SCAP Feed Release : 30-Mar-2018

  • Post author:
  • Reading time:70 mins read

The following SCAP content has been released to SCAP Repo and SecPod Saner Solution. SecPod Saner will automatically pull the relevant content on its next scheduled update.

oval:org.secpod.oval:def:1800003 7667
CVE-2017-9800
[3.7] subversion: Arbitrary code execution on clients through malicious svn+ssh URLs (CVE-2017-9800)
oval:org.secpod.oval:def:1800032 8247
CVE-2017-8819
CVE-2017-8820
CVE-2017-8821
CVE-2017-8822
CVE-2017-8823
[3.7] tor: Multiple vulnerabilities (CVE-2017-8819, CVE-2017-8820, CVE-2017-8821, CVE-2017-8822, CVE-2017-8823)
oval:org.secpod.oval:def:1800034 8281
CVE-2017-15906
[3.7] openssh: Improper write operations in readonly mode allow for zero-length file creation (CVE-2017-15906)
oval:org.secpod.oval:def:1800040 8590
CVE-2017-1000499
CVE-2018-7260
[3.7] phpmyadmin: Multiple vulnerabilities (CVE-2017-1000499, CVE-2018-7260)
oval:org.secpod.oval:def:1800044 7660
CVE-2017-7546
CVE-2017-7547
CVE-2017-7548
[3.7] postgresql: Multiple vulnerabilities (CVE-2017-7546, CVE-2017-7547, CVE-2017-7548)
oval:org.secpod.oval:def:1800068 7481
CVE-2017-10688
CVE-2017-9147
CVE-2017-9403
CVE-2017-9404
CVE-2017-9936
[3.7] tiff: Multiple vulnerabilities (CVE-2017-9936, CVE-2017-10688)
oval:org.secpod.oval:def:1800072 7361
CVE-2017-9287
[3.7] openldap: Double free vulnerability in servers/slapd/back-mdb/search.c (CVE-2017-9287)
oval:org.secpod.oval:def:1800080 8251
CVE-2017-15091
[3.7] pdns: Missing check on API operations (CVE-2017-15091)
oval:org.secpod.oval:def:1800100 7803
CVE-2017-14166
[3.7] libarchive: heap-based buffer overflow in xml_data (CVE-2017-14166)
oval:org.secpod.oval:def:1800136 8274
CVE-2017-3737
CVE-2017-3738
[3.7] openssl: Multiple vulnerabilities (CVE-2017-3737, CVE-2017-3738)
oval:org.secpod.oval:def:1800147 7558
CVE-2017-11406
CVE-2017-11407
CVE-2017-11408
CVE-2017-11409
[3.7] wireshark: Multiple vulnerabilities (CVE-2017-11406, CVE-2017-11407, CVE-2017-11408)
oval:org.secpod.oval:def:1800201 7676
CVE-2017-2885
[3.7] libsoup: Stack based buffer overflow with HTTP Chunked Encoding (CVE-2017-2885)
oval:org.secpod.oval:def:1800202 7838
CVE-2017-12893
CVE-2017-12894
CVE-2017-12895
CVE-2017-12896
CVE-2017-12897
CVE-2017-12898
CVE-2017-12899
CVE-2017-12900
CVE-2017-12901
CVE-2017-12902
CVE-2017-12985
CVE-2017-12986
CVE-2017-12987
CVE-2017-12988
CVE-2017-12989
CVE-2017-12990
CVE-2017-12991
CVE-2017-12992
CVE-2017-12993
CVE-2017-12994
CVE-2017-12995
CVE-2017-12996
CVE-2017-12997
CVE-2017-12998
CVE-2017-12999
CVE-2017-13000
CVE-2017-13001
CVE-2017-13002
CVE-2017-13003
CVE-2017-13004
CVE-2017-13005
CVE-2017-13006
CVE-2017-13007
CVE-2017-13008
CVE-2017-13009
CVE-2017-13010
CVE-2017-13011
CVE-2017-13012
CVE-2017-13013
CVE-2017-13014
CVE-2017-13015
CVE-2017-13016
CVE-2017-13017
CVE-2017-13018
CVE-2017-13019
CVE-2017-13020
CVE-2017-13021
CVE-2017-13022
CVE-2017-13023
CVE-2017-13024
CVE-2017-13025
CVE-2017-13026
CVE-2017-13027
CVE-2017-13028
CVE-2017-13029
CVE-2017-13030
CVE-2017-13031
CVE-2017-13032
