SCAP Feed Release : 18-Oct-2018

  • Post author:
  • Reading time:56 mins read

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

oval:org.secpod.oval:def:115245 CVE-2018-10887
CVE-2018-10888
CVE-2018-11235
CVE-2018-17456
FEDORA-2018-42eab0f5b9
FEDORA-2018-42eab0f5b9 — Fedora 28 libgit2-0.26.7-1.fc28
oval:org.secpod.oval:def:115246 CVE-2012-6706
CVE-2017-11423
CVE-2017-12374
CVE-2017-12375
CVE-2017-12376
CVE-2017-12377
CVE-2017-12378
CVE-2017-12379
CVE-2017-12380
CVE-2017-6418
CVE-2017-6419
CVE-2017-6420
CVE-2018-0202
CVE-2018-1000085
CVE-2018-14679
CVE-2018-14680
CVE-2018-14681
CVE-2018-14682
CVE-2018-15378
FEDORA-2018-1fc39f2d13
FEDORA-2018-1fc39f2d13 — Fedora 27 clamav-0.100.2-2.fc27
oval:org.secpod.oval:def:115247 CVE-2017-1000405
CVE-2017-12193
CVE-2017-15115
CVE-2017-16532
CVE-2017-16538
CVE-2017-16644
CVE-2017-16647
CVE-2017-16649
CVE-2017-16650
CVE-2017-17448
CVE-2017-17449
CVE-2017-17450
CVE-2017-17558
CVE-2017-17712
CVE-2017-17741
CVE-2017-17852
CVE-2017-17853
CVE-2017-17854
CVE-2017-17855
CVE-2017-17856
CVE-2017-17857
CVE-2017-17862
CVE-2017-17863
CVE-2017-17864
CVE-2017-18232
CVE-2017-8824
CVE-2018-1000004
CVE-2018-1000026
CVE-2018-10021
CVE-2018-10322
CVE-2018-10323
CVE-2018-1065
CVE-2018-10840
CVE-2018-10853
CVE-2018-1108
CVE-2018-1120
CVE-2018-11506
CVE-2018-12232
CVE-2018-12633
CVE-2018-12714
CVE-2018-12896
CVE-2018-13053
CVE-2018-13093
CVE-2018-13094
CVE-2018-13095
CVE-2018-13405
CVE-2018-14633
CVE-2018-14678
CVE-2018-14734
CVE-2018-15471
CVE-2018-17182
CVE-2018-17972
CVE-2018-3620
CVE-2018-3639
CVE-2018-3646
CVE-2018-5332
CVE-2018-5333
CVE-2018-5344
CVE-2018-5391
CVE-2018-5750
CVE-2018-5803
CVE-2018-7757
CVE-2018-7995
CVE-2018-8043
FEDORA-2018-2ee3411cb8
FEDORA-2018-2ee3411cb8 — Fedora 27 kernel-4.18.13-100.fc27
oval:org.secpod.oval:def:115248 CVE-2018-17972
FEDORA-2018-2ee3411cb8
FEDORA-2018-2ee3411cb8 — Fedora 27 kernel-headers-4.18.13-100.fc27
oval:org.secpod.oval:def:115249 CVE-2018-17972
FEDORA-2018-2ee3411cb8
FEDORA-2018-2ee3411cb8 — Fedora 27 kernel-tools-4.18.13-100.fc27
oval:org.secpod.oval:def:204890 CESA-2018:2918
CVE-2018-10194
CVE-2018-15910
CVE-2018-16509
CVE-2018-16542
CESA-2018:2918 — centos 7 ghostscript
oval:org.secpod.oval:def:204891 CESA-2018:2916
CVE-2017-15705
CVE-2018-11781
CESA-2018:2916 — centos 7 spamassassin
oval:org.secpod.oval:def:204892 CESA-2018:2921
CVE-2018-1336
CESA-2018:2921 — centos 7 tomcat
oval:org.secpod.oval:def:48009 CVE-2018-10933 Security bypass vulnerability in the server code in libssh – CVE-2018-10933
oval:org.secpod.oval:def:48010 CVE-2018-10933 Security bypass vulnerability in the server code in libssh – CVE-2018-10933
oval:org.secpod.oval:def:48011 CVE-2018-17462 Sandbox escape vulnerability in the AppCache in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48012 CVE-2018-17463 Remote code execution vulnerability in the V8 in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48013 CVE-2018-17464 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48014 CVE-2018-17465 Use after free vulnerability in the V8 in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48015 CVE-2018-17466 Memory corruption vulnerability in the Angle in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48016 CVE-2018-17467 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48017 CVE-2018-17468 Cross-origin URL disclosure vulnerability in the Blink in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48018 CVE-2018-17469 Heap buffer overflow vulnerability in the PDFium in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48019 CVE-2018-17470 Memory corruption vulnerability in the GPU Internals in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48020 CVE-2018-17471 Security UI occlusion vulnerability in the full screen mode in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48021 CVE-2018-17473 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48022 CVE-2018-17474 Use after free vulnerability in the Blink in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48023 CVE-2018-17475 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48024 CVE-2018-17476 Security UI occlusion vulnerability in the full screen mode in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48025 CVE-2018-17477 UI spoof vulnerability in the Extensions in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48026 CVE-2018-5179 Lack of limits on update function vulnerability in the ServiceWorker in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48027 CVE-2018-17462
CVE-2018-17463
CVE-2018-17464
CVE-2018-17465
CVE-2018-17466
CVE-2018-17467
CVE-2018-17468
CVE-2018-17469
CVE-2018-17470
CVE-2018-17471
CVE-2018-17472
CVE-2018-17473
CVE-2018-17474
CVE-2018-17475
CVE-2018-17476
CVE-2018-17477
CVE-2018-5179
VENDORLINK
