Mcafee Foundstone Fsl Update

2016-MAR-17 FSL version 7.5.803

MCAFEE FOUNDSTONE FSL UPDATE

To better protect your environment McAfee has created this FSL check update for the Foundstone Product Suite. The following is a detailed summary of the new and updated checks included with this release.

NEW CHECKS

19813 - Google Chrome Multiple Vulnerabilities Prior To 49.0.2623.75

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2016-1630, CVE-2016-1631, CVE-2016-1632, CVE-2016-1633, CVE-2016-1634, CVE-2016-1635, CVE-2016-1636, CVE- 2016-1637, CVE-2016-1638, CVE-2016-1639, CVE-2016-1640, CVE-2016-1641, CVE-2016-1642, CVE-2016-8126

Description Multiple vulnerabilities are present in some versions of Google Chrome.

Observation Google Chrome is a popular web browser.

Multiple vulnerabilities are present in some versions of Google Chrome. The flaws lie in several components. Successful exploitation could allow an attacker to cause a denial of service condition, to bypass security access restrictions or to retrieve sensitive data.

19814 - Google Chrome Multiple Vulnerabilities Prior To 49.0.2623.75

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2016-1630, CVE-2016-1631, CVE-2016-1632, CVE-2016-1633, CVE-2016-1634, CVE-2016-1635, CVE-2016-1636, CVE- 2016-1637, CVE-2016-1638, CVE-2016-1639, CVE-2016-1640, CVE-2016-1641, CVE-2016-1642, CVE-2016-8126

Description Multiple vulnerabilities are present in some versions of Google Chrome.

Observation Google Chrome is a popular web browser.

19820 - Mozilla Firefox Multiple Vulnerabilities Prior To 45

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2016-1950, CVE-2016-1952, CVE-2016-1954, CVE-2016-1955, CVE-2016-1956, CVE-2016-1957, CVE-2016-1958, CVE- 2016-1959, CVE-2016-1960, CVE-2016-1961, CVE-2016-1962, CVE-2016-1963, CVE-2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1967, CVE-2016-1968, CVE-2016-1969, CVE-2016-1970, CVE-2016-1971, CVE-2016-1972, CVE-2016-1973, CVE-2016- 1974, CVE-2016-1975, CVE-2016-1976, CVE-2016-1977, CVE-2016-1979, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE- 2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description Multiple vulnerabilities are present in some versions of Mozilla Firefox.

Observation Mozilla Firefox is a popular web browser.

Multiple vulnerabilities are present in some versions of Mozilla Firefox. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code, to escalate privileges, to cause a denial of service condition, to bypass security measures or to conduct spoofing attacks.

19821 - Mozilla Firefox Multiple Vulnerabilities Prior To 45

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2016-1950, CVE-2016-1952, CVE-2016-1954, CVE-2016-1955, CVE-2016-1956, CVE-2016-1957, CVE-2016-1958, CVE- 2016-1959, CVE-2016-1960, CVE-2016-1961, CVE-2016-1962, CVE-2016-1963, CVE-2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1967, CVE-2016-1968, CVE-2016-1969, CVE-2016-1970, CVE-2016-1971, CVE-2016-1972, CVE-2016-1973, CVE-2016- 1974, CVE-2016-1975, CVE-2016-1976, CVE-2016-1977, CVE-2016-1979, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE- 2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description Multiple vulnerabilities are present in some versions of Mozilla Firefox.

Observation Mozilla Firefox is a popular web browser.

19830 - Mozilla Firefox ESR Multiple Vulnerabilities Prior To 38.7

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2015-4477, CVE-2015-7207, CVE-2016-1950, CVE-2016-1952, CVE-2016-1954, CVE-2016-1957, CVE-2016-1958, CVE- 2016-1960, CVE-2016-1961, CVE-2016-1962, CVE-2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1974, CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016- 2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description Multiple vulnerabilities are present in some versions of Mozilla Firefox ESR.

Observation Mozilla Firefox is a popular web browser.

Multiple vulnerabilities are present in some versions of Mozilla Firefox ESR. The flaws lie in multiple components. Successful exploitation could allow an attacker to execute arbitrary code, to escalate privileges, to cause a denial of service condition, to bypass security measures or to conduct spoofing attacks.

19831 - Mozilla Firefox ESR Multiple Vulnerabilities Prior To 38.7 Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2015-4477, CVE-2015-7207, CVE-2016-1950, CVE-2016-1952, CVE-2016-1954, CVE-2016-1957, CVE-2016-1958, CVE- 2016-1960, CVE-2016-1961, CVE-2016-1962, CVE-2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1974, CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016- 2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description Multiple vulnerabilities are present in some versions of Mozilla Firefox ESR.

Observation Mozilla Firefox is a popular web browser.

19834 - (APSB16-06) Vulnerability In Adobe Digital Editions

Category: Windows Host Assessment -> Adobe Patches Only (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2016-0954

Description A vulnerability is present in some version of Adobe Digital Editions.

Observation Adobe Digital Editions is Adobe eBook reader software.

A vulnerability is present in some versions of Adobe Digital Editions. The flaw lies in an unspecified component. Successful exploitation could allow an attacker to execute arbitrary code or cause a denial of service.

The update provided by Adobe bulletin APSB16-06 resolves this issue. The target system appears to be missing this update.

130434 - Debian Linux 7.0, 8.0 DSA-3510-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950, CVE-2016-1952, CVE-2016-1954, CVE-2016-1957, CVE-2016-1958, CVE-2016-1960, CVE-2016-1961, CVE- 2016-1962, CVE-2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1974, CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016- 2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: DSA-3510-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2016/dsa-3510 Debian 8.0 all iceweasel_38.7.0esr-1~deb8u1

Debian 7.0 all iceweasel_38.7.0esr-1~deb7u1

141113 - Red Hat Enterprise Linux RHSA-2016-0438 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-0960, CVE-2016-0961, CVE-2016-0962, CVE-2016-0963, CVE-2016-0986, CVE-2016-0987, CVE-2016-0988, CVE- 2016-0989, CVE-2016-0990, CVE-2016-0991, CVE-2016-0992, CVE-2016-0993, CVE-2016-0994, CVE-2016-0995, CVE-2016-0996, CVE-2016-0997, CVE-2016-0998, CVE-2016-0999, CVE-2016-1000, CVE-2016-1001, CVE-2016-1002, CVE-2016-1005, CVE-2016- 1010

Description The scan detected that the host is missing the following update: RHSA-2016-0438

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0438.html

RHEL5S x86_64 flash-plugin-11.2.202.577-1.el5 i386 flash-plugin-11.2.202.577-1.el5

RHEL6D x86_64 flash-plugin-11.2.202.577-1.el6_7 i386 flash-plugin-11.2.202.577-1.el6_7

RHEL6S x86_64 flash-plugin-11.2.202.577-1.el6_7 i386 flash-plugin-11.2.202.577-1.el6_7

RHEL6WS x86_64 flash-plugin-11.2.202.577-1.el6_7 i386 flash-plugin-11.2.202.577-1.el6_7

RHEL5D x86_64 flash-plugin-11.2.202.577-1.el5 i386 flash-plugin-11.2.202.577-1.el5

141116 - Red Hat Enterprise Linux RHSA-2016-0373 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-1952, CVE-2016-1954, CVE-2016-1957, CVE-2016-1958, CVE-2016-1960, CVE-2016-1961, CVE-2016-1962, CVE- 2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1973, CVE-2016-1974, CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016- 2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: RHSA-2016-0373

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0373.html

RHEL5S i386 firefox-debuginfo-38.7.0-1.el5_11 firefox-38.7.0-1.el5_11 x86_64 firefox-debuginfo-38.7.0-1.el5_11 firefox-38.7.0-1.el5_11

RHEL7S x86_64 firefox-38.7.0-1.el7_2 firefox-debuginfo-38.7.0-1.el7_2

RHEL6S i386 firefox-debuginfo-38.7.0-1.el6_7 firefox-38.7.0-1.el6_7 x86_64 firefox-debuginfo-38.7.0-1.el6_7 firefox-38.7.0-1.el6_7

RHEL6WS x86_64 firefox-debuginfo-38.7.0-1.el6_7 firefox-38.7.0-1.el6_7 i386 firefox-debuginfo-38.7.0-1.el6_7 firefox-38.7.0-1.el6_7

RHEL5D x86_64 firefox-debuginfo-38.7.0-1.el5_11 firefox-38.7.0-1.el5_11 i386 firefox-debuginfo-38.7.0-1.el5_11 firefox-38.7.0-1.el5_11

RHEL7D x86_64 firefox-38.7.0-1.el7_2 firefox-debuginfo-38.7.0-1.el7_2

RHEL6D x86_64 firefox-debuginfo-38.7.0-1.el6_7 firefox-38.7.0-1.el6_7 i386 firefox-debuginfo-38.7.0-1.el6_7 firefox-38.7.0-1.el6_7

RHEL7WS x86_64 firefox-38.7.0-1.el7_2 firefox-debuginfo-38.7.0-1.el7_2

144448 - SuSE SLES 10 SP4 SUSE-SU-2016:0776-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2015-5041, CVE-2015-7575, CVE-2015-7981, CVE-2015-8126, CVE-2015-8472, CVE-2015-8540, CVE-2016-0402, CVE- 2016-0448, CVE-2016-0466, CVE-2016-0483, CVE-2016-0494

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0776-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001942.html

SuSE SLES 10 SP4 i586 java-1_6_0-ibm-jdbc-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-fonts-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-alsa-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-plugin-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-devel-1.6.0_sr16.20-0.8.1 x86_64 java-1_6_0-ibm-jdbc-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-fonts-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-alsa-32bit-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-32bit-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-plugin-32bit-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-devel-32bit-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-plugin-1.6.0_sr16.20-0.8.1 java-1_6_0-ibm-devel-1.6.0_sr16.20-0.8.1

144449 - SuSE SLED 11 SP4 SUSE-SU-2016:0716-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-0960, CVE-2016-0961, CVE-2016-0962, CVE-2016-0963, CVE-2016-0986, CVE-2016-0987, CVE-2016-0988, CVE- 2016-0989, CVE-2016-0990, CVE-2016-0991, CVE-2016-0992, CVE-2016-0993, CVE-2016-0994, CVE-2016-0995, CVE-2016-0996, CVE-2016-0997, CVE-2016-0998, CVE-2016-0999, CVE-2016-1000, CVE-2016-1001, CVE-2016-1002, CVE-2016-1005, CVE-2016- 1010

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0716-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001921.html

SuSE SLED 11 SP4 x86_64 flash-player-11.2.202.577-0.38.1 flash-player-gnome-11.2.202.577-0.38.1 flash-player-kde4-11.2.202.577-0.38.1 i586 flash-player-11.2.202.577-0.38.1 flash-player-gnome-11.2.202.577-0.38.1 flash-player-kde4-11.2.202.577-0.38.1

144452 - SuSE SLED 12, 12 SP1 SUSE-SU-2016:0715-1 Update Is Not Installed

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0715-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001920.html

SuSE SLED 12 x86_64 flash-player-11.2.202.577-123.1 flash-player-gnome-11.2.202.577-123.1

SuSE SLED 12 SP1 x86_64 flash-player-11.2.202.577-123.1 flash-player-gnome-11.2.202.577-123.1

144453 - SuSE SLES 11 SP4, SLED 11 SP4 SUSE-SU-2016:0777-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950, CVE-2016-1952, CVE-2016-1953, CVE-2016-1954, CVE-2016-1957, CVE-2016-1958, CVE-2016-1960, CVE- 2016-1961, CVE-2016-1962, CVE-2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1974, CVE-2016-1977, CVE-2016-1978, CVE-2016-1979, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016- 2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0777-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001943.html

SuSE SLED 11 SP4 x86_64 MozillaFirefox-38.7.0esr-37.3 libfreebl3-32bit-3.20.2-28.1 mozilla-nspr-32bit-4.12-24.1 mozilla-nss-32bit-3.20.2-28.1 mozilla-nss-3.20.2-28.1 libsoftokn3-3.20.2-28.1 mozilla-nss-tools-3.20.2-28.1 mozilla-nspr-4.12-24.1 libfreebl3-3.20.2-28.1 MozillaFirefox-translations-38.7.0esr-37.3 libsoftokn3-32bit-3.20.2-28.1 i586 MozillaFirefox-38.7.0esr-37.3 mozilla-nss-3.20.2-28.1 libsoftokn3-3.20.2-28.1 mozilla-nss-tools-3.20.2-28.1 mozilla-nspr-4.12-24.1 libfreebl3-3.20.2-28.1 MozillaFirefox-translations-38.7.0esr-37.3

SuSE SLES 11 SP4 i586 MozillaFirefox-38.7.0esr-37.3 mozilla-nss-3.20.2-28.1 libsoftokn3-3.20.2-28.1 mozilla-nss-tools-3.20.2-28.1 mozilla-nspr-4.12-24.1 libfreebl3-3.20.2-28.1 MozillaFirefox-translations-38.7.0esr-37.3 x86_64 MozillaFirefox-38.7.0esr-37.3 libfreebl3-32bit-3.20.2-28.1 mozilla-nspr-32bit-4.12-24.1 mozilla-nss-32bit-3.20.2-28.1 mozilla-nss-3.20.2-28.1 libsoftokn3-3.20.2-28.1 mozilla-nss-tools-3.20.2-28.1 mozilla-nspr-4.12-24.1 libfreebl3-3.20.2-28.1 MozillaFirefox-translations-38.7.0esr-37.3 libsoftokn3-32bit-3.20.2-28.1

144454 - SuSE Linux 13.2 openSUSE-SU-2016:0729-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2015-8126, CVE-2016-1630, CVE-2016-1631, CVE-2016-1632, CVE-2016-1633, CVE-2016-1634, CVE-2016-1635, CVE- 2016-1636, CVE-2016-1637, CVE-2016-1638, CVE-2016-1639, CVE-2016-1640, CVE-2016-1641, CVE-2016-1642

Description The scan detected that the host is missing the following update: openSUSE-SU-2016:0729-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.opensuse.org/opensuse-updates/2016-03/msg00045.html

SuSE Linux 13.2 x86_64 chromium-debuginfo-49.0.2623.75-81.2 chromium-desktop-kde-49.0.2623.75-81.2 chromium-ffmpegsumo-debuginfo-49.0.2623.75-81.2 chromium-49.0.2623.75-81.2 chromium-ffmpegsumo-49.0.2623.75-81.2 chromium-desktop-gnome-49.0.2623.75-81.2 chromedriver-49.0.2623.75-81.2 chromedriver-debuginfo-49.0.2623.75-81.2 chromium-debugsource-49.0.2623.75-81.2 i586 chromium-debuginfo-49.0.2623.75-81.2 chromium-desktop-kde-49.0.2623.75-81.2 chromium-ffmpegsumo-debuginfo-49.0.2623.75-81.2 chromium-49.0.2623.75-81.2 chromium-ffmpegsumo-49.0.2623.75-81.2 chromium-desktop-gnome-49.0.2623.75-81.2 chromedriver-49.0.2623.75-81.2 chromedriver-debuginfo-49.0.2623.75-81.2 chromium-debugsource-49.0.2623.75-81.2

144456 - SuSE Linux 13.1 openSUSE-SU-2016:0733-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950, CVE-2016-1952, CVE-2016-1953, CVE-2016-1954, CVE-2016-1955, CVE-2016-1956, CVE-2016-1957, CVE- 2016-1958, CVE-2016-1959, CVE-2016-1960, CVE-2016-1961, CVE-2016-1962, CVE-2016-1963, CVE-2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1967, CVE-2016-1968, CVE-2016-1970, CVE-2016-1971, CVE-2016-1972, CVE-2016-1973, CVE-2016- 1974, CVE-2016-1975, CVE-2016-1976, CVE-2016-1977, CVE-2016-1979, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE- 2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: openSUSE-SU-2016:0733-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.opensuse.org/opensuse-updates/2016-03/msg00049.html

SuSE Linux 13.1 x86_64 mozilla-nss-3.21.1-74.1 MozillaFirefox-devel-45.0-109.1 libfreebl3-debuginfo-32bit-3.21.1-74.1 mozilla-nspr-debuginfo-32bit-4.12-34.1 mozilla-nss-tools-debuginfo-3.21.1-74.1 mozilla-nss-certs-debuginfo-32bit-3.21.1-74.1 mozilla-nspr-devel-4.12-34.1 mozilla-nspr-4.12-34.1 MozillaFirefox-debuginfo-45.0-109.1 libfreebl3-debuginfo-3.21.1-74.1 MozillaFirefox-translations-other-45.0-109.1 libsoftokn3-debuginfo-32bit-3.21.1-74.1 mozilla-nss-tools-3.21.1-74.1 mozilla-nss-certs-debuginfo-3.21.1-74.1 mozilla-nss-certs-32bit-3.21.1-74.1 mozilla-nspr-debugsource-4.12-34.1 mozilla-nspr-debuginfo-4.12-34.1 libsoftokn3-32bit-3.21.1-74.1 MozillaFirefox-translations-common-45.0-109.1 mozilla-nspr-32bit-4.12-34.1 mozilla-nss-debuginfo-3.21.1-74.1 MozillaFirefox-buildsymbols-45.0-109.1 libsoftokn3-3.21.1-74.1 MozillaFirefox-branding-upstream-45.0-109.1 mozilla-nss-certs-3.21.1-74.1 mozilla-nss-sysinit-debuginfo-3.21.1-74.1 mozilla-nss-sysinit-3.21.1-74.1 mozilla-nss-32bit-3.21.1-74.1 mozilla-nss-sysinit-debuginfo-32bit-3.21.1-74.1 MozillaFirefox-45.0-109.1 mozilla-nss-debuginfo-32bit-3.21.1-74.1 libfreebl3-32bit-3.21.1-74.1 mozilla-nss-sysinit-32bit-3.21.1-74.1 mozilla-nss-devel-3.21.1-74.1 libsoftokn3-debuginfo-3.21.1-74.1 MozillaFirefox-debugsource-45.0-109.1 libfreebl3-3.21.1-74.1 mozilla-nss-debugsource-3.21.1-74.1 i586 mozilla-nspr-devel-4.12-34.1 MozillaFirefox-translations-other-45.0-109.1 MozillaFirefox-debugsource-45.0-109.1 mozilla-nss-debugsource-3.21.1-74.1 MozillaFirefox-branding-upstream-45.0-109.1 MozillaFirefox-debuginfo-45.0-109.1 MozillaFirefox-devel-45.0-109.1 libfreebl3-debuginfo-3.21.1-74.1 mozilla-nss-debuginfo-3.21.1-74.1 mozilla-nspr-debugsource-4.12-34.1 mozilla-nspr-4.12-34.1 MozillaFirefox-45.0-109.1 libfreebl3-3.21.1-74.1 mozilla-nss-sysinit-3.21.1-74.1 mozilla-nss-devel-3.21.1-74.1 mozilla-nss-certs-3.21.1-74.1 mozilla-nss-tools-3.21.1-74.1 libsoftokn3-3.21.1-74.1 mozilla-nss-3.21.1-74.1 mozilla-nss-sysinit-debuginfo-3.21.1-74.1 MozillaFirefox-translations-common-45.0-109.1 mozilla-nspr-debuginfo-4.12-34.1 mozilla-nss-tools-debuginfo-3.21.1-74.1 MozillaFirefox-buildsymbols-45.0-109.1 mozilla-nss-certs-debuginfo-3.21.1-74.1 libsoftokn3-debuginfo-3.21.1-74.1

144459 - SuSE SLES 12, 12 SP1, SLED 12, 12 SP1 SUSE-SU-2016:0727-1 Update Is Not Installed

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0727-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001924.html

SuSE SLED 12 SP1 x86_64 mozilla-nss-3.20.2-40.1 mozilla-nspr-debuginfo-32bit-4.12-12.1 MozillaFirefox-debuginfo-38.7.0esr-63.3 mozilla-nss-sysinit-32bit-3.20.2-40.1 mozilla-nss-tools-3.20.2-40.1 mozilla-nss-tools-debuginfo-3.20.2-40.1 mozilla-nss-sysinit-debuginfo-32bit-3.20.2-40.1 mozilla-nspr-debuginfo-4.12-12.1 mozilla-nss-debuginfo-32bit-3.20.2-40.1 mozilla-nss-debuginfo-3.20.2-40.1 mozilla-nss-32bit-3.20.2-40.1 MozillaFirefox-38.7.0esr-63.3 mozilla-nss-certs-debuginfo-3.20.2-40.1 mozilla-nss-certs-debuginfo-32bit-3.20.2-40.1 libsoftokn3-debuginfo-32bit-3.20.2-40.1 libsoftokn3-32bit-3.20.2-40.1 libfreebl3-debuginfo-32bit-3.20.2-40.1 libfreebl3-32bit-3.20.2-40.1 mozilla-nspr-4.12-12.1 mozilla-nspr-debugsource-4.12-12.1 libfreebl3-debuginfo-3.20.2-40.1 libfreebl3-3.20.2-40.1 mozilla-nss-sysinit-3.20.2-40.1 libsoftokn3-debuginfo-3.20.2-40.1 mozilla-nss-debugsource-3.20.2-40.1 libsoftokn3-3.20.2-40.1 MozillaFirefox-translations-38.7.0esr-63.3 mozilla-nspr-32bit-4.12-12.1 mozilla-nss-sysinit-debuginfo-3.20.2-40.1 MozillaFirefox-debugsource-38.7.0esr-63.3 mozilla-nss-certs-32bit-3.20.2-40.1 mozilla-nss-certs-3.20.2-40.1

SuSE SLED 12 x86_64 mozilla-nss-3.20.2-40.1 mozilla-nspr-debuginfo-32bit-4.12-12.1 MozillaFirefox-debuginfo-38.7.0esr-63.3 mozilla-nss-sysinit-32bit-3.20.2-40.1 mozilla-nss-tools-3.20.2-40.1 mozilla-nss-tools-debuginfo-3.20.2-40.1 mozilla-nss-sysinit-debuginfo-32bit-3.20.2-40.1 mozilla-nspr-debuginfo-4.12-12.1 mozilla-nss-debuginfo-32bit-3.20.2-40.1 mozilla-nss-debuginfo-3.20.2-40.1 mozilla-nss-32bit-3.20.2-40.1 MozillaFirefox-38.7.0esr-63.3 mozilla-nss-certs-debuginfo-3.20.2-40.1 mozilla-nss-certs-debuginfo-32bit-3.20.2-40.1 libsoftokn3-debuginfo-32bit-3.20.2-40.1 libsoftokn3-32bit-3.20.2-40.1 libfreebl3-debuginfo-32bit-3.20.2-40.1 libfreebl3-32bit-3.20.2-40.1 mozilla-nspr-4.12-12.1 mozilla-nspr-debugsource-4.12-12.1 libfreebl3-debuginfo-3.20.2-40.1 libfreebl3-3.20.2-40.1 mozilla-nss-sysinit-3.20.2-40.1 libsoftokn3-debuginfo-3.20.2-40.1 mozilla-nss-debugsource-3.20.2-40.1 libsoftokn3-3.20.2-40.1 MozillaFirefox-translations-38.7.0esr-63.3 mozilla-nspr-32bit-4.12-12.1 mozilla-nss-sysinit-debuginfo-3.20.2-40.1 MozillaFirefox-debugsource-38.7.0esr-63.3 mozilla-nss-certs-32bit-3.20.2-40.1 mozilla-nss-certs-3.20.2-40.1

SuSE SLES 12 SP1 x86_64 mozilla-nss-3.20.2-40.1 mozilla-nspr-debuginfo-32bit-4.12-12.1 MozillaFirefox-debuginfo-38.7.0esr-63.3 mozilla-nss-debuginfo-32bit-3.20.2-40.1 mozilla-nss-sysinit-32bit-3.20.2-40.1 mozilla-nss-tools-3.20.2-40.1 mozilla-nss-tools-debuginfo-3.20.2-40.1 libfreebl3-hmac-3.20.2-40.1 mozilla-nspr-debuginfo-4.12-12.1 libfreebl3-3.20.2-40.1 mozilla-nss-debuginfo-3.20.2-40.1 mozilla-nss-32bit-3.20.2-40.1 mozilla-nss-sysinit-3.20.2-40.1 mozilla-nss-certs-debuginfo-3.20.2-40.1 mozilla-nss-certs-debuginfo-32bit-3.20.2-40.1 libsoftokn3-debuginfo-32bit-3.20.2-40.1 libsoftokn3-hmac-3.20.2-40.1 libsoftokn3-32bit-3.20.2-40.1 libfreebl3-debuginfo-32bit-3.20.2-40.1 libfreebl3-32bit-3.20.2-40.1 libsoftokn3-hmac-32bit-3.20.2-40.1 mozilla-nspr-4.12-12.1 mozilla-nspr-debugsource-4.12-12.1 libfreebl3-debuginfo-3.20.2-40.1 MozillaFirefox-38.7.0esr-63.3 mozilla-nss-sysinit-debuginfo-32bit-3.20.2-40.1 libfreebl3-hmac-32bit-3.20.2-40.1 libsoftokn3-debuginfo-3.20.2-40.1 mozilla-nss-debugsource-3.20.2-40.1 libsoftokn3-3.20.2-40.1 MozillaFirefox-translations-38.7.0esr-63.3 mozilla-nspr-32bit-4.12-12.1 mozilla-nss-sysinit-debuginfo-3.20.2-40.1 MozillaFirefox-debugsource-38.7.0esr-63.3 mozilla-nss-certs-32bit-3.20.2-40.1 mozilla-nss-certs-3.20.2-40.1

