Oracle Linux Bulletin - October 2015

Description

The Oracle Linux Bulletin lists all CVEs that had been resolved and announced in Oracle Linux Security Advisories (ELSA) in the last one month prior to the release of the bulletin. Oracle Linux Bulletins are published on the same day as Oracle Critical Patch Updates are released. These bulletins will also be updated on the Tuesday closest to the 17th of the following two months after their release (i.e., the two months between the normal quarterly Critical Patch Update publication dates) to cover all CVEs that had been resolved in those two months following the bulletin's publication. In addition, Oracle Linux Bulletins may also be updated for vulnerability fixes deemed too critical to wait for the next scheduled bulletin publication date.

Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Oracle Linux Bulletin fixes as soon as possible.

Patch Availability

Please see ULN Advisory http://linux.oracle.com/ol-pad-bulletin

Oracle Linux Bulletin Schedule

Oracle Linux Bulletins are released on the Tuesday closest to the 17th day of January, April, July and October. The next four dates are:

  • 19 January 2016
  • 19 April 2016
  • 19 July 2016
  • 18 October 2016

References

Modification History

2015-December-21 Rev 3. New CVEs Added
2015-November-20 Rev 2. New CVEs Added
2015-October-20 Rev 1. Initial Release

Oracle Linux Executive Summary

This Oracle Linux Bulletin contains 227 new security fixes for the Oracle Linux.  156 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password. 

Oracle Linux Risk Matrix

Revision 3: Published on 2015-12-21

CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen­tication Confid­entiality Inte­grity Avail­ability
CVE-2015-1782Oracle Linuxlibssh2Yes7.8NetworkLowNoneNoneNoneComplete7
CVE-2015-7501Oracle Linuxapache-commons-collectionsYes7.5NetworkLowNonePartialPartialPartial7
CVE-2015-7501Oracle Linuxjakarta-commons-collectionsYes7.5NetworkLowNonePartialPartialPartial6
CVE-2015-7872Oracle LinuxkernelNo7.2LocalLowNoneCompleteCompleteComplete6
CVE-2015-5287Oracle Linuxabrt and libreportNo6.9LocalMediumNoneCompleteCompleteComplete7
CVE-2015-8370Oracle Linuxgrub2No6.9LocalMediumNoneCompleteCompleteComplete7
CVE-2014-8485Oracle LinuxbinutilsYes6.8NetworkMediumNonePartialPartialPartial7
CVE-2015-7201Oracle LinuxfirefoxYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7210Oracle LinuxfirefoxYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7545Oracle LinuxgitYes6.8NetworkMediumNonePartialPartialPartial7
CVE-2015-4513Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7198Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7199Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7200Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2014-8240Oracle LinuxtigervncYes6.8NetworkMediumNonePartialPartialPartial7
CVE-2014-8241Oracle LinuxtigervncYes6.8NetworkMediumNonePartialPartialPartial7
CVE-2015-7613Oracle LinuxkernelNo6.2LocalHighNoneCompleteCompleteComplete6
CVE-2015-0239Oracle LinuxkernelNo6.2LocalHighNoneCompleteCompleteComplete7
CVE-2015-3339Oracle LinuxkernelNo6.2LocalHighNoneCompleteCompleteComplete7
CVE-2015-7613Oracle LinuxkernelNo6.2LocalHighNoneCompleteCompleteComplete7
CVE-2015-6563Oracle LinuxopensshNo6.2LocalHighNoneCompleteCompleteComplete7
CVE-2015-7613Oracle LinuxUnbreakable Enterprise kernelNo6.2LocalHighNoneCompleteCompleteComplete6,7
CVE-2015-1821Oracle LinuxchronyNo6.0NetworkMediumSinglePartialPartialPartial7
CVE-2015-1822Oracle LinuxchronyNo6.0NetworkMediumSinglePartialPartialPartial7
CVE-2015-2925Oracle LinuxkernelNo6.0LocalHighSingleCompleteCompleteComplete6
CVE-2015-2925Oracle LinuxkernelNo6.0LocalHighSingleCompleteCompleteComplete7
CVE-2015-2694Oracle Linuxkrb5Yes5.8NetworkMediumNonePartialPartialNone7
CVE-2015-5212Oracle LinuxlibreofficeYes5.8NetworkMediumNoneNonePartialPartial6,7
CVE-2015-5213Oracle LinuxlibreofficeYes5.8NetworkMediumNoneNonePartialPartial6,7
CVE-2015-5214Oracle LinuxlibreofficeYes5.8NetworkMediumNoneNonePartialPartial6,7
CVE-2015-3455Oracle LinuxsquidYes5.8NetworkMediumNonePartialPartialNone7
CVE-2014-8171Oracle LinuxkernelNo5.7Adjacent networkMediumNoneNoneNoneComplete7
CVE-2015-5307Oracle LinuxkernelNo5.2Adjacent networkMediumSingleNoneNoneComplete6,7
CVE-2015-8104Oracle LinuxkernelNo5.2Adjacent networkMediumSingleNoneNoneComplete6,7
CVE-2015-5307Oracle LinuxUnbreakable Enterprise kernelNo5.2Adjacent networkMediumSingleNoneNoneComplete6,7
CVE-2015-8104Oracle LinuxUnbreakable Enterprise kernelNo5.2Adjacent networkMediumSingleNoneNoneComplete6,7
CVE-2014-9112Oracle LinuxcpioYes5.1NetworkHighNonePartialPartialPartial7
CVE-2015-7205Oracle LinuxfirefoxYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2015-7212Oracle LinuxfirefoxYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2015-7213Oracle LinuxfirefoxYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2015-7222Oracle LinuxfirefoxYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2015-1781Oracle LinuxglibcYes5.1NetworkHighNonePartialPartialPartial7
CVE-2015-8126Oracle LinuxlibpngYes5.1NetworkHighNonePartialPartialPartial6,7
CVE-2015-8472Oracle LinuxlibpngYes5.1NetworkHighNonePartialPartialPartial6,7
CVE-2015-8126Oracle Linuxlibpng12Yes5.1NetworkHighNonePartialPartialPartial7
CVE-2015-8472Oracle Linuxlibpng12Yes5.1NetworkHighNonePartialPartialPartial7
CVE-2013-0334Oracle Linuxrubygem-bundler and rubygem-thorYes5.1NetworkHighNonePartialPartialPartial7
CVE-2015-7189Oracle LinuxthunderbirdYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2015-7193Oracle LinuxthunderbirdYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2014-5355Oracle Linuxkrb5Yes5.0NetworkLowNoneNoneNonePartial7
CVE-2014-9298Oracle LinuxntpYes5.0NetworkLowNonePartialNoneNone7
CVE-2014-9751Oracle LinuxntpYes5.0NetworkLowNonePartialNoneNone7
CVE-2014-4650Oracle LinuxpythonYes5.0NetworkLowNonePartialNoneNone7
CVE-2015-6526Oracle LinuxkernelNo4.9LocalLowNoneNoneNoneComplete7
CVE-2015-4170Oracle LinuxkernelNo4.7LocalMediumNoneNoneNoneComplete7
CVE-2015-5283Oracle LinuxkernelNo4.7LocalMediumNoneNoneNoneComplete7
CVE-2015-5283Oracle LinuxUnbreakable Enterprise kernelNo4.7LocalMediumNoneNoneNoneComplete6,7
CVE-2014-8169Oracle LinuxautofsNo4.6LocalLowNonePartialPartialPartial7
CVE-2015-3248Oracle LinuxopenhpiNo4.6LocalLowNonePartialPartialPartial7
CVE-2014-3647Oracle LinuxkernelNo4.4LocalMediumSingleNoneNoneComplete7
CVE-2015-0272Oracle LinuxNetworkManagerYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-5273Oracle Linuxabrt and libreportYes4.3NetworkMediumNoneNonePartialNone7
CVE-2015-8000Oracle LinuxbindYes4.3NetworkMediumNoneNoneNonePartial5,6,7
CVE-2015-8000Oracle Linuxbind97Yes4.3NetworkMediumNoneNoneNonePartial5
CVE-2014-8484Oracle LinuxbinutilsYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-1853Oracle LinuxchronyYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-3613Oracle LinuxcurlYes4.3NetworkMediumNoneNonePartialNone7
CVE-2014-8150Oracle LinuxcurlYes4.3NetworkMediumNoneNonePartialNone7
CVE-2014-0207Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-0237Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-0238Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-3478Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-3479Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-3480Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-3487Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-3538Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-3587Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-3710Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-8116Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-8117Oracle LinuxfileYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-9652Oracle LinuxfileYes4.3NetworkMediumNonePartialNoneNone7
CVE-2015-7214Oracle LinuxfirefoxYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-4551Oracle LinuxlibreofficeYes4.3NetworkMediumNonePartialNoneNone6,7
CVE-2015-5312Oracle Linuxlibxml2Yes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-7497Oracle Linuxlibxml2Yes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-7498Oracle Linuxlibxml2Yes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-7499Oracle Linuxlibxml2Yes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-7500Oracle Linuxlibxml2Yes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-7942Oracle Linuxlibxml2Yes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-8241Oracle Linuxlibxml2Yes4.3NetworkMediumNonePartialNoneNone6,7
CVE-2015-8242Oracle Linuxlibxml2Yes4.3NetworkMediumNonePartialNoneNone6,7
CVE-2015-8317Oracle Linuxlibxml2Yes4.3NetworkMediumNonePartialNoneNone6,7
CVE-2014-3565Oracle Linuxnet-snmpYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-1799Oracle LinuxntpYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-3276Oracle LinuxopenldapYes4.3NetworkMediumNoneNonePartialNone7
CVE-2015-5600Oracle LinuxopensshYes4.3NetworkMediumNoneNonePartialNone7
CVE-2015-3194Oracle LinuxopensslYes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-3195Oracle LinuxopensslYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-3196Oracle LinuxopensslYes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2013-1752Oracle LinuxpythonYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2013-1753Oracle LinuxpythonYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-2704Oracle LinuxrealmdNo4.3Adjacent networkHighNonePartialPartialPartial7
CVE-2015-7197Oracle LinuxthunderbirdYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2014-8710Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-8711Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-8712Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-8713Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-8714Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-0562Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-0563Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-0564Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-3182Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-3810Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-3811Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-3812Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-3813Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-6243Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-6244Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-6245Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-6246Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-6248Oracle LinuxwiresharkYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2015-3258Oracle Linuxcups-filtersNo4.0Adjacent networkHighSinglePartialPartialPartial7
CVE-2015-3279Oracle Linuxcups-filtersNo4.0Adjacent networkHighSinglePartialPartialPartial7
CVE-2014-3707Oracle LinuxcurlYes4.0NetworkHighNonePartialNonePartial7
CVE-2015-3143Oracle LinuxcurlYes4.0NetworkHighNonePartialPartialNone7
CVE-2015-3148Oracle LinuxcurlYes4.0NetworkHighNonePartialPartialNone7
CVE-2010-5313Oracle LinuxkernelNo4.0LocalHighNoneNoneNoneComplete7
CVE-2014-7842Oracle LinuxkernelNo4.0LocalHighNoneNoneNoneComplete7
CVE-2015-7981Oracle LinuxlibpngNo4.0NetworkLowSinglePartialNoneNone6
CVE-2015-7981Oracle Linuxlibpng12No4.0NetworkLowSinglePartialNoneNone7
CVE-2015-7941Oracle Linuxlibxml2No4.0NetworkLowSinglePartialNoneNone6,7
CVE-2014-8119Oracle LinuxnetcfNo4.0NetworkLowSingleNoneNonePartial7
CVE-2015-3405Oracle LinuxntpYes4.0NetworkHighNonePartialPartialNone7
CVE-2015-6564Oracle LinuxopensshYes4.0NetworkHighNonePartialPartialNone7
CVE-2014-4616Oracle LinuxpythonYes4.0NetworkHighNonePartialNonePartial7
CVE-2014-7185Oracle LinuxpythonYes4.0NetworkHighNonePartialNonePartial7
CVE-2015-5277Oracle LinuxglibcNo3.7LocalHighNonePartialPartialPartial7
CVE-2015-2924Oracle LinuxNetworkManagerNo3.3Adjacent networkLowNoneNoneNonePartial7
CVE-2014-9653Oracle LinuxfileNo3.3LocalMediumNonePartialNonePartial7
CVE-2015-2188Oracle LinuxwiresharkNo2.9Adjacent networkMediumNoneNoneNonePartial7
CVE-2015-2189Oracle LinuxwiresharkNo2.9Adjacent networkMediumNoneNoneNonePartial7
CVE-2015-2191Oracle LinuxwiresharkNo2.9Adjacent networkMediumNoneNoneNonePartial7
CVE-2015-5302Oracle Linuxabrt and libreportYes2.6NetworkHighNonePartialNoneNone7
CVE-2014-8501Oracle LinuxbinutilsNo2.6LocalHighNonePartialNonePartial7
CVE-2014-8502Oracle LinuxbinutilsNo2.6LocalHighNonePartialNonePartial7
CVE-2014-8503Oracle LinuxbinutilsNo2.6LocalHighNonePartialNonePartial7
CVE-2014-8738Oracle LinuxbinutilsNo2.6LocalHighNonePartialNonePartial7
CVE-2015-1472Oracle LinuxglibcNo2.6LocalHighNonePartialNonePartial7
CVE-2015-1473Oracle LinuxglibcNo2.6LocalHighNonePartialNonePartial7
CVE-2015-5281Oracle Linuxgrub2No2.6LocalHighNonePartialPartialNone7
CVE-2015-5302Oracle LinuxlibreportYes2.6NetworkHighNonePartialNoneNone6
CVE-2015-1819Oracle Linuxlibxml2Yes2.6NetworkHighNoneNoneNonePartial7
CVE-2014-9297Oracle LinuxntpYes2.6NetworkHighNonePartialNoneNone7
CVE-2014-9750Oracle LinuxntpYes2.6NetworkHighNonePartialNoneNone7
CVE-2015-1798Oracle LinuxntpYes2.6NetworkHighNoneNonePartialNone7
CVE-2014-8602Oracle LinuxunboundYes2.6NetworkHighNoneNoneNonePartial7
CVE-2014-8737Oracle LinuxbinutilsNo2.1LocalLowNoneNonePartialNone7
CVE-2013-7421Oracle LinuxkernelNo2.1LocalLowNoneNonePartialNone7
CVE-2014-9644Oracle LinuxkernelNo2.1LocalLowNoneNonePartialNone7
CVE-2015-2675Oracle LinuxrestNo2.1LocalLowNoneNoneNonePartial7
CVE-2015-5292Oracle LinuxsssdNo2.1NetworkHighSingleNoneNonePartial7
CVE-2014-9419Oracle LinuxkernelNo1.9LocalMediumNonePartialNoneNone7
CVE-2015-7837Oracle LinuxkernelNo1.9LocalMediumNoneNonePartialNone7
CVE-2014-8504Oracle LinuxbinutilsNo1.2LocalHighNonePartialNoneNone7
CVE-2013-7423Oracle LinuxglibcNo1.2LocalHighNonePartialNoneNone7
CVE-2015-1345Oracle LinuxgrepNo1.2LocalHighNoneNoneNonePartial7
CVE-2012-2150Oracle LinuxxfsprogsNo1.2LocalHighNonePartialNoneNone7