Multiple vulnerabilities in Google Chrome via unspecified vectors
oval:org.secpod.oval:def:48028 CVE-2018-17462 Sandbox escape vulnerability in the AppCache in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48029 CVE-2018-17462 Sandbox escape vulnerability in the AppCache in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48030 CVE-2018-17463 Remote code execution vulnerability in the V8 in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48031 CVE-2018-17463 Remote code execution vulnerability in the V8 in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48032 CVE-2018-17464 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48033 CVE-2018-17464 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48034 CVE-2018-17465 Use after free vulnerability in the V8 in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48035 CVE-2018-17465 Use after free vulnerability in the V8 in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48036 CVE-2018-17466 Memory corruption vulnerability in the Angle in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48037 CVE-2018-17466 Memory corruption vulnerability in the Angle in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48038 CVE-2018-17467 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48039 CVE-2018-17467 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48040 CVE-2018-17468 Cross-origin URL disclosure vulnerability in the Blink in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48041 CVE-2018-17468 Cross-origin URL disclosure vulnerability in the Blink in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48042 CVE-2018-17469 Heap buffer overflow vulnerability in the PDFium in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48043 CVE-2018-17469 Heap buffer overflow vulnerability in the PDFium in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48044 CVE-2018-17470 Memory corruption vulnerability in the GPU Internals in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48045 CVE-2018-17470 Memory corruption vulnerability in the GPU Internals in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48046 CVE-2018-17471 Security UI occlusion vulnerability in the full screen mode in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48047 CVE-2018-17471 Security UI occlusion vulnerability in the full screen mode in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48048 CVE-2018-17473 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48049 CVE-2018-17473 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48050 CVE-2018-17474 Use after free vulnerability in the Blink in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48051 CVE-2018-17474 Use after free vulnerability in the Blink in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48052 CVE-2018-17475 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48053 CVE-2018-17475 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48054 CVE-2018-17476 Security UI occlusion vulnerability in the full screen mode in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48055 CVE-2018-17476 Security UI occlusion vulnerability in the full screen mode in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48056 CVE-2018-17477 UI spoof vulnerability in the Extensions in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48057 CVE-2018-17477 UI spoof vulnerability in the Extensions in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48058 CVE-2018-5179 Lack of limits on update function vulnerability in the ServiceWorker in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48059 CVE-2018-5179 Lack of limits on update() vulnerability in the ServiceWorker in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48060 CVE-2018-17462
CVE-2018-17463
CVE-2018-17464
CVE-2018-17465
CVE-2018-17466
CVE-2018-17467
CVE-2018-17468
CVE-2018-17469
CVE-2018-17470
CVE-2018-17471
CVE-2018-17472
CVE-2018-17473
CVE-2018-17474
CVE-2018-17475
CVE-2018-17476
CVE-2018-17477
CVE-2018-5179
VENDORLINK
Multiple vulnerabilities in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:48061 CVE-2018-17462
CVE-2018-17463
CVE-2018-17464
CVE-2018-17465
CVE-2018-17466
CVE-2018-17467
CVE-2018-17468
CVE-2018-17469
CVE-2018-17470
CVE-2018-17471
CVE-2018-17472
CVE-2018-17473
CVE-2018-17474
CVE-2018-17475
CVE-2018-17476
CVE-2018-17477
CVE-2018-5179
VENDORLINK
