MCAFEE FOUNDSTONE FSL UPDATE 2018-DEC-20 · Apple iOS is the operating system used by Apple iPhone, iPad, and iPod touch. Multiple vulnerabilities are present in some versions of

2018-DEC-20FSL version 7.6.86

MCAFEE FOUNDSTONE FSL UPDATE

To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is adetailed summary of the new and updated checks included with this release.

NEW CHECKS

24479 - AVEVA InTouch Edge HMI Multiple Vulnerabilities (LFSEC00000130)

Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-17914, CVE-2018-17916

DescriptionMultiple vulnerabilities are present in some versions of AVEVA InTouch Edge HMI.

ObservationAVEVA InTouch EDge HMI is a tool to build SCADA, HMI applications.

Multiple vulnerabilities are present in some versions of AVEVA InTouch Edge HMI. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code on the target system.

24550 - IBM AIX Solaris Remote Code Execution Vulnerability

Category: SSH Module -> NonIntrusive -> AIX Patches and HotfixesRisk Level: HighCVE: CVE-2017-3623

DescriptionA vulnerability is present in some versions of IBM AIX.

ObservationAIX is a Unix-like operating system developed by IBM.

A vulnerability is present in some versions of IBM AIX. The flaw lies in the Solaris Kernel RPC component. Successful exploitation could allow a remote attacker to execute arbitrary code within the context of the target server.

24539 - (HT209345) Apple iTunes Vulnerabilities Prior To 12.9.2

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-4437, CVE-2018-4438, CVE-2018-4439, CVE-2018-4440, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443,CVE-2018-4464

DescriptionMultiple vulnerabilities are present in some versions of Apple iTunes.

ObservationApple iTunes is a media management software.

Multiple vulnerabilities are present in some versions of Apple iTunes. The flaws lie in several components. Successful exploitation could allow an attacker to remotely execute arbitrary code and cause spoofing attack on the target system.

160488 - CentOS 7 CESA-2018-3347 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-1000805

DescriptionThe scan detected that the host is missing the following update:CESA-2018-3347

ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:

http://lists.centos.org/pipermail/centos-announce/2018-December/023119.html

CentOS 7noarchpython-paramiko-2.1.1-9.el7python-paramiko-doc-2.1.1-9.el7

24535 - AVEVA Citect SCADA Uncontroled Search Path Vulnerability (LFSEC00000134)

Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-7799

DescriptionA vulnerability is present in some versions of AVEVA Citect SCADA.

ObservationAVEVA Citect SCADA is a SCADA solution for industrial process.

A vulnerability is present in some versions of AVEVA Citect SCADA. The flaw lies in Schneider Electric Software Update utility. Successful exploitation could allow an attacker to execute arbitrary code on the target system.

24560 - Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability (CVE-2018-8653)

Category: Windows Host Assessment -> Patches and Hotfixes (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-8653

DescriptionA vulnerability is present in some versions of Microsoft Internet Explorer.

ObservationInternet Explorer is a graphical web browser developed by Microsoft.

A vulnerability is present in some versions of Microsoft Internet Explorer. The flaw is due to improper handling of objects in memory. Successful exploitation could allow an attacker to execute arbitrary code in the context of the current user.


Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-14633, CVE-2018-14646




CentOS 7x86_64kernel-debug-3.10.0-957.1.3.el7bpftool-3.10.0-957.1.3.el7kernel-tools-3.10.0-957.1.3.el7kernel-headers-3.10.0-957.1.3.el7perf-3.10.0-957.1.3.el7kernel-3.10.0-957.1.3.el7kernel-tools-libs-3.10.0-957.1.3.el7kernel-debug-devel-3.10.0-957.1.3.el7python-perf-3.10.0-957.1.3.el7kernel-devel-3.10.0-957.1.3.el7kernel-tools-libs-devel-3.10.0-957.1.3.el7

24490 - INVT Electric VT-Designer Multiple Vulnerabilities (ICSA-18-333-01)

Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-18983, CVE-2018-18987

DescriptionMultiple vulnerabilities are present in some versions of INVT Electric VT-Designer.

ObservationINVT Electric VT-Designer is an HMI programming software.

Multiple vulnerabilities are present in some versions of INVT Electric VT-Designer. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code and cause a denial of service condition.

24544 - (HT209340) Apple iOS Multiple Vulnerabilities Prior To 12.1.1

Category: Wireless Assessment -> NonIntrusive -> iOS

Risk Level: HighCVE: CVE-2018-4303, CVE-2018-4429, CVE-2018-4430, CVE-2018-4431, CVE-2018-4435, CVE-2018-4436, CVE-2018-4437,CVE-2018-4438, CVE-2018-4439, CVE-2018-4440, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443, CVE-2018-4445, CVE-2018-4446, CVE-2018-4447, CVE-2018-4460, CVE-2018-4461, CVE-2018-4464, CVE-2018-4465

DescriptionMultiple vulnerabilities are present in some versions of Apple iOS.

ObservationApple iOS is the operating system used by Apple iPhone, iPad, and iPod touch.

Multiple vulnerabilities are present in some versions of Apple iOS. The flaws lie in multiple components. Successful exploitation could allow an attacker to cause a denial of service condition, disclose sensitive information, execute arbitrary code or escalate privileges.

24545 - (HT209346) Apple iCloud Vulnerabilities Prior To 7.9

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-4437, CVE-2018-4438, CVE-2018-4439, CVE-2018-4440, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443,CVE-2018-4464

DescriptionMultiple vulnerabilities are present in some versions of Apple iCloud.

ObservationApple iCloud is a manager for the Apple's cloud-based storage service.

Multiple vulnerabilities are present in some versions of Apple iCloud. The flaws lie in many components. Successful exploitation could allow an attacker to execute arbitrary code on the target system.

24546 - (HT209344) Apple Safari Vulnerabilities Prior To 12.0.2

Category: SSH Module -> NonIntrusive -> Mac OS X Patches and HotfixesRisk Level: HighCVE: CVE-2018-4437, CVE-2018-4438, CVE-2018-4439, CVE-2018-4440, CVE-2018-4441, CVE-2018-4442, CVE-2018-4443,CVE-2018-4445, CVE-2018-4464

DescriptionMultiple vulnerabilities are present in some versions of Apple Safari.

ObservationApple Safari is a popular web browser.

Multiple vulnerabilities are present in some versions of Apple Safari. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code or spoofing attacks on the target system.

24555 - IBM WebSphere Application Server Vulnerability (ibm10738735)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: High

CVE: CVE-2018-1904

DescriptionA vulnerability is present in some versions of IBM WebSphere Application Server.

ObservationIBM WebSphere Application Server is a server engine for Java EE Web applications.

A vulnerability is present in some versions of IBM WebSphere Application Server. The flaw lies in administrative client class. Successful exploitation could allow a remote attacker to execute random java codes in the target system.

147443 - SuSE SLES 12 SP3, 12 SP4, SLED 12 SP3, 12 SP4 SUSE-SU-2018:4089-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-4700

DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:4089-1


http://lists.suse.com/pipermail/sle-security-updates/2018-December/004958.html

SuSE SLED 12 SP3x86_64cups-libs-1.7.5-20.20.1cups-client-1.7.5-20.20.1cups-1.7.5-20.20.1cups-debugsource-1.7.5-20.20.1cups-libs-debuginfo-32bit-1.7.5-20.20.1cups-libs-debuginfo-1.7.5-20.20.1cups-debuginfo-1.7.5-20.20.1cups-client-debuginfo-1.7.5-20.20.1cups-libs-32bit-1.7.5-20.20.1

SuSE SLED 12 SP4x86_64cups-libs-1.7.5-20.20.1cups-client-1.7.5-20.20.1cups-1.7.5-20.20.1cups-debugsource-1.7.5-20.20.1cups-libs-debuginfo-32bit-1.7.5-20.20.1cups-libs-debuginfo-1.7.5-20.20.1cups-debuginfo-1.7.5-20.20.1cups-client-debuginfo-1.7.5-20.20.1cups-libs-32bit-1.7.5-20.20.1

SuSE SLES 12 SP4x86_64cups-libs-1.7.5-20.20.1cups-client-1.7.5-20.20.1cups-1.7.5-20.20.1cups-debugsource-1.7.5-20.20.1

cups-libs-debuginfo-32bit-1.7.5-20.20.1cups-debuginfo-1.7.5-20.20.1cups-libs-32bit-1.7.5-20.20.1cups-client-debuginfo-1.7.5-20.20.1cups-libs-debuginfo-1.7.5-20.20.1

SuSE SLES 12 SP3x86_64cups-libs-1.7.5-20.20.1cups-client-1.7.5-20.20.1cups-1.7.5-20.20.1cups-debugsource-1.7.5-20.20.1cups-libs-debuginfo-32bit-1.7.5-20.20.1cups-debuginfo-1.7.5-20.20.1cups-libs-32bit-1.7.5-20.20.1cups-client-debuginfo-1.7.5-20.20.1cups-libs-debuginfo-1.7.5-20.20.1

147445 - SuSE Linux 15.0, 42.3 openSUSE-SU-2018:4117-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-12384, CVE-2018-12404

DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:4117-1


https://lists.opensuse.org/opensuse-updates/2018-12/msg00065.html

SuSE Linux 15.0x86_64libsoftokn3-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-sysinit-debuginfo-3.36.6-lp150.2.6.1libfreebl3-32bit-3.36.6-lp150.2.6.1mozilla-nss-sysinit-3.36.6-lp150.2.6.1mozilla-nss-sysinit-32bit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-32bit-debuginfo-3.36.6-lp150.2.6.1libsoftokn3-32bit-3.36.6-lp150.2.6.1mozilla-nss-tools-3.36.6-lp150.2.6.1mozilla-nss-certs-32bit-3.36.6-lp150.2.6.1mozilla-nss-32bit-3.36.6-lp150.2.6.1libsoftokn3-3.36.6-lp150.2.6.1libfreebl3-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-certs-32bit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-devel-3.36.6-lp150.2.6.1mozilla-nss-debugsource-3.36.6-lp150.2.6.1mozilla-nss-certs-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-certs-3.36.6-lp150.2.6.1mozilla-nss-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-3.36.6-lp150.2.6.1libfreebl3-32bit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-sysinit-32bit-3.36.6-lp150.2.6.1libfreebl3-3.36.6-lp150.2.6.1

libsoftokn3-32bit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-tools-debuginfo-3.36.6-lp150.2.6.1

i586libsoftokn3-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-sysinit-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-sysinit-3.36.6-lp150.2.6.1mozilla-nss-tools-3.36.6-lp150.2.6.1libsoftokn3-3.36.6-lp150.2.6.1libfreebl3-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-devel-3.36.6-lp150.2.6.1mozilla-nss-debugsource-3.36.6-lp150.2.6.1mozilla-nss-certs-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-certs-3.36.6-lp150.2.6.1mozilla-nss-debuginfo-3.36.6-lp150.2.6.1mozilla-nss-3.36.6-lp150.2.6.1libfreebl3-3.36.6-lp150.2.6.1mozilla-nss-tools-debuginfo-3.36.6-lp150.2.6.1