CVE-2017-13033
CVE-2017-13034
CVE-2017-13035
CVE-2017-13036
CVE-2017-13037
CVE-2017-13038
CVE-2017-13039
CVE-2017-13040
CVE-2017-13041
CVE-2017-13042
CVE-2017-13043
CVE-2017-13044
CVE-2017-13045
CVE-2017-13046
CVE-2017-13047
CVE-2017-13048
CVE-2017-13049
CVE-2017-13050
CVE-2017-13051
CVE-2017-13052
CVE-2017-13053
CVE-2017-13054
CVE-2017-13055
CVE-2017-13687
CVE-2017-13688
CVE-2017-13689
CVE-2017-13690
CVE-2017-13725
[3.7] tcpdump: Multiple vulnerabilities (Various CVEs)
oval:org.secpod.oval:def:1800223 7626
CVE-2015-9099
CVE-2015-9100
CVE-2017-11720
CVE-2017-9410
CVE-2017-9411
CVE-2017-9412
[3.7] lame: Multiple vulnerabilities (CVE-2015-9099, CVE-2015-9100, CVE-2017-9410, CVE-2017-9411, CVE-2017-9412, CVE-2017-11720)
oval:org.secpod.oval:def:1800233 7653
CVE-2017-1000099
CVE-2017-1000100
CVE-2017-1000101
[3.7] curl: Multiple vulnerabilities (CVE-2017-1000099, CVE-2017-1000100, CVE-2017-1000101)
oval:org.secpod.oval:def:1800238 7394
CVE-2017-9468
CVE-2017-9469
[3.7] irssi: Multiple vulnerabilities (CVE-2017-9468, CVE-2017-9469)
oval:org.secpod.oval:def:1800247 8095
CVE-2017-13065
CVE-2017-13648
CVE-2017-14042
CVE-2017-14314
CVE-2017-14504
CVE-2017-14733
CVE-2017-14994
CVE-2017-14997
CVE-2017-15930
[3.7] graphicsmagick: Multiple vulnerabilities (CVE-2017-14314, CVE-2017-14504, CVE-2017-14733, CVE-2017-14994 CVE-2017-14997, CVE-2017-15930)
oval:org.secpod.oval:def:1800253 7937
CVE-2017-14160
[3.7] libvorbis: out-of-bounds access and application crash (CVE-2017-14160)
oval:org.secpod.oval:def:1800263 7961
CVE-2017-1000254
[3.7] curl: FTP PWD response parser out of bounds read (CVE-2017-1000254)
oval:org.secpod.oval:def:1800266 7789
CVE-2017-13775
CVE-2017-13776
CVE-2017-13777
[3.7] graphicsmagick: Multiple vulnerabilities (CVE-2017-13775, CVE-2017-13776, CVE-2017-13777)
oval:org.secpod.oval:def:1800271 7510
CVE-2017-11107
[3.7] phpldapadmin: XSS in htdocs/entry_chooser.php (CVE-2017-11107)
oval:org.secpod.oval:def:1800274 8417
CVE-2017-3145
[3.7] bind: Improper fetch cleanup sequencing in the resolver can cause named to crash (CVE-2017-3145)
oval:org.secpod.oval:def:1800278 7460
CVE-2017-1000369
[3.7] exim: Privilege escalation via multiple memory leaks (CVE-2017-1000369)
oval:org.secpod.oval:def:1800298 7327
CVE-2017-6891
[3.7] libtasn1: asn1_find_node() based stackoverflow (CVE-2017-6891)
oval:org.secpod.oval:def:1800299 8339
CVE-2017-16910
[3.7] libraw: Invalid read memory access in the LibRaw::xtrans_interpolate() function (CVE-2017-16910)
oval:org.secpod.oval:def:1800324 7732
CVE-2017-12134
CVE-2017-12135
CVE-2017-12136
CVE-2017-12137
CVE-2017-12855
[3.7] xen: Multiple vulnerabilities (CVE-2017-12135, CVE-2017-12137, CVE-2017-12136, CVE-2017-12134, CVE-2017-12855)
oval:org.secpod.oval:def:1800330 8527
CVE-2018-6003
[3.7] libtasn1: Stack exhaustion due to indefinite recursion during BER decoding (CVE-2018-6003)
oval:org.secpod.oval:def:1800356 7548
CVE-2017-11403
[3.7] graphicsmagick: Use-after-free in CloseBlob (CVE-2017-11403)
oval:org.secpod.oval:def:1800363 8327
CVE-2017-7843
CVE-2017-7845
