McAfee Foundstone FSL Update · mariadb-client-10.1_10.1.37-0+deb9u1 libmariadbclient18_10.1.37-0+deb9u1 mariadb-plugin-cracklib-password-check_10.1.37-0+deb9u1 mariadb-common_10.1.37-0+deb9u1

2018-NOV-22FSL version 7.6.70

MCAFEE FOUNDSTONE FSL UPDATE

To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is adetailed summary of the new and updated checks included with this release.

NEW CHECKS

24445 - Advantech WebAccess Multiple Vulnerabilities (ICSA-18-296-01)

Category: General Vulnerability Assessment -> NonIntrusive -> Web ServerRisk Level: HighCVE: CVE-2018-14806, CVE-2018-14816, CVE-2018-14820, CVE-2018-14828

DescriptionMultiple vulnerabilities are present in some versions of Advantech WebAccess.

ObservationAdvantech WebAccess is a web-based HMI software application used in energy, manufacturing, and building automation systems.

Multiple vulnerabilities are present in some versions of Advantech WebAccess. The flaws lie in multiple components. Successful exploitation could allow a remote attacker to execute arbitrary code on the target system.

24420 - (HT209197) Apple iTunes Vulnerabilities Prior To 12.9.1

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: HighCVE: CVE-2018-4372, CVE-2018-4373, CVE-2018-4374, CVE-2018-4375, CVE-2018-4376, CVE-2018-4377, CVE-2018-4378,CVE-2018-4382, CVE-2018-4386, CVE-2018-4392, CVE-2018-4394, CVE-2018-4398, CVE-2018-4409, CVE-2018-4416

DescriptionMultiple vulnerabilities are present in some versions of Apple iTunes.

ObservationApple iTunes is a media management software.

Multiple vulnerabilities are present in some versions of Apple iTunes. The flaws lie in several components. Successful exploitation could allow an attacker to remotely execute arbitrary code or cause a denial of service condition on the target system.

24444 - Joomla ACL Violation In com_users For The Admin Verification Vulnerability (20181004)

Category: General Vulnerability Assessment -> NonIntrusive -> Web ServerRisk Level: HighCVE: CVE-2018-17855

DescriptionA vulnerability is present in some versions of Joomla.

Observation

Joomla is an open source content management system.

A vulnerability is present in some versions of Joomla. The flaw is due to inadequate check in registration of com_users. Successful exploitation by an attacker could allow an attacker to bypass security access restrictions and escalate privileges on the target system.

196190 - Red Hat Enterprise Linux RHSA-2018-3644 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and HotfixesRisk Level: HighCVE: CVE-2018-15981

DescriptionThe scan detected that the host is missing the following update:RHSA-2018-3644

ObservationUpdates often remediate critical security problems that should be quickly addressed.For more information see:

http://www.redhat.com/archives/rhsa-announce/2018-November/msg00041.html

RHEL6Dx86_64flash-plugin-31.0.0.153-1.el6_10

i386flash-plugin-31.0.0.153-1.el6_10

RHEL6Sx86_64flash-plugin-31.0.0.153-1.el6_10

i386flash-plugin-31.0.0.153-1.el6_10

RHEL6WSx86_64flash-plugin-31.0.0.153-1.el6_10

i386flash-plugin-31.0.0.153-1.el6_10

147340 - SuSE SLES 12 SP3 SUSE-SU-2018:3773-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-14633, CVE-2018-18281, CVE-2018-18386, CVE-2018-18690, CVE-2018-18710, CVE-2018-9516

DescriptionThe scan detected that the host is missing the following update:SUSE-SU-2018:3773-1


http://lists.suse.com/pipermail/sle-security-updates/2018-November/004855.html

SuSE SLES 12 SP3x86_64kernel-syms-rt-4.4.162-3.29.1cluster-md-kmp-rt-debuginfo-4.4.162-3.29.1gfs2-kmp-rt-debuginfo-4.4.162-3.29.1kernel-rt-base-debuginfo-4.4.162-3.29.1cluster-md-kmp-rt-4.4.162-3.29.1kernel-rt_debug-debuginfo-4.4.162-3.29.1kernel-rt-devel-4.4.162-3.29.1kernel-rt-debuginfo-4.4.162-3.29.1kernel-rt_debug-debugsource-4.4.162-3.29.1kernel-rt_debug-devel-debuginfo-4.4.162-3.29.1dlm-kmp-rt-debuginfo-4.4.162-3.29.1kernel-rt_debug-devel-4.4.162-3.29.1dlm-kmp-rt-4.4.162-3.29.1gfs2-kmp-rt-4.4.162-3.29.1ocfs2-kmp-rt-debuginfo-4.4.162-3.29.1kernel-rt-debugsource-4.4.162-3.29.1kernel-rt-4.4.162-3.29.1ocfs2-kmp-rt-4.4.162-3.29.1kernel-rt-base-4.4.162-3.29.1

noarchkernel-source-rt-4.4.162-3.29.1kernel-devel-rt-4.4.162-3.29.1

24453 - (SB10255) McAfee Web Gateway Multiple Vulnerabilities

Category: SSH Module -> NonIntrusive -> SSH MiscellaneousRisk Level: HighCVE: CVE-2018-13785, CVE-2018-3180

DescriptionMultiple vulnerabilities are present in some versions of McAfee Web Gateway.

ObservationMcAfee Web Gateway is a web based security control system designed to prevent web application attacks.

Multiple vulnerabilities are present in some versions of McAfee Web Gateway. The flaw lies in multiple components. Successful exploitation could allow an attacker to access or modify unauthorized data, cause a denial of service.

131247 - Debian Linux 9.0 DSA-4341-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: HighCVE: CVE-2017-10268, CVE-2017-10378, CVE-2017-15365, CVE-2018-2562, CVE-2018-2612, CVE-2018-2622, CVE-2018-2640,CVE-2018-2665, CVE-2018-2668, CVE-2018-2755, CVE-2018-2761, CVE-2018-2766, CVE-2018-2767, CVE-2018-2771, CVE-2018-2781, CVE-2018-2782, CVE-2018-2784, CVE-2018-2787, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3063, CVE-2018-3064, CVE-2018-3066, CVE-2018-3081, CVE-2018-3143, CVE-2018-3156, CVE-2018-3174,CVE-2018-3251, CVE-2018-3282

DescriptionThe scan detected that the host is missing the following update:

DSA-4341-1


http://www.debian.org/security/2018/dsa-4341

Debian 9.0allmariadb-plugin-tokudb_10.1.37-0+deb9u1mariadb-plugin-mroonga_10.1.37-0+deb9u1mariadb-test_10.1.37-0+deb9u1mariadb-plugin-gssapi-server_10.1.37-0+deb9u1mariadb-client_10.1.37-0+deb9u1libmariadbd-dev_10.1.37-0+deb9u1mariadb-server-10.1_10.1.37-0+deb9u1libmariadbclient-dev_10.1.37-0+deb9u1mariadb-plugin-gssapi-client_10.1.37-0+deb9u1mariadb-server-core-10.1_10.1.37-0+deb9u1mariadb-plugin-oqgraph_10.1.37-0+deb9u1mariadb-client-core-10.1_10.1.37-0+deb9u1mariadb-server_10.1.37-0+deb9u1mariadb-plugin-connect_10.1.37-0+deb9u1mariadb-plugin-spider_10.1.37-0+deb9u1libmariadbclient-dev-compat_10.1.37-0+deb9u1mariadb-client-10.1_10.1.37-0+deb9u1libmariadbclient18_10.1.37-0+deb9u1mariadb-plugin-cracklib-password-check_10.1.37-0+deb9u1mariadb-common_10.1.37-0+deb9u1mariadb-test-data_10.1.37-0+deb9u1libmariadbd18_10.1.37-0+deb9u1

132487 - Oracle VM OVMSA-2018-0271 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle VM Patches and HotfixesRisk Level: HighCVE: CVE-2018-10981, CVE-2018-10982, CVE-2018-3620, CVE-2018-3639, CVE-2018-3646, CVE-2018-3665, CVE-2018-7540,CVE-2018-7541, CVE-2018-8897

DescriptionThe scan detected that the host is missing the following update:OVMSA-2018-0271


http://oss.oracle.com/pipermail/oraclevm-errata/2018-November/000905.html

OVM3.3x86_64xen-tools-4.3.0-55.el6.186.195xen-4.3.0-55.el6.186.195


Category: SSH Module -> NonIntrusive -> Oracle VM Patches and HotfixesRisk Level: HighCVE: CVE-2018-10981, CVE-2018-10982, CVE-2018-3620, CVE-2018-3639, CVE-2018-3646, CVE-2018-3665, CVE-2018-7540,CVE-2018-7541, CVE-2018-8897




OVM3.2x86_64xen-tools-4.1.3-25.el5.223.214xen-devel-4.1.3-25.el5.223.214xen-4.1.3-25.el5.223.214

147341 - SuSE Linux 15.0 openSUSE-SU-2018:3805-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-17478