SuSE Linux 42.3x86_64mozilla-nss-debuginfo-32bit-3.36.6-54.1mozilla-nss-certs-3.36.6-54.1libfreebl3-32bit-3.36.6-54.1mozilla-nss-certs-debuginfo-32bit-3.36.6-54.1mozilla-nss-sysinit-32bit-3.36.6-54.1libsoftokn3-debuginfo-32bit-3.36.6-54.1libfreebl3-debuginfo-32bit-3.36.6-54.1libsoftokn3-debuginfo-3.36.6-54.1libfreebl3-3.36.6-54.1mozilla-nss-certs-debuginfo-3.36.6-54.1mozilla-nss-sysinit-debuginfo-3.36.6-54.1mozilla-nss-sysinit-debuginfo-32bit-3.36.6-54.1mozilla-nss-devel-3.36.6-54.1mozilla-nss-debugsource-3.36.6-54.1libsoftokn3-3.36.6-54.1mozilla-nss-tools-debuginfo-3.36.6-54.1mozilla-nss-32bit-3.36.6-54.1mozilla-nss-sysinit-3.36.6-54.1mozilla-nss-debuginfo-3.36.6-54.1mozilla-nss-3.36.6-54.1libsoftokn3-32bit-3.36.6-54.1mozilla-nss-tools-3.36.6-54.1libfreebl3-debuginfo-3.36.6-54.1mozilla-nss-certs-32bit-3.36.6-54.1

i586mozilla-nss-certs-3.36.6-54.1libsoftokn3-debuginfo-3.36.6-54.1libfreebl3-3.36.6-54.1mozilla-nss-certs-debuginfo-3.36.6-54.1mozilla-nss-sysinit-debuginfo-3.36.6-54.1mozilla-nss-devel-3.36.6-54.1mozilla-nss-debugsource-3.36.6-54.1libsoftokn3-3.36.6-54.1mozilla-nss-tools-debuginfo-3.36.6-54.1mozilla-nss-sysinit-3.36.6-54.1mozilla-nss-debuginfo-3.36.6-54.1mozilla-nss-3.36.6-54.1mozilla-nss-tools-3.36.6-54.1

libfreebl3-debuginfo-3.36.6-54.1

147446 - SuSE Linux 15.0 openSUSE-SU-2018:4156-1 Update Is Not Installed





SuSE Linux 15.0x86_64pdns-debuginfo-4.1.2-lp150.3.6.1pdns-backend-mydns-debuginfo-4.1.2-lp150.3.6.1pdns-backend-godbc-4.1.2-lp150.3.6.1pdns-backend-lua-debuginfo-4.1.2-lp150.3.6.1pdns-backend-geoip-4.1.2-lp150.3.6.1pdns-backend-ldap-debuginfo-4.1.2-lp150.3.6.1pdns-backend-postgresql-4.1.2-lp150.3.6.1pdns-backend-remote-debuginfo-4.1.2-lp150.3.6.1pdns-debugsource-4.1.2-lp150.3.6.1pdns-backend-mydns-4.1.2-lp150.3.6.1pdns-backend-geoip-debuginfo-4.1.2-lp150.3.6.1pdns-backend-postgresql-debuginfo-4.1.2-lp150.3.6.1pdns-4.1.2-lp150.3.6.1pdns-backend-sqlite3-4.1.2-lp150.3.6.1pdns-backend-ldap-4.1.2-lp150.3.6.1pdns-backend-mysql-4.1.2-lp150.3.6.1pdns-backend-sqlite3-debuginfo-4.1.2-lp150.3.6.1pdns-backend-remote-4.1.2-lp150.3.6.1pdns-backend-mysql-debuginfo-4.1.2-lp150.3.6.1pdns-backend-lua-4.1.2-lp150.3.6.1pdns-backend-godbc-debuginfo-4.1.2-lp150.3.6.1






SuSE Linux 42.3x86_64cups-libs-1.7.5-12.9.1cups-libs-32bit-1.7.5-12.9.1cups-client-1.7.5-12.9.1cups-libs-debuginfo-32bit-1.7.5-12.9.1cups-debuginfo-1.7.5-12.9.1cups-libs-debuginfo-1.7.5-12.9.1cups-debugsource-1.7.5-12.9.1cups-ddk-1.7.5-12.9.1cups-client-debuginfo-1.7.5-12.9.1cups-1.7.5-12.9.1cups-devel-1.7.5-12.9.1cups-ddk-debuginfo-1.7.5-12.9.1

i586cups-libs-1.7.5-12.9.1cups-client-1.7.5-12.9.1cups-debuginfo-1.7.5-12.9.1cups-libs-debuginfo-1.7.5-12.9.1cups-debugsource-1.7.5-12.9.1cups-ddk-1.7.5-12.9.1cups-client-debuginfo-1.7.5-12.9.1cups-1.7.5-12.9.1cups-devel-1.7.5-12.9.1cups-ddk-debuginfo-1.7.5-12.9.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19409, CVE-2018-19475, CVE-2018-19476, CVE-2018-19477




SuSE Linux 42.3x86_64libspectre-debugsource-0.2.7-17.4.2ghostscript-mini-9.26-14.12.1ghostscript-x11-9.26-14.12.1libspectre-devel-0.2.7-17.4.2ghostscript-debuginfo-9.26-14.12.1ghostscript-devel-9.26-14.12.1libspectre1-0.2.7-17.4.2ghostscript-x11-debuginfo-9.26-14.12.1ghostscript-mini-debugsource-9.26-14.12.1ghostscript-9.26-14.12.1

ghostscript-debugsource-9.26-14.12.1ghostscript-mini-debuginfo-9.26-14.12.1ghostscript-mini-devel-9.26-14.12.1libspectre1-debuginfo-0.2.7-17.4.2

i586libspectre-debugsource-0.2.7-17.4.2ghostscript-mini-9.26-14.12.1ghostscript-x11-9.26-14.12.1libspectre-devel-0.2.7-17.4.2ghostscript-debuginfo-9.26-14.12.1ghostscript-devel-9.26-14.12.1libspectre1-0.2.7-17.4.2ghostscript-x11-debuginfo-9.26-14.12.1ghostscript-mini-debugsource-9.26-14.12.1ghostscript-9.26-14.12.1ghostscript-debugsource-9.26-14.12.1ghostscript-mini-debuginfo-9.26-14.12.1ghostscript-mini-devel-9.26-14.12.1libspectre1-debuginfo-0.2.7-17.4.2






SuSE Linux 15.0x86_64libcupscgi1-debuginfo-2.2.7-lp150.2.6.1libcupsppdc1-32bit-2.2.7-lp150.2.6.1cups-debugsource-2.2.7-lp150.2.6.1cups-2.2.7-lp150.2.6.1cups-devel-2.2.7-lp150.2.6.1cups-ddk-2.2.7-lp150.2.6.1cups-debuginfo-2.2.7-lp150.2.6.1libcupsimage2-2.2.7-lp150.2.6.1libcupsmime1-32bit-debuginfo-2.2.7-lp150.2.6.1cups-ddk-debuginfo-2.2.7-lp150.2.6.1libcupsimage2-32bit-debuginfo-2.2.7-lp150.2.6.1libcupsppdc1-32bit-debuginfo-2.2.7-lp150.2.6.1libcups2-debuginfo-2.2.7-lp150.2.6.1libcups2-32bit-2.2.7-lp150.2.6.1libcups2-32bit-debuginfo-2.2.7-lp150.2.6.1libcups2-2.2.7-lp150.2.6.1libcupsppdc1-2.2.7-lp150.2.6.1libcupsimage2-debuginfo-2.2.7-lp150.2.6.1libcupsmime1-32bit-2.2.7-lp150.2.6.1

cups-config-2.2.7-lp150.2.6.1cups-client-2.2.7-lp150.2.6.1libcupscgi1-32bit-debuginfo-2.2.7-lp150.2.6.1libcupscgi1-32bit-2.2.7-lp150.2.6.1libcupsmime1-debuginfo-2.2.7-lp150.2.6.1cups-devel-32bit-2.2.7-lp150.2.6.1libcupsimage2-32bit-2.2.7-lp150.2.6.1libcupscgi1-2.2.7-lp150.2.6.1libcupsmime1-2.2.7-lp150.2.6.1libcupsppdc1-debuginfo-2.2.7-lp150.2.6.1cups-client-debuginfo-2.2.7-lp150.2.6.1

i586cups-devel-2.2.7-lp150.2.6.1libcupsmime1-2.2.7-lp150.2.6.1cups-client-debuginfo-2.2.7-lp150.2.6.1libcupscgi1-debuginfo-2.2.7-lp150.2.6.1libcupsppdc1-2.2.7-lp150.2.6.1cups-config-2.2.7-lp150.2.6.1cups-debuginfo-2.2.7-lp150.2.6.1libcupsimage2-2.2.7-lp150.2.6.1cups-ddk-2.2.7-lp150.2.6.1cups-2.2.7-lp150.2.6.1cups-debugsource-2.2.7-lp150.2.6.1libcups2-debuginfo-2.2.7-lp150.2.6.1libcupscgi1-2.2.7-lp150.2.6.1libcupsppdc1-debuginfo-2.2.7-lp150.2.6.1libcupsmime1-debuginfo-2.2.7-lp150.2.6.1libcupsimage2-debuginfo-2.2.7-lp150.2.6.1libcups2-2.2.7-lp150.2.6.1cups-ddk-debuginfo-2.2.7-lp150.2.6.1cups-client-2.2.7-lp150.2.6.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-10851, CVE-2018-14626, CVE-2018-14644, CVE-2018-16855




SuSE Linux 15.0x86_64pdns-recursor-4.1.2-lp150.2.3.1pdns-recursor-debugsource-4.1.2-lp150.2.3.1pdns-recursor-debuginfo-4.1.2-lp150.2.3.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

Risk Level: HighCVE: CVE-2018-19519




SuSE Linux 15.0x86_64tcpdump-debuginfo-4.9.2-lp150.2.3.1tcpdump-4.9.2-lp150.2.3.1tcpdump-debugsource-4.9.2-lp150.2.3.1






