6.8 - USN-2812-1

Executive Summary

Summary
Title	libxml2 vulnerabilities

Informations
Name	USN-2812-1	First vendor Publication	2015-11-16
Vendor	Ubuntu	Last vendor Modification	2015-11-16
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P)
Cvss Base Score	6.8	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Medium
Cvss Expoit Score	8.6	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

A security issue affects these releases of Ubuntu and its derivatives:

- Ubuntu 15.10 - Ubuntu 15.04 - Ubuntu 14.04 LTS - Ubuntu 12.04 LTS

Summary:

Several security issues were fixed in libxml2.

Software Description: - libxml2: GNOME XML library

Details:

Florian Weimer discovered that libxml2 incorrectly handled certain XML data. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause resource consumption, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and Ubuntu 15.04. (CVE-2015-1819)

Michal Zalewski discovered that libxml2 incorrectly handled certain XML data. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service. This issue only affected Ubuntu 12.04 LTS, Ubuntu 14.04 LTS and Ubuntu 15.04. (CVE-2015-7941)

Kostya Serebryany discovered that libxml2 incorrectly handled certain XML data. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service, or possibly execute arbitrary code. (CVE-2015-7942)

Gustavo Grieco discovered that libxml2 incorrectly handled certain XML data. If a user or automated system were tricked into opening a specially crafted document, an attacker could possibly cause libxml2 to crash, resulting in a denial of service. This issue only affected Ubuntu 14.04 LTS. (CVE-2015-8035)

Update instructions:

The problem can be corrected by updating your system to the following package versions:

Ubuntu 15.10:
libxml2 2.9.2+zdfsg1-4ubuntu0.1

Ubuntu 15.04:
libxml2 2.9.2+dfsg1-3ubuntu0.1

Ubuntu 14.04 LTS:
libxml2 2.9.1+dfsg1-3ubuntu4.5

Ubuntu 12.04 LTS:
libxml2 2.7.8.dfsg-5.1ubuntu4.12

After a standard system update you need to reboot your computer to make all the necessary changes.

References:
http://www.ubuntu.com/usn/usn-2812-1
CVE-2015-1819, CVE-2015-7941, CVE-2015-7942, CVE-2015-8035

Package Information:
https://launchpad.net/ubuntu/+source/libxml2/2.9.2+zdfsg1-4ubuntu0.1
https://launchpad.net/ubuntu/+source/libxml2/2.9.2+dfsg1-3ubuntu0.1
https://launchpad.net/ubuntu/+source/libxml2/2.9.1+dfsg1-3ubuntu4.5
https://launchpad.net/ubuntu/+source/libxml2/2.7.8.dfsg-5.1ubuntu4.12

Original Source

Url : http://www.ubuntu.com/usn/USN-2812-1

CWE : Common Weakness Enumeration

%	Id	Name
50 %	CWE-399	Resource Management Errors
50 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

