The following SCAP content has been released to SCAP Repo and SecPod ANCOR. SecPod Saner will automatically pull the relevant content on its next scheduled update. This is a list of vulnerabilities detected using a vulnerability management solution.
Also, a patch management tool can patch these vulnerabilities.
| oval:org.secpod.oval:def:19952 | CVE-2014-1741, | Multiple integer overflow vulnerabilities in Google Chrome via vectors related to ranges |
| oval:org.secpod.oval:def:19951 | CVE-2014-1740, | Multiple use-after-free vulnerabilities in Google Chrome via vectors related to WebSocketJob deletion |
| oval:org.secpod.oval:def:19954 | CVE-2014-1740, CVE-2014-1741, CVE-2014-1742, VENDORLINK, |
Multiple vulnerabilities in Google Chrome |
| oval:org.secpod.oval:def:19953 | CVE-2014-1742, | Use-after-free vulnerability in FrameSelection::updateAppearance function in Google Chrome |
| oval:org.secpod.oval:def:19958 | CVE-2014-1740, | Multiple use-after-free vulnerabilities in Google Chrome via vectors related to WebSocketJob deletion (rpm) |
| oval:org.secpod.oval:def:19960 | CVE-2014-1741, | Multiple integer overflow vulnerabilities in Google Chrome via vectors related to ranges (rpm) |
| oval:org.secpod.oval:def:19962 | CVE-2014-1742, | Use-after-free vulnerability in FrameSelection::updateAppearance function in Google Chrome (rpm) |
| oval:org.secpod.oval:def:19957 | CVE-2014-1740, | Multiple use-after-free vulnerabilities in Google Chrome via vectors related to WebSocketJob deletion (deb) |
| oval:org.secpod.oval:def:19959 | CVE-2014-1741, | Multiple integer overflow vulnerabilities in Google Chrome via vectors related to ranges (deb) |
| oval:org.secpod.oval:def:19961 | CVE-2014-1742, | Use-after-free vulnerability in FrameSelection::updateAppearance function in Google Chrome (deb) |
| oval:org.secpod.oval:def:19956 | CVE-2014-1740, CVE-2014-1741, CVE-2014-1742, VENDORLINK, |
Multiple vulnerabilities in Google Chrome (rpm) |
| oval:org.secpod.oval:def:19955 | CVE-2014-1740, CVE-2014-1741, CVE-2014-1742, VENDORLINK, |
Multiple vulnerabilities in Google Chrome (deb) |
| oval:org.secpod.oval:def:19963 | CVE-2014-3154, | Use-after-free vulnerability in content/child/child_thread.cc in Google Chrome |
| oval:org.secpod.oval:def:19964 | CVE-2014-3155, | Denial of service vulnerability in SPDY implementation in Google Chrome |
| oval:org.secpod.oval:def:19965 | CVE-2014-3156, | Buffer overflow vulnerability in clipboard implementation in Google Chrome |
| oval:org.secpod.oval:def:19966 | CVE-2014-3157, | Heap-based buffer overflow vulnerability in media/filters/ffmpeg_video_decoder.cc in Google Chrome |
| oval:org.secpod.oval:def:19967 | CVE-2014-3154, CVE-2014-3155, CVE-2014-3156, CVE-2014-3157, VENDORLINK, |
Multiple vulnerabilities in Google Chrome |
| oval:org.secpod.oval:def:19976 | CVE-2014-3157, | Heap-based buffer overflow vulnerability in media/filters/ffmpeg_video_decoder.cc in Google Chrome (deb) |
| oval:org.secpod.oval:def:19975 | CVE-2014-3156, | Buffer overflow vulnerability in clipboard implementation in Google Chrome (rpm) |
| oval:org.secpod.oval:def:19974 | CVE-2014-3156, | Buffer overflow vulnerability in clipboard implementation in Google Chrome (deb) |
| oval:org.secpod.oval:def:19973 | CVE-2014-3155, | Denial of service vulnerability in SPDY implementation in Google Chrome (rpm) |