SuSE SLES 12 x86_64 mozilla-nss-3.20.2-40.1 mozilla-nspr-debuginfo-32bit-4.12-12.1 MozillaFirefox-debuginfo-38.7.0esr-63.3 mozilla-nss-debuginfo-32bit-3.20.2-40.1 mozilla-nss-sysinit-32bit-3.20.2-40.1 mozilla-nss-tools-3.20.2-40.1 mozilla-nss-tools-debuginfo-3.20.2-40.1 libfreebl3-hmac-3.20.2-40.1 mozilla-nspr-debuginfo-4.12-12.1 libfreebl3-3.20.2-40.1 mozilla-nss-debuginfo-3.20.2-40.1 mozilla-nss-32bit-3.20.2-40.1 mozilla-nss-sysinit-3.20.2-40.1 mozilla-nss-certs-debuginfo-3.20.2-40.1 mozilla-nss-certs-debuginfo-32bit-3.20.2-40.1 libsoftokn3-debuginfo-32bit-3.20.2-40.1 libsoftokn3-hmac-3.20.2-40.1 libsoftokn3-32bit-3.20.2-40.1 libfreebl3-debuginfo-32bit-3.20.2-40.1 libfreebl3-32bit-3.20.2-40.1 libsoftokn3-hmac-32bit-3.20.2-40.1 mozilla-nspr-4.12-12.1 mozilla-nspr-debugsource-4.12-12.1 libfreebl3-debuginfo-3.20.2-40.1 MozillaFirefox-38.7.0esr-63.3 mozilla-nss-sysinit-debuginfo-32bit-3.20.2-40.1 libfreebl3-hmac-32bit-3.20.2-40.1 libsoftokn3-debuginfo-3.20.2-40.1 mozilla-nss-debugsource-3.20.2-40.1 libsoftokn3-3.20.2-40.1 MozillaFirefox-translations-38.7.0esr-63.3 mozilla-nspr-32bit-4.12-12.1 mozilla-nss-sysinit-debuginfo-3.20.2-40.1 MozillaFirefox-debugsource-38.7.0esr-63.3 mozilla-nss-certs-32bit-3.20.2-40.1 mozilla-nss-certs-3.20.2-40.1

144460 - SuSE Linux 13.2 openSUSE-SU-2016:0731-1 Update Is Not Installed

Description The scan detected that the host is missing the following update: openSUSE-SU-2016:0731-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.opensuse.org/opensuse-updates/2016-03/msg00047.html

SuSE Linux 13.2 x86_64 libsoftokn3-debuginfo-3.21.1-28.1 libfreebl3-32bit-3.21.1-28.1 mozilla-nss-debugsource-3.21.1-28.1 mozilla-nss-certs-3.21.1-28.1 libfreebl3-debuginfo-3.21.1-28.1 libsoftokn3-3.21.1-28.1 mozilla-nss-sysinit-3.21.1-28.1 MozillaFirefox-debugsource-45.0-65.1 MozillaFirefox-translations-common-45.0-65.1 libfreebl3-3.21.1-28.1 mozilla-nss-devel-3.21.1-28.1 MozillaFirefox-branding-upstream-45.0-65.1 mozilla-nspr-32bit-4.12-15.1 mozilla-nss-sysinit-debuginfo-3.21.1-28.1 mozilla-nspr-debuginfo-32bit-4.12-15.1 mozilla-nss-3.21.1-28.1 mozilla-nss-tools-debuginfo-3.21.1-28.1 mozilla-nss-sysinit-debuginfo-32bit-3.21.1-28.1 MozillaFirefox-debuginfo-45.0-65.1 mozilla-nss-debuginfo-32bit-3.21.1-28.1 mozilla-nss-certs-debuginfo-32bit-3.21.1-28.1 MozillaFirefox-45.0-65.1 mozilla-nss-certs-debuginfo-3.21.1-28.1 mozilla-nspr-devel-4.12-15.1 mozilla-nss-certs-32bit-3.21.1-28.1 libfreebl3-debuginfo-32bit-3.21.1-28.1 mozilla-nss-debuginfo-3.21.1-28.1 mozilla-nss-sysinit-32bit-3.21.1-28.1 mozilla-nspr-debuginfo-4.12-15.1 mozilla-nss-tools-3.21.1-28.1 mozilla-nspr-4.12-15.1 MozillaFirefox-buildsymbols-45.0-65.1 MozillaFirefox-devel-45.0-65.1 MozillaFirefox-translations-other-45.0-65.1 libsoftokn3-32bit-3.21.1-28.1 mozilla-nss-32bit-3.21.1-28.1 mozilla-nspr-debugsource-4.12-15.1 libsoftokn3-debuginfo-32bit-3.21.1-28.1 i586 MozillaFirefox-translations-common-45.0-65.1 libsoftokn3-3.21.1-28.1 mozilla-nss-tools-3.21.1-28.1 mozilla-nss-sysinit-debuginfo-3.21.1-28.1 mozilla-nss-sysinit-3.21.1-28.1 MozillaFirefox-branding-upstream-45.0-65.1 MozillaFirefox-devel-45.0-65.1 mozilla-nspr-debugsource-4.12-15.1 MozillaFirefox-45.0-65.1 MozillaFirefox-debugsource-45.0-65.1 mozilla-nss-tools-debuginfo-3.21.1-28.1 libsoftokn3-debuginfo-3.21.1-28.1 mozilla-nss-certs-debuginfo-3.21.1-28.1 libfreebl3-debuginfo-3.21.1-28.1 MozillaFirefox-debuginfo-45.0-65.1 mozilla-nss-3.21.1-28.1 mozilla-nspr-debuginfo-4.12-15.1 libfreebl3-3.21.1-28.1 mozilla-nspr-4.12-15.1 mozilla-nspr-devel-4.12-15.1 MozillaFirefox-translations-other-45.0-65.1 mozilla-nss-debuginfo-3.21.1-28.1 mozilla-nss-debugsource-3.21.1-28.1 MozillaFirefox-buildsymbols-45.0-65.1 mozilla-nss-devel-3.21.1-28.1 mozilla-nss-certs-3.21.1-28.1

160057 - CentOS 5, 6, 7 CESA-2016-0373 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2016-1952, CVE-2016-1954, CVE-2016-1957, CVE-2016-1958, CVE-2016-1960, CVE-2016-1961, CVE-2016-1962, CVE- 2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1973, CVE-2016-1974, CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016- 2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: CESA-2016-0373

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2016-March/021724.html http://lists.centos.org/pipermail/centos-announce/2016-March/021723.html http://lists.centos.org/pipermail/centos-announce/2016-March/021725.html

CentOS 6 x86_64 firefox-38.7.0-1.el6.centos i686 firefox-38.7.0-1.el6.centos

CentOS 7 x86_64 firefox-38.7.0-1.el7.centos i686 firefox-38.7.0-1.el7.centos

CentOS 5 x86_64 firefox-38.7.0-1.el5.centos i386 firefox-38.7.0-1.el5.centos

163026 - Oracle Enterprise Linux ELSA-2016-0373 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-1952, CVE-2016-1954, CVE-2016-1957, CVE-2016-1958, CVE-2016-1960, CVE-2016-1961, CVE-2016-1962, CVE- 2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1973, CVE-2016-1974, CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016- 2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: ELSA-2016-0373

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2016-March/005850.html http://oss.oracle.com/pipermail/el-errata/2016-March/005847.html http://oss.oracle.com/pipermail/el-errata/2016-March/005846.html

OEL5 x86_64 firefox-38.7.0-1.0.1.el5_11 i386 firefox-38.7.0-1.0.1.el5_11

OEL6 x86_64 firefox-38.7.0-1.0.1.el6_7 i386 firefox-38.7.0-1.0.1.el6_7

OEL7 x86_64 firefox-38.7.0-1.0.1.el7_2

170635 - Amazon Linux AMI ALAS-2016-661 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: High CVE: CVE-2015-3197, CVE-2015-7575, CVE-2016-0702, CVE-2016-0705, CVE-2016-0797, CVE-2016-0799, CVE-2016-0800

Description The scan detected that the host is missing the following update: ALAS-2016-661

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-661.html

Amazon Linux AMI x86_64 openssl-debuginfo-1.0.1k-14.89.amzn1 openssl-static-1.0.1k-14.89.amzn1 openssl-devel-1.0.1k-14.89.amzn1 openssl-1.0.1k-14.89.amzn1 openssl-perl-1.0.1k-14.89.amzn1 i686 openssl-debuginfo-1.0.1k-14.89.amzn1 openssl-static-1.0.1k-14.89.amzn1 openssl-devel-1.0.1k-14.89.amzn1 openssl-1.0.1k-14.89.amzn1 openssl-perl-1.0.1k-14.89.amzn1

174920 - Scientific Linux Security ERRATA Critical: firefox on SL5.x, SL6.x, SL7.x i386/x86_64 (1603-2902)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2016-1952, CVE-2016-1954, CVE-2016-1957, CVE-2016-1958, CVE-2016-1960, CVE-2016-1961, CVE-2016-1962, CVE- 2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1973, CVE-2016-1974, CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016- 2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: Security ERRATA Critical: firefox on SL5.x, SL6.x, SL7.x i386/x86_64 (1603-2902) Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1603&L=scientific-linux-errata&F=&S=&P=2902

SL5 x86_64 firefox-debuginfo-38.7.0-1.el5_11 firefox-38.7.0-1.el5_11 i386 firefox-debuginfo-38.7.0-1.el5_11 firefox-38.7.0-1.el5_11

SL7 x86_64 firefox-38.7.0-1.el7_2 firefox-debuginfo-38.7.0-1.el7_2

SL6 x86_64 firefox-debuginfo-38.7.0-1.el6_7 firefox-38.7.0-1.el6_7 i386 firefox-debuginfo-38.7.0-1.el6_7 firefox-38.7.0-1.el6_7

178158 - Gentoo Linux GLSA-201603-09 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: High CVE: CVE-2015-1270, CVE-2015-1271, CVE-2015-1272, CVE-2015-1273, CVE-2015-1274, CVE-2015-1275, CVE-2015-1276, CVE- 2015-1277, CVE-2015-1278, CVE-2015-1279, CVE-2015-1280, CVE-2015-1281, CVE-2015-1282, CVE-2015-1283, CVE-2015-1284, CVE-2015-1285, CVE-2015-1286, CVE-2015-1287, CVE-2015-1288, CVE-2015-1289, CVE-2015-1291, CVE-2015-1292, CVE-2015- 1293, CVE-2015-1294, CVE-2015-1295, CVE-2015-1296, CVE-2015-1297, CVE-2015-1298, CVE-2015-1299, CVE-2015-1300, CVE- 2015-1302, CVE-2015-1303, CVE-2015-1304, CVE-2015-6755, CVE-2015-6756, CVE-2015-6757, CVE-2015-6758, CVE-2015-6759, CVE-2015-6760, CVE-2015-6761, CVE-2015-6762, CVE-2015-6763, CVE-2015-6764, CVE-2015-6765, CVE-2015-6766, CVE-2015- 6767, CVE-2015-6768, CVE-2015-6769, CVE-2015-6770, CVE-2015-6771, CVE-2015-6772, CVE-2015-6773, CVE-2015-6774, CVE- 2015-6775, CVE-2015-6776, CVE-2015-6777, CVE-2015-6778, CVE-2015-6779, CVE-2015-6780, CVE-2015-6781, CVE-2015-6782, CVE-2015-6783, CVE-2015-6784, CVE-2015-6785, CVE-2015-6786, CVE-2015-6787, CVE-2015-6788, CVE-2015-6789, CVE-2015- 6790, CVE-2015-6791, CVE-2015-6792, CVE-2015-8126, CVE-2016-1612, CVE-2016-1613, CVE-2016-1614, CVE-2016-1615, CVE- 2016-1616, CVE-2016-1617, CVE-2016-1618, CVE-2016-1619, CVE-2016-1620, CVE-2016-1621, CVE-2016-1622, CVE-2016-1623, CVE-2016-1624, CVE-2016-1625, CVE-2016-1626, CVE-2016-1627, CVE-2016-1628, CVE-2016-1629, CVE-2016-1630, CVE-2016- 1631, CVE-2016-1632, CVE-2016-1633, CVE-2016-1634, CVE-2016-1635, CVE-2016-1636, CVE-2016-1637, CVE-2016-1638, CVE- 2016-1639, CVE-2016-1640, CVE-2016-1641

Description The scan detected that the host is missing the following update: GLSA-201603-09

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-09 Affected packages: www-client/chromium < 49.0.2623.87

178161 - Gentoo Linux GLSA-201603-06 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: High CVE: CVE-2013-0860, CVE-2013-0861, CVE-2013-0862, CVE-2013-0863, CVE-2013-0864, CVE-2013-0865, CVE-2013-0866, CVE- 2013-0867, CVE-2013-0868, CVE-2013-0872, CVE-2013-0873, CVE-2013-0874, CVE-2013-0875, CVE-2013-0876, CVE-2013-0877, CVE-2013-0878, CVE-2013-4263, CVE-2013-4264, CVE-2013-4265, CVE-2013-7008, CVE-2013-7009, CVE-2013-7010, CVE-2013- 7011, CVE-2013-7012, CVE-2013-7013, CVE-2013-7014, CVE-2013-7015, CVE-2013-7016, CVE-2013-7017, CVE-2013-7018, CVE- 2013-7019, CVE-2013-7020, CVE-2013-7021, CVE-2013-7022, CVE-2013-7023, CVE-2013-7024, CVE-2014-2097, CVE-2014-2098, CVE-2014-2263, CVE-2014-5271, CVE-2014-5272, CVE-2014-7937, CVE-2014-8541, CVE-2014-8542, CVE-2014-8543, CVE-2014- 8544, CVE-2014-8545, CVE-2014-8546, CVE-2014-8547, CVE-2014-8548, CVE-2014-8549, CVE-2014-9316, CVE-2014-9317, CVE- 2014-9318, CVE-2014-9319, CVE-2014-9602, CVE-2014-9603, CVE-2014-9604, CVE-2015-3395

Description The scan detected that the host is missing the following update: GLSA-201603-06

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-06

Affected packages: media-video/ffmpeg < 2.6.3

178162 - Gentoo Linux GLSA-201603-14 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: High CVE: CVE-2014-6585, CVE-2014-6587, CVE-2014-6591, CVE-2014-6593, CVE-2014-6601, CVE-2015-0383, CVE-2015-0395, CVE- 2015-0400, CVE-2015-0407, CVE-2015-0408, CVE-2015-0412, CVE-2015-2590, CVE-2015-2601, CVE-2015-2613, CVE-2015-2621, CVE-2015-2625, CVE-2015-2628, CVE-2015-2632, CVE-2015-4731, CVE-2015-4732, CVE-2015-4733, CVE-2015-4734, CVE-2015- 4748, CVE-2015-4749, CVE-2015-4760, CVE-2015-4803, CVE-2015-4805, CVE-2015-4806, CVE-2015-4835, CVE-2015-4840, CVE- 2015-4842, CVE-2015-4843, CVE-2015-4844, CVE-2015-4860, CVE-2015-4871, CVE-2015-4872, CVE-2015-4881, CVE-2015-4882, CVE-2015-4883, CVE-2015-4893, CVE-2015-4903, CVE-2015-4911, CVE-2016-0402, CVE-2016-0448, CVE-2016-0466, CVE-2016- 0483, CVE-2016-0494

Description The scan detected that the host is missing the following update: GLSA-201603-14

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-14

Affected packages: dev-java/icedtea < 7.2.6.4 dev-java/icedtea-bin < 7.2.6.4 178165 - Gentoo Linux GLSA-201603-07 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: High CVE: CVE-2016-0960, CVE-2016-0961, CVE-2016-0962, CVE-2016-0963, CVE-2016-0964, CVE-2016-0965, CVE-2016-0966, CVE- 2016-0967, CVE-2016-0968, CVE-2016-0969, CVE-2016-0970, CVE-2016-0971, CVE-2016-0972, CVE-2016-0973, CVE-2016-0974, CVE-2016-0975, CVE-2016-0976, CVE-2016-0977, CVE-2016-0978, CVE-2016-0979, CVE-2016-0980, CVE-2016-0981, CVE-2016- 0982, CVE-2016-0983, CVE-2016-0984, CVE-2016-0985, CVE-2016-0986, CVE-2016-0987, CVE-2016-0988, CVE-2016-0989, CVE- 2016-0990, CVE-2016-0991, CVE-2016-0992, CVE-2016-0993, CVE-2016-0994, CVE-2016-0995, CVE-2016-0996, CVE-2016-0997, CVE-2016-0998, CVE-2016-0999, CVE-2016-1000, CVE-2016-1001, CVE-2016-1002, CVE-2016-1005, CVE-2016-1010

Description The scan detected that the host is missing the following update: GLSA-201603-07

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-07

Affected packages: www-plugins/adobe-flash < 11.2.202.577

178166 - Gentoo Linux GLSA-201603-11 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: High CVE: CVE-2015-0437, CVE-2015-0458, CVE-2015-0459, CVE-2015-0460, CVE-2015-0469, CVE-2015-0470, CVE-2015-0477, CVE- 2015-0478, CVE-2015-0480, CVE-2015-0484, CVE-2015-0486, CVE-2015-0488, CVE-2015-0491, CVE-2015-0492, CVE-2015-2590, CVE-2015-2601, CVE-2015-2613, CVE-2015-2619, CVE-2015-2621, CVE-2015-2625, CVE-2015-2627, CVE-2015-2628, CVE-2015- 2632, CVE-2015-2637, CVE-2015-2638, CVE-2015-2659, CVE-2015-2664, CVE-2015-4000, CVE-2015-4729, CVE-2015-4731, CVE- 2015-4732, CVE-2015-4733, CVE-2015-4734, CVE-2015-4736, CVE-2015-4748, CVE-2015-4760, CVE-2015-4803, CVE-2015-4805, CVE-2015-4806, CVE-2015-4810, CVE-2015-4835, CVE-2015-4840, CVE-2015-4842, CVE-2015-4843, CVE-2015-4844, CVE-2015- 4860, CVE-2015-4868, CVE-2015-4871, CVE-2015-4872, CVE-2015-4881, CVE-2015-4882, CVE-2015-4883, CVE-2015-4893, CVE- 2015-4901, CVE-2015-4902, CVE-2015-4903, CVE-2015-4906, CVE-2015-4908, CVE-2015-4911, CVE-2015-4916, CVE-2015-7840

Description The scan detected that the host is missing the following update: GLSA-201603-11

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-11

Affected packages: dev-java/oracle-jre-bin < 1.8.0.72 dev-java/oracle-jdk-bin < 1.8.0.72

181891 - FreeBSD node Multiple Vulnerabilities (6d33b3e5-ea03-11e5-85be-14dae9d210b8)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: High CVE: CVE-2016-0702, CVE-2016-0705, CVE-2016-0797

Description The scan detected that the host is missing the following update: node -- multiple vulnerabilities (6d33b3e5-ea03-11e5-85be-14dae9d210b8)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/6d33b3e5-ea03-11e5-85be-14dae9d210b8.html

Affected packages: node < 5.7.1

185207 - Ubuntu Linux 14.04, 15.10 USN-2920-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High CVE: CVE-2016-1630, CVE-2016-1631, CVE-2016-1633, CVE-2016-1634, CVE-2016-1636, CVE-2016-1637, CVE-2016-1641, CVE- 2016-1642, CVE-2016-1643, CVE-2016-1644, CVE-2016-2843, CVE-2016-2844, CVE-2016-2845

Description The scan detected that the host is missing the following update: USN-2920-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://lists.ubuntu.com/archives/ubuntu-security-announce/2016-March/003346.html

Ubuntu 15.10 liboxideqtcore0_1.13.6-0ubuntu0.15.10.1

Ubuntu 14.04 liboxideqtcore0_1.13.6-0ubuntu0.14.04.1

185213 - Ubuntu Linux 12.04, 14.04, 15.10 USN-2917-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950, CVE-2016-1952, CVE-2016-1953, CVE-2016-1954, CVE-2016-1955, CVE-2016-1956, CVE-2016-1957, CVE- 2016-1958, CVE-2016-1959, CVE-2016-1960, CVE-2016-1961, CVE-2016-1962, CVE-2016-1963, CVE-2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1967, CVE-2016-1968, CVE-2016-1973, CVE-2016-1974, CVE-2016-1977, CVE-2016-2790, CVE-2016- 2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE- 2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: USN-2917-1

Ubuntu 12.04 firefox_45.0+build2-0ubuntu0.12.04.1

Ubuntu 15.10 firefox_45.0+build2-0ubuntu0.15.10.1

Ubuntu 14.04 firefox_45.0+build2-0ubuntu0.14.04.1

190403 - Fedora Linux 22 FEDORA-2016-e6807b3394 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2016-0702, CVE-2016-0705, CVE-2016-0799

Description The scan detected that the host is missing the following update: FEDORA-2016-e6807b3394

Fedora Core 22 openssl-1.0.1k-14.fc22

130433 - Debian Linux 7.0, 8.0 DSA-3515-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: High CVE: CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE- 2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: DSA-3515-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2016/dsa-3515

Debian 8.0 all libgraphite2-3_1.3.6-1~deb8u1 libgraphite2-doc_1.3.6-1~deb8u1 libgraphite2-3-dbg_1.3.6-1~deb8u1 libgraphite2-dev_1.3.6-1~deb8u1

Debian 7.0 all libgraphite2-doc_1.3.6-1~deb7u1 libgraphite2-2.0.0-dbg_1.3.6-1~deb7u1 libgraphite2-2.0.0_1.3.6-1~deb7u1 libgraphite2-dev_1.3.6-1~deb7u1

132223 - Oracle VM OVMSA-2016-0034 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: OVMSA-2016-0034

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/oraclevm-errata/2016-March/000423.html

OVM3.3 x86_64 nss-util-3.19.1-5.el6_7

141112 - Red Hat Enterprise Linux RHSA-2016-0371 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: RHSA-2016-0371

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0371.html

RHEL5D x86_64 nss-3.19.1-4.el5_11 nss-debuginfo-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11 i386 nss-3.19.1-4.el5_11 nss-debuginfo-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11

RHEL5S i386 nss-3.19.1-4.el5_11 nss-debuginfo-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11 nss-pkcs11-devel-3.19.1-4.el5_11 nss-devel-3.19.1-4.el5_11 x86_64 nss-3.19.1-4.el5_11 nss-debuginfo-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11 nss-pkcs11-devel-3.19.1-4.el5_11 nss-devel-3.19.1-4.el5_11

141122 - Red Hat Enterprise Linux RHSA-2016-0370 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: RHSA-2016-0370

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0370.html

RHEL7S ppc64 nss-util-3.19.1-9.el7_2 nss-util-devel-3.19.1-9.el7_2 nss-util-debuginfo-3.19.1-9.el7_2

RHEL6S i386 nss-util-debuginfo-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 nss-util-3.19.1-5.el6_7 x86_64 nss-util-debuginfo-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 nss-util-3.19.1-5.el6_7

RHEL6WS x86_64 nss-util-debuginfo-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 nss-util-3.19.1-5.el6_7 i386 nss-util-debuginfo-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 nss-util-3.19.1-5.el6_7

RHEL7D x86_64 nss-util-3.19.1-9.el7_2 nss-util-devel-3.19.1-9.el7_2 nss-util-debuginfo-3.19.1-9.el7_2

RHEL6D x86_64 nss-util-debuginfo-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 nss-util-3.19.1-5.el6_7 i386 nss-util-debuginfo-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 nss-util-3.19.1-5.el6_7

RHEL7WS x86_64 nss-util-3.19.1-9.el7_2 nss-util-devel-3.19.1-9.el7_2 nss-util-debuginfo-3.19.1-9.el7_2

144462 - SuSE SLES 12, 12 SP1, SLED 12, 12 SP1 SUSE-SU-2016:0779-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-1521, CVE-2016-1523, CVE-2016-1526

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0779-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001945.html

SuSE SLED 12 SP1 x86_64 graphite2-debugsource-1.3.1-6.1 libgraphite2-3-debuginfo-32bit-1.3.1-6.1 libgraphite2-3-32bit-1.3.1-6.1 libgraphite2-3-debuginfo-1.3.1-6.1 libgraphite2-3-1.3.1-6.1 graphite2-debuginfo-1.3.1-6.1

SuSE SLED 12 x86_64 graphite2-debugsource-1.3.1-6.1 libgraphite2-3-debuginfo-32bit-1.3.1-6.1 libgraphite2-3-32bit-1.3.1-6.1 libgraphite2-3-debuginfo-1.3.1-6.1 libgraphite2-3-1.3.1-6.1 graphite2-debuginfo-1.3.1-6.1

