-2017-3145

DescriptionMultiple vulnerabilities are present in some versions of Juniper Junos.


Multiple vulnerabilities are present in some versions of Juniper Junos. The flaws lie in junos ISC BIND software. Successful exploitation could allow an attacker to cause a denial of service condition or unauthorized ISC BIND software actions.

23926 - Oracle Application Testing Suite Critical Patch Update July 2018

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-1275

DescriptionA vulnerability is present in some versions of Oracle Application Testing Suite.

ObservationOracle Application Testing Suite is a software testing application.

A vulnerability is present in some versions of Oracle Application Testing Suite. These flaw lies in Spring Framework. Successful exploitation could allow an attacker to execute arbitrary code.

23930 - (K27044729) F5 BIG-IP TMM Vulnerability

Category: SSH Module -> NonIntrusive -> F5Risk Level: HighCVE: CVE-2018-5528

DescriptionA vulnerability is present in some versions of F5's BIG-IP products.

ObservationF5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

A vulnerability is present in some versions of F5's BIG-IP products. The flaw lies in the Traffic Management Microkernel (TMM) component. Successful exploitation could allow an attacker to cause a denial of service condition.

23933 - (JSA10866) Juniper Junos OS RDP BGP UPDATE Denial of Service Vulnerability

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2018-0032

DescriptionA denial of service vulnerability is present in some versions of Juniper Junos.


A denial of service vulnerability is present in some versions of Juniper Junos. The flaw lies in junos RPD daemon. Successful exploitation could allow an attacker to cause a denial of service condition.

23942 - Oracle MySQL Enterprise Monitor Critical Patch Update July 2018

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2017-5645, CVE-2018-0739

DescriptionMultiple vulnerabilities are present in some versions of Oracle MySQL Enterprise Monitor.

ObservationOracle MySQL Enterprise Monitor enables monitoring of multiple Oracle MySQL instances.

Multiple vulnerabilities are present in some versions of Oracle MySQL Enterprise Monitor. The flaws lie in multiple components. Successful exploitation could allow an attacker to cause denial of service condition or execute arbitrary code on the target system.


Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2016-2403, CVE-2017-1665, CVE-2017-16653, CVE-2017-16654, CVE-2017-16790, CVE-2018-11385, CVE-2018-11386,CVE-2018-11406

Description

The scan detected that the host is missing the following update:DSA-4262-1



Debian 9.0allphp-symfony-yaml_2.8.7+dfsg-1.3+deb9u1php-symfony-security-http_2.8.7+dfsg-1.3+deb9u1php-symfony-stopwatch_2.8.7+dfsg-1.3+deb9u1php-symfony-phpunit-bridge_2.8.7+dfsg-1.3+deb9u1php-symfony-security-core_2.8.7+dfsg-1.3+deb9u1php-symfony-twig-bridge_2.8.7+dfsg-1.3+deb9u1php-symfony-event-dispatcher_2.8.7+dfsg-1.3+deb9u1php-symfony-class-loader_2.8.7+dfsg-1.3+deb9u1php-symfony-security-guard_2.8.7+dfsg-1.3+deb9u1php-symfony-intl_2.8.7+dfsg-1.3+deb9u1php-symfony-security-csrf_2.8.7+dfsg-1.3+deb9u1php-symfony-translation_2.8.7+dfsg-1.3+deb9u1php-symfony-options-resolver_2.8.7+dfsg-1.3+deb9u1php-symfony-templating_2.8.7+dfsg-1.3+deb9u1php-symfony-dependency-injection_2.8.7+dfsg-1.3+deb9u1php-symfony-swiftmailer-bridge_2.8.7+dfsg-1.3+deb9u1php-symfony-routing_2.8.7+dfsg-1.3+deb9u1php-symfony-monolog-bridge_2.8.7+dfsg-1.3+deb9u1php-symfony-serializer_2.8.7+dfsg-1.3+deb9u1php-symfony-proxy-manager-bridge_2.8.7+dfsg-1.3+deb9u1php-symfony-process_2.8.7+dfsg-1.3+deb9u1php-symfony-css-selector_2.8.7+dfsg-1.3+deb9u1php-symfony-console_2.8.7+dfsg-1.3+deb9u1php-symfony-debug_2.8.7+dfsg-1.3+deb9u1php-symfony-doctrine-bridge_2.8.7+dfsg-1.3+deb9u1php-symfony-http-foundation_2.8.7+dfsg-1.3+deb9u1php-symfony_2.8.7+dfsg-1.3+deb9u1php-symfony-filesystem_2.8.7+dfsg-1.3+deb9u1php-symfony-debug-bundle_2.8.7+dfsg-1.3+deb9u1php-symfony-http-kernel_2.8.7+dfsg-1.3+deb9u1php-symfony-asset_2.8.7+dfsg-1.3+deb9u1php-symfony-property-access_2.8.7+dfsg-1.3+deb9u1php-symfony-config_2.8.7+dfsg-1.3+deb9u1php-symfony-form_2.8.7+dfsg-1.3+deb9u1php-symfony-locale_2.8.7+dfsg-1.3+deb9u1php-symfony-property-info_2.8.7+dfsg-1.3+deb9u1php-symfony-twig-bundle_2.8.7+dfsg-1.3+deb9u1php-symfony-web-profiler-bundle_2.8.7+dfsg-1.3+deb9u1php-symfony-framework-bundle_2.8.7+dfsg-1.3+deb9u1php-symfony-finder_2.8.7+dfsg-1.3+deb9u1php-symfony-security_2.8.7+dfsg-1.3+deb9u1php-symfony-ldap_2.8.7+dfsg-1.3+deb9u1php-symfony-validator_2.8.7+dfsg-1.3+deb9u1php-symfony-browser-kit_2.8.7+dfsg-1.3+deb9u1php-symfony-dom-crawler_2.8.7+dfsg-1.3+deb9u1php-symfony-security-bundle_2.8.7+dfsg-1.3+deb9u1php-symfony-expression-language_2.8.7+dfsg-1.3+deb9u1php-symfony-var-dumper_2.8.7+dfsg-1.3+deb9u1

146923 - SuSE SLED 15 SUSE-SU-2018:2223-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2017-18344, CVE-2018-5390

DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:2223-1


http://lists.suse.com/pipermail/sle-security-updates/2018-August/004378.html

SuSE SLED 15x86_64kernel-default-debuginfo-4.12.14-25.6.1kernel-default-extra-debuginfo-4.12.14-25.6.1kernel-default-debugsource-4.12.14-25.6.1kernel-default-extra-4.12.14-25.6.1

146926 - SuSE Linux 15.0 openSUSE-SU-2018:2159-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2017-18269, CVE-2018-11236, CVE-2018-11237

DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:2159-1


http://lists.opensuse.org/opensuse-updates/2018-08/msg00006.html

SuSE Linux 15.0i586glibc-devel-2.26-lp150.11.6.120glibc-locale-2.26-lp150.11.6.120glibc-utils-debuginfo-2.26-lp150.11.6.120glibc-devel-debuginfo-2.26-lp150.11.6.120glibc-utils-2.26-lp150.11.6.120glibc-debuginfo-2.26-lp150.11.6.120glibc-2.26-lp150.11.6.120glibc-utils-src-debugsource-2.26-lp150.11.6.120glibc-profile-2.26-lp150.11.6.120nscd-2.26-lp150.11.6.120glibc-locale-debuginfo-2.26-lp150.11.6.120glibc-debugsource-2.26-lp150.11.6.120glibc-extra-debuginfo-2.26-lp150.11.6.120nscd-debuginfo-2.26-lp150.11.6.120glibc-devel-static-2.26-lp150.11.6.120

glibc-extra-2.26-lp150.11.6.120

i686glibc-locale-2.26-lp150.11.6.120glibc-devel-debuginfo-2.26-lp150.11.6.120glibc-devel-2.26-lp150.11.6.120glibc-debuginfo-2.26-lp150.11.6.120glibc-2.26-lp150.11.6.120glibc-locale-debuginfo-2.26-lp150.11.6.120glibc-debugsource-2.26-lp150.11.6.120glibc-profile-2.26-lp150.11.6.120glibc-devel-static-2.26-lp150.11.6.120

noarchglibc-info-2.26-lp150.11.6.120glibc-i18ndata-2.26-lp150.11.6.120glibc-html-2.26-lp150.11.6.120

x86_64glibc-devel-2.26-lp150.11.6.120glibc-locale-2.26-lp150.11.6.120glibc-devel-32bit-debuginfo-2.26-lp150.11.6.120glibc-utils-32bit-debuginfo-2.26-lp150.11.6.120glibc-utils-debuginfo-2.26-lp150.11.6.120glibc-devel-debuginfo-2.26-lp150.11.6.120glibc-utils-2.26-lp150.11.6.120glibc-32bit-debuginfo-2.26-lp150.11.6.120glibc-devel-static-32bit-2.26-lp150.11.6.120glibc-debuginfo-2.26-lp150.11.6.120glibc-devel-32bit-2.26-lp150.11.6.120glibc-2.26-lp150.11.6.120glibc-utils-src-debugsource-2.26-lp150.11.6.120glibc-profile-2.26-lp150.11.6.120glibc-32bit-2.26-lp150.11.6.120glibc-locale-32bit-2.26-lp150.11.6.120nscd-2.26-lp150.11.6.120glibc-locale-debuginfo-2.26-lp150.11.6.120glibc-utils-32bit-2.26-lp150.11.6.120glibc-locale-32bit-debuginfo-2.26-lp150.11.6.120glibc-debugsource-2.26-lp150.11.6.120glibc-extra-debuginfo-2.26-lp150.11.6.120glibc-profile-32bit-2.26-lp150.11.6.120nscd-debuginfo-2.26-lp150.11.6.120glibc-devel-static-2.26-lp150.11.6.120glibc-extra-2.26-lp150.11.6.120

146928 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:2171-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-MAP-NOMATCH


ObservationUpdates often remediate critical security problems that should be quickly addressed.

For more information see:


SuSE SLED 12 SP3x86_64libtirpc-netconfig-1.0.1-17.3.1libtirpc3-32bit-1.0.1-17.3.1libtirpc-debugsource-1.0.1-17.3.1libtirpc3-debuginfo-32bit-1.0.1-17.3.1libtirpc3-1.0.1-17.3.1libtirpc3-debuginfo-1.0.1-17.3.1

SuSE SLES 12 SP3x86_64libtirpc-netconfig-1.0.1-17.3.1libtirpc3-32bit-1.0.1-17.3.1libtirpc-debugsource-1.0.1-17.3.1libtirpc3-debuginfo-32bit-1.0.1-17.3.1libtirpc3-1.0.1-17.3.1libtirpc3-debuginfo-1.0.1-17.3.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2017-16228




SuSE Linux 42.3x86_64python-dulwich-debuginfo-0.18.5-11.1python-dulwich-0.18.5-11.1python-dulwich-debugsource-0.18.5-11.1

i586python-dulwich-debuginfo-0.18.5-11.1python-dulwich-0.18.5-11.1python-dulwich-debugsource-0.18.5-11.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-12359, CVE-2018-12360, CVE-2018-12362, CVE-2018-12363, CVE-2018-12364, CVE-2018-12365, CVE-2018-12366, CVE-2018-12372, CVE-2018-12373, CVE-2018-12374, CVE-2018-5188

Description

The scan detected that the host is missing the following update:SUSE-SU-2018:2174-1



SuSE SLED 15x86_64MozillaThunderbird-translations-common-52.9.1-3.7.1MozillaThunderbird-debuginfo-52.9.1-3.7.1MozillaThunderbird-translations-other-52.9.1-3.7.1MozillaThunderbird-devel-52.9.1-3.7.1MozillaThunderbird-52.9.1-3.7.1MozillaThunderbird-debugsource-52.9.1-3.7.1