Type	Description	Count
Application	Apple Mac Os X cpe:2.3:a:apple:mac_os_x:10.5.6:::::::* cpe:2.3:a:apple:mac_os_x::::::::	2
Application	Apple Watchos cpe:2.3:a:apple:watchos::::::::	1
Application	Hp Icewall Federation Agent cpe:2.3:a:hp:icewall_federation_agent:3.0:::::::*	1
Application	Hp Icewall File Manager cpe:2.3:a:hp:icewall_file_manager:3.0:::::::*	1
Application	Redhat Enterprise Linux cpe:2.3:a:redhat:enterprise_linux:4.0:::::::*	1
Application	Xmlsoft Libxml cpe:2.3:a:xmlsoft:libxml::::::::	1
Application	Xmlsoft libxml2 cpe:2.3:a:xmlsoft:libxml2:2.9.2:-:::::: cpe:2.3:a:xmlsoft:libxml2:2.9.1:::::::*	2
Os	Apple Iphone Os cpe:2.3:o:apple:iphone_os:9.2.1:::::::* cpe:2.3:o:apple:iphone_os:9.2:::::::* cpe:2.3:o:apple:iphone_os:9.1:::::::* cpe:2.3:o:apple:iphone_os:9.0.2:::::::* cpe:2.3:o:apple:iphone_os:9.0.1:::::::* cpe:2.3:o:apple:iphone_os:9.0:::::::* cpe:2.3:o:apple:iphone_os:8.4.1:::::::* cpe:2.3:o:apple:iphone_os:8.4:::::::* cpe:2.3:o:apple:iphone_os:8.3:::::::* cpe:2.3:o:apple:iphone_os:8.2:::::::* cpe:2.3:o:apple:iphone_os:8.1.3:::::::* cpe:2.3:o:apple:iphone_os:8.1.2:::::::* cpe:2.3:o:apple:iphone_os:8.1.1:::::::* cpe:2.3:o:apple:iphone_os:8.1:::::::* cpe:2.3:o:apple:iphone_os:8.0.2:::::::* cpe:2.3:o:apple:iphone_os:8.0.1:::::::* cpe:2.3:o:apple:iphone_os:8.0:::::::* cpe:2.3:o:apple:iphone_os:7.1.2:::::::* cpe:2.3:o:apple:iphone_os:7.1.1:::::::* cpe:2.3:o:apple:iphone_os:7.1:::::::* cpe:2.3:o:apple:iphone_os:7.0.6:::::::* cpe:2.3:o:apple:iphone_os:7.0.5:::::::* cpe:2.3:o:apple:iphone_os:7.0.4:::::::* cpe:2.3:o:apple:iphone_os:7.0.3:::::::* cpe:2.3:o:apple:iphone_os:7.0.2:::::::* cpe:2.3:o:apple:iphone_os:7.0.1:::::::* cpe:2.3:o:apple:iphone_os:7.0:::::::* cpe:2.3:o:apple:iphone_os:6.1.6:::::::* cpe:2.3:o:apple:iphone_os:6.1.5:::::::* cpe:2.3:o:apple:iphone_os:6.1.4:::::::* cpe:2.3:o:apple:iphone_os:6.1.3:::::::* cpe:2.3:o:apple:iphone_os:6.1.2:::::::* cpe:2.3:o:apple:iphone_os:6.1:::::::* cpe:2.3:o:apple:iphone_os:6.0.2:::::::* cpe:2.3:o:apple:iphone_os:6.0.1:::::::* cpe:2.3:o:apple:iphone_os:6.0:::::::* cpe:2.3:o:apple:iphone_os:5.1.1:::::::* cpe:2.3:o:apple:iphone_os:5.1:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:5.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:5.1:-:ipad:::::* cpe:2.3:o:apple:iphone_os:5.1:::::::* cpe:2.3:o:apple:iphone_os:5.0.1:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:5.0.1:-:ipad:::::* cpe:2.3:o:apple:iphone_os:5.0.1:::::::* cpe:2.3:o:apple:iphone_os:5.0.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:5.0:::::::* cpe:2.3:o:apple:iphone_os:5.0:-:ipad:::::* cpe:2.3:o:apple:iphone_os:5.0:-:iphone:::::* cpe:2.3:o:apple:iphone_os:5.0:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:4.3.5:::::::* cpe:2.3:o:apple:iphone_os:4.3.5:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:4.3.5:-:ipad:::::* cpe:2.3:o:apple:iphone_os:4.3.4:::::::* cpe:2.3:o:apple:iphone_os:4.3.3:::::::* cpe:2.3:o:apple:iphone_os:4.3.2:::::::* cpe:2.3:o:apple:iphone_os:4.3