The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update.

oval:org.secpod.oval:def:23949 CVE-2015-0209, Use-after-free vulnerability in crypto/ec/ec_asn1.c in OpenSSL
oval:org.secpod.oval:def:23960 CVE-2015-0290, Denial of service vulnerability in s3_pkt.c in OpenSSL via unspecified vectors
oval:org.secpod.oval:def:23961 CVE-2015-0291, Denial of service vulnerability in t1_lib.c in OpenSSL
oval:org.secpod.oval:def:23962 CVE-2015-1787, Denial of service vulnerability in s3_srvr.c in OpenSSL via a ClientKeyExchange message with a length of zero
oval:org.secpod.oval:def:23963 CVE-2015-0285, Security bypass vulnerability in s3_clnt.c in OpenSSL
oval:org.secpod.oval:def:23951 cpe:/a:openssl:openssl:1.0.2::x64, OpenSSL 1.0.2 (64 bit) is installed
oval:org.secpod.oval:def:23950 cpe:/a:openssl:openssl:1.0.2::x86, OpenSSL 1.0.2 (32 bit) is installed
oval:org.secpod.oval:def:23952 CVE-2015-0286, Denial of service vulnerability in crypto/asn1/a_type.c in OpenSSL via a crafted X.509 certificate
oval:org.secpod.oval:def:23953 CVE-2015-0287, Denial of service vulnerability in crypto/asn1/tasn_dec.c in OpenSSL by leveraging an application that relies on ASN.1 structure reuse
oval:org.secpod.oval:def:23954 CVE-2015-0288, Denial of service vulnerability in crypto/x509/x509_req.c in OpenSSL via an invalid certificate key
oval:org.secpod.oval:def:23955 CVE-2015-0289, Denial of service vulnerability in the PKCS#7 implementation in OpenSSL
oval:org.secpod.oval:def:23956 CVE-2015-0293, Denial of service vulnerability in the SSLv2 implementation in OpenSSL
oval:org.secpod.oval:def:23957 CVE-2015-0292, Integer underflow vulnerability in the base64-decoding implementation in OpenSSL
oval:org.secpod.oval:def:23958 CVE-2015-0207, Denial of service vulnerability in d1_lib.c in OpenSSL via crafted DTLS traffic
oval:org.secpod.oval:def:23959 CVE-2015-0208, Denial of service vulnerability in crypto/rsa/rsa_ameth.c in OpenSSL via crafted RSA PSS parameters
oval:org.secpod.oval:def:23949 CVE-2014-8769,
tcpdump_advisory,
Vulnerability in AIX tcpdump
oval:org.secpod.oval:def:203574 CESA-2015:0715,
CVE-2015-0209,
CVE-2015-0286,
CVE-2015-0287,
CVE-2015-0288,
CVE-2015-0289,
CVE-2015-0292,
CVE-2015-0293,
CESA-2015:0715 — centos 6 openssl
oval:org.secpod.oval:def:108516 CVE-2014-8242,
FEDORA-2015-3366,
FEDORA-2015-3366 — Fedora 20 librsync-1.0.0-1.fc20