SuSE Linux 42.3noarchbouncycastle-javadoc-1.60-23.7.1bouncycastle-1.60-23.7.1






SuSE Linux 42.3i586libmount1-2.29.2-8.1util-linux-systemd-debuginfo-2.29.2-8.1libfdisk1-2.29.2-8.1libuuid1-debuginfo-2.29.2-8.1libmount-devel-2.29.2-8.1libmount1-debuginfo-2.29.2-8.1util-linux-debuginfo-2.29.2-8.1libblkid1-debuginfo-2.29.2-8.1libblkid1-2.29.2-8.1libuuid-devel-static-2.29.2-8.1python-libmount-2.29.2-8.1libfdisk-devel-2.29.2-8.1python-libmount-debugsource-2.29.2-8.1libfdisk-devel-static-2.29.2-8.1util-linux-2.29.2-8.1libmount-devel-static-2.29.2-8.1util-linux-systemd-2.29.2-8.1libsmartcols-devel-2.29.2-8.1libblkid-devel-static-2.29.2-8.1libfdisk1-debuginfo-2.29.2-8.1libuuid1-2.29.2-8.1libuuid-devel-2.29.2-8.1uuidd-2.29.2-8.1util-linux-debugsource-2.29.2-8.1libsmartcols1-2.29.2-8.1libblkid-devel-2.29.2-8.1libsmartcols1-debuginfo-2.29.2-8.1libsmartcols-devel-static-2.29.2-8.1python-libmount-debuginfo-2.29.2-8.1util-linux-systemd-debugsource-2.29.2-8.1uuidd-debuginfo-2.29.2-8.1

noarchutil-linux-lang-2.29.2-8.1

x86_64libmount1-2.29.2-8.1util-linux-systemd-debuginfo-2.29.2-8.1libfdisk1-2.29.2-8.1libmount1-32bit-2.29.2-8.1libuuid1-debuginfo-2.29.2-8.1libmount-devel-2.29.2-8.1libmount1-debuginfo-2.29.2-8.1util-linux-debuginfo-2.29.2-8.1libblkid1-debuginfo-2.29.2-8.1libblkid1-2.29.2-8.1libuuid1-debuginfo-32bit-2.29.2-8.1libuuid-devel-static-2.29.2-8.1python-libmount-2.29.2-8.1libfdisk-devel-2.29.2-8.1libuuid1-32bit-2.29.2-8.1python-libmount-debugsource-2.29.2-8.1libfdisk-devel-static-2.29.2-8.1util-linux-2.29.2-8.1libuuid-devel-32bit-2.29.2-8.1libmount-devel-static-2.29.2-8.1libblkid1-debuginfo-32bit-2.29.2-8.1libmount-devel-32bit-2.29.2-8.1

util-linux-systemd-2.29.2-8.1libsmartcols-devel-2.29.2-8.1libblkid-devel-static-2.29.2-8.1libfdisk1-debuginfo-2.29.2-8.1libuuid1-2.29.2-8.1libuuid-devel-2.29.2-8.1uuidd-2.29.2-8.1util-linux-debugsource-2.29.2-8.1libsmartcols1-2.29.2-8.1libmount1-debuginfo-32bit-2.29.2-8.1libblkid-devel-2.29.2-8.1libsmartcols1-debuginfo-2.29.2-8.1libblkid-devel-32bit-2.29.2-8.1libsmartcols-devel-static-2.29.2-8.1python-libmount-debuginfo-2.29.2-8.1libblkid1-32bit-2.29.2-8.1util-linux-systemd-debugsource-2.29.2-8.1uuidd-debuginfo-2.29.2-8.1






SuSE Linux 15.0x86_64rpm-devel-4.14.1-lp150.9.3.1python3-rpm-debuginfo-4.14.1-lp150.9.3.1rpm-4.14.1-lp150.9.3.1python2-rpm-4.14.1-lp150.9.3.1python-rpm-debugsource-4.14.1-lp150.9.3.1rpm-debugsource-4.14.1-lp150.9.3.1rpm-32bit-debuginfo-4.14.1-lp150.9.3.1python2-rpm-debuginfo-4.14.1-lp150.9.3.1python3-rpm-4.14.1-lp150.9.3.1rpm-32bit-4.14.1-lp150.9.3.1rpm-debuginfo-4.14.1-lp150.9.3.1rpm-build-4.14.1-lp150.9.3.1rpm-build-debuginfo-4.14.1-lp150.9.3.1

i586rpm-debuginfo-4.14.1-lp150.9.3.1python2-rpm-debuginfo-4.14.1-lp150.9.3.1python-rpm-debugsource-4.14.1-lp150.9.3.1python3-rpm-debuginfo-4.14.1-lp150.9.3.1rpm-debugsource-4.14.1-lp150.9.3.1rpm-build-4.14.1-lp150.9.3.1

rpm-4.14.1-lp150.9.3.1rpm-build-debuginfo-4.14.1-lp150.9.3.1rpm-devel-4.14.1-lp150.9.3.1python3-rpm-4.14.1-lp150.9.3.1python2-rpm-4.14.1-lp150.9.3.1






SuSE SLED 12 SP3x86_64libpolkit0-0.113-5.9.1libpolkit0-debuginfo-32bit-0.113-5.9.1polkit-0.113-5.9.1polkit-debugsource-0.113-5.9.1polkit-debuginfo-0.113-5.9.1libpolkit0-32bit-0.113-5.9.1typelib-1_0-Polkit-1_0-0.113-5.9.1libpolkit0-debuginfo-0.113-5.9.1

SuSE SLES 12 SP3x86_64libpolkit0-0.113-5.9.1polkit-debugsource-0.113-5.9.1polkit-0.113-5.9.1polkit-debuginfo-0.113-5.9.1typelib-1_0-Polkit-1_0-0.113-5.9.1libpolkit0-debuginfo-0.113-5.9.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE-2018-14342, CVE-2018-14343, CVE-2018-14344, CVE-2018-14367, CVE-2018-14368, CVE-2018-14369, CVE-2018-14370




SuSE Linux 15.0x86_64libwiretap7-debuginfo-2.4.8-lp150.2.6.1wireshark-ui-qt-2.4.8-lp150.2.6.1wireshark-devel-2.4.8-lp150.2.6.1wireshark-2.4.8-lp150.2.6.1wireshark-debuginfo-2.4.8-lp150.2.6.1wireshark-debugsource-2.4.8-lp150.2.6.1libwsutil8-debuginfo-2.4.8-lp150.2.6.1libwsutil8-2.4.8-lp150.2.6.1libwscodecs1-2.4.8-lp150.2.6.1wireshark-ui-qt-debuginfo-2.4.8-lp150.2.6.1libwireshark9-2.4.8-lp150.2.6.1libwiretap7-2.4.8-lp150.2.6.1libwireshark9-debuginfo-2.4.8-lp150.2.6.1libwscodecs1-debuginfo-2.4.8-lp150.2.6.1

i586libwiretap7-debuginfo-2.4.8-lp150.2.6.1wireshark-ui-qt-2.4.8-lp150.2.6.1wireshark-devel-2.4.8-lp150.2.6.1wireshark-2.4.8-lp150.2.6.1wireshark-debuginfo-2.4.8-lp150.2.6.1wireshark-debugsource-2.4.8-lp150.2.6.1libwsutil8-debuginfo-2.4.8-lp150.2.6.1libwsutil8-2.4.8-lp150.2.6.1libwscodecs1-2.4.8-lp150.2.6.1wireshark-ui-qt-debuginfo-2.4.8-lp150.2.6.1libwireshark9-2.4.8-lp150.2.6.1libwiretap7-2.4.8-lp150.2.6.1libwireshark9-debuginfo-2.4.8-lp150.2.6.1libwscodecs1-debuginfo-2.4.8-lp150.2.6.1






SuSE Linux 42.3x86_64libcgroup-debugsource-0.41-8.3.1libcgroup1-debuginfo-0.41-8.3.1libcgroup-devel-0.41-8.3.1libcgroup1-debuginfo-32bit-0.41-8.3.1

libcgroup1-0.41-8.3.1libcgroup-tools-0.41-8.3.1libcgroup-tools-debuginfo-0.41-8.3.1libcgroup1-32bit-0.41-8.3.1

i586libcgroup-debugsource-0.41-8.3.1libcgroup1-debuginfo-0.41-8.3.1libcgroup-devel-0.41-8.3.1libcgroup1-0.41-8.3.1libcgroup-tools-0.41-8.3.1libcgroup-tools-debuginfo-0.41-8.3.1






SuSE Linux 15.0x86_64kernel-default-base-debuginfo-4.12.14-lp150.12.10.1kernel-kvmsmall-4.12.14-lp150.12.10.1kernel-obs-build-debugsource-4.12.14-lp150.12.10.1kernel-debug-debugsource-4.12.14-lp150.12.10.1kernel-debug-base-4.12.14-lp150.12.10.1kernel-kvmsmall-devel-debuginfo-4.12.14-lp150.12.10.1kernel-kvmsmall-devel-4.12.14-lp150.12.10.1kernel-obs-build-4.12.14-lp150.12.10.1kernel-vanilla-base-debuginfo-4.12.14-lp150.12.10.1kernel-vanilla-base-4.12.14-lp150.12.10.1kernel-kvmsmall-debugsource-4.12.14-lp150.12.10.1kernel-debug-devel-debuginfo-4.12.14-lp150.12.10.1kernel-kvmsmall-base-debuginfo-4.12.14-lp150.12.10.1kernel-default-devel-debuginfo-4.12.14-lp150.12.10.1kernel-debug-devel-4.12.14-lp150.12.10.1kernel-debug-debuginfo-4.12.14-lp150.12.10.1kernel-vanilla-debuginfo-4.12.14-lp150.12.10.1kernel-default-debuginfo-4.12.14-lp150.12.10.1kernel-syms-4.12.14-lp150.12.10.1kernel-default-devel-4.12.14-lp150.12.10.1kernel-kvmsmall-debuginfo-4.12.14-lp150.12.10.1kernel-debug-4.12.14-lp150.12.10.1kernel-default-base-4.12.14-lp150.12.10.1kernel-kvmsmall-base-4.12.14-lp150.12.10.1kernel-debug-base-debuginfo-4.12.14-lp150.12.10.1kernel-vanilla-debugsource-4.12.14-lp150.12.10.1kernel-vanilla-devel-4.12.14-lp150.12.10.1

kernel-vanilla-devel-debuginfo-4.12.14-lp150.12.10.1kernel-default-debugsource-4.12.14-lp150.12.10.1kernel-obs-qa-4.12.14-lp150.12.10.1kernel-default-4.12.14-lp150.12.10.1kernel-vanilla-4.12.14-lp150.12.10.1

noarchkernel-source-4.12.14-lp150.12.10.1kernel-macros-4.12.14-lp150.12.10.1kernel-devel-4.12.14-lp150.12.10.1kernel-docs-html-4.12.14-lp150.12.10.1kernel-source-vanilla-4.12.14-lp150.12.10.1kernel-docs-4.12.14-lp150.12.10.1






SuSE Linux 15.0i586libfdisk1-debuginfo-2.31.1-lp150.7.6.1util-linux-2.31.1-lp150.7.6.1libuuid1-debuginfo-2.31.1-lp150.7.6.1util-linux-systemd-debugsource-2.31.1-lp150.7.6.1util-linux-systemd-debuginfo-2.31.1-lp150.7.6.1libblkid1-2.31.1-lp150.7.6.1libblkid1-debuginfo-2.31.1-lp150.7.6.1libmount1-debuginfo-2.31.1-lp150.7.6.1libsmartcols1-2.31.1-lp150.7.6.1util-linux-debugsource-2.31.1-lp150.7.6.1libblkid-devel-static-2.31.1-lp150.7.6.1libsmartcols1-debuginfo-2.31.1-lp150.7.6.1libsmartcols-devel-static-2.31.1-lp150.7.6.1libuuid1-2.31.1-lp150.7.6.1uuidd-debuginfo-2.31.1-lp150.7.6.1libsmartcols-devel-2.31.1-lp150.7.6.1libfdisk-devel-2.31.1-lp150.7.6.1util-linux-systemd-2.31.1-lp150.7.6.1libuuid-devel-static-2.31.1-lp150.7.6.1libblkid-devel-2.31.1-lp150.7.6.1libmount-devel-2.31.1-lp150.7.6.1libfdisk1-2.31.1-lp150.7.6.1util-linux-debuginfo-2.31.1-lp150.7.6.1uuidd-2.31.1-lp150.7.6.1libmount1-2.31.1-lp150.7.6.1libfdisk-devel-static-2.31.1-lp150.7.6.1

