Oracle Linux Bulletin - April 2017

Description

The Oracle Linux Bulletin lists all CVEs that had been resolved and announced in Oracle Linux Security Advisories (ELSA) in the last one month prior to the release of the bulletin. Oracle Linux Bulletins are published on the same day as Oracle Critical Patch Updates are released. These bulletins will also be updated for the following two months after their release (i.e., the two months between the normal quarterly Critical Patch Update publication dates) to cover all CVEs that had been resolved in those two months following the bulletin's publication. In addition, Oracle Linux Bulletins may also be updated for vulnerability fixes deemed too critical to wait for the next scheduled bulletin publication date.

Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Oracle Linux Bulletin fixes as soon as possible.

Patch Availability

Please see ULN Advisory https://linux.oracle.com/ol-pad-bulletin

Oracle Linux Bulletin Schedule

Oracle Linux Bulletins are released on the Tuesday closest to the 17th day of January, April, July and October. The next four dates are:

  • 18 July 2017
  • 17 October 2017
  • 16 January 2018
  • 17 April 2018

References

Modification History

2017-June-19 Rev 3. New CVEs added.
2017-May-18 Rev 2. New CVEs added.
2017-April-18 Rev 1. Initial Release

Oracle Linux Executive Summary

This Oracle Linux Bulletin contains 206 new security fixes for the Oracle Linux. 147 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password.

Oracle Linux Risk Matrix

Revision 3: Published on 2017-06-19

CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen­tication Confid­entiality Inte­grity Avail­ability
CVE-2017-8890 Oracle Linux Unbreakable Enterprise kernel Yes 10.0 Network Low None Complete Complete Complete 6,7
CVE-2017-7494 Oracle Linux samba Yes 10.0 Network Low None Complete Complete Complete 6,7
CVE-2017-7494 Oracle Linux samba3x Yes 10.0 Network Low None Complete Complete Complete 5
CVE-2017-7494 Oracle Linux samba4 Yes 10.0 Network Low None Complete Complete Complete 6
CVE-2017-7895 Oracle Linux Unbreakable Enterprise kernel Yes 10.0 Network Low None Complete Complete Complete 5,6
CVE-2017-8890 Oracle Linux Unbreakable Enterprise kernel Yes 10.0 Network Low None Complete Complete Complete 5,6
CVE-2017-8779 Oracle Linux libtirpc Yes 7.8 Network Low None None None Complete 6,7
CVE-2017-8779 Oracle Linux rpcbind Yes 7.8 Network Low None None None Complete 6,7
CVE-2017-7308 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2017-8422 Oracle Linux kdelibs No 7.2 Local Low None Complete Complete Complete 7
CVE-2017-7308 Oracle Linux kernel No 7.2 Local Low None Complete Complete Complete 7
CVE-2017-5986 Oracle Linux kernel Yes 7.1 Network Medium None None None Complete 7
CVE-2017-1000367 Oracle Linux sudo No 6.9 Local Medium None Complete Complete Complete 5,6,7
CVE-2016-7910 Oracle Linux kernel No 6.2 Local High None Complete Complete Complete 7
CVE-2017-7749 Oracle Linux firefox Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2017-6214 Oracle Linux kernel Yes 5.0 Network Low None None None Partial 6
CVE-2017-7502 Oracle Linux nss Yes 5.0 Network Low None None None Partial 6,7
CVE-2017-7980 Oracle Linux qemu-kvm No 4.9 Adjacent network Medium Single Partial Partial Partial 7
CVE-2016-10208 Oracle Linux kernel No 4.7 Local Medium None None None Complete 7
CVE-2016-8646 Oracle Linux kernel No 4.7 Local Medium None None None Complete 7
CVE-2016-2125 Oracle Linux samba No 4.3 Adjacent network Medium None Partial Partial None 7
CVE-2017-7718 Oracle Linux qemu-kvm No 2.9 Adjacent network High Single Partial None Partial 7
CVE-2016-2126 Oracle Linux samba No 2.3 Adjacent network Medium Single None None Partial 7
CVE-2017-5470 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5472 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7750 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7751 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7752 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7754 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7756 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7757 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7758 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7764 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7771 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7772 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7773 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7774 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7775 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7776 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7777 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-7778 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-2619 Oracle Linux samba Yes 0.0 Network Undefined None None None None 7