oval:org.secpod.oval:def:108518 FEDORA-2015-3471, FEDORA-2015-3471 — Fedora 21 freexl-1.0.0i-1.fc21
oval:org.secpod.oval:def:108520 CVE-2010-5298,
CVE-2013-4353,
CVE-2013-6449,
CVE-2013-6450,
CVE-2014-0160,
CVE-2014-0195,
CVE-2014-0198,
CVE-2014-0221,
CVE-2014-0224,
CVE-2014-3470,
CVE-2014-3505,
CVE-2014-3506,
CVE-2014-3507,
CVE-2014-3508,
CVE-2014-3509,
CVE-2014-3510,
CVE-2014-3511,
CVE-2014-3513,
CVE-2014-3566,
CVE-2014-3567,
CVE-2014-3570,
CVE-2014-3571,
CVE-2014-3572,
CVE-2014-8275,
CVE-2015-0204,
CVE-2015-0205,
CVE-2015-0206,
CVE-2015-0209,
CVE-2015-0286,
CVE-2015-0287,
CVE-2015-0288,
CVE-2015-0289,
CVE-2015-0292,
CVE-2015-0293,
FEDORA-2015-4300,
FEDORA-2015-4300 — Fedora 20 openssl-1.0.1e-42.fc20
oval:org.secpod.oval:def:108521 CVE-2014-8242,
FEDORA-2015-3366,
FEDORA-2015-3366 — Fedora 20 rdiff-backup-1.2.8-14.fc20
oval:org.secpod.oval:def:108523 CVE-2013-7262,
FEDORA-2014-17559,
FEDORA-2014-17559 — Fedora 20 mapserver-6.2.2-1.fc20
oval:org.secpod.oval:def:108525 CVE-2014-8133,
CVE-2014-8134,
CVE-2014-8159,
CVE-2014-8559,
CVE-2014-8989,
CVE-2014-9090,
CVE-2014-9419,
CVE-2014-9428,
CVE-2014-9529,
CVE-2014-9585,
CVE-2015-0239,
CVE-2015-0275,
CVE-2015-1421,
CVE-2015-1593,
CVE-2015-2042,
CVE-2015-2150,
FEDORA-2015-4059,
FEDORA-2015-4059 — Fedora 21 kernel-3.19.1-201.fc21
oval:org.secpod.oval:def:108526 CVE-2015-0209,
CVE-2015-0286,
CVE-2015-0287,
CVE-2015-0288,
CVE-2015-0289,
CVE-2015-0292,
CVE-2015-0293,
FEDORA-2015-4303,
FEDORA-2015-4303 — Fedora 21 openssl-1.0.1k-6.fc21
oval:org.secpod.oval:def:108527 CVE-2015-1802,
CVE-2015-1803,
CVE-2015-1804,
FEDORA-2015-4230,
FEDORA-2015-4230 — Fedora 21 libXfont-1.5.1-1.fc21
oval:org.secpod.oval:def:108528 CVE-2014-8242,
FEDORA-2015-3366,
FEDORA-2015-3366 — Fedora 20 csync2-1.34-15.fc20
oval:org.secpod.oval:def:108530 FEDORA-2015-4148, FEDORA-2015-4148 — Fedora 21 seamonkey-2.33-1.fc21
oval:org.secpod.oval:def:108531 CVE-2014-8242,
FEDORA-2015-3366,
FEDORA-2015-3366 — Fedora 20 duplicity-0.6.25-3.fc20
oval:org.secpod.oval:def:108533 CVE-2014-9637,
CVE-2015-1196,
FEDORA-2015-3556,
FEDORA-2015-3556 — Fedora 21 patch-2.7.5-1.fc21
oval:org.secpod.oval:def:108534 FEDORA-2015-3372, FEDORA-2015-3372 — Fedora 20 freexl-1.0.0i-1.fc20
oval:org.secpod.oval:def:108535 FEDORA-2015-3902, FEDORA-2015-3902 — Fedora 21 php-ZendFramework2-2.3.7-1.fc21
oval:org.secpod.oval:def:108536 CVE-2013-7262,
FEDORA-2014-17567,
FEDORA-2014-17567 — Fedora 21 mapserver-6.2.2-1.fc21