libmount-devel-static-2.31.1-lp150.7.6.1libuuid-devel-2.31.1-lp150.7.6.1

noarchutil-linux-lang-2.31.1-lp150.7.6.1

x86_64libblkid-devel-32bit-2.31.1-lp150.7.6.1libfdisk1-debuginfo-2.31.1-lp150.7.6.1libmount1-32bit-debuginfo-2.31.1-lp150.7.6.1libmount-devel-32bit-2.31.1-lp150.7.6.1util-linux-2.31.1-lp150.7.6.1libuuid1-debuginfo-2.31.1-lp150.7.6.1util-linux-systemd-debugsource-2.31.1-lp150.7.6.1util-linux-systemd-debuginfo-2.31.1-lp150.7.6.1libblkid1-2.31.1-lp150.7.6.1python-libmount-debuginfo-2.31.1-lp150.7.6.1libblkid1-debuginfo-2.31.1-lp150.7.6.1libmount1-debuginfo-2.31.1-lp150.7.6.1libsmartcols1-2.31.1-lp150.7.6.1util-linux-debugsource-2.31.1-lp150.7.6.1libblkid-devel-static-2.31.1-lp150.7.6.1libuuid-devel-32bit-2.31.1-lp150.7.6.1libuuid1-32bit-2.31.1-lp150.7.6.1libsmartcols1-debuginfo-2.31.1-lp150.7.6.1libblkid1-32bit-2.31.1-lp150.7.6.1python-libmount-2.31.1-lp150.7.6.1libsmartcols-devel-static-2.31.1-lp150.7.6.1libuuid1-2.31.1-lp150.7.6.1python-libmount-debugsource-2.31.1-lp150.7.6.1uuidd-debuginfo-2.31.1-lp150.7.6.1libblkid1-32bit-debuginfo-2.31.1-lp150.7.6.1libsmartcols-devel-2.31.1-lp150.7.6.1libfdisk-devel-2.31.1-lp150.7.6.1util-linux-systemd-2.31.1-lp150.7.6.1libuuid-devel-static-2.31.1-lp150.7.6.1libblkid-devel-2.31.1-lp150.7.6.1libmount-devel-2.31.1-lp150.7.6.1libfdisk1-2.31.1-lp150.7.6.1util-linux-debuginfo-2.31.1-lp150.7.6.1uuidd-2.31.1-lp150.7.6.1libmount1-2.31.1-lp150.7.6.1libfdisk-devel-static-2.31.1-lp150.7.6.1libmount1-32bit-2.31.1-lp150.7.6.1libmount-devel-static-2.31.1-lp150.7.6.1libuuid-devel-2.31.1-lp150.7.6.1libuuid1-32bit-debuginfo-2.31.1-lp150.7.6.1






SuSE SLED 12 SP3x86_64libsoup-2_4-1-2.62.2-5.7.1typelib-1_0-Soup-2_4-2.62.2-5.7.1libsoup-2_4-1-debuginfo-32bit-2.62.2-5.7.1libsoup-2_4-1-32bit-2.62.2-5.7.1libsoup-debugsource-2.62.2-5.7.1libsoup-2_4-1-debuginfo-2.62.2-5.7.1

noarchlibsoup-lang-2.62.2-5.7.1

SuSE SLES 12 SP3noarchlibsoup-lang-2.62.2-5.7.1

x86_64libsoup-2_4-1-2.62.2-5.7.1typelib-1_0-Soup-2_4-2.62.2-5.7.1libsoup-2_4-1-debuginfo-32bit-2.62.2-5.7.1libsoup-2_4-1-32bit-2.62.2-5.7.1libsoup-debugsource-2.62.2-5.7.1libsoup-2_4-1-debuginfo-2.62.2-5.7.1

146950 - SuSE SLES 11 SP4 SUSE-SU-2018:2207-1 Update Is Not Installed





SuSE SLES 11 SP4i586openssl-doc-0.9.8j-0.106.12.1libopenssl0_9_8-0.9.8j-0.106.12.1openssl-0.9.8j-0.106.12.1libopenssl0_9_8-hmac-0.9.8j-0.106.12.1

x86_64openssl-0.9.8j-0.106.12.1libopenssl0_9_8-hmac-32bit-0.9.8j-0.106.12.1libopenssl0_9_8-hmac-0.9.8j-0.106.12.1openssl-doc-0.9.8j-0.106.12.1

libopenssl0_9_8-32bit-0.9.8j-0.106.12.1libopenssl0_9_8-0.9.8j-0.106.12.1






SuSE SLES 11 SP4i586clamav-0.100.1-0.20.15.1

x86_64clamav-0.100.1-0.20.15.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-4180, CVE-2018-4181, CVE-2018-4182, CVE-2018-4183




SuSE SLES 11 SP4i586cups-1.3.9-8.46.56.3.1cups-libs-1.3.9-8.46.56.3.1cups-client-1.3.9-8.46.56.3.1

x86_64cups-1.3.9-8.46.56.3.1cups-libs-1.3.9-8.46.56.3.1cups-client-1.3.9-8.46.56.3.1cups-libs-32bit-1.3.9-8.46.56.3.1






SuSE Linux 42.3x86_64libgcrypt20-debuginfo-1.6.1-45.1libgcrypt-devel-32bit-1.6.1-45.1libgcrypt20-32bit-1.6.1-45.1libgcrypt-devel-debuginfo-32bit-1.6.1-45.1libgcrypt20-debuginfo-32bit-1.6.1-45.1libgcrypt20-1.6.1-45.1libgcrypt20-hmac-1.6.1-45.1libgcrypt-debugsource-1.6.1-45.1libgcrypt-cavs-1.6.1-45.1libgcrypt-cavs-debuginfo-1.6.1-45.1libgcrypt-devel-debuginfo-1.6.1-45.1libgcrypt-devel-1.6.1-45.1libgcrypt20-hmac-32bit-1.6.1-45.1

i586libgcrypt20-hmac-1.6.1-45.1libgcrypt-debugsource-1.6.1-45.1libgcrypt-devel-debuginfo-1.6.1-45.1libgcrypt20-1.6.1-45.1libgcrypt-cavs-1.6.1-45.1libgcrypt-devel-1.6.1-45.1libgcrypt-cavs-debuginfo-1.6.1-45.1libgcrypt20-debuginfo-1.6.1-45.1

146956 - SuSE Linux 15.0, 42.3 openSUSE-SU-2018:2231-1 Update Is Not Installed





SuSE Linux 15.0x86_64znc-tcl-1.7.1-lp150.2.6.1znc-devel-1.7.1-lp150.2.6.1znc-tcl-debuginfo-1.7.1-lp150.2.6.1znc-python3-debuginfo-1.7.1-lp150.2.6.1znc-debuginfo-1.7.1-lp150.2.6.1znc-1.7.1-lp150.2.6.1znc-perl-debuginfo-1.7.1-lp150.2.6.1znc-python3-1.7.1-lp150.2.6.1znc-perl-1.7.1-lp150.2.6.1znc-debugsource-1.7.1-lp150.2.6.1

noarchznc-lang-1.7.1-lp150.2.6.1

SuSE Linux 42.3i586znc-python3-1.7.1-20.3.1znc-tcl-1.7.1-20.3.1znc-debugsource-1.7.1-20.3.1znc-perl-debuginfo-1.7.1-20.3.1znc-perl-1.7.1-20.3.1znc-devel-1.7.1-20.3.1znc-debuginfo-1.7.1-20.3.1znc-tcl-debuginfo-1.7.1-20.3.1znc-1.7.1-20.3.1znc-python3-debuginfo-1.7.1-20.3.1

noarchznc-lang-1.7.1-20.3.1

x86_64znc-python3-1.7.1-20.3.1znc-tcl-1.7.1-20.3.1znc-debugsource-1.7.1-20.3.1znc-perl-debuginfo-1.7.1-20.3.1znc-perl-1.7.1-20.3.1znc-devel-1.7.1-20.3.1znc-debuginfo-1.7.1-20.3.1znc-tcl-debuginfo-1.7.1-20.3.1znc-1.7.1-20.3.1znc-python3-debuginfo-1.7.1-20.3.1

163675 - Oracle Enterprise Linux ELSA-2018-4189 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5390

DescriptionThe scan detected that the host is missing the following update:ELSA-2018-4189


http://oss.oracle.com/pipermail/el-errata/2018-August/007923.html

OEL7x86_64kernel-uek-devel-4.14.35-1818.0.14.el7uekkernel-uek-4.14.35-1818.0.14.el7uekkernel-uek-tools-4.14.35-1818.0.14.el7uekkernel-uek-debug-4.14.35-1818.0.14.el7uekkernel-uek-doc-4.14.35-1818.0.14.el7uekkernel-uek-debug-devel-4.14.35-1818.0.14.el7uek

175432 - Scientific Linux Security ERRATA Important: openslp on SL6.x i386/x86_64 (1808-77)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: HighCVE: CVE-2017-17833

DescriptionThe scan detected that the host is missing the following update:Security ERRATA Important: openslp on SL6.x i386/x86_64 (1808-77)


https://listserv.fnal.gov/scripts/wa.exe?A2=ind1808&L=scientific-linux-errata&F=&S=&P=77

SL6x86_64openslp-devel-2.0.0-3.el6openslp-debuginfo-2.0.0-3.el6openslp-2.0.0-3.el6openslp-server-2.0.0-3.el6

i386openslp-devel-2.0.0-3.el6openslp-debuginfo-2.0.0-3.el6openslp-2.0.0-3.el6openslp-server-2.0.0-3.el6

194002 - Fedora Linux 28 FEDORA-2018-7b97e553ff Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2017-12627

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-7b97e553ff


https://lists.fedoraproject.org/archives/list/[email protected]/2018/8/?count=200&page=1

Fedora Core 28

mingw-xerces-c-3.2.1-1.fc28mingw-gdal-2.2.4-5.fc28

194004 - Fedora Linux 28 FEDORA-2018-cc812838fb Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2018-10322, CVE-2018-10323, CVE-2018-10840, CVE-2018-10853, CVE-2018-1108, CVE-2018-1120, CVE-2018-11506,CVE-2018-12232, CVE-2018-12633, CVE-2018-12714, CVE-2018-12896, CVE-2018-13053, CVE-2018-13093, CVE-2018-13094,CVE-2018-13095, CVE-2018-13405, CVE-2018-14678, CVE-2018-3639

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-cc812838fb



Fedora Core 28

kernel-4.17.11-200.fc28kernel-headers-4.17.11-1.fc28

194007 - Fedora Linux 27 FEDORA-2018-49bda79bd5 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2017-1000405, CVE-2017-12193, CVE-2017-15115, CVE-2017-16532, CVE-2017-16538, CVE-2017-16644, CVE-2017-16647, CVE-2017-16649, CVE-2017-16650, CVE-2017-17448, CVE-2017-17449, CVE-2017-17450, CVE-2017-17558, CVE-2017-17712, CVE-2017-17741, CVE-2017-17852, CVE-2017-17853, CVE-2017-17854, CVE-2017-17855, CVE-2017-17856, CVE-2017-17857, CVE-2017-17862, CVE-2017-17863, CVE-2017-17864, CVE-2017-18232, CVE-2017-8824, CVE-2018-1000004, CVE-2018-1000026, CVE-2018-10021, CVE-2018-10322, CVE-2018-10323, CVE-2018-1065, CVE-2018-10840, CVE-2018-10853, CVE-2018-1108, CVE-2018-1120, CVE-2018-11506, CVE-2018-12232, CVE-2018-12633, CVE-2018-12714, CVE-2018-12896, CVE-2018-13053, CVE-2018-13093, CVE-2018-13094, CVE-2018-13095, CVE-2018-13405, CVE-2018-14678, CVE-2018-3639, CVE-2018-5332, CVE-2018-5333, CVE-2018-5344, CVE-2018-5750, CVE-2018-5803, CVE-2018-7757, CVE-2018-7995, CVE-2018-8043

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-49bda79bd5



Fedora Core 27

kernel-headers-4.17.11-1.fc27kernel-4.17.11-100.fc27

194013 - Fedora Linux 28 FEDORA-2018-0259281ab6 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2017-11333, CVE-2017-11735, CVE-2017-14160, CVE-2017-14632, CVE-2017-14633, CVE-2018-10392, CVE-2018-10393

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-0259281ab6



Fedora Core 28

libvorbis-1.3.6-3.fc28

194014 - Fedora Linux 27 FEDORA-2018-9ef52861b5 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2017-13764, CVE-2017-13765, CVE-2017-13766, CVE-2017-13767, CVE-2017-15189, CVE-2017-15190, CVE-2017-15191, CVE-2017-15192, CVE-2017-15193, CVE-2017-17083, CVE-2017-17084, CVE-2017-17085, CVE-2017-17935, CVE-2017-6014, CVE-2017-9616, CVE-2017-9617, CVE-2017-9766, CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE-2018-14342,CVE-2018-14343, CVE-2018-14344, CVE-2018-14367, CVE-2018-14368, CVE-2018-14369, CVE-2018-14370, CVE-2018-5334,CVE-2018-5335, CVE-2018-6836, CVE-2018-7320, CVE-2018-7334, CVE-2018-7335, CVE-2018-7336, CVE-2018-7337, CVE-2018-7417, CVE-2018-7418, CVE-2018-7419, CVE-2018-7420

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-9ef52861b5



Fedora Core 27

wireshark-2.6.2-1.fc27

194016 - Fedora Linux 28 FEDORA-2018-8b67a5c7e2 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2017-17723, CVE-2017-17725, CVE-2017-5772, CVE-2018-10958, CVE-2018-10998, CVE-2018-11531, CVE-2018-12264, CVE-2018-12265, CVE-2018-14046, CVE-2018-5772, CVE-2018-8976, CVE-2018-8977, CVE-2018-9144, CVE-2018-9305

Description

The scan detected that the host is missing the following update:FEDORA-2018-8b67a5c7e2



Fedora Core 28

exiv2-0.26-12.fc28

23918 - Oracle BI Publisher Critical Patch Update July 2018

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: MediumCVE: CVE-2018-2900, CVE-2018-2925, CVE-2018-2958

DescriptionMultiple vulnerabilities are present in some versions of Oracle Business Intelligence Publisher.