.1:::::::* cpe:2.3:o:apple:iphone_os:4.3.0:::::::* cpe:2.3:o:apple:iphone_os:4.2.9:::::::* cpe:2.3:o:apple:iphone_os:4.2.8:::::::* cpe:2.3:o:apple:iphone_os:4.2.7:::::::* cpe:2.3:o:apple:iphone_os:4.2.6:::::::* cpe:2.3:o:apple:iphone_os:4.2.5:::::::* cpe:2.3:o:apple:iphone_os:4.2.10:::::::* cpe:2.3:o:apple:iphone_os:4.2.1:::::::* cpe:2.3:o:apple:iphone_os:4.2:::::::* cpe:2.3:o:apple:iphone_os:4.1:::::::* cpe:2.3:o:apple:iphone_os:4.0.2:::::::* cpe:2.3:o:apple:iphone_os:4.0.2:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:4.0.2:-:iphone:::::* cpe:2.3:o:apple:iphone_os:4.0.1:::::::* cpe:2.3:o:apple:iphone_os:4.0.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:4.0.1:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:4.0:::::::* cpe:2.3:o:apple:iphone_os:4.0:-:iphone:::::* cpe:2.3:o:apple:iphone_os:4.0:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:3.2.2:::::::* cpe:2.3:o:apple:iphone_os:3.2.2:-:ipad:::::* cpe:2.3:o:apple:iphone_os:3.2.1:::::::* cpe:2.3:o:apple:iphone_os:3.2.1:-:ipad:::::* cpe:2.3:o:apple:iphone_os:3.2:::::::* cpe:2.3:o:apple:iphone_os:3.2:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:3.2:-:iphone:::::* cpe:2.3:o:apple:iphone_os:3.1.3:::::::* cpe:2.3:o:apple:iphone_os:3.1.3:-:iphone:::::* cpe:2.3:o:apple:iphone_os:3.1.3:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:3.1.2:::::::* cpe:2.3:o:apple:iphone_os:3.1.2:-:iphone:::::* cpe:2.3:o:apple:iphone_os:3.1.2:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:3.1.1:::::ipod_touch:: cpe:2.3:o:apple:iphone_os:3.1:::::::* cpe:2.3:o:apple:iphone_os:3.1:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:3.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:3.1:::::ipod_touch:: cpe:2.3:o:apple:iphone_os:3.0.1:::::::* cpe:2.3:o:apple:iphone_os:3.0.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:3.0.1:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:3.0:::::::* cpe:2.3:o:apple:iphone_os:3.0:-:iphone:::::* cpe:2.3:o:apple:iphone_os:3.0:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:2.2.1:::::::* cpe:2.3:o:apple:iphone_os:2.2.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:2.2.1:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:2.2:::::::* cpe:2.3:o:apple:iphone_os:2.2:-:iphone:::::* cpe:2.3:o:apple:iphone_os:2.2:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:2.1.1:::::::* cpe:2.3:o:apple:iphone_os:2.1:::::::* cpe:2.3:o:apple:iphone_os:2.1:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:2.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:2.0.2:::::::* cpe:2.3:o:apple:iphone_os:2.0.2:-:iphone:::::* cpe:2.3:o:apple:iphone_os:2.0.2:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:2.0.1:::::::* cpe:2.3:o:apple:iphone_os:2.0.1:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:2.0.