SCAP Feed Release : 09-Dec-2017

  • Post author:
  • Reading time:67 mins read

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

oval:org.secpod.oval:def:204706 CESA-2017:3260
CVE-2017-14746
CVE-2017-15275
CESA-2017:3260 — centos 7 samba
oval:org.secpod.oval:def:204707 CESA-2017:3263
CVE-2017-1000257
CESA-2017:3263 — centos 7 curl
oval:org.secpod.oval:def:204708 CESA-2017:3270
CVE-2017-12613
CESA-2017:3270 — centos 6 apr
oval:org.secpod.oval:def:204709 CESA-2017:3269
CVE-2017-16844
CESA-2017:3269 — centos 7 procmail
oval:org.secpod.oval:def:204710 CESA-2017:3270
CVE-2017-12613
CESA-2017:3270 — centos 7 apr
oval:org.secpod.oval:def:204711 CESA-2017:3278
CVE-2017-14746
CVE-2017-15275
CESA-2017:3278 — centos 6 samba4
oval:org.secpod.oval:def:204712 CESA-2017:3372
CVE-2017-7826
CVE-2017-7828
CVE-2017-7830
CESA-2017:3372 — centos 6 thunderbird
oval:org.secpod.oval:def:204713 CESA-2017:3382
CVE-2017-7843
CESA-2017:3382 — centos 6 firefox
oval:org.secpod.oval:def:204714 CESA-2017:3379
CVE-2017-12173
CESA-2017:3379 — centos 7 sssd,libsss_autofs
oval:org.secpod.oval:def:204715 CESA-2017:3384
CVE-2014-8184
CVE-2017-15101
CESA-2017:3384 — centos 7 liblouis
oval:org.secpod.oval:def:204716 CESA-2017:3372
CVE-2017-7826
CVE-2017-7828
CVE-2017-7830
CESA-2017:3372 — centos 7 thunderbird
oval:org.secpod.oval:def:204717 CESA-2017:3368
CVE-2017-14167
CVE-2017-15289
CESA-2017:3368 — centos 7 qemu-kvm
oval:org.secpod.oval:def:204718 CESA-2017:3392
CVE-2017-10193
CVE-2017-10198
CVE-2017-10274
CVE-2017-10281
CVE-2017-10285
CVE-2017-10295
CVE-2017-10345
CVE-2017-10346
CVE-2017-10347
CVE-2017-10348
CVE-2017-10349
CVE-2017-10350
CVE-2017-10355
CVE-2017-10356
CVE-2017-10357
CVE-2017-10388
CESA-2017:3392 — centos 6 java-1.7.0-openjdk
oval:org.secpod.oval:def:204719 CESA-2017:3392
CVE-2017-10193
CVE-2017-10198
CVE-2017-10274
CVE-2017-10281
CVE-2017-10285
CVE-2017-10295
CVE-2017-10345
CVE-2017-10346
CVE-2017-10347
CVE-2017-10348
CVE-2017-10349
CVE-2017-10350
CVE-2017-10355
CVE-2017-10356
CVE-2017-10357
CVE-2017-10388
CESA-2017:3392 — centos 7 java-1.7.0-openjdk
oval:org.secpod.oval:def:204720 CESA-2017:3315
CVE-2017-1000380
CESA-2017:3315 — centos 7 kernel,python-perf,perf
oval:org.secpod.oval:def:204721 CESA-2017:3382
CVE-2017-7843
CESA-2017:3382 — centos 7 firefox
oval:org.secpod.oval:def:43057 CVE-2017-15407 Out of bounds write vulnerability in the QUIC in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43058 CVE-2017-15408 Heap buffer overflow vulnerability in the PDFium in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43059 CVE-2017-15409 Out of bounds write vulnerability in the Skia in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43060 CVE-2017-15410 Use after free vulnerability in the PDFium in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43061 CVE-2017-15411 Use after free vulnerability in the PDFium in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43062 CVE-2017-15412 Use after free vulnerability in the libXML in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43063 CVE-2017-15413 Type confusion vulnerability in the WebAssembly in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43064 CVE-2017-15415 Pointer information disclosure vulnerability in the IPC call in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43065 CVE-2017-15416 Out of bounds read vulnerability in the Blink in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43066 CVE-2017-15417 Cross origin information disclosure vulnerability in the Skia in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43067 CVE-2017-15418 Use of uninitialized value vulnerability in the Skia in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43068 CVE-2017-15419 Cross origin leak of redirect URL vulnerability in the Blink in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43069 CVE-2017-15420 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43070 CVE-2017-15422 Integer overflow vulnerability in the ICU in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43071 CVE-2017-15423 SPAKE implementation vulnerability in the BoringSSL in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43072 CVE-2017-15424 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43073 CVE-2017-15425 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43074 CVE-2017-15426 URL Spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43075 CVE-2017-15427 Insufficient blocking of JavaScript vulnerability in the Omnibox in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43076 CVE-2017-15407