SuSE Linux 15.0x86_64qemu-s390-2.11.2-lp150.7.15.1qemu-debuginfo-2.11.2-lp150.7.15.1qemu-block-iscsi-debuginfo-2.11.2-lp150.7.15.1qemu-ksm-2.11.2-lp150.7.15.1qemu-x86-debuginfo-2.11.2-lp150.7.15.1qemu-guest-agent-debuginfo-2.11.2-lp150.7.15.1qemu-x86-2.11.2-lp150.7.15.1qemu-extra-2.11.2-lp150.7.15.1qemu-linux-user-2.11.2-lp150.7.15.1qemu-block-ssh-debuginfo-2.11.2-lp150.7.15.1qemu-arm-debuginfo-2.11.2-lp150.7.15.1qemu-kvm-2.11.2-lp150.7.15.1qemu-block-curl-2.11.2-lp150.7.15.1qemu-lang-2.11.2-lp150.7.15.1qemu-ppc-2.11.2-lp150.7.15.1qemu-block-curl-debuginfo-2.11.2-lp150.7.15.1qemu-tools-2.11.2-lp150.7.15.1qemu-block-gluster-2.11.2-lp150.7.15.1qemu-block-rbd-debuginfo-2.11.2-lp150.7.15.1

qemu-arm-2.11.2-lp150.7.15.1qemu-linux-user-debuginfo-2.11.2-lp150.7.15.1qemu-guest-agent-2.11.2-lp150.7.15.1qemu-block-dmg-debuginfo-2.11.2-lp150.7.15.1qemu-block-iscsi-2.11.2-lp150.7.15.1qemu-block-dmg-2.11.2-lp150.7.15.1qemu-s390-debuginfo-2.11.2-lp150.7.15.1qemu-block-ssh-2.11.2-lp150.7.15.1qemu-block-gluster-debuginfo-2.11.2-lp150.7.15.1qemu-linux-user-debugsource-2.11.2-lp150.7.15.1qemu-block-rbd-2.11.2-lp150.7.15.1qemu-ppc-debuginfo-2.11.2-lp150.7.15.1qemu-debugsource-2.11.2-lp150.7.15.1qemu-extra-debuginfo-2.11.2-lp150.7.15.1qemu-testsuite-2.11.2-lp150.7.15.1qemu-2.11.2-lp150.7.15.1qemu-tools-debuginfo-2.11.2-lp150.7.15.1

noarchqemu-ipxe-1.0.0+-lp150.7.15.1qemu-vgabios-1.11.0-lp150.7.15.1qemu-sgabios-8-lp150.7.15.1qemu-seabios-1.11.0-lp150.7.15.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-10839, CVE-2018-15746, CVE-2018-17958, CVE-2018-17962, CVE-2018-17963, CVE-2018-18849




SuSE Linux 42.3i586qemu-linux-user-2.9.1-50.1qemu-linux-user-debugsource-2.9.1-50.1qemu-linux-user-debuginfo-2.9.1-50.1

noarchqemu-vgabios-1.10.2-50.1qemu-ipxe-1.0.0+-50.1qemu-sgabios-8-50.1qemu-seabios-1.10.2-50.1

x86_64qemu-block-rbd-2.9.1-50.1qemu-ppc-debuginfo-2.9.1-50.1qemu-x86-2.9.1-50.1qemu-arm-debuginfo-2.9.1-50.1qemu-linux-user-debugsource-2.9.1-50.1

qemu-kvm-2.9.1-50.1qemu-linux-user-2.9.1-50.1qemu-ksm-2.9.1-50.1qemu-block-ssh-debuginfo-2.9.1-50.1qemu-extra-debuginfo-2.9.1-50.1qemu-ppc-2.9.1-50.1qemu-block-ssh-2.9.1-50.1qemu-tools-debuginfo-2.9.1-50.1qemu-lang-2.9.1-50.1qemu-tools-2.9.1-50.1qemu-block-dmg-debuginfo-2.9.1-50.1qemu-block-dmg-2.9.1-50.1qemu-testsuite-2.9.1-50.1qemu-block-rbd-debuginfo-2.9.1-50.1qemu-guest-agent-debuginfo-2.9.1-50.1qemu-2.9.1-50.1qemu-block-curl-debuginfo-2.9.1-50.1qemu-x86-debuginfo-2.9.1-50.1qemu-linux-user-debuginfo-2.9.1-50.1qemu-arm-2.9.1-50.1qemu-s390-debuginfo-2.9.1-50.1qemu-block-iscsi-debuginfo-2.9.1-50.1qemu-debugsource-2.9.1-50.1qemu-guest-agent-2.9.1-50.1qemu-s390-2.9.1-50.1qemu-block-curl-2.9.1-50.1qemu-extra-2.9.1-50.1qemu-block-iscsi-2.9.1-50.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-17204, CVE-2018-17205, CVE-2018-17206




SuSE Linux 42.3x86_64openvswitch-debugsource-2.7.6-19.1openvswitch-devel-2.7.6-19.1openvswitch-ovn-docker-2.7.6-19.1openvswitch-test-debuginfo-2.7.6-19.1openvswitch-2.7.6-19.1openvswitch-ovn-vtep-debuginfo-2.7.6-19.1openvswitch-ovn-vtep-2.7.6-19.1python-openvswitch-2.7.6-19.1openvswitch-pki-2.7.6-19.1openvswitch-test-2.7.6-19.1openvswitch-ovn-central-debuginfo-2.7.6-19.1

openvswitch-ovn-common-debuginfo-2.7.6-19.1python-openvswitch-test-2.7.6-19.1openvswitch-ovn-central-2.7.6-19.1openvswitch-vtep-2.7.6-19.1openvswitch-ovn-host-debuginfo-2.7.6-19.1openvswitch-vtep-debuginfo-2.7.6-19.1openvswitch-debuginfo-2.7.6-19.1openvswitch-ovn-host-2.7.6-19.1openvswitch-ovn-common-2.7.6-19.1

i586openvswitch-debugsource-2.7.6-19.1openvswitch-devel-2.7.6-19.1openvswitch-ovn-docker-2.7.6-19.1openvswitch-test-debuginfo-2.7.6-19.1openvswitch-2.7.6-19.1openvswitch-ovn-vtep-debuginfo-2.7.6-19.1openvswitch-ovn-vtep-2.7.6-19.1python-openvswitch-2.7.6-19.1openvswitch-pki-2.7.6-19.1openvswitch-test-2.7.6-19.1openvswitch-ovn-central-debuginfo-2.7.6-19.1openvswitch-ovn-common-debuginfo-2.7.6-19.1python-openvswitch-test-2.7.6-19.1openvswitch-ovn-central-2.7.6-19.1openvswitch-vtep-2.7.6-19.1openvswitch-ovn-host-debuginfo-2.7.6-19.1openvswitch-vtep-debuginfo-2.7.6-19.1openvswitch-debuginfo-2.7.6-19.1openvswitch-ovn-host-2.7.6-19.1openvswitch-ovn-common-2.7.6-19.1

147456 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:4070-1 Update Is Not Installed





SuSE SLED 12 SP3x86_64xen-libs-debuginfo-32bit-4.9.3_03-3.47.1xen-debugsource-4.9.3_03-3.47.1xen-libs-4.9.3_03-3.47.1xen-libs-debuginfo-4.9.3_03-3.47.1xen-4.9.3_03-3.47.1xen-libs-32bit-4.9.3_03-3.47.1

SuSE SLES 12 SP3

x86_64xen-libs-debuginfo-32bit-4.9.3_03-3.47.1xen-tools-debuginfo-4.9.3_03-3.47.1xen-debugsource-4.9.3_03-3.47.1xen-tools-domU-4.9.3_03-3.47.1xen-libs-4.9.3_03-3.47.1xen-libs-debuginfo-4.9.3_03-3.47.1xen-tools-domU-debuginfo-4.9.3_03-3.47.1xen-doc-html-4.9.3_03-3.47.1xen-4.9.3_03-3.47.1xen-libs-32bit-4.9.3_03-3.47.1xen-tools-4.9.3_03-3.47.1

147457 - SuSE SLES 12 SP3 SUSE-SU-2018:4128-1 Update Is Not Installed





SuSE SLES 12 SP3x86_64openvswitch-debuginfo-2.7.6-3.23.1openvswitch-2.7.6-3.23.1openvswitch-debugsource-2.7.6-3.23.1






SuSE Linux 15.0x86_64kernel-kvmsmall-base-4.12.14-lp150.12.28.1kernel-default-debugsource-4.12.14-lp150.12.28.1kernel-vanilla-debugsource-4.12.14-lp150.12.28.1

kernel-kvmsmall-debuginfo-4.12.14-lp150.12.28.1kernel-vanilla-devel-debuginfo-4.12.14-lp150.12.28.1kernel-kvmsmall-devel-debuginfo-4.12.14-lp150.12.28.1kernel-kvmsmall-4.12.14-lp150.12.28.1kernel-vanilla-base-4.12.14-lp150.12.28.1kernel-kvmsmall-devel-4.12.14-lp150.12.28.1kernel-kvmsmall-base-debuginfo-4.12.14-lp150.12.28.1kernel-debug-debugsource-4.12.14-lp150.12.28.1kernel-obs-qa-4.12.14-lp150.12.28.1kernel-debug-base-debuginfo-4.12.14-lp150.12.28.1kernel-vanilla-4.12.14-lp150.12.28.1kernel-obs-build-debugsource-4.12.14-lp150.12.28.1kernel-default-base-4.12.14-lp150.12.28.1kernel-default-devel-debuginfo-4.12.14-lp150.12.28.1kernel-default-debuginfo-4.12.14-lp150.12.28.1kernel-default-devel-4.12.14-lp150.12.28.1kernel-debug-devel-4.12.14-lp150.12.28.1kernel-syms-4.12.14-lp150.12.28.1kernel-vanilla-base-debuginfo-4.12.14-lp150.12.28.1kernel-obs-build-4.12.14-lp150.12.28.1kernel-vanilla-devel-4.12.14-lp150.12.28.1kernel-debug-debuginfo-4.12.14-lp150.12.28.1kernel-kvmsmall-debugsource-4.12.14-lp150.12.28.1kernel-debug-4.12.14-lp150.12.28.1kernel-vanilla-debuginfo-4.12.14-lp150.12.28.1kernel-debug-base-4.12.14-lp150.12.28.1kernel-default-base-debuginfo-4.12.14-lp150.12.28.1kernel-default-4.12.14-lp150.12.28.1kernel-debug-devel-debuginfo-4.12.14-lp150.12.28.1

noarchkernel-docs-html-4.12.14-lp150.12.28.1kernel-docs-4.12.14-lp150.12.28.1kernel-source-vanilla-4.12.14-lp150.12.28.1kernel-source-4.12.14-lp150.12.28.1kernel-devel-4.12.14-lp150.12.28.1kernel-macros-4.12.14-lp150.12.28.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-MAP-NOMATCH




SuSE Linux 42.3x86_64kernel-debug-base-4.4.165-81.1kernel-obs-build-debugsource-4.4.165-81.1

kernel-vanilla-devel-4.4.165-81.1kernel-obs-build-4.4.165-81.1kernel-default-base-4.4.165-81.1kernel-debug-debuginfo-4.4.165-81.1kernel-default-debuginfo-4.4.165-81.1kernel-default-debugsource-4.4.165-81.1kernel-debug-devel-4.4.165-81.1kernel-vanilla-4.4.165-81.1kernel-debug-base-debuginfo-4.4.165-81.1kernel-obs-qa-4.4.165-81.1kernel-debug-4.4.165-81.1kernel-default-devel-4.4.165-81.1kernel-vanilla-base-debuginfo-4.4.165-81.1kernel-default-base-debuginfo-4.4.165-81.1kernel-vanilla-debugsource-4.4.165-81.1kernel-debug-debugsource-4.4.165-81.1kernel-syms-4.4.165-81.1kernel-vanilla-base-4.4.165-81.1kernel-vanilla-debuginfo-4.4.165-81.1kernel-debug-devel-debuginfo-4.4.165-81.1kernel-default-4.4.165-81.1

noarchkernel-source-vanilla-4.4.165-81.1kernel-docs-html-4.4.165-81.1kernel-macros-4.4.165-81.1kernel-docs-4.4.165-81.1kernel-docs-pdf-4.4.165-81.1kernel-devel-4.4.165-81.1kernel-source-4.4.165-81.1






