SCAP Feed Release: 27-Apr-2016

  • Post author:
  • Reading time:20 mins read

The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update.

oval:org.secpod.oval:def:34123 CVE-2016-0678, Unspecified vulnerability in the Oracle VM VirtualBox via vectors related to core – CVE-2016-0678
oval:org.secpod.oval:def:34134 CVE-2016-4085, Stack-based buffer overflow vulnerability in the NCP dissector in Wireshark via a long string in a packet
oval:org.secpod.oval:def:34125 CVE-2016-4076, Denial of service vulnerability in the NCP dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34124 CVE-2016-4006, Denial of service vulnerability in the epan/proto.c in Wireshark via a crafted packet
oval:org.secpod.oval:def:34133 CVE-2016-4084, Denial of service vulnerability in the MS-WSP dissector in Wireshark via a crafted packet that triggers an unexpected array size
oval:org.secpod.oval:def:34132 CVE-2016-4083, Denial of service vulnerability in the MS-WSP dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34131 CVE-2016-4082, Denial of service vulnerability in the GSM CBCH dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34130 CVE-2016-4081, Denial of service vulnerability in the IAX2 dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34129 CVE-2016-4080, Denial of service vulnerability in the PKTC dissector in Wireshark via a crafted packet – CVE-2016-4080
oval:org.secpod.oval:def:34128 CVE-2016-4079, Denial of service vulnerability in the PKTC dissector in Wireshark via a crafted packet – CVE-2016-4079
oval:org.secpod.oval:def:34127 CVE-2016-4078, Denial of service vulnerability in the IEEE 802.11 dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34126 CVE-2016-4077, Denial of service vulnerability in the TShark in Wireshark via a crafted packet
oval:org.secpod.oval:def:34145 CVE-2016-4085, Stack-based buffer overflow vulnerability in the NCP dissector in Wireshark via a long string in a packet
oval:org.secpod.oval:def:34136 CVE-2016-4076, Denial of service vulnerability in the NCP dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34135 CVE-2016-4006, Denial of service vulnerability in the epan/proto.c in Wireshark via a crafted packet
oval:org.secpod.oval:def:34144 CVE-2016-4084, Denial of service vulnerability in the MS-WSP dissector in Wireshark via a crafted packet that triggers an unexpected array size
oval:org.secpod.oval:def:34143 CVE-2016-4083, Denial of service vulnerability in the MS-WSP dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34142 CVE-2016-4082, Denial of service vulnerability in the GSM CBCH dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34141 CVE-2016-4081, Denial of service vulnerability in the IAX2 dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34140 CVE-2016-4080, Denial of service vulnerability in the PKTC dissector in Wireshark via a crafted packet – CVE-2016-4080
oval:org.secpod.oval:def:34139 CVE-2016-4079, Denial of service vulnerability in the PKTC dissector in Wireshark via a crafted packet – CVE-2016-4079
oval:org.secpod.oval:def:34138 CVE-2016-4078, Denial of service vulnerability in the IEEE 802.11 dissector in Wireshark via a crafted packet
oval:org.secpod.oval:def:34137 CVE-2016-4077, Denial of service vulnerability in the TShark in Wireshark via a crafted packet
oval:org.secpod.oval:def:34147 CVE-2015-8823, Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player or Adobe AIR via crafted text property (Mac OS X)
oval:org.secpod.oval:def:34146 CVE-2015-8823, Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player or Adobe AIR via crafted text property
oval:org.secpod.oval:def:34148 CVE-2015-8823, Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player via crafted text property (rpm)
oval:org.secpod.oval:def:34149 CVE-2015-8823, Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player via crafted text property (dpkg)
oval:org.secpod.oval:def:34156 CVE-2016-4065, Denial of service vulnerability in Foxit Reader via a crafted JPEG, GIF or BMP image
oval:org.secpod.oval:def:34155 CVE-2016-4064, Use-after-free vulnerability in Foxit Reader via a crafted remerge call
oval:org.secpod.oval:def:34154 CVE-2016-4063, Use-after-free vulnerability in Foxit Reader via an object with a revision number of -1 in a PDF document
oval:org.secpod.oval:def:34153 CVE-2016-4059, Use-after-free vulnerability in Foxit Reader via a crafted FlateDecode stream in a PDF document
oval:org.secpod.oval:def:34152 CVE-2016-4062, Denial of service vulnerability in Foxit Reader via a crafted PDF – CVE-2016-4062
oval:org.secpod.oval:def:34151 CVE-2016-4061, Denial of service vulnerability in Foxit Reader via a crafted content stream
oval:org.secpod.oval:def:34150 CVE-2016-4060, Use-after-free vulnerability in Foxit Reader via unspecified vectors – CVE-2016-4060
oval:org.secpod.oval:def:110404 CVE-2016-2173,
FEDORA-2016-6cf17ad0df,
FEDORA-2016-6cf17ad0df — Fedora 22 springframework-amqp-1.3.9-4.fc22
oval:org.secpod.oval:def:110406 FEDORA-2016-a099d11840, FEDORA-2016-a099d11840 — Fedora 23 glpi-0.90.3-1.fc23
oval:org.secpod.oval:def:110407 CVE-2016-3144,
FEDORA-2016-0d82b3eb5d,
FEDORA-2016-0d82b3eb5d — Fedora 23 drupal7-block_class-2.3-1.fc23
oval:org.secpod.oval:def:110409 CVE-2016-3144,
FEDORA-2016-8d983eeb13,
FEDORA-2016-8d983eeb13 — Fedora 22 drupal7-block_class-2.3-1.fc22
oval:org.secpod.oval:def:110410 FEDORA-2016-657a4a658e, FEDORA-2016-657a4a658e — Fedora 22 glpi-0.90.3-1.fc22
oval:org.secpod.oval:def:110411 CVE-2016-4008,
FEDORA-2016-383b8250e6,
FEDORA-2016-383b8250e6 — Fedora 23 libtasn1-4.8-1.fc23
oval:org.secpod.oval:def:110412 CVE-2016-2173,
FEDORA-2016-f099190fee,
FEDORA-2016-f099190fee — Fedora 23 springframework-amqp-1.3.9-4.fc23
oval:org.secpod.oval:def:203915 CESA-2016:0685,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0685 — centos 7 nspr
oval:org.secpod.oval:def:203916 CESA-2016:0685,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0685 — centos 7 nss-util
oval:org.secpod.oval:def:203917 CESA-2016:0685,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0685 — centos 7 nss-softokn
oval:org.secpod.oval:def:203918 CESA-2016:0684,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0684 — centos 5 nss
oval:org.secpod.oval:def:203919 CESA-2016:0685,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0685 — centos 7 nss
oval:org.secpod.oval:def:203920 CESA-2016:0684,
CVE-2016-1978,
CVE-2016-1979,
CESA-2016:0684 — centos 5 nspr
Share this article