Revision 2: Published on 2017-05-18

CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen­tication Confid­entiality Inte­grity Avail­ability
CVE-2017-7895 Oracle Linux Unbreakable Enterprise kernel Yes 10.0 Network Low None Complete Complete Complete 6,7
CVE-2017-7895 Oracle Linux Unbreakable Enterprise kernel Yes 10.0 Network Low None Complete Complete Complete 5,6
CVE-2017-5461 Oracle Linux nss and nss-util Yes 7.5 Network Low None Partial Partial Partial 6,7
CVE-2017-5461 Oracle Linux nss Yes 7.5 Network Low None Partial Partial Partial 5
CVE-2016-10195 Oracle Linux thunderbird Yes 7.5 Network Low None Partial Partial Partial 6,7
CVE-2017-2647 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 5,6
CVE-2017-7184 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 5,6
CVE-2017-3526 Oracle Linux java-1.7.0-openjdk Yes 7.1 Network Medium None None None Complete 6,7
CVE-2017-3526 Oracle Linux java-1.8.0-openjdk Yes 7.1 Network Medium None None None Complete 7
CVE-2017-3526 Oracle Linux java-1.8.0-openjdk Yes 7.1 Network Medium None None None Complete 6
CVE-2017-5986 Oracle Linux Unbreakable Enterprise kernel Yes 7.1 Network Medium None None None Complete 5,6
CVE-2017-8291 Oracle Linux ghostscript Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-10249 Oracle Linux jasper Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-10251 Oracle Linux jasper Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-8654 Oracle Linux jasper Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-9560 Oracle Linux jasper Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-5203 Oracle Linux jasper Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-5221 Oracle Linux jasper Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2016-1577 Oracle Linux jasper Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2016-8690 Oracle Linux jasper Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2016-8693 Oracle Linux jasper Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2016-8884 Oracle Linux jasper Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2016-8885 Oracle Linux jasper Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2016-9262 Oracle Linux jasper Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2016-9591 Oracle Linux jasper Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2016-10196 Oracle Linux thunderbird Yes 5.0 Network Low None None None Partial 6,7
CVE-2016-10197 Oracle Linux thunderbird Yes 5.0 Network Low None None None Partial 6,7
CVE-2017-6214 Oracle Linux Unbreakable Enterprise kernel Yes 5.0 Network Low None None None Partial 5,6
CVE-2016-9603 Oracle Linux qemu-kvm No 4.9 Adjacent network Medium Single Partial Partial Partial 6,7
CVE-2017-7980 Oracle Linux qemu-kvm No 4.9 Adjacent network Medium Single Partial Partial Partial 6
CVE-2015-6937 Oracle Linux Unbreakable Enterprise kernel No 4.9 Local Low None None None Complete 5,6
CVE-2017-2583 Oracle Linux Unbreakable Enterprise kernel No 4.9 Adjacent network Medium Single Partial Partial Partial 5,6
CVE-2017-5669 Oracle Linux Unbreakable Enterprise kernel No 4.6 Local Low None Partial Partial Partial 5,6
CVE-2016-10248 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-1867 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-2089 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-2116 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-8691 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-8692 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-8883 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-9388 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-9389 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-9390 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-9391 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-9392 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-9393 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-9394 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-9583 Oracle Linux jasper Yes 4.3 Network Medium None None None Partial 6,7
CVE-2017-3533 Oracle Linux java-1.7.0-openjdk Yes 4.3 Network Medium None None Partial None 6,7
CVE-2017-3544 Oracle Linux java-1.7.0-openjdk Yes 4.3 Network Medium None None Partial None 6,7
CVE-2017-3533 Oracle Linux java-1.8.0-openjdk Yes 4.3 Network Medium None None Partial None 7
CVE-2017-3544 Oracle Linux java-1.8.0-openjdk Yes 4.3 Network Medium None None Partial None 7
CVE-2017-3533 Oracle Linux java-1.8.0-openjdk Yes 4.3 Network Medium None None Partial None 6
CVE-2017-3544 Oracle Linux java-1.8.0-openjdk Yes 4.3 Network Medium None None Partial None 6
CVE-2017-3509 Oracle Linux java-1.7.0-openjdk Yes 4.0 Network High None Partial Partial None 6,7
CVE-2017-3509 Oracle Linux java-1.8.0-openjdk Yes 4.0 Network High None Partial Partial None 7
CVE-2017-3509 Oracle Linux java-1.8.0-openjdk Yes 4.0 Network High None Partial Partial None 6
CVE-2015-5257 Oracle Linux Unbreakable Enterprise kernel No 4.0 Local High None None None Complete 5,6
