SCAP Feed Release : 21-Apr-2017

  • Post author:
  • Reading time:54 mins read

The following SCAP content has been released to SCAP Repo and SecPod Saner solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

oval:org.secpod.oval:def:112283 FEDORA-2017-db6864b797 FEDORA-2017-db6864b797 — Fedora 24 jenkins-xstream-1.4.7-11.jenkins1.fc24
oval:org.secpod.oval:def:112285 FEDORA-2017-b83c0eeab0 FEDORA-2017-b83c0eeab0 — Fedora 25 xstream-1.4.9-5.fc25
oval:org.secpod.oval:def:112286 FEDORA-2017-a902f8db61 FEDORA-2017-a902f8db61 — Fedora 25 jenkins-xstream-1.4.7-11.jenkins1.fc25
oval:org.secpod.oval:def:112287 FEDORA-2017-5764721de5 FEDORA-2017-5764721de5 — Fedora 24 xstream-1.4.9-5.fc24
oval:org.secpod.oval:def:1501840 CVE-2017-3136
CVE-2017-3137
ELSA-2017-1095
ELSA-2017-1095 — Oracle bind
oval:org.secpod.oval:def:1501841 CVE-2017-5461
ELSA-2017-1100
ELSA-2017-1100 — Oracle nss_nss-util
oval:org.secpod.oval:def:1501842 CVE-2017-5461
ELSA-2017-1100
ELSA-2017-1100 — Oracle nss_nss-util
oval:org.secpod.oval:def:1501843 CVE-2017-5429
CVE-2017-5430
CVE-2017-5432
CVE-2017-5433
CVE-2017-5434
CVE-2017-5435
CVE-2017-5436
CVE-2017-5437
CVE-2017-5438
CVE-2017-5439
CVE-2017-5440
CVE-2017-5441
CVE-2017-5442
CVE-2017-5443
CVE-2017-5444
CVE-2017-5445
CVE-2017-5446
CVE-2017-5447
CVE-2017-5448
CVE-2017-5449
CVE-2017-5451
CVE-2017-5454
CVE-2017-5455
CVE-2017-5456
CVE-2017-5459
CVE-2017-5460
CVE-2017-5464
CVE-2017-5465
CVE-2017-5466
CVE-2017-5467
CVE-2017-5469
ELSA-2017-1106
ELSA-2017-1106 — Oracle firefox
oval:org.secpod.oval:def:1501844 CVE-2017-3509
CVE-2017-3511
CVE-2017-3526
CVE-2017-3533
CVE-2017-3539
CVE-2017-3544
ELSA-2017-1108
ELSA-2017-1108 — Oracle java-1.8.0-openjdk
oval:org.secpod.oval:def:1501845 CVE-2017-5429
CVE-2017-5432
CVE-2017-5433
CVE-2017-5434
CVE-2017-5435
CVE-2017-5436
CVE-2017-5437
CVE-2017-5438
CVE-2017-5439
CVE-2017-5440
CVE-2017-5441
CVE-2017-5442
CVE-2017-5443
CVE-2017-5444
CVE-2017-5445
CVE-2017-5446
CVE-2017-5447
CVE-2017-5448
CVE-2017-5449
CVE-2017-5459
CVE-2017-5460
CVE-2017-5464
CVE-2017-5465
CVE-2017-5469
ELSA-2017-1104
ELSA-2017-1104 — Oracle firefox
oval:org.secpod.oval:def:1501846 CVE-2017-3509
CVE-2017-3511
CVE-2017-3526
CVE-2017-3533
CVE-2017-3539
CVE-2017-3544
ELSA-2017-1109
ELSA-2017-1109 — Oracle java-1.8.0-openjdk
oval:org.secpod.oval:def:1501847 CVE-2017-3136
CVE-2017-3137
ELSA-2017-1105
ELSA-2017-1105 — Oracle bind
oval:org.secpod.oval:def:1600686 ALAS-2017-819
CVE-2017-8714
ALAS-2017-819 —- R
oval:org.secpod.oval:def:1600687 ALAS-2017-817
CVE-2014-4000
ALAS-2017-817 —- cacti
oval:org.secpod.oval:def:1600688 ALAS-2017-821
CVE-2017-5647
ALAS-2017-821 —- tomcat6
oval:org.secpod.oval:def:1600689 ALAS-2017-816
CVE-2017-6451