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:2.0.0:::::::* cpe:2.3:o:apple:iphone_os:2.0.0:-:iphone:::::* cpe:2.3:o:apple:iphone_os:2.0.0:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:2.0:::::::* cpe:2.3:o:apple:iphone_os:1.1.5:::::::* cpe:2.3:o:apple:iphone_os:1.1.5:-:iphone:::::* cpe:2.3:o:apple:iphone_os:1.1.5:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:1.1.4:::::::* cpe:2.3:o:apple:iphone_os:1.1.4:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:1.1.4:-:iphone:::::* cpe:2.3:o:apple:iphone_os:1.1.3:::::::* cpe:2.3:o:apple:iphone_os:1.1.3:-:iphone:::::* cpe:2.3:o:apple:iphone_os:1.1.3:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:1.1.2:::::::* cpe:2.3:o:apple:iphone_os:1.1.2:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:1.1.2:-:iphone:::::* cpe:2.3:o:apple:iphone_os:1.1.1:::::::* cpe:2.3:o:apple:iphone_os:1.1.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:1.1.0:::::::* cpe:2.3:o:apple:iphone_os:1.1.0:-:ipodtouch:::::* cpe:2.3:o:apple:iphone_os:1.1.0:-:iphone:::::* cpe:2.3:o:apple:iphone_os:1.1:::::::* cpe:2.3:o:apple:iphone_os:1.0.2:::::::* cpe:2.3:o:apple:iphone_os:1.0.2:-:iphone:::::* cpe:2.3:o:apple:iphone_os:1.0.1:::::::* cpe:2.3:o:apple:iphone_os:1.0.1:-:iphone:::::* cpe:2.3:o:apple:iphone_os:1.0.0:::::::* cpe:2.3:o:apple:iphone_os:1.0:::::::* cpe:2.3:o:apple:iphone_os:::::::: cpe:2.3:o:apple:iphone_os:::~~~~ipad2~:::::* cpe:2.3:o:apple:iphone_os:::~~~~iphone~:::::* cpe:2.3:o:apple:iphone_os:::~~~~ipodtouch~:::::* cpe:2.3:o:apple:iphone_os::::::ipod_touch::* cpe:2.3:o:apple:iphone_os:::::::ipad2:* cpe:2.3:o:apple:iphone_os:::::::iphone:* cpe:2.3:o:apple:iphone_os:::::::ipodtouch:* cpe:2.3:o:apple:iphone_os:-:::::::* cpe:2.3:o:apple:iphone_os:-::~~~~ipad2~::::: cpe:2.3:o:apple:iphone_os:-::~~~~iphone~::::: cpe:2.3:o:apple:iphone_os:-::~~~~ipodtouch~::::: cpe:2.3:o:apple:iphone_os:-::::::ipad2: cpe:2.3:o:apple:iphone_os:-::::::iphone: cpe:2.3:o:apple:iphone_os:-::::::ipodtouch:	158
Os	Apple Mac Os X cpe:2.3:o:apple:mac_os_x:10.9.5:::::::* cpe:2.3:o:apple:mac_os_x:10.9.4:::::::* cpe:2.3:o:apple:mac_os_x:10.9.3:::::::* cpe:2.3:o:apple:mac_os_x:10.9.2:::::::* cpe:2.3:o:apple:mac_os_x:10.9.1:::::::* cpe:2.3:o:apple:mac_os_x:10.9:::::::* cpe:2.3:o:apple:mac_os_x:10.8.5:::::::* cpe:2.3:o:apple:mac_os_x:10.8.5:supplemental_update:::::: cpe:2.3:o:apple:mac_os_x:10.8.4:::::::* cpe:2.3:o:apple:mac_os_x:10.8.3:::::::* cpe:2.3:o:apple:mac_os_x:10.8.2:::::::* cpe:2.3:o:apple:mac_os_x:10.8.1:::::::* cpe:2.3:o:apple:mac_os_x:10.8.0:::::::* cpe:2.3:o:apple:mac_os_x:10.7.5:::::::* cpe:2.3:o:apple:mac_os_x:10.7.4:::::::* cpe:2.3:o:apple:mac_os_x:10.7.3:::::::* cpe:2.3:o:apple:mac_os_x:10.7.2:::::::* cpe:2.3:o:apple:mac_os_x:10.7.1:::::::* cpe:2.3:o:apple:mac_os_x:10.7.0:::::::* cpe:2.3:o:apple:mac_os_x:10.6.9:::::::* cpe:2.3:o:apple:mac_os_x:10.6.8:::::::* cpe:2.3:o:apple:mac_os_x:10.6.7:::::::* cpe:2.3:o:apple:mac_os_x:10.6.6:::::::* cpe:2.3:o:apple:mac_os_x:10.6.5:::::::* cpe:2.3:o:apple:mac_os_x:10.6.4:::::::* cpe:2.3:o:apple:mac_os_x:10.6.3:::::::* cpe:2.3:o:apple:mac_os_x:10.6.2:::::::* cpe:2.3:o:apple:mac_os_x:10.6.1:::::::* cpe:2.3:o:apple:mac_os_x:10.6.1