CVE-2017-15408
CVE-2017-15409
CVE-2017-15410
CVE-2017-15411
CVE-2017-15412
CVE-2017-15413
CVE-2017-15415
CVE-2017-15416
CVE-2017-15417
CVE-2017-15418
CVE-2017-15419
CVE-2017-15420
CVE-2017-15422
CVE-2017-15423
CVE-2017-15424
CVE-2017-15425
CVE-2017-15426
CVE-2017-15427
VENDORLINK
Multiple vulnerabilities in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:43077 CVE-2017-15407 Out of bounds write vulnerability in the QUIC in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43078 CVE-2017-15407 Out of bounds write vulnerability in the QUIC in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43079 CVE-2017-15408 Heap buffer overflow vulnerability in the PDFium in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43080 CVE-2017-15408 Heap buffer overflow vulnerability in the PDFium in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43081 CVE-2017-15409 Out of bounds write vulnerability in the Skia in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43082 CVE-2017-15409 Out of bounds write vulnerability in the Skia in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43083 CVE-2017-15410 Use after free vulnerability in the PDFium in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43084 CVE-2017-15410 Use after free vulnerability in the PDFium in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43085 CVE-2017-15411 Use after free vulnerability in the PDFium in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43086 CVE-2017-15411 Use after free vulnerability in the PDFium in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43087 CVE-2017-15412 Use after free vulnerability in the libXML in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43088 CVE-2017-15412 Use after free vulnerability in the libXML in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43089 CVE-2017-15413 Type confusion vulnerability in the WebAssembly in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43090 CVE-2017-15413 Type confusion vulnerability in the WebAssembly in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43091 CVE-2017-15415 Pointer information disclosure vulnerability in the IPC call in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43092 CVE-2017-15415 Pointer information disclosure vulnerability in the IPC call in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43093 CVE-2017-15416 Out of bounds read vulnerability in the Blink in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43094 CVE-2017-15416 Out of bounds read vulnerability in the Blink in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43095 CVE-2017-15417 Cross origin information disclosure vulnerability in the Skia in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43096 CVE-2017-15417 Cross origin information disclosure vulnerability in the Skia in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43097 CVE-2017-15418 Use of uninitialized value vulnerability in the Skia in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43098 CVE-2017-15418 Use of uninitialized value vulnerability in the Skia in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43099 CVE-2017-15419 Cross origin leak of redirect URL vulnerability in the Blink in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43100 CVE-2017-15419 Cross origin leak of redirect URL vulnerability in the Blink in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43101 CVE-2017-15420 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43102 