SuSE SLED 12 SP3x86_64qemu-tools-2.9.1-6.22.3qemu-block-curl-2.9.1-6.22.3qemu-kvm-2.9.1-6.22.3qemu-2.9.1-6.22.3qemu-x86-2.9.1-6.22.3qemu-block-curl-debuginfo-2.9.1-6.22.3qemu-debugsource-2.9.1-6.22.3qemu-tools-debuginfo-2.9.1-6.22.3

noarchqemu-seabios-1.10.2-6.22.3qemu-vgabios-1.10.2-6.22.3qemu-sgabios-8-6.22.3qemu-ipxe-1.0.0+-6.22.3

SuSE SLES 12 SP3noarchqemu-seabios-1.10.2-6.22.3qemu-vgabios-1.10.2-6.22.3qemu-sgabios-8-6.22.3qemu-ipxe-1.0.0+-6.22.3

x86_64qemu-lang-2.9.1-6.22.3qemu-kvm-2.9.1-6.22.3qemu-tools-2.9.1-6.22.3qemu-block-rbd-debuginfo-2.9.1-6.22.3qemu-guest-agent-2.9.1-6.22.3qemu-block-ssh-debuginfo-2.9.1-6.22.3qemu-block-curl-debuginfo-2.9.1-6.22.3qemu-x86-debuginfo-2.9.1-6.22.3qemu-debugsource-2.9.1-6.22.3qemu-block-rbd-2.9.1-6.22.3qemu-guest-agent-debuginfo-2.9.1-6.22.3qemu-block-iscsi-2.9.1-6.22.3qemu-block-curl-2.9.1-6.22.3qemu-block-iscsi-debuginfo-2.9.1-6.22.3qemu-tools-debuginfo-2.9.1-6.22.3qemu-block-ssh-2.9.1-6.22.3qemu-2.9.1-6.22.3qemu-x86-2.9.1-6.22.3






SuSE Linux 15.0x86_64salt-syndic-2018.3.0-lp150.3.17.1python2-salt-2018.3.0-lp150.3.17.1salt-2018.3.0-lp150.3.17.1salt-minion-2018.3.0-lp150.3.17.1salt-doc-2018.3.0-lp150.3.17.1python3-salt-2018.3.0-lp150.3.17.1salt-master-2018.3.0-lp150.3.17.1

salt-ssh-2018.3.0-lp150.3.17.1salt-proxy-2018.3.0-lp150.3.17.1salt-api-2018.3.0-lp150.3.17.1salt-cloud-2018.3.0-lp150.3.17.1

noarchsalt-zsh-completion-2018.3.0-lp150.3.17.1salt-fish-completion-2018.3.0-lp150.3.17.1salt-bash-completion-2018.3.0-lp150.3.17.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19409, CVE-2018-19475, CVE-2018-19476, CVE-2018-19477




SuSE Linux 15.0x86_64ghostscript-devel-9.26-lp150.2.9.1libspectre1-0.2.8-lp150.2.6.2ghostscript-debugsource-9.26-lp150.2.9.1ghostscript-mini-devel-9.26-lp150.2.9.1libspectre-devel-0.2.8-lp150.2.6.2libspectre-debugsource-0.2.8-lp150.2.6.2ghostscript-mini-9.26-lp150.2.9.1ghostscript-9.26-lp150.2.9.1libspectre1-debuginfo-0.2.8-lp150.2.6.2ghostscript-x11-debuginfo-9.26-lp150.2.9.1ghostscript-x11-9.26-lp150.2.9.1ghostscript-mini-debugsource-9.26-lp150.2.9.1ghostscript-debuginfo-9.26-lp150.2.9.1ghostscript-mini-debuginfo-9.26-lp150.2.9.1

i586ghostscript-mini-9.26-lp150.2.9.1ghostscript-mini-debugsource-9.26-lp150.2.9.1ghostscript-debuginfo-9.26-lp150.2.9.1ghostscript-mini-debuginfo-9.26-lp150.2.9.1ghostscript-devel-9.26-lp150.2.9.1ghostscript-x11-debuginfo-9.26-lp150.2.9.1ghostscript-x11-9.26-lp150.2.9.1ghostscript-debugsource-9.26-lp150.2.9.1ghostscript-mini-devel-9.26-lp150.2.9.1ghostscript-9.26-lp150.2.9.1






SuSE SLES 11 SP4i586amanda-2.5.2.1-188.5.1

x86_64amanda-2.5.2.1-188.5.1






SuSE SLED 12 SP3x86_64libQt5Sql5-sqlite-5.6.2-6.15.2libQt5Sql5-5.6.2-6.15.2libQt5Sql5-mysql-5.6.2-6.15.2libQt5Sql5-postgresql-5.6.2-6.15.2libQt5OpenGL5-debuginfo-5.6.2-6.15.2libQt5Widgets5-debuginfo-5.6.2-6.15.2libQt5Network5-debuginfo-5.6.2-6.15.2libQt5Gui5-5.6.2-6.15.2libQt5Sql5-mysql-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-debuginfo-5.6.2-6.15.2libQt5Test5-5.6.2-6.15.2libQt5Core5-5.6.2-6.15.2libQt5Xml5-debuginfo-5.6.2-6.15.2libQt5PrintSupport5-debuginfo-5.6.2-6.15.2libqt5-qtbase-debugsource-5.6.2-6.15.2libQt5Sql5-sqlite-debuginfo-5.6.2-6.15.2libQt5Concurrent5-5.6.2-6.15.2

libQt5DBus5-5.6.2-6.15.2libQt5PrintSupport5-5.6.2-6.15.2libQt5Gui5-debuginfo-5.6.2-6.15.2libQt5Network5-5.6.2-6.15.2libQt5Core5-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-5.6.2-6.15.2libQt5Widgets5-5.6.2-6.15.2libQt5OpenGL5-5.6.2-6.15.2libQt5Concurrent5-debuginfo-5.6.2-6.15.2libQt5Xml5-5.6.2-6.15.2libQt5DBus5-debuginfo-5.6.2-6.15.2libQt5Sql5-postgresql-debuginfo-5.6.2-6.15.2libQt5Test5-debuginfo-5.6.2-6.15.2libQt5Sql5-debuginfo-5.6.2-6.15.2

SuSE SLED 12 SP4x86_64libQt5Sql5-sqlite-5.6.2-6.15.2libQt5Sql5-5.6.2-6.15.2libQt5Sql5-mysql-5.6.2-6.15.2libQt5Sql5-postgresql-5.6.2-6.15.2libQt5OpenGL5-debuginfo-5.6.2-6.15.2libQt5Widgets5-debuginfo-5.6.2-6.15.2libQt5Network5-debuginfo-5.6.2-6.15.2libQt5Gui5-5.6.2-6.15.2libQt5Sql5-mysql-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-debuginfo-5.6.2-6.15.2libQt5Test5-5.6.2-6.15.2libQt5Core5-5.6.2-6.15.2libQt5Xml5-debuginfo-5.6.2-6.15.2libQt5PrintSupport5-debuginfo-5.6.2-6.15.2libqt5-qtbase-debugsource-5.6.2-6.15.2libQt5Sql5-sqlite-debuginfo-5.6.2-6.15.2libQt5Concurrent5-5.6.2-6.15.2libQt5DBus5-5.6.2-6.15.2libQt5PrintSupport5-5.6.2-6.15.2libQt5Gui5-debuginfo-5.6.2-6.15.2libQt5Network5-5.6.2-6.15.2libQt5Core5-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-5.6.2-6.15.2libQt5Widgets5-5.6.2-6.15.2libQt5OpenGL5-5.6.2-6.15.2libQt5Concurrent5-debuginfo-5.6.2-6.15.2libQt5Xml5-5.6.2-6.15.2libQt5DBus5-debuginfo-5.6.2-6.15.2libQt5Sql5-postgresql-debuginfo-5.6.2-6.15.2libQt5Test5-debuginfo-5.6.2-6.15.2libQt5Sql5-debuginfo-5.6.2-6.15.2

SuSE SLES 12 SP4x86_64libQt5Sql5-sqlite-5.6.2-6.15.2libQt5Sql5-5.6.2-6.15.2libQt5Sql5-mysql-5.6.2-6.15.2libQt5Sql5-postgresql-5.6.2-6.15.2libQt5OpenGL5-debuginfo-5.6.2-6.15.2libQt5Widgets5-debuginfo-5.6.2-6.15.2libQt5Network5-debuginfo-5.6.2-6.15.2libQt5Gui5-5.6.2-6.15.2libQt5Sql5-mysql-debuginfo-5.6.2-6.15.2

libQt5Sql5-unixODBC-debuginfo-5.6.2-6.15.2libQt5Test5-5.6.2-6.15.2libQt5Core5-5.6.2-6.15.2libQt5Xml5-debuginfo-5.6.2-6.15.2libQt5PrintSupport5-debuginfo-5.6.2-6.15.2libqt5-qtbase-debugsource-5.6.2-6.15.2libQt5Sql5-sqlite-debuginfo-5.6.2-6.15.2libQt5Concurrent5-5.6.2-6.15.2libQt5DBus5-5.6.2-6.15.2libQt5PrintSupport5-5.6.2-6.15.2libQt5Gui5-debuginfo-5.6.2-6.15.2libQt5Network5-5.6.2-6.15.2libQt5Core5-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-5.6.2-6.15.2libQt5Widgets5-5.6.2-6.15.2libQt5OpenGL5-5.6.2-6.15.2libQt5Concurrent5-debuginfo-5.6.2-6.15.2libQt5Xml5-5.6.2-6.15.2libQt5DBus5-debuginfo-5.6.2-6.15.2libQt5Sql5-postgresql-debuginfo-5.6.2-6.15.2libQt5Test5-debuginfo-5.6.2-6.15.2libQt5Sql5-debuginfo-5.6.2-6.15.2