SuSE SLES 12 SP1 x86_64 graphite2-debugsource-1.3.1-6.1 libgraphite2-3-debuginfo-32bit-1.3.1-6.1 libgraphite2-3-32bit-1.3.1-6.1 libgraphite2-3-debuginfo-1.3.1-6.1 libgraphite2-3-1.3.1-6.1 graphite2-debuginfo-1.3.1-6.1

SuSE SLES 12 x86_64 graphite2-debugsource-1.3.1-6.1 libgraphite2-3-debuginfo-32bit-1.3.1-6.1 libgraphite2-3-32bit-1.3.1-6.1 libgraphite2-3-debuginfo-1.3.1-6.1 libgraphite2-3-1.3.1-6.1 graphite2-debuginfo-1.3.1-6.1

160056 - CentOS 6, 7 CESA-2016-0370 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: CESA-2016-0370

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2016-March/021718.html http://lists.centos.org/pipermail/centos-announce/2016-March/021721.html

CentOS 7 x86_64 nss-util-devel-3.19.1-9.el7_2 nss-util-3.19.1-9.el7_2 i686 nss-util-devel-3.19.1-9.el7_2 nss-util-3.19.1-9.el7_2

CentOS 6 x86_64 nss-util-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 i686 nss-util-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7

160059 - CentOS 5 CESA-2016-0371 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: CESA-2016-0371

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2016-March/021722.html

CentOS 5 x86_64 nss-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11 nss-pkcs11-devel-3.19.1-4.el5_11 nss-devel-3.19.1-4.el5_11 i386 nss-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11 nss-pkcs11-devel-3.19.1-4.el5_11 nss-devel-3.19.1-4.el5_11

163022 - Oracle Enterprise Linux ELSA-2016-0371 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: ELSA-2016-0371

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2016-March/005842.html

OEL5 i386 nss-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11 nss-pkcs11-devel-3.19.1-4.el5_11 nss-devel-3.19.1-4.el5_11 x86_64 nss-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11 nss-pkcs11-devel-3.19.1-4.el5_11 nss-devel-3.19.1-4.el5_11 170637 - Amazon Linux AMI ALAS-2016-667 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: ALAS-2016-667

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-667.html

Amazon Linux AMI x86_64 nss-util-devel-3.19.1-9.49.amzn1 nss-util-3.19.1-9.49.amzn1 nss-util-debuginfo-3.19.1-9.49.amzn1 i686 nss-util-devel-3.19.1-9.49.amzn1 nss-util-3.19.1-9.49.amzn1 nss-util-debuginfo-3.19.1-9.49.amzn1

174915 - Scientific Linux Security ERRATA Critical: nss on SL5.x i386/x86_64 (1603-2581)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: Security ERRATA Critical: nss on SL5.x i386/x86_64 (1603-2581)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1603&L=scientific-linux-errata&F=&S=&P=2581

SL5 x86_64 nss-3.19.1-4.el5_11 nss-debuginfo-3.19.1-4.el5_11 nss-pkcs11-devel-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11 nss-devel-3.19.1-4.el5_11 i386 nss-3.19.1-4.el5_11 nss-debuginfo-3.19.1-4.el5_11 nss-pkcs11-devel-3.19.1-4.el5_11 nss-tools-3.19.1-4.el5_11 nss-devel-3.19.1-4.el5_11

174921 - Scientific Linux Security ERRATA Critical: nss-util on SL6.x, SL7.x i386/x86_64 (1603-3846)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: Security ERRATA Critical: nss-util on SL6.x, SL7.x i386/x86_64 (1603-3846)

SL7 x86_64 nss-util-3.19.1-9.el7_2 nss-util-devel-3.19.1-9.el7_2 nss-util-debuginfo-3.19.1-9.el7_2

SL6 x86_64 nss-util-debuginfo-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 nss-util-3.19.1-5.el6_7 i386 nss-util-debuginfo-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 nss-util-3.19.1-5.el6_7

178157 - Gentoo Linux GLSA-201603-05 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: High CVE: CVE-2014-3524, CVE-2014-3575, CVE-2014-3693, CVE-2014-9093, CVE-2015-1774, CVE-2015-4551, CVE-2015-5212, CVE- 2015-5213, CVE-2015-5214

Description The scan detected that the host is missing the following update: GLSA-201603-05

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-05

Affected packages: app-office/libreoffice < 4.4.2 app-office/libreoffice-bin < 4.4.2 app-office/libreoffice-bin-debug < 4.4.2 app-office/openoffice-bin < 4.1.2

178159 - Gentoo Linux GLSA-201603-12 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: High CVE: CVE-2012-2090, CVE-2012-2091

Description The scan detected that the host is missing the following update: GLSA-201603-12

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-12

Affected packages: games-simulation/flightgear < 3.4.0 games-simulation/simgear < 3.4.0

185217 - Ubuntu Linux 14.04, 15.10 USN-2927-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: High CVE: CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE-2016-2795, CVE- 2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Description The scan detected that the host is missing the following update: USN-2927-1

Ubuntu 15.10 libgraphite2-3_1.3.6-1ubuntu0.15.10.1

Ubuntu 14.04 libgraphite2-3_1.3.6-1ubuntu0.14.04.1

19822 - (CTX207499) Citrix XenMobile Server Web User Interface Persistent Cross-Site Scripting Vulnerability

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: High CVE: CVE-2016-2789

Description A cross-site scripting vulnerability is present in some versions of Citrix XenMobile Server.

Observation Citrix XenMobile Server is a mobile device management solution.

A cross-site scripting vulnerability is present in some versions of Citrix XenMobile Server. The flaw occurs due to improper input check. Successful exploitation could allow an attacker to execute arbitrary script code.

19827 - (SOL62012529) F5 BIG-IP BIND Vulnerability

Category: SSH Module -> NonIntrusive -> F5 Risk Level: High CVE: CVE-2016-1286

Description A denial of service vulnerability is present in BIND in some versions of F5 BIG-IP systems.

Observation F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

A denial of service vulnerability is present in BIND in some versions of F5 BIG-IP systems. The vulnerability is due to incorrect RRSIGs parsing. Successful exploitation could allow untrusted users to terminate DNS server by sending crafted DNS response, causing a denial of service on the affected system.

19832 - (SOL05013313) F5 BIG-IP IPSec Vulnerability

Category: SSH Module -> NonIntrusive -> F5 Risk Level: High CVE: CVE-2015-4047

Description A denial of service vulnerability is present in IPsec-Tools in some versions of F5 BIG-IP systems.

Observation F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

A denial of service vulnerability is present in IPsec-Tools in some versions of F5 BIG-IP systems. The vulnerability lies in racoon/gssapi.c, a component of IPSec-Tools. Successful exploitation could allow an attacker cause a denial of service on the affected system. Exploitation requires a malicious user to send crafted UDP requests.

43173 - HP-UX 11.X PHNE_44296 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHNE_44296

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHNE_44296&sp4ts.oid=3367813 s700_800 11.23 cumulative PPP patch

HP-UX 11.23 (800) HP-UX 11.23 (700)

Networking.NW-ENG-A-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP Networking.PPP-RUN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP Networking.NET2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP Networking.PPP2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP Networking.PPP2-RUN,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP

43174 - HP-UX 11.X PHNE_44266 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHNE_44266

11.31 cumulative ARPA Transport patch

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.NW-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP Networking.NET-PRG,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP Networking.NMS2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP Networking.NET-RUN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP Networking.NET2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP Networking.NET2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.SYS2-ADMIN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.KERN-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP Networking.NMS2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP ProgSupport.C-INC,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP ProgSupport.PAUX-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.SYS-ADMIN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP Networking.NET2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.NET2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.SYS2-ADMIN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP Networking.NET-RUN-64,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.NET-RUN-64,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43175 - HP-UX 11.X PHSS_43690 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHSS_43690

11.31 X/Motif Runtime Patch

HP-UX 11.31 (NA)

X11.MOTIF-SHLIB,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP X11.X11R6-SHLIBS,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP X11.X11R6-SLIBS-IA,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP X11.MOTIF-SHLIB-IA,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43176 - HP-UX 11.X PHCO_44212 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44212

11.31 libc cumulative patch

HP-UX 11.31 (NA)

ProgSupport.PROG2-AUX,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP ProgSupport.PROG2-AUX,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.C-MIN-64ALIB,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP ProgSupport.PROG-MIN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.CORE2-SHLIBS,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.C-MIN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-64SLIB,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE-SHLIBS,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.C-MIN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP ProgSupport.PROG-AX-64ALIB,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.CORE-64SLIB,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.C-MIN-64ALIB,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43181 - HP-UX 11.X PHNE_43470 Update Is Not Installed Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHNE_43470

11.31 LAN cumulative patch

HP-UX 11.31 (NA)

Networking.LAN2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.LAN2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.LAN-PRG,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP Networking.LAN2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP Networking.LAN-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP Networking.LAN2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP Networking.NW-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.KERN-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP

43184 - HP-UX 11.X PHNE_44295 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHNE_44295

11.31 s700_800 cumulative PPP patch

HP-UX 11.31 (NA)

Networking.PPP2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.PPP2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP Networking.PPP2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.PPP2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43185 - HP-UX 11.X PHNE_44245 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHNE_44245

11.31 Cumulative Console and BSD Pty Patch

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43189 - HP-UX 11.X PHCO_43471 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_43471

11.31 reboot(1M), shutdown(1M) cumulative patch

HP-UX 11.31 (NA)

OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.CORE-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43190 - HP-UX 11.X PHKL_44419 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44419 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHKL_44419&sp4ts.oid=3367813

11.31 vfs_lock cumulative patch

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43196 - HP-UX 11.X PHKL_44205 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44205

11.31 vfs_stack cumulative patch

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43197 - HP-UX 11.X PHCO_44160 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44160

11.31 pthread library cumulative patch HP-UX 11.31 (NA)

OS-Core.CORE2-SHLIBS,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.CORE2-64SLIB,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.C-MIN-32ALIB,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP ProgSupport.C-INC,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.CORE2-SHLIBS,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-64SLIB,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.C-MIN-64ALIB,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP ProgSupport.PAUX-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP

43198 - HP-UX 11.X PHNE_44047 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHNE_44047

11.31 nettl(1M), netfmt(1M) and nettladm(1M) patch

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.NETTL2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP Networking.NETTL-RUN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP Networking.NETTL2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.NETTL-MIN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP Networking.NW-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP Networking.NETTL-MIN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43202 - HP-UX 11.X PHKL_44256 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44256

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHKL_44256&sp4ts.oid=3367813 11.31 io cumulative patch

HP-UX 11.31 (NA)

ProgSupport.C-INC,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43205 - HP-UX 11.X PHKL_44209 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44209

11.31 OLA/R/D subsystem cumulative patch

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

130429 - Debian Linux 7.0, 8.0 DSA-3516-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: High CVE: CVE-2015-8731, CVE-2016-2523, CVE-2016-2530, CVE-2016-2531, CVE-2016-2532

Description The scan detected that the host is missing the following update: DSA-3516-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2016/dsa-3516

Debian 8.0 all wireshark_1.12.1+g01b65bf-4+deb8u5

Debian 7.0 all wireshark_1.8.2-5wheezy18 141109 - Red Hat Enterprise Linux RHSA-2016-0430 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-0729

Description The scan detected that the host is missing the following update: RHSA-2016-0430

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0430.html

RHEL7D x86_64 xerces-c-devel-3.1.1-8.el7_2 xerces-c-debuginfo-3.1.1-8.el7_2 xerces-c-3.1.1-8.el7_2 noarch xerces-c-doc-3.1.1-8.el7_2

RHEL7S noarch xerces-c-doc-3.1.1-8.el7_2

RHEL7WS x86_64 xerces-c-devel-3.1.1-8.el7_2 xerces-c-debuginfo-3.1.1-8.el7_2 xerces-c-3.1.1-8.el7_2 noarch xerces-c-doc-3.1.1-8.el7_2

141110 - Red Hat Enterprise Linux RHSA-2016-0450 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2013-2596, CVE-2015-2151

Description The scan detected that the host is missing the following update: RHSA-2016-0450

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0450.html

RHEL5D i386 kernel-xen-debuginfo-2.6.18-409.el5 kernel-PAE-2.6.18-409.el5 kernel-debug-debuginfo-2.6.18-409.el5 kernel-debuginfo-common-2.6.18-409.el5 kernel-debug-devel-2.6.18-409.el5 kernel-debuginfo-2.6.18-409.el5 kernel-PAE-devel-2.6.18-409.el5 kernel-xen-devel-2.6.18-409.el5 kernel-xen-2.6.18-409.el5 kernel-PAE-debuginfo-2.6.18-409.el5 kernel-debug-2.6.18-409.el5 kernel-headers-2.6.18-409.el5 kernel-devel-2.6.18-409.el5 kernel-2.6.18-409.el5 noarch kernel-doc-2.6.18-409.el5 x86_64 kernel-debug-debuginfo-2.6.18-409.el5 kernel-debug-devel-2.6.18-409.el5 kernel-xen-debuginfo-2.6.18-409.el5 kernel-xen-2.6.18-409.el5 kernel-headers-2.6.18-409.el5 kernel-xen-devel-2.6.18-409.el5 kernel-devel-2.6.18-409.el5 kernel-debuginfo-2.6.18-409.el5 kernel-2.6.18-409.el5 kernel-debuginfo-common-2.6.18-409.el5 kernel-debug-2.6.18-409.el5

RHEL5S noarch kernel-doc-2.6.18-409.el5 x86_64 kernel-debug-debuginfo-2.6.18-409.el5 kernel-debug-devel-2.6.18-409.el5 kernel-xen-debuginfo-2.6.18-409.el5 kernel-xen-2.6.18-409.el5 kernel-headers-2.6.18-409.el5 kernel-xen-devel-2.6.18-409.el5 kernel-devel-2.6.18-409.el5 kernel-debuginfo-2.6.18-409.el5 kernel-2.6.18-409.el5 kernel-debuginfo-common-2.6.18-409.el5 kernel-debug-2.6.18-409.el5 i386 kernel-xen-debuginfo-2.6.18-409.el5 kernel-PAE-2.6.18-409.el5 kernel-debug-debuginfo-2.6.18-409.el5 kernel-debuginfo-common-2.6.18-409.el5 kernel-debug-devel-2.6.18-409.el5 kernel-debuginfo-2.6.18-409.el5 kernel-PAE-devel-2.6.18-409.el5 kernel-xen-devel-2.6.18-409.el5 kernel-xen-2.6.18-409.el5 kernel-PAE-debuginfo-2.6.18-409.el5 kernel-debug-2.6.18-409.el5 kernel-headers-2.6.18-409.el5 kernel-devel-2.6.18-409.el5 kernel-2.6.18-409.el5

141117 - Red Hat Enterprise Linux RHSA-2016-0429 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-1643, CVE-2016-1644, CVE-2016-1645

Description The scan detected that the host is missing the following update: RHSA-2016-0429

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0429.html

RHEL6D x86_64 chromium-browser-49.0.2623.87-1.el6 chromium-browser-debuginfo-49.0.2623.87-1.el6 i386 chromium-browser-49.0.2623.87-1.el6 chromium-browser-debuginfo-49.0.2623.87-1.el6

RHEL6S x86_64 chromium-browser-49.0.2623.87-1.el6 chromium-browser-debuginfo-49.0.2623.87-1.el6 i386 chromium-browser-49.0.2623.87-1.el6 chromium-browser-debuginfo-49.0.2623.87-1.el6

RHEL6WS x86_64 chromium-browser-49.0.2623.87-1.el6 chromium-browser-debuginfo-49.0.2623.87-1.el6 i386 chromium-browser-49.0.2623.87-1.el6 chromium-browser-debuginfo-49.0.2623.87-1.el6

141119 - Red Hat Enterprise Linux RHSA-2016-0457 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2015-5589, CVE-2015-5590, CVE-2015-6831, CVE-2015-6832, CVE-2015-6833, CVE-2015-6834, CVE-2015-6835, CVE- 2015-6836, CVE-2015-6837, CVE-2015-6838, CVE-2015-7803, CVE-2015-7804

Description The scan detected that the host is missing the following update: RHSA-2016-0457

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0457.html

RHEL6_6S x86_64 rh-php56-php-ldap-5.6.5-8.el6 rh-php56-php-process-5.6.5-8.el6 rh-php56-php-5.6.5-8.el6 rh-php56-php-tidy-5.6.5-8.el6 rh-php56-php-enchant-5.6.5-8.el6 rh-php56-php-soap-5.6.5-8.el6 rh-php56-php-opcache-5.6.5-8.el6 rh-php56-php-gmp-5.6.5-8.el6 rh-php56-php-dba-5.6.5-8.el6 rh-php56-php-cli-5.6.5-8.el6 rh-php56-php-gd-5.6.5-8.el6 rh-php56-php-pspell-5.6.5-8.el6 rh-php56-php-recode-5.6.5-8.el6 rh-php56-php-snmp-5.6.5-8.el6 rh-php56-php-pgsql-5.6.5-8.el6 rh-php56-php-imap-5.6.5-8.el6 rh-php56-php-common-5.6.5-8.el6 rh-php56-php-odbc-5.6.5-8.el6 rh-php56-php-xmlrpc-5.6.5-8.el6 rh-php56-php-fpm-5.6.5-8.el6 rh-php56-php-mysqlnd-5.6.5-8.el6 rh-php56-php-dbg-5.6.5-8.el6 rh-php56-php-embedded-5.6.5-8.el6 rh-php56-php-intl-5.6.5-8.el6 rh-php56-php-devel-5.6.5-8.el6 rh-php56-php-debuginfo-5.6.5-8.el6 rh-php56-php-mbstring-5.6.5-8.el6 rh-php56-php-bcmath-5.6.5-8.el6 rh-php56-php-pdo-5.6.5-8.el6 rh-php56-php-xml-5.6.5-8.el6

RHEL6S x86_64 rh-php56-php-ldap-5.6.5-8.el6 rh-php56-php-process-5.6.5-8.el6 rh-php56-php-5.6.5-8.el6 rh-php56-php-tidy-5.6.5-8.el6 rh-php56-php-enchant-5.6.5-8.el6 rh-php56-php-soap-5.6.5-8.el6 rh-php56-php-opcache-5.6.5-8.el6 rh-php56-php-gmp-5.6.5-8.el6 rh-php56-php-dba-5.6.5-8.el6 rh-php56-php-cli-5.6.5-8.el6 rh-php56-php-gd-5.6.5-8.el6 rh-php56-php-pspell-5.6.5-8.el6 rh-php56-php-recode-5.6.5-8.el6 rh-php56-php-snmp-5.6.5-8.el6 rh-php56-php-pgsql-5.6.5-8.el6 rh-php56-php-imap-5.6.5-8.el6 rh-php56-php-common-5.6.5-8.el6 rh-php56-php-odbc-5.6.5-8.el6 rh-php56-php-xmlrpc-5.6.5-8.el6 rh-php56-php-fpm-5.6.5-8.el6 rh-php56-php-mysqlnd-5.6.5-8.el6 rh-php56-php-dbg-5.6.5-8.el6 rh-php56-php-embedded-5.6.5-8.el6 rh-php56-php-intl-5.6.5-8.el6 rh-php56-php-devel-5.6.5-8.el6 rh-php56-php-debuginfo-5.6.5-8.el6 rh-php56-php-mbstring-5.6.5-8.el6 rh-php56-php-bcmath-5.6.5-8.el6 rh-php56-php-pdo-5.6.5-8.el6 rh-php56-php-xml-5.6.5-8.el6

RHEL6WS x86_64 rh-php56-php-ldap-5.6.5-8.el6 rh-php56-php-process-5.6.5-8.el6 rh-php56-php-5.6.5-8.el6 rh-php56-php-tidy-5.6.5-8.el6 rh-php56-php-enchant-5.6.5-8.el6 rh-php56-php-soap-5.6.5-8.el6 rh-php56-php-opcache-5.6.5-8.el6 rh-php56-php-gmp-5.6.5-8.el6 rh-php56-php-dba-5.6.5-8.el6 rh-php56-php-cli-5.6.5-8.el6 rh-php56-php-gd-5.6.5-8.el6 rh-php56-php-pspell-5.6.5-8.el6 rh-php56-php-recode-5.6.5-8.el6 rh-php56-php-snmp-5.6.5-8.el6 rh-php56-php-pgsql-5.6.5-8.el6 rh-php56-php-imap-5.6.5-8.el6 rh-php56-php-common-5.6.5-8.el6 rh-php56-php-odbc-5.6.5-8.el6 rh-php56-php-xmlrpc-5.6.5-8.el6 rh-php56-php-fpm-5.6.5-8.el6 rh-php56-php-mysqlnd-5.6.5-8.el6 rh-php56-php-dbg-5.6.5-8.el6 rh-php56-php-embedded-5.6.5-8.el6 rh-php56-php-intl-5.6.5-8.el6 rh-php56-php-devel-5.6.5-8.el6 rh-php56-php-debuginfo-5.6.5-8.el6 rh-php56-php-mbstring-5.6.5-8.el6 rh-php56-php-bcmath-5.6.5-8.el6 rh-php56-php-pdo-5.6.5-8.el6 rh-php56-php-xml-5.6.5-8.el6

RHEL7S x86_64 rh-php56-php-debuginfo-5.6.5-8.el7 rh-php56-php-pgsql-5.6.5-8.el7 rh-php56-php-soap-5.6.5-8.el7 rh-php56-php-snmp-5.6.5-8.el7 rh-php56-php-xml-5.6.5-8.el7 rh-php56-php-cli-5.6.5-8.el7 rh-php56-php-gmp-5.6.5-8.el7 rh-php56-php-gd-5.6.5-8.el7 rh-php56-php-pspell-5.6.5-8.el7 rh-php56-php-fpm-5.6.5-8.el7 rh-php56-php-dba-5.6.5-8.el7 rh-php56-php-common-5.6.5-8.el7 rh-php56-php-opcache-5.6.5-8.el7 rh-php56-php-odbc-5.6.5-8.el7 rh-php56-php-xmlrpc-5.6.5-8.el7 rh-php56-php-intl-5.6.5-8.el7 rh-php56-php-embedded-5.6.5-8.el7 rh-php56-php-recode-5.6.5-8.el7 rh-php56-php-dbg-5.6.5-8.el7 rh-php56-php-5.6.5-8.el7 rh-php56-php-mysqlnd-5.6.5-8.el7 rh-php56-php-process-5.6.5-8.el7 rh-php56-php-ldap-5.6.5-8.el7 rh-php56-php-enchant-5.6.5-8.el7 rh-php56-php-bcmath-5.6.5-8.el7 rh-php56-php-mbstring-5.6.5-8.el7 rh-php56-php-devel-5.6.5-8.el7 rh-php56-php-pdo-5.6.5-8.el7

RHEL7WS x86_64 rh-php56-php-debuginfo-5.6.5-8.el7 rh-php56-php-pgsql-5.6.5-8.el7 rh-php56-php-soap-5.6.5-8.el7 rh-php56-php-snmp-5.6.5-8.el7 rh-php56-php-xml-5.6.5-8.el7 rh-php56-php-cli-5.6.5-8.el7 rh-php56-php-gmp-5.6.5-8.el7 rh-php56-php-gd-5.6.5-8.el7 rh-php56-php-pspell-5.6.5-8.el7 rh-php56-php-fpm-5.6.5-8.el7 rh-php56-php-dba-5.6.5-8.el7 rh-php56-php-common-5.6.5-8.el7 rh-php56-php-opcache-5.6.5-8.el7 rh-php56-php-odbc-5.6.5-8.el7 rh-php56-php-xmlrpc-5.6.5-8.el7 rh-php56-php-intl-5.6.5-8.el7 rh-php56-php-embedded-5.6.5-8.el7 rh-php56-php-recode-5.6.5-8.el7 rh-php56-php-dbg-5.6.5-8.el7 rh-php56-php-5.6.5-8.el7 rh-php56-php-mysqlnd-5.6.5-8.el7 rh-php56-php-process-5.6.5-8.el7 rh-php56-php-ldap-5.6.5-8.el7 rh-php56-php-enchant-5.6.5-8.el7 rh-php56-php-bcmath-5.6.5-8.el7 rh-php56-php-mbstring-5.6.5-8.el7 rh-php56-php-devel-5.6.5-8.el7 rh-php56-php-pdo-5.6.5-8.el7

144442 - SuSE SLES 11 SP4, SLED 11 SP4 SUSE-SU-2016:0706-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-2851

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0706-1 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001918.html

SuSE SLED 11 SP4 x86_64 libotr2-3.2.0-10.5.1 i586 libotr2-3.2.0-10.5.1

SuSE SLES 11 SP4 i586 libotr2-3.2.0-10.5.1 x86_64 libotr2-3.2.0-10.5.1

144444 - SuSE Linux 13.2 openSUSE-SU-2016:0710-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: openSUSE-SU-2016:0710-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.opensuse.org/opensuse-updates/2016-03/msg00039.html