CVE-2017-15420 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43103 CVE-2017-15422 Integer overflow vulnerability in the ICU in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43104 CVE-2017-15422 Integer overflow vulnerability in the ICU in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43105 CVE-2017-15423 SPAKE implementation vulnerability in the BoringSSL in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43106 CVE-2017-15423 SPAKE implementation vulnerability in the BoringSSL in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43107 CVE-2017-15424 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43108 CVE-2017-15424 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43109 CVE-2017-15425 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43110 CVE-2017-15425 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43111 CVE-2017-15426 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43112 CVE-2017-15426 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43113 CVE-2017-15427 Insufficient blocking of JavaScript vulnerability in the Omnibox in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43114 CVE-2017-15427 Insufficient blocking of JavaScript vulnerability in the Omnibox in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43115 CVE-2017-15407
CVE-2017-15408
CVE-2017-15409
CVE-2017-15410
CVE-2017-15411
CVE-2017-15412
CVE-2017-15413
CVE-2017-15415
CVE-2017-15416
CVE-2017-15417
CVE-2017-15418
CVE-2017-15419
CVE-2017-15420
CVE-2017-15422
CVE-2017-15423
CVE-2017-15424
CVE-2017-15425
CVE-2017-15426
CVE-2017-15427
VENDORLINK
Multiple vulnerabilities in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:43116 CVE-2017-15407
CVE-2017-15408
CVE-2017-15409
CVE-2017-15410
CVE-2017-15411
CVE-2017-15412
CVE-2017-15413
CVE-2017-15415
CVE-2017-15416
CVE-2017-15417
CVE-2017-15418
CVE-2017-15419
CVE-2017-15420
CVE-2017-15422
CVE-2017-15423
CVE-2017-15424
CVE-2017-15425
CVE-2017-15426
CVE-2017-15427
VENDORLINK
Multiple vulnerabilities in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:43117 CVE-2017-15407 Out of bounds write vulnerability in the QUIC in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43118 CVE-2017-15408 Heap buffer overflow vulnerability in the PDFium in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43119 CVE-2017-15409 Out of bounds write vulnerability in the Skia in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43120 CVE-2017-15410 Use after free vulnerability in the PDFium in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43121 CVE-2017-15411 Use after free vulnerability in the PDFium in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43122 CVE-2017-15412 Use after free vulnerability in the libXML in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43123 CVE-2017-15413 Type confusion vulnerability in the WebAssembly in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43124 CVE-2017-15415 Pointer information disclosure vulnerability in the IPC call in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43125 CVE-2017-15416 Out of bounds read vulnerability in the Blink in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43126 CVE-2017-15417 Cross origin information disclosure vulnerability in the Skia in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43127 CVE-2017-15418 Use of uninitialized value vulnerability in the Skia in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43128 CVE-2017-15419 Cross origin leak of redirect URL vulnerability in the Blink in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43129 CVE-2017-15420 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43130 CVE-2017-15422 Integer overflow vulnerability in the ICU in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43131 CVE-2017-15423 SPAKE implementation vulnerability in the BoringSSL in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43132 CVE-2017-15424 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43133 CVE-2017-15425 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43134 CVE-2017-15426 URL spoofing vulnerability in the Omnibox in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43135 CVE-2017-15427 Insufficient blocking of JavaScript vulnerability in the Omnibox in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43136 CVE-2017-15407