DescriptionThe scan detected that the host is missing the following update:openSUSE-SU-2018:3805-1


https://lists.opensuse.org/opensuse-updates/2018-11/msg00093.html

SuSE Linux 15.0x86_64chromium-debuginfo-70.0.3538.102-lp150.2.23.2chromedriver-debuginfo-70.0.3538.102-lp150.2.23.2chromium-70.0.3538.102-lp150.2.23.2chromedriver-70.0.3538.102-lp150.2.23.2chromium-debugsource-70.0.3538.102-lp150.2.23.2






SuSE Linux 42.3x86_64amanda-3.3.6-10.3.1amanda-debuginfo-3.3.6-10.3.1amanda-debugsource-3.3.6-10.3.1






SuSE SLES 11 SP4i586squid3-3.1.23-8.16.37.9.1

x86_64squid3-3.1.23-8.16.37.9.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-19131, CVE-2018-19132




SuSE Linux 15.0x86_64squid-debuginfo-4.4-lp150.4.3.2

squid-4.4-lp150.4.3.2squid-debugsource-4.4-lp150.4.3.2






SuSE Linux 15.0noarchapache-pdfbox-1.8.12-lp150.4.6.1apache-pdfbox-javadoc-1.8.12-lp150.4.6.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-18281, CVE-2018-18386, CVE-2018-18690, CVE-2018-18710, CVE-2018-9516




SuSE Linux 42.3x86_64kernel-obs-build-4.4.162-78.1kernel-debug-base-debuginfo-4.4.162-78.1kernel-default-base-4.4.162-78.1kernel-debug-debugsource-4.4.162-78.1kernel-vanilla-debugsource-4.4.162-78.1kernel-default-debugsource-4.4.162-78.1kernel-vanilla-base-debuginfo-4.4.162-78.1kernel-debug-debuginfo-4.4.162-78.1kernel-debug-devel-4.4.162-78.1kernel-vanilla-4.4.162-78.1kernel-default-debuginfo-4.4.162-78.1kernel-default-devel-4.4.162-78.1kernel-vanilla-devel-4.4.162-78.1kernel-default-base-debuginfo-4.4.162-78.1

kernel-vanilla-base-4.4.162-78.1kernel-debug-4.4.162-78.1kernel-debug-devel-debuginfo-4.4.162-78.1kernel-default-4.4.162-78.1kernel-obs-qa-4.4.162-78.1kernel-vanilla-debuginfo-4.4.162-78.1kernel-debug-base-4.4.162-78.1kernel-syms-4.4.162-78.1kernel-obs-build-debugsource-4.4.162-78.1

noarchkernel-docs-pdf-4.4.162-78.1kernel-source-vanilla-4.4.162-78.1kernel-source-4.4.162-78.1kernel-devel-4.4.162-78.1kernel-docs-html-4.4.162-78.1kernel-macros-4.4.162-78.1kernel-docs-4.4.162-78.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2017-11532, CVE-2017-11639, CVE-2017-14997, CVE-2018-16644




SuSE SLES 11 SP4i586libMagickCore1-6.4.3.6-78.79.1

x86_64libMagickCore1-32bit-6.4.3.6-78.79.1libMagickCore1-6.4.3.6-78.79.1

147350 - SuSE SLED 15 SUSE-SU-2018:3769-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: HighCVE: CVE-2018-12389, CVE-2018-12390, CVE-2018-12391, CVE-2018-12392, CVE-2018-12393




SuSE SLED 15x86_64MozillaThunderbird-debuginfo-60.3.0-3.17.2MozillaThunderbird-60.3.0-3.17.2MozillaThunderbird-translations-common-60.3.0-3.17.2MozillaThunderbird-debugsource-60.3.0-3.17.2MozillaThunderbird-translations-other-60.3.0-3.17.2

147351 - SuSE SLED 12 SP3 SUSE-SU-2018:3812-1 Update Is Not Installed





SuSE SLED 12 SP3x86_64libwpd-0_10-10-0.10.2-2.7.1libwpd-0_10-10-debuginfo-0.10.2-2.7.1libwpd-debugsource-0.10.2-2.7.1

147352 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3767-1 Update Is Not Installed





SuSE SLED 12 SP3x86_64systemd-228-150.53.3libsystemd0-debuginfo-32bit-228-150.53.3udev-228-150.53.3systemd-debuginfo-228-150.53.3libudev1-debuginfo-228-150.53.3

systemd-32bit-228-150.53.3systemd-debugsource-228-150.53.3systemd-debuginfo-32bit-228-150.53.3libudev1-228-150.53.3systemd-sysvinit-228-150.53.3libsystemd0-228-150.53.3libudev1-debuginfo-32bit-228-150.53.3udev-debuginfo-228-150.53.3libudev1-32bit-228-150.53.3libsystemd0-32bit-228-150.53.3libsystemd0-debuginfo-228-150.53.3

noarchsystemd-bash-completion-228-150.53.3

SuSE SLES 12 SP3noarchsystemd-bash-completion-228-150.53.3

x86_64systemd-228-150.53.3libsystemd0-debuginfo-32bit-228-150.53.3udev-228-150.53.3systemd-debuginfo-228-150.53.3libudev1-debuginfo-228-150.53.3systemd-32bit-228-150.53.3systemd-debugsource-228-150.53.3systemd-debuginfo-32bit-228-150.53.3libudev1-228-150.53.3systemd-sysvinit-228-150.53.3libsystemd0-228-150.53.3libudev1-debuginfo-32bit-228-150.53.3udev-debuginfo-228-150.53.3libudev1-32bit-228-150.53.3libsystemd0-32bit-228-150.53.3libsystemd0-debuginfo-228-150.53.3






SuSE Linux 42.3x86_64squid-debugsource-3.5.21-18.1squid-debuginfo-3.5.21-18.1squid-3.5.21-18.1

i586squid-debugsource-3.5.21-18.1squid-debuginfo-3.5.21-18.1squid-3.5.21-18.1

147358 - SuSE SLES 12 SP3, SLED 12 SP3 SUSE-SU-2018:3770-1 Update Is Not Installed





SuSE SLED 12 SP3x86_64postgresql10-debuginfo-10.6-1.6.1libecpg6-debuginfo-10.6-1.6.1libpq5-debuginfo-10.6-1.6.1libpq5-10.6-1.6.1postgresql10-libs-debugsource-10.6-1.6.1postgresql10-10.6-1.6.1postgresql10-debugsource-10.6-1.6.1libpq5-debuginfo-32bit-10.6-1.6.1libpq5-32bit-10.6-1.6.1libecpg6-10.6-1.6.1

SuSE SLES 12 SP3noarchpostgresql10-docs-10.6-1.6.1

x86_64postgresql10-libs-debugsource-10.6-1.6.1postgresql10-debugsource-10.6-1.6.1libpq5-10.6-1.6.1libpq5-debuginfo-10.6-1.6.1libecpg6-10.6-1.6.1postgresql10-contrib-10.6-1.6.1postgresql10-server-10.6-1.6.1postgresql10-debuginfo-10.6-1.6.1postgresql10-contrib-debuginfo-10.6-1.6.1libecpg6-debuginfo-10.6-1.6.1postgresql10-server-debuginfo-10.6-1.6.1libpq5-32bit-10.6-1.6.1postgresql10-10.6-1.6.1libpq5-debuginfo-32bit-10.6-1.6.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes

Risk Level: HighCVE: CVE-2018-19131, CVE-2018-19132




SuSE SLES 12 SP3x86_64squid-3.5.21-26.12.1squid-debugsource-3.5.21-26.12.1squid-debuginfo-3.5.21-26.12.1






SuSE Linux 42.3i586nss-mymachines-228-62.1systemd-mini-228-62.1nss-myhostname-228-62.1systemd-mini-debuginfo-228-62.1libsystemd0-debuginfo-228-62.1libudev1-debuginfo-228-62.1systemd-mini-debugsource-228-62.1libsystemd0-mini-debuginfo-228-62.1nss-myhostname-debuginfo-228-62.1systemd-228-62.1systemd-mini-sysvinit-228-62.1systemd-sysvinit-228-62.1systemd-debuginfo-228-62.1systemd-debugsource-228-62.1libsystemd0-mini-228-62.1udev-debuginfo-228-62.1udev-228-62.1udev-mini-debuginfo-228-62.1systemd-devel-228-62.1

libudev1-228-62.1libudev-mini1-228-62.1systemd-mini-devel-228-62.1systemd-logger-228-62.1nss-mymachines-debuginfo-228-62.1libsystemd0-228-62.1libudev-mini-devel-228-62.1libudev-devel-228-62.1udev-mini-228-62.1libudev-mini1-debuginfo-228-62.1

noarchsystemd-bash-completion-228-62.1systemd-mini-bash-completion-228-62.1

x86_64nss-mymachines-228-62.1systemd-mini-228-62.1nss-myhostname-228-62.1systemd-mini-debuginfo-228-62.1libsystemd0-debuginfo-228-62.1libudev1-debuginfo-32bit-228-62.1libudev1-debuginfo-228-62.1nss-myhostname-32bit-228-62.1systemd-mini-debugsource-228-62.1libsystemd0-mini-debuginfo-228-62.1nss-myhostname-debuginfo-228-62.1systemd-228-62.1systemd-mini-sysvinit-228-62.1systemd-sysvinit-228-62.1systemd-debuginfo-32bit-228-62.1systemd-debuginfo-228-62.1systemd-debugsource-228-62.1nss-myhostname-debuginfo-32bit-228-62.1libsystemd0-mini-228-62.1libsystemd0-debuginfo-32bit-228-62.1systemd-32bit-228-62.1udev-debuginfo-228-62.1udev-228-62.1udev-mini-debuginfo-228-62.1systemd-devel-228-62.1libudev1-228-62.1libudev-mini1-228-62.1systemd-mini-devel-228-62.1libsystemd0-32bit-228-62.1systemd-logger-228-62.1nss-mymachines-debuginfo-228-62.1libsystemd0-228-62.1libudev-mini-devel-228-62.1libudev-devel-228-62.1udev-mini-228-62.1libudev1-32bit-228-62.1libudev-mini1-debuginfo-228-62.1