CVE-2016-2782 Oracle Linux Unbreakable Enterprise kernel No 4.0 Local High None None None Complete 5,6
CVE-2017-2633 Oracle Linux qemu-kvm No 3.8 Adjacent network Medium Single None Partial Partial 6
CVE-2017-3511 Oracle Linux java-1.7.0-openjdk No 3.7 Local High None Partial Partial Partial 6,7
CVE-2017-3511 Oracle Linux java-1.8.0-openjdk No 3.7 Local High None Partial Partial Partial 7
CVE-2017-3511 Oracle Linux java-1.8.0-openjdk No 3.7 Local High None Partial Partial Partial 6
CVE-2017-7718 Oracle Linux qemu-kvm No 2.9 Adjacent network High Single Partial None Partial 6
CVE-2016-9387 Oracle Linux jasper Yes 2.6 Network High None None Partial None 6,7
CVE-2016-9600 Oracle Linux jasper Yes 2.6 Network High None None None Partial 6,7
CVE-2017-3539 Oracle Linux java-1.7.0-openjdk No 2.1 Network High Single None Partial None 6,7
CVE-2017-3539 Oracle Linux java-1.8.0-openjdk No 2.1 Network High Single None Partial None 7
CVE-2017-3539 Oracle Linux java-1.8.0-openjdk No 2.1 Network High Single None Partial None 6
CVE-2015-6252 Oracle Linux Unbreakable Enterprise kernel No 1.5 Local Medium Single None None Partial 5,6
CVE-2017-3136 Oracle Linux bind Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-3137 Oracle Linux bind Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-3139 Oracle Linux bind Yes 0.0 Network Undefined None None None None 6
CVE-2017-5429 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5430 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 7
CVE-2017-5432 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5433 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5434 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5435 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5436 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5437 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5438 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5439 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5440 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5441 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5442 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5443 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5444 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5445 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5446 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5447 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5448 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5449 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5451 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 7
CVE-2017-5454 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 7
CVE-2017-5455 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 7
CVE-2017-5456 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 7
CVE-2017-5459 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5460 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5464 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5465 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5466 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 7
CVE-2017-5467 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 7
CVE-2017-5469 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-3157 Oracle Linux libreoffice Yes 0.0 Network Undefined None None None None 6
CVE-2017-5429 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5432 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5433 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5434 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5435 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5436 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5438 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5439 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5440 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5441 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5442 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5443 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5444 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5445 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5446 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5447 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5449 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5451 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5454 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5459 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5460 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5464 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5465 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5466 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5467 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-5469 Oracle Linux thunderbird Yes 0.0 Network Undefined None None None None 6,7
CVE-2015-9731 Oracle Linux Unbreakable Enterprise kernel Yes 0.0 Network Undefined None None None None 5,6