[3.7] firefox-esr: Multiple vulnerabilities (CVE-2017-7843, CVE-2017-7845)
oval:org.secpod.oval:def:1800364 7876
CVE-2017-12904
CVE-2017-14500
[3.7] newsbeuter: remote code execution (CVE-2017-14500)
oval:org.secpod.oval:def:1800387 7712
CVE-2017-12982
[3.7] openjpeg: memory allocation failure in opj_aligned_alloc_n (opj_malloc.c) (CVE-2017-12982)
oval:org.secpod.oval:def:1800391 8038
CVE-2017-1000257
[3.7] curl: IMAP FETCH response out of bounds read (CVE-2017-1000257)
oval:org.secpod.oval:def:1800413 7569
CVE-2017-9765
[3.7] gsoap: Stack-based buffer overflow when receiving XML message with size larger than 2GB (CVE-2017-9765)
oval:org.secpod.oval:def:1800421 8508
CVE-2018-6871
[3.7] libreoffice: Remote arbitrary file disclosure vulnerability via WEBSERVICE formula (CVE-2018-6871)
oval:org.secpod.oval:def:1800430 7469
CVE-2017-6922
[3.7] drupal7: Files uploaded by anonymous users into a private file system can be accessed by other anonymous users (CVE-2017-6922)
oval:org.secpod.oval:def:1800436 8193
CVE-2017-13783
CVE-2017-13784
CVE-2017-13785
CVE-2017-13788
CVE-2017-13791
CVE-2017-13792
CVE-2017-13793
CVE-2017-13794
CVE-2017-13795
CVE-2017-13796
CVE-2017-13798
CVE-2017-13802
CVE-2017-13803
[3.7] webkit2gtk: Multiple vulnerabilities (CVE-2017-13783, CVE-2017-13784, CVE-2017-13785, CVE-2017-13788, CVE-2017-13791, CVE-2017-13792, CVE-2017-13793, CVE-2017-13794, CVE-2017-13795, CVE-2017-13796, CVE-2017-13798, CVE-2017-13802, CVE-2017-13803)
oval:org.secpod.oval:def:1800439 7440
CVE-2017-8361
CVE-2017-8362
CVE-2017-8363
CVE-2017-8365
[3.7] libsndfile: Multiple vulnerabilities (CVE-2017-8361, CVE-2017-8362, CVE-2017-8363, CVE-2017-8365)
oval:org.secpod.oval:def:1800474 8505
CVE-2018-6789
[3.7] exim: buffer overflow (CVE-2018-6789)
oval:org.secpod.oval:def:1800476 8175
CVE-2017-7826
CVE-2017-7828
CVE-2017-7830
[3.7] firefox-esr: Multiple vulnerabilities (CVE-2017-7826, CVE-2017-7828, CVE-2017-7830)
oval:org.secpod.oval:def:1800483 8013
CVE-2017-13765
CVE-2017-13766
CVE-2017-13767
CVE-2017-15191
CVE-2017-15192
CVE-2017-15193
[3.7] wireshark: Multiple vulnerabilities (CVE-2017-15191, CVE-2017-15192, CVE-2017-15193)
oval:org.secpod.oval:def:1800501 8187
CVE-2017-15873
CVE-2017-15874
CVE-2017-16544
[3.7] busybox: Multiple vulnerabilities (CVE-2017-15873, CVE-2017-15874, CVE-2017-16544)
oval:org.secpod.oval:def:1800526 7943
CVE-2017-11403
CVE-2017-13065
CVE-2017-13648
CVE-2017-14042
CVE-2017-14103
CVE-2017-14165
CVE-2017-14314
CVE-2017-14504
CVE-2017-14649
CVE-2017-14733
[3.7] graphicsmagick: Multiple vulnerabilities (CVE-2017-13065, CVE-2017-13648, CVE-2017-14042, CVE-2017-14103, CVE-2017-14165, CVE-2017-14649)
oval:org.secpod.oval:def:1800538 8392
CVE-2017-16879
[3.7] ncurses:Stack based buffer overflow (CVE-2017-16879)
oval:org.secpod.oval:def:1800546 8539
CVE-2018-6574
[3.7] go: arbitrary code execution during go get (CVE-2018-6574)
oval:org.secpod.oval:def:1800547 8145
CVE-2017-16231
CVE-2017-16232
[3.7] tiff: memory-based DoS in tiff2bw (CVE-2017-16232)
oval:org.secpod.oval:def:1800557 7726