SuSE Linux 13.2 x86_64 openvpn-debugsource-2.3.4-2.10.1 openvpn-auth-pam-plugin-2.3.4-2.10.1 openvpn-auth-pam-plugin-debuginfo-2.3.4-2.10.1 openvpn-debuginfo-2.3.4-2.10.1 openvpn-2.3.4-2.10.1 openvpn-down-root-plugin-2.3.4-2.10.1 openvpn-down-root-plugin-debuginfo-2.3.4-2.10.1 i586 openvpn-debugsource-2.3.4-2.10.1 openvpn-auth-pam-plugin-2.3.4-2.10.1 openvpn-auth-pam-plugin-debuginfo-2.3.4-2.10.1 openvpn-debuginfo-2.3.4-2.10.1 openvpn-2.3.4-2.10.1 openvpn-down-root-plugin-2.3.4-2.10.1 openvpn-down-root-plugin-debuginfo-2.3.4-2.10.1

144445 - SuSE SLES 11 SP4, SLED 11 SP4 SUSE-SU-2016:0723-1 Update Is Not Installed Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-0787

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0723-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001923.html

SuSE SLED 11 SP4 x86_64 libssh2-1-1.2.9-4.2.6.1 i586 libssh2-1-1.2.9-4.2.6.1

SuSE SLES 11 SP4 i586 libssh2-1-1.2.9-4.2.6.1 x86_64 libssh2-1-1.2.9-4.2.6.1

144446 - SuSE Linux 13.2 openSUSE-SU-2016:0709-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-2554

Description The scan detected that the host is missing the following update: openSUSE-SU-2016:0709-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.opensuse.org/opensuse-updates/2016-03/msg00038.html

SuSE Linux 13.2 i586 php5-soap-debuginfo-5.6.1-42.2 php5-zip-debuginfo-5.6.1-42.2 php5-ldap-5.6.1-42.2 php5-gmp-debuginfo-5.6.1-42.2 php5-exif-debuginfo-5.6.1-42.2 php5-wddx-5.6.1-42.2 php5-zlib-debuginfo-5.6.1-42.2 php5-tokenizer-5.6.1-42.2 php5-sockets-5.6.1-42.2 php5-ftp-5.6.1-42.2 php5-phar-debuginfo-5.6.1-42.2 php5-shmop-5.6.1-42.2 php5-gmp-5.6.1-42.2 php5-posix-debuginfo-5.6.1-42.2 php5-imap-5.6.1-42.2 php5-pdo-debuginfo-5.6.1-42.2 php5-ctype-debuginfo-5.6.1-42.2 php5-opcache-5.6.1-42.2 php5-tidy-5.6.1-42.2 php5-pgsql-debuginfo-5.6.1-42.2 php5-mysql-debuginfo-5.6.1-42.2 php5-suhosin-5.6.1-42.2 php5-pcntl-debuginfo-5.6.1-42.2 php5-debugsource-5.6.1-42.2 php5-suhosin-debuginfo-5.6.1-42.2 php5-pspell-debuginfo-5.6.1-42.2 php5-mcrypt-debuginfo-5.6.1-42.2 php5-mysql-5.6.1-42.2 php5-dba-debuginfo-5.6.1-42.2 php5-pspell-5.6.1-42.2 php5-curl-5.6.1-42.2 php5-snmp-5.6.1-42.2 php5-pdo-5.6.1-42.2 php5-dom-5.6.1-42.2 php5-xmlreader-debuginfo-5.6.1-42.2 php5-fpm-5.6.1-42.2 php5-debuginfo-5.6.1-42.2 php5-wddx-debuginfo-5.6.1-42.2 php5-bz2-5.6.1-42.2 php5-xmlreader-5.6.1-42.2 php5-sysvsem-debuginfo-5.6.1-42.2 php5-mcrypt-5.6.1-42.2 apache2-mod_php5-debuginfo-5.6.1-42.2 php5-odbc-debuginfo-5.6.1-42.2 php5-sockets-debuginfo-5.6.1-42.2 php5-exif-5.6.1-42.2 php5-dba-5.6.1-42.2 php5-sqlite-5.6.1-42.2 php5-fpm-debuginfo-5.6.1-42.2 php5-sysvshm-5.6.1-42.2 php5-pcntl-5.6.1-42.2 php5-xmlwriter-debuginfo-5.6.1-42.2 php5-sysvmsg-5.6.1-42.2 php5-bz2-debuginfo-5.6.1-42.2 apache2-mod_php5-5.6.1-42.2 php5-enchant-5.6.1-42.2 php5-json-5.6.1-42.2 php5-bcmath-debuginfo-5.6.1-42.2 php5-gettext-debuginfo-5.6.1-42.2 php5-xmlrpc-5.6.1-42.2 php5-calendar-5.6.1-42.2 php5-fileinfo-debuginfo-5.6.1-42.2 php5-soap-5.6.1-42.2 php5-zip-5.6.1-42.2 php5-sysvsem-5.6.1-42.2 php5-dom-debuginfo-5.6.1-42.2 php5-openssl-5.6.1-42.2 php5-gd-debuginfo-5.6.1-42.2 php5-iconv-5.6.1-42.2 php5-fileinfo-5.6.1-42.2 php5-mbstring-debuginfo-5.6.1-42.2 php5-readline-debuginfo-5.6.1-42.2 php5-xsl-debuginfo-5.6.1-42.2 php5-fastcgi-debuginfo-5.6.1-42.2 php5-sysvshm-debuginfo-5.6.1-42.2 php5-phar-5.6.1-42.2 php5-devel-5.6.1-42.2 php5-ctype-5.6.1-42.2 php5-gettext-5.6.1-42.2 php5-sysvmsg-debuginfo-5.6.1-42.2 php5-ftp-debuginfo-5.6.1-42.2 php5-shmop-debuginfo-5.6.1-42.2 php5-intl-5.6.1-42.2 php5-firebird-5.6.1-42.2 php5-fastcgi-5.6.1-42.2 php5-tidy-debuginfo-5.6.1-42.2 php5-xmlrpc-debuginfo-5.6.1-42.2 php5-tokenizer-debuginfo-5.6.1-42.2 php5-enchant-debuginfo-5.6.1-42.2 php5-gd-5.6.1-42.2 php5-mbstring-5.6.1-42.2 php5-readline-5.6.1-42.2 php5-5.6.1-42.2 php5-odbc-5.6.1-42.2 php5-json-debuginfo-5.6.1-42.2 php5-curl-debuginfo-5.6.1-42.2 php5-snmp-debuginfo-5.6.1-42.2 php5-xmlwriter-5.6.1-42.2 php5-imap-debuginfo-5.6.1-42.2 php5-ldap-debuginfo-5.6.1-42.2 php5-pgsql-5.6.1-42.2 php5-openssl-debuginfo-5.6.1-42.2 php5-intl-debuginfo-5.6.1-42.2 php5-calendar-debuginfo-5.6.1-42.2 php5-mssql-5.6.1-42.2 php5-iconv-debuginfo-5.6.1-42.2 php5-firebird-debuginfo-5.6.1-42.2 php5-posix-5.6.1-42.2 php5-bcmath-5.6.1-42.2 php5-opcache-debuginfo-5.6.1-42.2 php5-zlib-5.6.1-42.2 php5-mssql-debuginfo-5.6.1-42.2 php5-sqlite-debuginfo-5.6.1-42.2 php5-xsl-5.6.1-42.2 noarch php5-pear-5.6.1-42.2 x86_64 php5-soap-debuginfo-5.6.1-42.2 php5-zip-debuginfo-5.6.1-42.2 php5-ldap-5.6.1-42.2 php5-gmp-debuginfo-5.6.1-42.2 php5-exif-debuginfo-5.6.1-42.2 php5-wddx-5.6.1-42.2 php5-zlib-debuginfo-5.6.1-42.2 php5-tokenizer-5.6.1-42.2 php5-sockets-5.6.1-42.2 php5-ftp-5.6.1-42.2 php5-phar-debuginfo-5.6.1-42.2 php5-shmop-5.6.1-42.2 php5-gmp-5.6.1-42.2 php5-posix-debuginfo-5.6.1-42.2 php5-imap-5.6.1-42.2 php5-pdo-debuginfo-5.6.1-42.2 php5-ctype-debuginfo-5.6.1-42.2 php5-opcache-5.6.1-42.2 php5-tidy-5.6.1-42.2 php5-pgsql-debuginfo-5.6.1-42.2 php5-mysql-debuginfo-5.6.1-42.2 php5-suhosin-5.6.1-42.2 php5-pcntl-debuginfo-5.6.1-42.2 php5-debugsource-5.6.1-42.2 php5-suhosin-debuginfo-5.6.1-42.2 php5-pspell-debuginfo-5.6.1-42.2 php5-mcrypt-debuginfo-5.6.1-42.2 php5-mysql-5.6.1-42.2 php5-dba-debuginfo-5.6.1-42.2 php5-pspell-5.6.1-42.2 php5-curl-5.6.1-42.2 php5-snmp-5.6.1-42.2 php5-pdo-5.6.1-42.2 php5-dom-5.6.1-42.2 php5-xmlreader-debuginfo-5.6.1-42.2 php5-fpm-5.6.1-42.2 php5-debuginfo-5.6.1-42.2 php5-wddx-debuginfo-5.6.1-42.2 php5-bz2-5.6.1-42.2 php5-xmlreader-5.6.1-42.2 php5-sysvsem-debuginfo-5.6.1-42.2 php5-mcrypt-5.6.1-42.2 apache2-mod_php5-debuginfo-5.6.1-42.2 php5-odbc-debuginfo-5.6.1-42.2 php5-sockets-debuginfo-5.6.1-42.2 php5-exif-5.6.1-42.2 php5-dba-5.6.1-42.2 php5-sqlite-5.6.1-42.2 php5-fpm-debuginfo-5.6.1-42.2 php5-sysvshm-5.6.1-42.2 php5-pcntl-5.6.1-42.2 php5-xmlwriter-debuginfo-5.6.1-42.2 php5-sysvmsg-5.6.1-42.2 php5-bz2-debuginfo-5.6.1-42.2 apache2-mod_php5-5.6.1-42.2 php5-enchant-5.6.1-42.2 php5-json-5.6.1-42.2 php5-bcmath-debuginfo-5.6.1-42.2 php5-gettext-debuginfo-5.6.1-42.2 php5-xmlrpc-5.6.1-42.2 php5-calendar-5.6.1-42.2 php5-fileinfo-debuginfo-5.6.1-42.2 php5-soap-5.6.1-42.2 php5-zip-5.6.1-42.2 php5-sysvsem-5.6.1-42.2 php5-dom-debuginfo-5.6.1-42.2 php5-openssl-5.6.1-42.2 php5-gd-debuginfo-5.6.1-42.2 php5-iconv-5.6.1-42.2 php5-fileinfo-5.6.1-42.2 php5-mbstring-debuginfo-5.6.1-42.2 php5-readline-debuginfo-5.6.1-42.2 php5-xsl-debuginfo-5.6.1-42.2 php5-fastcgi-debuginfo-5.6.1-42.2 php5-sysvshm-debuginfo-5.6.1-42.2 php5-phar-5.6.1-42.2 php5-devel-5.6.1-42.2 php5-ctype-5.6.1-42.2 php5-gettext-5.6.1-42.2 php5-sysvmsg-debuginfo-5.6.1-42.2 php5-ftp-debuginfo-5.6.1-42.2 php5-shmop-debuginfo-5.6.1-42.2 php5-intl-5.6.1-42.2 php5-firebird-5.6.1-42.2 php5-fastcgi-5.6.1-42.2 php5-tidy-debuginfo-5.6.1-42.2 php5-xmlrpc-debuginfo-5.6.1-42.2 php5-tokenizer-debuginfo-5.6.1-42.2 php5-enchant-debuginfo-5.6.1-42.2 php5-gd-5.6.1-42.2 php5-mbstring-5.6.1-42.2 php5-readline-5.6.1-42.2 php5-5.6.1-42.2 php5-odbc-5.6.1-42.2 php5-json-debuginfo-5.6.1-42.2 php5-curl-debuginfo-5.6.1-42.2 php5-snmp-debuginfo-5.6.1-42.2 php5-xmlwriter-5.6.1-42.2 php5-imap-debuginfo-5.6.1-42.2 php5-ldap-debuginfo-5.6.1-42.2 php5-pgsql-5.6.1-42.2 php5-openssl-debuginfo-5.6.1-42.2 php5-intl-debuginfo-5.6.1-42.2 php5-calendar-debuginfo-5.6.1-42.2 php5-mssql-5.6.1-42.2 php5-iconv-debuginfo-5.6.1-42.2 php5-firebird-debuginfo-5.6.1-42.2 php5-posix-5.6.1-42.2 php5-bcmath-5.6.1-42.2 php5-opcache-debuginfo-5.6.1-42.2 php5-zlib-5.6.1-42.2 php5-mssql-debuginfo-5.6.1-42.2 php5-sqlite-debuginfo-5.6.1-42.2 php5-xsl-5.6.1-42.2

144447 - SuSE Linux 13.2 openSUSE-SU-2016:0762-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-0740, CVE-2016-0775

Description The scan detected that the host is missing the following update: openSUSE-SU-2016:0762-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.opensuse.org/opensuse-updates/2016-03/msg00055.html

SuSE Linux 13.2 x86_64 python-Pillow-tk-2.8.1-3.6.1 python-Pillow-2.8.1-3.6.1 python-Pillow-tk-debuginfo-2.8.1-3.6.1 python-Pillow-debuginfo-2.8.1-3.6.1 python-Pillow-debugsource-2.8.1-3.6.1 i586 python-Pillow-tk-2.8.1-3.6.1 python-Pillow-2.8.1-3.6.1 python-Pillow-tk-debuginfo-2.8.1-3.6.1 python-Pillow-debuginfo-2.8.1-3.6.1 python-Pillow-debugsource-2.8.1-3.6.1

144450 - SuSE SLES 12, SLED 12 SUSE-SU-2016:0780-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-1285, CVE-2016-1286

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0780-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001946.html

SuSE SLED 12 x86_64 bind-libs-debuginfo-32bit-9.9.6P1-28.12.1 bind-debuginfo-9.9.6P1-28.12.1 bind-libs-9.9.6P1-28.12.1 bind-debugsource-9.9.6P1-28.12.1 bind-utils-9.9.6P1-28.12.1 bind-utils-debuginfo-9.9.6P1-28.12.1 bind-libs-32bit-9.9.6P1-28.12.1 bind-libs-debuginfo-9.9.6P1-28.12.1

SuSE SLES 12 noarch bind-doc-9.9.6P1-28.12.1 x86_64 bind-9.9.6P1-28.12.1 bind-debuginfo-9.9.6P1-28.12.1 bind-libs-9.9.6P1-28.12.1 bind-debugsource-9.9.6P1-28.12.1 bind-utils-9.9.6P1-28.12.1 bind-chrootenv-9.9.6P1-28.12.1 bind-libs-debuginfo-32bit-9.9.6P1-28.12.1 bind-utils-debuginfo-9.9.6P1-28.12.1 bind-libs-debuginfo-9.9.6P1-28.12.1 bind-libs-32bit-9.9.6P1-28.12.1

144451 - SuSE Linux 13.2 openSUSE-SU-2016:0708-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-2851

Description The scan detected that the host is missing the following update: openSUSE-SU-2016:0708-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.opensuse.org/opensuse-updates/2016-03/msg00037.html

SuSE Linux 13.2 x86_64 libotr-tools-debuginfo-4.0.0-8.3.1 libotr2-debugsource-3.2.1-7.3.1 libotr2-3.2.1-7.3.1 libotr2-tools-3.2.1-7.3.1 libotr2-devel-3.2.1-7.3.1 libotr5-4.0.0-8.3.1 libotr2-tools-debuginfo-3.2.1-7.3.1 libotr-devel-4.0.0-8.3.1 libotr5-debuginfo-4.0.0-8.3.1 libotr-debugsource-4.0.0-8.3.1 libotr-tools-4.0.0-8.3.1 libotr2-debuginfo-3.2.1-7.3.1 i586 libotr-tools-debuginfo-4.0.0-8.3.1 libotr2-debugsource-3.2.1-7.3.1 libotr2-3.2.1-7.3.1 libotr2-tools-3.2.1-7.3.1 libotr2-devel-3.2.1-7.3.1 libotr5-4.0.0-8.3.1 libotr2-tools-debuginfo-3.2.1-7.3.1 libotr-devel-4.0.0-8.3.1 libotr5-debuginfo-4.0.0-8.3.1 libotr-debugsource-4.0.0-8.3.1 libotr-tools-4.0.0-8.3.1 libotr2-debuginfo-3.2.1-7.3.1

144455 - SuSE SLES 12 SP1, SLED 12 SP1 SUSE-SU-2016:0759-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-1285, CVE-2016-1286

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0759-1 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001939.html

SuSE SLES 12 SP1 noarch bind-doc-9.9.6P1-38.1 x86_64 bind-utils-debuginfo-9.9.6P1-38.1 bind-debuginfo-9.9.6P1-38.1 bind-9.9.6P1-38.1 bind-debugsource-9.9.6P1-38.1 bind-libs-debuginfo-9.9.6P1-38.1 bind-utils-9.9.6P1-38.1 bind-libs-9.9.6P1-38.1 bind-libs-debuginfo-32bit-9.9.6P1-38.1 bind-chrootenv-9.9.6P1-38.1 bind-libs-32bit-9.9.6P1-38.1

SuSE SLED 12 SP1 x86_64 bind-libs-debuginfo-32bit-9.9.6P1-38.1 bind-debuginfo-9.9.6P1-38.1 bind-utils-9.9.6P1-38.1 bind-debugsource-9.9.6P1-38.1 bind-libs-debuginfo-9.9.6P1-38.1 bind-libs-9.9.6P1-38.1 bind-utils-debuginfo-9.9.6P1-38.1 bind-libs-32bit-9.9.6P1-38.1

144457 - SuSE SLES 12, 12 SP1, SLED 12, 12 SP1 SUSE-SU-2016:0718-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-0787

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0718-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001922.html

SuSE SLED 12 SP1 x86_64 libssh2-1-debuginfo-1.4.3-16.1 libssh2-1-debuginfo-32bit-1.4.3-16.1 libssh2_org-debugsource-1.4.3-16.1 libssh2-1-32bit-1.4.3-16.1 libssh2-1-1.4.3-16.1 SuSE SLED 12 x86_64 libssh2-1-debuginfo-1.4.3-16.1 libssh2-1-debuginfo-32bit-1.4.3-16.1 libssh2_org-debugsource-1.4.3-16.1 libssh2-1-32bit-1.4.3-16.1 libssh2-1-1.4.3-16.1

SuSE SLES 12 SP1 x86_64 libssh2-1-debuginfo-1.4.3-16.1 libssh2-1-debuginfo-32bit-1.4.3-16.1 libssh2_org-debugsource-1.4.3-16.1 libssh2-1-32bit-1.4.3-16.1 libssh2-1-1.4.3-16.1

SuSE SLES 12 x86_64 libssh2-1-debuginfo-1.4.3-16.1 libssh2-1-debuginfo-32bit-1.4.3-16.1 libssh2_org-debugsource-1.4.3-16.1 libssh2-1-32bit-1.4.3-16.1 libssh2-1-1.4.3-16.1

144458 - SuSE Linux 13.1 openSUSE-SU-2016:0732-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-2851

Description The scan detected that the host is missing the following update: openSUSE-SU-2016:0732-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.opensuse.org/opensuse-updates/2016-03/msg00048.html

SuSE Linux 13.1 x86_64 libotr2-debugsource-3.2.1-5.3.1 libotr2-devel-3.2.1-5.3.1 libotr-tools-4.0.0-5.7.1 libotr2-debuginfo-3.2.1-5.3.1 libotr2-tools-debuginfo-3.2.1-5.3.1 libotr-tools-debuginfo-4.0.0-5.7.1 libotr-devel-4.0.0-5.7.1 libotr2-3.2.1-5.3.1 libotr2-tools-3.2.1-5.3.1 libotr5-4.0.0-5.7.1 libotr5-debuginfo-4.0.0-5.7.1 libotr-debugsource-4.0.0-5.7.1 i586 libotr2-debugsource-3.2.1-5.3.1 libotr2-devel-3.2.1-5.3.1 libotr-tools-4.0.0-5.7.1 libotr2-debuginfo-3.2.1-5.3.1 libotr2-tools-debuginfo-3.2.1-5.3.1 libotr-tools-debuginfo-4.0.0-5.7.1 libotr-devel-4.0.0-5.7.1 libotr2-3.2.1-5.3.1 libotr2-tools-3.2.1-5.3.1 libotr5-4.0.0-5.7.1 libotr5-debuginfo-4.0.0-5.7.1 libotr-debugsource-4.0.0-5.7.1

144461 - SuSE SLES 12, 12 SP1, SLED 12, 12 SP1 SUSE-SU-2016:0707-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-2851

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0707-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001919.html

SuSE SLED 12 SP1 x86_64 libotr-debugsource-4.0.0-9.1 libotr5-4.0.0-9.1 libotr5-debuginfo-4.0.0-9.1

SuSE SLED 12 x86_64 libotr-debugsource-4.0.0-9.1 libotr5-4.0.0-9.1 libotr5-debuginfo-4.0.0-9.1

SuSE SLES 12 SP1 x86_64 libotr-debugsource-4.0.0-9.1 libotr5-4.0.0-9.1 libotr5-debuginfo-4.0.0-9.1

SuSE SLES 12 x86_64 libotr-debugsource-4.0.0-9.1 libotr5-4.0.0-9.1 libotr5-debuginfo-4.0.0-9.1

144463 - SuSE Linux 13.2 openSUSE-SU-2016:0721-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: High CVE: CVE-2016-1531 Description The scan detected that the host is missing the following update: openSUSE-SU-2016:0721-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.opensuse.org/opensuse-updates/2016-03/msg00042.html

SuSE Linux 13.2 x86_64 exim-4.86.2-3.10.1 eximon-debuginfo-4.86.2-3.10.1 exim-debugsource-4.86.2-3.10.1 eximstats-html-4.86.2-3.10.1 exim-debuginfo-4.86.2-3.10.1 eximon-4.86.2-3.10.1 i586 exim-4.86.2-3.10.1 eximon-debuginfo-4.86.2-3.10.1 exim-debugsource-4.86.2-3.10.1 eximstats-html-4.86.2-3.10.1 exim-debuginfo-4.86.2-3.10.1 eximon-4.86.2-3.10.1

160063 - CentOS 7 CESA-2016-0430 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: High CVE: CVE-2016-0729

Description The scan detected that the host is missing the following update: CESA-2016-0430

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2016-March/021729.html

CentOS 7 i686 xerces-c-devel-3.1.1-8.el7_2 xerces-c-3.1.1-8.el7_2 noarch xerces-c-doc-3.1.1-8.el7_2 x86_64 xerces-c-devel-3.1.1-8.el7_2 xerces-c-3.1.1-8.el7_2

163020 - Oracle Enterprise Linux ELSA-2016-0430 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-0729

Description The scan detected that the host is missing the following update: ELSA-2016-0430

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2016-March/005853.html

OEL7 x86_64 xerces-c-devel-3.1.1-8.el7_2 xerces-c-doc-3.1.1-8.el7_2 xerces-c-3.1.1-8.el7_2

163021 - Oracle Enterprise Linux ELSA-2016-0370 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: High CVE: CVE-2015-7181, CVE-2015-7182, CVE-2016-1950

Description The scan detected that the host is missing the following update: ELSA-2016-0370

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2016-March/005848.html http://oss.oracle.com/pipermail/el-errata/2016-March/005840.html

OEL7 x86_64 nss-util-devel-3.19.1-9.el7_2 nss-util-3.19.1-9.el7_2

OEL6 x86_64 nss-util-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7 i386 nss-util-3.19.1-5.el6_7 nss-util-devel-3.19.1-5.el6_7

170633 - Amazon Linux AMI ALAS-2016-656 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: High CVE: CVE-2014-0230, CVE-2014-7810

Description The scan detected that the host is missing the following update: ALAS-2016-656

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-656.html

Amazon Linux AMI noarch tomcat6-servlet-2.5-api-6.0.44-1.3.amzn1 tomcat6-el-2.1-api-6.0.44-1.3.amzn1 tomcat6-6.0.44-1.3.amzn1 tomcat6-docs-webapp-6.0.44-1.3.amzn1 tomcat6-jsp-2.1-api-6.0.44-1.3.amzn1 tomcat6-admin-webapps-6.0.44-1.3.amzn1 tomcat6-lib-6.0.44-1.3.amzn1 tomcat6-webapps-6.0.44-1.3.amzn1 tomcat6-javadoc-6.0.44-1.3.amzn1

170639 - Amazon Linux AMI ALAS-2016-665 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-1285, CVE-2016-1286

Description The scan detected that the host is missing the following update: ALAS-2016-665

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-665.html

Amazon Linux AMI x86_64 bind-libs-9.8.2-0.37.rc1.45.amzn1 bind-devel-9.8.2-0.37.rc1.45.amzn1 bind-9.8.2-0.37.rc1.45.amzn1 bind-sdb-9.8.2-0.37.rc1.45.amzn1 bind-debuginfo-9.8.2-0.37.rc1.45.amzn1 bind-chroot-9.8.2-0.37.rc1.45.amzn1 bind-utils-9.8.2-0.37.rc1.45.amzn1 i686 bind-libs-9.8.2-0.37.rc1.45.amzn1 bind-devel-9.8.2-0.37.rc1.45.amzn1 bind-9.8.2-0.37.rc1.45.amzn1 bind-sdb-9.8.2-0.37.rc1.45.amzn1 bind-debuginfo-9.8.2-0.37.rc1.45.amzn1 bind-chroot-9.8.2-0.37.rc1.45.amzn1 bind-utils-9.8.2-0.37.rc1.45.amzn1