CVE-2017-6458
CVE-2017-6462
CVE-2017-6463
CVE-2017-6464
ALAS-2017-816 —- ntp
oval:org.secpod.oval:def:1600690 ALAS-2017-822
CVE-2017-5647
CVE-2017-5648
ALAS-2017-822 —- tomcat7 tomcat8
oval:org.secpod.oval:def:1600691 ALAS-2017-818
CVE-2017-6188
ALAS-2017-818 —- munin
oval:org.secpod.oval:def:1600692 ALAS-2017-820
CVE-2016-7800
CVE-2016-7996
CVE-2016-7997
CVE-2016-8682
CVE-2016-8683
CVE-2016-8684
CVE-2016-9830
CVE-2017-6335
ALAS-2017-820 —- GraphicsMagick
oval:org.secpod.oval:def:204481 CESA-2017:1100
CVE-2017-5461
CESA-2017:1100 — centos 7 nss-util
oval:org.secpod.oval:def:204482 CESA-2017:1100
CVE-2017-5461
CESA-2017:1100 — centos 6 nss-util
oval:org.secpod.oval:def:204483 CESA-2017:1104
CVE-2017-5429
CVE-2017-5432
CVE-2017-5433
CVE-2017-5434
CVE-2017-5435
CVE-2017-5436
CVE-2017-5437
CVE-2017-5438
CVE-2017-5439
CVE-2017-5440
CVE-2017-5441
CVE-2017-5442
CVE-2017-5443
CVE-2017-5444
CVE-2017-5445
CVE-2017-5446
CVE-2017-5447
CVE-2017-5448
CVE-2017-5449
CVE-2017-5459
CVE-2017-5460
CVE-2017-5464
CVE-2017-5465
CVE-2017-5469
CESA-2017:1104 — centos 6 firefox
oval:org.secpod.oval:def:204484 CESA-2017:1106
CVE-2017-5429
CVE-2017-5430
CVE-2017-5432
CVE-2017-5433
CVE-2017-5434
CVE-2017-5435
CVE-2017-5436
CVE-2017-5437
CVE-2017-5438
CVE-2017-5439
CVE-2017-5440
CVE-2017-5441
CVE-2017-5442
CVE-2017-5443
CVE-2017-5444
CVE-2017-5445
CVE-2017-5446
CVE-2017-5447
CVE-2017-5448
CVE-2017-5449
CVE-2017-5451
CVE-2017-5454
CVE-2017-5455
CVE-2017-5456
CVE-2017-5459
CVE-2017-5460
CVE-2017-5464
CVE-2017-5465
CVE-2017-5466
CVE-2017-5467
CVE-2017-5469
CESA-2017:1106 — centos 7 firefox
oval:org.secpod.oval:def:204485 CESA-2017:1105
CVE-2017-3136
CVE-2017-3137
CESA-2017:1105 — centos 6 bind
oval:org.secpod.oval:def:204486 CESA-2017:1100
CVE-2017-5461
CESA-2017:1100 — centos 6 nss
oval:org.secpod.oval:def:204487 CESA-2017:1100
CVE-2017-5461
CESA-2017:1100 — centos 7 nss
oval:org.secpod.oval:def:40153 CVE-2017-5057 Type confusion vulnerability in PDFium in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:40154 CVE-2017-5057 Type confusion vulnerability in PDFium in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:40155 CVE-2017-5058 Use-after-free vulnerability in Print Preview in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:40156 CVE-2017-5058 Use-after-free vulnerability in Print Preview in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:40157 CVE-2017-5059 Type confusion vulnerability in blink in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:40158 CVE-2017-5059 Type confusion vulnerability in blink in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:40159 CVE-2017-5060 URL spoofing vulnerability in Omnibox in Google Chrome via unspecified vectors – CVE-2017-5060 (dpkg)
