SCAP Feed Release : 22-Mar-2018

  • Post author:
  • Reading time:10 mins read

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update. This is a list of vulnerabilities detected using a vulnerability management tool.

Also, a patch management solution can help patch these vulnerabilities.

oval:org.secpod.oval:def:1600852 ALAS-2018-971
CVE-2018-1068
ALAS-2018-971 —- kernel perf
oval:org.secpod.oval:def:1700014 ALAS-2018-971
CVE-2018-1068
ALAS2-2018-971 —- kernel perf python-perf
oval:org.secpod.oval:def:204771 CESA-2018:0549
CVE-2018-5146
CESA-2018:0549 — centos 6 firefox
oval:org.secpod.oval:def:204772 CESA-2018:0549
CVE-2018-5146
CESA-2018:0549 — centos 7 firefox
oval:org.secpod.oval:def:44749 CVE-2018-1000021 Arbitrary code execution vulnerability in git in Red Hat
oval:org.secpod.oval:def:44750 CVE-2017-16808 Heap-based buffer over-read vulnerability in tcpdump – CVE-2017-16808
oval:org.secpod.oval:def:44751 CVE-2017-15994 Security bypass vulnerability in rsync – CVE-2017-15994
oval:org.secpod.oval:def:44752 CVE-2015-1336 Security bypass vulnerability in man-db – CVE-2015-1336
oval:org.secpod.oval:def:44754 CVE-2018-1000021 Remote code execution vulnerability in git – CVE-2018-1000021
oval:org.secpod.oval:def:44755 CVE-2017-9525 Privilege escalation vulnerability in cron – CVE-2017-9525
oval:org.secpod.oval:def:44760 CVE-2018-1000021 CVE-2018-1000021 — git vulnerability
oval:org.secpod.oval:def:44761 CVE-2017-9525 CVE-2017-9525 — cron vulnerability
oval:org.secpod.oval:def:44762 CVE-2015-1336 CVE-2015-1336 — man-db vulnerability
oval:org.secpod.oval:def:44763 CVE-2018-1000021 Input validation error vulnerability in git in Centos – CVE-2018-1000021
oval:org.secpod.oval:def:603322 CVE-2017-1000487
DSA-4146-1
DSA-4146-1 plexus-utils — plexus-utils
oval:org.secpod.oval:def:704020 CVE-2016-10266
CVE-2016-10267
CVE-2016-10268
CVE-2016-10269
CVE-2016-10371
CVE-2017-10688
CVE-2017-11335
CVE-2017-12944
CVE-2017-13726
CVE-2017-13727
CVE-2017-18013
CVE-2017-7592
CVE-2017-7593
CVE-2017-7594
CVE-2017-7595
CVE-2017-7596
CVE-2017-7597
CVE-2017-7598
CVE-2017-7599
CVE-2017-7600
CVE-2017-7601
CVE-2017-7602
CVE-2017-9403
CVE-2017-9404
CVE-2017-9815
CVE-2017-9936
CVE-2018-5784
USN-3602-1
USN-3602-1 — libtiff vulnerabilities
oval:org.secpod.oval:def:704021 CVE-2018-7750
USN-3603-1
USN-3603-1 — paramiko vulnerability