::server::::: cpe:2.3:o:apple:mac_os_x:10.6.0:::::::* cpe:2.3:o:apple:mac_os_x:10.6:::::::* cpe:2.3:o:apple:mac_os_x:10.6:server:::::: cpe:2.3:o:apple:mac_os_x:10.5.8:::::::* cpe:2.3:o:apple:mac_os_x:10.5.8::server::::: cpe:2.3:o:apple:mac_os_x:10.5.7:::::::* cpe:2.3:o:apple:mac_os_x:10.5.6:::::::* cpe:2.3:o:apple:mac_os_x:10.5.5:::::::* cpe:2.3:o:apple:mac_os_x:10.5.4:::::::* cpe:2.3:o:apple:mac_os_x:10.5.3:::::::* cpe:2.3:o:apple:mac_os_x:10.5.2:::::::* cpe:2.3:o:apple:mac_os_x:10.5.2:2008-002:::::: cpe:2.3:o:apple:mac_os_x:10.5.1:::::::* cpe:2.3:o:apple:mac_os_x:10.5.0:::::::* cpe:2.3:o:apple:mac_os_x:10.5:::::::* cpe:2.3:o:apple:mac_os_x:10.4.9:::::::* cpe:2.3:o:apple:mac_os_x:10.4.8:::::::* cpe:2.3:o:apple:mac_os_x:10.4.8::macbook::::: cpe:2.3:o:apple:mac_os_x:10.4.8::mac_mini::::: cpe:2.3:o:apple:mac_os_x:10.4.8::macbook_pro::::: cpe:2.3:o:apple:mac_os_x:10.4.7:::::::* cpe:2.3:o:apple:mac_os_x:10.4.6:::::::* cpe:2.3:o:apple:mac_os_x:10.4.5:::::::* cpe:2.3:o:apple:mac_os_x:10.4.4:::::::* cpe:2.3:o:apple:mac_os_x:10.4.3:::::::* cpe:2.3:o:apple:mac_os_x:10.4.2:::::::* cpe:2.3:o:apple:mac_os_x:10.4.11:::::::* cpe:2.3:o:apple:mac_os_x:10.4.10:::::::* cpe:2.3:o:apple:mac_os_x:10.4.1:::::::* cpe:2.3:o:apple:mac_os_x:10.4.0:::::::* cpe:2.3:o:apple:mac_os_x:10.4.:::::::* cpe:2.3:o:apple:mac_os_x:10.4:::::::* cpe:2.3:o:apple:mac_os_x:10.3.9:::::::* cpe:2.3:o:apple:mac_os_x:10.3.8:::::::* cpe:2.3:o:apple:mac_os_x:10.3.7:::::::* cpe:2.3:o:apple:mac_os_x:10.3.6:::::::* cpe:2.3:o:apple:mac_os_x:10.3.5:::::::* cpe:2.3:o:apple:mac_os_x:10.3.4:::::::* cpe:2.3:o:apple:mac_os_x:10.3.3:::::::* cpe:2.3:o:apple:mac_os_x:10.3.2:::::::* cpe:2.3:o:apple:mac_os_x:10.3.1:::::::* cpe:2.3:o:apple:mac_os_x:10.3.0:::::::* cpe:2.3:o:apple:mac_os_x:10.3:::::::* cpe:2.3:o:apple:mac_os_x:10.2.8:::::::* cpe:2.3:o:apple:mac_os_x:10.2.7:::::::* cpe:2.3:o:apple:mac_os_x:10.2.6:::::::* cpe:2.3:o:apple:mac_os_x:10.2.5:::::::* cpe:2.3:o:apple:mac_os_x:10.2.4:::::::* cpe:2.3:o:apple:mac_os_x:10.2.3:::::::* cpe:2.3:o:apple:mac_os_x:10.2.2:::::::* cpe:2.3:o:apple:mac_os_x:10.2.1:::::::* cpe:2.3:o:apple:mac_os_x:10.2.0:::::::* cpe:2.3:o:apple:mac_os_x:10.2:::::::* cpe:2.3:o:apple:mac_os_x:10.11.3:::::::* cpe:2.3:o:apple:mac_os_x:10.11.2:::::::* cpe:2.3:o:apple:mac_os_x:10.11.1:::::::* cpe:2.3:o:apple:mac_os_x:10.11.0:::::::* cpe:2.3:o:apple:mac_os_x:10.10.5:::::::* cpe:2.3:o:apple:mac_os_x:10.10.4:::::::* cpe:2.3:o:apple:mac_os_x:10.10.3:::::::* cpe:2.3:o:apple:mac_os_x:10.10.2:::::::* cpe:2.3:o:apple:mac_os_x:10.10.1:::::::* cpe:2.3:o:apple:mac_os_x:10.10.0:::::::* cpe:2.3:o:apple:mac_os_x:10.1.5:::::::* cpe:2.3:o:apple:mac_os_x:10.1.4:::::::* cpe:2.3:o:apple:mac_os_x:10.1.3:::::::* cpe:2.3:o:apple:mac_os_x:10.1.2:::::::* cpe:2.3:o:apple:mac_os_x:10.1.1:::::::* cpe:2.3:o:apple:mac_os_x:10.1.0:::::::* cpe:2.3:o:apple:mac_os_x:10.1:::::::* cpe:2.3:o:apple:mac_os_x:10.0.4:::::::* cpe:2.3:o:apple:mac_os_x:10.0.3:::::::* cpe:2.3:o:apple:mac_os_x:10.0.2:::::::* cpe:2.3:o:apple:mac_os_x:10.0.1:::::::* cpe:2.3:o:apple:mac_os_x:10.0.0:::::::* cpe:2.3:o:apple:mac_os_x:10.0:::::::* cpe:2.3:o:apple:mac_os_x:::::::: cpe:2.3:o:apple:mac_os_x:-:::::::*	107