SuSE Linux 42.3x86_64chromium-debuginfo-70.0.3538.102-182.1chromium-70.0.3538.102-182.1chromedriver-70.0.3538.102-182.1chromium-debugsource-70.0.3538.102-182.1chromedriver-debuginfo-70.0.3538.102-182.1






SuSE Linux 15.0x86_64xorg-x11-server-extra-debuginfo-1.19.6-lp150.7.3.1xorg-x11-server-wayland-1.19.6-lp150.7.3.1xorg-x11-server-sdk-1.19.6-lp150.7.3.1xorg-x11-server-extra-1.19.6-lp150.7.3.1xorg-x11-server-debuginfo-1.19.6-lp150.7.3.1xorg-x11-server-wayland-debuginfo-1.19.6-lp150.7.3.1xorg-x11-server-debugsource-1.19.6-lp150.7.3.1xorg-x11-server-source-1.19.6-lp150.7.3.1xorg-x11-server-1.19.6-lp150.7.3.1

i586xorg-x11-server-extra-debuginfo-1.19.6-lp150.7.3.1xorg-x11-server-wayland-1.19.6-lp150.7.3.1xorg-x11-server-sdk-1.19.6-lp150.7.3.1xorg-x11-server-extra-1.19.6-lp150.7.3.1xorg-x11-server-debuginfo-1.19.6-lp150.7.3.1xorg-x11-server-wayland-debuginfo-1.19.6-lp150.7.3.1xorg-x11-server-debugsource-1.19.6-lp150.7.3.1xorg-x11-server-source-1.19.6-lp150.7.3.1xorg-x11-server-1.19.6-lp150.7.3.1

160484 - CentOS 6 CESA-2018-3531 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: HighCVE: CVE-2018-12389, CVE-2018-12390, CVE-2018-12392, CVE-2018-12393

DescriptionThe scan detected that the host is missing the following update:CESA-2018-3531


http://lists.centos.org/pipermail/centos-announce/2018-November/023079.html

CentOS 6x86_64thunderbird-60.3.0-1.el6.centos

i686thunderbird-60.3.0-1.el6.centos

186476 - Ubuntu Linux 14.04 USN-3822-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2016-9588, CVE-2017-13168, CVE-2017-16649, CVE-2018-16658, CVE-2018-9363

DescriptionThe scan detected that the host is missing the following update:USN-3822-1


https://lists.ubuntu.com/archives/ubuntu-security-announce/2018-November/004669.html

Ubuntu 14.04

linux-image-powerpc-e500mc_3.13.0.162.172linux-image-powerpc-smp_3.13.0.162.172linux-image-3.13.0-162-powerpc64-emb_3.13.0-162.212linux-image-3.13.0-162-powerpc-e500mc_3.13.0-162.212linux-image-3.13.0-162-generic_3.13.0-162.212linux-image-3.13.0-162-generic-lpae_3.13.0-162.212linux-image-generic-lpae_3.13.0.162.172linux-image-3.13.0-162-powerpc-smp_3.13.0-162.212linux-image-3.13.0-162-powerpc64-smp_3.13.0-162.212linux-image-generic_3.13.0.162.172linux-image-lowlatency_3.13.0.162.172linux-image-powerpc-e500_3.13.0.162.172linux-image-powerpc64-emb_3.13.0.162.172linux-image-powerpc64-smp_3.13.0.162.172

linux-image-3.13.0-162-lowlatency_3.13.0-162.212linux-image-3.13.0-162-powerpc-e500_3.13.0-162.212


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2018-10880, CVE-2018-13053, CVE-2018-13096, CVE-2018-14609, CVE-2018-14617, CVE-2018-17972, CVE-2018-18021




Ubuntu 14.04

linux-image-powerpc64-emb-lts-xenial_4.4.0.139.119linux-image-4.4.0-1034-aws_4.4.0-1034.37linux-image-generic-lpae-lts-xenial_4.4.0.139.119linux-image-generic-lts-xenial_4.4.0.139.119linux-image-aws_4.4.0.1034.34linux-image-4.4.0-139-lowlatency_4.4.0-139.165~14.04.1linux-image-4.4.0-139-generic_4.4.0-139.165~14.04.1linux-image-4.4.0-139-powerpc64-emb_4.4.0-139.165~14.04.1linux-image-powerpc-smp-lts-xenial_4.4.0.139.119linux-image-4.4.0-139-powerpc-e500mc_4.4.0-139.165~14.04.1linux-image-powerpc64-smp-lts-xenial_4.4.0.139.119linux-image-4.4.0-139-powerpc-smp_4.4.0-139.165~14.04.1linux-image-4.4.0-139-generic-lpae_4.4.0-139.165~14.04.1linux-image-powerpc-e500mc-lts-xenial_4.4.0.139.119linux-image-4.4.0-139-powerpc64-smp_4.4.0-139.165~14.04.1linux-image-lowlatency-lts-xenial_4.4.0.139.119


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2016-9588, CVE-2017-13168, CVE-2017-16649, CVE-2018-16658, CVE-2018-9363




Ubuntu 12.04

linux-image-3.13.0-162-generic_3.13.0-162.212~precise1linux-image-generic-lts-trusty_3.13.0.162.152linux-image-generic-lpae-lts-trusty_3.13.0.162.152linux-image-3.13.0-162-generic-lpae_3.13.0-162.212~precise1


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: HighCVE: CVE-2018-10880, CVE-2018-13053, CVE-2018-13096, CVE-2018-14609, CVE-2018-14617, CVE-2018-17972, CVE-2018-18021




Ubuntu 16.04

linux-image-powerpc-smp_4.4.0.139.145linux-image-kvm_4.4.0.1037.36linux-image-4.4.0-139-powerpc-smp_4.4.0-139.165linux-image-raspi2_4.4.0.1100.100linux-image-4.4.0-139-powerpc64-smp_4.4.0-139.165linux-image-4.4.0-139-powerpc64-emb_4.4.0-139.165linux-image-4.4.0-1104-snapdragon_4.4.0-1104.109linux-image-snapdragon_4.4.0.1104.96linux-image-4.4.0-139-lowlatency_4.4.0-139.165linux-image-generic_4.4.0.139.145linux-image-aws_4.4.0.1072.74linux-image-4.4.0-1100-raspi2_4.4.0-1100.108linux-image-4.4.0-139-generic_4.4.0-139.165linux-image-lowlatency_4.4.0.139.145linux-image-4.4.0-1072-aws_4.4.0-1072.82linux-image-powerpc-e500mc_4.4.0.139.145linux-image-powerpc64-smp_4.4.0.139.145linux-image-powerpc64-emb_4.4.0.139.145linux-image-4.4.0-139-generic-lpae_4.4.0-139.165linux-image-generic-lpae_4.4.0.139.145linux-image-4.4.0-139-powerpc-e500mc_4.4.0-139.165linux-image-4.4.0-1037-kvm_4.4.0-1037.43

194438 - Fedora Linux 29 FEDORA-2018-a84b6d0071 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: HighCVE: CVE-2017-7875

DescriptionThe scan detected that the host is missing the following update:

FEDORA-2018-a84b6d0071


https://lists.fedoraproject.org/archives/list/[email protected]/2018/11/?count=200&page=3

Fedora Core 29

feh-2.28-1.fc29

194452 - Fedora Linux 28 FEDORA-2018-3ac43a1e15 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-3ac43a1e15



Fedora Core 28

feh-2.28-1.fc28

194470 - Fedora Linux 27 FEDORA-2018-56ec0ccd82 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-56ec0ccd82



Fedora Core 27

feh-2.28-1.fc27

194476 - Fedora Linux 28 FEDORA-2018-55b875c1ac Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes

Risk Level: HighCVE: CVE-2016-9843, CVE-2018-2755, CVE-2018-2759, CVE-2018-2761, CVE-2018-2766, CVE-2018-2767, CVE-2018-2771,CVE-2018-2777, CVE-2018-2781, CVE-2018-2782, CVE-2018-2784, CVE-2018-2786, CVE-2018-2787, CVE-2018-2810, CVE-2018-2813, CVE-2018-2817, CVE-2018-2819, CVE-2018-3058, CVE-2018-3060, CVE-2018-3063, CVE-2018-3064, CVE-2018-3066, CVE-2018-3081, CVE-2018-3143, CVE-2018-3156, CVE-2018-3162, CVE-2018-3173, CVE-2018-3174, CVE-2018-3185,CVE-2018-3200, CVE-2018-3251, CVE-2018-3277, CVE-2018-3282, CVE-2018-3284

