SCAP Feed Release: 27-Apr-2016

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update.

oval:org.secpod.oval:def:34123 CVE-2016-0678, Unspecified vulnerability in the Oracle VM VirtualBox via vectors related to core – CVE-2016-0678
oval:org.secpod.oval:def:34134 CVE-2016-4085, Stack-based buffer overflow vulnerability in the NCP dissector in Wireshark via a long string in a packet
oval:org.secpod.oval:def:34125 CVE-2016-4076, Denial of service vulnerability in the NCP dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34124 CVE-2016-4006, Denial of service vulnerability in the epan/proto.c in Wireshark via a crafted packet
oval:org.secpod.oval:def:34133 CVE-2016-4084, Denial of service vulnerability in the MS-WSP dissector in Wireshark via a crafted packet that triggers an unexpected array size
oval:org.secpod.oval:def:34132 CVE-2016-4083, Denial of service vulnerability in the MS-WSP dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34131 CVE-2016-4082, Denial of service vulnerability in the GSM CBCH dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34130 CVE-2016-4081, Denial of service vulnerability in the IAX2 dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34129 CVE-2016-4080, Denial of service vulnerability in the PKTC dissector in Wireshark via a crafted packet – CVE-2016-4080
oval:org.secpod.oval:def:34128 CVE-2016-4079, Denial of service vulnerability in the PKTC dissector in Wireshark via a crafted packet – CVE-2016-4079
oval:org.secpod.oval:def:34127 CVE-2016-4078, Denial of service vulnerability in the IEEE 802.11 dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34126 CVE-2016-4077, Denial of service vulnerability in the TShark in Wireshark via a crafted packet
oval:org.secpod.oval:def:34145 CVE-2016-4085, Stack-based buffer overflow vulnerability in the NCP dissector in Wireshark via a long string in a packet
oval:org.secpod.oval:def:34136 CVE-2016-4076, Denial of service vulnerability in the NCP dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34135 CVE-2016-4006, Denial of service vulnerability in the epan/proto.c in Wireshark via a crafted packet
oval:org.secpod.oval:def:34144 CVE-2016-4084, Denial of service vulnerability in the MS-WSP dissector in Wireshark via a crafted packet that triggers an unexpected array size
oval:org.secpod.oval:def:34143 CVE-2016-4083, Denial of service vulnerability in the MS-WSP dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34142 CVE-2016-4082, Denial of service vulnerability in the GSM CBCH dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34141 CVE-2016-4081, Denial of service vulnerability in the IAX2 dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34140 CVE-2016-4080, Denial of service vulnerability in the PKTC dissector in Wireshark via a crafted packet – CVE-2016-4080
oval:org.secpod.oval:def:34139 CVE-2016-4079, Denial of service vulnerability in the PKTC dissector in Wireshark via a crafted packet – CVE-2016-4079
oval:org.secpod.oval:def:34138 CVE-2016-4078, Denial of service vulnerability in the IEEE 802.11 dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34137 CVE-2016-4077, Denial of service vulnerability in the TShark in Wireshark via a crafted packet
oval:org.secpod.oval:def:34147 CVE-2015-8823, Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player or Adobe AIR via crafted text property (Mac OS X)
oval:org.secpod.oval:def:34146 CVE-2015-8823, Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player or Adobe AIR via crafted text property
oval:org.secpod.oval:def:34148 CVE-2015-8823, Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player via crafted text property (rpm)
oval:org.secpod.oval:def:34149 CVE-2015-8823, Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player via crafted text property (dpkg)
oval:org.secpod.oval:def:34156 CVE-2016-4065, Denial of service vulnerability in Foxit Reader via a crafted JPEG, GIF or BMP image
oval:org.secpod.oval:def:34155 CVE-2016-4064, Use-after-free vulnerability in Foxit Reader via a crafted remerge call
oval:org.secpod.oval:def:34154 CVE-2016-4063, Use-after-free vulnerability in Foxit Reader via an object with a revision number of -1 in a PDF document
oval:org.secpod.oval:def:34153 CVE-2016-4059, Use-after-free vulnerability in Foxit Reader via a crafted FlateDecode stream in a PDF document
oval:org.secpod.oval:def:34152 CVE-2016-4062, Denial of service vulnerability in Foxit Reader via a crafted PDF – CVE-2016-4062
oval:org.secpod.oval:def:34151 CVE-2016-4061, Denial of service vulnerability in Foxit Reader via a crafted content stream
oval:org.secpod.oval:def:34150 CVE-2016-4060, Use-after-free vulnerability in Foxit Reader via unspecified vectors – CVE-2016-4060
oval:org.secpod.oval:def:110404 CVE-2016-2173,
FEDORA-2016-6cf17ad0df,
FEDORA-2016-6cf17ad0df — Fedora 22 springframework-amqp-1.3.9-4.fc22
oval:org.secpod.oval:def:110406 FEDORA-2016-a099d11840, FEDORA-2016-a099d11840 — Fedora 23 glpi-0.90.3-1.fc23
oval:org.secpod.oval:def:110407 CVE-2016-3144,
FEDORA-2016-0d82b3eb5d,
FEDORA-2016-0d82b3eb5d — Fedora 23 drupal7-block_class-2.3-1.fc23
oval:org.secpod.oval:def:110409 CVE-2016-3144,
FEDORA-2016-8d983eeb13,
FEDORA-2016-8d983eeb13 — Fedora 22 drupal7-block_class-2.3-1.fc22
oval:org.secpod.oval:def:110410 FEDORA-2016-657a4a658e, FEDORA-2016-657a4a658e — Fedora 22 glpi-0.90.3-1.fc22
oval:org.secpod.oval:def:110411 CVE-2016-4008,
FEDORA-2016-383b8250e6,
FEDORA-2016-383b8250e6 — Fedora 23 libtasn1-4.8-1.fc23
oval:org.secpod.oval:def:110412 CVE-2016-2173,
FEDORA-2016-f099190fee,
FEDORA-2016-f099190fee — Fedora 23 springframework-amqp-1.3.9-4.fc23
oval:org.secpod.oval:def:203915 CESA-2016:0685,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0685 — centos 7 nspr
oval:org.secpod.oval:def:203916 CESA-2016:0685,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0685 — centos 7 nss-util
oval:org.secpod.oval:def:203917 CESA-2016:0685,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0685 — centos 7 nss-softokn
oval:org.secpod.oval:def:203918 CESA-2016:0684,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0684 — centos 5 nss
oval:org.secpod.oval:def:203919 CESA-2016:0685,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0685 — centos 7 nss
oval:org.secpod.oval:def:203920 CESA-2016:0684,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0684 — centos 5 nspr

Subscribe For More Posts Like This

Get the latest research, best practices, industry trends and cybersecurity blogs from SecPod security experts

Invalid email address
We promise not to spam you. You can unsubscribe at any time.
0 0 votes
Article Rating
Subscribe
Notify of
guest
0 Comments
Inline Feedbacks
View all comments