Revision 1: Published on 2017-04-18

CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen­tication Confid­entiality Inte­grity Avail­ability
CVE-2016-10229 Oracle Linux Unbreakable Enterprise kernel Yes 10.0 Network Low None Complete Complete Complete 5,6
CVE-2017-5495 Oracle Linux quagga Yes 7.8 Network Low None None None Complete 6
CVE-2017-6001 Oracle Linux Unbreakable Enterprise kernel Yes 7.6 Network High None Complete Complete Complete 6,7
CVE-2017-5897 Oracle Linux Unbreakable Enterprise kernel Yes 7.5 Network Low None Partial Partial Partial 6,7
CVE-2017-5336 Oracle Linux gnutls Yes 7.5 Network Low None Partial Partial Partial 6
CVE-2017-5337 Oracle Linux gnutls Yes 7.5 Network Low None Partial Partial Partial 6
CVE-2017-2636 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2017-6347 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2017-7184 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2017-7187 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2017-2636 Oracle Linux kernel No 7.2 Local Low None Complete Complete Complete 6
CVE-2017-2636 Oracle Linux kernel No 7.2 Local Low None Complete Complete Complete 7
CVE-2015-4700 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 5,6
CVE-2017-2636 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 5,6
CVE-2017-7187 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 5,6
CVE-2017-5986 Oracle Linux Unbreakable Enterprise kernel Yes 7.1 Network Medium None None None Complete 6,7
CVE-2016-10088 Oracle Linux Unbreakable Enterprise kernel No 6.9 Local Medium None Complete Complete Complete 6,7
CVE-2016-7543 Oracle Linux bash No 6.9 Local Medium None Complete Complete Complete 6
CVE-2016-10088 Oracle Linux kernel No 6.9 Local Medium None Complete Complete Complete 6
CVE-2016-9793 Oracle Linux kernel No 6.9 Local Medium None Complete Complete Complete 7
CVE-2016-10088 Oracle Linux Unbreakable Enterprise kernel No 6.9 Local Medium None Complete Complete Complete 5,6
CVE-2016-8399 Oracle Linux Unbreakable Enterprise kernel No 6.8 Local Low Single Complete Complete Complete 6,7
CVE-2016-8632 Oracle Linux Unbreakable Enterprise kernel No 6.8 Local Low Single Complete Complete Complete 6,7
CVE-2016-8399 Oracle Linux kernel No 6.8 Local Low Single Complete Complete Complete 6
CVE-2016-5139 Oracle Linux openjpeg Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-5158 Oracle Linux openjpeg Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-5159 Oracle Linux openjpeg Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-9675 Oracle Linux openjpeg Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2017-5581 Oracle Linux tigervnc Yes 6.8 Network Medium None Partial Partial Partial 6
CVE-2016-8399 Oracle Linux Unbreakable Enterprise kernel No 6.8 Local Low Single Complete Complete Complete 5,6
CVE-2016-7910 Oracle Linux Unbreakable Enterprise kernel No 6.2 Local High None Complete Complete Complete 6,7
CVE-2016-7910 Oracle Linux kernel No 6.2 Local High None Complete Complete Complete 6
CVE-2016-2384 Oracle Linux kernel No 6.2 Local High None Complete Complete Complete 6
CVE-2016-9576 Oracle Linux kernel No 6.2 Local High None Complete Complete Complete 6
CVE-2015-8325 Oracle Linux openssh No 6.2 Local High None Complete Complete Complete 6
CVE-2016-7910 Oracle Linux Unbreakable Enterprise kernel No 6.2 Local High None Complete Complete Complete 5,6
CVE-2016-8633 Oracle Linux Unbreakable Enterprise kernel No 5.9 Local Medium None Partial Partial Complete 6,7
CVE-2016-8633 Oracle Linux Unbreakable Enterprise kernel No 5.9 Local Medium None Partial Partial Complete 5,6
CVE-2016-7163 Oracle Linux openjpeg Yes 5.8 Network Medium None None Partial Partial 6,7
CVE-2016-6816 Oracle Linux tomcat Yes 5.8 Network Medium None Partial Partial None 7
CVE-2014-9761 Oracle Linux glibc Yes 5.1 Network High None Partial Partial Partial 6
CVE-2015-8778 Oracle Linux glibc Yes 5.1 Network High None Partial Partial Partial 6
CVE-2015-8779 Oracle Linux glibc Yes 5.1 Network High None Partial Partial Partial 6
CVE-2017-5970 Oracle Linux Unbreakable Enterprise kernel Yes 5.0 Network Low None None None Partial 6,7
CVE-2017-6214 Oracle Linux Unbreakable Enterprise kernel Yes 5.0 Network Low None None None Partial 6,7
CVE-2017-5335 Oracle Linux gnutls Yes 5.0 Network Low None None None Partial 6
CVE-2016-10142 Oracle Linux kernel Yes 5.0 Network Low None None None Partial 6
CVE-2016-1245 Oracle Linux quagga Yes 5.0 Network Low None None None Partial 6
CVE-2016-10207 Oracle Linux tigervnc Yes 5.0 Network Low None None None Partial 6
CVE-2016-10142 Oracle Linux Unbreakable Enterprise kernel Yes 5.0 Network Low None None None Partial 5,6
CVE-2015-8952 Oracle Linux Unbreakable Enterprise kernel No 4.9 Local Low None None None Complete 6,7
CVE-2016-10147 Oracle Linux Unbreakable Enterprise kernel No 4.9 Local Low None None None Complete 6,7
CVE-2016-3140 Oracle Linux Unbreakable Enterprise kernel No 4.9 Local Low None None None Complete 6,7
CVE-2016-3951 Oracle Linux Unbreakable Enterprise kernel No 4.9 Local Low None None None Complete 6,7
CVE-2016-8645 Oracle Linux Unbreakable Enterprise kernel No 4.9 Local Low None None None Complete 6,7
CVE-2017-2583 Oracle Linux Unbreakable Enterprise kernel No 4.9 Adjacent network Medium Single Partial Partial Partial 6,7
CVE-2016-7042 Oracle Linux kernel No 4.9 Local Low None None None Complete 6
CVE-2016-8650 Oracle Linux kernel No 4.9 Local Low None None None Complete 7
CVE-2016-3140 Oracle Linux Unbreakable Enterprise kernel No 4.9 Local Low None None None Complete 5,6
CVE-2016-8645 Oracle Linux Unbreakable Enterprise kernel No 4.9 Local Low None None None Complete 5,6
CVE-2016-10208 Oracle Linux Unbreakable Enterprise kernel No 4.7 Local Medium None None None Complete 6,7
CVE-2016-6480 Oracle Linux kernel No 4.7 Local Medium None None None Complete 6
CVE-2016-3672 Oracle Linux Unbreakable Enterprise kernel No 4.6 Local Low None Partial Partial Partial 6,7
CVE-2017-6345 Oracle Linux Unbreakable Enterprise kernel No 4.6 Local Low None Partial Partial Partial 6,7
CVE-2015-5707 Oracle Linux Unbreakable Enterprise kernel No 4.6 Local Low None Partial Partial Partial 5,6
CVE-2016-3672 Oracle Linux Unbreakable Enterprise kernel No 4.6 Local Low None Partial Partial Partial 5,6
CVE-2017-6345 Oracle Linux Unbreakable Enterprise kernel No 4.6 Local Low None Partial Partial Partial 5,6
CVE-2016-7425 Oracle Linux Unbreakable Enterprise kernel No 4.4 Local Medium None Partial Partial Partial 6,7
CVE-2015-8869 Oracle Linux libguestfs No 4.4 Local Medium None Partial Partial Partial 6
CVE-2015-8869 Oracle Linux ocaml No 4.4 Local Medium None Partial Partial Partial 6
CVE-2016-7425 Oracle Linux Unbreakable Enterprise kernel No 4.4 Local Medium None Partial Partial Partial 5,6
CVE-2017-2596 Oracle Linux Unbreakable Enterprise kernel No 4.3 Adjacent network High Single None None Complete 6,7
CVE-2016-8610 Oracle Linux gnutls Yes 4.3 Network Medium None None None Partial 6
CVE-2016-2161 Oracle Linux httpd Yes 4.3 Network Medium None None None Partial 7
CVE-2016-8743 Oracle Linux httpd Yes 4.3 Network Medium None None Partial None 7
CVE-2017-6009 Oracle Linux icoutils Yes 4.3 Network Medium None None None Partial 7
CVE-2017-6010 Oracle Linux icoutils Yes 4.3 Network Medium None None None Partial 7
CVE-2017-6011 Oracle Linux icoutils Yes 4.3 Network Medium None None None Partial 7
CVE-2016-9573 Oracle Linux openjpeg Yes 4.3 Network Medium None None None Partial 7
CVE-2016-2342 Oracle Linux quagga Yes 4.3 Network Medium None None None Partial 6
CVE-2016-2125 Oracle Linux samba No 4.3 Adjacent network Medium None Partial Partial None 6
CVE-2016-2125 Oracle Linux samba4 No 4.3 Adjacent network Medium None Partial Partial None 6
CVE-2016-8745 Oracle Linux tomcat Yes 4.3 Network Medium None Partial None None 7
CVE-2013-4075 Oracle Linux wireshark Yes 4.3 Network Medium None None None Partial 6
CVE-2015-3811 Oracle Linux wireshark Yes 4.3 Network Medium None None None Partial 6
CVE-2015-3812 Oracle Linux wireshark Yes 4.3 Network Medium None None None Partial 6
CVE-2015-3813 Oracle Linux wireshark Yes 4.3 Network Medium None None None Partial 6
CVE-2015-8776 Oracle Linux glibc Yes 4.0 Network High None Partial None Partial 6
CVE-2016-0736 Oracle Linux httpd Yes 4.0 Network High None Partial Partial None 7
CVE-2016-3712 Oracle Linux qemu-kvm No 3.8 Adjacent network Medium Single Partial None Partial 6
CVE-2016-0634 Oracle Linux bash No 3.7 Local High None Partial Partial Partial 6
CVE-2016-2069 Oracle Linux kernel No 3.7 Local High None Partial Partial Partial 6
CVE-2016-7097 Oracle Linux Unbreakable Enterprise kernel No 3.3 Local Medium None Partial Partial None 6,7
CVE-2016-9588 Oracle Linux Unbreakable Enterprise kernel No 3.3 Adjacent network Low None None None Partial 6,7
CVE-2016-7097 Oracle Linux kernel No 3.3 Local Medium None Partial Partial None 6
CVE-2013-2236 Oracle Linux quagga No 3.3 Adjacent network Low None None None Partial 6
CVE-2016-4049 Oracle Linux quagga Yes 2.6 Network High None None None Partial 6
CVE-2016-9756 Oracle Linux Unbreakable Enterprise kernel No 2.3 Adjacent network Medium Single Partial None None 6,7
CVE-2016-2126 Oracle Linux samba No 2.3 Adjacent network Medium Single None None Partial 6
CVE-2016-2126 Oracle Linux samba4 No 2.3 Adjacent network Medium Single None None Partial 6
CVE-2016-4580 Oracle Linux Unbreakable Enterprise kernel No 2.1 Local Low None Partial None None 5,6
CVE-2016-9178 Oracle Linux Unbreakable Enterprise kernel No 1.9 Local Medium None Partial None None 6,7
CVE-2016-9401 Oracle Linux bash No 1.9 Local Medium None None None Partial 6
CVE-2017-2668 Oracle Linux 389-ds-base Yes 0.0 Network Undefined None None None None 6,7
CVE-2017-2616 Oracle Linux coreutils Yes 0.0 Network Undefined None None None None 6
CVE-2017-2628 Oracle Linux curl Yes 0.0 Network Undefined None None None None 6
CVE-2017-5428 Oracle Linux firefox Yes 0.0 Network Undefined None None None None 7
CVE-2017-5208 Oracle Linux icoutils Yes 0.0 Network Undefined None None None None 7
CVE-2017-5332 Oracle Linux icoutils Yes 0.0 Network Undefined None None None None 7
CVE-2017-5333 Oracle Linux icoutils Yes 0.0 Network Undefined None None None None 7
CVE-2017-2618 Oracle Linux kernel Yes 0.0 Network Undefined None None None None 7
CVE-2017-3157 Oracle Linux libreoffice Yes 0.0 Network Undefined None None None None 7
CVE-2017-2616 Oracle Linux util-linux Yes 0.0 Network Undefined None None None None 7