Multiple vulnerabilities in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:48062 CVE-2018-17462 Sandbox escape vulnerability in the AppCache in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48063 CVE-2018-17463 Remote code execution vulnerability in the V8 in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48064 CVE-2018-17464 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48065 CVE-2018-17465 Use after free vulnerability in the V8 in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48066 CVE-2018-17466 Memory corruption vulnerability in the Angle in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48067 CVE-2018-17467 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48068 CVE-2018-17468 Cross-origin URL disclosure vulnerability in the Blink in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48069 CVE-2018-17469 Heap buffer overflow vulnerability in the PDFium in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48070 CVE-2018-17470 Memory corruption vulnerability in the GPU Internals in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48071 CVE-2018-17471 Security UI occlusion vulnerability in the full screen mode in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48072 CVE-2018-17473 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48073 CVE-2018-17474 Use after free vulnerability in the Blink in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48074 CVE-2018-17475 URL spoof vulnerability in the Omnibox in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48075 CVE-2018-17476 Security UI occlusion vulnerability in the full screen mode in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48076 CVE-2018-17477 UI spoof vulnerability in the Extensions in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48077 CVE-2018-5179 Lack of limits on update function vulnerability in the ServiceWorker in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48078 CVE-2018-17462
CVE-2018-17463
CVE-2018-17464
CVE-2018-17465
CVE-2018-17466
CVE-2018-17467
CVE-2018-17468
CVE-2018-17469
CVE-2018-17470
CVE-2018-17471
CVE-2018-17472
CVE-2018-17473
CVE-2018-17474
CVE-2018-17475
CVE-2018-17476
CVE-2018-17477
CVE-2018-5179
VENDORLINK
UI spoof vulnerability in the Extensions in Google Chrome via unspecified vectors (Mac OS X)
oval:org.secpod.oval:def:48079 CVE-2018-3183 Unspecified vulnerability in Oracle Java SE via vectors related to Scripting – CVE-2018-3183
oval:org.secpod.oval:def:48081 CVE-2018-3209 Unspecified vulnerability in Oracle Java SE via vectors related to JavaFX – CVE-2018-3209
oval:org.secpod.oval:def:48082 CVE-2018-3169 Unspecified vulnerability in Oracle Java SE via vectors related to Hotspot – CVE-2018-3169
oval:org.secpod.oval:def:48083 CVE-2018-3149 Unspecified vulnerability in Oracle Java SE via vectors related to JNDI – CVE-2018-3149
oval:org.secpod.oval:def:48084 CVE-2018-3211 Unspecified vulnerability in Oracle Java SE via vectors related to Serviceability – CVE-2018-3211
oval:org.secpod.oval:def:48085 CVE-2018-3180 Unspecified vulnerability in Oracle Java SE via vectors related to JSSE – CVE-2018-3180
oval:org.secpod.oval:def:48086 CVE-2018-3214 Unspecified vulnerability in Oracle Java SE via vectors related to Sound – CVE-2018-3214
oval:org.secpod.oval:def:48087 CVE-2018-3157 Unspecified vulnerability in Oracle Java SE via vectors related to Sound – CVE-2018-3157
oval:org.secpod.oval:def:48088 CVE-2018-3150 Unspecified vulnerability in Oracle Java SE via vectors related to Utility – CVE-2018-3150
oval:org.secpod.oval:def:48089 CVE-2018-13785 Unspecified vulnerability in Oracle Java SE via vectors related to Deployment (libpng) – CVE-2018-13785
oval:org.secpod.oval:def:48090 CVE-2018-3136 Unspecified vulnerability in Oracle Java SE via vectors related to Security – CVE-2018-3136
oval:org.secpod.oval:def:48091 CVE-2018-3139 Unspecified vulnerability in Oracle Java SE via vectors related to Networking – CVE-2018-3139
oval:org.secpod.oval:def:48092 CVE-2016-7886 Memory corruption vulnerability in Adobe InDesign via crafted data
oval:org.secpod.oval:def:48094 CVE-2017-11302 Memory corruption vulnerability in Adobe InDesign via crafted data
oval:org.secpod.oval:def:48095 CVE-2018-4927 Untrusted Search Path vulnerability in Adobe InDesign via a specially crafted .inx file
oval:org.secpod.oval:def:48096 CVE-2018-4928 Memory corruption vulnerability in Adobe InDesign via a crafted .inx file
oval:org.secpod.oval:def:48097 CVE-2018-10933 Security bypass vulnerability in the server code in libssh – CVE-2018-10933
oval:org.secpod.oval:def:48098 CVE-2018-17456 Arbitrary code execution vulnerability via .gitmodules – CVE-2018-17456
oval:org.secpod.oval:def:502374 CVE-2018-1336
RHSA-2018:2921-01
RHSA-2018:2921-01 — Redhat tomcat, tomcat-servlet-3.0-api
oval:org.secpod.oval:def:704348 CVE-2018-18074
USN-3790-1
USN-3790-1 — requests vulnerability
oval:org.secpod.oval:def:704349 CVE-2018-18065
USN-3792-1
USN-3792-1 — net-snmp vulnerability
oval:org.secpod.oval:def:704350 CVE-2018-12376
CVE-2018-12377
CVE-2018-12378
CVE-2018-12383
CVE-2018-12385
USN-3793-1
USN-3793-1 — thunderbird vulnerabilities
oval:org.secpod.oval:def:704351 CVE-2017-5934
USN-3794-1
USN-3794-1 — moinmoin vulnerability