CVE-2017-15408
CVE-2017-15409
CVE-2017-15410
CVE-2017-15411
CVE-2017-15412
CVE-2017-15413
CVE-2017-15415
CVE-2017-15416
CVE-2017-15417
CVE-2017-15418
CVE-2017-15419
CVE-2017-15420
CVE-2017-15422
CVE-2017-15423
CVE-2017-15424
CVE-2017-15425
CVE-2017-15426
CVE-2017-15427
VENDORLINK
Multiple vulnerabilities in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:43137 CVE-2017-11937 Microsoft Malware Protection Engine remote code execution vulnerability – CVE-2017-11937
oval:org.secpod.oval:def:502207 CVE-2017-10193
CVE-2017-10198
CVE-2017-10274
CVE-2017-10281
CVE-2017-10285
CVE-2017-10295
CVE-2017-10345
CVE-2017-10346
CVE-2017-10347
CVE-2017-10348
CVE-2017-10349
CVE-2017-10350
CVE-2017-10355
CVE-2017-10356
CVE-2017-10357
CVE-2017-10388
RHSA-2017:3392-01
RHSA-2017:3392-01 — Redhat java-1.7.0-openjdk
oval:org.secpod.oval:def:603172 CVE-2017-8807
DSA-4034-1
DSA-4034-1 varnish — varnish
oval:org.secpod.oval:def:603173 CVE-2017-8808
CVE-2017-8809
CVE-2017-8810
CVE-2017-8811
CVE-2017-8812
CVE-2017-8814
CVE-2017-8815
DSA-4036-1
DSA-4036-1 mediawiki — mediawiki
oval:org.secpod.oval:def:603174 CVE-2017-7826
CVE-2017-7828
CVE-2017-7830
DSA-4035-1
DSA-4035-1 firefox-esr — firefox-esr
oval:org.secpod.oval:def:603175 CVE-2017-16853
DSA-4039-1
DSA-4039-1 opensaml2 — opensaml2
oval:org.secpod.oval:def:603176 CVE-2017-16852
DSA-4038-1
DSA-4038-1 shibboleth-sp2 — shibboleth-sp2
oval:org.secpod.oval:def:603177 CVE-2017-15095
CVE-2017-7525
DSA-4037-1
DSA-4037-1 jackson-databind — jackson-databind
oval:org.secpod.oval:def:603178 CVE-2017-11352
CVE-2017-11640
CVE-2017-12431
CVE-2017-12640
CVE-2017-12877
CVE-2017-12983
CVE-2017-13134
CVE-2017-13139
CVE-2017-13144
CVE-2017-13758
CVE-2017-13769
CVE-2017-14224
CVE-2017-14607
CVE-2017-14682
CVE-2017-14989
CVE-2017-15277
CVE-2017-16546
DSA-4040-1
DSA-4040-1 imagemagick — imagemagick
oval:org.secpod.oval:def:603179 CVE-2017-16844
DSA-4041-1
DSA-4041-1 procmail — procmail
oval:org.secpod.oval:def:603180 CVE-2017-10672
DSA-4042-1
DSA-4042-1 libxml-libxml-perl — libxml-libxml-perl
oval:org.secpod.oval:def:603181 CVE-2017-10699
CVE-2017-9300
DSA-4045-1
DSA-4045-1 vlc — vlc
oval:org.secpod.oval:def:603182 CVE-2017-16613
DSA-4044-1
DSA-4044-1 swauth — swauth
oval:org.secpod.oval:def:603183 CVE-2017-14746
CVE-2017-15275
DSA-4043-1
DSA-4043-1 samba — samba
oval:org.secpod.oval:def:603184 CVE-2017-8028
DSA-4046-1
DSA-4046-1 libspring-ldap-java — libspring-ldap-java
oval:org.secpod.oval:def:603185 CVE-2017-10274
CVE-2017-10281
CVE-2017-10285
CVE-2017-10295
CVE-2017-10345
CVE-2017-10346
CVE-2017-10347
CVE-2017-10348
CVE-2017-10349
CVE-2017-10350
CVE-2017-10355
CVE-2017-10356
CVE-2017-10357
CVE-2017-10388
DSA-4048-1
DSA-4048-1 openjdk-7 — openjdk-7
oval:org.secpod.oval:def:603186 CVE-2017-15864
CVE-2017-16664
DSA-4047-1
DSA-4047-1 otrs2 — otrs2
oval:org.secpod.oval:def:603187 CVE-2017-15186
CVE-2017-15672
CVE-2017-16840
DSA-4049-1
DSA-4049-1 ffmpeg — ffmpeg
oval:org.secpod.oval:def:603188 CVE-2017-14316
CVE-2017-14317
CVE-2017-14318
CVE-2017-14319
CVE-2017-15588
CVE-2017-15589
CVE-2017-15590
CVE-2017-15592
CVE-2017-15593
CVE-2017-15594
CVE-2017-15595
CVE-2017-15597
DSA-4050-1
DSA-4050-1 xen — xen
oval:org.secpod.oval:def:603189 CVE-2017-8816
CVE-2017-8817
DSA-4051-1
DSA-4051-1 curl — curl
oval:org.secpod.oval:def:603190 CVE-2017-14176
DSA-4052-1
DSA-4052-1 bzr — bzr
oval:org.secpod.oval:def:603191 CVE-2017-16943
CVE-2017-16944
DSA-4053-1
DSA-4053-1 exim4 — exim4
oval:org.secpod.oval:def:603195 CVE-2017-8819
CVE-2017-8820
CVE-2017-8821
CVE-2017-8822
CVE-2017-8823
DSA-4054-1
DSA-4054-1 tor — tor
oval:org.secpod.oval:def:703918 CVE-2017-13080
CVE-2017-13081
USN-3505-1
USN-3505-1 — linux-image

 

Share this article