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-55b875c1ac



Fedora Core 28

mariadb-10.2.19-1.fc28






RHEL6Dx86_64flash-plugin-31.0.0.148-1.el6_10

i386flash-plugin-31.0.0.148-1.el6_10

RHEL6Sx86_64flash-plugin-31.0.0.148-1.el6_10

i386flash-plugin-31.0.0.148-1.el6_10

RHEL6WSx86_64flash-plugin-31.0.0.148-1.el6_10

i386

flash-plugin-31.0.0.148-1.el6_10






RHEL6_4Sx86_64kernel-headers-2.6.32-358.94.1.el6kernel-debuginfo-2.6.32-358.94.1.el6kernel-debuginfo-common-x86_64-2.6.32-358.94.1.el6perf-debuginfo-2.6.32-358.94.1.el6perf-2.6.32-358.94.1.el6kernel-devel-2.6.32-358.94.1.el6python-perf-2.6.32-358.94.1.el6kernel-debug-devel-2.6.32-358.94.1.el6kernel-2.6.32-358.94.1.el6kernel-debug-debuginfo-2.6.32-358.94.1.el6kernel-debug-2.6.32-358.94.1.el6python-perf-debuginfo-2.6.32-358.94.1.el6

noarchkernel-doc-2.6.32-358.94.1.el6kernel-firmware-2.6.32-358.94.1.el6

24446 - IBM WebSphere Application Server Verification Tool Cross-site Scripting Vulnerability (ibm10716857)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-1643

DescriptionA vulnerability is present in some versions of IBM WebSphere Application Server.

ObservationIBM WebSphere Application Server is a server engine for Java EE Web applications.

A vulnerability is present in some versions of IBM WebSphere Application Server. The flaw lies in the installation verification tool of WebSphere Application Server. Successful exploitation could allow an attacker to retrieve sensitive data from the target system.


Category: SSH Module -> NonIntrusive -> Oracle VM Patches and HotfixesRisk Level: MediumCVE: CVE-2017-13168, CVE-2018-14734, CVE-2018-15572, CVE-2018-7757




OVM3.4x86_64kernel-uek-firmware-4.1.12-124.21.1.el6uekkernel-uek-4.1.12-124.21.1.el6uek


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-3839, CVE-2018-3977




SuSE Linux 42.3x86_64SDL2_image-debugsource-2.0.4-13.13.1libSDL2_image-devel-2.0.4-13.13.1libSDL2_image-devel-32bit-2.0.4-13.13.1libSDL2_image-2_0-0-debuginfo-32bit-2.0.4-13.13.1libSDL2_image-2_0-0-32bit-2.0.4-13.13.1libSDL2_image-2_0-0-debuginfo-2.0.4-13.13.1libSDL2_image-2_0-0-2.0.4-13.13.1

i586libSDL2_image-2_0-0-debuginfo-2.0.4-13.13.1libSDL2_image-2_0-0-2.0.4-13.13.1libSDL2_image-devel-2.0.4-13.13.1SDL2_image-debugsource-2.0.4-13.13.1


Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: Medium

CVE: CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3169, CVE-2018-3180, CVE-2018-3214




CentOS 6i686java-1.7.0-openjdk-src-1.7.0.201-2.6.16.0.el6_10java-1.7.0-openjdk-demo-1.7.0.201-2.6.16.0.el6_10java-1.7.0-openjdk-1.7.0.201-2.6.16.0.el6_10java-1.7.0-openjdk-devel-1.7.0.201-2.6.16.0.el6_10

noarchjava-1.7.0-openjdk-javadoc-1.7.0.201-2.6.16.0.el6_10

x86_64java-1.7.0-openjdk-src-1.7.0.201-2.6.16.0.el6_10java-1.7.0-openjdk-demo-1.7.0.201-2.6.16.0.el6_10java-1.7.0-openjdk-1.7.0.201-2.6.16.0.el6_10java-1.7.0-openjdk-devel-1.7.0.201-2.6.16.0.el6_10


Category: SSH Module -> NonIntrusive -> Cent OS Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7506




CentOS 6x86_64spice-server-devel-0.12.4-16.el6_10.2spice-server-0.12.4-16.el6_10.2


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: MediumCVE: CVE-2017-13168, CVE-2018-15471, CVE-2018-16658, CVE-2018-9363




Ubuntu 14.04

linux-image-azure_4.15.0.1031.18linux-image-4.15.0-1031-azure_4.15.0-1031.32~14.04.1+signed1


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: MediumCVE: CVE-2018-15471




Ubuntu 18.10

linux-image-4.18.0-1006-raspi2_4.18.0-1006.8linux-image-4.18.0-1004-kvm_4.18.0-1004.4linux-image-4.18.0-11-generic-lpae_4.18.0-11.12linux-image-generic-lpae_4.18.0.11.12linux-image-4.18.0-1003-gcp_4.18.0-1003.4linux-image-gke_4.18.0.1003.3linux-image-4.18.0-11-lowlatency_4.18.0-11.12linux-image-4.18.0-11-generic_4.18.0-11.12linux-image-4.18.0-11-snapdragon_4.18.0-11.12linux-image-kvm_4.18.0.1004.4linux-image-generic_4.18.0.11.12linux-image-snapdragon_4.18.0.11.12linux-image-aws_4.18.0.1004.4linux-image-raspi2_4.18.0.1006.3linux-image-gcp_4.18.0.1003.3linux-image-lowlatency_4.18.0.11.12linux-image-4.18.0-1004-aws_4.18.0-1004.5






Ubuntu 18.04

linux-image-generic-lpae_4.15.0.39.41linux-image-gcp_4.15.0.1024.26linux-image-oem_4.15.0.1026.31linux-image-4.15.0-1024-gcp_4.15.0-1024.25linux-image-azure_4.15.0.1031.31linux-image-snapdragon_4.15.0.39.41linux-image-aws_4.15.0.1027.27linux-image-4.15.0-39-generic_4.15.0-39.42linux-image-kvm_4.15.0.1026.26linux-image-raspi2_4.15.0.1028.26linux-image-4.15.0-39-snapdragon_4.15.0-39.42linux-image-4.15.0-1028-raspi2_4.15.0-1028.30linux-image-lowlatency_4.15.0.39.41linux-image-4.15.0-39-lowlatency_4.15.0-39.42linux-image-gke_4.15.0.1024.26linux-image-4.15.0-39-generic-lpae_4.15.0-39.42linux-image-4.15.0-1031-azure_4.15.0-1031.32linux-image-4.15.0-1026-oem_4.15.0-1026.31linux-image-generic_4.15.0.39.41linux-image-4.15.0-1027-aws_4.15.0-1027.27linux-image-4.15.0-1026-kvm_4.15.0-1026.26






Ubuntu 16.04

linux-image-4.15.0-39-generic-lpae_4.15.0-39.42~16.04.1linux-image-4.15.0-39-generic_4.15.0-39.42~16.04.1linux-image-4.15.0-39-lowlatency_4.15.0-39.42~16.04.1linux-image-generic-hwe-16.04_4.15.0.39.62

linux-image-generic-lpae-hwe-16.04_4.15.0.39.62linux-image-azure_4.15.0.1031.36linux-image-gcp_4.15.0.1024.38linux-image-oem_4.15.0.39.62linux-image-4.15.0-1031-azure_4.15.0-1031.32~16.04.1linux-image-lowlatency-hwe-16.04_4.15.0.39.62linux-image-gke_4.15.0.1024.38linux-image-4.15.0-1024-gcp_4.15.0-1024.25~16.04.2


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: MediumCVE: CVE-2018-3136, CVE-2018-3139, CVE-2018-3149, CVE-2018-3169, CVE-2018-3180




Ubuntu 14.04

openjdk-7-jre-lib_7u181-2.6.14-0ubuntu0.3icedtea-7-jre-jamvm_7u181-2.6.14-0ubuntu0.3openjdk-7-jre_7u181-2.6.14-0ubuntu0.3openjdk-7-jdk_7u181-2.6.14-0ubuntu0.3openjdk-7-jre-headless_7u181-2.6.14-0ubuntu0.3

194439 - Fedora Linux 29 FEDORA-2018-b38de02132 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2017-2887, CVE-2018-3837, CVE-2018-3977

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-b38de02132



Fedora Core 29

mingw-SDL2_image-2.0.4-1.fc29

194445 - Fedora Linux 28 FEDORA-2018-e8d19367cb Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-e8d19367cb



Fedora Core 28

mingw-SDL2_image-2.0.4-1.fc28

194448 - Fedora Linux 29 FEDORA-2018-09802a742a Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-09802a742a



Fedora Core 29

soundtouch-2.1.1-1.fc29

194472 - Fedora Linux 27 FEDORA-2018-c73d257297 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-14679, CVE-2018-14680, CVE-2018-14681, CVE-2018-14682, CVE-2018-18584, CVE-2018-18585