170640 - Amazon Linux AMI ALAS-2016-664 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: High CVE: CVE-2016-0741

Description The scan detected that the host is missing the following update: ALAS-2016-664

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-664.html

Amazon Linux AMI x86_64 389-ds-base-devel-1.3.4.0-26.47.amzn1 389-ds-base-1.3.4.0-26.47.amzn1 389-ds-base-libs-1.3.4.0-26.47.amzn1 389-ds-base-debuginfo-1.3.4.0-26.47.amzn1 i686 389-ds-base-devel-1.3.4.0-26.47.amzn1 389-ds-base-1.3.4.0-26.47.amzn1 389-ds-base-libs-1.3.4.0-26.47.amzn1 389-ds-base-debuginfo-1.3.4.0-26.47.amzn1

174917 - Scientific Linux Security ERRATA Important: kernel on SL5.x i386/x86_64 (1603-5510)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2013-2596, CVE-2015-2151

Description The scan detected that the host is missing the following update: Security ERRATA Important: kernel on SL5.x i386/x86_64 (1603-5510)

SL5 i386 kernel-xen-debuginfo-2.6.18-409.el5 kernel-PAE-2.6.18-409.el5 kernel-debug-debuginfo-2.6.18-409.el5 kernel-debuginfo-common-2.6.18-409.el5 kernel-debug-devel-2.6.18-409.el5 kernel-debuginfo-2.6.18-409.el5 kernel-PAE-devel-2.6.18-409.el5 kernel-xen-devel-2.6.18-409.el5 kernel-xen-2.6.18-409.el5 kernel-PAE-debuginfo-2.6.18-409.el5 kernel-debug-2.6.18-409.el5 kernel-headers-2.6.18-409.el5 kernel-devel-2.6.18-409.el5 kernel-2.6.18-409.el5 noarch kernel-doc-2.6.18-409.el5 x86_64 kernel-debug-debuginfo-2.6.18-409.el5 kernel-debug-devel-2.6.18-409.el5 kernel-xen-debuginfo-2.6.18-409.el5 kernel-xen-2.6.18-409.el5 kernel-headers-2.6.18-409.el5 kernel-xen-devel-2.6.18-409.el5 kernel-devel-2.6.18-409.el5 kernel-debuginfo-2.6.18-409.el5 kernel-2.6.18-409.el5 kernel-debuginfo-common-2.6.18-409.el5 kernel-debug-2.6.18-409.el5

174919 - Scientific Linux Security ERRATA Important: xerces-c on SL7.x x86_64 (1603-4521)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: High CVE: CVE-2016-0729

Description The scan detected that the host is missing the following update: Security ERRATA Important: xerces-c on SL7.x x86_64 (1603-4521)

SL7 x86_64 xerces-c-devel-3.1.1-8.el7_2 xerces-c-debuginfo-3.1.1-8.el7_2 xerces-c-3.1.1-8.el7_2 noarch xerces-c-doc-3.1.1-8.el7_2

190385 - Fedora Linux 22 FEDORA-2016-f5af8e27ce Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2016-1283

Description The scan detected that the host is missing the following update: FEDORA-2016-f5af8e27ce

Fedora Core 22 pcre-8.38-3.fc22

190391 - Fedora Linux 23 FEDORA-2016-65a1f22818 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2015-4766, CVE-2015-4791, CVE-2015-4792, CVE-2015-4800, CVE-2015-4802, CVE-2015-4807, CVE-2015-4815, CVE- 2015-4819, CVE-2015-4826, CVE-2015-4830, CVE-2015-4833, CVE-2015-4836, CVE-2015-4858, CVE-2015-4861, CVE-2015-4862, CVE-2015-4864, CVE-2015-4866, CVE-2015-4870, CVE-2015-4879, CVE-2015-4890, CVE-2015-4895, CVE-2015-4904, CVE-2015- 4905, CVE-2015-4910, CVE-2015-4913, CVE-2015-7744, CVE-2016-0502, CVE-2016-0503, CVE-2016-0504, CVE-2016-0505, CVE- 2016-0546, CVE-2016-0594, CVE-2016-0595, CVE-2016-0596, CVE-2016-0597, CVE-2016-0598, CVE-2016-0599, CVE-2016-0600, CVE-2016-0601, CVE-2016-0605, CVE-2016-0606, CVE-2016-0607, CVE-2016-0608, CVE-2016-0609, CVE-2016-0610, CVE-2016- 0611, CVE-2016-0616

Description The scan detected that the host is missing the following update: FEDORA-2016-65a1f22818

Fedora Core 23 community-mysql-5.6.29-1.fc23

190405 - Fedora Linux 22 FEDORA-2016-5cb344dd7e Update Is Not Installed

Description The scan detected that the host is missing the following update: FEDORA-2016-5cb344dd7e Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178585.html

Fedora Core 22 community-mysql-5.6.29-1.fc22

19800 - (SOL95345942) F5 BIG-IP Linux Kernel Vulnerability

Category: SSH Module -> NonIntrusive -> F5 Risk Level: Medium CVE: CVE-2015-3339

Description A race condition vulnerability is present in the Linux kernel in some versions of F5 BIG-IP systems.

Observation F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

A race condition vulnerability is present in the Linux kernel in some versions of F5 BIG-IP systems. The flaw is due to a race condition between chown() and execve() in the Linux kernel. Successful exploitation could allow a local attacker to gain administrative privileges by using chown on a setuid-user-binary.

144443 - SuSE SLES 12 SP1 SUSE-SU-2016:0769-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-5174, CVE-2015-5345, CVE-2015-5346, CVE-2015-5351, CVE-2016-0706, CVE-2016-0714, CVE-2016-0763

Description The scan detected that the host is missing the following update: SUSE-SU-2016:0769-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.suse.com/pipermail/sle-security-updates/2016-March/001940.html

SuSE SLES 12 SP1 noarch tomcat-8.0.32-3.1 tomcat-el-3_0-api-8.0.32-3.1 tomcat-servlet-3_1-api-8.0.32-3.1 tomcat-admin-webapps-8.0.32-3.1 tomcat-webapps-8.0.32-3.1 tomcat-docs-webapp-8.0.32-3.1 tomcat-lib-8.0.32-3.1 tomcat-jsp-2_3-api-8.0.32-3.1 tomcat-javadoc-8.0.32-3.1

163025 - Oracle Enterprise Linux ELSA-2016-0372 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2014-0224, CVE-2015-0293, CVE-2015-3197, CVE-2016-0703, CVE-2016-0704, CVE-2016-0800

Description The scan detected that the host is missing the following update: ELSA-2016-0372

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2016-March/005841.html http://oss.oracle.com/pipermail/el-errata/2016-March/005849.html

OEL7 x86_64 openssl098e-0.9.8e-29.el7_2.3

OEL6 x86_64 openssl098e-0.9.8e-20.0.1.el6_7.1 i386 openssl098e-0.9.8e-20.0.1.el6_7.1

170643 - Amazon Linux AMI ALAS-2016-657 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2014-7810, CVE-2015-5174, CVE-2015-5346

Description The scan detected that the host is missing the following update: ALAS-2016-657

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-657.html

Amazon Linux AMI noarch tomcat7-7.0.67-1.13.amzn1 tomcat7-docs-webapp-7.0.67-1.13.amzn1 tomcat7-log4j-7.0.67-1.13.amzn1 tomcat7-el-2.2-api-7.0.67-1.13.amzn1 tomcat7-servlet-3.0-api-7.0.67-1.13.amzn1 tomcat7-jsp-2.2-api-7.0.67-1.13.amzn1 tomcat7-lib-7.0.67-1.13.amzn1 tomcat7-javadoc-7.0.67-1.13.amzn1 tomcat7-admin-webapps-7.0.67-1.13.amzn1 tomcat7-webapps-7.0.67-1.13.amzn1 178160 - Gentoo Linux GLSA-201603-08 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2014-1684, CVE-2014-6440, CVE-2014-9597, CVE-2014-9598, CVE-2014-9625, CVE-2014-9626, CVE-2014-9627, CVE- 2014-9628, CVE-2014-9629, CVE-2014-9630, CVE-2015-1202, CVE-2015-1203, CVE-2015-5949

Description The scan detected that the host is missing the following update: GLSA-201603-08

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-08

Affected packages: media-video/vlc < 2.2.1-r1

178164 - Gentoo Linux GLSA-201603-03 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2015-8105, CVE-2015-8770

Description The scan detected that the host is missing the following update: GLSA-201603-03

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-03

Affected packages: mail-client/roundcube < 1.1.4

178168 - Gentoo Linux GLSA-201603-10 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2015-1858, CVE-2015-1859, CVE-2015-1860

Description The scan detected that the host is missing the following update: GLSA-201603-10

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-10 Affected packages: dev-qt/qtgui < 5.4.1-r1

19733 - IBM WebSphere Portal Open Redirect Vulnerability (CVE-2015-7428)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2015-7428

Description An open redirect vulnerability is present in some versions of IBM WebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.

An open redirect vulnerability is present in some versions of IBM WebSphere Portal. The flaw lies in how this product handles URL redirection. Successful exploitation could allow a remote attacker using a specially crafted URL to redirect a victim to arbitrary Web sites.

19807 - IBM WebSphere Portal Information Disclosure Vulnerability (CVE-2016-0245)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2016-0245

Description A vulnerability is present in some versions of IBMWebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.

A vulnerability is present in some versions of IBMWebSphere Portal. The flaw lies in the XML parser component. Successful exploitation could allow an attacker to obtain sensitive information or to cause a denial of service condition.

19809 - Rockwell Automation Allen-Bradley CompactLogix Reflective Cross-Site Scripting Vulnerability

Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium CVE: CVE-2016-2279

Description A vulnerability is present in some versions of Rockwell Automation Allen-Bradley CompactLogix.

Observation Rockwell Automation Allen-Bradley CompactLogix is a system controller managed by a web server.

A vulnerability is present in some versions of Rockwell Automation Allen-Bradley CompactLogix. The flaw lies in a logic error that allows Javascript code injection in a certain user's browser, through the CompactLogix product. Successful exploitation could allow an attacker to remotely execute arbitrary code. 19815 - (SOL23196136) F5 BIG-IP Multiple OpenSSL Vulnerabilities

Category: SSH Module -> NonIntrusive -> F5 Risk Level: Medium CVE: CVE-2016-0703, CVE-2016-0800

Description Multiple vulnerabilities are present in some versions of F5 BIG-IP Products.

Observation F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

Multiple vulnerabilities are present in some versions of F5 BIG-IP Products. The flaws lie in the SSLv2 protocol. Successful exploitation by a remote attacker could lead to a man-in-the-middle attack, causing the disclosure of sensitive information.

19819 - (HT206091) Apple Software Update Unprotected HTTP Connection Vulnerability

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2016-1731

Description A vulnerability is present in some versions of Apple Software Update.

Observation Apple Software Update is a solution of software update for Apple products.

A vulnerability is present in some versions of Apple Software Update. The flaws lie in unprotected HTTP connection. Successful exploitation could allow an attacker to control the content of updates window.

19823 - Mozilla Firefox Graphite 2 Library Malicious Font Denial Of Service Vulnerability

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2016-1969

Description A denial of service vulnerability is present in some versions of Mozilla Firefox.

Observation Mozilla Firefox is a popular web browser.

A denial of service vulnerability is present in some versions of Mozilla Firefox. The flaw lies in the Graphite 2 library. Successful exploitation could allow an attacker to cause a denial of service condition.

19824 - Mozilla Firefox Graphite 2 Library Malicious Font Denial Of Service Vulnerability

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2016-1969 Description A denial of service vulnerability is present in some versions of Mozilla Firefox.

Observation Mozilla Firefox is a popular web browser.

19825 - Mozilla Firefox ESR Graphite 2 Library Malicious Font Denial Of Service Vulnerability

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2016-1969

Description A denial of service vulnerability is present in some versions of Mozilla Firefox ESR.

Observation Mozilla Firefox ESR is an open source web browser.

A denial of service vulnerability is present in some versions of Mozilla Firefox ESR. The flaw lies in the Graphite 2 library. Successful exploitation could allow an attacker to cause a denial of service condition.

19826 - Mozilla Firefox ESR Graphite 2 Library Malicious Font Denial Of Service Vulnerability

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2016-1969

Description A denial of service vulnerability is present in some versions of Mozilla Firefox ESR.

Observation Mozilla Firefox ESR is an open source web browser.

19833 - (SOL37510383) F5 BIG-IP Linux Kernel SCTP Vulnerability

Category: SSH Module -> NonIntrusive -> F5 Risk Level: Medium CVE: CVE-2015-5283

Description A denial of service vulnerability is present in some versions of F5 BIG-IP systems.

Observation F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The vulnerability lies in the sctp_init function of the Linux kernel. Successful exploitation could allow a local user to cause a denial of service on the affected system.

19835 - (SOL73189318) F5 BIG-IP Linux Kernel Vulnerability

Category: SSH Module -> NonIntrusive -> F5 Risk Level: Medium CVE: CVE-2015-7509

Description A denial of service vulnerability is present in the Linux kernel in some versions of F5 BIG-IP systems.

Observation F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

A denial of service vulnerability is present in the Linux kernel in some versions of F5 BIG-IP systems. The flaw is present in fs/ext4/namei.c in the Linux kernel when mounting a specially crafted ext2 file system as ext4. Successful exploitation could allow a local attacker with privileged access to the system to cause a denial of service (system crash).

132222 - Oracle VM OVMSA-2016-0035 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-0787

Description The scan detected that the host is missing the following update: OVMSA-2016-0035

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/oraclevm-errata/2016-March/000424.html

OVM3.3 x86_64 libssh2-1.4.2-2.el6_7.1

132224 - Oracle VM OVMSA-2016-0033 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle VM Patches and Hotfixes Risk Level: Medium CVE: CVE-2010-5107

Description The scan detected that the host is missing the following update: OVMSA-2016-0033

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/oraclevm-errata/2016-March/000422.html

OVM2.2 i386 openssh-4.3p2-82.0.1.el5 openssh-clients-4.3p2-82.0.1.el5 openssh-server-4.3p2-82.0.1.el5

141111 - Red Hat Enterprise Linux RHSA-2016-0454 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7576, CVE-2015-7577, CVE-2015-7581, CVE-2016-0751, CVE-2016-0752, CVE-2016-2097, CVE-2016-2098

Description The scan detected that the host is missing the following update: RHSA-2016-0454

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0454.html

RHEL6_6S noarch ror40-rubygem-actionpack-doc-4.0.2-7.el6 ror40-rubygem-activerecord-4.0.2-6.el6 ror40-rubygem-activesupport-4.0.2-4.el6 ror40-rubygem-actionpack-4.0.2-7.el6 ror40-rubygem-activerecord-doc-4.0.2-6.el6

RHEL6S noarch ror40-rubygem-actionpack-doc-4.0.2-7.el6 ror40-rubygem-activerecord-4.0.2-6.el6 ror40-rubygem-activesupport-4.0.2-4.el6 ror40-rubygem-actionpack-4.0.2-7.el6 ror40-rubygem-activerecord-doc-4.0.2-6.el6

RHEL6WS noarch ror40-rubygem-actionpack-doc-4.0.2-7.el6 ror40-rubygem-activerecord-4.0.2-6.el6 ror40-rubygem-activesupport-4.0.2-4.el6 ror40-rubygem-actionpack-4.0.2-7.el6 ror40-rubygem-activerecord-doc-4.0.2-6.el6

RHEL7S noarch ror40-rubygem-actionpack-doc-4.0.2-7.el7 ror40-rubygem-activesupport-4.0.2-4.el7 ror40-rubygem-activerecord-doc-4.0.2-6.el7 ror40-rubygem-actionpack-4.0.2-7.el7 ror40-rubygem-activerecord-4.0.2-6.el7

RHEL7WS noarch ror40-rubygem-actionpack-doc-4.0.2-7.el7 ror40-rubygem-activesupport-4.0.2-4.el7 ror40-rubygem-activerecord-doc-4.0.2-6.el7 ror40-rubygem-actionpack-4.0.2-7.el7 ror40-rubygem-activerecord-4.0.2-6.el7

141114 - Red Hat Enterprise Linux RHSA-2016-0456 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-0752, CVE-2016-2097, CVE-2016-2098

Description The scan detected that the host is missing the following update: RHSA-2016-0456

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0456.html

RHEL6_6S noarch rh-ror41-rubygem-actionview-4.1.5-5.el6 rh-ror41-rubygem-actionpack-4.1.5-4.el6 rh-ror41-rubygem-actionpack-doc-4.1.5-4.el6 rh-ror41-rubygem-actionview-doc-4.1.5-5.el6

RHEL6S noarch rh-ror41-rubygem-actionview-4.1.5-5.el6 rh-ror41-rubygem-actionpack-4.1.5-4.el6 rh-ror41-rubygem-actionpack-doc-4.1.5-4.el6 rh-ror41-rubygem-actionview-doc-4.1.5-5.el6

RHEL6WS noarch rh-ror41-rubygem-actionview-4.1.5-5.el6 rh-ror41-rubygem-actionpack-4.1.5-4.el6 rh-ror41-rubygem-actionpack-doc-4.1.5-4.el6 rh-ror41-rubygem-actionview-doc-4.1.5-5.el6

RHEL7S noarch rh-ror41-rubygem-actionview-4.1.5-5.el7 rh-ror41-rubygem-actionpack-doc-4.1.5-4.el7 rh-ror41-rubygem-actionpack-4.1.5-4.el7 rh-ror41-rubygem-actionview-doc-4.1.5-5.el7

RHEL7WS noarch rh-ror41-rubygem-actionview-4.1.5-5.el7 rh-ror41-rubygem-actionpack-doc-4.1.5-4.el7 rh-ror41-rubygem-actionpack-4.1.5-4.el7 rh-ror41-rubygem-actionview-doc-4.1.5-5.el7 141115 - Red Hat Enterprise Linux RHSA-2016-0428 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-0787

Description The scan detected that the host is missing the following update: RHSA-2016-0428

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0428.html

RHEL7S noarch libssh2-docs-1.4.3-10.el7_2.1

RHEL6S i386 libssh2-1.4.2-2.el6_7.1 libssh2-debuginfo-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1 x86_64 libssh2-1.4.2-2.el6_7.1 libssh2-debuginfo-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1

RHEL6WS x86_64 libssh2-debuginfo-1.4.2-2.el6_7.1 libssh2-1.4.2-2.el6_7.1 i386 libssh2-debuginfo-1.4.2-2.el6_7.1 libssh2-1.4.2-2.el6_7.1

RHEL7D x86_64 libssh2-debuginfo-1.4.3-10.el7_2.1 libssh2-1.4.3-10.el7_2.1 libssh2-devel-1.4.3-10.el7_2.1 noarch libssh2-docs-1.4.3-10.el7_2.1

RHEL6D x86_64 libssh2-1.4.2-2.el6_7.1 libssh2-debuginfo-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1 i386 libssh2-1.4.2-2.el6_7.1 libssh2-debuginfo-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1

RHEL7WS x86_64 libssh2-debuginfo-1.4.3-10.el7_2.1 libssh2-1.4.3-10.el7_2.1 libssh2-devel-1.4.3-10.el7_2.1 noarch libssh2-docs-1.4.3-10.el7_2.1

141118 - Red Hat Enterprise Linux RHSA-2016-0449 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: RHSA-2016-0449

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0449.html

RHEL6D x86_64 samba4-swat-4.0.0-68.el6_7.rc4 samba4-debuginfo-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4 i386 samba4-swat-4.0.0-68.el6_7.rc4 samba4-debuginfo-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4

RHEL6S i386 samba4-swat-4.0.0-68.el6_7.rc4 samba4-debuginfo-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4 x86_64 samba4-swat-4.0.0-68.el6_7.rc4 samba4-debuginfo-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4

RHEL6WS x86_64 samba4-swat-4.0.0-68.el6_7.rc4 samba4-debuginfo-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4 i386 samba4-swat-4.0.0-68.el6_7.rc4 samba4-debuginfo-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4

141120 - Red Hat Enterprise Linux RHSA-2016-0455 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7576, CVE-2015-7577, CVE-2016-0751, CVE-2016-0752, CVE-2016-2097, CVE-2016-2098

Description The scan detected that the host is missing the following update: RHSA-2016-0455

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0455.html

RHEL6_6S noarch ruby193-rubygem-activerecord-doc-3.2.8-11.el6 ruby193-rubygem-actionpack-3.2.8-16.el6 ruby193-rubygem-activerecord-3.2.8-11.el6 ruby193-rubygem-actionpack-doc-3.2.8-16.el6 ruby193-rubygem-activesupport-3.2.8-6.el6

RHEL6S noarch ruby193-rubygem-activerecord-doc-3.2.8-11.el6 ruby193-rubygem-actionpack-3.2.8-16.el6 ruby193-rubygem-activerecord-3.2.8-11.el6 ruby193-rubygem-actionpack-doc-3.2.8-16.el6 ruby193-rubygem-activesupport-3.2.8-6.el6

RHEL6WS noarch ruby193-rubygem-activerecord-doc-3.2.8-11.el6 ruby193-rubygem-actionpack-3.2.8-16.el6 ruby193-rubygem-activerecord-3.2.8-11.el6 ruby193-rubygem-actionpack-doc-3.2.8-16.el6 ruby193-rubygem-activesupport-3.2.8-6.el6

RHEL7S noarch ruby193-rubygem-activerecord-doc-3.2.8-11.el7 ruby193-rubygem-actionpack-3.2.8-16.el7 ruby193-rubygem-activesupport-3.2.8-6.el7 ruby193-rubygem-activerecord-3.2.8-11.el7 ruby193-rubygem-actionpack-doc-3.2.8-16.el7

RHEL7WS noarch ruby193-rubygem-activerecord-doc-3.2.8-11.el7 ruby193-rubygem-actionpack-3.2.8-16.el7 ruby193-rubygem-activesupport-3.2.8-6.el7 ruby193-rubygem-activerecord-3.2.8-11.el7 ruby193-rubygem-actionpack-doc-3.2.8-16.el7

141121 - Red Hat Enterprise Linux RHSA-2016-0448 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: RHSA-2016-0448

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0448.html

RHEL7S noarch samba-common-4.2.3-12.el7_2 samba-pidl-4.2.3-12.el7_2

RHEL6S i386 samba-common-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 libsmbclient-devel-3.6.23-25.el6_7 samba-winbind-devel-3.6.23-25.el6_7 samba-debuginfo-3.6.23-25.el6_7 samba-doc-3.6.23-25.el6_7 samba-swat-3.6.23-25.el6_7 samba-domainjoin-gui-3.6.23-25.el6_7 samba-winbind-clients-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-winbind-krb5-locator-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7 x86_64 samba-common-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 libsmbclient-devel-3.6.23-25.el6_7 samba-winbind-devel-3.6.23-25.el6_7 samba-debuginfo-3.6.23-25.el6_7 samba-doc-3.6.23-25.el6_7 samba-swat-3.6.23-25.el6_7 samba-domainjoin-gui-3.6.23-25.el6_7 samba-glusterfs-3.6.23-25.el6_7 samba-winbind-clients-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-winbind-krb5-locator-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7

RHEL6WS x86_64 samba-winbind-clients-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 samba-debuginfo-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-common-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7 i386 samba-winbind-clients-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 samba-debuginfo-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-common-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7

RHEL7D x86_64 samba-winbind-clients-4.2.3-12.el7_2 samba-client-libs-4.2.3-12.el7_2 samba-4.2.3-12.el7_2 samba-dc-4.2.3-12.el7_2 samba-common-libs-4.2.3-12.el7_2 samba-test-devel-4.2.3-12.el7_2 samba-winbind-krb5-locator-4.2.3-12.el7_2 samba-test-4.2.3-12.el7_2 libwbclient-devel-4.2.3-12.el7_2 samba-debuginfo-4.2.3-12.el7_2 samba-devel-4.2.3-12.el7_2 libwbclient-4.2.3-12.el7_2 samba-python-4.2.3-12.el7_2 samba-common-tools-4.2.3-12.el7_2 samba-dc-libs-4.2.3-12.el7_2 samba-libs-4.2.3-12.el7_2 samba-winbind-modules-4.2.3-12.el7_2 samba-client-4.2.3-12.el7_2 libsmbclient-devel-4.2.3-12.el7_2 samba-winbind-4.2.3-12.el7_2 samba-vfs-glusterfs-4.2.3-12.el7_2 samba-test-libs-4.2.3-12.el7_2 libsmbclient-4.2.3-12.el7_2 noarch samba-common-4.2.3-12.el7_2 samba-pidl-4.2.3-12.el7_2