ObservationOracle Business Intelligence Publisher is an enterprise software suite that provides reporting and analysis.

Multiple vulnerabilities are present in some versions of Oracle Business Intelligence Publisher. The flaws lie in multiple components. Successful exploitation could allow an attacker to affect confidentiality and integrity.

23921 - (JSA10863) Juniper Junos OS Kernel Denial Of Service Vulnerability

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: MediumCVE: CVE-2018-0029

DescriptionA vulnerability is present in some versions of Juniper Junos.


A vulnerability is present in some versions of Juniper Junos. The flaw occurs when the fxp0 interface is configured in promiscuous mode. Successful exploitation could allow an attacker to cause a denial of service condition on the target system.

23927 - Apache Tomcat Multiple Vulnerabilities Prior To 9.0.10

Category: General Vulnerability Assessment -> NonIntrusive -> Web ServerRisk Level: MediumCVE: CVE-2018-8034, CVE-2018-8037

DescriptionMultiple vulnerabilities are present in some versions of Apache Tomcat.

Observation

Apache Tomcat is an open source software implementation of the Java Servlet and JavaServer Pages technologies.

Multiple vulnerabilities are present in some versions of Apache Tomcat. The flaws lie in multiple components. Successful exploitation could allow an attacker to bypass security restrictions or retrieve sensitive information from the target system.


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2017-2816, CVE-2017-2920




SuSE Linux 42.3x86_64libofx-debuginfo-0.9.10-7.3.1libofx-0.9.10-7.3.1libofx6-0.9.10-7.3.1libofx-debugsource-0.9.10-7.3.1libofx-devel-0.9.10-7.3.1libofx6-debuginfo-0.9.10-7.3.1

i586libofx-debuginfo-0.9.10-7.3.1libofx-0.9.10-7.3.1libofx6-0.9.10-7.3.1libofx-debugsource-0.9.10-7.3.1libofx-devel-0.9.10-7.3.1libofx6-debuginfo-0.9.10-7.3.1

193998 - Fedora Linux 27 FEDORA-2018-73bd3d14a3 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-9275

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-73bd3d14a3



Fedora Core 27

pam_yubico-2.26-1.fc27

194005 - Fedora Linux 28 FEDORA-2018-75fdc70018 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-75fdc70018



Fedora Core 28

pam_yubico-2.26-1.fc28

194012 - Fedora Linux 27 FEDORA-2018-2b053454a4 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2017-1000256, CVE-2017-5715, CVE-2018-3639, CVE-2018-5748, CVE-2018-6764

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-2b053454a4



Fedora Core 27

libvirt-3.7.0-6.fc27

23920 - (JSA10865) Juniper Junos OS UDP Packets Over MPLS Security Bypass Vulnerability

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: MediumCVE: CVE-2018-0031

DescriptionA vulnerability is present in some versions of Juniper Junos.


A vulnerability is present in some versions of Juniper Junos. The flaw lies in the Multiprotocol Label Switching framework. Successful exploitation could allow an attacker to bypass security access restrictions and possibly cause a denial of service condition on the target system.

23931 - (K13540723) F5 BIG-IP NTP Vulnerability

Category: SSH Module -> NonIntrusive -> F5Risk Level: MediumCVE: CVE-2018-7184

DescriptionA vulnerability is present in some versions of F5's BIG-IP products.

ObservationF5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

A vulnerability is present in some versions of F5's BIG-IP products. The flaw lies in the NTP component. Successful exploitation could allow an attacker to cause a denial of service condition.

23936 - Oracle VM VirtualBox Critical Patch Update July 2018

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-3005, CVE-2018-3055, CVE-2018-3085, CVE-2018-3086, CVE-2018-3087, CVE-2018-3088, CVE-2018-3089, CVE-2018-3090, CVE-2018-3091

DescriptionMultiple vulnerabilities are present in some versions of Oracle VM VirtualBox.

ObservationOracle VM VirtualBox is a virtualization software.

Multiple vulnerabilities are present in some versions of Oracle VM VirtualBox. The flaws exist in core component. Successful exploitation could allow an attacker to cause a denial of service condition, retrieve sensitive data or do unauthorized modifications on the target system.

23937 - Apache Tomcat Vulnerability Prior To 7.0.90

Category: General Vulnerability Assessment -> NonIntrusive -> Web ServerRisk Level: MediumCVE: CVE-2018-8034

DescriptionA vulnerability is present in some versions of Apache Tomcat.

ObservationApache Tomcat is an open source software implementation of the Java Servlet and JavaServer Pages technologies.

A vulnerability is present in some versions of Apache Tomcat. The flaw is due to improper verification of hostnames when using TLS connections. Successful exploitation could allow an attacker to bypass security restrictions on the target.


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2014-9116, CVE-2018-14349, CVE-2018-14350, CVE-2018-14351, CVE-2018-14352, CVE-2018-14353, CVE-2018-14354, CVE-2018-14355, CVE-2018-14356, CVE-2018-14357, CVE-2018-14358, CVE-2018-14359, CVE-2018-14360, CVE-2018-14361, CVE-2018-14362, CVE-2018-14363




SuSE Linux 15.0x86_64mutt-debugsource-1.10.1-lp150.2.3.1mutt-1.10.1-lp150.2.3.1mutt-debuginfo-1.10.1-lp150.2.3.1

noarchmutt-doc-1.10.1-lp150.2.3.1mutt-lang-1.10.1-lp150.2.3.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14339, CVE-2018-14340, CVE-2018-14341, CVE-2018-14342, CVE-2018-14343, CVE-2018-14344, CVE-2018-14368, CVE-2018-14369, CVE-2018-7325




SuSE Linux 42.3x86_64wireshark-debugsource-2.2.16-44.1wireshark-devel-2.2.16-44.1wireshark-2.2.16-44.1wireshark-debuginfo-2.2.16-44.1wireshark-ui-gtk-2.2.16-44.1wireshark-ui-qt-2.2.16-44.1wireshark-ui-qt-debuginfo-2.2.16-44.1wireshark-ui-gtk-debuginfo-2.2.16-44.1






SuSE SLED 15x86_64enigmail-2.0.7-3.7.2

186330 - Ubuntu Linux 14.04 USN-3727-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: MediumCVE: CVE-2015-6644, CVE-2015-7940, CVE-2016-1000338, CVE-2016-1000339, CVE-2016-1000341, CVE-2016-1000342, CVE-2016-1000343, CVE-2016-1000345, CVE-2016-1000346

DescriptionThe scan detected that the host is missing the following update:USN-3727-1


https://lists.ubuntu.com/archives/ubuntu-security-announce/2018-August/004516.html

Ubuntu 14.04

libbcpg-java_1.49+dfsg-2ubuntu0.1libbcprov-java_1.49+dfsg-2ubuntu0.1libbcmail-java_1.49+dfsg-2ubuntu0.1libbcpkix-java_1.49+dfsg-2ubuntu0.1

194009 - Fedora Linux 28 FEDORA-2018-f17daf1cd6 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-f17daf1cd6

Observation

Updates often remediate critical security problems that should be quickly addressed.For more information see:


Fedora Core 28

myrepos-1.20180726-1.fc28

194018 - Fedora Linux 27 FEDORA-2018-ee076d0530 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-ee076d0530



Fedora Core 27

myrepos-1.20180726-1.fc27

23924 - Oracle JRockit Critical Patch Update July 2018

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-2952

DescriptionA vulnerability is present in some versions of Oracle JRockit.

ObservationOracle JRockit is a Java Virtual Machine (JVM).

A vulnerability is present in some versions of Oracle JRockit. The flaw lies in APIs in the specified Component. Successful exploitation could allow an attacker to cause a denial of service condition.

23928 - Google Chrome Multiple Vulnerabilities Prior To 68.0.3440.75

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-4117, CVE-2018-6044, CVE-2018-6150, CVE-2018-6151, CVE-2018-6152, CVE-2018-6153, CVE-2018-6154, CVE-2018-6155, CVE-2018-6156, CVE-2018-6157, CVE-2018-6158, CVE-2018-6159, CVE-2018-6160, CVE-2018-6161, CVE-2018-6162,CVE-2018-6163, CVE-2018-6164, CVE-2018-6165, CVE-2018-6166, CVE-2018-6167, CVE-2018-6168, CVE-2018-6169, CVE-2018-6170, CVE-2018-6171, CVE-2018-6172, CVE-2018-6173, CVE-2018-6174, CVE-2018-6175, CVE-2018-6176, CVE-2018-6177, CVE-2018-6178, CVE-2018-6179

DescriptionMultiple vulnerabilities are present in some versions of Google Chrome.

ObservationGoogle Chrome is a popular web browser.

Multiple vulnerabilities are present in some versions of Google Chrome. The flaws lie in multiple components. Successful exploitation could allow an attacker to cause a buffer overflow, spoofing, gain access over sensitive information or execute arbitrary code on the system.

23929 - Google Chrome Multiple Vulnerabilities Prior To 68.0.3440.75

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: MediumCVE: CVE-2018-4117, CVE-2018-6044, CVE-2018-6150, CVE-2018-6151, CVE-2018-6152, CVE-2018-6153, CVE-2018-6154, CVE-2018-6155, CVE-2018-6156, CVE-2018-6157, CVE-2018-6158, CVE-2018-6159, CVE-2018-6160, CVE-2018-6161, CVE-2018-6162,CVE-2018-6163, CVE-2018-6164, CVE-2018-6165, CVE-2018-6166, CVE-2018-6167, CVE-2018-6168, CVE-2018-6169, CVE-2018-6170, CVE-2018-6171, CVE-2018-6172, CVE-2018-6173, CVE-2018-6174, CVE-2018-6175, CVE-2018-6176, CVE-2018-6177, CVE-2018-6178, CVE-2018-6179

DescriptionMultiple vulnerabilities are present in some versions of Google Chrome.

ObservationGoogle Chrome is a popular web browser.

Multiple vulnerabilities are present in some versions of Google Chrome. The flaws lie in multiple components. Successful exploitation could allow an attacker to cause a buffer overflow, spoofing, gain access over sensitive information or execute arbitrary code on the system.