SuSE SLES 12 SP3x86_64libQt5Sql5-sqlite-5.6.2-6.15.2libQt5Sql5-5.6.2-6.15.2libQt5Sql5-mysql-5.6.2-6.15.2libQt5Sql5-postgresql-5.6.2-6.15.2libQt5OpenGL5-debuginfo-5.6.2-6.15.2libQt5Widgets5-debuginfo-5.6.2-6.15.2libQt5Network5-debuginfo-5.6.2-6.15.2libQt5Gui5-5.6.2-6.15.2libQt5Sql5-mysql-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-debuginfo-5.6.2-6.15.2libQt5Test5-5.6.2-6.15.2libQt5Core5-5.6.2-6.15.2libQt5Xml5-debuginfo-5.6.2-6.15.2libQt5PrintSupport5-debuginfo-5.6.2-6.15.2libqt5-qtbase-debugsource-5.6.2-6.15.2libQt5Sql5-sqlite-debuginfo-5.6.2-6.15.2libQt5Concurrent5-5.6.2-6.15.2libQt5DBus5-5.6.2-6.15.2libQt5PrintSupport5-5.6.2-6.15.2libQt5Gui5-debuginfo-5.6.2-6.15.2libQt5Network5-5.6.2-6.15.2libQt5Core5-debuginfo-5.6.2-6.15.2libQt5Sql5-unixODBC-5.6.2-6.15.2libQt5Widgets5-5.6.2-6.15.2libQt5OpenGL5-5.6.2-6.15.2libQt5Concurrent5-debuginfo-5.6.2-6.15.2libQt5Xml5-5.6.2-6.15.2libQt5DBus5-debuginfo-5.6.2-6.15.2libQt5Sql5-postgresql-debuginfo-5.6.2-6.15.2libQt5Test5-debuginfo-5.6.2-6.15.2libQt5Sql5-debuginfo-5.6.2-6.15.2



Risk Level: HighCVE: CVE-2018-19968, CVE-2018-19969, CVE-2018-19970




SuSE Linux 15.0noarchphpMyAdmin-4.8.4-lp150.2.12.1

SuSE Linux 42.3noarchphpMyAdmin-4.8.4-24.1






SuSE SLED 12 SP3x86_64tcpdump-4.9.2-14.8.1tcpdump-debugsource-4.9.2-14.8.1tcpdump-debuginfo-4.9.2-14.8.1

SuSE SLED 12 SP4x86_64tcpdump-4.9.2-14.8.1tcpdump-debugsource-4.9.2-14.8.1tcpdump-debuginfo-4.9.2-14.8.1

SuSE SLES 12 SP4x86_64tcpdump-4.9.2-14.8.1tcpdump-debugsource-4.9.2-14.8.1tcpdump-debuginfo-4.9.2-14.8.1

SuSE SLES 12 SP3x86_64

tcpdump-4.9.2-14.8.1tcpdump-debugsource-4.9.2-14.8.1tcpdump-debuginfo-4.9.2-14.8.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2017-11591, CVE-2017-11683, CVE-2017-14859, CVE-2017-14862, CVE-2017-14864, CVE-2017-17669, CVE-2018-10958, CVE-2018-10998, CVE-2018-11531




SuSE SLED 12 SP4x86_64exiv2-debuginfo-0.23-12.5.1libexiv2-12-debuginfo-0.23-12.5.1libexiv2-12-0.23-12.5.1exiv2-debugsource-0.23-12.5.1

SuSE SLES 12 SP4x86_64exiv2-debuginfo-0.23-12.5.1libexiv2-12-debuginfo-0.23-12.5.1libexiv2-12-0.23-12.5.1exiv2-debugsource-0.23-12.5.1






SuSE SLED 12 SP4x86_64postgresql10-debuginfo-10.6-1.6.1libecpg6-debuginfo-10.6-1.6.1libpq5-debuginfo-10.6-1.6.1

libpq5-10.6-1.6.1postgresql10-libs-debugsource-10.6-1.6.1postgresql10-10.6-1.6.1postgresql10-debugsource-10.6-1.6.1libpq5-debuginfo-32bit-10.6-1.6.1libpq5-32bit-10.6-1.6.1libecpg6-10.6-1.6.1

SuSE SLES 12 SP4noarchpostgresql10-docs-10.6-1.6.1

x86_64postgresql10-libs-debugsource-10.6-1.6.1postgresql10-debugsource-10.6-1.6.1libpq5-10.6-1.6.1libpq5-debuginfo-10.6-1.6.1libecpg6-10.6-1.6.1postgresql10-contrib-10.6-1.6.1postgresql10-server-10.6-1.6.1postgresql10-debuginfo-10.6-1.6.1postgresql10-contrib-debuginfo-10.6-1.6.1libecpg6-debuginfo-10.6-1.6.1postgresql10-server-debuginfo-10.6-1.6.1libpq5-32bit-10.6-1.6.1postgresql10-10.6-1.6.1libpq5-debuginfo-32bit-10.6-1.6.1

147473 - SuSE SLED 12 SP4 SUSE-SU-2018:3587-2 Update Is Not Installed





SuSE SLED 12 SP4x86_64libntfs-3g84-debuginfo-2013.1.13-5.3.1ntfs-3g-2013.1.13-5.3.1ntfs-3g-debuginfo-2013.1.13-5.3.1libntfs-3g84-2013.1.13-5.3.1ntfsprogs-debuginfo-2013.1.13-5.3.1ntfsprogs-2013.1.13-5.3.1ntfs-3g_ntfsprogs-debugsource-2013.1.13-5.3.1



Risk Level: HighCVE: CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19409, CVE-2018-19475, CVE-2018-19476, CVE-2018-19477




SuSE SLED 12 SP3x86_64ghostscript-x11-9.26-23.16.1ghostscript-debugsource-9.26-23.16.1libspectre1-debuginfo-0.2.7-12.4.1ghostscript-debuginfo-9.26-23.16.1libspectre1-0.2.7-12.4.1ghostscript-9.26-23.16.1libspectre-debugsource-0.2.7-12.4.1ghostscript-x11-debuginfo-9.26-23.16.1

SuSE SLED 12 SP4x86_64ghostscript-x11-9.26-23.16.1ghostscript-debugsource-9.26-23.16.1libspectre1-debuginfo-0.2.7-12.4.1ghostscript-debuginfo-9.26-23.16.1libspectre1-0.2.7-12.4.1ghostscript-9.26-23.16.1libspectre-debugsource-0.2.7-12.4.1ghostscript-x11-debuginfo-9.26-23.16.1

SuSE SLES 12 SP4x86_64ghostscript-x11-9.26-23.16.1ghostscript-debugsource-9.26-23.16.1libspectre1-debuginfo-0.2.7-12.4.1ghostscript-debuginfo-9.26-23.16.1libspectre1-0.2.7-12.4.1ghostscript-9.26-23.16.1libspectre-debugsource-0.2.7-12.4.1ghostscript-x11-debuginfo-9.26-23.16.1

SuSE SLES 12 SP3x86_64ghostscript-x11-9.26-23.16.1ghostscript-debugsource-9.26-23.16.1libspectre1-debuginfo-0.2.7-12.4.1ghostscript-debuginfo-9.26-23.16.1libspectre1-0.2.7-12.4.1ghostscript-9.26-23.16.1libspectre-debugsource-0.2.7-12.4.1ghostscript-x11-debuginfo-9.26-23.16.1






SuSE Linux 42.3x86_64xen-tools-domU-4.9.3_03-34.1xen-doc-html-4.9.3_03-34.1xen-tools-4.9.3_03-34.1xen-debugsource-4.9.3_03-34.1xen-libs-4.9.3_03-34.1xen-tools-debuginfo-4.9.3_03-34.1xen-tools-domU-debuginfo-4.9.3_03-34.1xen-4.9.3_03-34.1xen-libs-debuginfo-4.9.3_03-34.1xen-devel-4.9.3_03-34.1






SuSE Linux 42.3x86_64pdns-recursor-4.0.5-9.1pdns-recursor-debugsource-4.0.5-9.1pdns-recursor-debuginfo-4.0.5-9.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: High

CVE: CVE-2018-17456




SuSE SLES 12 SP3x86_64git-debugsource-2.12.3-27.17.2git-core-debuginfo-2.12.3-27.17.2git-core-2.12.3-27.17.2






CentOS 7i686ruby-libs-2.0.0.648-34.el7_6

noarchrubygems-devel-2.0.14.1-34.el7_6rubygem-rdoc-4.0.0-34.el7_6rubygem-minitest-4.3.2-34.el7_6ruby-irb-2.0.0.648-34.el7_6rubygems-2.0.14.1-34.el7_6rubygem-rake-0.9.6-34.el7_6ruby-doc-2.0.0.648-34.el7_6

x86_64rubygem-io-console-0.4.2-34.el7_6ruby-2.0.0.648-34.el7_6ruby-libs-2.0.0.648-34.el7_6ruby-devel-2.0.0.648-34.el7_6ruby-tcltk-2.0.0.648-34.el7_6rubygem-json-1.7.7-34.el7_6rubygem-psych-2.0.0-34.el7_6rubygem-bigdecimal-1.2.0-34.el7_6






CentOS 7x86_64git-svn-1.8.3.1-20.el7git-1.8.3.1-20.el7git-daemon-1.8.3.1-20.el7git-gnome-keyring-1.8.3.1-20.el7

noarchemacs-git-1.8.3.1-20.el7git-p4-1.8.3.1-20.el7git-gui-1.8.3.1-20.el7git-hg-1.8.3.1-20.el7git-all-1.8.3.1-20.el7perl-Git-1.8.3.1-20.el7git-instaweb-1.8.3.1-20.el7gitk-1.8.3.1-20.el7git-cvs-1.8.3.1-20.el7git-email-1.8.3.1-20.el7perl-Git-SVN-1.8.3.1-20.el7git-bzr-1.8.3.1-20.el7emacs-git-el-1.8.3.1-20.el7gitweb-1.8.3.1-20.el7






CentOS 7

i686NetworkManager-libnm-devel-1.12.0-8.el7_6NetworkManager-libnm-1.12.0-8.el7_6NetworkManager-glib-devel-1.12.0-8.el7_6NetworkManager-glib-1.12.0-8.el7_6

noarchNetworkManager-dispatcher-routing-rules-1.12.0-8.el7_6NetworkManager-config-server-1.12.0-8.el7_6

x86_64NetworkManager-ppp-1.12.0-8.el7_6NetworkManager-wifi-1.12.0-8.el7_6NetworkManager-team-1.12.0-8.el7_6NetworkManager-bluetooth-1.12.0-8.el7_6NetworkManager-glib-1.12.0-8.el7_6NetworkManager-glib-devel-1.12.0-8.el7_6NetworkManager-libnm-devel-1.12.0-8.el7_6NetworkManager-libnm-1.12.0-8.el7_6NetworkManager-ovs-1.12.0-8.el7_6NetworkManager-adsl-1.12.0-8.el7_6NetworkManager-tui-1.12.0-8.el7_6NetworkManager-wwan-1.12.0-8.el7_6NetworkManager-1.12.0-8.el7_6


Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-12389, CVE-2018-12390, CVE-2018-12392, CVE-2018-12393




CentOS 7x86_64thunderbird-60.3.0-1.el7.centos




Observation

Updates often remediate critical security problems that should be quickly addressed.For more information see:


CentOS 7i686ghostscript-9.07-31.el7_6.3ghostscript-devel-9.07-31.el7_6.3

noarchghostscript-doc-9.07-31.el7_6.3

x86_64ghostscript-gtk-9.07-31.el7_6.3ghostscript-devel-9.07-31.el7_6.3ghostscript-9.07-31.el7_6.3ghostscript-cups-9.07-31.el7_6.3