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-c73d257297



Fedora Core 27

cabextract-1.9-1.fc27libmspack-0.9.1-0.1.alpha.fc27


Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: MediumCVE: CVE-2017-7519, CVE-2018-10861, CVE-2018-1128, CVE-2018-1129

DescriptionThe scan detected that the host is missing the following update:DSA-4339-1



Debian 9.0allceph_10.2.11-1






SuSE SLES 11 SP4i586openssh-askpass-gnome-6.6p1-36.6.1openssh-fips-6.6p1-36.6.1openssh-helpers-6.6p1-36.6.1openssh-6.6p1-36.6.1

x86_64openssh-askpass-gnome-6.6p1-36.6.1openssh-fips-6.6p1-36.6.1openssh-helpers-6.6p1-36.6.1openssh-6.6p1-36.6.1






SuSE Linux 15.0x86_64openssh-cavs-7.6p1-lp150.8.3.1openssh-helpers-debuginfo-7.6p1-lp150.8.3.1openssh-helpers-7.6p1-lp150.8.3.1openssh-fips-7.6p1-lp150.8.3.1openssh-askpass-gnome-7.6p1-lp150.8.3.1openssh-7.6p1-lp150.8.3.1openssh-debugsource-7.6p1-lp150.8.3.1openssh-cavs-debuginfo-7.6p1-lp150.8.3.1openssh-askpass-gnome-debuginfo-7.6p1-lp150.8.3.1openssh-debuginfo-7.6p1-lp150.8.3.1

i586openssh-cavs-7.6p1-lp150.8.3.1openssh-helpers-debuginfo-7.6p1-lp150.8.3.1openssh-helpers-7.6p1-lp150.8.3.1openssh-fips-7.6p1-lp150.8.3.1openssh-7.6p1-lp150.8.3.1openssh-debugsource-7.6p1-lp150.8.3.1openssh-cavs-debuginfo-7.6p1-lp150.8.3.1openssh-debuginfo-7.6p1-lp150.8.3.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-10583




SuSE Linux 15.0i586libxmlsec1-1-1.2.26-lp150.2.3.1

libxmlsec1-nss1-debuginfo-1.2.26-lp150.2.3.1xmlsec1-debuginfo-1.2.26-lp150.2.3.1xmlsec1-nss-devel-1.2.26-lp150.2.3.1xmlsec1-openssl-devel-1.2.26-lp150.2.3.1libxmlsec1-openssl1-debuginfo-1.2.26-lp150.2.3.1libxmlsec1-nss1-1.2.26-lp150.2.3.1libxmlsec1-gcrypt1-debuginfo-1.2.26-lp150.2.3.1myspell-lightproof-pt_BR-20181025-lp150.2.6.1libxmlsec1-gcrypt1-1.2.26-lp150.2.3.1xmlsec1-1.2.26-lp150.2.3.1libxmlsec1-gnutls1-debuginfo-1.2.26-lp150.2.3.1myspell-dictionaries-20181025-lp150.2.6.1xmlsec1-gnutls-devel-1.2.26-lp150.2.3.1libxmlsec1-1-debuginfo-1.2.26-lp150.2.3.1myspell-lightproof-en-20181025-lp150.2.6.1xmlsec1-gcrypt-devel-1.2.26-lp150.2.3.1myspell-lightproof-hu_HU-20181025-lp150.2.6.1libxmlsec1-gnutls1-1.2.26-lp150.2.3.1xmlsec1-devel-1.2.26-lp150.2.3.1myspell-lightproof-ru_RU-20181025-lp150.2.6.1libxmlsec1-openssl1-1.2.26-lp150.2.3.1xmlsec1-debugsource-1.2.26-lp150.2.3.1

noarchlibreoffice-l10n-mn-6.1.3.2-lp150.2.6.2libreoffice-l10n-rw-6.1.3.2-lp150.2.6.2libreoffice-l10n-eu-6.1.3.2-lp150.2.6.2myspell-fr_FR-20181025-lp150.2.6.1myspell-sv_SE-20181025-lp150.2.6.1myspell-sr_RS-20181025-lp150.2.6.1myspell-fr_MC-20181025-lp150.2.6.1libreoffice-l10n-nb-6.1.3.2-lp150.2.6.2myspell-ar_SY-20181025-lp150.2.6.1libreoffice-l10n-he-6.1.3.2-lp150.2.6.2libreoffice-l10n-tt-6.1.3.2-lp150.2.6.2libreoffice-l10n-en_ZA-6.1.3.2-lp150.2.6.2myspell-ne_NP-20181025-lp150.2.6.1myspell-ar_BH-20181025-lp150.2.6.1myspell-nl_NL-20181025-lp150.2.6.1libreoffice-l10n-ga-6.1.3.2-lp150.2.6.2myspell-is-20181025-lp150.2.6.1myspell-gug-20181025-lp150.2.6.1myspell-id-20181025-lp150.2.6.1libreoffice-l10n-sid-6.1.3.2-lp150.2.6.2myspell-uk_UA-20181025-lp150.2.6.1libreoffice-l10n-cy-6.1.3.2-lp150.2.6.2libreoffice-l10n-bn-6.1.3.2-lp150.2.6.2myspell-en_ZW-20181025-lp150.2.6.1myspell-de_DE-20181025-lp150.2.6.1myspell-af_ZA-20181025-lp150.2.6.1myspell-ca-20181025-lp150.2.6.1myspell-vi-20181025-lp150.2.6.1myspell-es_GT-20181025-lp150.2.6.1libreoffice-l10n-kmr_Latn-6.1.3.2-lp150.2.6.2myspell-te_IN-20181025-lp150.2.6.1myspell-et_EE-20181025-lp150.2.6.1libreoffice-l10n-oc-6.1.3.2-lp150.2.6.2myspell-es_CL-20181025-lp150.2.6.1myspell-lo_LA-20181025-lp150.2.6.1myspell-ar_JO-20181025-lp150.2.6.1

libreoffice-l10n-sa_IN-6.1.3.2-lp150.2.6.2libreoffice-l10n-my-6.1.3.2-lp150.2.6.2myspell-pl_PL-20181025-lp150.2.6.1libreoffice-l10n-bs-6.1.3.2-lp150.2.6.2myspell-no-20181025-lp150.2.6.1myspell-es_PA-20181025-lp150.2.6.1myspell-en_CA-20181025-lp150.2.6.1myspell-ar_SA-20181025-lp150.2.6.1myspell-es_AR-20181025-lp150.2.6.1myspell-en_TT-20181025-lp150.2.6.1myspell-sr-20181025-lp150.2.6.1myspell-sk_SK-20181025-lp150.2.6.1myspell-ar_MA-20181025-lp150.2.6.1libreoffice-l10n-si-6.1.3.2-lp150.2.6.2myspell-de_CH-20181025-lp150.2.6.1libreoffice-l10n-fa-6.1.3.2-lp150.2.6.2libreoffice-l10n-hi-6.1.3.2-lp150.2.6.2libreoffice-l10n-bn_IN-6.1.3.2-lp150.2.6.2myspell-da_DK-20181025-lp150.2.6.1myspell-nn_NO-20181025-lp150.2.6.1myspell-fr_LU-20181025-lp150.2.6.1libreoffice-l10n-en_GB-6.1.3.2-lp150.2.6.2myspell-sr_Latn_RS-20181025-lp150.2.6.1myspell-tr_TR-20181025-lp150.2.6.1libreoffice-l10n-sw_TZ-6.1.3.2-lp150.2.6.2libreoffice-icon-themes-6.1.3.2-lp150.2.6.2myspell-fr_CA-20181025-lp150.2.6.1libreoffice-l10n-lt-6.1.3.2-lp150.2.6.2libreoffice-l10n-am-6.1.3.2-lp150.2.6.2myspell-bo_IN-20181025-lp150.2.6.1myspell-ar_IQ-20181025-lp150.2.6.1libreoffice-l10n-ro-6.1.3.2-lp150.2.6.2libreoffice-l10n-ko-6.1.3.2-lp150.2.6.2libreoffice-l10n-de-6.1.3.2-lp150.2.6.2myspell-es_EC-20181025-lp150.2.6.1myspell-nb_NO-20181025-lp150.2.6.1libreoffice-l10n-te-6.1.3.2-lp150.2.6.2myspell-es_MX-20181025-lp150.2.6.1myspell-sr_CS-20181025-lp150.2.6.1myspell-es_CO-20181025-lp150.2.6.1libreoffice-l10n-gug-6.1.3.2-lp150.2.6.2libreoffice-l10n-en-6.1.3.2-lp150.2.6.2libreoffice-l10n-ca-6.1.3.2-lp150.2.6.2myspell-es_VE-20181025-lp150.2.6.1myspell-ca_AD-20181025-lp150.2.6.1libreoffice-l10n-zh_TW-6.1.3.2-lp150.2.6.2libreoffice-l10n-kok-6.1.3.2-lp150.2.6.2myspell-en_BZ-20181025-lp150.2.6.1libreoffice-l10n-mai-6.1.3.2-lp150.2.6.2libreoffice-l10n-th-6.1.3.2-lp150.2.6.2libmwaw-devel-doc-0.3.14-lp150.2.3.1myspell-bn_IN-20181025-lp150.2.6.1libreoffice-l10n-gd-6.1.3.2-lp150.2.6.2myspell-hr_HR-20181025-lp150.2.6.1myspell-vi_VN-20181025-lp150.2.6.1libreoffice-l10n-lv-6.1.3.2-lp150.2.6.2myspell-bn_BD-20181025-lp150.2.6.1libreoffice-l10n-gu-6.1.3.2-lp150.2.6.2libreoffice-l10n-mk-6.1.3.2-lp150.2.6.2myspell-an_ES-20181025-lp150.2.6.1