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-0739




SuSE Linux 42.3i586ovmf-tools-2017+git1492060560.b6d11d7c46-10.1ovmf-2017+git1492060560.b6d11d7c46-10.1

noarchqemu-ovmf-ia32-2017+git1492060560.b6d11d7c46-10.1qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-10.1

x86_64ovmf-2017+git1492060560.b6d11d7c46-10.1qemu-ovmf-x86_64-debug-2017+git1492060560.b6d11d7c46-10.1ovmf-tools-2017+git1492060560.b6d11d7c46-10.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-11806, CVE-2018-12891, CVE-2018-12892, CVE-2018-12893, CVE-2018-3665




SuSE Linux 42.3x86_64xen-debugsource-4.9.2_08-25.2xen-tools-domU-debuginfo-4.9.2_08-25.2xen-libs-debuginfo-4.9.2_08-25.2xen-doc-html-4.9.2_08-25.2xen-tools-4.9.2_08-25.2xen-tools-domU-4.9.2_08-25.2xen-devel-4.9.2_08-25.2xen-tools-debuginfo-4.9.2_08-25.2xen-libs-4.9.2_08-25.2xen-4.9.2_08-25.2






SuSE Linux 42.3i586nautilus-devel-3.20.3-8.3.1nautilus-3.20.3-8.3.1nautilus-debuginfo-3.20.3-8.3.1

nautilus-debugsource-3.20.3-8.3.1libnautilus-extension1-debuginfo-3.20.3-8.3.1typelib-1_0-Nautilus-3_0-3.20.3-8.3.1libnautilus-extension1-3.20.3-8.3.1gnome-shell-search-provider-nautilus-3.20.3-8.3.1

noarchnautilus-lang-3.20.3-8.3.1

x86_64libnautilus-extension1-debuginfo-32bit-3.20.3-8.3.1nautilus-devel-3.20.3-8.3.1nautilus-3.20.3-8.3.1nautilus-debuginfo-3.20.3-8.3.1nautilus-debugsource-3.20.3-8.3.1libnautilus-extension1-debuginfo-3.20.3-8.3.1typelib-1_0-Nautilus-3_0-3.20.3-8.3.1libnautilus-extension1-3.20.3-8.3.1gnome-shell-search-provider-nautilus-3.20.3-8.3.1libnautilus-extension1-32bit-3.20.3-8.3.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2017-17456, CVE-2017-17457, CVE-2018-13139




SuSE Linux 42.3x86_64libsndfile1-1.0.25-34.1libsndfile1-debuginfo-1.0.25-34.1libsndfile-progs-debugsource-1.0.25-34.1libsndfile1-debuginfo-32bit-1.0.25-34.1libsndfile-debugsource-1.0.25-34.1libsndfile-devel-1.0.25-34.1libsndfile-progs-1.0.25-34.1libsndfile1-32bit-1.0.25-34.1libsndfile-progs-debuginfo-1.0.25-34.1

i586libsndfile1-1.0.25-34.1libsndfile1-debuginfo-1.0.25-34.1libsndfile-progs-debugsource-1.0.25-34.1libsndfile-debugsource-1.0.25-34.1libsndfile-devel-1.0.25-34.1libsndfile-progs-1.0.25-34.1libsndfile-progs-debuginfo-1.0.25-34.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-2940, CVE-2018-2952, CVE-2018-2972, CVE-2018-2973




SuSE Linux 15.0i586java-10-openjdk-accessibility-10.0.2.0-lp150.2.3.2java-10-openjdk-devel-10.0.2.0-lp150.2.3.2java-10-openjdk-debugsource-10.0.2.0-lp150.2.3.2java-10-openjdk-headless-10.0.2.0-lp150.2.3.2java-10-openjdk-accessibility-debuginfo-10.0.2.0-lp150.2.3.2java-10-openjdk-demo-10.0.2.0-lp150.2.3.2java-10-openjdk-10.0.2.0-lp150.2.3.2java-10-openjdk-jmods-10.0.2.0-lp150.2.3.2java-10-openjdk-debuginfo-10.0.2.0-lp150.2.3.2java-10-openjdk-src-10.0.2.0-lp150.2.3.2

noarchjava-10-openjdk-javadoc-10.0.2.0-lp150.2.3.2

x86_64java-10-openjdk-accessibility-10.0.2.0-lp150.2.3.2java-10-openjdk-devel-10.0.2.0-lp150.2.3.2java-10-openjdk-debugsource-10.0.2.0-lp150.2.3.2java-10-openjdk-headless-10.0.2.0-lp150.2.3.2java-10-openjdk-accessibility-debuginfo-10.0.2.0-lp150.2.3.2java-10-openjdk-demo-10.0.2.0-lp150.2.3.2java-10-openjdk-10.0.2.0-lp150.2.3.2java-10-openjdk-jmods-10.0.2.0-lp150.2.3.2java-10-openjdk-debuginfo-10.0.2.0-lp150.2.3.2java-10-openjdk-src-10.0.2.0-lp150.2.3.2


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2017-17456, CVE-2017-17457, CVE-2018-13139





SuSE Linux 15.0x86_64libsndfile-progs-debugsource-1.0.28-lp150.3.3.1libsndfile-progs-debuginfo-1.0.28-lp150.3.3.1libsndfile1-1.0.28-lp150.3.3.1libsndfile1-32bit-1.0.28-lp150.3.3.1libsndfile1-32bit-debuginfo-1.0.28-lp150.3.3.1libsndfile-devel-1.0.28-lp150.3.3.1libsndfile-debugsource-1.0.28-lp150.3.3.1libsndfile1-debuginfo-1.0.28-lp150.3.3.1libsndfile-progs-1.0.28-lp150.3.3.1

i586libsndfile-debugsource-1.0.28-lp150.3.3.1libsndfile1-debuginfo-1.0.28-lp150.3.3.1libsndfile-devel-1.0.28-lp150.3.3.1libsndfile1-1.0.28-lp150.3.3.1






SuSE Linux 15.0i586ovmf-2017+git1510945757.b2662641d5-lp150.4.3.1ovmf-tools-2017+git1510945757.b2662641d5-lp150.4.3.1

noarchqemu-ovmf-x86_64-2017+git1510945757.b2662641d5-lp150.4.3.1qemu-ovmf-ia32-2017+git1510945757.b2662641d5-lp150.4.3.1

x86_64ovmf-tools-2017+git1510945757.b2662641d5-lp150.4.3.1ovmf-2017+git1510945757.b2662641d5-lp150.4.3.1qemu-ovmf-x86_64-debug-2017+git1510945757.b2662641d5-lp150.4.3.1






SuSE SLES 12 SP3noarchqemu-uefi-aarch64-2017+git1492060560.b6d11d7c46-4.9.4qemu-ovmf-x86_64-2017+git1492060560.b6d11d7c46-4.9.4

x86_64ovmf-tools-2017+git1492060560.b6d11d7c46-4.9.4ovmf-2017+git1492060560.b6d11d7c46-4.9.4






SuSE Linux 15.0noarchkernel-firmware-20180525-lp150.2.3.1ucode-amd-20180525-lp150.2.3.1

193999 - Fedora Linux 28 FEDORA-2018-816b63ad38 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-816b63ad38



Fedora Core 28

libao-1.2.0-13.fc28

194008 - Fedora Linux 27 FEDORA-2018-9ec3061fc8 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-10773, CVE-2018-10774, CVE-2018-10775

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-9ec3061fc8



Fedora Core 27

bibutils-6.6-1.fc27

194015 - Fedora Linux 28 FEDORA-2018-67914db5d9 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-10773, CVE-2018-10774, CVE-2018-10775

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-67914db5d9



Fedora Core 28

bibutils-6.6-1.fc28

88965 - Slackware Linux 14.2 SSA:2018-213-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:

SSA:2018-213-01


http://www.slackware.com/security/viewer.php?l=slackware-security&y=2018&m=slackware-security.361064

Slackware 14.2x86_64blueman-2.0.6-x86_64-1

i586blueman-2.0.6-i586-1

88966 - Slackware Linux 14.0, 14.1, 14.2 SSA:2018-214-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and HotfixesRisk Level: LowCVE: CVE-2018-10916

DescriptionThe scan detected that the host is missing the following update:SSA:2018-214-01


http://www.slackware.com/security/viewer.php?l=slackware-security&y=2018&m=slackware-security.440833

Slackware 14.0x86_64lftp-4.8.4-x86_64-1


i586lftp-4.8.4-i586-1



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: LowCVE: CVE-2018-13405, CVE-2018-5390




Debian 9.0allfirewire-core-modules-4.9.0-7-powerpc64le-di_4.9.110-3+deb9u1usb-serial-modules-4.9.0-7-powerpc64le-di_4.9.110-3+deb9u1sata-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1usb-serial-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1minix-modules-4.9.0-7-loongson-3-di_4.9.110-3+deb9u1ata-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1btrfs-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1ext4-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1crc-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1linux-headers-4.9.0-7-common_4.9.110-3+deb9u1scsi-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1nic-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1event-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1usb-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1usb-serial-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1linux-image-4.9.0-7-loongson-3_4.9.110-3+deb9u1scsi-modules-4.9.0-7-5kc-malta-di_4.9.110-3+deb9u1fuse-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1mmc-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1usb-modules-4.9.0-7-5kc-malta-di_4.9.110-3+deb9u1uinput-modules-4.9.0-7-powerpc64le-di_4.9.110-3+deb9u1isofs-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1libusbip-dev_4.9.110-3+deb9u1nic-usb-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1minix-modules-4.9.0-7-marvell-di_4.9.110-3+deb9u1btrfs-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1leds-modules-4.9.0-7-marvell-di_4.9.110-3+deb9u1mouse-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1sound-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1fb-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1nbd-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1cdrom-core-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1linux-headers-4.9.0-6-common-rt_4.9.110-3+deb9u1btrfs-modules-4.9.0-7-marvell-di_4.9.110-3+deb9u1nic-shared-modules-4.9.0-7-marvell-di_4.9.110-3+deb9u1multipath-modules-4.9.0-7-686-di_4.9.110-3+deb9u1pata-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1sound-modules-4.9.0-7-loongson-3-di_4.9.110-3+deb9u1input-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1crypto-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1crypto-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1uinput-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1udf-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1scsi-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1fuse-modules-4.9.0-7-s390x-di_4.9.110-3+deb9u1usb-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1nic-wireless-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1linux-headers-4.9.0-7-arm64_4.9.110-3+deb9u1fuse-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1md-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1md-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1nbd-modules-4.9.0-7-marvell-di_4.9.110-3+deb9u1

virtio-modules-4.9.0-7-s390x-di_4.9.110-3+deb9u1linux-headers-4.9.0-7-powerpc64le_4.9.110-3+deb9u1multipath-modules-4.9.0-7-5kc-malta-di_4.9.110-3+deb9u1linux-headers-4.9.0-7-armmp-lpae_4.9.110-3+deb9u1affs-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1event-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1usb-serial-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1dasd-extra-modules-4.9.0-7-s390x-di_4.9.110-3+deb9u1i2c-modules-4.9.0-7-5kc-malta-di_4.9.110-3+deb9u1pata-modules-4.9.0-7-5kc-malta-di_4.9.110-3+deb9u1squashfs-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1scsi-core-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1linux-image-4.9.0-7-rt-686-pae_4.9.110-3+deb9u1btrfs-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1fb-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1hyperv-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1libcpupower1_4.9.110-3+deb9u1jfs-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1crc-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1affs-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1usb-storage-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1cdrom-core-modules-4.9.0-7-686-di_4.9.110-3+deb9u1linux-kbuild-4.9_4.9.110-3+deb9u1nic-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1serial-modules-4.9.0-7-powerpc64le-di_4.9.110-3+deb9u1loop-modules-4.9.0-7-marvell-di_4.9.110-3+deb9u1mouse-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1isofs-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1linux-image-4.9.0-7-arm64-dbg_4.9.110-3+deb9u1sound-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1nic-shared-modules-4.9.0-7-loongson-3-di_4.9.110-3+deb9u1usb-serial-modules-4.9.0-7-5kc-malta-di_4.9.110-3+deb9u1xfs-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1xfs-modules-4.9.0-7-loongson-3-di_4.9.110-3+deb9u1i2c-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1sata-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1md-modules-4.9.0-7-s390x-di_4.9.110-3+deb9u1event-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1linux-headers-4.9.0-7-s390x_4.9.110-3+deb9u1pcmcia-storage-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1virtio-modules-4.9.0-7-powerpc64le-di_4.9.110-3+deb9u1hyperv-modules-4.9.0-7-686-di_4.9.110-3+deb9u1ext4-modules-4.9.0-7-marvell-di_4.9.110-3+deb9u1usb-storage-modules-4.9.0-7-powerpc64le-di_4.9.110-3+deb9u1cdrom-core-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1linux-support-4.9.0-7_4.9.110-3+deb9u1linux-image-4.9.0-7-rt-amd64-dbg_4.9.110-3+deb9u1sata-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1usb-storage-modules-4.9.0-7-loongson-3-di_4.9.110-3+deb9u1kernel-image-4.9.0-7-powerpc64le-di_4.9.110-3+deb9u1linux-image-4.9.0-7-octeon-dbg_4.9.110-3+deb9u1event-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1virtio-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1crc-modules-4.9.0-7-marvell-di_4.9.110-3+deb9u1crc-modules-4.9.0-7-686-di_4.9.110-3+deb9u1btrfs-modules-4.9.0-7-loongson-3-di_4.9.110-3+deb9u1isofs-modules-4.9.0-7-s390x-di_4.9.110-3+deb9u1event-modules-4.9.0-7-powerpc64le-di_4.9.110-3+deb9u1nic-wireless-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1linux-image-4.9.0-7-marvell_4.9.110-3+deb9u1