CVE-2017-12904
[3.7] newsbeuter: Remote code execution (CVE-2017-12904)
oval:org.secpod.oval:def:1800564 7685
CVE-2017-11610
[3.7] supervisor: Command injection via malicious XML-RPC request (CVE-2017-11610)
oval:org.secpod.oval:def:1800567 8461
CVE-2017-18013
[3.7] Tiff: NULL pointer dereference in tif_print.c:TIFFPrintDirectory() (CVE-2017-18013)
oval:org.secpod.oval:def:1800571 7910
CVE-2017-13765
CVE-2017-13766
CVE-2017-13767
CVE-2017-15191
CVE-2017-15192
CVE-2017-15193
[3.7] wireshark: Multiple vulnerabilities (CVE-2017-13765, CVE-2017-13766, CVE-2017-13767)
oval:org.secpod.oval:def:1800579 7992
CVE-2017-11714
CVE-2017-9611
CVE-2017-9612
CVE-2017-9726
CVE-2017-9727
CVE-2017-9739
CVE-2017-9835
[3.7] ghostscript: Multiple vulnerabilities (CVE-2017-9611, CVE-2017-9612, CVE-2017-9726, CVE-2017-9727, CVE-2017-9739, CVE-2017-9835, CVE-2017-11714)
oval:org.secpod.oval:def:1800584 7863
CVE-2017-14482
[3.7] emacs: Unsafe enriched mode translations (CVE-2017-14482)
oval:org.secpod.oval:def:1800589 7572
CVE-2017-1000050
[3.7] jasper: NULL pointer exception in the function jp2_encode (CVE-2017-1000050)
oval:org.secpod.oval:def:1800607 7519
CVE-2017-7529
[3.7] nginx: Integer overflow in nginx range filter module leading to memory disclosure (CVE-2017-7529)
oval:org.secpod.oval:def:1800619 8054
CVE-2017-13783
CVE-2017-13784
CVE-2017-7087
CVE-2017-7089
CVE-2017-7090
CVE-2017-7091
CVE-2017-7092
CVE-2017-7093
CVE-2017-7095
CVE-2017-7096
CVE-2017-7098
CVE-2017-7100
CVE-2017-7102
CVE-2017-7104
CVE-2017-7107
CVE-2017-7109
CVE-2017-7111
CVE-2017-7117
CVE-2017-7120
[3.7] webkit2gtk: Multiple vulnerabilities (Various CVEs)
oval:org.secpod.oval:def:1800623 7646
CVE-2017-12562
[3.7] libsndfile: Heap-based Buffer Overflow (CVE-2017-12562)
oval:org.secpod.oval:def:1800642 8269
CVE-2017-17083
CVE-2017-17084
CVE-2017-17085
[3.7] wireshark: Multiple vulnerabilities (CVE-2017-17083, CVE-2017-17084, CVE-2017-17085)
oval:org.secpod.oval:def:1800672 7376
CVE-2017-9343
CVE-2017-9344
CVE-2017-9345
CVE-2017-9346
CVE-2017-9347
CVE-2017-9348
CVE-2017-9349
CVE-2017-9350
CVE-2017-9351
CVE-2017-9352
CVE-2017-9353
CVE-2017-9354
[3.7] wireshark: Multiple vulnerabilities (CVE-2017-9343, CVE-2017-9344, CVE-2017-9345, CVE-2017-9346, CVE-2017-9347, CVE-2017-9348, CVE-2017-9349, CVE-2017-9350, CVE-2017-9351, CVE-2017-9352, CVE-2017-9353, CVE-2017-9354)
oval:org.secpod.oval:def:1800688 8254
CVE-2017-15090
CVE-2017-15092
CVE-2017-15093
CVE-2017-15094
[3.7] pdns-recursor: Multiple vulnerabilities (CVE-2017-15090, CVE-2017-15092, CVE-2017-15093, CVE-2017-15094)
oval:org.secpod.oval:def:1800690 8298
CVE-2017-14176
[3.7] bzr: does not strip bzr+ssh SSH options (CVE-2017-14176)
oval:org.secpod.oval:def:1800702 7502
CVE-2017-10911
CVE-2017-10912
CVE-2017-10913
CVE-2017-10914
CVE-2017-10915
CVE-2017-10916
CVE-2017-10917
CVE-2017-10918
CVE-2017-10919
CVE-2017-10920
CVE-2017-10921
CVE-2017-10922
CVE-2017-10923
[3.7] xen: Multiple vulnerabilities (CVE-2017-10911, CVE-2017-10912, CVE-2017-10913, CVE-2017-10914, CVE-2017-10915, CVE-2017-10916, CVE-2017-10917, CVE-2017-10918, CVE-2017-10919, CVE-2017-10920, CVE-2017-10921, CVE-2017-10922, CVE-2017-10923)