libreoffice-l10n-pt_PT-6.1.3.2-lp150.2.6.2libreoffice-l10n-bg-6.1.3.2-lp150.2.6.2myspell-de_AT-20181025-lp150.2.6.1myspell-en_IE-20181025-lp150.2.6.1libreoffice-l10n-dgo-6.1.3.2-lp150.2.6.2myspell-kmr_Latn-20181025-lp150.2.6.1libreoffice-l10n-brx-6.1.3.2-lp150.2.6.2myspell-es_UY-20181025-lp150.2.6.1myspell-kmr_Latn_TR-20181025-lp150.2.6.1libreoffice-l10n-sk-6.1.3.2-lp150.2.6.2myspell-es_CU-20181025-lp150.2.6.1libreoffice-l10n-hsb-6.1.3.2-lp150.2.6.2myspell-te-20181025-lp150.2.6.1libreoffice-l10n-kn-6.1.3.2-lp150.2.6.2myspell-es_ES-20181025-lp150.2.6.1libreoffice-l10n-ru-6.1.3.2-lp150.2.6.2libreoffice-l10n-ml-6.1.3.2-lp150.2.6.2libreoffice-l10n-xh-6.1.3.2-lp150.2.6.2myspell-lv_LV-20181025-lp150.2.6.1myspell-be_BY-20181025-lp150.2.6.1myspell-es_PE-20181025-lp150.2.6.1myspell-ar_QA-20181025-lp150.2.6.1myspell-en_GB-20181025-lp150.2.6.1libreoffice-l10n-mr-6.1.3.2-lp150.2.6.2myspell-en_JM-20181025-lp150.2.6.1myspell-en_MW-20181025-lp150.2.6.1libreoffice-l10n-ast-6.1.3.2-lp150.2.6.2myspell-en_BS-20181025-lp150.2.6.1libreoffice-l10n-tg-6.1.3.2-lp150.2.6.2myspell-gug_PY-20181025-lp150.2.6.1myspell-ru_RU-20181025-lp150.2.6.1myspell-en_NZ-20181025-lp150.2.6.1myspell-es_PY-20181025-lp150.2.6.1libreoffice-l10n-uk-6.1.3.2-lp150.2.6.2libreoffice-l10n-es-6.1.3.2-lp150.2.6.2libreoffice-l10n-or-6.1.3.2-lp150.2.6.2myspell-nl_BE-20181025-lp150.2.6.1libstaroffice-devel-doc-0.0.6-lp150.2.3.1libreoffice-l10n-sr-6.1.3.2-lp150.2.6.2libreoffice-l10n-be-6.1.3.2-lp150.2.6.2libreoffice-l10n-hr-6.1.3.2-lp150.2.6.2myspell-el_GR-20181025-lp150.2.6.1myspell-id_ID-20181025-lp150.2.6.1libreoffice-branding-upstream-6.1.3.2-lp150.2.6.2libreoffice-l10n-eo-6.1.3.2-lp150.2.6.2myspell-sl_SI-20181025-lp150.2.6.1libreoffice-l10n-nso-6.1.3.2-lp150.2.6.2libreoffice-l10n-sq-6.1.3.2-lp150.2.6.2libreoffice-l10n-el-6.1.3.2-lp150.2.6.2myspell-ar_LY-20181025-lp150.2.6.1myspell-ca_FR-20181025-lp150.2.6.1liblangtag-doc-0.6.2-lp150.2.3.1myspell-en-20181025-lp150.2.6.1myspell-he_IL-20181025-lp150.2.6.1myspell-lt_LT-20181025-lp150.2.6.1libreoffice-l10n-vec-6.1.3.2-lp150.2.6.2myspell-th_TH-20181025-lp150.2.6.1myspell-en_PH-20181025-lp150.2.6.1libreoffice-glade-6.1.3.2-lp150.2.6.2myspell-ca_ES_valencia-20181025-lp150.2.6.1

libreoffice-l10n-kk-6.1.3.2-lp150.2.6.2

194474 - Fedora Linux 29 FEDORA-2018-b7a58187ba Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-b7a58187ba



Fedora Core 29

wireshark-2.6.4-1.fc29

24452 - Oracle WebCenter Sites Critical Patch Update October 2018

Category: General Vulnerability Assessment -> NonIntrusive -> Web ServerRisk Level: MediumCVE: CVE-2015-9251, CVE-2018-1305, CVE-2018-3238

DescriptionMultiple vulnerabilities are present in some versions of Oracle WebCenter Sites.

ObservationOracle WebCenter Sites is a business-oriented product used to create web pages.

Multiple vulnerabilities are present in some versions of Oracle WebCenter Sites. The flaws lie in several components. Successful exploitation could allow an attacker to affect confidentiality and integrity of the target system.






SuSE Linux 42.3x86_64perl-GraphicsMagick-debuginfo-1.3.25-117.1GraphicsMagick-devel-1.3.25-117.1GraphicsMagick-1.3.25-117.1libGraphicsMagick++-devel-1.3.25-117.1libGraphicsMagick++-Q16-12-debuginfo-1.3.25-117.1libGraphicsMagickWand-Q16-2-1.3.25-117.1libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-117.1libGraphicsMagick3-config-1.3.25-117.1libGraphicsMagick++-Q16-12-1.3.25-117.1libGraphicsMagick-Q16-3-1.3.25-117.1GraphicsMagick-debugsource-1.3.25-117.1GraphicsMagick-debuginfo-1.3.25-117.1perl-GraphicsMagick-1.3.25-117.1libGraphicsMagick-Q16-3-debuginfo-1.3.25-117.1

i586perl-GraphicsMagick-debuginfo-1.3.25-117.1GraphicsMagick-devel-1.3.25-117.1GraphicsMagick-1.3.25-117.1libGraphicsMagick++-devel-1.3.25-117.1libGraphicsMagick++-Q16-12-debuginfo-1.3.25-117.1libGraphicsMagickWand-Q16-2-1.3.25-117.1libGraphicsMagickWand-Q16-2-debuginfo-1.3.25-117.1libGraphicsMagick3-config-1.3.25-117.1libGraphicsMagick++-Q16-12-1.3.25-117.1libGraphicsMagick-Q16-3-1.3.25-117.1GraphicsMagick-debugsource-1.3.25-117.1GraphicsMagick-debuginfo-1.3.25-117.1perl-GraphicsMagick-1.3.25-117.1libGraphicsMagick-Q16-3-debuginfo-1.3.25-117.1






SuSE Linux 15.0x86_64libGraphicsMagickWand-Q16-2-debuginfo-1.3.29-lp150.3.15.1GraphicsMagick-1.3.29-lp150.3.15.1perl-GraphicsMagick-debuginfo-1.3.29-lp150.3.15.1libGraphicsMagick++-Q16-12-debuginfo-1.3.29-lp150.3.15.1libGraphicsMagick++-Q16-12-1.3.29-lp150.3.15.1libGraphicsMagick-Q16-3-1.3.29-lp150.3.15.1libGraphicsMagick++-devel-1.3.29-lp150.3.15.1

libGraphicsMagick3-config-1.3.29-lp150.3.15.1libGraphicsMagickWand-Q16-2-1.3.29-lp150.3.15.1GraphicsMagick-debugsource-1.3.29-lp150.3.15.1perl-GraphicsMagick-1.3.29-lp150.3.15.1GraphicsMagick-devel-1.3.29-lp150.3.15.1libGraphicsMagick-Q16-3-debuginfo-1.3.29-lp150.3.15.1GraphicsMagick-debuginfo-1.3.29-lp150.3.15.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-15853, CVE-2018-15854, CVE-2018-15855, CVE-2018-15856, CVE-2018-15857, CVE-2018-15858, CVE-2018-15859, CVE-2018-15861, CVE-2018-15862, CVE-2018-15863, CVE-2018-15864