CentOS 7i686xorg-x11-server-devel-1.20.1-5.1.el7

noarchxorg-x11-server-source-1.20.1-5.1.el7

x86_64xorg-x11-server-Xvfb-1.20.1-5.1.el7xorg-x11-server-Xephyr-1.20.1-5.1.el7xorg-x11-server-Xnest-1.20.1-5.1.el7xorg-x11-server-Xwayland-1.20.1-5.1.el7xorg-x11-server-common-1.20.1-5.1.el7xorg-x11-server-Xorg-1.20.1-5.1.el7xorg-x11-server-devel-1.20.1-5.1.el7xorg-x11-server-Xdmx-1.20.1-5.1.el7

163775 - Oracle Enterprise Linux ELSA-2018-3834 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-15911, CVE-2018-16541, CVE-2018-16802, CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-

18284, CVE-2018-19134, CVE-2018-19409

DescriptionThe scan detected that the host is missing the following update:ELSA-2018-3834


http://oss.oracle.com/pipermail/el-errata/2018-December/008339.html

OEL7x86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-doc-9.07-31.el7_6.6ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6


Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-1000204, CVE-2018-10322, CVE-2018-10902, CVE-2018-10940, CVE-2018-1108, CVE-2018-1118, CVE-2018-1120, CVE-2018-13094, CVE-2018-16658, CVE-2018-18445, CVE-2018-18710, CVE-2018-5333, CVE-2018-5848, CVE-2018-7755, CVE-2018-8043




OEL7x86_64kernel-uek-devel-4.14.35-1818.5.4.el7uekkernel-uek-debug-devel-4.14.35-1818.5.4.el7uekkernel-uek-tools-4.14.35-1818.5.4.el7uekkernel-uek-4.14.35-1818.5.4.el7uekkernel-uek-doc-4.14.35-1818.5.4.el7uekkernel-uek-debug-4.14.35-1818.5.4.el7uek


Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-1000004, CVE-2018-18386, CVE-2018-8043

DescriptionThe scan detected that the host is missing the following update:

ELSA-2018-4307


http://oss.oracle.com/pipermail/el-errata/2018-December/008333.htmlhttp://oss.oracle.com/pipermail/el-errata/2018-December/008332.html

OEL7x86_64kernel-uek-firmware-4.1.12-124.23.2.el7uekkernel-uek-devel-4.1.12-124.23.2.el7uekkernel-uek-debug-devel-4.1.12-124.23.2.el7uekkernel-uek-4.1.12-124.23.2.el7uekkernel-uek-doc-4.1.12-124.23.2.el7uekkernel-uek-debug-4.1.12-124.23.2.el7uek

OEL6x86_64kernel-uek-4.1.12-124.23.2.el6uekkernel-uek-debug-devel-4.1.12-124.23.2.el6uekkernel-uek-firmware-4.1.12-124.23.2.el6uekkernel-uek-debug-4.1.12-124.23.2.el6uekkernel-uek-doc-4.1.12-124.23.2.el6uekkernel-uek-devel-4.1.12-124.23.2.el6uek

171051 - Amazon Linux AMI ALAS-2018-1130 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-16873, CVE-2018-16874, CVE-2018-16875

DescriptionThe scan detected that the host is missing the following update:ALAS-2018-1130


https://alas.aws.amazon.com/ALAS-2018-1130.html

Amazon Linux AMIi686golang-1.10.6-1.47.amzn1golang-bin-1.10.6-1.47.amzn1

noarchgolang-tests-1.10.6-1.47.amzn1golang-docs-1.10.6-1.47.amzn1golang-src-1.10.6-1.47.amzn1golang-misc-1.10.6-1.47.amzn1

x86_64golang-bin-1.10.6-1.47.amzn1golang-1.10.6-1.47.amzn1

golang-race-1.10.6-1.47.amzn1


Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-16843, CVE-2018-16844




Amazon Linux AMIx86_64nginx-debuginfo-1.14.1-2.34.amzn1nginx-mod-http-perl-1.14.1-2.34.amzn1nginx-mod-mail-1.14.1-2.34.amzn1nginx-all-modules-1.14.1-2.34.amzn1nginx-1.14.1-2.34.amzn1nginx-mod-http-xslt-filter-1.14.1-2.34.amzn1nginx-mod-http-geoip-1.14.1-2.34.amzn1nginx-mod-http-image-filter-1.14.1-2.34.amzn1nginx-mod-stream-1.14.1-2.34.amzn1

i686nginx-debuginfo-1.14.1-2.34.amzn1nginx-mod-http-perl-1.14.1-2.34.amzn1nginx-mod-stream-1.14.1-2.34.amzn1nginx-1.14.1-2.34.amzn1nginx-all-modules-1.14.1-2.34.amzn1nginx-mod-http-image-filter-1.14.1-2.34.amzn1nginx-mod-mail-1.14.1-2.34.amzn1nginx-mod-http-geoip-1.14.1-2.34.amzn1nginx-mod-http-xslt-filter-1.14.1-2.34.amzn1

175513 - Scientific Linux Security ERRATA Important: ghostscript on SL7.x x86_64 (1812-9988)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: HighCVE: CVE-2018-15911, CVE-2018-16541, CVE-2018-16802, CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19134, CVE-2018-19409

DescriptionThe scan detected that the host is missing the following update:Security ERRATA Important: ghostscript on SL7.x x86_64 (1812-9988)


https://listserv.fnal.gov/scripts/wa.exe?A2=ind1812&L=scientific-linux-errata&F=&S=&P=9988

SL7x86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-debuginfo-9.07-31.el7_6.6ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6


194599 - Fedora Linux 28 FEDORA-2018-ca03363d57 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2018-18311, CVE-2018-18312, CVE-2018-18313, CVE-2018-18314, CVE-2018-6797, CVE-2018-6798, CVE-2018-6913

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-ca03363d57


https://lists.fedoraproject.org/archives/list/[email protected]/2018/12/?count=200&page=3

Fedora Core 28

perl-5.26.3-415.fc28

196220 - Red Hat Enterprise Linux RHSA-2018-3834 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-15911, CVE-2018-16541, CVE-2018-16802, CVE-2018-17183, CVE-2018-17961, CVE-2018-18073, CVE-2018-18284, CVE-2018-19134, CVE-2018-19409

DescriptionThe scan detected that the host is missing the following update:RHSA-2018-3834


http://www.redhat.com/archives/rhsa-announce/2018-December/msg00031.html

RHEL7Dx86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-debuginfo-9.07-31.el7_6.6

ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6


RHEL7Snoarchghostscript-doc-9.07-31.el7_6.6

x86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-debuginfo-9.07-31.el7_6.6ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6

RHEL7WSx86_64ghostscript-gtk-9.07-31.el7_6.6ghostscript-9.07-31.el7_6.6ghostscript-debuginfo-9.07-31.el7_6.6ghostscript-devel-9.07-31.el7_6.6ghostscript-cups-9.07-31.el7_6.6



Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2017-11176, CVE-2017-15265, CVE-2017-8824




RHEL5i386kernel-debug-2.6.18-436.el5kernel-xen-debuginfo-2.6.18-436.el5kernel-PAE-devel-2.6.18-436.el5kernel-PAE-2.6.18-436.el5kernel-debuginfo-common-2.6.18-436.el5kernel-headers-2.6.18-436.el5kernel-debug-debuginfo-2.6.18-436.el5kernel-xen-2.6.18-436.el5kernel-PAE-debuginfo-2.6.18-436.el5kernel-xen-devel-2.6.18-436.el5kernel-devel-2.6.18-436.el5kernel-debug-devel-2.6.18-436.el5

kernel-2.6.18-436.el5kernel-debuginfo-2.6.18-436.el5

noarchkernel-doc-2.6.18-436.el5

x86_64kernel-debug-devel-2.6.18-436.el5kernel-debuginfo-common-2.6.18-436.el5kernel-debug-2.6.18-436.el5kernel-xen-debuginfo-2.6.18-436.el5kernel-headers-2.6.18-436.el5kernel-2.6.18-436.el5kernel-xen-2.6.18-436.el5kernel-debuginfo-2.6.18-436.el5kernel-debug-debuginfo-2.6.18-436.el5kernel-devel-2.6.18-436.el5kernel-xen-devel-2.6.18-436.el5

24538 - Omron CX-Supervisor Multiple Vulnerabilities (ICSA-18-290-01)

Category: Windows Host Assessment -> SCADA (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-17905, CVE-2018-17907, CVE-2018-17909, CVE-2018-17913

DescriptionMultiple vulnerabilities are present in some versions of Omron CX-Supervisor.

ObservationCX-Supervisor boasts powerful functions for a wide range of PC based HMI requirements.

Multiple vulnerabilities are present in some versions of Omron CX-Supervisor. The flaws lie in processing of project files. Successful exploitation could allow an attacker to execute remote code on the target system.

24547 - Google Chrome Multiple Vulnerabilities Prior To 71.0.3578.80

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-17480, CVE-2018-17481, CVE-2018-18335, CVE-2018-18336, CVE-2018-18337, CVE-2018-18338, CVE-2018-18339, CVE-2018-18340, CVE-2018-18341, CVE-2018-18342, CVE-2018-18343, CVE-2018-18344, CVE-2018-18345, CVE-2018-18346, CVE-2018-18347, CVE-2018-18348, CVE-2018-18349, CVE-2018-18350, CVE-2018-18351, CVE-2018-18352, CVE-2018-18353, CVE-2018-18354, CVE-2018-18355, CVE-2018-18356, CVE-2018-18357, CVE-2018-18358, CVE-2018-18359

DescriptionMultiple vulnerabilities are present in some versions of Google Chrome.

ObservationGoogle Chrome is a popular web browser.

Multiple vulnerabilities are present in some versions of Google Chrome. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code in the context of the browser, obtain sensitive information, conduct spoofing attacks, bypass security restrictions and perform unauthorized actions, or cause denial-of-service conditions.

24548 - Google Chrome Multiple Vulnerabilities Prior To 71.0.3578.80

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: MediumCVE: CVE-2018-17480, CVE-2018-17481, CVE-2018-18335, CVE-2018-18336, CVE-2018-18337, CVE-2018-18338, CVE-2018-18339, CVE-2018-18340, CVE-2018-18341, CVE-2018-18342, CVE-2018-18343, CVE-2018-18344, CVE-2018-18345, CVE-2018-18346, CVE-2018-18347, CVE-2018-18348, CVE-2018-18349, CVE-2018-18350, CVE-2018-18351, CVE-2018-18352, CVE-2018-18353, CVE-2018-18354, CVE-2018-18355, CVE-2018-18356, CVE-2018-18357, CVE-2018-18358, CVE-2018-18359

DescriptionMultiple vulnerabilities are present in some versions of Google Chrome.

ObservationGoogle Chrome is a popular web browser.