multipath-modules-4.9.0-7-powerpc64le-di_4.9.110-3+deb9u1fb-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1input-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1jfs-modules-4.9.0-7-686-di_4.9.110-3+deb9u1nic-usb-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1hfs-modules-4.9.0-7-5kc-malta-di_4.9.110-3+deb9u1multipath-modules-4.9.0-7-marvell-di_4.9.110-3+deb9u1loop-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1nic-wireless-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1efi-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1ext4-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1kernel-image-4.9.0-7-s390x-di_4.9.110-3+deb9u1loop-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1speakup-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1nic-usb-modules-4.9.0-7-686-di_4.9.110-3+deb9u1linux-image-4.9.0-7-rt-686-pae-dbg_4.9.110-3+deb9u1efi-modules-4.9.0-7-armmp-di_4.9.110-3+deb9u1jfs-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1pcmcia-modules-4.9.0-7-686-di_4.9.110-3+deb9u1pata-modules-4.9.0-7-octeon-di_4.9.110-3+deb9u1usb-storage-modules-4.9.0-7-arm64-di_4.9.110-3+deb9u1linux-headers-4.9.0-7-rt-amd64_4.9.110-3+deb9u1fuse-modules-4.9.0-7-amd64-di_4.9.110-3+deb9u1ext4-modules-4.9.0-7-loongson-3-di_4.9.110-3+deb9u1mouse-modules-4.9.0-7-4kc-malta-di_4.9.110-3+deb9u1kernel-image-4.9.0-7-armmp-di_4.9.110-3+deb9u1scsi-modules-4.9.0-7-686-pae-di_4.9.110-3+deb9u1


Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH




Debian 9.0allxml-security-c-utils_1.7.3-4+deb9u1libxml-security-c-dev_1.7.3-4+deb9u1libxml-security-c17v5_1.7.3-4+deb9u1


Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: LowCVE: CVE-2018-14574

Description

The scan detected that the host is missing the following update:DSA-4264-1



Debian 9.0allpython-django_1:1.10.7-2+deb9u2


Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: LowCVE: CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682




Debian 9.0alllibmspack-dev_0.5-1+deb9u2libmspack0_0.5-1+deb9u2libmspack-doc_0.5-1+deb9u2libmspack-dbg_0.5-1+deb9u2


Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: LowCVE: CVE-2018-14912




Debian 9.0allcgit_1.1+git2.10.2-3+deb9u1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: LowCVE: CVE-2017-18248, CVE-2018-4180, CVE-2018-4181, CVE-2018-4182, CVE-2018-4183




SuSE Linux 42.3x86_64cups-libs-32bit-1.7.5-12.6.1cups-client-debuginfo-1.7.5-12.6.1cups-1.7.5-12.6.1cups-debuginfo-1.7.5-12.6.1cups-libs-debuginfo-1.7.5-12.6.1cups-ddk-1.7.5-12.6.1cups-ddk-debuginfo-1.7.5-12.6.1cups-debugsource-1.7.5-12.6.1cups-libs-debuginfo-32bit-1.7.5-12.6.1cups-client-1.7.5-12.6.1cups-libs-1.7.5-12.6.1cups-devel-1.7.5-12.6.1

i586cups-client-debuginfo-1.7.5-12.6.1cups-1.7.5-12.6.1cups-debuginfo-1.7.5-12.6.1cups-libs-debuginfo-1.7.5-12.6.1cups-ddk-1.7.5-12.6.1cups-ddk-debuginfo-1.7.5-12.6.1cups-debugsource-1.7.5-12.6.1cups-client-1.7.5-12.6.1cups-libs-1.7.5-12.6.1cups-devel-1.7.5-12.6.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: LowCVE: CVE-2017-18248, CVE-2018-4180, CVE-2018-4181, CVE-2018-4182, CVE-2018-4183





SuSE SLED 12 SP3x86_64cups-libs-debuginfo-1.7.5-20.14.1cups-libs-debuginfo-32bit-1.7.5-20.14.1cups-debuginfo-1.7.5-20.14.1cups-client-1.7.5-20.14.1cups-libs-32bit-1.7.5-20.14.1cups-debugsource-1.7.5-20.14.1cups-libs-1.7.5-20.14.1cups-1.7.5-20.14.1cups-client-debuginfo-1.7.5-20.14.1

SuSE SLES 12 SP3x86_64cups-libs-debuginfo-1.7.5-20.14.1cups-libs-debuginfo-32bit-1.7.5-20.14.1cups-debuginfo-1.7.5-20.14.1cups-client-1.7.5-20.14.1cups-libs-32bit-1.7.5-20.14.1cups-debugsource-1.7.5-20.14.1cups-libs-1.7.5-20.14.1cups-1.7.5-20.14.1cups-client-debuginfo-1.7.5-20.14.1


Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: LowCVE: CVE-2018-13093, CVE-2018-13094

DescriptionThe scan detected that the host is missing the following update:ALAS-2018-1048


https://alas.aws.amazon.com/ALAS-2018-1048.html

Amazon Linux AMIx86_64kernel-debuginfo-common-x86_64-4.14.59-64.43.amzn1kernel-tools-4.14.59-64.43.amzn1kernel-headers-4.14.59-64.43.amzn1kernel-tools-debuginfo-4.14.59-64.43.amzn1kernel-4.14.59-64.43.amzn1kernel-tools-devel-4.14.59-64.43.amzn1kernel-devel-4.14.59-64.43.amzn1perf-4.14.59-64.43.amzn1perf-debuginfo-4.14.59-64.43.amzn1kernel-debuginfo-4.14.59-64.43.amzn1

i686

kernel-tools-debuginfo-4.14.59-64.43.amzn1kernel-tools-4.14.59-64.43.amzn1kernel-headers-4.14.59-64.43.amzn1perf-4.14.59-64.43.amzn1kernel-4.14.59-64.43.amzn1kernel-tools-devel-4.14.59-64.43.amzn1kernel-devel-4.14.59-64.43.amzn1kernel-debuginfo-common-i686-4.14.59-64.43.amzn1perf-debuginfo-4.14.59-64.43.amzn1kernel-debuginfo-4.14.59-64.43.amzn1

182758 - FreeBSD cgit Directory Traversal Vulnerability (06c4a79b-981d-11e8-b460-9c5c8e75236a)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2018-14912

DescriptionThe scan detected that the host is missing the following update:cgit -- directory traversal vulnerability (06c4a79b-981d-11e8-b460-9c5c8e75236a)


http://www.vuxml.org/freebsd/06c4a79b-981d-11e8-b460-9c5c8e75236a.html

Affected packages: cgit < 1.2.1

182759 - FreeBSD py-cryptography Tag Forgery Vulnerability (9e2d0dcf-9926-11e8-a92d-0050562a4d7b)


DescriptionThe scan detected that the host is missing the following update:py-cryptography -- tag forgery vulnerability (9e2d0dcf-9926-11e8-a92d-0050562a4d7b)


http://www.vuxml.org/freebsd/9e2d0dcf-9926-11e8-a92d-0050562a4d7b.html

Affected packages: py27-cryptography < 2.3py34-cryptography < 2.3py35-cryptography < 2.3py36-cryptography < 2.3py37-cryptography < 2.3

182760 - FreeBSD FreeBSD Resource Exhaustion In TCP Reassembly (3c2eea8c-99bf-11e8-8bee-a4badb2f4699)


DescriptionThe scan detected that the host is missing the following update:FreeBSD -- Resource exhaustion in TCP reassembly (3c2eea8c-99bf-11e8-8bee-a4badb2f4699)


http://www.vuxml.org/freebsd/3c2eea8c-99bf-11e8-8bee-a4badb2f4699.html

Affected packages: 11.2 <= FreeBSD-kernel < 11.2_111.1 <= FreeBSD-kernel < 11.1_1210.4 <= FreeBSD-kernel < 10.4_10

182761 - FreeBSD xml-security-c Crashes On Malformed KeyInfo Content (5786185a-9a43-11e8-b34b-6cc21735f730)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:xml-security-c -- crashes on malformed KeyInfo content (5786185a-9a43-11e8-b34b-6cc21735f730)


http://www.vuxml.org/freebsd/5786185a-9a43-11e8-b34b-6cc21735f730.html

Affected packages: apache-xml-security-c < 2.0.1


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: LowCVE: CVE-2018-5390




Ubuntu 18.04

linux-image-generic_4.15.0.30.32linux-image-4.15.0-1018-raspi2_4.15.0-1018.19linux-image-oem_4.15.0.1013.15linux-image-4.15.0-1017-aws_4.15.0-1017.17linux-image-aws_4.15.0.1017.17linux-image-4.15.0-1017-kvm_4.15.0-1017.17linux-image-4.15.0-30-lowlatency_4.15.0-30.32linux-image-gcp_4.15.0.1015.17linux-image-lowlatency_4.15.0.30.32linux-image-raspi2_4.15.0.1018.16linux-image-4.15.0-30-snapdragon_4.15.0-30.32linux-image-4.15.0-30-generic-lpae_4.15.0-30.32linux-image-4.15.0-30-generic_4.15.0-30.32linux-image-gke_4.15.0.1015.17linux-image-4.15.0-1015-gcp_4.15.0-1015.15linux-image-azure_4.15.0.1019.19linux-image-azure-edge_4.15.0.1019.19linux-image-4.15.0-1019-azure_4.15.0-1019.19linux-image-generic-lpae_4.15.0.30.32linux-image-4.15.0-1013-oem_4.15.0-1013.16linux-image-snapdragon_4.15.0.30.32linux-image-kvm_4.15.0.1017.17

186331 - Ubuntu Linux 14.04, 16.04 USN-3733-1 Update Is Not Installed





Ubuntu 14.04

gpgv_1.4.16-1ubuntu2.6gnupg_1.4.16-1ubuntu2.6gnupg-curl_1.4.16-1ubuntu2.6

Ubuntu 16.04

gnupg-curl_1.4.20-1ubuntu3.3gnupg_1.4.20-1ubuntu3.3gpgv_1.4.20-1ubuntu3.3


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: Low

CVE: CVE-2018-14574




Ubuntu 18.04

python-django_1.11.11-1ubuntu1.1python3-django_1.11.11-1ubuntu1.1






Ubuntu 18.04

lxc_3.0.1-0ubuntu1~18.04.2






Ubuntu 16.04

linux-image-gcp_4.15.0.1015.27linux-image-4.15.0-30-generic-lpae_4.15.0-30.32~16.04.1linux-image-generic-hwe-16.04_4.15.0.30.52linux-image-4.15.0-1015-gcp_4.15.0-1015.15~16.04.1linux-image-4.15.0-1019-azure_4.15.0-1019.19~16.04.1linux-image-generic-lpae-hwe-16.04_4.15.0.30.52linux-image-lowlatency-hwe-16.04_4.15.0.30.52linux-image-4.15.0-30-lowlatency_4.15.0-30.32~16.04.1linux-image-4.15.0-30-generic_4.15.0-30.32~16.04.1linux-image-gke_4.15.0.1015.27linux-image-azure_4.15.0.1019.25

194000 - Fedora Linux 28 FEDORA-2018-e071e178f8 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-13796

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-e071e178f8



Fedora Core 28

mailman-2.1.29-1.fc28

194001 - Fedora Linux 28 FEDORA-2018-997efe762f Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-997efe762f



Fedora Core 28

seamonkey-2.49.4-1.fc28

194006 - Fedora Linux 28 FEDORA-2018-ddda173f56 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes

Risk Level: LowCVE: CVE-2018-14679

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-ddda173f56



Fedora Core 28

libmspack-0.7-0.1.alpha.fc28

194010 - Fedora Linux 27 FEDORA-2018-2cf8d705ad Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-2cf8d705ad



Fedora Core 27

seamonkey-2.49.4-1.fc27

194011 - Fedora Linux 28 FEDORA-2018-043bd3349e Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-13785

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-043bd3349e



Fedora Core 28

libpng-1.6.34-6.fc28

194017 - Fedora Linux 27 FEDORA-2018-2d2179e7d0 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-2d2179e7d0



Fedora Core 27

python-XStatic-jquery-ui-1.12.0.1-2.fc27

194019 - Fedora Linux 28 FEDORA-2018-f972c1b36e Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-f972c1b36e