Os	Apple Tvos cpe:2.3:o:apple:tvos:9.1:::::::* cpe:2.3:o:apple:tvos:9.0.1:::::::* cpe:2.3:o:apple:tvos:9.0:::::::* cpe:2.3:o:apple:tvos:7.1:::::::* cpe:2.3:o:apple:tvos:7.0.3:::::::* cpe:2.3:o:apple:tvos:7.0.2:::::::* cpe:2.3:o:apple:tvos:7.0.1:::::::* cpe:2.3:o:apple:tvos:7.0:::::::* cpe:2.3:o:apple:tvos:6.2.1:::::::* cpe:2.3:o:apple:tvos:6.2:::::::* cpe:2.3:o:apple:tvos:6.1.2:::::::* cpe:2.3:o:apple:tvos:6.1.1:::::::* cpe:2.3:o:apple:tvos:6.1:::::::* cpe:2.3:o:apple:tvos:6.0.2:::::::* cpe:2.3:o:apple:tvos:6.0.1:::::::* cpe:2.3:o:apple:tvos:6.0:::::::* cpe:2.3:o:apple:tvos:5.2.0:::::::* cpe:2.3:o:apple:tvos:5.1.1:::::::* cpe:2.3:o:apple:tvos:5.1.0:::::::* cpe:2.3:o:apple:tvos:5.0.2:::::::* cpe:2.3:o:apple:tvos:5.0.1:::::::* cpe:2.3:o:apple:tvos:5.0.0:::::::* cpe:2.3:o:apple:tvos:4.4.4:::::::* cpe:2.3:o:apple:tvos:4.4.3:::::::* cpe:2.3:o:apple:tvos:4.4.2:::::::* cpe:2.3:o:apple:tvos:4.4.0:::::::* cpe:2.3:o:apple:tvos:4.3.0:::::::* cpe:2.3:o:apple:tvos:4.2.2:::::::* cpe:2.3:o:apple:tvos:4.2.1:::::::* cpe:2.3:o:apple:tvos:4.2.0:::::::* cpe:2.3:o:apple:tvos:4.1.1:::::::* cpe:2.3:o:apple:tvos:4.1.0:::::::* cpe:2.3:o:apple:tvos:3.0.2:::::::* cpe:2.3:o:apple:tvos:3.0.1:::::::* cpe:2.3:o:apple:tvos:3.0.0:::::::* cpe:2.3:o:apple:tvos:2.4.0:::::::* cpe:2.3:o:apple:tvos:2.3.1:::::::* cpe:2.3:o:apple:tvos:2.3.0:::::::* cpe:2.3:o:apple:tvos:2.2.0:::::::* cpe:2.3:o:apple:tvos:2.1.0:::::::* cpe:2.3:o:apple:tvos:2.0.2:::::::* cpe:2.3:o:apple:tvos:2.0.1:::::::* cpe:2.3:o:apple:tvos:2.0.0:::::::* cpe:2.3:o:apple:tvos:1.1.0:::::::* cpe:2.3:o:apple:tvos:1.0.0:::::::* cpe:2.3:o:apple:tvos::::::::	46
Os	Apple Watchos cpe:2.3:o:apple:watchos:2.1:::::::* cpe:2.3:o:apple:watchos:2.0.1:::::::* cpe:2.3:o:apple:watchos:2.0.0:::::::* cpe:2.3:o:apple:watchos:2.0:::::::* cpe:2.3:o:apple:watchos:1.01:::::::* cpe:2.3:o:apple:watchos:1.0.1:::::::* cpe:2.3:o:apple:watchos:1.0:::::::* cpe:2.3:o:apple:watchos::::::::	8
Os	Canonical Ubuntu Linux cpe:2.3:o:canonical:ubuntu_linux:15.10:::::::* cpe:2.3:o:canonical:ubuntu_linux:15.04:::::::* cpe:2.3:o:canonical:ubuntu_linux:14.04::::lts::: cpe:2.3:o:canonical:ubuntu_linux:12.04::::lts:::	4
Os	Debian Debian Linux cpe:2.3:o:debian:debian_linux:8.0:::::::* cpe:2.3:o:debian:debian_linux:7.0:::::::*	2
Os	Fedoraproject Fedora cpe:2.3:o:fedoraproject:fedora:23:::::::* cpe:2.3:o:fedoraproject:fedora:22:::::::*	2
Os	Opensuse cpe:2.3:o:opensuse:opensuse:13.2:::::::* cpe:2.3:o:opensuse:opensuse:13.1:::::::*	2
Os	Oracle Linux cpe:2.3:o:oracle:linux:7:::::::*	1
Os	Oracle Solaris cpe:2.3:o:oracle:solaris:11.3:::::::*	1