| oval:org.secpod.oval:def:19972 | CVE-2014-3155, | Denial of service vulnerability in SPDY implementation in Google Chrome (deb) |
| oval:org.secpod.oval:def:19971 | CVE-2014-3154, | Use-after-free vulnerability in content/child/child_thread.cc in Google Chrome (rpm) |
| oval:org.secpod.oval:def:19970 | CVE-2014-3154, | Use-after-free vulnerability in content/child/child_thread.cc in Google Chrome (deb) |
| oval:org.secpod.oval:def:19969 | CVE-2014-3154, CVE-2014-3155, CVE-2014-3156, CVE-2014-3157, VENDORLINK, |
Multiple vulnerabilities in Google Chrome (rpm) |
| oval:org.secpod.oval:def:19968 | CVE-2014-3154, CVE-2014-3155, CVE-2014-3156, CVE-2014-3157, VENDORLINK, |
Multiple vulnerabilities in Google Chrome (deb) |
| oval:org.secpod.oval:def:19977 | CVE-2014-3157, | Heap-based buffer overflow vulnerability in media/filters/ffmpeg_video_decoder.cc in Google Chrome (rpm) |
| oval:org.secpod.oval:def:19981 | CVE-2014-3157, | Heap-based buffer overflow vulnerability in media/filters/ffmpeg_video_decoder.cc in Google Chrome (Mac OS X) |
| oval:org.secpod.oval:def:19980 | CVE-2014-3156, | Buffer overflow vulnerability in clipboard implementation in Google Chrome (Mac OS X) |
| oval:org.secpod.oval:def:19979 | CVE-2014-3155, | Denial of service vulnerability in SPDY implementation in Google Chrome (Mac OS X) |
| oval:org.secpod.oval:def:19978 | CVE-2014-3154, | Use-after-free vulnerability in content/child/child_thread.cc in Google Chrome (Mac OS X) |
| oval:org.secpod.oval:def:19982 | CVE-2014-3154, CVE-2014-3155, CVE-2014-3156, CVE-2014-3157, VENDORLINK, |
Multiple vulnerabilities in Google Chrome (Mac OS X) |
| oval:org.secpod.oval:def:19930 | CVE-2010-5298, | Denial of service vulnerability in the ssl3_read_bytes function in OpenSSL |
| oval:org.secpod.oval:def:19905 | CVE-2014-1533, CVE-2014-1534, MFSA 2014-48, |
Mozilla Products: Miscellaneous memory safety hazards – mfsa2014-48 |
| oval:org.secpod.oval:def:19911 | CVE-2014-1533, | Mozilla Products: Miscellaneous memory safety hazards – CVE-2014-1533 |
| oval:org.secpod.oval:def:19912 | CVE-2014-1534, | Mozilla Products: Miscellaneous memory safety hazards – CVE-2014-1534 |
| oval:org.secpod.oval:def:19913 | CVE-2014-1536, | Mozilla Products: Use-after-free and out of bounds issues found using Address Sanitizer – CVE-2014-1536 |
| oval:org.secpod.oval:def:19914 | CVE-2014-1537, | Mozilla Products: Use-after-free and out of bounds issues found using Address Sanitizer – CVE-2014-1537 |
| oval:org.secpod.oval:def:19915 | CVE-2014-1538, | Mozilla Products: Use-after-free and out of bounds issues found using Address Sanitizer – CVE-2014-1538 |
| oval:org.secpod.oval:def:19916 | CVE-2014-1540, | Mozilla Products: Use-after-free in Event Listener Manager – CVE-2014-1540 |
| oval:org.secpod.oval:def:19917 | CVE-2014-1541, | Mozilla Products: Use-after-free with SMIL Animation Controller – CVE-2014-1541 |
| oval:org.secpod.oval:def:19918 | CVE-2014-1542, | Mozilla Products: Buffer overflow in Web Audio Speex resampler – CVE-2014-1542 |
| oval:org.secpod.oval:def:19919 | CVE-2014-1543, | Mozilla Products: Buffer overflow in Gamepad API – CVE-2014-1543 |
| oval:org.secpod.oval:def:19906 | CVE-2014-1536, CVE-2014-1537, CVE-2014-1538, MFSA 2014-49, |