Multiple vulnerabilities are present in some versions of Google Chrome. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code in the context of the browser, obtain sensitive information, conduct spoofing attacks, bypass security restrictions and perform unauthorized actions, or cause denial-of-service conditions.

88993 - Slackware Linux 14.2 SSA:2018-345-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498

DescriptionThe scan detected that the host is missing the following update:SSA:2018-345-01


http://www.slackware.com/security/viewer.php?l=slackware-security&y=2018&m=slackware-security.401034

Slackware 14.2x86_64mozilla-firefox-60.4.0esr-x86_64-1

i686mozilla-firefox-60.4.0esr-i686-1

131260 - Debian Linux 9.0 DSA-4354-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498

DescriptionThe scan detected that the host is missing the following update:DSA-4354-1

ObservationUpdates often remediate critical security problems that should be quickly addressed.

For more information see:

http://www.debian.org/security/2018/dsa-4354

Debian 9.0allfirefox-esr_60.4.0esr-1~deb9u1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498




SuSE Linux 15.0x86_64MozillaFirefox-60.4.0-lp150.3.30.1MozillaFirefox-debuginfo-60.4.0-lp150.3.30.1MozillaFirefox-debugsource-60.4.0-lp150.3.30.1MozillaFirefox-translations-other-60.4.0-lp150.3.30.1MozillaFirefox-branding-upstream-60.4.0-lp150.3.30.1MozillaFirefox-buildsymbols-60.4.0-lp150.3.30.1MozillaFirefox-devel-60.4.0-lp150.3.30.1MozillaFirefox-translations-common-60.4.0-lp150.3.30.1

SuSE Linux 42.3x86_64MozillaFirefox-60.4.0-125.1MozillaFirefox-debugsource-60.4.0-125.1MozillaFirefox-translations-other-60.4.0-125.1MozillaFirefox-buildsymbols-60.4.0-125.1MozillaFirefox-branding-upstream-60.4.0-125.1MozillaFirefox-debuginfo-60.4.0-125.1MozillaFirefox-translations-common-60.4.0-125.1MozillaFirefox-devel-60.4.0-125.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2016-10092, CVE-2016-10093, CVE-2016-10094




SuSE SLES 11 SP4i586libtiff3-3.8.2-141.169.26.1tiff-3.8.2-141.169.26.1

x86_64libtiff3-3.8.2-141.169.26.1tiff-3.8.2-141.169.26.1libtiff3-32bit-3.8.2-141.169.26.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-17481




SuSE Linux 15.0x86_64chromium-debuginfo-71.0.3578.98-lp150.2.33.1chromedriver-71.0.3578.98-lp150.2.33.1chromium-71.0.3578.98-lp150.2.33.1chromium-debugsource-71.0.3578.98-lp150.2.33.1chromedriver-debuginfo-71.0.3578.98-lp150.2.33.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-17480, CVE-2018-17481, CVE-2018-18335, CVE-2018-18336, CVE-2018-18337, CVE-2018-18338, CVE-2018-18339, CVE-2018-18340, CVE-2018-18341, CVE-2018-18342, CVE-2018-18343, CVE-2018-18344, CVE-2018-18345, CVE-2018-18346, CVE-2018-18347, CVE-2018-18348, CVE-2018-18349, CVE-2018-18350, CVE-2018-18351, CVE-2018-18352, CVE-2018-18353, CVE-2018-18354, CVE-2018-18355, CVE-2018-18356, CVE-2018-18357, CVE-2018-18358, CVE-2018-18359


ObservationUpdates often remediate critical security problems that should be quickly addressed.

For more information see:


SuSE Linux 42.3x86_64chromedriver-debuginfo-71.0.3578.98-189.1chromium-71.0.3578.98-189.1chromedriver-71.0.3578.98-189.1chromium-debuginfo-71.0.3578.98-189.1chromium-debugsource-71.0.3578.98-189.1


Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2018-15908, CVE-2018-15909, CVE-2018-16511, CVE-2018-16539




CentOS 7i686ghostscript-devel-9.07-31.el7_6.1ghostscript-9.07-31.el7_6.1


x86_64ghostscript-9.07-31.el7_6.1ghostscript-gtk-9.07-31.el7_6.1ghostscript-cups-9.07-31.el7_6.1ghostscript-devel-9.07-31.el7_6.1


Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3150, CVE-2018-3169, CVE-2018-3180, CVE-2018-3183




CentOS 7x86_64java-11-openjdk-javadoc-debug-11.0.1.13-3.el7_6java-11-openjdk-jmods-11.0.1.13-3.el7_6java-11-openjdk-javadoc-zip-11.0.1.13-3.el7_6java-11-openjdk-headless-debug-11.0.1.13-3.el7_6java-11-openjdk-devel-11.0.1.13-3.el7_6java-11-openjdk-headless-11.0.1.13-3.el7_6java-11-openjdk-javadoc-11.0.1.13-3.el7_6java-11-openjdk-src-debug-11.0.1.13-3.el7_6java-11-openjdk-src-11.0.1.13-3.el7_6java-11-openjdk-demo-debug-11.0.1.13-3.el7_6java-11-openjdk-javadoc-zip-debug-11.0.1.13-3.el7_6java-11-openjdk-debug-11.0.1.13-3.el7_6java-11-openjdk-demo-11.0.1.13-3.el7_6java-11-openjdk-jmods-debug-11.0.1.13-3.el7_6java-11-openjdk-devel-debug-11.0.1.13-3.el7_6java-11-openjdk-11.0.1.13-3.el7_6

i686java-11-openjdk-javadoc-debug-11.0.1.13-3.el7_6java-11-openjdk-jmods-11.0.1.13-3.el7_6java-11-openjdk-javadoc-zip-11.0.1.13-3.el7_6java-11-openjdk-headless-debug-11.0.1.13-3.el7_6java-11-openjdk-devel-11.0.1.13-3.el7_6java-11-openjdk-headless-11.0.1.13-3.el7_6java-11-openjdk-javadoc-11.0.1.13-3.el7_6java-11-openjdk-src-debug-11.0.1.13-3.el7_6java-11-openjdk-src-11.0.1.13-3.el7_6java-11-openjdk-demo-debug-11.0.1.13-3.el7_6java-11-openjdk-javadoc-zip-debug-11.0.1.13-3.el7_6java-11-openjdk-debug-11.0.1.13-3.el7_6java-11-openjdk-demo-11.0.1.13-3.el7_6java-11-openjdk-jmods-debug-11.0.1.13-3.el7_6java-11-openjdk-devel-debug-11.0.1.13-3.el7_6java-11-openjdk-11.0.1.13-3.el7_6


Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3169, CVE-2018-3180, CVE-2018-3214




CentOS 7x86_64java-1.7.0-openjdk-headless-1.7.0.201-2.6.16.1.el7_6

java-1.7.0-openjdk-accessibility-1.7.0.201-2.6.16.1.el7_6java-1.7.0-openjdk-demo-1.7.0.201-2.6.16.1.el7_6java-1.7.0-openjdk-src-1.7.0.201-2.6.16.1.el7_6java-1.7.0-openjdk-devel-1.7.0.201-2.6.16.1.el7_6java-1.7.0-openjdk-1.7.0.201-2.6.16.1.el7_6

noarchjava-1.7.0-openjdk-javadoc-1.7.0.201-2.6.16.1.el7_6


Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498




OEL7x86_64firefox-60.4.0-1.0.1.el7

175512 - Scientific Linux Security ERRATA Critical: firefox on SL7.x x86_64 (1812-10475)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498

DescriptionThe scan detected that the host is missing the following update:Security ERRATA Critical: firefox on SL7.x x86_64 (1812-10475)



SL7x86_64firefox-debuginfo-60.4.0-1.el7firefox-60.4.0-1.el7

175514 - Scientific Linux Security ERRATA Critical: firefox on SL6.x i386/x86_64 (1812-10886)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498

DescriptionThe scan detected that the host is missing the following update:Security ERRATA Critical: firefox on SL6.x i386/x86_64 (1812-10886)



SL6x86_64firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6

i386firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498




RHEL6Dx86_64firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6


RHEL6Si386firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6

x86_64firefox-60.4.0-1.el6firefox-debuginfo-60.4.0-1.el6

RHEL6WSx86_64firefox-60.4.0-1.el6

firefox-debuginfo-60.4.0-1.el6



Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-12405, CVE-2018-17466, CVE-2018-18492, CVE-2018-18493, CVE-2018-18494, CVE-2018-18498




RHEL7Dx86_64firefox-debuginfo-60.4.0-1.el7firefox-60.4.0-1.el7

RHEL7Sx86_64firefox-debuginfo-60.4.0-1.el7firefox-60.4.0-1.el7

RHEL7WSx86_64firefox-debuginfo-60.4.0-1.el7firefox-60.4.0-1.el7


Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2017-15265




RHEL5_9Si386kernel-xen-devel-2.6.18-348.42.1.el5

kernel-PAE-devel-2.6.18-348.42.1.el5kernel-devel-2.6.18-348.42.1.el5kernel-headers-2.6.18-348.42.1.el5kernel-debuginfo-2.6.18-348.42.1.el5kernel-debug-devel-2.6.18-348.42.1.el5kernel-debug-2.6.18-348.42.1.el5kernel-PAE-debuginfo-2.6.18-348.42.1.el5kernel-debuginfo-common-2.6.18-348.42.1.el5kernel-xen-debuginfo-2.6.18-348.42.1.el5kernel-2.6.18-348.42.1.el5kernel-PAE-2.6.18-348.42.1.el5kernel-debug-debuginfo-2.6.18-348.42.1.el5kernel-xen-2.6.18-348.42.1.el5

noarchkernel-doc-2.6.18-348.42.1.el5

x86_64kernel-xen-devel-2.6.18-348.42.1.el5kernel-xen-debuginfo-2.6.18-348.42.1.el5kernel-xen-2.6.18-348.42.1.el5kernel-debuginfo-common-2.6.18-348.42.1.el5kernel-debug-devel-2.6.18-348.42.1.el5kernel-devel-2.6.18-348.42.1.el5kernel-headers-2.6.18-348.42.1.el5kernel-debuginfo-2.6.18-348.42.1.el5kernel-debug-debuginfo-2.6.18-348.42.1.el5kernel-2.6.18-348.42.1.el5kernel-debug-2.6.18-348.42.1.el5

24543 - IBM WebSphere Application Server Privilege Escalation Vulnerability (ibm10735767)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-1840



A vulnerability is present in some versions of IBM WebSphere Application Server. The flaw is in the configuration of security domain. Successful exploitation could allow an attacker to gain elevated privileges on the target system.





A vulnerability is present in some versions of IBM WebSphere Application Server. The flaw is due to the use of incorrect cache values. Successful exploitation could allow a remote attacker to escalate the privileges of the target system.

24554 - IBM WebSphere Application Server Liberty Vulnerability (ibm10738727)


DescriptionA vulnerability is present in some versions of IBM WebSphere Application Server Liberty.

ObservationIBM WebSphere Application Server Liberty is a server engine for Java EE Web applications.