oval:org.secpod.oval:def:1800705 8439
CVE-2018-1000005
CVE-2018-1000007
[3.7] curl: Multiple vulnerabilities (CVE-2018-1000005, CVE-2018-1000007)
oval:org.secpod.oval:def:1800707 8164
CVE-2017-8807
[3.7] varnish: Data leak – &quot
oval:org.secpod.oval:def:1800708 8512
CVE-2017-13884
CVE-2017-13885
CVE-2017-5715
CVE-2017-5753
CVE-2017-7153
CVE-2017-7160
CVE-2017-7161
CVE-2017-7165
CVE-2018-4088
CVE-2018-4096
[3.7] webkit2gtk: Multiple vulnerabilities (CVE-2017-5753, CVE-2017-5715, CVE-2018-4088, CVE-2018-4096, CVE-2017-7153, CVE-2017-7160, CVE-2017-7161, CVE-2017-7165, CVE-2017-13884, CVE-2017-13885)
oval:org.secpod.oval:def:1800713 8292
CVE-2017-17439
[3.7] heimdal: NULL pointer dereference via crafted UDP packets (CVE-2017-17439)
oval:org.secpod.oval:def:1800729 7590
CVE-2017-7506
[3.7] spice: Possible buffer overflow via invalid monitor configurations (CVE-2017-7506)
oval:org.secpod.oval:def:1800730 7756
CVE-2017-11423
CVE-2017-6419
[3.7] libmspack: Multiple vulnerabilities (CVE-2017-6419, CVE-2017-11423)
oval:org.secpod.oval:def:1800738 7748
CVE-2017-11638
CVE-2017-11642
CVE-2017-11722
CVE-2017-12935
CVE-2017-12936
CVE-2017-12937
CVE-2017-13063
CVE-2017-13064
[3.7] graphicsmagick: Multiple vulnerabilities (CVE-2017-11642, CVE-2017-11722, CVE-2017-12935, CVE-2017-12936, CVE-2017-12937, CVE-2017-13063, CVE-2017-13064)
oval:org.secpod.oval:def:1800747 7897
CVE-2016-1238
CVE-2017-12837
CVE-2017-12883
[3.7] perl: Multiple vulnerabilities (CVE-2017-12837, CVE-2017-12883)
oval:org.secpod.oval:def:1800761 7463
CVE-2017-3167
CVE-2017-3169
CVE-2017-7659
CVE-2017-7668
CVE-2017-7679
[3.7] apache2: Several vulnerabilities (CVE-2017-3167, CVE-2017-3169, CVE-2017-7659, CVE-2017-7668, CVE-2017-7679)
oval:org.secpod.oval:def:1800774 8288
CVE-2017-16944
[3.7] exim: infinite loop and stack exhaustion in receive_msg function via vectors involving BDAT commands (CVE-2017-16944)
oval:org.secpod.oval:def:1800776 8318
CVE-2017-16548
CVE-2017-17433
CVE-2017-17434
[3.7] rsync: Several vulnerabilities (CVE-2017-16548, CVE-2017-17433, CVE-2017-17434)
oval:org.secpod.oval:def:1800785 7601
CVE-2017-10790
[3.7] libtasn1: NULL pointer dereference in the _asn1_check_identifier function (CVE-2017-10790)
oval:org.secpod.oval:def:1800823 7719
CVE-2017-7555
[3.7] augeas: Improper handling of escaped strings leading to memory corruption (CVE-2017-7555)
oval:org.secpod.oval:def:1800826 8520
CVE-2017-17563
CVE-2017-17564
CVE-2017-17565
CVE-2017-17566
CVE-2017-5715
CVE-2017-5753
CVE-2017-5754
[3.7] xen: Multiple vulnerabilities (CVE-2017-5753, CVE-2017-5715, CVE-2017-5754)
oval:org.secpod.oval:def:1800833 7923
CVE-2017-13735
CVE-2017-14265
[3.7] libraw: multiple issues (CVE-2017-13735, CVE-2017-14265)
oval:org.secpod.oval:def:1800853 7751
CVE-2017-12791
[3.7] salt: Directory traversal vulnerability on salt-master via crafted minion IDs (CVE-2017-12791)
oval:org.secpod.oval:def:1800860 7891
CVE-2017-12150
CVE-2017-12151