Mozilla Products: Use-after-free and out of bounds issues found using Address Sanitizer – mfsa2014-49 |
| oval:org.secpod.oval:def:19907 | CVE-2014-1540, MFSA 2014-51, |
Mozilla Products: Use-after-free in Event Listener Manager – mfsa2014-51 |
| oval:org.secpod.oval:def:19908 | CVE-2014-1541, MFSA 2014-52, |
Mozilla Products: Use-after-free with SMIL Animation Controller – mfsa2014-52 |
| oval:org.secpod.oval:def:19909 | CVE-2014-1542, MFSA 2014-53, |
Mozilla Products: Buffer overflow in Web Audio Speex resampler – mfsa2014-53 |
| oval:org.secpod.oval:def:19910 | CVE-2014-1543, MFSA 2014-54, |
Mozilla Products: Buffer overflow in Gamepad API – mfsa2014-54 |
| oval:org.secpod.oval:def:19986 | CVE-2014-1533, CVE-2014-1534, MFSA 2014-48, |
Mozilla Products: Miscellaneous memory safety hazards – mfsa2014-48 (Mac OS X) |
| oval:org.secpod.oval:def:19993 | CVE-2014-1533, | Mozilla Products: Miscellaneous memory safety hazards – CVE-2014-1533 (Mac OS X) |
| oval:org.secpod.oval:def:19994 | CVE-2014-1534, | Mozilla Products: Miscellaneous memory safety hazards – CVE-2014-1534 (Mac OS X) |
| oval:org.secpod.oval:def:19995 | CVE-2014-1536, | Mozilla Products: Use-after-free and out of bounds issues found using Address Sanitizer – CVE-2014-1536 (Mac OS X) |
| oval:org.secpod.oval:def:19996 | CVE-2014-1537, | Mozilla Products: Use-after-free and out of bounds issues found using Address Sanitizer – CVE-2014-1537 (Mac OS X) |
| oval:org.secpod.oval:def:19997 | CVE-2014-1538, | Mozilla Products: Use-after-free and out of bounds issues found using Address Sanitizer – CVE-2014-1538 (Mac OS X) |
| oval:org.secpod.oval:def:19998 | CVE-2014-1539, | Mozilla Products: Clickjacking through cursor invisability after Flash interaction – CVE-2014-1539 (Mac OS X) |
| oval:org.secpod.oval:def:19999 | CVE-2014-1540, | Mozilla Products: Use-after-free in Event Listener Manager – CVE-2014-1540 (Mac OS X) |
| oval:org.secpod.oval:def:20000 | CVE-2014-1541, | Mozilla Products: Use-after-free with SMIL Animation Controller – CVE-2014-1541 (Mac OS X) |
| oval:org.secpod.oval:def:20001 | CVE-2014-1542, | Mozilla Products: Buffer overflow in Web Audio Speex resampler – CVE-2014-1542 (Mac OS X) |
| oval:org.secpod.oval:def:20002 | CVE-2014-1543, | Mozilla Products: Buffer overflow in Gamepad API – CVE-2014-1543 (Mac OS X) |
| oval:org.secpod.oval:def:19987 | CVE-2014-1536, CVE-2014-1537, CVE-2014-1538, MFSA 2014-49, |
Mozilla Products: Use-after-free and out of bounds issues found using Address Sanitizer – mfsa2014-49 (Mac OS X) |
| oval:org.secpod.oval:def:19988 | CVE-2014-1539, MFSA 2014-50, |
Mozilla Products: Clickjacking through cursor invisability after Flash interaction – mfsa2014-50 (Mac OS X) |
| oval:org.secpod.oval:def:19989 | CVE-2014-1540, MFSA 2014-51, |
Mozilla Products: Use-after-free in Event Listener Manager – mfsa2014-51 (Mac OS X) |
| oval:org.secpod.oval:def:19990 | CVE-2014-1541, MFSA 2014-52, |
Mozilla Products: Use-after-free with SMIL Animation Controller – mfsa2014-52 (Mac OS X) |
| oval:org.secpod.oval:def:19991 | CVE-2014-1542, MFSA 2014-53, |
Mozilla Products: Buffer overflow in Web Audio Speex resampler – mfsa2014-53 (Mac OS X) |
| oval:org.secpod.oval:def:19992 | CVE-2014-1543, MFSA 2014-54, |
Mozilla Products: Buffer overflow in Gamepad API – mfsa2014-54 (Mac OS X) |