oval:org.secpod.oval:def:108537 CVE-2014-8242,
FEDORA-2015-3497,
FEDORA-2015-3497 — Fedora 21 rdiff-backup-1.2.8-14.fc21
oval:org.secpod.oval:def:108538 CVE-2015-1782,
FEDORA-2015-3797,
FEDORA-2015-3797 — Fedora 21 libssh2-1.5.0-1.fc21
oval:org.secpod.oval:def:108540 FEDORA-2015-3573, FEDORA-2015-3573 — Fedora 20 qt-creator-3.2.2-2.fc20
oval:org.secpod.oval:def:108542 CVE-2014-3591,
CVE-2015-0837,
FEDORA-2015-3489,
FEDORA-2015-3489 — Fedora 21 libgcrypt-1.6.3-1.fc21
oval:org.secpod.oval:def:108543 CVE-2013-2212,
CVE-2013-4553,
CVE-2013-4554,
CVE-2013-6375,
CVE-2013-6400,
CVE-2013-6885,
CVE-2014-0150,
CVE-2014-1642,
CVE-2014-1666,
CVE-2014-1891,
CVE-2014-1892,
CVE-2014-1893,
CVE-2014-1894,
CVE-2014-1895,
CVE-2014-1896,
CVE-2014-1950,
CVE-2014-2599,
CVE-2014-3124,
CVE-2014-3967,
CVE-2014-3968,
CVE-2014-4021,
CVE-2014-5146,
CVE-2014-7154,
CVE-2014-7155,
CVE-2014-7156,
CVE-2014-7188,
CVE-2014-8594,
CVE-2014-8595,
CVE-2014-8866,
CVE-2014-8867,
CVE-2014-9030,
CVE-2014-9065,
CVE-2015-0361,
CVE-2015-2044,
CVE-2015-2045,
CVE-2015-2151,
CVE-2015-2152,
FEDORA-2015-3721,
FEDORA-2015-3721 — Fedora 20 xen-4.3.3-12.fc20
oval:org.secpod.oval:def:108544 CVE-2014-8242,
FEDORA-2015-3497,
FEDORA-2015-3497 — Fedora 21 csync2-1.34-15.fc21
oval:org.secpod.oval:def:108545 CVE-2014-2681,
CVE-2014-2682,
CVE-2014-2683,
CVE-2014-2684,
CVE-2014-2685,
CVE-2014-8088,
CVE-2014-8089,
FEDORA-2015-3880,
FEDORA-2015-3880 — Fedora 20 php-ZendFramework2-2.3.7-1.fc20
oval:org.secpod.oval:def:108546 CVE-2014-0150,
CVE-2014-8594,
CVE-2014-8595,
CVE-2014-8866,
CVE-2014-8867,
CVE-2014-9030,
CVE-2014-9065,
CVE-2015-0361,
CVE-2015-1563,
CVE-2015-2044,
CVE-2015-2045,
CVE-2015-2151,
CVE-2015-2152,
FEDORA-2015-3944,
FEDORA-2015-3944 — Fedora 21 xen-4.4.1-16.fc21
oval:org.secpod.oval:def:108547 CVE-2014-8242,
FEDORA-2015-3497,
FEDORA-2015-3497 — Fedora 21 duplicity-0.6.25-3.fc21
oval:org.secpod.oval:def:108548 FEDORA-2015-4402, FEDORA-2015-4402 — Fedora 21 firefox-36.0.3-1.fc21
oval:org.secpod.oval:def:108549 FEDORA-2015-3574, FEDORA-2015-3574 — Fedora 21 qt-creator-3.3.2-2.fc21
oval:org.secpod.oval:def:108550 CVE-2014-6585,
CVE-2014-6591,
FEDORA-2015-3590,
FEDORA-2015-3590 — Fedora 20 icu-50.1.2-11.fc20
oval:org.secpod.oval:def:108551 CVE-2014-8242,
FEDORA-2015-3497,
FEDORA-2015-3497 — Fedora 21 librsync-1.0.0-1.fc21
oval:org.secpod.oval:def:501540 CVE-2015-0209,
CVE-2015-0286,
CVE-2015-0287,