oval:org.secpod.oval:def:40160 CVE-2017-5060 URL spoofing vulnerability in Omnibox in Google Chrome via unspecified vectors – CVE-2017-5060 (rpm)
oval:org.secpod.oval:def:40161 CVE-2017-5061 URL spoofing vulnerability in Omnibox in Google Chrome via unspecified vectors – CVE-2017-5061 (dpkg)
oval:org.secpod.oval:def:40162 CVE-2017-5061 URL spoofing vulnerability in Omnibox in Google Chrome via unspecified vectors – CVE-2017-5061 (rpm)
oval:org.secpod.oval:def:40163 CVE-2017-5062 Use-after-free vulnerability in Chrome Apps in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:40164 CVE-2017-5062 Use-after-free vulnerability in Chrome Apps in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:40165 CVE-2017-5063 Heap overflow vulnerability in skia in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:40166 CVE-2017-5063 Heap overflow vulnerability in skia in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:40167 CVE-2017-5064 Use-after-free vulnerability in blink in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:40168 CVE-2017-5064 Use-after-free vulnerability in blink in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:40169 CVE-2017-5065 Unspecified vulnerability in blink in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:40170 CVE-2017-5065 Unspecified vulnerability in blink in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:40171 CVE-2017-5066 Unspecified vulnerability in Google Chrome via unspecified vectors – CVE-2017-5066 (dpkg)
oval:org.secpod.oval:def:40172 CVE-2017-5066 Unspecified vulnerability in Google Chrome via unspecified vectors – CVE-2017-5066 (rpm)
oval:org.secpod.oval:def:40173 CVE-2017-5067 URL spoofing vulnerability in Google Chrome via unspecified vectors – CVE-2017-5067 (dpkg)
oval:org.secpod.oval:def:40174 CVE-2017-5067 URL spoofing vulnerability in Google Chrome via unspecified vectors – CVE-2017-5067 (rpm)
oval:org.secpod.oval:def:40175 CVE-2017-5069 Cross-origin bypass vulnerability in Google Chrome via unspecified vectors – CVE-2017-5069 (dpkg)
oval:org.secpod.oval:def:40176 CVE-2017-5069 Cross-origin bypass vulnerability in Google Chrome via unspecified vectors – CVE-2017-5069 (rpm)
oval:org.secpod.oval:def:40177 CVE-2017-5057
CVE-2017-5058
CVE-2017-5059
CVE-2017-5060
CVE-2017-5061
CVE-2017-5062
CVE-2017-5063
CVE-2017-5064
CVE-2017-5065
CVE-2017-5066
CVE-2017-5067
CVE-2017-5069
VENDORLINK
Multiple vulnerabilities in Google Chrome via unspecified vectors (dpkg)
oval:org.secpod.oval:def:40178 CVE-2017-5057
CVE-2017-5058
CVE-2017-5059
CVE-2017-5060
CVE-2017-5061
CVE-2017-5062
CVE-2017-5063
CVE-2017-5064
CVE-2017-5065
CVE-2017-5066
CVE-2017-5067