RHEL6D x86_64 samba-common-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 libsmbclient-devel-3.6.23-25.el6_7 samba-winbind-devel-3.6.23-25.el6_7 samba-debuginfo-3.6.23-25.el6_7 samba-doc-3.6.23-25.el6_7 samba-swat-3.6.23-25.el6_7 samba-domainjoin-gui-3.6.23-25.el6_7 samba-glusterfs-3.6.23-25.el6_7 samba-winbind-clients-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-winbind-krb5-locator-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7 i386 samba-common-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 libsmbclient-devel-3.6.23-25.el6_7 samba-winbind-devel-3.6.23-25.el6_7 samba-debuginfo-3.6.23-25.el6_7 samba-doc-3.6.23-25.el6_7 samba-swat-3.6.23-25.el6_7 samba-domainjoin-gui-3.6.23-25.el6_7 samba-winbind-clients-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-winbind-krb5-locator-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7

RHEL7WS x86_64 samba-winbind-clients-4.2.3-12.el7_2 samba-client-libs-4.2.3-12.el7_2 samba-4.2.3-12.el7_2 samba-dc-4.2.3-12.el7_2 samba-common-libs-4.2.3-12.el7_2 samba-test-devel-4.2.3-12.el7_2 samba-winbind-krb5-locator-4.2.3-12.el7_2 samba-test-4.2.3-12.el7_2 libwbclient-devel-4.2.3-12.el7_2 samba-debuginfo-4.2.3-12.el7_2 samba-devel-4.2.3-12.el7_2 libwbclient-4.2.3-12.el7_2 samba-python-4.2.3-12.el7_2 samba-common-tools-4.2.3-12.el7_2 samba-dc-libs-4.2.3-12.el7_2 samba-libs-4.2.3-12.el7_2 samba-winbind-modules-4.2.3-12.el7_2 samba-client-4.2.3-12.el7_2 libsmbclient-devel-4.2.3-12.el7_2 samba-winbind-4.2.3-12.el7_2 samba-vfs-glusterfs-4.2.3-12.el7_2 samba-test-libs-4.2.3-12.el7_2 libsmbclient-4.2.3-12.el7_2 noarch samba-common-4.2.3-12.el7_2 samba-pidl-4.2.3-12.el7_2 141123 - Red Hat Enterprise Linux RHSA-2016-0372 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-0293, CVE-2015-3197, CVE-2016-0703, CVE-2016-0704, CVE-2016-0800

Description The scan detected that the host is missing the following update: RHSA-2016-0372

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://rhn.redhat.com/errata/RHSA-2016-0372.html

RHEL7S x86_64 openssl098e-0.9.8e-29.el7_2.3 openssl098e-debuginfo-0.9.8e-29.el7_2.3

RHEL6S i386 openssl098e-debuginfo-0.9.8e-20.el6_7.1 openssl098e-0.9.8e-20.el6_7.1 x86_64 openssl098e-debuginfo-0.9.8e-20.el6_7.1 openssl098e-0.9.8e-20.el6_7.1

RHEL6WS x86_64 openssl098e-debuginfo-0.9.8e-20.el6_7.1 openssl098e-0.9.8e-20.el6_7.1 i386 openssl098e-debuginfo-0.9.8e-20.el6_7.1 openssl098e-0.9.8e-20.el6_7.1

RHEL7D x86_64 openssl098e-0.9.8e-29.el7_2.3 openssl098e-debuginfo-0.9.8e-29.el7_2.3

RHEL6D x86_64 openssl098e-debuginfo-0.9.8e-20.el6_7.1 openssl098e-0.9.8e-20.el6_7.1 i386 openssl098e-debuginfo-0.9.8e-20.el6_7.1 openssl098e-0.9.8e-20.el6_7.1

RHEL7WS x86_64 openssl098e-0.9.8e-29.el7_2.3 openssl098e-debuginfo-0.9.8e-29.el7_2.3 160058 - CentOS 6, 7 CESA-2016-0372 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-0293, CVE-2015-3197, CVE-2016-0703, CVE-2016-0704, CVE-2016-0800

Description The scan detected that the host is missing the following update: CESA-2016-0372

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2016-March/021720.html http://lists.centos.org/pipermail/centos-announce/2016-March/021719.html

CentOS 7 x86_64 openssl098e-0.9.8e-29.el7.centos.3 i686 openssl098e-0.9.8e-29.el7.centos.3

CentOS 6 x86_64 openssl098e-0.9.8e-20.el6.centos.1 i686 openssl098e-0.9.8e-20.el6.centos.1

160060 - CentOS 6, 7 CESA-2016-0428 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-0787

Description The scan detected that the host is missing the following update: CESA-2016-0428

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2016-March/021727.html http://lists.centos.org/pipermail/centos-announce/2016-March/021726.html

CentOS 7 i686 libssh2-1.4.3-10.el7_2.1 libssh2-devel-1.4.3-10.el7_2.1 noarch libssh2-docs-1.4.3-10.el7_2.1 x86_64 libssh2-1.4.3-10.el7_2.1 libssh2-devel-1.4.3-10.el7_2.1

CentOS 6 x86_64 libssh2-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1 i686 libssh2-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1

160061 - CentOS 6, 7 CESA-2016-0448 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: CESA-2016-0448

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2016-March/021730.html http://lists.centos.org/pipermail/centos-announce/2016-March/021732.html

CentOS 7 i686 libsmbclient-devel-4.2.3-12.el7_2 libwbclient-4.2.3-12.el7_2 samba-libs-4.2.3-12.el7_2 samba-test-libs-4.2.3-12.el7_2 libsmbclient-4.2.3-12.el7_2 ctdb-devel-4.2.3-12.el7_2 samba-devel-4.2.3-12.el7_2 samba-winbind-modules-4.2.3-12.el7_2 samba-client-libs-4.2.3-12.el7_2 libwbclient-devel-4.2.3-12.el7_2 noarch samba-common-4.2.3-12.el7_2 samba-pidl-4.2.3-12.el7_2 x86_64 samba-winbind-clients-4.2.3-12.el7_2 samba-client-libs-4.2.3-12.el7_2 samba-4.2.3-12.el7_2 samba-common-libs-4.2.3-12.el7_2 libwbclient-4.2.3-12.el7_2 samba-winbind-krb5-locator-4.2.3-12.el7_2 samba-test-4.2.3-12.el7_2 libsmbclient-4.2.3-12.el7_2 samba-dc-4.2.3-12.el7_2 samba-devel-4.2.3-12.el7_2 libwbclient-devel-4.2.3-12.el7_2 samba-python-4.2.3-12.el7_2 samba-common-tools-4.2.3-12.el7_2 ctdb-devel-4.2.3-12.el7_2 samba-dc-libs-4.2.3-12.el7_2 samba-libs-4.2.3-12.el7_2 samba-winbind-modules-4.2.3-12.el7_2 samba-client-4.2.3-12.el7_2 libsmbclient-devel-4.2.3-12.el7_2 samba-winbind-4.2.3-12.el7_2 samba-vfs-glusterfs-4.2.3-12.el7_2 ctdb-4.2.3-12.el7_2 samba-test-libs-4.2.3-12.el7_2 samba-test-devel-4.2.3-12.el7_2 ctdb-tests-4.2.3-12.el7_2

CentOS 6 x86_64 samba-common-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 libsmbclient-devel-3.6.23-25.el6_7 samba-winbind-devel-3.6.23-25.el6_7 samba-doc-3.6.23-25.el6_7 samba-swat-3.6.23-25.el6_7 samba-domainjoin-gui-3.6.23-25.el6_7 samba-glusterfs-3.6.23-25.el6_7 samba-winbind-clients-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-winbind-krb5-locator-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7 i686 samba-domainjoin-gui-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 samba-winbind-krb5-locator-3.6.23-25.el6_7 libsmbclient-devel-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-winbind-clients-3.6.23-25.el6_7 samba-common-3.6.23-25.el6_7 samba-winbind-devel-3.6.23-25.el6_7 samba-swat-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7 samba-doc-3.6.23-25.el6_7

160062 - CentOS 6 CESA-2016-0449 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Cent OS Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: CESA-2016-0449 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.centos.org/pipermail/centos-announce/2016-March/021731.html

CentOS 6 x86_64 samba4-swat-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4 i686 samba4-swat-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4

163023 - Oracle Enterprise Linux ELSA-2016-0448 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: ELSA-2016-0448

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2016-March/005858.html http://oss.oracle.com/pipermail/el-errata/2016-March/005859.html

OEL7 x86_64 samba-winbind-clients-4.2.3-12.el7_2 samba-client-libs-4.2.3-12.el7_2 samba-4.2.3-12.el7_2 samba-common-4.2.3-12.el7_2 samba-common-libs-4.2.3-12.el7_2 libwbclient-4.2.3-12.el7_2 samba-winbind-krb5-locator-4.2.3-12.el7_2 samba-test-4.2.3-12.el7_2 samba-test-libs-4.2.3-12.el7_2 samba-dc-4.2.3-12.el7_2 samba-devel-4.2.3-12.el7_2 libwbclient-devel-4.2.3-12.el7_2 samba-python-4.2.3-12.el7_2 samba-common-tools-4.2.3-12.el7_2 samba-dc-libs-4.2.3-12.el7_2 samba-libs-4.2.3-12.el7_2 samba-winbind-modules-4.2.3-12.el7_2 samba-client-4.2.3-12.el7_2 libsmbclient-devel-4.2.3-12.el7_2 samba-winbind-4.2.3-12.el7_2 samba-vfs-glusterfs-4.2.3-12.el7_2 samba-test-devel-4.2.3-12.el7_2 samba-pidl-4.2.3-12.el7_2 libsmbclient-4.2.3-12.el7_2

OEL6 x86_64 samba-winbind-clients-3.6.23-25.0.1.el6_7 samba-client-3.6.23-25.0.1.el6_7 samba-swat-3.6.23-25.0.1.el6_7 samba-doc-3.6.23-25.0.1.el6_7 libsmbclient-3.6.23-25.0.1.el6_7 libsmbclient-devel-3.6.23-25.0.1.el6_7 samba-glusterfs-3.6.23-25.0.1.el6_7 samba-winbind-3.6.23-25.0.1.el6_7 samba-winbind-krb5-locator-3.6.23-25.0.1.el6_7 samba-common-3.6.23-25.0.1.el6_7 samba-3.6.23-25.0.1.el6_7 samba-winbind-devel-3.6.23-25.0.1.el6_7 samba-domainjoin-gui-3.6.23-25.0.1.el6_7 i386 samba-doc-3.6.23-25.0.1.el6_7 libsmbclient-3.6.23-25.0.1.el6_7 samba-winbind-clients-3.6.23-25.0.1.el6_7 libsmbclient-devel-3.6.23-25.0.1.el6_7 samba-winbind-krb5-locator-3.6.23-25.0.1.el6_7 samba-winbind-3.6.23-25.0.1.el6_7 samba-3.6.23-25.0.1.el6_7 samba-client-3.6.23-25.0.1.el6_7 samba-common-3.6.23-25.0.1.el6_7 samba-domainjoin-gui-3.6.23-25.0.1.el6_7 samba-swat-3.6.23-25.0.1.el6_7 samba-winbind-devel-3.6.23-25.0.1.el6_7

163024 - Oracle Enterprise Linux ELSA-2016-0428 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-0787

Description The scan detected that the host is missing the following update: ELSA-2016-0428

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2016-March/005852.html http://oss.oracle.com/pipermail/el-errata/2016-March/005851.html

OEL7 x86_64 libssh2-1.4.3-10.el7_2.1 libssh2-devel-1.4.3-10.el7_2.1 libssh2-docs-1.4.3-10.el7_2.1

OEL6 x86_64 libssh2-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1 i386 libssh2-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1

163027 - Oracle Enterprise Linux ELSA-2016-0449 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Oracle Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: ELSA-2016-0449

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://oss.oracle.com/pipermail/el-errata/2016-March/005860.html

OEL6 x86_64 samba4-swat-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4 i386 samba4-swat-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4

170634 - Amazon Linux AMI ALAS-2016-662 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-0773

Description The scan detected that the host is missing the following update: ALAS-2016-662

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-662.html

Amazon Linux AMI x86_64 postgresql92-contrib-9.2.15-1.57.amzn1 postgresql94-contrib-9.4.6-1.66.amzn1 postgresql93-debuginfo-9.3.11-1.61.amzn1 postgresql92-docs-9.2.15-1.57.amzn1 postgresql94-plpython27-9.4.6-1.66.amzn1 postgresql93-devel-9.3.11-1.61.amzn1 postgresql94-devel-9.4.6-1.66.amzn1 postgresql94-test-9.4.6-1.66.amzn1 postgresql92-server-9.2.15-1.57.amzn1 postgresql94-libs-9.4.6-1.66.amzn1 postgresql93-plpython27-9.3.11-1.61.amzn1 postgresql92-9.2.15-1.57.amzn1 postgresql92-devel-9.2.15-1.57.amzn1 postgresql93-plpython26-9.3.11-1.61.amzn1 postgresql92-libs-9.2.15-1.57.amzn1 postgresql94-debuginfo-9.4.6-1.66.amzn1 postgresql92-plpython26-9.2.15-1.57.amzn1 postgresql93-libs-9.3.11-1.61.amzn1 postgresql94-9.4.6-1.66.amzn1 postgresql92-debuginfo-9.2.15-1.57.amzn1 postgresql92-plperl-9.2.15-1.57.amzn1 postgresql93-9.3.11-1.61.amzn1 postgresql93-pltcl-9.3.11-1.61.amzn1 postgresql94-server-9.4.6-1.66.amzn1 postgresql92-test-9.2.15-1.57.amzn1 postgresql94-docs-9.4.6-1.66.amzn1 postgresql92-plpython27-9.2.15-1.57.amzn1 postgresql92-server-compat-9.2.15-1.57.amzn1 postgresql93-docs-9.3.11-1.61.amzn1 postgresql93-server-9.3.11-1.61.amzn1 postgresql94-plperl-9.4.6-1.66.amzn1 postgresql92-pltcl-9.2.15-1.57.amzn1 postgresql93-test-9.3.11-1.61.amzn1 postgresql93-contrib-9.3.11-1.61.amzn1 postgresql93-plperl-9.3.11-1.61.amzn1 postgresql94-plpython26-9.4.6-1.66.amzn1 i686 postgresql92-contrib-9.2.15-1.57.amzn1 postgresql94-contrib-9.4.6-1.66.amzn1 postgresql93-debuginfo-9.3.11-1.61.amzn1 postgresql92-docs-9.2.15-1.57.amzn1 postgresql94-plpython27-9.4.6-1.66.amzn1 postgresql93-devel-9.3.11-1.61.amzn1 postgresql94-devel-9.4.6-1.66.amzn1 postgresql94-test-9.4.6-1.66.amzn1 postgresql92-server-9.2.15-1.57.amzn1 postgresql94-libs-9.4.6-1.66.amzn1 postgresql93-plpython27-9.3.11-1.61.amzn1 postgresql92-9.2.15-1.57.amzn1 postgresql92-devel-9.2.15-1.57.amzn1 postgresql93-plpython26-9.3.11-1.61.amzn1 postgresql92-libs-9.2.15-1.57.amzn1 postgresql94-debuginfo-9.4.6-1.66.amzn1 postgresql92-plpython26-9.2.15-1.57.amzn1 postgresql93-libs-9.3.11-1.61.amzn1 postgresql94-9.4.6-1.66.amzn1 postgresql92-debuginfo-9.2.15-1.57.amzn1 postgresql92-plperl-9.2.15-1.57.amzn1 postgresql93-9.3.11-1.61.amzn1 postgresql93-pltcl-9.3.11-1.61.amzn1 postgresql94-server-9.4.6-1.66.amzn1 postgresql92-test-9.2.15-1.57.amzn1 postgresql94-docs-9.4.6-1.66.amzn1 postgresql92-plpython27-9.2.15-1.57.amzn1 postgresql92-server-compat-9.2.15-1.57.amzn1 postgresql93-docs-9.3.11-1.61.amzn1 postgresql93-server-9.3.11-1.61.amzn1 postgresql94-plperl-9.4.6-1.66.amzn1 postgresql92-pltcl-9.2.15-1.57.amzn1 postgresql93-test-9.3.11-1.61.amzn1 postgresql93-contrib-9.3.11-1.61.amzn1 postgresql93-plperl-9.3.11-1.61.amzn1 postgresql94-plpython26-9.4.6-1.66.amzn1

170638 - Amazon Linux AMI ALAS-2016-666 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7529

Description The scan detected that the host is missing the following update: ALAS-2016-666

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-666.html

Amazon Linux AMI noarch sos-3.2-28.17.amzn1

170641 - Amazon Linux AMI ALAS-2016-659 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7236

Description The scan detected that the host is missing the following update: ALAS-2016-659

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-659.html

Amazon Linux AMI x86_64 rpcbind-debuginfo-0.2.0-11.8.amzn1 rpcbind-0.2.0-11.8.amzn1 i686 rpcbind-debuginfo-0.2.0-11.8.amzn1 rpcbind-0.2.0-11.8.amzn1

170642 - Amazon Linux AMI ALAS-2016-658 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2014-7810, CVE-2015-5174, CVE-2015-5345

Description The scan detected that the host is missing the following update: ALAS-2016-658

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-658.html

Amazon Linux AMI noarch tomcat8-servlet-3.1-api-8.0.30-1.57.amzn1 tomcat8-javadoc-8.0.30-1.57.amzn1 tomcat8-admin-webapps-8.0.30-1.57.amzn1 tomcat8-8.0.30-1.57.amzn1 tomcat8-webapps-8.0.30-1.57.amzn1 tomcat8-jsp-2.3-api-8.0.30-1.57.amzn1 tomcat8-lib-8.0.30-1.57.amzn1 tomcat8-el-3.0-api-8.0.30-1.57.amzn1 tomcat8-docs-webapp-8.0.30-1.57.amzn1 tomcat8-log4j-8.0.30-1.57.amzn1

170644 - Amazon Linux AMI ALAS-2016-663 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-1982, CVE-2016-1983

Description The scan detected that the host is missing the following update: ALAS-2016-663

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-663.html

Amazon Linux AMI x86_64 privoxy-3.0.23-2.7.amzn1 privoxy-debuginfo-3.0.23-2.7.amzn1 i686 privoxy-3.0.23-2.7.amzn1 privoxy-debuginfo-3.0.23-2.7.amzn1

174914 - Scientific Linux Security ERRATA Moderate: samba4 on SL6.x i386/x86_64 (1603-5183)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: Security ERRATA Moderate: samba4 on SL6.x i386/x86_64 (1603-5183)

SL6 x86_64 samba4-swat-4.0.0-68.el6_7.rc4 samba4-debuginfo-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4 i386 samba4-swat-4.0.0-68.el6_7.rc4 samba4-debuginfo-4.0.0-68.el6_7.rc4 samba4-common-4.0.0-68.el6_7.rc4 samba4-pidl-4.0.0-68.el6_7.rc4 samba4-devel-4.0.0-68.el6_7.rc4 samba4-python-4.0.0-68.el6_7.rc4 samba4-winbind-clients-4.0.0-68.el6_7.rc4 samba4-dc-libs-4.0.0-68.el6_7.rc4 samba4-winbind-4.0.0-68.el6_7.rc4 samba4-client-4.0.0-68.el6_7.rc4 samba4-dc-4.0.0-68.el6_7.rc4 samba4-winbind-krb5-locator-4.0.0-68.el6_7.rc4 samba4-4.0.0-68.el6_7.rc4 samba4-test-4.0.0-68.el6_7.rc4 samba4-libs-4.0.0-68.el6_7.rc4

174916 - Scientific Linux Security ERRATA Important: openssl098e on SL6.x, SL7.x i386/x86_64 (1603-3432)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2015-0293, CVE-2015-3197, CVE-2016-0703, CVE-2016-0704, CVE-2016-0800

Description The scan detected that the host is missing the following update: Security ERRATA Important: openssl098e on SL6.x, SL7.x i386/x86_64 (1603-3432)

SL7 x86_64 openssl098e-0.9.8e-29.el7_2.3 openssl098e-debuginfo-0.9.8e-29.el7_2.3 SL6 x86_64 openssl098e-debuginfo-0.9.8e-20.el6_7.1 openssl098e-0.9.8e-20.el6_7.1 i386 openssl098e-debuginfo-0.9.8e-20.el6_7.1 openssl098e-0.9.8e-20.el6_7.1

174918 - Scientific Linux Security ERRATA Moderate: libssh2 on SL6.x, SL7.x i386/x86_64 (1603-4184)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2016-0787

Description The scan detected that the host is missing the following update: Security ERRATA Moderate: libssh2 on SL6.x, SL7.x i386/x86_64 (1603-4184)

SL7 x86_64 libssh2-debuginfo-1.4.3-10.el7_2.1 libssh2-1.4.3-10.el7_2.1 libssh2-devel-1.4.3-10.el7_2.1 noarch libssh2-docs-1.4.3-10.el7_2.1

SL6 x86_64 libssh2-1.4.2-2.el6_7.1 libssh2-debuginfo-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1 i386 libssh2-1.4.2-2.el6_7.1 libssh2-debuginfo-1.4.2-2.el6_7.1 libssh2-devel-1.4.2-2.el6_7.1 libssh2-docs-1.4.2-2.el6_7.1

174922 - Scientific Linux Security ERRATA Moderate: samba on SL6.x, SL7.x i386/x86_64 (1603-4850)

Category: SSH Module -> NonIntrusive -> Scientific Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: Security ERRATA Moderate: samba on SL6.x, SL7.x i386/x86_64 (1603-4850) Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://listserv.fnal.gov/scripts/wa.exe?A2=ind1603&L=scientific-linux-errata&F=&S=&P=4850

SL7 x86_64 samba-winbind-clients-4.2.3-12.el7_2 samba-client-libs-4.2.3-12.el7_2 samba-4.2.3-12.el7_2 samba-dc-4.2.3-12.el7_2 samba-common-libs-4.2.3-12.el7_2 samba-test-devel-4.2.3-12.el7_2 samba-winbind-krb5-locator-4.2.3-12.el7_2 samba-test-4.2.3-12.el7_2 libwbclient-devel-4.2.3-12.el7_2 samba-debuginfo-4.2.3-12.el7_2 samba-devel-4.2.3-12.el7_2 libwbclient-4.2.3-12.el7_2 samba-python-4.2.3-12.el7_2 samba-common-tools-4.2.3-12.el7_2 samba-dc-libs-4.2.3-12.el7_2 samba-libs-4.2.3-12.el7_2 samba-winbind-modules-4.2.3-12.el7_2 samba-client-4.2.3-12.el7_2 libsmbclient-devel-4.2.3-12.el7_2 samba-winbind-4.2.3-12.el7_2 samba-vfs-glusterfs-4.2.3-12.el7_2 samba-test-libs-4.2.3-12.el7_2 libsmbclient-4.2.3-12.el7_2 noarch samba-common-4.2.3-12.el7_2 samba-pidl-4.2.3-12.el7_2

SL6 x86_64 samba-common-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 libsmbclient-devel-3.6.23-25.el6_7 samba-winbind-devel-3.6.23-25.el6_7 samba-debuginfo-3.6.23-25.el6_7 samba-doc-3.6.23-25.el6_7 samba-swat-3.6.23-25.el6_7 samba-domainjoin-gui-3.6.23-25.el6_7 samba-glusterfs-3.6.23-25.el6_7 samba-winbind-clients-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-winbind-krb5-locator-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7 i386 samba-common-3.6.23-25.el6_7 samba-client-3.6.23-25.el6_7 libsmbclient-devel-3.6.23-25.el6_7 samba-winbind-devel-3.6.23-25.el6_7 samba-debuginfo-3.6.23-25.el6_7 samba-doc-3.6.23-25.el6_7 samba-swat-3.6.23-25.el6_7 samba-domainjoin-gui-3.6.23-25.el6_7 samba-winbind-clients-3.6.23-25.el6_7 libsmbclient-3.6.23-25.el6_7 samba-3.6.23-25.el6_7 samba-winbind-krb5-locator-3.6.23-25.el6_7 samba-winbind-3.6.23-25.el6_7

178167 - Gentoo Linux GLSA-201603-13 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2015-3204, CVE-2015-3240

Description The scan detected that the host is missing the following update: GLSA-201603-13

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-13

Affected packages: net-misc/libreswan < 3.15

185205 - Ubuntu Linux 14.04 USN-2931-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Medium CVE: CVE-2013-4312, CVE-2015-8767, CVE-2016-2069, CVE-2016-2384, CVE-2016-2543, CVE-2016-2544, CVE-2016-2545, CVE- 2016-2546, CVE-2016-2547, CVE-2016-2548, CVE-2016-2549, CVE-2016-3134

Description The scan detected that the host is missing the following update: USN-2931-1

Ubuntu 14.04 linux-image-3.16.0-67-powerpc64-smp_3.16.0-67.87~14.04.1 linux-image-3.16.0-67-generic-lpae_3.16.0-67.87~14.04.1 linux-image-3.16.0-67-powerpc-e500mc_3.16.0-67.87~14.04.1 linux-image-3.16.0-67-generic_3.16.0-67.87~14.04.1 linux-image-3.16.0-67-powerpc-smp_3.16.0-67.87~14.04.1 linux-image-3.16.0-67-powerpc64-emb_3.16.0-67.87~14.04.1 linux-image-3.16.0-67-lowlatency_3.16.0-67.87~14.04.1