Os	Redhat Enterprise Linux cpe:2.3:o:redhat:enterprise_linux:5.0:::::::* cpe:2.3:o:redhat:enterprise_linux:5.0::server::::: cpe:2.3:o:redhat:enterprise_linux:5.0::client::::: cpe:2.3:o:redhat:enterprise_linux:5.0::desktop_workstation::::: cpe:2.3:o:redhat:enterprise_linux:5.0::desktop::::: cpe:2.3:o:redhat:enterprise_linux:5:::::::* cpe:2.3:o:redhat:enterprise_linux:5:ga:client:::::* cpe:2.3:o:redhat:enterprise_linux:5::server::::: cpe:2.3:o:redhat:enterprise_linux:5:ga:server:::::* cpe:2.3:o:redhat:enterprise_linux:5:ga:::::: cpe:2.3:o:redhat:enterprise_linux:5::client::::: cpe:2.3:o:redhat:enterprise_linux:5:unknown:server:::::* cpe:2.3:o:redhat:enterprise_linux:5::client_workstation::::: cpe:2.3:o:redhat:enterprise_linux:4.4::ws::::: cpe:2.3:o:redhat:enterprise_linux:4.4::as::::: cpe:2.3:o:redhat:enterprise_linux:4.4::es::::: cpe:2.3:o:redhat:enterprise_linux:4.4:::::::* cpe:2.3:o:redhat:enterprise_linux:4.0::advanced_server::::: cpe:2.3:o:redhat:enterprise_linux:4.0::enterprise_server::::: cpe:2.3:o:redhat:enterprise_linux:4.0::workstation::::: cpe:2.3:o:redhat:enterprise_linux:4.0:::::::* cpe:2.3:o:redhat:enterprise_linux:4.0::linux_kernel_2.6.9::::: cpe:2.3:o:redhat:enterprise_linux:4.0::ws::::: cpe:2.3:o:redhat:enterprise_linux:4.0::as::::: cpe:2.3:o:redhat:enterprise_linux:4.0::es::::: cpe:2.3:o:redhat:enterprise_linux:4:::::::* cpe:2.3:o:redhat:enterprise_linux:3.0:::::::* cpe:2.3:o:redhat:enterprise_linux:3.0::ws::::: cpe:2.3:o:redhat:enterprise_linux:3.0::es::::: cpe:2.3:o:redhat:enterprise_linux:3.0::as::::: cpe:2.3:o:redhat:enterprise_linux:3.0::advanced_servers::::: cpe:2.3:o:redhat:enterprise_linux:3.0::enterprise_server::::: cpe:2.3:o:redhat:enterprise_linux:3.0::workstation::::: cpe:2.3:o:redhat:enterprise_linux:3.0::workstation_server::::: cpe:2.3:o:redhat:enterprise_linux:3.0::advanced_server::::: cpe:2.3:o:redhat:enterprise_linux:3:::::::* cpe:2.3:o:redhat:enterprise_linux:3:ga:::::: cpe:2.3:o:redhat:enterprise_linux:3:ga:desktop:::::* cpe:2.3:o:redhat:enterprise_linux:3:ga:es:::::* cpe:2.3:o:redhat:enterprise_linux:3:ga:ws:::::* cpe:2.3:o:redhat:enterprise_linux:3:ga:as:::::* cpe:2.3:o:redhat:enterprise_linux:2.1::advanced_server::::: cpe:2.3:o:redhat:enterprise_linux:2.1::workstation::::: cpe:2.3:o:redhat:enterprise_linux:2.1::workstation_ia64::::: cpe:2.3:o:redhat:enterprise_linux:2.1::advanced_server_ia64::::: cpe:2.3:o:redhat:enterprise_linux:2.1::enterprise_server::::: cpe:2.3:o:redhat:enterprise_linux:2.1::enterprise_server_ia64::::: cpe:2.3:o:redhat:enterprise_linux:2.1:::::::* cpe:2.3:o:redhat:enterprise_linux:2.1::as::::: cpe:2.3:o:redhat:enterprise_linux:2.1::es::::: cpe:2.3:o:redhat:enterprise_linux:2.1::ws::::: cpe:2.3:o:redhat:enterprise_linux:1.0::application_stack::::: cpe:2.3:o:redhat:enterprise_linux:ws_4:::::::* cpe:2.3:o:redhat:enterprise_linux:ws_3:::::::* cpe:2.3:o:redhat:enterprise_linux:sg_a.11.16.9:::::::* cpe:2.3:o:redhat:enterprise_linux:es_4:::::::* cpe:2.3:o:redhat:enterprise_linux:es_3:::::::* cpe:2.3:o:redhat:enterprise_linux:as_4:::::::* cpe:2.3:o:redhat:enterprise_linux:as_3:::::::* cpe:2.3:o:redhat:enterprise_linux:::::::: cpe:2.3:o:redhat:enterprise_linux:-:::::::*	61