Fedora Core 28

python-XStatic-jquery-ui-1.12.0.1-2.fc28

194020 - Fedora Linux 27 FEDORA-2018-8738f5f4a7 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-10861, CVE-2018-1128, CVE-2018-1129

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-8738f5f4a7

Observation

Updates often remediate critical security problems that should be quickly addressed.For more information see:


Fedora Core 27

ceph-12.2.7-1.fc27


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: LowCVE: CVE-2015-3243




SuSE Linux 42.3x86_64rsyslog-module-dbi-debuginfo-8.24.0-2.3.1rsyslog-module-snmp-debuginfo-8.24.0-2.3.1rsyslog-module-omtcl-8.24.0-2.3.1rsyslog-module-relp-debuginfo-8.24.0-2.3.1rsyslog-module-udpspoof-8.24.0-2.3.1rsyslog-doc-8.24.0-2.3.1rsyslog-debugsource-8.24.0-2.3.1rsyslog-module-mmnormalize-debuginfo-8.24.0-2.3.1rsyslog-module-guardtime-8.24.0-2.3.1rsyslog-module-pgsql-debuginfo-8.24.0-2.3.1rsyslog-module-gcrypt-debuginfo-8.24.0-2.3.1rsyslog-module-udpspoof-debuginfo-8.24.0-2.3.1rsyslog-module-gcrypt-8.24.0-2.3.1rsyslog-debuginfo-8.24.0-2.3.1rsyslog-module-omamqp1-8.24.0-2.3.1rsyslog-module-gssapi-8.24.0-2.3.1rsyslog-module-dbi-8.24.0-2.3.1rsyslog-module-gtls-debuginfo-8.24.0-2.3.1rsyslog-module-mysql-8.24.0-2.3.1rsyslog-module-relp-8.24.0-2.3.1rsyslog-module-guardtime-debuginfo-8.24.0-2.3.1rsyslog-module-snmp-8.24.0-2.3.1rsyslog-module-elasticsearch-debuginfo-8.24.0-2.3.1rsyslog-module-gssapi-debuginfo-8.24.0-2.3.1rsyslog-module-omhttpfs-8.24.0-2.3.1rsyslog-diag-tools-8.24.0-2.3.1rsyslog-module-gtls-8.24.0-2.3.1rsyslog-8.24.0-2.3.1rsyslog-module-mysql-debuginfo-8.24.0-2.3.1rsyslog-diag-tools-debuginfo-8.24.0-2.3.1rsyslog-module-omamqp1-debuginfo-8.24.0-2.3.1

rsyslog-module-pgsql-8.24.0-2.3.1rsyslog-module-mmnormalize-8.24.0-2.3.1rsyslog-module-omtcl-debuginfo-8.24.0-2.3.1rsyslog-module-omhttpfs-debuginfo-8.24.0-2.3.1rsyslog-module-elasticsearch-8.24.0-2.3.1

i586rsyslog-module-dbi-debuginfo-8.24.0-2.3.1rsyslog-module-snmp-debuginfo-8.24.0-2.3.1rsyslog-module-omtcl-8.24.0-2.3.1rsyslog-module-relp-debuginfo-8.24.0-2.3.1rsyslog-module-udpspoof-8.24.0-2.3.1rsyslog-doc-8.24.0-2.3.1rsyslog-debugsource-8.24.0-2.3.1rsyslog-module-mmnormalize-debuginfo-8.24.0-2.3.1rsyslog-module-guardtime-8.24.0-2.3.1rsyslog-module-pgsql-debuginfo-8.24.0-2.3.1rsyslog-module-gcrypt-debuginfo-8.24.0-2.3.1rsyslog-module-udpspoof-debuginfo-8.24.0-2.3.1rsyslog-module-gcrypt-8.24.0-2.3.1rsyslog-debuginfo-8.24.0-2.3.1rsyslog-module-omamqp1-8.24.0-2.3.1rsyslog-module-gssapi-8.24.0-2.3.1rsyslog-module-dbi-8.24.0-2.3.1rsyslog-module-gtls-debuginfo-8.24.0-2.3.1rsyslog-module-mysql-8.24.0-2.3.1rsyslog-module-relp-8.24.0-2.3.1rsyslog-module-guardtime-debuginfo-8.24.0-2.3.1rsyslog-module-snmp-8.24.0-2.3.1rsyslog-module-elasticsearch-debuginfo-8.24.0-2.3.1rsyslog-module-gssapi-debuginfo-8.24.0-2.3.1rsyslog-module-omhttpfs-8.24.0-2.3.1rsyslog-diag-tools-8.24.0-2.3.1rsyslog-module-gtls-8.24.0-2.3.1rsyslog-8.24.0-2.3.1rsyslog-module-mysql-debuginfo-8.24.0-2.3.1rsyslog-diag-tools-debuginfo-8.24.0-2.3.1rsyslog-module-omamqp1-debuginfo-8.24.0-2.3.1rsyslog-module-pgsql-8.24.0-2.3.1rsyslog-module-mmnormalize-8.24.0-2.3.1rsyslog-module-omtcl-debuginfo-8.24.0-2.3.1rsyslog-module-omhttpfs-debuginfo-8.24.0-2.3.1rsyslog-module-elasticsearch-8.24.0-2.3.1

194003 - Fedora Linux 28 FEDORA-2018-3b782350ff Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-14404, CVE-2018-9251

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-3b782350ff



Fedora Core 28

libxml2-2.9.8-4.fc28

ENHANCED CHECKS

The following checks have been updated. Enhancements may include optimizations, changes that reflect new information on avulnerability and anything else that improves upon an existing FSL check.

23590 - Mozilla Firefox Multiple Vulnerabilities Prior To 60

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-5150, CVE-2018-5151, CVE-2018-5152, CVE-2018-5153, CVE-2018-5154, CVE-2018-5155, CVE-2018-5157, CVE-2018-5158, CVE-2018-5159, CVE-2018-5160, CVE-2018-5163, CVE-2018-5164, CVE-2018-5165, CVE-2018-5166, CVE-2018-5167,CVE-2018-5168, CVE-2018-5169, CVE-2018-5172, CVE-2018-5173, CVE-2018-5174, CVE-2018-5175, CVE-2018-5176, CVE-2018-5177, CVE-2018-5180, CVE-2018-5181, CVE-2018-5182

Update DetailsRisk is updated

23591 - Mozilla Firefox Multiple Vulnerabilities Prior To 60

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5151, CVE-2018-5152, CVE-2018-5153, CVE-2018-5154, CVE-2018-5155, CVE-2018-5157, CVE-2018-5158, CVE-2018-5159, CVE-2018-5160, CVE-2018-5163, CVE-2018-5164, CVE-2018-5165, CVE-2018-5166, CVE-2018-5167,CVE-2018-5168, CVE-2018-5169, CVE-2018-5172, CVE-2018-5173, CVE-2018-5174, CVE-2018-5175, CVE-2018-5176, CVE-2018-5177, CVE-2018-5180, CVE-2018-5181, CVE-2018-5182


182693 - FreeBSD mozilla Multiple Vulnerabilities (5aefc41e-d304-4ec8-8c82-824f84f08244)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5151, CVE-2018-5152, CVE-2018-5153, CVE-2018-5154, CVE-2018-5155, CVE-2018-5157, CVE-2018-5158, CVE-2018-5159, CVE-2018-5160, CVE-2018-5163, CVE-2018-5164, CVE-2018-5165, CVE-2018-5166, CVE-2018-5167,CVE-2018-5168, CVE-2018-5169, CVE-2018-5172, CVE-2018-5173, CVE-2018-5174, CVE-2018-5175, CVE-2018-5176, CVE-2018-5177, CVE-2018-5178, CVE-2018-5180, CVE-2018-5181, CVE-2018-5182, CVE-2018-5183


186204 - Ubuntu Linux 14.04, 16.04, 17.10, 18.04 USN-3645-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5151, CVE-2018-5152, CVE-2018-5153, CVE-2018-5154, CVE-2018-5155, CVE-2018-5157, CVE-2018-5158, CVE-2018-5159, CVE-2018-5160, CVE-2018-5163, CVE-2018-5164, CVE-2018-5166, CVE-2018-5167, CVE-2018-5168,

CVE-2018-5169, CVE-2018-5172, CVE-2018-5173, CVE-2018-5175, CVE-2018-5176, CVE-2018-5177, CVE-2018-5180, CVE-2018-5181, CVE-2018-5182



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5151, CVE-2018-5152, CVE-2018-5153, CVE-2018-5154, CVE-2018-5155, CVE-2018-5157, CVE-2018-5158, CVE-2018-5159, CVE-2018-5160, CVE-2018-5163, CVE-2018-5164, CVE-2018-5166, CVE-2018-5167, CVE-2018-5168,CVE-2018-5169, CVE-2018-5172, CVE-2018-5173, CVE-2018-5175, CVE-2018-5176, CVE-2018-5177, CVE-2018-5180, CVE-2018-5181, CVE-2018-5182


23735 - Microsoft Office 2016 Click-To-Run Jun 2018 Updates

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-8244, CVE-2018-8246, CVE-2018-8248


32098 - Oracle Solaris 125359-28 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and HotfixesRisk Level: HighCVE: CVE-2009-0689, CVE-2009-2404, CVE-2009-3555, CVE-2010-3170, CVE-2011-3389, CVE-2013-1620, CVE-2013-1739, CVE-2013-1740, CVE-2013-1741, CVE-2013-5605, CVE-2013-5606, CVE-2014-1490, CVE-2014-1491, CVE-2014-1492

Update DetailsName is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33218 - Oracle Solaris 119214-39 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and HotfixesRisk Level: HighCVE: CVE-2009-0689, CVE-2009-2404, CVE-2009-3555, CVE-2010-3170, CVE-2011-3389, CVE-2013-1620, CVE-2013-1739, CVE-2013-1740, CVE-2013-1741, CVE-2013-5605, CVE-2013-5606, CVE-2014-1490, CVE-2014-1491, CVE-2014-1492

Update DetailsName is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

21186 - Mozilla Thunderbird Multiple Vulnerabilities Prior To 45.7

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)

Risk Level: HighCVE: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5390, CVE-2017-5396



Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5390, CVE-2017-5396


22016 - Mozilla Firefox ESR Multiple Vulnerabilities Prior To 52.2

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7755, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7760, CVE-2017-7761, CVE-2017-7763, CVE-2017-7764,CVE-2017-7765, CVE-2017-7766, CVE-2017-7767, CVE-2017-7768, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778


22017 - Mozilla Firefox ESR Multiple Vulnerabilities Prior To 52.2

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7755, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7760, CVE-2017-7761, CVE-2017-7763, CVE-2017-7764,CVE-2017-7765, CVE-2017-7766, CVE-2017-7767, CVE-2017-7768, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774, CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778


23029 - Mozilla Firefox ESR Multiple Vulnerabilities Prior To ESR 52.6

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117



Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117



Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-5089, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117



Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2018-5089, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117



Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145



Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145



Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5144, CVE-2018-5145, CVE-2018-5146



Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5144, CVE-2018-5145, CVE-2018-5146


23593 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 52.8

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-5150, CVE-2018-5154, CVE-2018-5155, CVE-2018-5157, CVE-2018-5158, CVE-2018-5159, CVE-2018-5168, CVE-2018-5174, CVE-2018-5178, CVE-2018-5183


23594 - Mozilla Firefox ESR Vulnerabilities Prior To ESR 52.8

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5154, CVE-2018-5155, CVE-2018-5157, CVE-2018-5158, CVE-2018-5159, CVE-2018-5168, CVE-2018-5174, CVE-2018-5178, CVE-2018-5183


88838 - Slackware Linux 14.1, 14.2 SSA:2016-365-02 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and HotfixesRisk Level: HighCVE: CVE-2016-9899


88844 - Slackware Linux 14.1, 14.2 SSA:2017-026-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and HotfixesRisk Level: High

CVE: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5386, CVE-2017-5390, CVE-2017-5396



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5386, CVE-2017-5390, CVE-2017-5396



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774,CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778


130833 - Debian Linux 8.0, 9.0 DSA-3918-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774,CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: High

CVE: CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5144, CVE-2018-5145, CVE-2018-5146



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5154, CVE-2018-5155, CVE-2018-5157, CVE-2018-5158, CVE-2018-5159, CVE-2018-5168, CVE-2018-5178, CVE-2018-5183