185206 - Ubuntu Linux 12.04 USN-2929-2 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Medium CVE: CVE-2013-4312, CVE-2015-7566, CVE-2015-7833, CVE-2016-0723, CVE-2016-2384, CVE-2016-2543, CVE-2016-2544, CVE- 2016-2545, CVE-2016-2546, CVE-2016-2547, CVE-2016-2548, CVE-2016-2549, CVE-2016-2782, CVE-2016-3134

Description The scan detected that the host is missing the following update: USN-2929-2

Ubuntu 12.04 linux-image-3.13.0-83-generic_3.13.0-83.127~precise1 linux-image-3.13.0-83-generic-lpae_3.13.0-83.127~precise1

185209 - Ubuntu Linux 14.04 USN-2930-2 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7566, CVE-2015-8767, CVE-2016-0723, CVE-2016-2384, CVE-2016-2782, CVE-2016-3134, CVE-2016-3135

Description The scan detected that the host is missing the following update: USN-2930-2

Ubuntu 14.04 linux-image-4.2.0-34-powerpc64-smp_4.2.0-34.39~14.04.1 linux-image-4.2.0-34-generic_4.2.0-34.39~14.04.1 linux-image-4.2.0-34-powerpc-e500mc_4.2.0-34.39~14.04.1 linux-image-4.2.0-34-lowlatency_4.2.0-34.39~14.04.1 linux-image-4.2.0-34-powerpc-smp_4.2.0-34.39~14.04.1 linux-image-4.2.0-34-generic-lpae_4.2.0-34.39~14.04.1 linux-image-4.2.0-34-powerpc64-emb_4.2.0-34.39~14.04.1

185210 - Ubuntu Linux 14.04 USN-2929-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Medium CVE: CVE-2013-4312, CVE-2015-7566, CVE-2015-7833, CVE-2016-0723, CVE-2016-2384, CVE-2016-2543, CVE-2016-2544, CVE- 2016-2545, CVE-2016-2546, CVE-2016-2547, CVE-2016-2548, CVE-2016-2549, CVE-2016-2782, CVE-2016-3134

Description The scan detected that the host is missing the following update: USN-2929-1

Ubuntu 14.04 linux-image-3.13.0-83-powerpc-smp_3.13.0-83.127 linux-image-3.13.0-83-powerpc64-smp_3.13.0-83.127 linux-image-3.13.0-83-lowlatency_3.13.0-83.127 linux-image-3.13.0-83-generic-lpae_3.13.0-83.127 linux-image-3.13.0-83-generic_3.13.0-83.127 linux-image-3.13.0-83-powerpc-e500mc_3.13.0-83.127 linux-image-3.13.0-83-powerpc64-emb_3.13.0-83.127 linux-image-3.13.0-83-powerpc-e500_3.13.0-83.127

185216 - Ubuntu Linux 14.04 USN-2932-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Medium CVE: CVE-2013-4312, CVE-2015-7566, CVE-2015-7833, CVE-2015-8767, CVE-2016-0723, CVE-2016-2069, CVE-2016-2384, CVE- 2016-2543, CVE-2016-2544, CVE-2016-2545, CVE-2016-2546, CVE-2016-2547, CVE-2016-2548, CVE-2016-2549, CVE-2016-2782, CVE-2016-3134

Description The scan detected that the host is missing the following update: USN-2932-1

Ubuntu 14.04 linux-image-3.19.0-56-powerpc64-smp_3.19.0-56.62~14.04.1 linux-image-3.19.0-56-generic_3.19.0-56.62~14.04.1 linux-image-3.19.0-56-powerpc-e500mc_3.19.0-56.62~14.04.1 linux-image-3.19.0-56-powerpc64-emb_3.19.0-56.62~14.04.1 linux-image-3.19.0-56-lowlatency_3.19.0-56.62~14.04.1 linux-image-3.19.0-56-generic-lpae_3.19.0-56.62~14.04.1 linux-image-3.19.0-56-powerpc-smp_3.19.0-56.62~14.04.1

185218 - Ubuntu Linux 15.10 USN-2930-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7566, CVE-2015-8767, CVE-2016-0723, CVE-2016-2384, CVE-2016-2782, CVE-2016-3134, CVE-2016-3135

Description The scan detected that the host is missing the following update: USN-2930-1

Ubuntu 15.10 linux-image-4.2.0-34-powerpc64-emb_4.2.0-34.39 linux-image-4.2.0-34-lowlatency_4.2.0-34.39 linux-image-4.2.0-34-powerpc-e500mc_4.2.0-34.39 linux-image-4.2.0-34-powerpc-smp_4.2.0-34.39 linux-image-4.2.0-34-generic-lpae_4.2.0-34.39 linux-image-4.2.0-34-generic_4.2.0-34.39 linux-image-4.2.0-34-powerpc64-smp_4.2.0-34.39

190389 - Fedora Linux 23 FEDORA-2016-120b194a75 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-0203, CVE-2015-0223, CVE-2015-0224

Description The scan detected that the host is missing the following update: FEDORA-2016-120b194a75

Fedora Core 23 qpid-cpp-0.34-6.fc23

190398 - Fedora Linux 23 FEDORA-2016-65da02b95c Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-2559, CVE-2016-2560, CVE-2016-2561, CVE-2016-2562

Description The scan detected that the host is missing the following update: FEDORA-2016-65da02b95c

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178564.html http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178562.html Fedora Core 23 phpMyAdmin-4.5.5.1-1.fc23 php-udan11-sql-parser-3.4.0-1.fc23

190399 - Fedora Linux 22 FEDORA-2016-02ee5b4002 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-2559, CVE-2016-2560, CVE-2016-2561, CVE-2016-2562

Description The scan detected that the host is missing the following update: FEDORA-2016-02ee5b4002

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178869.html http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178872.html

Fedora Core 22 phpMyAdmin-4.5.5.1-1.fc22 php-udan11-sql-parser-3.4.0-1.fc22

19802 - IBM WebSphere Portal Open Unauthorized Remote Content Modification Vulnerability (CVE-2015-7455)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2015-7455

Description A vulnerability is present in some versions of IBM WebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.

A vulnerability is present in some versions of IBM WebSphere Portal. The flaw lies in how strong are the permission restrictions for content modification. Successful exploitation could allow a remote authenticated user to modify content through the authoring UI.

19803 - IBM WebSphere Portal XSS Vulnerability (CVE-2015-7457)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2015-7457

Description A Cross-Site Scripting vulnerability is present in some versions of IBM WebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.

A Cross-Site Scripting vulnerability is present in some versions of IBM WebSphere Portal. The flaw lies in how this product handles user-supplied input. Successful exploitation could allow an attacker to steal user's cookies-based credentials via arbitrary script execution.

19805 - IBM WebSphere Portal XSS Vulnerability (CVE-2016-0243)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2016-0243

Description A Cross-Site Scripting vulnerability is present in some versions of IBM WebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.

19806 - IBM WebSphere Portal XSS Vulnerability (CVE-2016-0244)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2016-0244

Description A Cross-Site Scripting vulnerability is present in some versions of IBM WebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.

19828 - Google Chrome Multiple Vulnerabilities Prior To 49.0.2623.87

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Medium CVE: CVE-2016-1643, CVE-2016-1644, CVE-2016-1645

Description Multiple vulnerabilities are present in some versions of Google Chrome.

Observation Google Chrome is a popular web browser. Multiple vulnerabilities are present in some versions of Google Chrome. The flaws lie in several components. Successful exploitation could allow an attacker to cause a denial of service condition or possibly cause other unspecified impact.

19829 - Google Chrome Multiple Vulnerabilities Prior To 49.0.2623.87

Category: SSH Module -> NonIntrusive -> SSH Miscellaneous Risk Level: Medium CVE: CVE-2016-1643, CVE-2016-1644, CVE-2016-1645

Description Multiple vulnerabilities are present in some versions of Google Chrome.

Observation Google Chrome is a popular web browser.

185208 - Ubuntu Linux 12.04, 14.04, 15.10 USN-2933-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Medium CVE: CVE-2014-2972, CVE-2016-1531

Description The scan detected that the host is missing the following update: USN-2933-1

Ubuntu 12.04 exim4-daemon-custom_4.76-3ubuntu3.3 exim4-daemon-heavy_4.76-3ubuntu3.3 exim4-daemon-light_4.76-3ubuntu3.3

Ubuntu 15.10 exim4-daemon-heavy_4.86-3ubuntu1.1 exim4-daemon-light_4.86-3ubuntu1.1

Ubuntu 14.04 exim4-daemon-light_4.82-3ubuntu2.1 exim4-daemon-heavy_4.82-3ubuntu2.1 exim4-daemon-custom_4.82-3ubuntu2.1

19804 - IBM WebSphere Portal XSS Vulnerability (CVE-2015-7491)

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: Low CVE: CVE-2015-7491

Description A Cross-Site Scripting vulnerability is present in some versions of IBM WebSphere Portal.

Observation IBM WebSphere Portal is a set of software tools that is used to build and manage web portals.

19810 - (SOL60352002) F5 BIG-IP SNTP Vulnerability

Category: SSH Module -> NonIntrusive -> F5 Risk Level: Low CVE: CVE-2015-5219

Description A denial of service vulnerability is present in some versions of F5 BIG-IP systems.

Observation F5's BIG-IP product is a network appliance that runs F5's Traffic Management Operating System.

A denial of service vulnerability is present in some versions of F5 BIG-IP systems. The issue lies in the SNTP component. Successful exploitation could allow an attacker to cause a denial of service condition. Exploitation requires the target system to receive a maliciously crafted NTP package.

33332 - Oracle Solaris 152264-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: 152264-01

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152264-01

SunOS 5.10: rpcbind patch

SOLARIS_10

SUNWcsu:11.10.0,REV=2005.01.21.15.53

33333 - Oracle Solaris 150546-02 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: 150546-02

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/150546-02

SunOS 5.10(x86): pam_ldap.so.1 patch

SOLARIS_10_x86

SUNWcsl:11.10.0,REV=2005.01.21.16.34

33334 - Oracle Solaris 150545-02 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: 150545-02

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/150545-02

SunOS 5.10: pam_ldap.so.1 patch

SOLARIS_10

SUNWcsl:11.10.0,REV=2005.01.21.15.53

33335 - Oracle Solaris 152265-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: 152265-01

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://getupdates.oracle.com/readme/152265-01

SunOS 5.10(x86): rpcbind patch

SOLARIS_10_x86

SUNWcsu:11.10.0,REV=2005.01.21.16.34

88753 - Slackware Linux 14.0, 14.1 SSA:2016-069-02 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: SSA:2016-069-02

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.389439

Slackware 14.1 x86_64 mozilla-nss-3.23-x86_64-1

Slackware 14.0 x86_64 mozilla-nss-3.23-x86_64-1

88754 - Slackware Linux 13.0, 13.1, 13.37, 14.0, 14.1 SSA:2016-070-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: Low CVE: CVE-2016-3115

Description The scan detected that the host is missing the following update: SSA:2016-070-01

Slackware 14.0 x86_64 openssh-7.2p2-x86_64-1

Slackware 13.0 x86_64 openssh-7.2p2-x86_64-1 Slackware 13.1 x86_64 openssh-7.2p2-x86_64-1

Slackware 14.1 x86_64 openssh-7.2p2-x86_64-1

Slackware 13.37 x86_64 openssh-7.2p2-x86_64-1

88755 - Slackware Linux 14.1 SSA:2016-075-02 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: SSA:2016-075-02

Slackware 14.1 x86_64 seamonkey-solibs-2.40-x86_64-1 seamonkey-2.40-x86_64-1

88756 - Slackware Linux 13.0, 13.1, 13.37, 14.0, 14.1 SSA:2016-075-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2315, CVE-2016-2324

Description The scan detected that the host is missing the following update: SSA:2016-075-01

Slackware 14.0 x86_64 git-2.7.3-x86_64-1

Slackware 13.0 x86_64 git-2.7.3-x86_64-1

Slackware 13.1 x86_64 git-2.7.3-x86_64-1

Slackware 14.1 x86_64 git-2.7.3-x86_64-1

Slackware 13.37 x86_64 git-2.7.3-x86_64-1

88757 - Slackware Linux 13.0, 13.1, 13.37, 14.0, 14.1 SSA:2016-069-01 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1285, CVE-2016-1286

Description The scan detected that the host is missing the following update: SSA:2016-069-01

Slackware 14.0 x86_64 bind-9.9.8_P4-x86_64-1

Slackware 13.0 x86_64 bind-9.9.8_P4-x86_64-1

Slackware 13.1 x86_64 bind-9.9.8_P4-x86_64-1

Slackware 14.1 x86_64 bind-9.9.8_P4-x86_64-1

Slackware 13.37 x86_64 bind-9.9.8_P4-x86_64-1

130427 - Debian Linux 7.0, 8.0 DSA-3511-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1285, CVE-2016-1286

Description The scan detected that the host is missing the following update: DSA-3511-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2016/dsa-3511

Debian 8.0 all bind9_1:9.9.5.dfsg-9+deb8u6

Debian 7.0 all bind9_1:9.8.4.dfsg.P1-6+nmu2+deb7u10

130428 - Debian Linux 8.0 DSA-3513-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1643, CVE-2016-1644, CVE-2016-1645

Description The scan detected that the host is missing the following update: DSA-3513-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2016/dsa-3513

Debian 8.0 all chromedriver_49.0.2623.87-1~deb8u1 chromium_49.0.2623.87-1~deb8u1 chromium-inspector_49.0.2623.87-1~deb8u1 chromium-dbg_49.0.2623.87-1~deb8u1 chromium-l10n_49.0.2623.87-1~deb8u1

130430 - Debian Linux 7.0, 8.0 DSA-3514-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2015-7560, CVE-2016-0771

Description The scan detected that the host is missing the following update: DSA-3514-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2016/dsa-3514

Debian 8.0 all samba_2:4.1.17+dfsg-2+deb8u2

Debian 7.0 all samba_2:3.6.6-6+deb7u7

130431 - Debian Linux 7.0, 8.0 DSA-3517-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1531

Description The scan detected that the host is missing the following update: DSA-3517-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2016/dsa-3517

Debian 8.0 all exim4_4.84.2-1

Debian 7.0 all exim4_4.80-7+deb7u2

130432 - Debian Linux 7.0, 8.0 DSA-3512-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2851

Description The scan detected that the host is missing the following update: DSA-3512-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2016/dsa-3512

Debian 8.0 all libotr5-dev_4.1.0-2+deb8u1 libotr5_4.1.0-2+deb8u1 libotr5-bin_4.1.0-2+deb8u1 Debian 7.0 all libotr2-dev_3.2.1-1+deb7u2 libotr2-bin_3.2.1-1+deb7u2 libotr2_3.2.1-1+deb7u2

130435 - Debian Linux 8.0 DSA-3509-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2097, CVE-2016-2098

Description The scan detected that the host is missing the following update: DSA-3509-1

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.debian.org/security/2016/dsa-3509

Debian 8.0 all rails_2:4.1.8-1+deb8u2

170636 - Amazon Linux AMI ALAS-2016-660 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Amazon Linux Patches and Hotfixes Risk Level: Low CVE: CVE-2015-5229

Description The scan detected that the host is missing the following update: ALAS-2016-660

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://alas.aws.amazon.com/ALAS-2016-660.html

Amazon Linux AMI x86_64 glibc-debuginfo-common-2.17-106.167.amzn1 glibc-devel-2.17-106.167.amzn1 glibc-headers-2.17-106.167.amzn1 glibc-common-2.17-106.167.amzn1 glibc-debuginfo-2.17-106.167.amzn1 glibc-static-2.17-106.167.amzn1 glibc-2.17-106.167.amzn1 nscd-2.17-106.167.amzn1 glibc-utils-2.17-106.167.amzn1 i686 glibc-devel-2.17-106.167.amzn1 glibc-debuginfo-common-2.17-106.167.amzn1 nscd-2.17-106.167.amzn1 glibc-headers-2.17-106.167.amzn1 glibc-static-2.17-106.167.amzn1 glibc-common-2.17-106.167.amzn1 glibc-utils-2.17-106.167.amzn1 glibc-2.17-106.167.amzn1 glibc-debuginfo-2.17-106.167.amzn1

178163 - Gentoo Linux GLSA-201603-04 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: Low CVE: CVE-2015-3202

Description The scan detected that the host is missing the following update: GLSA-201603-04

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: https://security.gentoo.org/glsa/201603-04

Affected packages: sys-fs/fuse < 2.9.4

181882 - FreeBSD libotr Integer Overflow (c2b1652c-e647-11e5-85be-14dae9d210b8)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2851

Description The scan detected that the host is missing the following update: libotr -- integer overflow (c2b1652c-e647-11e5-85be-14dae9d210b8)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/c2b1652c-e647-11e5-85be-14dae9d210b8.html

Affected packages: libotr < 4.1.1

181883 - FreeBSD openssh Command Injection When X11Forwarding Is Enabled (e4644df8-e7da-11e5-829d- c80aa9043978)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-2016-3115 Description The scan detected that the host is missing the following update: openssh -- command injection when X11Forwarding is enabled (e4644df8-e7da-11e5-829d-c80aa9043978)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/e4644df8-e7da-11e5-829d-c80aa9043978.html

Affected packages: openssh-portable < 7.2.p2,1

181884 - FreeBSD ricochet Information Disclosure (d71831ef-e6f8-11e5-85be-14dae9d210b8)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: ricochet -- information disclosure (d71831ef-e6f8-11e5-85be-14dae9d210b8)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/d71831ef-e6f8-11e5-85be-14dae9d210b8.html

Affected packages: ricochet < 1.1.2

181885 - FreeBSD pidgin-otr Use After Free (77e0b631-e6cf-11e5-85be-14dae9d210b8)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-2015-8833

Description The scan detected that the host is missing the following update: pidgin-otr -- use after free (77e0b631-e6cf-11e5-85be-14dae9d210b8)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/77e0b631-e6cf-11e5-85be-14dae9d210b8.html

Affected packages: pidgin-otr < 4.0.2

181886 - FreeBSD php7 Multiple Vulnerabilities (5af511e5-e928-11e5-92ce-002590263bf5)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: php7 -- multiple vulnerabilities (5af511e5-e928-11e5-92ce-002590263bf5)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/5af511e5-e928-11e5-92ce-002590263bf5.html

Affected packages: php70 < 7.0.4 php70-soap < 7.0.4

181887 - FreeBSD php5 Multiple Vulnerabilities (e991ef79-e920-11e5-92ce-002590263bf5)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: php5 -- multiple vulnerabilities (e991ef79-e920-11e5-92ce-002590263bf5)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/e991ef79-e920-11e5-92ce-002590263bf5.html

Affected packages: php55-phar < 5.5.33 php55-wddx < 5.5.33 php56-phar < 5.6.19 php56-wddx < 5.6.19

181888 - FreeBSD quagga Stack Based Buffer Overflow Vulnerability (70c44cd0-e717-11e5-85be-14dae9d210b8)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2342

Description The scan detected that the host is missing the following update: quagga -- stack based buffer overflow vulnerability (70c44cd0-e717-11e5-85be-14dae9d210b8)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/70c44cd0-e717-11e5-85be-14dae9d210b8.html Affected packages: quagga < 1.0.20160309

181889 - FreeBSD dropbear Authorized_keys Command= Bypass (8eb78cdc-e9ec-11e5-85be-14dae9d210b8)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-2016-3116

Description The scan detected that the host is missing the following update: dropbear -- authorized_keys command= bypass (8eb78cdc-e9ec-11e5-85be-14dae9d210b8)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/8eb78cdc-e9ec-11e5-85be-14dae9d210b8.html

Affected packages: dropbear < 2016.72

181890 - FreeBSD jpgraph2 XSS Vulnerability (77b7ffb7-e937-11e5-8bed-5404a68ad561)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: jpgraph2 -- XSS vulnerability (77b7ffb7-e937-11e5-8bed-5404a68ad561)

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://www.vuxml.org/freebsd/77b7ffb7-e937-11e5-8bed-5404a68ad561.html

Affected packages: jpgraph2 < 3.0.7_1

185204 - Ubuntu Linux 12.04, 14.04, 15.10 USN-2925-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1285, CVE-2016-1286

Description The scan detected that the host is missing the following update: USN-2925-1

Ubuntu 12.04 bind9_9.8.1.dfsg.P1-4ubuntu0.16

Ubuntu 15.10 bind9_9.9.5.dfsg-11ubuntu1.3

Ubuntu 14.04 bind9_9.9.5.dfsg-3ubuntu0.8

185211 - Ubuntu Linux 12.04 USN-2926-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2851

Description The scan detected that the host is missing the following update: USN-2926-1

Ubuntu 12.04 libotr2_3.2.0-4ubuntu0.3

185212 - Ubuntu Linux 12.04 USN-2928-2 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2384

Description The scan detected that the host is missing the following update: USN-2928-2

Ubuntu 12.04 linux-image-3.2.0-1479-omap4_3.2.0-1479.105 185214 - Ubuntu Linux 12.04 USN-2928-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2384

Description The scan detected that the host is missing the following update: USN-2928-1

Ubuntu 12.04 linux-image-3.2.0-101-highbank_3.2.0-101.141 linux-image-3.2.0-101-omap_3.2.0-101.141 linux-image-3.2.0-101-generic-pae_3.2.0-101.141 linux-image-3.2.0-101-powerpc64-smp_3.2.0-101.141 linux-image-3.2.0-101-virtual_3.2.0-101.141 linux-image-3.2.0-101-generic_3.2.0-101.141 linux-image-3.2.0-101-powerpc-smp_3.2.0-101.141

185215 - Ubuntu Linux 12.04, 14.04, 15.10 USN-2924-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1950

Description The scan detected that the host is missing the following update: USN-2924-1

Ubuntu 12.04 libnss3_3.21-0ubuntu0.12.04.3

Ubuntu 15.10 libnss3_3.21-0ubuntu0.15.10.2

Ubuntu 14.04 libnss3_3.21-0ubuntu0.14.04.2

190376 - Fedora Linux 22 FEDORA-2016-0609474cf6 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-0741

Description The scan detected that the host is missing the following update: FEDORA-2016-0609474cf6

Fedora Core 22

389-ds-base-1.3.4.8-1.fc22

190377 - Fedora Linux 22 FEDORA-2016-dc9e8da03c Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-0739

Description The scan detected that the host is missing the following update: FEDORA-2016-dc9e8da03c

Fedora Core 22 libssh-0.7.3-1.fc22

190378 - Fedora Linux 23 FEDORA-2016-6b977c4737 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2016-6b977c4737

190379 - Fedora Linux 22 FEDORA-2016-5b2c402bb1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2016-5b2c402bb1

Fedora Core 22 firefox-45.0-4.fc22

190380 - Fedora Linux 22 FEDORA-2016-1fb63e3bf3 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2381

Description The scan detected that the host is missing the following update: FEDORA-2016-1fb63e3bf3

Fedora Core 22 perl-5.20.3-329.fc22

190381 - Fedora Linux 23 FEDORA-2016-b593e84223 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1285, CVE-2016-1286, CVE-2016-2088

Description The scan detected that the host is missing the following update: FEDORA-2016-b593e84223 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://lists.fedoraproject.org/pipermail/package-announce/2016-March/178831.html

Fedora Core 23 bind-9.10.3-12.P4.fc23

190382 - Fedora Linux 22 FEDORA-2016-cad77a4576 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: FEDORA-2016-cad77a4576

Fedora Core 22 samba-4.2.9-0.fc22

190383 - Fedora Linux 23 FEDORA-2016-bb59db3c86 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-3115

Description The scan detected that the host is missing the following update: FEDORA-2016-bb59db3c86

Fedora Core 23 openssh-7.2p2-1.fc23

190384 - Fedora Linux 23 FEDORA-2016-ed1587f6ba Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2015-7560

Description The scan detected that the host is missing the following update: FEDORA-2016-ed1587f6ba

Fedora Core 23 samba-4.3.6-0.fc23

190386 - Fedora Linux 22 FEDORA-2016-0e3ca94d88 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1531

Description The scan detected that the host is missing the following update: FEDORA-2016-0e3ca94d88

Fedora Core 22 exim-4.85.2-1.fc22

190387 - Fedora Linux 22 FEDORA-2016-0a1a2dd98d Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2016-0a1a2dd98d

Fedora Core 22 php-htmLawed-1.1.21-1.fc22 190388 - Fedora Linux 22 FEDORA-2016-ffffab2aa9 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2016-ffffab2aa9

Fedora Core 22 libmodbus-3.0.6-1.fc22

190392 - Fedora Linux 22 FEDORA-2016-baa32758d0 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2016-baa32758d0

Fedora Core 22 php-5.6.19-1.fc22

190393 - Fedora Linux 23 FEDORA-2016-ae14784e4e Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2016-ae14784e4e

Fedora Core 23 libmodbus-3.0.6-1.fc23

190394 - Fedora Linux 23 FEDORA-2016-be6d3fff4a Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2016-be6d3fff4a

Fedora Core 23 firefox-45.0-4.fc23

190395 - Fedora Linux 23 FEDORA-2016-5047abe4a9 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1285, CVE-2016-1286

Description The scan detected that the host is missing the following update: FEDORA-2016-5047abe4a9