CVE-2015-0288,
CVE-2015-0289,
CVE-2015-0292,
CVE-2015-0293,
RHSA-2015:0715-01,
RHSA-2015:0715-01 — Redhat openssl
oval:org.secpod.oval:def:501541 CVE-2015-0209,
CVE-2015-0286,
CVE-2015-0287,
CVE-2015-0288,
CVE-2015-0289,
CVE-2015-0292,
CVE-2015-0293,
RHSA-2015:0716-01,
RHSA-2015:0716-01 — Redhat openssl
oval:org.secpod.oval:def:1500952 CVE-2015-0209,
CVE-2015-0286,
CVE-2015-0287,
CVE-2015-0288,
CVE-2015-0289,
CVE-2015-0292,
CVE-2015-0293,
ELSA-2015-0716,
ELSA-2015-0716 — Oracle openssl
oval:org.secpod.oval:def:1500953 CVE-2015-0209,
CVE-2015-0286,
CVE-2015-0287,
CVE-2015-0288,
CVE-2015-0289,
CVE-2015-0292,
CVE-2015-0293,
ELSA-2015-0715,
ELSA-2015-0715 — Oracle openssl
oval:org.secpod.oval:def:501536 CVE-2014-3601,
CVE-2014-7822,
CVE-2014-8159,
CVE-2014-8160,
CVE-2014-8369,
RHSA-2015:0674-01,
RHSA-2015:0674-01 — Redhat kernel, perf
oval:org.secpod.oval:def:501537 CVE-2015-1349,
RHSA-2015:0672-01,
RHSA-2015:0672-01 — Redhat bind
oval:org.secpod.oval:def:501538 CVE-2014-8139,
CVE-2014-8140,
CVE-2014-8141,
CVE-2014-9636,
RHSA-2015:0700-01,
RHSA-2015:0700-01 — Redhat unzip
oval:org.secpod.oval:def:501539 CVE-2014-9657,
CVE-2014-9658,
CVE-2014-9660,
CVE-2014-9661,
CVE-2014-9663,
CVE-2014-9664,
CVE-2014-9667,
CVE-2014-9669,
CVE-2014-9670,
CVE-2014-9671,
CVE-2014-9673,
CVE-2014-9674,
CVE-2014-9675,
RHSA-2015:0696-01,
RHSA-2015:0696-01 — Redhat freetype
oval:org.secpod.oval:def:1500947 CVE-2014-3690,
CVE-2014-3940,
CVE-2014-7825,
CVE-2014-7826,
CVE-2014-8086,
CVE-2014-8160,
CVE-2014-8172,
CVE-2014-8173,
CVE-2014-8709,
CVE-2014-8884,
CVE-2015-0274,
ELSA-2015-0290,
ELSA-2015-0290 — Oracle kernel_python-perf_perf
oval:org.secpod.oval:def:1500948 CVE-2014-8139,
CVE-2014-8140,
CVE-2014-8141,
CVE-2014-9636,
ELSA-2015-0700,
ELSA-2015-0700 — Oracle unzip
oval:org.secpod.oval:def:1500949 CVE-2013-7421,
CVE-2014-3182,
CVE-2014-3186,
CVE-2014-3601,
CVE-2014-3610,
CVE-2014-3688,
CVE-2014-4027,
CVE-2014-4652,
CVE-2014-4656,
CVE-2014-5471,
CVE-2014-5472,
CVE-2014-6410,
CVE-2014-7826,
CVE-2014-7970,
CVE-2014-7975,
CVE-2014-8133,
CVE-2014-8134,
CVE-2014-8160,
CVE-2014-8173,
CVE-2014-8884,
CVE-2014-9090,
CVE-2014-9322,
CVE-2014-9644,
ELSA-2015-3012,
ELSA-2015-3012 — Oracle kernel-uek_dtrace-modules
oval:org.secpod.oval:def:1500950 CVE-2013-7421,
CVE-2014-3182,
CVE-2014-3186,
CVE-2014-3601,
CVE-2014-3610,
CVE-2014-3688,
CVE-2014-4027,
CVE-2014-4652,
CVE-2014-4656,
CVE-2014-5471,