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5154, CVE-2018-5155, CVE-2018-5159, CVE-2018-5161, CVE-2018-5162, CVE-2018-5168, CVE-2018-5170, CVE-2018-5178, CVE-2018-5183, CVE-2018-5184, CVE-2018-5185


141417 - Red Hat Enterprise Linux RHSA-2017-0190 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5386, CVE-2017-5390, CVE-2017-5396

Update Details

Risk is updated


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774,CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778



Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117



Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145



Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145











160203 - CentOS 5, 6, 7 CESA-2017-0190 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5386, CVE-2017-5390, CVE-2017-5396


160270 - CentOS 6, 7 CESA-2017-1440 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774,CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778



Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117


160369 - CentOS 7 CESA-2018-0527 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145



Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145









Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5386, CVE-2017-5390, CVE-2017-5396



Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-

2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774,CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778



Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117



Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145



Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145







Update Details

Risk is updated


Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-12232


175107 - Scientific Linux Security ERRATA Critical: firefox on SL5.x, SL6.x, SL7.x i386/x86_64 (1701-12036)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5386, CVE-2017-5390, CVE-2017-5396


175189 - Scientific Linux Security ERRATA Critical: firefox on SL6.x, SL7.x i386/x86_64 (1706-3330)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: HighCVE: CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774,CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778


175320 - Scientific Linux Security ERRATA Critical: firefox on SL6.x, SL7.x i386/x86_64 (1801-7859)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: HighCVE: CVE-2018-5089, CVE-2018-5091, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117


175337 - Scientific Linux Security ERRATA Critical: firefox on SL7.x x86_64 (1803-9570)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145


175343 - Scientific Linux Security ERRATA Critical: firefox on SL6.x i386/x86_64 (1803-9994)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5144, CVE-2018-5145


175382 - Scientific Linux Security ERRATA Critical: firefox on SL7.x x86_64 (1805-18057)



175383 - Scientific Linux Security ERRATA Critical: firefox on SL6.x i386/x86_64 (1805-19514)



178393 - Gentoo Linux GLSA-201702-22 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixesRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5375, CVE-2017-5376, CVE-2017-5378, CVE-2017-5380, CVE-2017-5383, CVE-2017-5386, CVE-2017-5390, CVE-2017-5396


182266 - FreeBSD mozilla Multiple Vulnerabilities (e60169c4-aa86-46b0-8ae2-0d81f683df09)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5374, CVE-2017-5375, CVE-2017-5376, CVE-2017-5377, CVE-2017-5378, CVE-2017-5379, CVE-2017-5380, CVE-2017-5381, CVE-2017-5382, CVE-2017-5383, CVE-2017-5384, CVE-2017-5385, CVE-2017-5386, CVE-2017-5387,CVE-2017-5388, CVE-2017-5389, CVE-2017-5390, CVE-2017-5391, CVE-2017-5392, CVE-2017-5393, CVE-2017-5394, CVE-2017-5395, CVE-2017-5396


182641 - FreeBSD mozilla Multiple Vulnerabilities (c71cdc95-3c18-45b7-866a-af28b59aabb5)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5126, CVE-2018-5127, CVE-2018-5128, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5132, CVE-2018-5133, CVE-2018-5134, CVE-2018-5135, CVE-2018-5136, CVE-2018-5137, CVE-2018-5138, CVE-2018-5140,CVE-2018-5141, CVE-2018-5142, CVE-2018-5143



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5374, CVE-2017-5375, CVE-2017-5376, CVE-2017-5377, CVE-2017-5378, CVE-2017-5379, CVE-2017-5380, CVE-2017-5381, CVE-2017-5382, CVE-2017-5383, CVE-2017-5384, CVE-2017-5385, CVE-2017-5386, CVE-2017-5387,CVE-2017-5388, CVE-2017-5389, CVE-2017-5390, CVE-2017-5391, CVE-2017-5393, CVE-2017-5396



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2017-5373, CVE-2017-5374, CVE-2017-5375, CVE-2017-5376, CVE-2017-5377, CVE-2017-5378, CVE-2017-5379, CVE-2017-5380, CVE-2017-5381, CVE-2017-5382, CVE-2017-5383, CVE-2017-5384, CVE-2017-5385, CVE-2017-5386, CVE-2017-5387,CVE-2017-5388, CVE-2017-5389, CVE-2017-5390, CVE-2017-5391, CVE-2017-5393, CVE-2017-5396



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2017-5470, CVE-2017-5472, CVE-2017-7749, CVE-2017-7750, CVE-2017-7751, CVE-2017-7752, CVE-2017-7754, CVE-2017-7756, CVE-2017-7757, CVE-2017-7758, CVE-2017-7764, CVE-2017-7771, CVE-2017-7772, CVE-2017-7773, CVE-2017-7774,CVE-2017-7775, CVE-2017-7776, CVE-2017-7777, CVE-2017-7778


186073 - Ubuntu Linux 14.04, 16.04, 17.10 USN-3529-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2017-7829, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848, CVE-2018-5089, CVE-2018-5095, CVE-2018-5096, CVE-2018-5097, CVE-2018-5098, CVE-2018-5099, CVE-2018-5102, CVE-2018-5103, CVE-2018-5104, CVE-2018-5117

Update DetailsRisk is updated CVE is updated


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5126, CVE-2018-5127, CVE-2018-5128, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5132, CVE-2018-5133, CVE-2018-5134, CVE-2018-5135, CVE-2018-5136, CVE-2018-5137, CVE-2018-5140, CVE-2018-5141,CVE-2018-5142, CVE-2018-5143



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5127, CVE-2018-5129, CVE-2018-5144, CVE-2018-5145, CVE-2018-5146



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2018-5125, CVE-2018-5126, CVE-2018-5127, CVE-2018-5128, CVE-2018-5129, CVE-2018-5130, CVE-2018-5131, CVE-2018-5132, CVE-2018-5133, CVE-2018-5134, CVE-2018-5135, CVE-2018-5136, CVE-2018-5137, CVE-2018-5140, CVE-2018-5141,CVE-2018-5142, CVE-2018-5143



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2018-5150, CVE-2018-5154, CVE-2018-5155, CVE-2018-5159, CVE-2018-5161, CVE-2018-5162, CVE-2018-5168, CVE-2018-5170, CVE-2018-5178, CVE-2018-5183, CVE-2018-5184, CVE-2018-5185



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2017-17833

Update DetailsCVE is updated

193836 - Fedora Linux 28 FEDORA-2018-f59d961d7b Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2018-7161, CVE-2018-7162, CVE-2018-7167


193879 - Fedora Linux 27 FEDORA-2018-79841c871e Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2018-7161, CVE-2018-7162, CVE-2018-7167


193902 - Fedora Linux 27 FEDORA-2018-c8ddc44bbb Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2017-16652, CVE-2018-11385, CVE-2018-11386, CVE-2018-11406, CVE-2018-11407, CVE-2018-11408


193904 - Fedora Linux 27 FEDORA-2018-2bdfc9dc67 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2017-16652, CVE-2018-11385, CVE-2018-11386, CVE-2018-11406, CVE-2018-11407, CVE-2018-11408


22942 - Mozilla Thunderbird Multiple Vulnerabilities Prior To 52.5.2

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2017-7829, CVE-2017-7845, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848


22943 - Mozilla Thunderbird Multiple Vulnerabilities Prior To 52.5.2

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: MediumCVE: CVE-2017-7829, CVE-2017-7845, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848

Update Details

Risk is updated

23767 - (ESA-2017-122) EMC NetWorker Server service Buffer Overflow Vulnerability

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2017-8022

Update DetailsFASLScript is updated


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7829, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848



Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7829, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848



Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7829, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848



Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7829, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848


175311 - Scientific Linux Security ERRATA Important: thunderbird on SL6.x, SL7.x i386/x86_64 (1801-3134)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes

Risk Level: MediumCVE: CVE-2017-7829, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848


182563 - FreeBSD mozilla Multiple Vulnerabilities (6a09c80e-6ec7-442a-bc65-d72ce69fd887)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7829, CVE-2017-7845, CVE-2017-7846, CVE-2017-7847, CVE-2017-7848


88950 - Slackware Linux 13.37, 14.0, 14.1, 14.2 SSA:2018-159-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12020


88952 - Slackware Linux 13.0, 13.1, 13.37, 14.0, 14.1, 14.2 SSA:2018-170-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12020



Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7805


















Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7805





















Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

Risk Level: MediumCVE: CVE-2018-12020



Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7843









Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7805












Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7805



Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12020



Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: MediumCVE: CVE-MAP-NOMATCH


175269 - Scientific Linux Security ERRATA Important: nss on SL6.x, SL7.x i386/x86_64 (1709-4248)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: MediumCVE: CVE-2017-7805


175294 - Scientific Linux Security ERRATA Important: firefox on SL6.x, SL7.x i386/x86_64 (1712-1795)



175421 - Scientific Linux Security ERRATA Important: gnupg2 on SL6.x i386/x86_64 (1807-6667)



175422 - Scientific Linux Security ERRATA Important: gnupg2 on SL7.x x86_64 (1807-6995)



182480 - FreeBSD nss Use-after-free In TLS 1.2 Generating Handshake Hashes (e71fd9d3-af47-11e7-a633-009c02a2ab30)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7805


182536 - FreeBSD mozilla Multiple Vulnerabilities (b7e23050-2d5d-4e61-9b48-62e89db222ca)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7843, CVE-2017-7844


182705 - FreeBSD gnupg Unsanitized Output (CVE-2018-12020) (7da0417f-6b24-11e8-84cc-002590acae31)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes

Risk Level: MediumCVE: CVE-2017-7526, CVE-2018-12020


182730 - FreeBSD Several Security Defects In The Bouncy Castle Crypto APIs (fe93803c-883f-11e8-9f0c-001b216d295b)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: MediumCVE: CVE-2018-1000180, CVE-2018-1000613



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7805



Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12020


193810 - Fedora Linux 28 FEDORA-2018-a4e13742b4 Update Is Not Installed



193811 - Fedora Linux 28 FEDORA-2018-4ef71d3525 Update Is Not Installed



193822 - Fedora Linux 27 FEDORA-2018-84fdbd021f Update Is Not Installed



193831 - Fedora Linux 28 FEDORA-2018-3dc16842e2 Update Is Not Installed



193905 - Fedora Linux 27 FEDORA-2018-69780fc4d7 Update Is Not Installed










Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH


182014 - FreeBSD tiff Buffer Overflow (0ab66088-4aa5-11e6-a7bd-14dae9d210b8)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2016-5314, CVE-2016-5875


182751 - FreeBSD rubygem-doorkeeper Token Revocation Vulnerability (e309a2c7-598b-4fa6-a398-bc72fbd1d167)


Update DetailsFASLScript is updated


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH


193899 - Fedora Linux 27 FEDORA-2018-4943b0505b Update Is Not Installed



HOW TO UPDATE

FS1000 APPLIANCE customers should follow the instructions for Enterprise/Professional customers, below. In addition, we stronglyurge all appliance customers to authorize and install any Windows Update critical patches. The appliance will auto-download anycritical updates but will wait for your explicit authorization before installing.

FOUNDSTONE ENTERPRISE and PROFESSIONAL customers may obtain these new scripts using the FSUpdate Utility by selecting"FoundScan Update" on the help menu. Make sure that you have a valid FSUpdate username and password. The new vulnerabilityscripts will be automatically included in your scans if you have selected that option by right-clicking the selected vulnerability categoryand checking the "Run New Checks" checkbox.

MANAGED SERVICE CUSTOMERS already have the newest update applied to their environment. The new vulnerability scripts willbe automatically included when your scans are next scheduled, provided the Run New Scripts option has been turned on.

MCAFEE TECHNICAL SUPPORT

ServicePortal: https://mysupport.mcafee.comMulti-National Phone Support available here:

http://www.mcafee.com/us/about/contact/index.htmlNon-US customers - Select your country from the list of Worldwide Offices.

This email may contain confidential and privileged material for the sole use of the intended recipient. Any review or distribution byothers is strictly prohibited. If you are not the intended recipient please contact the sender and delete all copies.

Copyright 2018 McAfee, Inc.McAfee is a registered trademark of McAfee, Inc. and/or its affiliates

https://mysupport.mcafee.com/

http://www.mcafee.com/us/about/contact/index.html

Documents

McAfee Foundstone FSL Update · php-symfony-var-dumper_2.8.7+dfsg-1.3+deb9u1 146923 - SuSE SLED 15 SUSE-SU-2018:2223-1 Update Is Not Installed Category: SSH Module -> NonIntrusive