SuSE Linux 15.0x86_64libxkbcommon-debugsource-0.8.2-lp150.2.3.1libxkbcommon-devel-0.8.2-lp150.2.3.1libxkbcommon-devel-32bit-0.8.2-lp150.2.3.1libxkbcommon-x11-0-0.8.2-lp150.2.3.1libxkbcommon-x11-0-32bit-debuginfo-0.8.2-lp150.2.3.1libxkbcommon-x11-devel-0.8.2-lp150.2.3.1libxkbcommon0-32bit-debuginfo-0.8.2-lp150.2.3.1libxkbcommon0-debuginfo-0.8.2-lp150.2.3.1libxkbcommon-x11-0-32bit-0.8.2-lp150.2.3.1libxkbcommon0-0.8.2-lp150.2.3.1libxkbcommon-x11-0-debuginfo-0.8.2-lp150.2.3.1libxkbcommon0-32bit-0.8.2-lp150.2.3.1libxkbcommon-x11-devel-32bit-0.8.2-lp150.2.3.1

i586libxkbcommon0-0.8.2-lp150.2.3.1libxkbcommon0-debuginfo-0.8.2-lp150.2.3.1libxkbcommon-debugsource-0.8.2-lp150.2.3.1libxkbcommon-x11-0-0.8.2-lp150.2.3.1libxkbcommon-devel-0.8.2-lp150.2.3.1libxkbcommon-x11-devel-0.8.2-lp150.2.3.1libxkbcommon-x11-0-debuginfo-0.8.2-lp150.2.3.1


Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: MediumCVE: CVE-2018-17966, CVE-2018-18016, CVE-2018-18024

Description

The scan detected that the host is missing the following update:openSUSE-SU-2018:3797-1



SuSE Linux 15.0i586libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.21.1ImageMagick-debuginfo-7.0.7.34-lp150.2.21.1libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.21.1libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.21.1libMagick++-devel-7.0.7.34-lp150.2.21.1ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.21.1ImageMagick-extra-7.0.7.34-lp150.2.21.1ImageMagick-7.0.7.34-lp150.2.21.1libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.21.1ImageMagick-devel-7.0.7.34-lp150.2.21.1perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.21.1libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.21.1ImageMagick-debugsource-7.0.7.34-lp150.2.21.1libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.21.1perl-PerlMagick-7.0.7.34-lp150.2.21.1

noarchImageMagick-doc-7.0.7.34-lp150.2.21.1

x86_64libMagick++-7_Q16HDRI4-32bit-7.0.7.34-lp150.2.21.1libMagick++-devel-32bit-7.0.7.34-lp150.2.21.1libMagickWand-7_Q16HDRI6-7.0.7.34-lp150.2.21.1libMagickCore-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.21.1ImageMagick-debuginfo-7.0.7.34-lp150.2.21.1libMagickWand-7_Q16HDRI6-32bit-debuginfo-7.0.7.34-lp150.2.21.1libMagickCore-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.21.1libMagickWand-7_Q16HDRI6-debuginfo-7.0.7.34-lp150.2.21.1libMagick++-devel-7.0.7.34-lp150.2.21.1ImageMagick-extra-debuginfo-7.0.7.34-lp150.2.21.1ImageMagick-extra-7.0.7.34-lp150.2.21.1ImageMagick-7.0.7.34-lp150.2.21.1ImageMagick-devel-32bit-7.0.7.34-lp150.2.21.1libMagick++-7_Q16HDRI4-7.0.7.34-lp150.2.21.1ImageMagick-devel-7.0.7.34-lp150.2.21.1libMagick++-7_Q16HDRI4-32bit-debuginfo-7.0.7.34-lp150.2.21.1perl-PerlMagick-debuginfo-7.0.7.34-lp150.2.21.1libMagickWand-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.21.1libMagickCore-7_Q16HDRI6-32bit-7.0.7.34-lp150.2.21.1libMagickCore-7_Q16HDRI6-7.0.7.34-lp150.2.21.1ImageMagick-debugsource-7.0.7.34-lp150.2.21.1libMagick++-7_Q16HDRI4-debuginfo-7.0.7.34-lp150.2.21.1perl-PerlMagick-7.0.7.34-lp150.2.21.1


Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: Medium

CVE: CVE-2018-3620, CVE-2018-3646




Ubuntu 12.04

linux-image-virtual_3.2.0.137.152linux-image-3.2.0-137-generic_3.2.0-137.183linux-image-highbank_3.2.0.137.152linux-image-3.2.0-137-generic-pae_3.2.0-137.183linux-image-generic_3.2.0.137.152linux-image-3.2.0-137-omap_3.2.0-137.183linux-image-powerpc64-smp_3.2.0.137.152linux-image-3.2.0-137-powerpc64-smp_3.2.0-137.183linux-image-3.2.0-137-highbank_3.2.0-137.183linux-image-powerpc_3.2.0.137.152linux-image-generic-pae_3.2.0.137.152linux-image-3.2.0-137-virtual_3.2.0-137.183linux-image-3.2.0-137-powerpc-smp_3.2.0-137.183linux-image-omap_3.2.0.137.152linux-image-powerpc-smp_3.2.0.137.152

194446 - Fedora Linux 29 FEDORA-2018-93558de1ac Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-93558de1ac



Fedora Core 29

mupdf-1.14.0-6.fc29

194447 - Fedora Linux 28 FEDORA-2018-a675aa39fc Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2017-2663

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-a675aa39fc



Fedora Core 28

subscription-manager-1.24.2-1.fc28

194449 - Fedora Linux 29 FEDORA-2018-075821dc8f Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-075821dc8f



Fedora Core 29


194456 - Fedora Linux 27 FEDORA-2018-91ba32a0ff Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-91ba32a0ff



Fedora Core 27


194467 - Fedora Linux 29 FEDORA-2018-e805688895 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: MediumCVE: CVE-2018-16646, CVE-2018-19058, CVE-2018-19059, CVE-2018-19060

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-e805688895



Fedora Core 29

poppler-0.67.0-6.fc29

194468 - Fedora Linux 27 FEDORA-2018-5a1e2759aa Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-5a1e2759aa



Fedora Core 27

pdns-4.1.5-1.fc27


Category: SSH Module -> NonIntrusive -> Debian Patches and HotfixesRisk Level: LowCVE: CVE-2018-17478

DescriptionThe scan detected that the host is missing the following update:DSA-4340-1



Debian 9.0allchromium-shell_70.0.3538.102-1~deb9u1chromium-driver_70.0.3538.102-1~deb9u1chromedriver_70.0.3538.102-1~deb9u1chromium_70.0.3538.102-1~deb9u1chromium-l10n_70.0.3538.102-1~deb9u1chromium-widevine_70.0.3538.102-1~deb9u1

147344 - SuSE Linux 15.0, 42.3 openSUSE-SU-2018:3819-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and HotfixesRisk Level: LowCVE: CVE-2018-4022




SuSE Linux 15.0x86_64mkvtoolnix-28.2.0-lp150.2.3.1mkvtoolnix-debugsource-28.2.0-lp150.2.3.1mkvtoolnix-gui-debuginfo-28.2.0-lp150.2.3.1mkvtoolnix-gui-28.2.0-lp150.2.3.1mkvtoolnix-debuginfo-28.2.0-lp150.2.3.1

SuSE Linux 42.3x86_64libmatroska6-32bit-1.4.9-4.3.1libmatroska6-debuginfo-32bit-1.4.9-4.3.1mkvtoolnix-debuginfo-28.2.0-8.1libmatroska6-debuginfo-1.4.9-4.3.1libmatroska6-1.4.9-4.3.1mkvtoolnix-debugsource-28.2.0-8.1mkvtoolnix-gui-debuginfo-28.2.0-8.1mkvtoolnix-gui-28.2.0-8.1libmatroska-debugsource-1.4.9-4.3.1libmatroska-devel-1.4.9-4.3.1mkvtoolnix-28.2.0-8.1

i586libmatroska-devel-1.4.9-4.3.1libmatroska-debugsource-1.4.9-4.3.1libmatroska6-1.4.9-4.3.1libmatroska6-debuginfo-1.4.9-4.3.1

182841 - FreeBSD Flash Player Arbitrary Code Execution (8f128c72-ecf9-11e8-aa00-6451062f0f7a)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes

Risk Level: LowCVE: CVE-2018-15981

DescriptionThe scan detected that the host is missing the following update:Flash Player -- arbitrary code execution (8f128c72-ecf9-11e8-aa00-6451062f0f7a)


http://www.vuxml.org/freebsd/8f128c72-ecf9-11e8-aa00-6451062f0f7a.html

Affected packages: linux-flashplayer < 31.0.0.153

182842 - FreeBSD Gitlab Multiple Vulnerabilities (d889d32c-ecd9-11e8-9416-001b217b3468)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2018-18643, CVE-2018-19359

DescriptionThe scan detected that the host is missing the following update:Gitlab -- Multiple vulnerabilities (d889d32c-ecd9-11e8-9416-001b217b3468)


http://www.vuxml.org/freebsd/d889d32c-ecd9-11e8-9416-001b217b3468.html

Affected packages: 11.4.0 <= gitlab-ce < 11.4.68.9.0 <= gitlab-ce < 11.3.10

182843 - FreeBSD powerdns Multiple Vulnerabilities (0aee2f13-ec1d-11e8-8c92-6805ca2fa271)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2018-10851, CVE-2018-14626