Nessus® Vulnerability Scanner

Date	Description
2017-01-17	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201701-37.nasl - Type : ACT_GATHER_INFO
2016-05-19	Name : The remote AIX host is missing a vendor-supplied security patch. File : aix_U870330.nasl - Type : ACT_GATHER_INFO
2016-05-19	Name : The remote AIX host is missing a vendor-supplied security patch. File : aix_U868931.nasl - Type : ACT_GATHER_INFO
2016-05-19	Name : The remote AIX host is missing a vendor-supplied security patch. File : aix_U866671.nasl - Type : ACT_GATHER_INFO
2016-05-18	Name : The remote web server is affected by multiple vulnerabilities. File : hpsmh_7_5_5.nasl - Type : ACT_GATHER_INFO
2016-04-25	Name : A data aggregation application installed on the remote host is affected by a ... File : lce_4_8_0.nasl - Type : ACT_GATHER_INFO
2016-04-01	Name : The remote device is affected by multiple vulnerabilities. File : appletv_9_2.nasl - Type : ACT_GATHER_INFO
2016-03-22	Name : The remote host is missing a Mac OS X update that fixes multiple vulnerabilit... File : macosx_SecUpd2016-002.nasl - Type : ACT_GATHER_INFO
2016-03-22	Name : The remote Mac OS X host is affected by multiple vulnerabilities. File : macosx_10_11_4.nasl - Type : ACT_GATHER_INFO
2016-03-04	Name : The remote Fedora host is missing a security update. File : fedora_2016-189a7bf68c.nasl - Type : ACT_GATHER_INFO
2016-03-04	Name : The remote Fedora host is missing a security update. File : fedora_2015-037f844d3e.nasl - Type : ACT_GATHER_INFO
2016-03-04	Name : The remote Fedora host is missing a security update. File : fedora_2015-c24af963a2.nasl - Type : ACT_GATHER_INFO
2016-03-04	Name : The remote Fedora host is missing a security update. File : fedora_2016-a9ee80b01d.nasl - Type : ACT_GATHER_INFO
2016-02-23	Name : The remote AIX host has a version of libxml2 installed that is affected by mu... File : aix_IV80617.nasl - Type : ACT_GATHER_INFO
2016-02-23	Name : The remote AIX host has a version of libxml2 installed that is affected by mu... File : aix_IV80616.nasl - Type : ACT_GATHER_INFO
2016-02-23	Name : The remote AIX host has a version of libxml2 installed that is affected by mu... File : aix_IV80588.nasl - Type : ACT_GATHER_INFO
2016-02-23	Name : The remote AIX host has a version of libxml2 installed that is affected by mu... File : aix_IV80586.nasl - Type : ACT_GATHER_INFO
2016-02-16	Name : The remote device is missing a vendor-supplied security patch. File : f5_bigip_SOL61570943.nasl - Type : ACT_GATHER_INFO
2016-01-25	Name : The remote openSUSE host is missing a security update. File : openSUSE-2016-32.nasl - Type : ACT_GATHER_INFO
2016-01-12	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2016-0049-1.nasl - Type : ACT_GATHER_INFO
2016-01-12	Name : The remote SUSE host is missing one or more security updates. File : suse_SU-2016-0030-1.nasl - Type : ACT_GATHER_INFO
2015-12-29	Name : The remote openSUSE host is missing a security update. File : openSUSE-2015-959.nasl - Type : ACT_GATHER_INFO
2015-12-29	Name : The remote Debian host is missing a security-related update. File : debian_DSA-3430.nasl - Type : ACT_GATHER_INFO
2015-12-22	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20151207_libxml2_on_SL7_x.nasl - Type : ACT_GATHER_INFO
2015-12-15	Name : The remote Amazon Linux AMI host is missing a security update. File : ala_ALAS-2015-628.nasl - Type : ACT_GATHER_INFO
2015-12-08	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2015-2549.nasl - Type : ACT_GATHER_INFO
2015-12-08	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2015-2550.nasl - Type : ACT_GATHER_INFO
2015-12-08	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2015-2549.nasl - Type : ACT_GATHER_INFO
2015-12-08	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2015-2550.nasl - Type : ACT_GATHER_INFO
2015-12-08	Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2015-0152.nasl - Type : ACT_GATHER_INFO
2015-12-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-2549.nasl - Type : ACT_GATHER_INFO
2015-12-08	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-2550.nasl - Type : ACT_GATHER_INFO
2015-12-08	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20151207_libxml2_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2015-11-30	Name : The remote Debian host is missing a security update. File : debian_DLA-355.nasl - Type : ACT_GATHER_INFO
2015-11-23	Name : The remote FreeBSD host is missing a security-related update. File : freebsd_pkg_e5423caf8fb811e5918cbcaec565249c.nasl - Type : ACT_GATHER_INFO
2015-11-17	Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-2812-1.nasl - Type : ACT_GATHER_INFO
2015-08-04	Name : The remote Scientific Linux host is missing one or more security updates. File : sl_20150722_libxml2_on_SL6_x.nasl - Type : ACT_GATHER_INFO
2015-07-31	Name : The remote OracleVM host is missing one or more security updates. File : oraclevm_OVMSA-2015-0097.nasl - Type : ACT_GATHER_INFO
2015-07-30	Name : The remote Oracle Linux host is missing one or more security updates. File : oraclelinux_ELSA-2015-1419.nasl - Type : ACT_GATHER_INFO
2015-07-28	Name : The remote CentOS host is missing one or more security updates. File : centos_RHSA-2015-1419.nasl - Type : ACT_GATHER_INFO
2015-07-23	Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2015-1419.nasl - Type : ACT_GATHER_INFO
2015-07-08	Name : The remote Gentoo host is missing one or more security-related patches. File : gentoo_GLSA-201507-08.nasl - Type : ACT_GATHER_INFO
2015-07-06	Name : The remote Debian host is missing a security update. File : debian_DLA-266.nasl - Type : ACT_GATHER_INFO
2015-07-02	Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_9c7177ff1fe111e59a01bcaec565249c.nasl - Type : ACT_GATHER_INFO

Alert History

If you want to see full details history, please login or register.

Date	Informations
2015-11-19 21:29:04	Multiple Updates
2015-11-18 21:28:48	Multiple Updates
2015-11-18 13:26:30	Multiple Updates
2015-11-16 21:23:20	First insertion

Global Informations

Type	Count
CWE ID(s)	4
CPE ID(s)	401
Nessus® Exploit(s)	44

	Related
6.8	CVE-2015-7942
5	CVE-2015-1819
4.3	CVE-2015-7941
2.6	CVE-2015-8035
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 4 more Alert(s)

6.8 - USN-2812-1

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU