cvelistv5 - cve-2016-9555

CVE-2016-9555 (GCVE-0-2016-9555)

Vulnerability from cvelistv5

Published

2016-11-28 03:01

Modified

2024-08-06 02:50

Severity ?

CWE

Summary

The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data.

References

URL

Tags

	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00044.html	vendor-advisory, x_refsource_SUSE
	https://bto.bluecoat.com/security-advisory/sa134	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00077.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00067.html	vendor-advisory, x_refsource_SUSE
	http://www.securitytracker.com/id/1037339	vdb-entry, x_refsource_SECTRACK
	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00056.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00073.html	vendor-advisory, x_refsource_SUSE
	https://github.com/torvalds/linux/commit/bf911e985d6bbaa328c20c3e05f4eb03de11fdd6	x_refsource_CONFIRM
	http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.8	x_refsource_CONFIRM
	http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=bf911e985d6bbaa328c20c3e05f4eb03de11fdd6	x_refsource_CONFIRM
	https://groups.google.com/forum/#%21topic/syzkaller/pAUcHsUJbjk	x_refsource_CONFIRM
	http://rhn.redhat.com/errata/RHSA-2017-0086.html	vendor-advisory, x_refsource_REDHAT
	http://rhn.redhat.com/errata/RHSA-2017-0113.html	vendor-advisory, x_refsource_REDHAT
	http://rhn.redhat.com/errata/RHSA-2017-0091.html	vendor-advisory, x_refsource_REDHAT
	http://www.securityfocus.com/bid/94479	vdb-entry, x_refsource_BID
	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00087.html	vendor-advisory, x_refsource_SUSE
	http://www.openwall.com/lists/oss-security/2016/11/22/18	mailing-list, x_refsource_MLIST
	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00070.html	vendor-advisory, x_refsource_SUSE
	https://bugzilla.redhat.com/show_bug.cgi?id=1397930	x_refsource_CONFIRM
	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00055.html	vendor-advisory, x_refsource_SUSE
	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00054.html	vendor-advisory, x_refsource_SUSE
	http://rhn.redhat.com/errata/RHSA-2017-0307.html	vendor-advisory, x_refsource_REDHAT
	http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00076.html	vendor-advisory, x_refsource_SUSE

Impacted products

	Vendor	Product	Version
	n/a	n/a	Version: n/a

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T02:50:38.588Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SUSE-SU-2016:3096",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00044.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bto.bluecoat.com/security-advisory/sa134"
          },
          {
            "name": "SUSE-SU-2016:3206",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00077.html"
          },
          {
            "name": "SUSE-SU-2016:3169",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00067.html"
          },
          {
            "name": "1037339",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1037339"
          },
          {
            "name": "SUSE-SU-2016:3117",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00056.html"
          },
          {
            "name": "SUSE-SU-2016:3197",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00073.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://github.com/torvalds/linux/commit/bf911e985d6bbaa328c20c3e05f4eb03de11fdd6"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.8"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=bf911e985d6bbaa328c20c3e05f4eb03de11fdd6"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://groups.google.com/forum/#%21topic/syzkaller/pAUcHsUJbjk"
          },
          {
            "name": "RHSA-2017:0086",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2017-0086.html"
          },
          {
            "name": "RHSA-2017:0113",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2017-0113.html"
          },
          {
            "name": "RHSA-2017:0091",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2017-0091.html"
          },
          {
            "name": "94479",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/94479"
          },
          {
            "name": "SUSE-SU-2016:3247",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00087.html"
          },
          {
            "name": "[oss-security] 20161122 CVE Request: Linux: net/sctp: slab-out-of-bounds in sctp_sf_ootb",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://www.openwall.com/lists/oss-security/2016/11/22/18"
          },
          {
            "name": "SUSE-SU-2016:3183",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00070.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397930"
          },
          {
            "name": "SUSE-SU-2016:3116",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00055.html"
          },
          {
            "name": "SUSE-SU-2016:3113",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00054.html"
          },
          {
            "name": "RHSA-2017:0307",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2017-0307.html"
          },
          {
            "name": "SUSE-SU-2016:3205",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00076.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-11-15T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-01-04T19:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "SUSE-SU-2016:3096",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00044.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bto.bluecoat.com/security-advisory/sa134"
        },
        {
          "name": "SUSE-SU-2016:3206",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00077.html"
        },
        {
          "name": "SUSE-SU-2016:3169",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00067.html"
        },
        {
          "name": "1037339",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1037339"
        },
        {
          "name": "SUSE-SU-2016:3117",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00056.html"
        },
        {
          "name": "SUSE-SU-2016:3197",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00073.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://github.com/torvalds/linux/commit/bf911e985d6bbaa328c20c3e05f4eb03de11fdd6"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.8"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=bf911e985d6bbaa328c20c3e05f4eb03de11fdd6"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://groups.google.com/forum/#%21topic/syzkaller/pAUcHsUJbjk"
        },
        {
          "name": "RHSA-2017:0086",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2017-0086.html"
        },
        {
          "name": "RHSA-2017:0113",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2017-0113.html"
        },
        {
          "name": "RHSA-2017:0091",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2017-0091.html"
        },
        {
          "name": "94479",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/94479"
        },
        {
          "name": "SUSE-SU-2016:3247",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00087.html"
        },
        {
          "name": "[oss-security] 20161122 CVE Request: Linux: net/sctp: slab-out-of-bounds in sctp_sf_ootb",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://www.openwall.com/lists/oss-security/2016/11/22/18"
        },
        {
          "name": "SUSE-SU-2016:3183",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00070.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397930"
        },
        {
          "name": "SUSE-SU-2016:3116",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00055.html"
        },
        {
          "name": "SUSE-SU-2016:3113",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00054.html"
        },
        {
          "name": "RHSA-2017:0307",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2017-0307.html"
        },
        {
          "name": "SUSE-SU-2016:3205",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00076.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2016-9555",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The sctp_sf_ootb function in net/sctp/sm_statefuns.c in the Linux kernel before 4.8.8 lacks chunk-length checking for the first chunk, which allows remote attackers to cause a denial of service (out-of-bounds slab access) or possibly have unspecified other impact via crafted SCTP data."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "SUSE-SU-2016:3096",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00044.html"
            },
            {
              "name": "https://bto.bluecoat.com/security-advisory/sa134",
              "refsource": "CONFIRM",
              "url": "https://bto.bluecoat.com/security-advisory/sa134"
            },
            {
              "name": "SUSE-SU-2016:3206",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00077.html"
            },
            {
              "name": "SUSE-SU-2016:3169",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00067.html"
            },
            {
              "name": "1037339",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1037339"
            },
            {
              "name": "SUSE-SU-2016:3117",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00056.html"
            },
            {
              "name": "SUSE-SU-2016:3197",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00073.html"
            },
            {
              "name": "https://github.com/torvalds/linux/commit/bf911e985d6bbaa328c20c3e05f4eb03de11fdd6",
              "refsource": "CONFIRM",
              "url": "https://github.com/torvalds/linux/commit/bf911e985d6bbaa328c20c3e05f4eb03de11fdd6"
            },
            {
              "name": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.8",
              "refsource": "CONFIRM",
              "url": "http://www.kernel.org/pub/linux/kernel/v4.x/ChangeLog-4.8.8"
            },
            {
              "name": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=bf911e985d6bbaa328c20c3e05f4eb03de11fdd6",
              "refsource": "CONFIRM",
              "url": "http://git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/?id=bf911e985d6bbaa328c20c3e05f4eb03de11fdd6"
            },
            {
              "name": "https://groups.google.com/forum/#!topic/syzkaller/pAUcHsUJbjk",
              "refsource": "CONFIRM",
              "url": "https://groups.google.com/forum/#!topic/syzkaller/pAUcHsUJbjk"
            },
            {
              "name": "RHSA-2017:0086",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2017-0086.html"
            },
            {
              "name": "RHSA-2017:0113",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2017-0113.html"
            },
            {
              "name": "RHSA-2017:0091",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2017-0091.html"
            },
            {
              "name": "94479",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/94479"
            },
            {
              "name": "SUSE-SU-2016:3247",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00087.html"
            },
            {
              "name": "[oss-security] 20161122 CVE Request: Linux: net/sctp: slab-out-of-bounds in sctp_sf_ootb",
              "refsource": "MLIST",
              "url": "http://www.openwall.com/lists/oss-security/2016/11/22/18"
            },
            {
              "name": "SUSE-SU-2016:3183",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00070.html"
            },
            {
              "name": "https://bugzilla.redhat.com/show_bug.cgi?id=1397930",
              "refsource": "CONFIRM",
              "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397930"
            },
            {
              "name": "SUSE-SU-2016:3116",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00055.html"
            },
            {
              "name": "SUSE-SU-2016:3113",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00054.html"
            },
            {
              "name": "RHSA-2017:0307",
              "refsource": "REDHAT",
              "url": "http://rhn.redhat.com/errata/RHSA-2017-0307.html"
            },
            {
              "name": "SUSE-SU-2016:3205",
              "refsource": "SUSE",
              "url": "http://lists.opensuse.org/opensuse-security-announce/2016-12/msg00076.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2016-9555",
    "datePublished": "2016-11-28T03:01:00.000Z",
    "dateReserved": "2016-11-22T00:00:00.000Z",
    "dateUpdated": "2024-08-06T02:50:38.588Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTFR-2020-AVI-420

Vulnerability from certfr_avis

De multiples vulnérabilités ont été découvertes dans les produits Juniper. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	Junos Space et Junos Space Security Director versions antérieures à 20.1R1
Juniper Networks	Junos OS Evolved	Junos OS Evolved versions antérieures à 19.1R3-EVO,19.2R2-EVO, 19.3R1-EVO, 19.3R3-EVO, 19.4R2-EVO, 19.4R2-S2-EVO, 20.1R1-EVO, 20.1R2-EVO et 20.2R1-EVO
Juniper Networks	Junos OS	Junos OS versions antérieures à 12.3R12-S15, 12.3X48-D100, 12.3X48-D95, 14.1X53-D140, 14.1X53-D54, 15.1R7-S6, 15.1R7-S7, 15.1X49-D200, 15.1X49-D210, 15.1X49-D230, 15.1X53-D593, 16.1R7-S7, 16.1R7-S8, 17.1R2-S11, 17.1R2-S12, 17.1R3-S2, 17.2R1-S9, 17.2R2-S8, 17.2R3-S3, 17.2R3-S4, 17.2X75-D105.19, 17.3R2-S5, 17.3R3-S6, 17.3R3-S7, 17.3R3-S8, 17.4R1-S3, 17.4R2, 17.4R2-S10, 17.4R2-S11, 17.4R2-S2, 17.4R2-S4, 17.4R2-S8, 17.4R2-S9, 17.4R3, 17.4R3-S1, 17.4R3-S2, 18.1R2, 18.1R3-S10, 18.1R3-S2, 18.1R3-S5, 18.1R3-S8, 18.1R3-S9, 18.2R1, 18.2R2, 18.2R2-S6, 18.2R2-S7, 18.2R3, 18.2R3-S3, 18.2R3-S4, 18.2R3-S5, 18.2X75-D10, 18.2X75-D13, 18.2X75-D32, 18.2X75-D33, 18.2X75-D34, 18.2X75-D40, 18.2X75-D41, 18.2X75-D411.1, 18.2X75-D420, 18.2X75-D420.18, 18.2X75-D430, 18.2X75-D50, 18.2X75-D52, 18.2X75-D52.3, 18.2X75-D52.8, 18.2X75-D53, 18.2X75-D60, 18.2X75-D60.2, 18.2X75-D65, 18.2X75-D65.1, 18.2X75-D70, 18.2X75-D70;(1), 18.3R1-S2, 18.3R1-S7, 18.3R2, 18.3R2-S3, 18.3R2-S4, 18.3R3, 18.3R3-S1, 18.3R3-S2, 18.4R1, 18.4R1-S5, 18.4R1-S6, 18.4R1-S7, 18.4R2, 18.4R2-S4, 18.4R2-S5, 18.4R3, 18.4R3-S1, 18.4R3-S2, 18.4R3-S3(2), 19.1R1-S4, 19.1R1-S5, 19.1R2, 19.1R2-S1, 19.1R2-S2, 19.1R3, 19.1R3-S2, 19.2R1, 19.2R1-S2, 19.2R1-S3, 19.2R1-S4, 19.2R1-S5, 19.2R2, 19.2R3, 19.3R2, 19.3R2-S2, 19.3R2-S3, 19.3R3, 19.4R1, 19.4R1-S1, 19.4R1-S2, 19.4R1-S3, 19.4R2, 19.4R3, 20.1R1, 20.1R1-S1, 20.1R1-S2, 20.1R2 et 20.2R1

References

Title

Publication Time

Tags

Bulletin de sécurité Juniper JSA11038 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11024 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11026 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11027 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11035 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11023 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11025 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11034 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11033 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11032 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11036 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11031 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11030 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11037 du 08 juillet 2020	None	vendor-advisory
Bulletin de sécurité Juniper JSA11028 du 08 juillet 2020	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Junos Space et Junos Space Security Director versions ant\u00e9rieures \u00e0 20.1R1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "Junos OS Evolved versions ant\u00e9rieures \u00e0 19.1R3-EVO,19.2R2-EVO, 19.3R1-EVO, 19.3R3-EVO, 19.4R2-EVO, 19.4R2-S2-EVO, 20.1R1-EVO, 20.1R2-EVO et 20.2R1-EVO",
      "product": {
        "name": "Junos OS Evolved",
        "vendor": {
          "name": "Juniper Networks",
          "scada": false
        }
      }
    },
    {
      "description": "Junos OS versions ant\u00e9rieures \u00e0 12.3R12-S15, 12.3X48-D100, 12.3X48-D95, 14.1X53-D140, 14.1X53-D54, 15.1R7-S6, 15.1R7-S7, 15.1X49-D200, 15.1X49-D210, 15.1X49-D230, 15.1X53-D593, 16.1R7-S7, 16.1R7-S8, 17.1R2-S11, 17.1R2-S12, 17.1R3-S2, 17.2R1-S9, 17.2R2-S8, 17.2R3-S3, 17.2R3-S4, 17.2X75-D105.19, 17.3R2-S5, 17.3R3-S6, 17.3R3-S7, 17.3R3-S8, 17.4R1-S3, 17.4R2, 17.4R2-S10, 17.4R2-S11, 17.4R2-S2, 17.4R2-S4, 17.4R2-S8, 17.4R2-S9, 17.4R3, 17.4R3-S1, 17.4R3-S2, 18.1R2, 18.1R3-S10, 18.1R3-S2, 18.1R3-S5, 18.1R3-S8, 18.1R3-S9, 18.2R1, 18.2R2, 18.2R2-S6, 18.2R2-S7, 18.2R3, 18.2R3-S3, 18.2R3-S4, 18.2R3-S5, 18.2X75-D10, 18.2X75-D13, 18.2X75-D32, 18.2X75-D33, 18.2X75-D34, 18.2X75-D40, 18.2X75-D41, 18.2X75-D411.1, 18.2X75-D420, 18.2X75-D420.18, 18.2X75-D430, 18.2X75-D50, 18.2X75-D52, 18.2X75-D52.3, 18.2X75-D52.8, 18.2X75-D53, 18.2X75-D60, 18.2X75-D60.2, 18.2X75-D65, 18.2X75-D65.1, 18.2X75-D70, 18.2X75-D70;(*1), 18.3R1-S2, 18.3R1-S7, 18.3R2, 18.3R2-S3, 18.3R2-S4, 18.3R3, 18.3R3-S1, 18.3R3-S2, 18.4R1, 18.4R1-S5, 18.4R1-S6, 18.4R1-S7, 18.4R2, 18.4R2-S4, 18.4R2-S5, 18.4R3, 18.4R3-S1, 18.4R3-S2, 18.4R3-S3(*2), 19.1R1-S4, 19.1R1-S5, 19.1R2, 19.1R2-S1, 19.1R2-S2, 19.1R3, 19.1R3-S2, 19.2R1, 19.2R1-S2, 19.2R1-S3, 19.2R1-S4, 19.2R1-S5, 19.2R2, 19.2R3, 19.3R2, 19.3R2-S2, 19.3R2-S3, 19.3R3, 19.4R1, 19.4R1-S1, 19.4R1-S2, 19.4R1-S3, 19.4R2, 19.4R3, 20.1R1, 20.1R1-S1, 20.1R1-S2, 20.1R2 et 20.2R1",
      "product": {
        "name": "Junos OS",
        "vendor": {
          "name": "Juniper Networks",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-1167",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1167"
    },
    {
      "name": "CVE-2016-2324",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-2324"
    },
    {
      "name": "CVE-2013-1960",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-1960"
    },
    {
      "name": "CVE-2012-4447",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-4447"
    },
    {
      "name": "CVE-2016-3991",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3991"
    },
    {
      "name": "CVE-2016-1838",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1838"
    },
    {
      "name": "CVE-2014-7826",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-7826"
    },
    {
      "name": "CVE-2020-1648",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1648"
    },
    {
      "name": "CVE-2016-3621",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3621"
    },
    {
      "name": "CVE-2011-0192",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0192"
    },
    {
      "name": "CVE-2016-1000341",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1000341"
    },
    {
      "name": "CVE-2016-6662",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6662"
    },
    {
      "name": "CVE-2019-0169",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-0169"
    },
    {
      "name": "CVE-2019-11097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11097"
    },
    {
      "name": "CVE-2009-2347",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-2347"
    },
    {
      "name": "CVE-2014-3634",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-3634"
    },
    {
      "name": "CVE-2016-1000343",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1000343"
    },
    {
      "name": "CVE-2015-1782",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-1782"
    },
    {
      "name": "CVE-2017-13098",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-13098"
    },
    {
      "name": "CVE-2019-11132",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11132"
    },
    {
      "name": "CVE-2014-7825",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-7825"
    },
    {
      "name": "CVE-2016-6136",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6136"
    },
    {
      "name": "CVE-2020-1646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1646"
    },
    {
      "name": "CVE-2019-11086",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11086"
    },
    {
      "name": "CVE-2017-7895",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-7895"
    },
    {
      "name": "CVE-2012-1173",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-1173"
    },
    {
      "name": "CVE-2012-2088",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-2088"
    },
    {
      "name": "CVE-2014-9938",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-9938"
    },
    {
      "name": "CVE-2015-1158",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-1158"
    },
    {
      "name": "CVE-2020-1651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1651"
    },
    {
      "name": "CVE-2010-2067",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2067"
    },
    {
      "name": "CVE-2019-11106",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11106"
    },
    {
      "name": "CVE-2016-1000346",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1000346"
    },
    {
      "name": "CVE-2016-3945",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3945"
    },
    {
      "name": "CVE-2016-4447",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4447"
    },
    {
      "name": "CVE-2016-4448",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4448"
    },
    {
      "name": "CVE-2020-1645",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1645"
    },
    {
      "name": "CVE-2016-1000345",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1000345"
    },
    {
      "name": "CVE-2020-1640",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1640"
    },
    {
      "name": "CVE-2013-4244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-4244"
    },
    {
      "name": "CVE-2016-3705",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3705"
    },
    {
      "name": "CVE-2020-1643",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1643"
    },
    {
      "name": "CVE-2018-16881",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-16881"
    },
    {
      "name": "CVE-2015-7940",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-7940"
    },
    {
      "name": "CVE-2017-1000117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-1000117"
    },
    {
      "name": "CVE-2012-5581",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-5581"
    },
    {
      "name": "CVE-2016-1000338",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1000338"
    },
    {
      "name": "CVE-2014-3690",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-3690"
    },
    {
      "name": "CVE-2018-1000613",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1000613"
    },
    {
      "name": "CVE-2017-12588",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-12588"
    },
    {
      "name": "CVE-2016-0787",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-0787"
    },
    {
      "name": "CVE-2016-1834",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1834"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2013-1624",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-1624"
    },
    {
      "name": "CVE-2016-3990",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3990"
    },
    {
      "name": "CVE-2019-0168",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-0168"
    },
    {
      "name": "CVE-2018-1000021",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1000021"
    },
    {
      "name": "CVE-2019-11103",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11103"
    },
    {
      "name": "CVE-2014-9679",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-9679"
    },
    {
      "name": "CVE-2020-1647",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1647"
    },
    {
      "name": "CVE-2019-11107",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11107"
    },
    {
      "name": "CVE-2020-1652",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1652"
    },
    {
      "name": "CVE-2017-14867",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-14867"
    },
    {
      "name": "CVE-2009-5022",
      "url": "https://www.cve.org/CVERecord?id=CVE-2009-5022"
    },
    {
      "name": "CVE-2016-1835",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1835"
    },
    {
      "name": "CVE-2019-3856",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-3856"
    },
    {
      "name": "CVE-2020-1650",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1650"
    },
    {
      "name": "CVE-2016-1000342",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1000342"
    },
    {
      "name": "CVE-2019-3863",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-3863"
    },
    {
      "name": "CVE-2016-1836",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1836"
    },
    {
      "name": "CVE-2019-11110",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11110"
    },
    {
      "name": "CVE-2013-0169",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-0169"
    },
    {
      "name": "CVE-2016-1000339",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1000339"
    },
    {
      "name": "CVE-2008-2327",
      "url": "https://www.cve.org/CVERecord?id=CVE-2008-2327"
    },
    {
      "name": "CVE-2017-9935",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-9935"
    },
    {
      "name": "CVE-2018-3639",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-3639"
    },
    {
      "name": "CVE-2018-5382",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-5382"
    },
    {
      "name": "CVE-2014-9584",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-9584"
    },
    {
      "name": "CVE-2019-11102",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11102"
    },
    {
      "name": "CVE-2019-3862",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-3862"
    },
    {
      "name": "CVE-2019-11088",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11088"
    },
    {
      "name": "CVE-2019-11105",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11105"
    },
    {
      "name": "CVE-2016-5616",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-5616"
    },
    {
      "name": "CVE-2015-1421",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-1421"
    },
    {
      "name": "CVE-2014-9529",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-9529"
    },
    {
      "name": "CVE-2020-1654",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1654"
    },
    {
      "name": "CVE-2013-1961",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-1961"
    },
    {
      "name": "CVE-2015-7082",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-7082"
    },
    {
      "name": "CVE-2006-2193",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-2193"
    },
    {
      "name": "CVE-2014-8171",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-8171"
    },
    {
      "name": "CVE-2006-2656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-2656"
    },
    {
      "name": "CVE-2019-11101",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11101"
    },
    {
      "name": "CVE-2016-1833",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1833"
    },
    {
      "name": "CVE-2018-11233",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11233"
    },
    {
      "name": "CVE-2013-4232",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-4232"
    },
    {
      "name": "CVE-2013-4243",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-4243"
    },
    {
      "name": "CVE-2016-3627",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3627"
    },
    {
      "name": "CVE-2011-3200",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3200"
    },
    {
      "name": "CVE-2016-1840",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1840"
    },
    {
      "name": "CVE-2017-15298",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-15298"
    },
    {
      "name": "CVE-2014-8884",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-8884"
    },
    {
      "name": "CVE-2015-1159",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-1159"
    },
    {
      "name": "CVE-2016-1762",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1762"
    },
    {
      "name": "CVE-2019-11131",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11131"
    },
    {
      "name": "CVE-2020-1641",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1641"
    },
    {
      "name": "CVE-2019-11090",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11090"
    },
    {
      "name": "CVE-2013-4758",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-4758"
    },
    {
      "name": "CVE-2016-1837",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1837"
    },
    {
      "name": "CVE-2019-0131",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-0131"
    },
    {
      "name": "CVE-2019-11109",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11109"
    },
    {
      "name": "CVE-2016-5314",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-5314"
    },
    {
      "name": "CVE-2016-1839",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1839"
    },
    {
      "name": "CVE-2016-1000352",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1000352"
    },
    {
      "name": "CVE-2010-2065",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-2065"
    },
    {
      "name": "CVE-2019-0166",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-0166"
    },
    {
      "name": "CVE-2010-1411",
      "url": "https://www.cve.org/CVERecord?id=CVE-2010-1411"
    },
    {
      "name": "CVE-2016-3632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3632"
    },
    {
      "name": "CVE-2019-3855",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-3855"
    },
    {
      "name": "CVE-2015-7547",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-7547"
    },
    {
      "name": "CVE-2020-1649",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1649"
    },
    {
      "name": "CVE-2019-3857",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-3857"
    },
    {
      "name": "CVE-2012-4564",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-4564"
    },
    {
      "name": "CVE-2012-2113",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-2113"
    },
    {
      "name": "CVE-2019-11104",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11104"
    },
    {
      "name": "CVE-2019-11087",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11087"
    },
    {
      "name": "CVE-2016-1000344",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1000344"
    },
    {
      "name": "CVE-2019-11108",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11108"
    },
    {
      "name": "CVE-2014-3215",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-3215"
    },
    {
      "name": "CVE-2018-11235",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-11235"
    },
    {
      "name": "CVE-2016-6663",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6663"
    },
    {
      "name": "CVE-2018-19486",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-19486"
    },
    {
      "name": "CVE-2015-7545",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-7545"
    },
    {
      "name": "CVE-2016-4449",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4449"
    },
    {
      "name": "CVE-2019-1551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-1551"
    },
    {
      "name": "CVE-2019-11100",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11100"
    },
    {
      "name": "CVE-2018-5360",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-5360"
    },
    {
      "name": "CVE-2018-1000180",
      "url": "https://www.cve.org/CVERecord?id=CVE-2018-1000180"
    },
    {
      "name": "CVE-2019-0165",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-0165"
    },
    {
      "name": "CVE-2020-1644",
      "url": "https://www.cve.org/CVERecord?id=CVE-2020-1644"
    },
    {
      "name": "CVE-2019-11147",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-11147"
    },
    {
      "name": "CVE-2012-3401",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-3401"
    },
    {
      "name": "CVE-2019-0211",
      "url": "https://www.cve.org/CVERecord?id=CVE-2019-0211"
    },
    {
      "name": "CVE-2014-3683",
      "url": "https://www.cve.org/CVERecord?id=CVE-2014-3683"
    }
  ],
  "initial_release_date": "2020-07-09T00:00:00",
  "last_revision_date": "2020-07-09T00:00:00",
  "links": [],
  "reference": "CERTFR-2020-AVI-420",
  "revisions": [
    {
      "description": "Version initiale",
      "revision_date": "2020-07-09T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits\nJuniper. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer\nune ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0\ndistance et un contournement de la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Juniper",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11038 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11038\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11024 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11024\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11026 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11026\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11027 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11027\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11035 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11035\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11023 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11023\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11025 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11025\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11034 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11034\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11033 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11033\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11032 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11032\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11036 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11036\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11031 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11031\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11030 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11030\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11037 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11037\u0026cat=SIRT_1\u0026actp=LIST"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Juniper JSA11028 du 08 juillet 2020",
      "url": "https://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA11028\u0026cat=SIRT_1\u0026actp=LIST"
    }
  ]
}

CERTFR-2016-AVI-401

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans le noyau Linux de Suse. Elles permettent à un attaquant de provoquer un déni de service et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server for Raspberry Pi 12-SP2
SUSE	N/A	SUSE Linux Enterprise High Availability 12-SP2
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 12
SUSE	N/A	SUSE Linux Enterprise Software Development Kit 12-SP1 et 12-SP2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12-SP1 et 12-SP2
SUSE	N/A	SUSE Linux Enterprise Module for Public Cloud 12
SUSE	N/A	SUSE Linux Enterprise Workstation Extension 12-SP1 et 12-SP2
SUSE	SUSE Linux Enterprise Desktop	SUSE Linux Enterprise Desktop 12-SP1 et 12-SP2

References

Title

Publication Time

Tags

Bulletin de sécurité Suse SUSE-SU-2016:3049-1 du 07 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3039-1 du 07 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3039-1 du 07 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3049-1 du 07 décembre 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise Server for Raspberry Pi 12-SP2",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise High Availability 12-SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 12",
      "product": {
        "name": "SUSE Linux Enterprise Live Patching",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Software Development Kit 12-SP1 et 12-SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 12-SP1 et 12-SP2",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Module for Public Cloud 12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Workstation Extension 12-SP1 et 12-SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Desktop 12-SP1 et 12-SP2",
      "product": {
        "name": "SUSE Linux Enterprise Desktop",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8655"
    },
    {
      "name": "CVE-2016-8632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8632"
    }
  ],
  "initial_release_date": "2016-12-08T00:00:00",
  "last_revision_date": "2016-12-08T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3039-1 du 07    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163039-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3049-1 du 07    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163049-1.html"
    }
  ],
  "reference": "CERTFR-2016-AVI-401",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-12-08T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de Suse\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Suse",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3049-1 du 07 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3039-1 du 07 d\u00e9cembre 2016",
      "url": null
    }
  ]
}

CERTFR-2016-AVI-426

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une exécution de code arbitraire et un déni de service à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Ubuntu	Ubuntu	Ubuntu 16.04 LTS
Ubuntu	Ubuntu	Ubuntu 12.04 LTS
Ubuntu	Ubuntu	Ubuntu 16.10
Ubuntu	Ubuntu	Ubuntu 14.04 LTS

References

Title

Publication Time

Tags

Bulletin de sécurité Ubuntu USN-3161-2 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3160-1 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3162-2 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3159-2 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3160-2 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3161-3 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3159-1 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3161-4 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3161-1 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3162-1 du 20 décembre 2016	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Ubuntu 16.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 12.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 16.10",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 14.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-7097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7097"
    },
    {
      "name": "CVE-2016-7916",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7916"
    },
    {
      "name": "CVE-2016-9313",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9313"
    },
    {
      "name": "CVE-2016-7425",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7425"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-9178",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9178"
    },
    {
      "name": "CVE-2016-8633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8633"
    },
    {
      "name": "CVE-2016-4568",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4568"
    },
    {
      "name": "CVE-2016-7042",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7042"
    },
    {
      "name": "CVE-2016-8645",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8645"
    },
    {
      "name": "CVE-2016-9644",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9644"
    },
    {
      "name": "CVE-2016-8630",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8630"
    },
    {
      "name": "CVE-2015-8964",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8964"
    },
    {
      "name": "CVE-2016-8658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8658"
    },
    {
      "name": "CVE-2016-6213",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6213"
    }
  ],
  "initial_release_date": "2016-12-21T00:00:00",
  "last_revision_date": "2016-12-21T00:00:00",
  "links": [],
  "reference": "CERTFR-2016-AVI-426",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-12-21T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux d\u0027Ubuntu\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, une ex\u00e9cution de code arbitraire et un d\u00e9ni de service \u00e0\ndistance.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3161-2 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3161-2/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3160-1 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3160-1/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3162-2 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3162-2/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3159-2 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3159-2/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3160-2 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3160-2/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3161-3 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3161-3/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3159-1 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3159-1/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3161-4 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3161-4/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3161-1 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3161-1/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3162-1 du 20 d\u00e9cembre 2016",
      "url": "https://www.ubuntu.com/usn/usn-3162-1/"
    }
  ]
}

CERTFR-2017-AVI-044

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans le noyau Linux de Suse. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à l'intégrité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	N/A	SUSE Linux Enterprise Debuginfo 11-SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 11-SP4
SUSE	N/A	SUSE Linux Enterprise Software Development Kit 11-SP4
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 11-EXTRA

References

Title

Publication Time

Tags

Bulletin de sécurité Suse suse-su-20170437-1 du 09 février 2017	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20170437-1 du 09 février 2017	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise Debuginfo 11-SP4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 11-SP4",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Software Development Kit 11-SP4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 11-EXTRA",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2013-6368",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-6368"
    },
    {
      "name": "CVE-2016-7916",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7916"
    },
    {
      "name": "CVE-2016-9793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9793"
    },
    {
      "name": "CVE-2016-9756",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9756"
    },
    {
      "name": "CVE-2004-0230",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-0230"
    },
    {
      "name": "CVE-2015-1350",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-1350"
    },
    {
      "name": "CVE-2016-5696",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-5696"
    },
    {
      "name": "CVE-2016-9685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9685"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8399"
    },
    {
      "name": "CVE-2016-8633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8633"
    },
    {
      "name": "CVE-2012-6704",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-6704"
    },
    {
      "name": "CVE-2016-9576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9576"
    },
    {
      "name": "CVE-2016-1008",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1008"
    },
    {
      "name": "CVE-2016-8646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8646"
    },
    {
      "name": "CVE-2015-8962",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8962"
    },
    {
      "name": "CVE-2016-7910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7910"
    },
    {
      "name": "CVE-2016-7911",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7911"
    },
    {
      "name": "CVE-2017-5551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5551"
    },
    {
      "name": "CVE-2015-8964",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8964"
    },
    {
      "name": "CVE-2016-8632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8632"
    }
  ],
  "initial_release_date": "2017-02-10T00:00:00",
  "last_revision_date": "2017-02-10T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20170437-1 du 09 f\u00e9vrier    2017",
      "url": "https://www.suse.com//support/update/announcement/2017/suse-su-20170437-1.html"
    }
  ],
  "reference": "CERTFR-2017-AVI-044",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-02-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de Suse\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9\ndes donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Suse",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20170437-1 du 09 f\u00e9vrier 2017",
      "url": null
    }
  ]
}

CERTFR-2017-AVI-045

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	Ubuntu	Ubuntu	Ubuntu 12.04 LTS
	Ubuntu	Ubuntu	Ubuntu 16.10 s'exécutant sur Raspberry Pi 2

References

Title

Publication Time

Tags

Bulletin de sécurité Ubuntu usn-3187-2 du 09 février 2017	None	vendor-advisory
Bulletin de sécurité Ubuntu usn-3190-2 du 09 février 2017	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Ubuntu 12.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 16.10 s\u0027ex\u00e9cutant sur Raspberry Pi 2",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-9777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9777"
    },
    {
      "name": "CVE-2016-9685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9685"
    },
    {
      "name": "CVE-2016-1015",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1015"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8399"
    },
    {
      "name": "CVE-2016-1014",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1014"
    },
    {
      "name": "CVE-2016-8632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8632"
    }
  ],
  "initial_release_date": "2017-02-10T00:00:00",
  "last_revision_date": "2017-02-10T00:00:00",
  "links": [],
  "reference": "CERTFR-2017-AVI-045",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-02-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux d\u0027Ubuntu\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la\nconfidentialit\u00e9 des donn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3187-2 du 09 f\u00e9vrier 2017",
      "url": "https://www.ubuntu.com/usn/usn-3187-2/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu usn-3190-2 du 09 f\u00e9vrier 2017",
      "url": "https://www.ubuntu.com/usn/usn-3190-2/"
    }
  ]
}

CERTFR-2016-AVI-402

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans les produits BlueCoat. Elles permettent à un attaquant de provoquer un déni de service à distance et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

De multiples produits sont impactés. Se référer au bulletin de l'éditeur pour la liste exhaustive des produits.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité BlueCoat SA134 du 08 décembre 2016

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eDe multiples produits sont impact\u00e9s. Se r\u00e9f\u00e9rer au bulletin de  l\u0027\u00e9diteur pour la liste exhaustive des produits.\u003c/P\u003e",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-7039",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7039"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8666",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8666"
    },
    {
      "name": "CVE-2016-5195",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-5195"
    }
  ],
  "initial_release_date": "2016-12-09T00:00:00",
  "last_revision_date": "2016-12-09T00:00:00",
  "links": [],
  "reference": "CERTFR-2016-AVI-402",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-12-09T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits BlueCoat\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits BlueCoat",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 BlueCoat SA134 du 08 d\u00e9cembre 2016",
      "url": "https://bto.bluecoat.com/security-advisory/sa134"
    }
  ]
}

CERTFR-2017-AVI-039

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans le noyau Linux d'Ubuntu. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire, un déni de service à distance et un déni de service.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Ubuntu	Ubuntu	Ubuntu 16.04 LTS
Ubuntu	Ubuntu	Ubuntu 12.04 LTS
Ubuntu	Ubuntu	Ubuntu 16.10
Ubuntu	Ubuntu	Ubuntu 14.04 LTS

References

Title

Publication Time

Tags

Bulletin de sécurité Ubuntu USN-3188-2 du 03 février 2017	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3190-1 du 03 février 2017	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3188-1 du 03 février 2017	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3189-2 du 03 février 2017	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3189-1 du 03 février 2017	None	vendor-advisory
Bulletin de sécurité Ubuntu USN-3187-1 du 03 février 2017	None	vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Ubuntu 16.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 12.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 16.10",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    },
    {
      "description": "Ubuntu 14.04 LTS",
      "product": {
        "name": "Ubuntu",
        "vendor": {
          "name": "Ubuntu",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-9777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9777"
    },
    {
      "name": "CVE-2016-9685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9685"
    },
    {
      "name": "CVE-2016-1015",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1015"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8399"
    },
    {
      "name": "CVE-2016-1014",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1014"
    },
    {
      "name": "CVE-2016-8632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8632"
    }
  ],
  "initial_release_date": "2017-02-03T00:00:00",
  "last_revision_date": "2017-02-03T00:00:00",
  "links": [],
  "reference": "CERTFR-2017-AVI-039",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-02-03T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux d\u0027Ubuntu\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire,\nun d\u00e9ni de service \u00e0 distance et un d\u00e9ni de service.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux d\u0027Ubuntu",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3188-2 du 03 f\u00e9vrier 2017",
      "url": "https://www.ubuntu.com/usn/usn-3188-2/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3190-1 du 03 f\u00e9vrier 2017",
      "url": "https://www.ubuntu.com/usn/usn-3190-1/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3188-1 du 03 f\u00e9vrier 2017",
      "url": "https://www.ubuntu.com/usn/usn-3188-1/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3189-2 du 03 f\u00e9vrier 2017",
      "url": "https://www.ubuntu.com/usn/usn-3189-2/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3189-1 du 03 f\u00e9vrier 2017",
      "url": "https://www.ubuntu.com/usn/usn-3189-1/"
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Ubuntu USN-3187-1 du 03 f\u00e9vrier 2017",
      "url": "https://www.ubuntu.com/usn/usn-3187-1/"
    }
  ]
}

CERTFR-2017-AVI-054

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans le noyau Linux de Suse. Certaines d'entre elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur, une exécution de code arbitraire à distance et une exécution de code arbitraire.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 11-SP3-LTSS
SUSE	N/A	SUSE Linux Enterprise Point of Sale 11-SP3
SUSE	N/A	SUSE Manager 2.1
SUSE	N/A	SUSE Linux Enterprise Debuginfo 11-SP3
SUSE	N/A	SUSE OpenStack Cloud 5
SUSE	SUSE Manager Proxy	SUSE Manager Proxy 2.1
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 11-EXTRA

References

Title

Publication Time

Tags

Bulletin de sécurité Suse du 17 février 2017

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise Server 11-SP3-LTSS",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Point of Sale 11-SP3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Manager 2.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Debuginfo 11-SP3",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE OpenStack Cloud 5",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Manager Proxy 2.1",
      "product": {
        "name": "SUSE Manager Proxy",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 11-EXTRA",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-7097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7097"
    },
    {
      "name": "CVE-2016-7916",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7916"
    },
    {
      "name": "CVE-2016-9793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9793"
    },
    {
      "name": "CVE-2016-9756",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9756"
    },
    {
      "name": "CVE-2004-0230",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-0230"
    },
    {
      "name": "CVE-2015-1350",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-1350"
    },
    {
      "name": "CVE-2016-9685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9685"
    },
    {
      "name": "CVE-2016-7425",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7425"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8399"
    },
    {
      "name": "CVE-2016-8633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8633"
    },
    {
      "name": "CVE-2016-3841",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3841"
    },
    {
      "name": "CVE-2015-8956",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8956"
    },
    {
      "name": "CVE-2012-6704",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-6704"
    },
    {
      "name": "CVE-2016-9576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9576"
    },
    {
      "name": "CVE-2016-1008",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1008"
    },
    {
      "name": "CVE-2016-7042",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7042"
    },
    {
      "name": "CVE-2016-0823",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-0823"
    },
    {
      "name": "CVE-2016-8646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8646"
    },
    {
      "name": "CVE-2016-7117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7117"
    },
    {
      "name": "CVE-2015-8962",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8962"
    },
    {
      "name": "CVE-2016-7910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7910"
    },
    {
      "name": "CVE-2016-7911",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7911"
    },
    {
      "name": "CVE-2017-5551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5551"
    },
    {
      "name": "CVE-2015-8970",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8970"
    },
    {
      "name": "CVE-2015-8964",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8964"
    },
    {
      "name": "CVE-2016-6828",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6828"
    },
    {
      "name": "CVE-2016-8632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8632"
    }
  ],
  "initial_release_date": "2017-02-20T00:00:00",
  "last_revision_date": "2017-02-20T00:00:00",
  "links": [],
  "reference": "CERTFR-2017-AVI-054",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-02-20T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de Suse\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non\nsp\u00e9cifi\u00e9 par l\u0027\u00e9diteur, une ex\u00e9cution de code arbitraire \u00e0 distance et\nune ex\u00e9cution de code arbitraire.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Suse",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse du 17 f\u00e9vrier 2017",
      "url": "https://www.suse.com//support/update/announcement/2017/suse-su-20170494-1.html"
    }
  ]
}

CERTFR-2017-AVI-034

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans le noyau Linux de SUSE. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service et une atteinte à la confidentialité des données.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12-LTSS
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 12
SUSE	N/A	SUSE Linux Enterprise Debuginfo 11-SP2
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server pour SAP 12
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 11-SP2-LTSS

References

Title

Publication Time

Tags

Bulletin de sécurité SUSE SUSE-SU-2017:0333-1 du 30 janvier 2017	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2017:0307-1 du 27 janvier 2017	None	vendor-advisory
Bulletin de sécurité SUSE SSUSE-SU-2017:0303-1 du 27 janvier 2017	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2017:0307-1 du 27 janvier 2017	-	other
Bulletin de sécurité SUSE SUSE-SU-2017:0333-1 du 30 janvier 2017	-	other
Bulletin de sécurité SUSE SSUSE-SU-2017:0303-1 du 27 janvier 2017	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise Server 12-LTSS",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 12",
      "product": {
        "name": "SUSE Linux Enterprise Live Patching",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Debuginfo 11-SP2",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server pour SAP 12",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 11-SP2-LTSS",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-7097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7097"
    },
    {
      "name": "CVE-2016-7916",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7916"
    },
    {
      "name": "CVE-2016-5829",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-5829"
    },
    {
      "name": "CVE-2013-4312",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-4312"
    },
    {
      "name": "CVE-2016-4578",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4578"
    },
    {
      "name": "CVE-2016-4997",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4997"
    },
    {
      "name": "CVE-2016-4805",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4805"
    },
    {
      "name": "CVE-2016-4470",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4470"
    },
    {
      "name": "CVE-2015-7833",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-7833"
    },
    {
      "name": "CVE-2016-4485",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4485"
    },
    {
      "name": "CVE-2016-9793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9793"
    },
    {
      "name": "CVE-2016-1583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1583"
    },
    {
      "name": "CVE-2016-9756",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9756"
    },
    {
      "name": "CVE-2016-5244",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-5244"
    },
    {
      "name": "CVE-2004-0230",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-0230"
    },
    {
      "name": "CVE-2015-1350",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-1350"
    },
    {
      "name": "CVE-2016-9685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9685"
    },
    {
      "name": "CVE-2016-7425",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7425"
    },
    {
      "name": "CVE-2016-4565",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4565"
    },
    {
      "name": "CVE-2016-4913",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4913"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8399"
    },
    {
      "name": "CVE-2016-8633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8633"
    },
    {
      "name": "CVE-2015-7513",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-7513"
    },
    {
      "name": "CVE-2016-3841",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3841"
    },
    {
      "name": "CVE-2015-8956",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8956"
    },
    {
      "name": "CVE-2012-6704",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-6704"
    },
    {
      "name": "CVE-2016-4569",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4569"
    },
    {
      "name": "CVE-2016-1008",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1008"
    },
    {
      "name": "CVE-2016-6480",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6480"
    },
    {
      "name": "CVE-2016-4580",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4580"
    },
    {
      "name": "CVE-2016-9806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9806"
    },
    {
      "name": "CVE-2016-2187",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-2187"
    },
    {
      "name": "CVE-2016-7042",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7042"
    },
    {
      "name": "CVE-2016-0823",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-0823"
    },
    {
      "name": "CVE-2016-2189",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-2189"
    },
    {
      "name": "CVE-2016-4998",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4998"
    },
    {
      "name": "CVE-2016-4482",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-4482"
    },
    {
      "name": "CVE-2016-8646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8646"
    },
    {
      "name": "CVE-2016-7117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7117"
    },
    {
      "name": "CVE-2015-8962",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8962"
    },
    {
      "name": "CVE-2016-7910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7910"
    },
    {
      "name": "CVE-2016-7911",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7911"
    },
    {
      "name": "CVE-2017-5551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5551"
    },
    {
      "name": "CVE-2015-8964",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8964"
    },
    {
      "name": "CVE-2016-6828",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-6828"
    },
    {
      "name": "CVE-2016-8632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8632"
    }
  ],
  "initial_release_date": "2017-01-31T00:00:00",
  "last_revision_date": "2017-01-31T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2017:0307-1 du 27 janvier    2017",
      "url": "https://www.suse.com//support/update/announcement/2017/suse-su-20170307-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2017:0333-1 du 30 janvier    2017",
      "url": "https://www.suse.com//support/update/announcement/2017/suse-su-20170333-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SSUSE-SU-2017:0303-1 du 27    janvier 2017",
      "url": "https://www.suse.com//support/update/announcement/2017/suse-su-20170303-1.html"
    }
  ],
  "reference": "CERTFR-2017-AVI-034",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-01-31T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de SUSE\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service et une atteinte \u00e0 la confidentialit\u00e9 des\ndonn\u00e9es.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2017:0333-1 du 30 janvier 2017",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2017:0307-1 du 27 janvier 2017",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SSUSE-SU-2017:0303-1 du 27 janvier 2017",
      "url": null
    }
  ]
}

CERTFR-2016-AVI-404

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans le noyau Linux de Suse. Elles permettent à un attaquant de provoquer un déni de service à distance, un déni de service et une élévation de privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	N/A	SUSE Linux Enterprise Module pour Public Cloud 12
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12-LTSS
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server pour SAP 12

References

Title

Publication Time

Tags

Bulletin de sécurité Suse SUSE-SU-2016:3063-1 du 09 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3063-1 du 09 décembre 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise Module pour Public Cloud 12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 12-LTSS",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server pour SAP 12",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8655"
    },
    {
      "name": "CVE-2016-8632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8632"
    }
  ],
  "initial_release_date": "2016-12-09T00:00:00",
  "last_revision_date": "2016-12-09T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3063-1 du 09    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163063-1.html"
    }
  ],
  "reference": "CERTFR-2016-AVI-404",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-12-09T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de Suse\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance, un d\u00e9ni de service\net une \u00e9l\u00e9vation de privil\u00e8ges.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Suse",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3063-1 du 09 d\u00e9cembre 2016",
      "url": null
    }
  ]
}

CERTFR-2016-AVI-407

Vulnerability from certfr_avis

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
SUSE	N/A	SUSE Linux Enterprise pour SAP 12
SUSE	SUSE Linux Enterprise Server	SUSE Linux Enterprise Server 12-LTSS
SUSE	SUSE Linux Enterprise Live Patching	SUSE Linux Enterprise Live Patching 12

References

Title

Publication Time

Tags

Bulletin de sécurité Suse SUSE-SU-2016:3249-1 du 22 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3113-1 du 13 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3116-1 du 13 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3093-1 du 12 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3096-1 du 12 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3109-1 du 13 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3112-1 du 13 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3183-1 du 16 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3197-1 du 20 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3111-1 du 13 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3205-1 du 21 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3169-1 du 15 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3117-1 du 13 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3206-1 du 21 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3098-1 du 12 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3100-1 du 12 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3104-1 du 12 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3094-1 du 12 décembre 2016	None	vendor-advisory
Bulletin de sécurité Suse SUSE-SU-2016:3100-1 du 12 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3169-1 du 15 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3205-1 du 21 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3206-1 du 21 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3117-1 du 13 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3183-1 du 16 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3119-1 du 13 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3113-1 du 13 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3109-1 du 13 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3112-1 du 13 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3249-1 du 22 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3111-1 du 13 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3093-1 du 12 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3247-1 du 22 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3116-1 du 13 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3094-1 du 12 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3098-1 du 12 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3104-1 du 12 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3096-1 du 12 décembre 2016	-	other
Bulletin de sécurité Suse SUSE-SU-2016:3197-1 du 20 décembre 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise pour SAP 12",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Server 12-LTSS",
      "product": {
        "name": "SUSE Linux Enterprise Server",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Live Patching 12",
      "product": {
        "name": "SUSE Linux Enterprise Live Patching",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8655"
    },
    {
      "name": "CVE-2016-7117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7117"
    }
  ],
  "initial_release_date": "2016-12-13T00:00:00",
  "last_revision_date": "2016-12-23T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3100-1 du 12    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163100-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3169-1 du 15    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163169-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3205-1 du 21    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163205-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3206-1 du 21    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163206-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3117-1 du 13    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163117-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3183-1 du 16    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163183-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3119-1 du 13    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163119-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3113-1 du 13    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163113-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3109-1 du 13    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163109-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3112-1 du 13    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163112-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3249-1 du 22    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163249-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3111-1 du 13    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163111-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3093-1 du 12    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163093-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3247-1 du 22    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163247-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3116-1 du 13    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163116-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3094-1 du 12    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163094-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3098-1 du 12    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163098-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3104-1 du 12    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163104-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3096-1 du 12    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163096-1.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3197-1 du 20    d\u00e9cembre 2016",
      "url": "https://www.suse.com//support/update/announcement/2016/suse-su-20163197-1.html"
    }
  ],
  "reference": "CERTFR-2016-AVI-407",
  "revisions": [
    {
      "description": "ajout de nouveaux bulletins de s\u00e9curit\u00e9 et mise \u00e0 jour des syst\u00e8mes affect\u00e9s.",
      "revision_date": "2016-12-13T00:00:00.000000"
    },
    {
      "description": "ajout de nouveaux bulletins de s\u00e9curit\u00e9.",
      "revision_date": "2016-12-14T00:00:00.000000"
    },
    {
      "description": "ajout de nouveaux bulletins de s\u00e9curit\u00e9.",
      "revision_date": "2016-12-19T00:00:00.000000"
    },
    {
      "description": "ajout de nouveaux bulletins de s\u00e9curit\u00e9 et mise \u00e0 jour des syst\u00e8mes affect\u00e9s.",
      "revision_date": "2016-12-21T00:00:00.000000"
    },
    {
      "description": "ajout de nouveaux bulletins de s\u00e9curit\u00e9.",
      "revision_date": "2016-12-22T00:00:00.000000"
    },
    {
      "description": "ajout de nouveaux bulletins de s\u00e9curit\u00e9.",
      "revision_date": "2016-12-23T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de Suse\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et un d\u00e9ni de service.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Suse",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3249-1 du 22 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3113-1 du 13 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3116-1 du 13 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3093-1 du 12 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3096-1 du 12 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3109-1 du 13 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3112-1 du 13 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3183-1 du 16 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3197-1 du 20 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3111-1 du 13 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3205-1 du 21 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3169-1 du 15 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3117-1 du 13 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3206-1 du 21 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3098-1 du 12 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3100-1 du 12 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3104-1 du 12 d\u00e9cembre 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse SUSE-SU-2016:3094-1 du 12 d\u00e9cembre 2016",
      "url": null
    }
  ]
}

CERTFR-2017-AVI-042

Vulnerability from certfr_avis

De multiples vulnérabilités ont été corrigées dans le noyau Linux de Suse. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une exécution de code arbitraire et un déni de service.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

SUSE Linux Enterprise Real Time Extension 12-SP1

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Suse suse-su-20170407-1 du 06 février 2017	None	vendor-advisory
Bulletin de sécurité Suse suse-su-20170407-1 du 06 février 2017	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eSUSE Linux Enterprise Real Time Extension 12-SP1\u003c/P\u003e",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-9794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9794"
    },
    {
      "name": "CVE-2017-2584",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-2584"
    },
    {
      "name": "CVE-2016-7914",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7914"
    },
    {
      "name": "CVE-2016-7913",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7913"
    },
    {
      "name": "CVE-2016-9793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9793"
    },
    {
      "name": "CVE-2016-9756",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9756"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8399"
    },
    {
      "name": "CVE-2016-8633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8633"
    },
    {
      "name": "CVE-2015-8963",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8963"
    },
    {
      "name": "CVE-2016-9083",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9083"
    },
    {
      "name": "CVE-2016-9576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9576"
    },
    {
      "name": "CVE-2017-2583",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-2583"
    },
    {
      "name": "CVE-2016-1008",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1008"
    },
    {
      "name": "CVE-2016-9806",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9806"
    },
    {
      "name": "CVE-2016-8655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8655"
    },
    {
      "name": "CVE-2016-8645",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8645"
    },
    {
      "name": "CVE-2015-8962",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8962"
    },
    {
      "name": "CVE-2016-7910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7910"
    },
    {
      "name": "CVE-2016-7911",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7911"
    },
    {
      "name": "CVE-2017-5551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5551"
    },
    {
      "name": "CVE-2015-8964",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8964"
    },
    {
      "name": "CVE-2016-9084",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9084"
    },
    {
      "name": "CVE-2016-8632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8632"
    }
  ],
  "initial_release_date": "2017-02-07T00:00:00",
  "last_revision_date": "2017-02-07T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20170407-1 du 06 f\u00e9vrier    2017",
      "url": "https://www.suse.com//support/update/announcement/2017/suse-su-20170407-1.html"
    }
  ],
  "reference": "CERTFR-2017-AVI-042",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-02-07T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de Suse\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, une ex\u00e9cution de code arbitraire et un d\u00e9ni de service.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de Suse",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Suse suse-su-20170407-1 du 06 f\u00e9vrier 2017",
      "url": null
    }
  ]
}

CERTFR-2017-AVI-131

Vulnerability from certfr_avis

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

	Vendor	Product	Description
	SUSE	SUSE Linux Enterprise Real Time	SUSE Linux Enterprise Real Time Extension 11-SP4
	SUSE	N/A	SUSE Linux Enterprise Debuginfo 11-SP4

References

Title

Publication Time

Tags

Bulletin de sécurité SUSE SUSE-SU-2017:1102-1 du 25 avril 2017	None	vendor-advisory
Bulletin de sécurité SUSE SUSE-SU-2017:1102-1 du 25 avril 2017	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "SUSE Linux Enterprise Real Time Extension 11-SP4",
      "product": {
        "name": "SUSE Linux Enterprise Real Time",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    },
    {
      "description": "SUSE Linux Enterprise Debuginfo 11-SP4",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "SUSE",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-9794",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9794"
    },
    {
      "name": "CVE-2013-6368",
      "url": "https://www.cve.org/CVERecord?id=CVE-2013-6368"
    },
    {
      "name": "CVE-2016-7097",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7097"
    },
    {
      "name": "CVE-2016-7916",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7916"
    },
    {
      "name": "CVE-2016-9793",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9793"
    },
    {
      "name": "CVE-2016-9756",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9756"
    },
    {
      "name": "CVE-2004-0230",
      "url": "https://www.cve.org/CVERecord?id=CVE-2004-0230"
    },
    {
      "name": "CVE-2015-1350",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-1350"
    },
    {
      "name": "CVE-2016-5696",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-5696"
    },
    {
      "name": "CVE-2016-9685",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9685"
    },
    {
      "name": "CVE-2016-9555",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9555"
    },
    {
      "name": "CVE-2016-8399",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8399"
    },
    {
      "name": "CVE-2016-8633",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8633"
    },
    {
      "name": "CVE-2016-3841",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-3841"
    },
    {
      "name": "CVE-2015-8956",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8956"
    },
    {
      "name": "CVE-2012-6704",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-6704"
    },
    {
      "name": "CVE-2016-9576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9576"
    },
    {
      "name": "CVE-2016-1008",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1008"
    },
    {
      "name": "CVE-2016-7042",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7042"
    },
    {
      "name": "CVE-2016-8646",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8646"
    },
    {
      "name": "CVE-2016-7117",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7117"
    },
    {
      "name": "CVE-2015-8962",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8962"
    },
    {
      "name": "CVE-2016-7910",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7910"
    },
    {
      "name": "CVE-2016-7911",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-7911"
    },
    {
      "name": "CVE-2017-5551",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-5551"
    },
    {
      "name": "CVE-2015-8964",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-8964"
    },
    {
      "name": "CVE-2016-8632",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-8632"
    }
  ],
  "initial_release_date": "2017-04-26T00:00:00",
  "last_revision_date": "2017-04-26T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2017:1102-1 du 25 avril    2017",
      "url": "https://www.suse.com/support/update/announcement/2017/suse-su-20171102-1/"
    }
  ],
  "reference": "CERTFR-2017-AVI-131",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-04-26T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "D\u00e9ni de service"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003ele noyau Linux de SUSE\u003c/span\u003e. Certaines d\u0027entre elles\npermettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire\n\u00e0 distance, un d\u00e9ni de service \u00e0 distance et un d\u00e9ni de service.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans le noyau Linux de SUSE",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 SUSE SUSE-SU-2017:1102-1 du 25 avril 2017",
      "url": null
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2016-9555 (GCVE-0-2016-9555)

Vulnerability from cvelistv5

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Vulnerability from certfr_avis

Solution

Tags

Sightings

Nomenclature