CVE-2014-5472,
CVE-2014-6410,
CVE-2014-7826,
CVE-2014-7970,
CVE-2014-7975,
CVE-2014-8133,
CVE-2014-8134,
CVE-2014-8160,
CVE-2014-8173,
CVE-2014-8884,
CVE-2014-9090,
CVE-2014-9322,
CVE-2014-9644,
ELSA-2015-3012,
ELSA-2015-3012 — Oracle kernel-uek_dtrace-modules
oval:org.secpod.oval:def:1500951 CVE-2014-8139,
CVE-2014-8140,
CVE-2014-8141,
CVE-2014-9636,
ELSA-2015-0700,
ELSA-2015-0700 — Oracle unzip
oval:org.secpod.oval:def:203572 CESA-2015:0700,
CVE-2014-8139,
CVE-2014-8140,
CVE-2014-8141,
CVE-2014-9636,
CESA-2015:0700 — centos 6 unzip
oval:org.secpod.oval:def:203573 CESA-2015:0696,
CVE-2014-9657,
CVE-2014-9658,
CVE-2014-9660,
CVE-2014-9661,
CVE-2014-9663,
CVE-2014-9664,
CVE-2014-9667,
CVE-2014-9669,
CVE-2014-9670,
CVE-2014-9671,
CVE-2014-9673,
CVE-2014-9674,
CVE-2014-9675,
CESA-2015:0696 — centos 6 freetype
oval:org.secpod.oval:def:1500922 CVE-2014-9273,
ELSA-2015-0301,
ELSA-2015-0301 — Oracle hivex
oval:org.secpod.oval:def:1500923 CVE-2014-8964,
ELSA-2015-0330,
ELSA-2015-0330 — Oracle pcre
oval:org.secpod.oval:def:1500924 CVE-2014-0475,
CVE-2014-5119,
CVE-2014-6040,
CVE-2014-7817,
CVE-2014-8121,
CVE-2015-0235,
ELSA-2015-0327,
ELSA-2015-0327 — Oracle glibc
oval:org.secpod.oval:def:1500925 CVE-2014-2653,
CVE-2014-9278,
ELSA-2015-0425,
ELSA-2015-0425 — Oracle openssh
oval:org.secpod.oval:def:1500926 CVE-2014-3562,
CVE-2014-8105,
CVE-2014-8112,
ELSA-2015-0416,
ELSA-2015-0416 — Oracle 389-ds-base
oval:org.secpod.oval:def:1500927 CVE-2015-1349,
ELSA-2015-0672,
ELSA-2015-0672 — Oracle bind
oval:org.secpod.oval:def:1500928 CVE-2014-7822,
CVE-2014-8159,
CVE-2014-8160,
CVE-2014-8369,
ELSA-2015-0674,
ELSA-2015-0674 — Oracle kernel_python-perf_perf
oval:org.secpod.oval:def:1500929 CVE-2014-7300,
ELSA-2015-0535,
ELSA-2015-0535 — Oracle clutter_cogl_gnome-shell_mutter
oval:org.secpod.oval:def:1500930 CVE-2013-5704,
CVE-2014-3581,
ELSA-2015-0325,
ELSA-2015-0325 — Oracle httpd
oval:org.secpod.oval:def:1500931 CVE-2014-3633,
CVE-2014-3657,
CVE-2014-7823,
CVE-2014-8131,
CVE-2014-8136,
CVE-2015-0236,
ELSA-2015-0323,
ELSA-2015-0323 — Oracle libvirt
oval:org.secpod.oval:def:1500932 CVE-2013-1418,
CVE-2013-6800,
CVE-2014-4341,
CVE-2014-4342,
CVE-2014-4343,
CVE-2014-4344,
CVE-2014-4345,
CVE-2014-5352,
CVE-2014-5353,
CVE-2014-5354,
CVE-2014-9421,
CVE-2014-9422,
CVE-2014-9423,
ELSA-2015-0439,
ELSA-2015-0439 — Oracle krb5
oval:org.secpod.oval:def:1500933 CVE-2014-0247,