CVE-2017-5069
VENDORLINK
Multiple vulnerabilities in Google Chrome via unspecified vectors (rpm)
oval:org.secpod.oval:def:40179 CVE-2016-10155
CVE-2016-8667
CVE-2016-8669
CVE-2016-9381
CVE-2016-9602
CVE-2016-9603
CVE-2016-9776
CVE-2016-9911
CVE-2016-9913
CVE-2016-9914
CVE-2016-9915
CVE-2016-9916
CVE-2016-9921
CVE-2016-9922
CVE-2017-2615
CVE-2017-2620
CVE-2017-2633
CVE-2017-5525
CVE-2017-5526
CVE-2017-5579
CVE-2017-5667
CVE-2017-5856
CVE-2017-5898
CVE-2017-5973
CVE-2017-5987
CVE-2017-6505
USN-3261-1
USN-3261-1 — qemu vulnerabilities
oval:org.secpod.oval:def:502022 CVE-2017-5429
CVE-2017-5432
CVE-2017-5433
CVE-2017-5434
CVE-2017-5435
CVE-2017-5436
CVE-2017-5437
CVE-2017-5438
CVE-2017-5439
CVE-2017-5440
CVE-2017-5441
CVE-2017-5442
CVE-2017-5443
CVE-2017-5444
CVE-2017-5445
CVE-2017-5446
CVE-2017-5447
CVE-2017-5448
CVE-2017-5449
CVE-2017-5459
CVE-2017-5460
CVE-2017-5464
CVE-2017-5465
CVE-2017-5469
RHSA-2017:1104-01
RHSA-2017:1104-01 — Redhat firefox
oval:org.secpod.oval:def:502023 CVE-2017-5429
CVE-2017-5430
CVE-2017-5432
CVE-2017-5433
CVE-2017-5434
CVE-2017-5435
CVE-2017-5436
CVE-2017-5437
CVE-2017-5438
CVE-2017-5439
CVE-2017-5440
CVE-2017-5441
CVE-2017-5442
CVE-2017-5443
CVE-2017-5444
CVE-2017-5445
CVE-2017-5446
CVE-2017-5447
CVE-2017-5448
CVE-2017-5449
CVE-2017-5451
CVE-2017-5454
CVE-2017-5455
CVE-2017-5456
CVE-2017-5459
CVE-2017-5460
CVE-2017-5464
CVE-2017-5465
CVE-2017-5466
CVE-2017-5467
CVE-2017-5469
RHSA-2017:1106-01
RHSA-2017:1106-01 — Redhat firefox
oval:org.secpod.oval:def:502024 CVE-2017-3136
CVE-2017-3137
RHSA-2017:1105-01
RHSA-2017:1105-01 — Redhat bind
oval:org.secpod.oval:def:502025 CVE-2017-5461
RHSA-2017:1100-01
RHSA-2017:1100-01 — Redhat nss, nss-util
oval:org.secpod.oval:def:602856 CVE-2017-5373
CVE-2017-5375
CVE-2017-5376
CVE-2017-5378
CVE-2017-5380
CVE-2017-5383
CVE-2017-5390
CVE-2017-5396
CVE-2017-5398
CVE-2017-5400
CVE-2017-5401
CVE-2017-5402
CVE-2017-5404
CVE-2017-5405
CVE-2017-5407
CVE-2017-5408
CVE-2017-5410
DSA-3832-1
DSA-3832-1 icedove — icedove
oval:org.secpod.oval:def:703565 CVE-2016-10028
CVE-2016-10029
CVE-2016-10155
CVE-2016-7907
CVE-2016-8667
CVE-2016-8669
CVE-2016-9381
CVE-2016-9602
CVE-2016-9603
CVE-2016-9776
CVE-2016-9845
CVE-2016-9846
CVE-2016-9907
CVE-2016-9908
CVE-2016-9911
CVE-2016-9912
CVE-2016-9913
CVE-2016-9914
CVE-2016-9915
CVE-2016-9916
CVE-2016-9921
CVE-2016-9922
CVE-2017-2615
CVE-2017-2620
CVE-2017-2633
CVE-2017-5525
CVE-2017-5526
CVE-2017-5552
CVE-2017-5578
CVE-2017-5579
CVE-2017-5667
CVE-2017-5856
CVE-2017-5857
CVE-2017-5898
CVE-2017-5973
CVE-2017-5987
CVE-2017-6505
USN-3261-1
USN-3261-1 — qemu vulnerabilities
oval:org.secpod.oval:def:703566 CVE-2016-10328
USN-3263-1
USN-3263-1 — freetype vulnerability