A vulnerability is present in some versions of IBM WebSphere Application Server Liberty. The flaw is due to the use of incorrect cache values. Successful exploitation could allow a remote attacker to escalate the privileges of the target system.



DescriptionA Cross-site request forgery vulnerability is present in some versions of IBM WebSphere Application Server.


A Cross-site request forgery vulnerability is present in some versions of IBM WebSphere Application Server. The flaw is due to improper validation of user supplied input. Exploitation could allow a malicious user to conduct undesired actions on the target.


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2016-8610, CVE-2018-0734, CVE-2018-5407




SuSE Linux 42.3x86_64compat-openssl098-debugsource-0.9.8j-27.1libopenssl0_9_8-debuginfo-0.9.8j-27.1libopenssl0_9_8-32bit-0.9.8j-27.1libopenssl0_9_8-debuginfo-32bit-0.9.8j-27.1libopenssl0_9_8-0.9.8j-27.1

i586compat-openssl098-debugsource-0.9.8j-27.1libopenssl0_9_8-debuginfo-0.9.8j-27.1libopenssl0_9_8-0.9.8j-27.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2017-17740




SuSE SLED 12 SP3x86_64libldap-2_4-2-2.4.41-18.43.1openldap2-client-debuginfo-2.4.41-18.43.1libldap-2_4-2-32bit-2.4.41-18.43.1libldap-2_4-2-debuginfo-32bit-2.4.41-18.43.1openldap2-client-2.4.41-18.43.1libldap-2_4-2-debuginfo-2.4.41-18.43.1openldap2-debugsource-2.4.41-18.43.1openldap2-debuginfo-2.4.41-18.43.1

SuSE SLED 12 SP4x86_64libldap-2_4-2-2.4.41-18.43.1openldap2-client-debuginfo-2.4.41-18.43.1libldap-2_4-2-32bit-2.4.41-18.43.1libldap-2_4-2-debuginfo-32bit-2.4.41-18.43.1openldap2-client-2.4.41-18.43.1libldap-2_4-2-debuginfo-2.4.41-18.43.1openldap2-debugsource-2.4.41-18.43.1openldap2-debuginfo-2.4.41-18.43.1

SuSE SLES 12 SP4x86_64libldap-2_4-2-2.4.41-18.43.1openldap2-back-meta-2.4.41-18.43.1openldap2-client-debuginfo-2.4.41-18.43.1libldap-2_4-2-32bit-2.4.41-18.43.1

openldap2-client-2.4.41-18.43.1openldap2-back-meta-debuginfo-2.4.41-18.43.1libldap-2_4-2-debuginfo-32bit-2.4.41-18.43.1libldap-2_4-2-debuginfo-2.4.41-18.43.1openldap2-2.4.41-18.43.1openldap2-debugsource-2.4.41-18.43.1openldap2-debuginfo-2.4.41-18.43.1

SuSE SLES 12 SP3x86_64libldap-2_4-2-2.4.41-18.43.1openldap2-back-meta-2.4.41-18.43.1openldap2-client-debuginfo-2.4.41-18.43.1libldap-2_4-2-32bit-2.4.41-18.43.1openldap2-client-2.4.41-18.43.1openldap2-back-meta-debuginfo-2.4.41-18.43.1libldap-2_4-2-debuginfo-32bit-2.4.41-18.43.1libldap-2_4-2-debuginfo-2.4.41-18.43.1openldap2-2.4.41-18.43.1openldap2-debugsource-2.4.41-18.43.1openldap2-debuginfo-2.4.41-18.43.1


Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14650




CentOS 7noarchsos-collector-1.5-3.el7_6


Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and HotfixesRisk Level: MediumCVE: CVE-2018-11763




Amazon Linux AMIi686mod24_session-2.4.37-1.83.amzn1mod24_ssl-2.4.37-1.83.amzn1httpd24-tools-2.4.37-1.83.amzn1mod24_proxy_html-2.4.37-1.83.amzn1mod24_ldap-2.4.37-1.83.amzn1httpd24-devel-2.4.37-1.83.amzn1mod24_md-2.4.37-1.83.amzn1httpd24-debuginfo-2.4.37-1.83.amzn1httpd24-2.4.37-1.83.amzn1

noarchhttpd24-manual-2.4.37-1.83.amzn1

x86_64mod24_session-2.4.37-1.83.amzn1mod24_ssl-2.4.37-1.83.amzn1httpd24-tools-2.4.37-1.83.amzn1mod24_proxy_html-2.4.37-1.83.amzn1mod24_ldap-2.4.37-1.83.amzn1httpd24-devel-2.4.37-1.83.amzn1mod24_md-2.4.37-1.83.amzn1httpd24-debuginfo-2.4.37-1.83.amzn1httpd24-2.4.37-1.83.amzn1

178692 - Gentoo Linux GLSA-201812-08 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixesRisk Level: MediumCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:GLSA-201812-08


https://security.gentoo.org/glsa/201812-08

Affected packages: dev-lang/scala < 2.12.4






Affected packages: mail-filter/spamassassin < 3.4.2-r2






Affected packages: dev-db/couchdb <= 2.1.2

194591 - Fedora Linux 28 FEDORA-2018-66547a8c14 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14773, CVE-2018-14774, CVE-2018-19789, CVE-2018-19790

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-66547a8c14



Fedora Core 28

php-symfony3-3.4.20-1.fc28

194592 - Fedora Linux 28 FEDORA-2018-8c06b6defd Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-8c06b6defd



Fedora Core 28

php-symfony-2.8.49-1.fc28

194594 - Fedora Linux 28 FEDORA-2018-6edf04d9d6 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-6edf04d9d6



Fedora Core 28

php-symfony4-4.0.15-1.fc28

194596 - Fedora Linux 29 FEDORA-2018-cb410a3812 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-16056, CVE-2018-16057, CVE-2018-16058, CVE-2018-19622, CVE-2018-19623, CVE-2018-19624, CVE-2018-19625, CVE-2018-19626, CVE-2018-19627, CVE-2018-19628

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-cb410a3812



Fedora Core 29

wireshark-2.6.5-1.fc29

194583 - Fedora Linux 29 FEDORA-2018-2645eb8dab Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14625, CVE-2018-16862, CVE-2018-18710, CVE-2018-19407, CVE-2018-19824

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-2645eb8dab



Fedora Core 29

kernel-headers-4.19.9-300.fc29kernel-4.19.9-300.fc29

194597 - Fedora Linux 28 FEDORA-2018-1f6ca69276 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-0497, CVE-2018-19608

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-1f6ca69276



Fedora Core 28

mbedtls-2.14.1-1.fc28

24551 - (SB10258) McAfee Agent Use After Free Vulnerability

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: LowCVE: CVE-2018-6703

DescriptionA vulnerability is present in some versions of McAfee Agent.

ObservationMcAfee Agent is client software used to communicate with McAfee ePolicy Orchestrator.

A vulnerability is present in some versions of McAfee Agent. The flaw is due to improper handling of a specially crafted TCP packet. Successful exploitation could allow an attacker to cause a denial of service condition.

182866 - FreeBSD wordpress Multiple Issues (4b98613c-0078-11e9-b05b-00e04c1ea73d)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:wordpress -- multiple issues (4b98613c-0078-11e9-b05b-00e04c1ea73d)


http://www.vuxml.org/freebsd/4b98613c-0078-11e9-b05b-00e04c1ea73d.html

Affected packages: wordpress < 5.0.1,1fr-wordpress < 5.0.1,1de-wordpress < 5.0.1zh_CN-wordpress < 5.0.1zh_TW-wordpress < 5.0.1ja-wordpress < 5.0.1ru-wordpress < 5.0.1

182867 - FreeBSD Mbed TLS Local Timing Attack On RSA Decryption (293f40a0-ffa1-11e8-b258-0011d823eebd)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2018-19608

DescriptionThe scan detected that the host is missing the following update:Mbed TLS -- Local timing attack on RSA decryption (293f40a0-ffa1-11e8-b258-0011d823eebd)


http://www.vuxml.org/freebsd/293f40a0-ffa1-11e8-b258-0011d823eebd.html

Affected packages: mbedtls < 2.14.1

182868 - FreeBSD Gitlab Arbitrary File Read In GitLab Project Import With Git LFS (757e6ee8-ff91-11e8-a148-001b217b3468)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2018-20144

DescriptionThe scan detected that the host is missing the following update:Gitlab -- Arbitrary File read in GitLab project import with Git LFS (757e6ee8-ff91-11e8-a148-001b217b3468)


http://www.vuxml.org/freebsd/757e6ee8-ff91-11e8-a148-001b217b3468.html

Affected packages: 11.5.0 <= gitlab-ce < 11.5.411.4.0 <= gitlab-ce < 11.4.1111.0.0 <= gitlab-ce < 11.4.0

182869 - FreeBSD phpMyAdmin Multiple Vulnerabilities (ed10ed3f-fddc-11e8-94cf-6805ca0b3d42)


DescriptionThe scan detected that the host is missing the following update:phpMyAdmin -- multiple vulnerabilities (ed10ed3f-fddc-11e8-94cf-6805ca0b3d42)


http://www.vuxml.org/freebsd/ed10ed3f-fddc-11e8-94cf-6805ca0b3d42.html

Affected packages: phpMyAdmin < 4.8.4phpMyAdmin-php56 < 4.8.4phpMyAdmin-php70 < 4.8.4phpMyAdmin-php71 < 4.8.4phpMyAdmin-php72 < 4.8.4

182870 - FreeBSD typo3 Multiple Vulnerabilities (bab29816-ff93-11e8-b05b-00e04c1ea73d)


DescriptionThe scan detected that the host is missing the following update:typo3 -- multiple vulnerabilities (bab29816-ff93-11e8-b05b-00e04c1ea73d)


http://www.vuxml.org/freebsd/bab29816-ff93-11e8-b05b-00e04c1ea73d.html

Affected packages: typo3-8 < 8.7.21typo3-9 < 9.5.2

194579 - Fedora Linux 29 FEDORA-2018-09b23ed9e5 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-4700

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-09b23ed9e5



Fedora Core 29

cups-2.2.8-7.fc29

194580 - Fedora Linux 29 FEDORA-2018-571ea64f3d Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-19608

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-571ea64f3d



Fedora Core 29

mbedtls-2.14.1-1.fc29

194581 - Fedora Linux 29 FEDORA-2018-7ebfe1e6f2 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-19518, CVE-2018-19935

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-7ebfe1e6f2



Fedora Core 29

php-7.2.13-2.fc29

194582 - Fedora Linux 29 FEDORA-2018-b38a4dd0c7 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-19789, CVE-2018-19790

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-b38a4dd0c7



Fedora Core 29

php-symfony-2.8.49-1.fc29

194584 - Fedora Linux 29 FEDORA-2018-6189ba2d87 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes

Documents

MCAFEE FOUNDSTONE FSL UPDATE 2018-DEC-20 · Apple iOS is the operating system used by Apple iPhone, iPad, and iPod touch. Multiple vulnerabilities are present in some versions of