| oval:org.secpod.oval:def:19935 | CVE-2014-0531, | Cross-site scripting (XSS) vulnerability in Adobe Flash Player – CVE-2014-0531 (rpm) |
| oval:org.secpod.oval:def:19944 | CVE-2014-0535, | Security bypass vulnerability in Adobe Flash Player – CVE-2014-0535 (dpkg) |
| oval:org.secpod.oval:def:19931 | APSB14-13, CVE-2014-0515, |
Buffer overflow vulnerability in Adobe Flash Player – APSB14-13 (rpm) |
| oval:org.secpod.oval:def:19945 | CVE-2014-0536, | Memory corruption vulnerability in Adobe Flash Player – CVE-2014-0536 (rpm) |
| oval:org.secpod.oval:def:19946 | CVE-2014-0536, | Memory corruption vulnerability in Adobe Flash Player – CVE-2014-0536 (dpkg) |
| oval:org.secpod.oval:def:19947 | APSB14-16, CVE-2014-0531, CVE-2014-0532, CVE-2014-0533, CVE-2014-0534, CVE-2014-0535, CVE-2014-0536, |
Multiple vulnerabilities in Adobe Flash Player – APSB14-16 (rpm) |
| oval:org.secpod.oval:def:19948 | APSB14-16, CVE-2014-0531, CVE-2014-0532, CVE-2014-0533, CVE-2014-0534, CVE-2014-0535, CVE-2014-0536, |
Multiple vulnerabilities in Adobe Flash Player – APSB14-16 (dpkg) |
| oval:org.secpod.oval:def:19936 | CVE-2014-0531, | Cross-site scripting (XSS) vulnerability in Adobe Flash Player – CVE-2014-0531 (dpkg) |
| oval:org.secpod.oval:def:19932 | APSB14-13, CVE-2014-0515, |
Buffer overflow vulnerability in Adobe Flash Player – APSB14-13 (dpkg) |
| oval:org.secpod.oval:def:19937 | CVE-2014-0532, | Cross-site scripting (XSS) vulnerability in Adobe Flash Player – CVE-2014-0532 (rpm) |
| oval:org.secpod.oval:def:19933 | CVE-2014-0515, | Buffer overflow vulnerability in Adobe Flash Player – CVE-2014-0515 (rpm) |
| oval:org.secpod.oval:def:19938 | CVE-2014-0532, | Cross-site scripting (XSS) vulnerability in Adobe Flash Player – CVE-2014-0532 (dpkg) |
| oval:org.secpod.oval:def:19934 | CVE-2014-0515, | Buffer overflow vulnerability in Adobe Flash Player – CVE-2014-0515 (dpkg) |
| oval:org.secpod.oval:def:19939 | CVE-2014-0533, | Cross-site scripting (XSS) vulnerability in Adobe Flash Player – CVE-2014-0533 (rpm) |
| oval:org.secpod.oval:def:19940 | CVE-2014-0533, | Cross-site scripting (XSS) vulnerability in Adobe Flash Player – CVE-2014-0533 (dpkg) |
| oval:org.secpod.oval:def:19941 | CVE-2014-0534, | Security bypass vulnerability in Adobe Flash Player – CVE-2014-0534 (rpm) |
| oval:org.secpod.oval:def:19942 | CVE-2014-0534, | Security bypass vulnerability in Adobe Flash Player – CVE-2014-0534 (dpkg) |
| oval:org.secpod.oval:def:19943 | CVE-2014-0535, | Security bypass vulnerability in Adobe Flash Player – CVE-2014-0535 (rpm) |
| oval:org.secpod.oval:def:19983 | CVE-2013-3663, | Heap-based buffer overflow vulnerability in Trimble SketchUp (formerly Google SketchUp) |
| oval:org.secpod.oval:def:19984 | CVE-2014-4174, | Denial of service vulnerability in the libpcap file parser in Wireshark |
| oval:org.secpod.oval:def:19985 | CVE-2014-4020, | Denial of service vulnerability in the frame metadissector in Wireshark |
| oval:org.secpod.oval:def:19920 | CVE-2009-0200, | Integer underflow vulnerability in OpenOffice.org via crafted records |
| oval:org.secpod.oval:def:19929 | CVE-2008-0320, | Heap-based buffer overflow vulnerability in the OLE importer in OpenOffice.org via a crafted OLE file |
| oval:org.secpod.oval:def:19921 | CVE-2009-0201, | Heap-based buffer overflow vulnerability in OpenOffice.org via unspecified records |