Fedora Core 23 bind99-9.9.8-4.P4.fc23

190396 - Fedora Linux 23 FEDORA-2016-40401300ed Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-0741 Description The scan detected that the host is missing the following update: FEDORA-2016-40401300ed

Fedora Core 23

389-ds-base-1.3.4.8-1.fc23

190397 - Fedora Linux 23 FEDORA-2016-e6cfaff4b1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2847

Description The scan detected that the host is missing the following update: FEDORA-2016-e6cfaff4b1

Fedora Core 23 kernel-4.4.4-301.fc23

190400 - Fedora Linux 22 FEDORA-2016-7942ee2cc5 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-0787

Description The scan detected that the host is missing the following update: FEDORA-2016-7942ee2cc5

Fedora Core 22 libssh2-1.5.0-2.fc22 190401 - Fedora Linux 22 FEDORA-2016-45d4920315 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2016-45d4920315

Fedora Core 22 drupal7-7.43-1.fc22

190402 - Fedora Linux 23 FEDORA-2016-e062971917 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-1531

Description The scan detected that the host is missing the following update: FEDORA-2016-e062971917

Fedora Core 23 exim-4.86.2-1.fc23

190404 - Fedora Linux 22 FEDORA-2016-746bb5851d Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2016-2847

Description The scan detected that the host is missing the following update: FEDORA-2016-746bb5851d

Fedora Core 22 kernel-4.4.4-200.fc22

190407 - Fedora Linux 23 FEDORA-2016-eeb0f0c94f Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: FEDORA-2016-eeb0f0c94f

Fedora Core 23 drupal7-7.43-1.fc23

190390 - Fedora Linux 22 FEDORA-2016-e21be93421 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2015-7758

Description The scan detected that the host is missing the following update: FEDORA-2016-e21be93421

Fedora Core 22 gummi-0.6.6-1.fc22

190406 - Fedora Linux 23 FEDORA-2016-94b0b50351 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Low CVE: CVE-2015-7758

Description The scan detected that the host is missing the following update: FEDORA-2016-94b0b50351

Fedora Core 23 gummi-0.6.6-1.fc23

43171 - HP-UX 11.X PHCO_43051 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_43051

11.31 pfiles(1) cumulative patch

HP-UX 11.31 (NA)

OS-Core.CMDS2-AUX,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CMDS2-AUX,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43172 - HP-UX 11.X PHKL_44182 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44182

11.31 cumulative gvid patch

HP-UX 11.31 (NA) OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43177 - HP-UX 11.X PHCO_44146 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44146

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHCO_44146&sp4ts.oid=3367813 s700_800 11.23 lpspool cumulative patch

HP-UX 11.23 (800) HP-UX 11.23 (700)

PrinterMgmt.LP2-SPOOL,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP PrinterMgmt.LPSP-ENG-A-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP PrinterMgmt.LP-SPOOL,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP PrinterMgmt.LP2-SPOOL,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP

43178 - HP-UX 11.X PHCO_44196 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44196

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHCO_44196&sp4ts.oid=3367813 s700_800 11.23 tztab(4) cumulative patch

HP-UX 11.23 (800) HP-UX 11.23 (700)

OS-Core.UX-CORE,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP

43179 - HP-UX 11.X PHKL_44247 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44247

11.31 VFS cumulative patch

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43180 - HP-UX 11.X PHKL_44305 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44305

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHKL_44305&sp4ts.oid=3367813 s700_800 11.11 exec(2) patch

HP-UX 11.11 (800) HP-UX 11.11 (700)

OS-Core.CORE2-KRN,fr=B.11.11,fa=HP-UX_B.11.11_32,v=HP OS-Core.CORE2-KRN,fr=B.11.11,fa=HP-UX_B.11.11_64,v=HP

43182 - HP-UX 11.X PHCO_43754 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_43754

11.31 cron(1M) cumulative patch

HP-UX 11.31 (NA)

OS-Core.UX-CORE,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.CMDS2-MIN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.CMDS2-MIN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CMDS-MIN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.CMIN-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP

43183 - HP-UX 11.X PHCO_44252 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44252

11.31 aries(5) man page patch

HP-UX 11.31 (NA)

OS-Core.CORE-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP

43186 - HP-UX 11.X PHKL_44204 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44204

11.31 HPVM Fix RID length, guest para-virtualization HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43187 - HP-UX 11.X PHCO_44183 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44183

11.31 audcmnds cumulative patch

HP-UX 11.31 (NA)

SecurityMon.SECURITY2,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP SecurityMon.SECURITY,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP SecurityMon.SECURITY2,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP SecurityMon.AUDT-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP

43188 - HP-UX 11.X PHCO_44193 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44193

11.31 mediainit(1) cumulative patch

HP-UX 11.31 (NA)

OS-Core.ADMN-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.SYS2-ADMIN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.SYS2-ADMIN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43191 - HP-UX 11.X PHKL_44413 Update Is Not Installed Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44413

11.31 kepd cumulative patch

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43192 - HP-UX 11.X PHKL_44068 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44068

11.31 Integrity Virtual Machine Capabilities Interface

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43193 - HP-UX 11.X PHKL_44177 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44177 Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHKL_44177&sp4ts.oid=3367813

11.31 thread level signal patch

HP-UX 11.31 (NA)

ProgSupport.C-INC,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP ProgSupport.PAUX-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43194 - HP-UX 11.X PHCO_44251 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44251

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHCO_44251&sp4ts.oid=3367813 s700_800 11.23 aries(5) man page patch

HP-UX 11.23 (800) HP-UX 11.23 (700)

OS-Core.CORE-ENG-A-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP

43195 - HP-UX 11.X PHSS_44300 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHSS_44300

11.31 WDB and PXDB Patch HP-UX 11.31 (NA)

OS-Core.C-MIN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.LINKER-PAOBJ,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43199 - HP-UX 11.X PHCO_44145 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44145

11.31 kernel configuration commands patch

HP-UX 11.31 (NA)

OS-Core.KERN-RUN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.KERN2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.SYS2-ADMIN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.KERN2-RUN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.KERN-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.SYS2-ADMIN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43200 - HP-UX 11.X PHKL_44285 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44285

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHKL_44285&sp4ts.oid=3367813 s700_800 11.23 exec(2) cumulative patch

HP-UX 11.23 (800) HP-UX 11.23 (700)

OS-Core.CORE2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP OS-Core.CORE2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP

43201 - HP-UX 11.X PHCO_44168 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44168

11.31 Mass Storage CRA Cumulative Patch

HP-UX 11.31 (NA)

OS-Core.CORE2-SHLIBS,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.CORE2-SHLIBS,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43203 - HP-UX 11.X PHKL_44224 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44224

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHKL_44224&sp4ts.oid=3367813 s700_800 11.23 Lockf Patch

HP-UX 11.23 (800) HP-UX 11.23 (700)

OS-Core.CORE2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_PA,v=HP OS-Core.CORE2-KRN,fr=B.11.23,fa=HP-UX_B.11.23_IA,v=HP

43204 - HP-UX 11.X PHCO_44181 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH Description The scan detected that the host is missing the following update: PHCO_44181

Observation Updates often remediate critical security problems that should be quickly addressed. For more information see: http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=pdb_na-PHCO_44181&sp4ts.oid=3367813 s700_800 11.23 tftpd(1M) Japanese manpage patch

HP-UX 11.23 (800) HP-UX 11.23 (700)

InternetSrvcs.INET-JPN-E-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP InternetSrvcs.INET-JPN-S-MAN,fr=B.11.23,fa=HP-UX_B.11.23_IA/PA,v=HP

43206 - HP-UX 11.X PHKL_43904 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_43904

11.31 process management cumulative patch

HP-UX 11.31 (NA)

43207 - HP-UX 11.X PHKL_44202 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHKL_44202

11.31 pm clock cumulative patch

HP-UX 11.31 (NA)

OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP OS-Core.CORE2-KRN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

43208 - HP-UX 11.X PHCO_44178 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44178

11.31 pwgrd(1M) cumulative patch

HP-UX 11.31 (NA)

OS-Core.UX-CORE,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.CORE-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43209 - HP-UX 11.X PHCO_44172 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHCO_44172

11.31 mksf(1M) cumulative patch

HP-UX 11.31 (NA) OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP OS-Core.CORE-ENG-A-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP OS-Core.UX2-CORE,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP

43210 - HP-UX 11.X PHSS_44400 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Description The scan detected that the host is missing the following update: PHSS_44400

11.31 XClients Patch

HP-UX 11.31 (NA)

X11.X11-RUN-CL,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP X11.X11-RUN,fr=B.11.31,fa=HP-UX_B.11.31_IA,v=HP X11.X11-RUN-CL,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP X11.X11-RUN-MAN,fr=B.11.31,fa=HP-UX_B.11.31_IA/PA,v=HP X11.X11-RUN,fr=B.11.31,fa=HP-UX_B.11.31_PA,v=HP

ENHANCED CHECKS

The following checks have been updated. Enhancements may include optimizations, changes that reflect new information on a vulnerability and anything else that improves upon an existing FSL check. 19801 - (APSB16-09) Vulnerabilities In Adobe Reader And Acrobat

Category: Windows Host Assessment -> Adobe Patches Only (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2016-1007, CVE-2016-1008, CVE-2016-1009

Update Details Risk is updated

31463 - Oracle Solaris 120543-36 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2005-3352, CVE-2005-3357, CVE-2006-3747, CVE-2006-5752, CVE-2007-1349, CVE-2007-1863, CVE-2007-3304, CVE- 2007-3847, CVE-2007-5000, CVE-2007-6388, CVE-2007-6750, CVE-2008-2364, CVE-2008-2939, CVE-2009-0023, CVE-2009-0796, CVE-2009-1195, CVE-2009-1891, CVE-2009-1955, CVE-2009-1956, CVE-2009-2412, CVE-2009-3094, CVE-2009-3095, CVE-2009- 3555, CVE-2010-0408, CVE-2010-0434, CVE-2010-1452, CVE-2010-1623, CVE-2010-2068, CVE-2011-0419, CVE-2011-1928, CVE- 2011-3192, CVE-2011-3368, CVE-2011-3607, CVE-2011-4317, CVE-2012-0031, CVE-2012-0053, CVE-2012-0883, CVE-2012-2687, CVE-2012-3123, CVE-2012-3499, CVE-2012-4558, CVE-2013-1862, CVE-2013-1896, CVE-2013-4352, CVE-2013-6438, CVE-2014- 0098, CVE-2014-0117, CVE-2014-0118, CVE-2014-0226, CVE-2014-0231

Update Details Name is updated Description is updated Observation is updated Recommendation is updated CVE is updated FASLScript is updated

33152 - Oracle Solaris 119758-36 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2007-0452, CVE-2007-2444, CVE-2007-2446, CVE-2007-2447, CVE-2007-4138, CVE-2007-4572, CVE-2007-5398, CVE- 2007-6015, CVE-2008-4314, CVE-2010-2063, CVE-2010-3069, CVE-2011-0719, CVE-2011-2522, CVE-2011-2694, CVE-2012-1182, CVE-2012-2111, CVE-2012-6150, CVE-2013-0213, CVE-2013-0214, CVE-2013-4124, CVE-2013-4408, CVE-2013-4475, CVE-2013- 4496, CVE-2014-0178, CVE-2014-0244, CVE-2014-3493

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33154 - Oracle Solaris 119757-36 Update Is Not Installed

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33213 - Oracle Solaris 120544-36 Update Is Not Installed

Update Details Name is updated Description is updated Observation is updated Recommendation is updated CVE is updated FASLScript is updated

130411 - Debian Linux 7.0, 8.0 DSA-3500-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Debian Patches and Hotfixes Risk Level: High CVE: CVE-2016-0702, CVE-2016-0705, CVE-2016-0797, CVE-2016-0798, CVE-2016-0799, CVE-2016-2842

Update Details CVE is updated 181877 - FreeBSD mozilla Multiple Vulnerabilities (2225c5b4-1e5a-44fc-9920-b3201c384a15)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: High CVE: CVE-2016-1952, CVE-2016-1953, CVE-2016-1954, CVE-2016-1955, CVE-2016-1956, CVE-2016-1957, CVE-2016-1958, CVE- 2016-1959, CVE-2016-1960, CVE-2016-1961, CVE-2016-1962, CVE-2016-1963, CVE-2016-1964, CVE-2016-1965, CVE-2016-1966, CVE-2016-1967, CVE-2016-1970, CVE-2016-1971, CVE-2016-1972, CVE-2016-1973, CVE-2016-1974, CVE-2016-1975, CVE-2016- 1976

Update Details Risk is updated

16471 - Cisco IOS Software Crafted IPv6 Packet Denial of Service

Category: SSH Module -> NonIntrusive -> Cisco IOS Patches and Hotfixes Risk Level: High CVE: CVE-2014-2113

Update Details FASLScript is updated

181818 - FreeBSD php Pcre Vulnerability (85eb4e46-cf16-11e5-840f-485d605f4717)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: High CVE: CVE-2015-8383, CVE-2015-8386, CVE-2015-8387, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8393, CVE- 2015-8394, CVE-2016-2554

Update Details CVE is updated FASLScript is updated

181878 - FreeBSD graphite2 Multiple Vulnerabilities (adffe823-e692-4921-ae9c-0b825c218372)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: High CVE: CVE-2016-1969, CVE-2016-1977, CVE-2016-2790, CVE-2016-2791, CVE-2016-2792, CVE-2016-2793, CVE-2016-2794, CVE- 2016-2795, CVE-2016-2796, CVE-2016-2797, CVE-2016-2798, CVE-2016-2799, CVE-2016-2800, CVE-2016-2801, CVE-2016-2802

Update Details Risk is updated CVE is updated

19705 - SAP 3D Visual Enterprise Viewer SketchUp Document Multiple Use-After-Free Remote Code Execution Vulnerabilities

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-MAP-NOMATCH

Update Details Recommendation is updated 32168 - Oracle Solaris 122911-36 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2005-3352, CVE-2006-3747, CVE-2006-5752, CVE-2007-3304, CVE-2007-5000, CVE-2007-6388, CVE-2007-6750, CVE- 2008-5519, CVE-2009-0796, CVE-2009-2693, CVE-2009-2901, CVE-2009-2902, CVE-2010-1157, CVE-2010-2227, CVE-2010-3718, CVE-2010-4172, CVE-2010-4312, CVE-2011-0013, CVE-2011-0419, CVE-2011-0534, CVE-2011-1928, CVE-2011-2204, CVE-2011- 2526, CVE-2011-3190, CVE-2011-3368, CVE-2011-3607, CVE-2011-4317, CVE-2011-4858, CVE-2012-0022, CVE-2012-0053, CVE- 2012-2687, CVE-2012-2733, CVE-2012-3499, CVE-2012-3544, CVE-2012-3546, CVE-2012-4431, CVE-2012-4534, CVE-2012-5885, CVE-2012-5886, CVE-2012-5887, CVE-2013-1571, CVE-2013-2067, CVE-2013-4286, CVE-2013-4322, CVE-2013-4590, CVE-2014- 0033, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

19708 - Netgear Management System NMS300 Multiple Vulnerabilities

Category: General Vulnerability Assessment -> Instrusive -> Web Server Risk Level: High CVE: CVE-2016-1524, CVE-2016-1525

Update Details Recommendation is updated

33116 - Oracle Solaris 150383-12 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: High CVE: CVE-2013-0166, CVE-2013-0169, CVE-2014-0224, CVE-2014-3508, CVE-2014-3511, CVE-2014-3513, CVE-2014-3566, CVE- 2014-3567, CVE-2014-3568

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

190318 - Fedora Linux 23 FEDORA-2016-153eed2bb8 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2016-2316

Update Details Risk is updated

190320 - Fedora Linux 22 FEDORA-2016-3cc13611f4 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: High CVE: CVE-2016-2316

Update Details Risk is updated 16821 - (HPSBMU03051) HP System Management Homepage OpenSSL Multiple Vulnerabilities

Category: General Vulnerability Assessment -> NonIntrusive -> Web Server Risk Level: Medium CVE: CVE-2010-5298, CVE-2014-0076, CVE-2014-0195, CVE-2014-0198, CVE-2014-0221, CVE-2014-0224, CVE-2014-3470

Update Details Recommendation is updated

31492 - Oracle Solaris 122912-36 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2005-3352, CVE-2006-3747, CVE-2006-5752, CVE-2007-3304, CVE-2007-5000, CVE-2007-6388, CVE-2007-6750, CVE- 2008-5519, CVE-2009-0796, CVE-2009-2693, CVE-2009-2901, CVE-2009-2902, CVE-2010-1157, CVE-2010-2227, CVE-2010-3718, CVE-2010-4172, CVE-2010-4312, CVE-2011-0013, CVE-2011-0419, CVE-2011-0534, CVE-2011-1928, CVE-2011-2204, CVE-2011- 2526, CVE-2011-3190, CVE-2011-3368, CVE-2011-3607, CVE-2011-4317, CVE-2011-4858, CVE-2012-0022, CVE-2012-0053, CVE- 2012-2687, CVE-2012-2733, CVE-2012-3499, CVE-2012-3544, CVE-2012-3546, CVE-2012-4431, CVE-2012-4534, CVE-2012-5885, CVE-2012-5886, CVE-2012-5887, CVE-2013-1571, CVE-2013-2067, CVE-2013-4286, CVE-2013-4322, CVE-2013-4590, CVE-2014- 0033, CVE-2014-0075, CVE-2014-0096, CVE-2014-0099, CVE-2014-0119

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

32551 - Oracle Solaris 125216-06 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2010-2252

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

32558 - Oracle Solaris 125215-06 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2010-2252

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

32622 - Oracle Solaris 143725-08 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2009-3563, CVE-2013-5211, CVE-2014-9295, CVE-2014-9296

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

32623 - Oracle Solaris 143726-08 Update Is Not Installed Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2009-3563, CVE-2013-5211, CVE-2014-9295, CVE-2014-9296

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

32624 - Oracle Solaris 143727-06 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2009-3563

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

32625 - Oracle Solaris 143728-06 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2009-3563

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

32735 - Oracle Solaris 145007-08 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2009-4568, CVE-2011-1937, CVE-2012-2981, CVE-2012-2982, CVE-2012-2983

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

32739 - Oracle Solaris 145006-08 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2009-4568, CVE-2011-1937, CVE-2012-2981, CVE-2012-2982, CVE-2012-2983

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33145 - Oracle Solaris 150401-35 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2004-0230, CVE-2013-0399, CVE-2013-3799, CVE-2013-5862, CVE-2013-5876, CVE-2014-4215, CVE-2014-6575, CVE- 2015-0375, CVE-2015-0471, CVE-2015-2580, CVE-2015-4869

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33146 - Oracle Solaris 148104-22 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2010-5107, CVE-2012-0814

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33147 - Oracle Solaris 148105-22 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2010-5107, CVE-2012-0814

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

181859 - FreeBSD squid Remote DoS In HTTP Response Processing (660ebbf5-daeb-11e5-b2bd-002590263bf5)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Medium CVE: CVE-2016-2569, CVE-2016-2570, CVE-2016-2571

Update Details Risk is updated

190357 - Fedora Linux 23 FEDORA-2016-f486068393 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7576, CVE-2015-7581, CVE-2016-0751

Update Details Risk is updated

33162 - Oracle Solaris 150400-35 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2004-0230, CVE-2013-5862, CVE-2013-5876, CVE-2014-0447, CVE-2014-6473, CVE-2014-6575, CVE-2015-0375, CVE- 2015-0471, CVE-2015-2580, CVE-2015-2589, CVE-2015-4869

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33291 - Oracle Solaris 150120-04 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2014-6481

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33294 - Oracle Solaris 150119-04 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Medium CVE: CVE-2014-6481

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

88736 - Slackware Linux 14.0, 14.1 SSA:2016-034-03 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Slackware Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-3197

Update Details Risk is updated

141106 - Red Hat Enterprise Linux RHSA-2016-0305 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Red Hat Enterprise Linux Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-3197, CVE-2016-0800

Update Details Risk is updated

144359 - SuSE Linux 13.2 openSUSE-SU-2016:0362-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-3197

Update Details Risk is updated

144385 - SuSE Linux 13.1 openSUSE-SU-2016:0442-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-3197

Update Details Risk is updated 144427 - SuSE Linux 13.2 openSUSE-SU-2016:0647-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> SuSE Patches and Hotfixes Risk Level: Medium CVE: CVE-2013-7447

Update Details Risk is updated

178151 - Gentoo Linux GLSA-201601-05 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Gentoo Linux Patches and HotFixes Risk Level: Medium CVE: CVE-2015-3197, CVE-2016-0701

Update Details Risk is updated

181808 - FreeBSD openssl Multiple Vulnerabilities (3679fd10-c5d1-11e5-b85f-0018fe623f2b)

Category: SSH Module -> NonIntrusive -> FreeBSD Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-3197, CVE-2016-0701

Update Details Risk is updated

185159 - Ubuntu Linux 12.04, 14.04, 15.10 USN-2898-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Medium CVE: CVE-2013-7447

Update Details Risk is updated

185165 - Ubuntu Linux 12.04, 14.04, 15.10 USN-2898-2 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Medium CVE: CVE-2013-7447

Update Details Risk is updated

190260 - Fedora Linux 23 FEDORA-2016-527018d2ff Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-3197, CVE-2016-0701 Update Details Risk is updated

190349 - Fedora Linux 23 FEDORA-2016-3ede04cd79 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Fedora Patches and Hotfixes Risk Level: Medium CVE: CVE-2015-7576

Update Details Risk is updated

33058 - Oracle Solaris 148076-17 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33292 - Oracle Solaris 151755-02 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33329 - Oracle Solaris 151915-03 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33330 - Oracle Solaris 151914-03 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

185151 - Ubuntu Linux 15.10 USN-2883-1 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Ubuntu Patches and Hotfixes Risk Level: Low CVE: CVE-2016-0701

Update Details Risk is updated

33285 - Oracle Solaris 151074-05 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2014-3956

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

33286 - Oracle Solaris 151075-05 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> Solaris Patches and Hotfixes Risk Level: Low CVE: CVE-2014-3956

Update Details Name is updated Description is updated Observation is updated Recommendation is updated FASLScript is updated

45000 - ShellLogon.fasl3

Category: General Vulnerability Assessment -> NonIntrusive -> Invalid Category Risk Level: Informational CVE: CVE-MAP-NOMATCH

Update Details FASLScript is updated

45001 - ShellInitialize.fasl3

Category: General Vulnerability Assessment -> NonIntrusive -> Invalid Category Risk Level: Informational CVE: CVE-MAP-NOMATCH

Update Details FASLScript is updated

70048 - adobe.fasl3.inc

Category: General Vulnerability Assessment -> NonIntrusive -> Invalid Category Risk Level: Informational CVE: CVE-MAP-NOMATCH

Update Details FASLScript is updated 70116 - scada.fasl3.inc

Category: General Vulnerability Assessment -> NonIntrusive -> Invalid Category Risk Level: Informational CVE: CVE-MAP-NOMATCH

Update Details FASLScript is updated

DELETED CHECKS

19660 - Oracle Java SE Remote Code Execution Vulnerability

Category: Windows Host Assessment -> Miscellaneous (CATEGORY REQUIRES CREDENTIALS) Risk Level: High CVE: CVE-2016-0603

42293 - HP-UX 11.X PHKL_34432 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

42763 - HP-UX 11.X PHSS_38435 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: Low CVE: CVE-MAP-NOMATCH

43126 - HP-UX 11.X PHCO_43464 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

43141 - HP-UX 11.X PHNE_43814 Update Is Not Installed

Category: SSH Module -> NonIntrusive -> HP-UX Patches and Hotfixes Risk Level: High CVE: CVE-MAP-NOMATCH

ADDITIONAL NOTES

19660 - is deleted due to FP in certain situations. 42293 - is obsoleted by the Vendor. 42763 - is obsoleted by the Vendor. 43126 - is obsoleted by the Vendor. 43141 - is obsoleted by the Vendor.

HOW TO UPDATE FS1000 APPLIANCE customers should follow the instructions for Enterprise/Professional customers, below. In addition, we strongly urge all appliance customers to authorize and install any Windows Update critical patches. The appliance will auto-download any critical updates but will wait for your explicit authorization before installing.

FOUNDSTONE ENTERPRISE and PROFESSIONAL customers may obtain these new scripts using the FSUpdate Utility by selecting "FoundScan Update" on the help menu. Make sure that you have a valid FSUpdate username and password. The new vulnerability scripts will be automatically included in your scans if you have selected that option by right-clicking the selected vulnerability category and checking the "Run New Checks" checkbox.

MANAGED SERVICE CUSTOMERS already have the newest update applied to their environment. The new vulnerability scripts will be automatically included when your scans are next scheduled, provided the Run New Scripts option has been turned on.

MCAFEE TECHNICAL SUPPORT

ServicePortal: https://mysupport.mcafee.com Multi-National Phone Support available here: http://www.mcafee.com/us/about/contact/index.html Non-US customers - Select your country from the list of Worldwide Offices.

This email may contain confidential and privileged material for the sole use of the intended recipient. Any review or distribution by others is strictly prohibited. If you are not the intended recipient please contact the sender and delete all copies.