CVE-2017-12163
[3.7] samba: Multiple vulnerabilities (CVE-2017-12150, CVE-2017-12151, CVE-2017-12163)
oval:org.secpod.oval:def:1800865 8551
CVE-2018-1000024
CVE-2018-1000027
[3.7] squid: Multiple vulnerabilities (CVE-2018-1000024, CVE-2018-1000027)
oval:org.secpod.oval:def:1800869 7402
CVE-2017-9334
[3.7] chicken: Unsafe pointer dereference due to incorrect pair? check in Scheme &amp
oval:org.secpod.oval:def:1800879 8372
CVE-2017-1000501
[3.7] awstats: Path traversal flaws (CVE-2017-1000501)
oval:org.secpod.oval:def:1800886 7673
CVE-2017-7753
CVE-2017-7779
CVE-2017-7784
CVE-2017-7785
CVE-2017-7786
CVE-2017-7787
CVE-2017-7791
CVE-2017-7792
CVE-2017-7798
CVE-2017-7800
CVE-2017-7801
CVE-2017-7802
CVE-2017-7803
CVE-2017-7807
CVE-2017-7809
[3.7] firefox-esr: Multiple vulnerabilities (CVE-2017-7753, CVE-2017-7779, CVE-2017-7784, CVE-2017-7785, CVE-2017-7786, CVE-2017-7787, CVE-2017-7791, CVE-2017-7792, , CVE-2017-7802, CVE-2017-7803, CVE-2017-7807, CVE-2017-7809)
oval:org.secpod.oval:def:1800889 7538
CVE-2017-11103
[3.7] heimdal: Orpheus&amp
oval:org.secpod.oval:def:1800902 8334
CVE-2017-13856
CVE-2017-13866
CVE-2017-13870
CVE-2017-7156
CVE-2017-7157
[3.7] webkit2gtk: Multiple vulnerabilities (CVE-2017-7156, CVE-2017-13856, CVE-2017-13866, CVE-2017-13870)
oval:org.secpod.oval:def:1800908 8434
CVE-2017-17997
CVE-2018-5334
CVE-2018-5335
CVE-2018-5336
[3.7] wireshark: Multiple vulnerabilities (CVE-2018-5334, CVE-2018-5335, CVE-2018-5336)
oval:org.secpod.oval:def:44771 CVE-2018-0739 Denial of service vulnerability in OpenSSL due to constructed ASN.1 types with a recursive definition
oval:org.secpod.oval:def:44772 CVE-2018-6608 Information disclosure vulnerability in Opera via a STUN request
oval:org.secpod.oval:def:44773 CVE-2018-6608 Information disclosure vulnerability in Opera via a STUN request (Mac OS X)
oval:org.secpod.oval:def:44774 CVE-2018-5148 Use-after-free vulnerability vulnerability in Mozilla Firefox and Firefox ESR – CVE-2018-5148
oval:org.secpod.oval:def:44775 CVE-2018-5148
MFSA2018-10
Use-after-free vulnerability in Mozilla Firefox and Firefox ESR – MFSA2018-10
oval:org.secpod.oval:def:44776 CVE-2018-5148 Use-after-free vulnerability vulnerability in Mozilla Firefox and Firefox ESR – CVE-2018-5148 (Mac OS X)
oval:org.secpod.oval:def:44777 CVE-2018-5148
MFSA2018-10
Use-after-free vulnerability in Mozilla Firefox and Firefox ESR – MFSA2018-10 (Mac OS X)
oval:org.secpod.oval:def:603332 CVE-2018-1000051
CVE-2018-6544
DSA-4152-1
DSA-4152-1 mupdf — mupdf
oval:org.secpod.oval:def:603333 CVE-2018-5148
DSA-4153-1
DSA-4153-1 firefox-esr — firefox-esr
oval:org.secpod.oval:def:603336 CVE-2018-7600
DSA-4156-1
DSA-4156-1 drupal7 — drupal7
oval:org.secpod.oval:def:704029 CVE-2017-15422
USN-3610-1
USN-3610-1 — icu vulnerability
oval:org.secpod.oval:def:704030 CVE-2018-1000140
USN-3612-1
USN-3612-1 — librelp vulnerability
oval:org.secpod.oval:def:704031 CVE-2018-5148
USN-3609-1
USN-3609-1 — firefox vulnerability
oval:org.secpod.oval:def:704032 CVE-2018-0739
USN-3611-1
USN-3611-1 — openssl vulnerability