CVE-2014-3575,
CVE-2014-3693,
ELSA-2015-0377,
ELSA-2015-0377 — Oracle libabw_libcmis_libetonyek_libfreehand_liblangtag_libmwaw_libodfgen_libreoffice_mdds
oval:org.secpod.oval:def:1500935 CVE-2015-1349,
ELSA-2015-0672,
ELSA-2015-0672 — Oracle bind
oval:org.secpod.oval:def:1500936 CVE-2010-5312,
CVE-2012-6662,
CVE-2014-7828,
CVE-2014-7850,
ELSA-2015-0442,
ELSA-2015-0442 — Oracle ipa
oval:org.secpod.oval:def:1500937 CVE-2013-4148,
CVE-2013-4149,
CVE-2013-4150,
CVE-2013-4151,
CVE-2013-4527,
CVE-2013-4529,
CVE-2013-4535,
CVE-2013-4536,
CVE-2013-4541,
CVE-2013-4542,
CVE-2013-6399,
CVE-2014-0182,
CVE-2014-0222,
CVE-2014-0223,
CVE-2014-2894,
CVE-2014-3461,
CVE-2014-3615,
CVE-2014-3640,
CVE-2014-5263,
CVE-2014-7815,
CVE-2014-7840,
CVE-2014-8106,
ELSA-2015-0349,
ELSA-2015-0349 — Oracle qemu-kvm
oval:org.secpod.oval:def:1500938 CVE-2015-0822,
CVE-2015-0827,
CVE-2015-0831,
CVE-2015-0836,
ELSA-2015-0642,
ELSA-2015-0642 — Oracle thunderbird
oval:org.secpod.oval:def:1500939 CVE-2014-3601,
CVE-2014-7825,
CVE-2014-7826,
CVE-2014-8160,
CVE-2014-8173,
CVE-2014-8369,
CVE-2014-8884,
ELSA-2015-3013,
ELSA-2015-3013 — Oracle kernel-uek_dtrace-modules
oval:org.secpod.oval:def:1500941 CVE-2014-3601,
CVE-2014-7825,
CVE-2014-7826,
CVE-2014-8160,
CVE-2014-8173,
CVE-2014-8369,
CVE-2014-8884,
ELSA-2015-3013,
ELSA-2015-3013 — Oracle kernel-uek_dtrace-modules
oval:org.secpod.oval:def:1500942 CVE-2014-3601,
CVE-2014-7825,
CVE-2014-7826,
CVE-2014-8160,
CVE-2014-8173,
CVE-2014-8369,
CVE-2014-8709,
ELSA-2015-3014,
ELSA-2015-3014 — Oracle kernel-uek
oval:org.secpod.oval:def:1500943 CVE-2014-3601,
CVE-2014-7825,
CVE-2014-7826,
CVE-2014-8160,
CVE-2014-8173,
CVE-2014-8369,
CVE-2014-8709,
ELSA-2015-3014,
ELSA-2015-3014 — Oracle kernel-uek
oval:org.secpod.oval:def:1500945 CVE-2012-5669,
CVE-2014-9657,
CVE-2014-9658,
CVE-2014-9660,
CVE-2014-9661,
CVE-2014-9663,
CVE-2014-9664,
CVE-2014-9667,
CVE-2014-9669,
CVE-2014-9670,
CVE-2014-9671,
CVE-2014-9673,
CVE-2014-9674,
CVE-2014-9675,
ELSA-2015-0696,
ELSA-2015-0696 — Oracle freetype
oval:org.secpod.oval:def:1500946 CVE-2012-5669,
CVE-2014-9657,
CVE-2014-9658,
CVE-2014-9660,
CVE-2014-9661,
CVE-2014-9663,
CVE-2014-9664,
CVE-2014-9667,
CVE-2014-9669,
CVE-2014-9670,
CVE-2014-9671,
CVE-2014-9673,
CVE-2014-9674,
CVE-2014-9675,
ELSA-2015-0696,
ELSA-2015-0696 — Oracle freetype

Leave a Reply

Your email address will not be published. Required fields are marked *