DescriptionThe scan detected that the host is missing the following update:powerdns -- Multiple vulnerabilities (0aee2f13-ec1d-11e8-8c92-6805ca2fa271)


http://www.vuxml.org/freebsd/0aee2f13-ec1d-11e8-8c92-6805ca2fa271.html

Affected packages: powerdns < 4.1.5

182844 - FreeBSD asterisk Remote Crash Vulnerability DNS SRV And NAPTR Lookups (c6fb2734-e835-11e8-b14b-001999f8d30b)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:asterisk -- Remote crash vulnerability DNS SRV and NAPTR lookups (c6fb2734-e835-11e8-b14b-001999f8d30b)


http://www.vuxml.org/freebsd/c6fb2734-e835-11e8-b14b-001999f8d30b.html

Affected packages: asterisk15 < 15.6.1asterisk16 < 16.0.1

182845 - FreeBSD powerdns-recursor Multiple Vulnerabilities (e9aa0e4c-ea8b-11e8-a5b7-00e04c1ea73d)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and HotfixesRisk Level: LowCVE: CVE-2018-10851, CVE-2018-14626, CVE-2018-14644

DescriptionThe scan detected that the host is missing the following update:powerdns-recursor -- Multiple vulnerabilities (e9aa0e4c-ea8b-11e8-a5b7-00e04c1ea73d)


http://www.vuxml.org/freebsd/e9aa0e4c-ea8b-11e8-a5b7-00e04c1ea73d.html

Affected packages: powerdns-recursor < 4.1.7powerdns-recursor40 < 4.0.9

186473 - Ubuntu Linux 18.04, 18.10 USN-3818-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and HotfixesRisk Level: LowCVE: CVE-2018-16850


ObservationUpdates often remediate critical security problems that should be quickly addressed.

For more information see:


Ubuntu 18.10

postgresql-10_10.6-0ubuntu0.18.10.1

Ubuntu 18.04

postgresql-10_10.6-0ubuntu0.18.04.1

194440 - Fedora Linux 27 FEDORA-2018-41320b315a Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-18074

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-41320b315a



Fedora Core 27

python-requests-2.20.0-1.fc27

194441 - Fedora Linux 29 FEDORA-2018-08ceba4f8f Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-MAP-NOMATCH

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-08ceba4f8f



Fedora Core 29

php-7.2.12-1.fc29

194442 - Fedora Linux 28 FEDORA-2018-ae9027a506 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes

Risk Level: LowCVE: CVE-2018-3977

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-ae9027a506



Fedora Core 28

SDL2_image-2.0.4-1.fc28

194443 - Fedora Linux 29 FEDORA-2018-009a65a873 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-009a65a873



Fedora Core 29

flatpak-1.0.5-2.fc29

194444 - Fedora Linux 29 FEDORA-2018-2e64407bef Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-2e64407bef



Fedora Core 29

kio-extras-18.08.3-1.fc29

194450 - Fedora Linux 29 FEDORA-2018-8e457298ce Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-8e457298ce



Fedora Core 29

xen-4.11.0-9.fc29

194451 - Fedora Linux 28 FEDORA-2018-6855bf9ff3 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-6855bf9ff3



Fedora Core 28

php-7.2.12-1.fc28

194453 - Fedora Linux 29 FEDORA-2018-70c2222171 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-70c2222171

Observation

Updates often remediate critical security problems that should be quickly addressed.For more information see:


Fedora Core 29

SDL2_image-2.0.4-1.fc29

194454 - Fedora Linux 27 FEDORA-2018-d05860129f Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-10242, CVE-2018-10243, CVE-2018-10244, CVE-2018-18956

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-d05860129f



Fedora Core 27

suricata-4.0.6-1.fc27

194455 - Fedora Linux 29 FEDORA-2018-787ee605a5 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-787ee605a5



Fedora Core 29


194457 - Fedora Linux 29 FEDORA-2018-a7988e4520 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-a7988e4520



Fedora Core 29

virtualbox-guest-additions-5.2.22-1.fc29

194458 - Fedora Linux 27 FEDORA-2018-e9d1ec6dbc Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-e9d1ec6dbc



Fedora Core 27

lldpad-1.0.1-9.git036e314.fc27

194459 - Fedora Linux 29 FEDORA-2018-7653b2c491 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-7653b2c491



Fedora Core 29

firefox-63.0.3-1.fc29

194460 - Fedora Linux 28 FEDORA-2018-2ff7cdbb7b Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-10851, CVE-2018-14626

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-2ff7cdbb7b



Fedora Core 28

pdns-4.1.5-1.fc28

194461 - Fedora Linux 29 FEDORA-2018-986f0b7fb0 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-14651, CVE-2018-14652, CVE-2018-14653, CVE-2018-14654, CVE-2018-14659, CVE-2018-14660, CVE-2018-14661

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-986f0b7fb0



Fedora Core 29

glusterfs-5.1-1.fc29

194462 - Fedora Linux 29 FEDORA-2018-85fc964de8 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-10851, CVE-2018-14626

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-85fc964de8



Fedora Core 29

pdns-4.1.5-1.fc29

194463 - Fedora Linux 29 FEDORA-2018-91382c7bd3 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-18310, CVE-2018-18520, CVE-2018-18521

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-91382c7bd3



Fedora Core 29

elfutils-0.174-5.fc29

194464 - Fedora Linux 27 FEDORA-2018-fc3018b1bd Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-fc3018b1bd



Fedora Core 27

NetworkManager-1.8.8-2.fc27

194465 - Fedora Linux 28 FEDORA-2018-cf58e1cbd1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-10242, CVE-2018-10243, CVE-2018-10244, CVE-2018-18956

Description

The scan detected that the host is missing the following update:FEDORA-2018-cf58e1cbd1



Fedora Core 28


194466 - Fedora Linux 29 FEDORA-2018-f55c305488 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-f55c305488



Fedora Core 29

kernel-headers-4.19.2-300.fc29kernel-tools-4.19.2-300.fc29kernel-4.19.2-300.fc29

194469 - Fedora Linux 29 FEDORA-2018-7850e2ac5b Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-7850e2ac5b



Fedora Core 29

kde-connect-1.3.3-1.fc29

194471 - Fedora Linux 29 FEDORA-2018-2f9521c82e Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-2f9521c82e



Fedora Core 29

flatpak-1.0.6-1.fc29

194473 - Fedora Linux 29 FEDORA-2018-69bac0f51c Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and HotfixesRisk Level: LowCVE: CVE-2018-16839, CVE-2018-16840, CVE-2018-16842

DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-69bac0f51c



Fedora Core 29

curl-7.61.1-5.fc29

194475 - Fedora Linux 28 FEDORA-2018-a510417d97 Update Is Not Installed


DescriptionThe scan detected that the host is missing the following update:FEDORA-2018-a510417d97



Fedora Core 28

postgresql-10.6-1.fc28

ENHANCED CHECKS

The following checks have been updated. Enhancements may include optimizations, changes that reflect new information on avulnerability and anything else that improves upon an existing FSL check.

24284 - Cisco Webex Network Recording Player Remote Code Execution Vulnerabilities (cisco-sa-20181003-webex-rce)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS)Risk Level: MediumCVE: CVE-2018-15408, CVE-2018-15409, CVE-2018-15410, CVE-2018-15411, CVE-2018-15412, CVE-2018-15413, CVE-2018-15415, CVE-2018-15416, CVE-2018-15417, CVE-2018-15418, CVE-2018-15419, CVE-2018-15420, CVE-2018-15431

Update DetailsRisk is updated

194363 - Fedora Linux 29 FEDORA-2018-3a25355ab6 Update Is Not Installed


Update DetailsRisk is updated

HOW TO UPDATE

FS1000 APPLIANCE customers should follow the instructions for Enterprise/Professional customers, below. In addition, we stronglyurge all appliance customers to authorize and install any Windows Update critical patches. The appliance will auto-download anycritical updates but will wait for your explicit authorization before installing.

FOUNDSTONE ENTERPRISE and PROFESSIONAL customers may obtain these new scripts using the FSUpdate Utility byselecting "FoundScan Update" on the help menu. Make sure that you have a valid FSUpdate username and password. The newvulnerability scripts will be automatically included in your scans if you have selected that option by right-clicking the selectedvulnerability category and checking the "Run New Checks" checkbox.

MANAGED SERVICE CUSTOMERS already have the newest update applied to their environment. The new vulnerability scripts willbe automatically included when your scans are next scheduled, provided the Run New Scripts option has been turned on.

MCAFEE TECHNICAL SUPPORT

ServicePortal: https://mysupport.mcafee.comMulti-National Phone Support available here:

http://www.mcafee.com/us/about/contact/index.htmlNon-US customers - Select your country from the list of Worldwide Offices.

This email may contain confidential and privileged material for the sole use of the intended recipient. Any review or distributionby others is strictly prohibited. If you are not the intended recipient please contact the sender and delete all copies.

https://mysupport.mcafee.com/

http://www.mcafee.com/us/about/contact/index.html

Copyright 2018 McAfee, Inc.McAfee is a registered trademark of McAfee, Inc. and/or its affiliates

Documents

McAfee Foundstone FSL Update · mariadb-client-10.1_10.1.37-0+deb9u1 libmariadbclient18_10.1.37-0+deb9u1 mariadb-plugin-cracklib-password-check_10.1.37-0+deb9u1 mariadb-common_10.1.37-0+deb9u1