| oval:org.secpod.oval:def:19922 | CVE-2009-2949, | Integer overflow vulnerability in OpenOffice.org via a crafted XPM file |
| oval:org.secpod.oval:def:19923 | CVE-2009-2950, | Heap-based buffer overflow vulnerability in OpenOffice.org via a crafted GIF file |
| oval:org.secpod.oval:def:19924 | CVE-2009-3301, | Integer underflow vulnerability in OpenOffice.org via a crafted document |
| oval:org.secpod.oval:def:19925 | CVE-2009-3302, | Boundary error vulnerability in OpenOffice.org via a crafted document |
| oval:org.secpod.oval:def:19926 | CVE-2008-2237, | Heap-based buffer overflow vulnerability in OpenOffice.org via a crafted WMF file |
| oval:org.secpod.oval:def:19927 | CVE-2008-2238, | Multiple integer overflows vulnerabilities in OpenOffice.org via a crafted EMF file |
| oval:org.secpod.oval:def:19928 | CVE-2008-2152, | Integer overflow vulnerability in OpenOffice.org via a crafted file |
| oval:org.secpod.oval:def:702056 | CVE-2014-0155, CVE-2014-2568, CVE-2014-3122, CVE-2014-3153, USN-2241-1, |
USN-2241-1 — Linux kernel vulnerabilities |
| oval:org.secpod.oval:def:702057 | CVE-2013-4387, CVE-2013-4470, CVE-2013-4483, CVE-2014-1438, CVE-2014-3122, CVE-2014-3153, USN-2233-1, |
USN-2233-1 — Linux kernel vulnerabilities |
| oval:org.secpod.oval:def:702058 | CVE-2014-0191, USN-2214-2, |
USN-2214-2 — libxml2 regression |
| oval:org.secpod.oval:def:702059 | CVE-2014-2568, CVE-2014-3122, CVE-2014-3153, USN-2240-1, |
USN-2240-1 — Linux kernel vulnerabilities |
| oval:org.secpod.oval:def:702060 | CVE-2014-0055, CVE-2014-3122, CVE-2014-3153, USN-2235-1, |
USN-2235-1 — Linux kernel vulnerabilities |
| oval:org.secpod.oval:def:702061 | CVE-2014-1533, CVE-2014-1534, CVE-2014-1536, CVE-2014-1537, CVE-2014-1538, CVE-2014-1540, CVE-2014-1541, CVE-2014-1542, USN-2243-1, |
USN-2243-1 — Firefox vulnerabilities |
| oval:org.secpod.oval:def:702062 | CVE-2014-0195, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470, USN-2232-2, |
USN-2232-2 — OpenSSL regression |
| oval:org.secpod.oval:def:702063 | CVE-2013-4387, CVE-2013-4470, CVE-2013-4483, CVE-2014-1438, CVE-2014-3122, CVE-2014-3153, USN-2234-1, |
USN-2234-1 — Linux kernel (EC2) vulnerabilities |
| oval:org.secpod.oval:def:702064 | CVE-2013-4483, CVE-2014-3153, USN-2238-1, |
USN-2238-1 — Linux kernel (Raring HWE) vulnerabilities |
| oval:org.secpod.oval:def:702065 | CVE-2014-3153, USN-2237-1, |
USN-2237-1 — Linux kernel (Quantal HWE) vulnerability |
| oval:org.secpod.oval:def:702066 | CVE-2014-3864, CVE-2014-3865, USN-2242-1, |
USN-2242-1 — dpkg vulnerabilities |
| oval:org.secpod.oval:def:702067 | CVE-2014-0055, CVE-2014-3122, CVE-2014-3153, USN-2236-1, |
USN-2236-1 — Linux kernel (OMAP4) vulnerabilities |
| oval:org.secpod.oval:def:702068 | CVE-2014-0195, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470, USN-2232-1, |
USN-2232-1 — OpenSSL vulnerabilities |
| oval:org.secpod.oval:def:702069 | CVE-2013-6370, CVE-2013-6371, USN-2245-1, |
USN-2245-1 — json-c vulnerabilities |
| oval:org.secpod.oval:def:702070 | CVE-2014-0476, USN-2230-1, |
USN-2230-1 — chkrootkit vulnerability |
| oval:org.secpod.oval:def:702071 | CVE-2014-3984, USN-2244-1, |
USN-2244-1 — Libav vulnerability |
| oval:org.secpod.oval:def:702072 | CVE-2014-0155, CVE-2014-2568, CVE-2014-3122, CVE-2014-3153, USN-2239-1, |
USN-2239-1 — Linux kernel (Saucy HWE) vulnerabilities |