Revision 2: Published on 2015-11-20

CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen­tication Confid­entiality Inte­grity Avail­ability
CVE-2015-6937Oracle LinuxUnbreakable Enterprise kernelYes7.1NetworkMediumNoneNoneNoneComplete6,7
CVE-2015-1805Oracle LinuxUnbreakable Enterprise kernelNo6.9LocalMediumNoneCompleteCompleteComplete6,7
CVE-2015-4513Oracle LinuxfirefoxYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7198Oracle LinuxfirefoxYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4805Oracle Linuxjava-1.6.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4835Oracle Linuxjava-1.6.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4843Oracle Linuxjava-1.6.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4844Oracle Linuxjava-1.6.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4860Oracle Linuxjava-1.6.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4881Oracle Linuxjava-1.6.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4883Oracle Linuxjava-1.6.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4805Oracle Linuxjava-1.7.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4835Oracle Linuxjava-1.7.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4843Oracle Linuxjava-1.7.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4844Oracle Linuxjava-1.7.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4860Oracle Linuxjava-1.7.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4881Oracle Linuxjava-1.7.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4883Oracle Linuxjava-1.7.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4805Oracle Linuxjava-1.8.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-4835Oracle Linuxjava-1.8.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-4843Oracle Linuxjava-1.8.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-4844Oracle Linuxjava-1.8.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-4860Oracle Linuxjava-1.8.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-4881Oracle Linuxjava-1.8.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-4883Oracle Linuxjava-1.8.0-openjdkYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-5156Oracle LinuxkernelNo6.8Adjacent networkHighNoneCompleteCompleteComplete7
CVE-2015-0848Oracle LinuxlibwmfYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-4588Oracle LinuxlibwmfYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-7181Oracle Linuxnss and nsprYes6.8NetworkMediumNonePartialPartialPartial5
CVE-2015-7182Oracle Linuxnss and nsprYes6.8NetworkMediumNonePartialPartialPartial5
CVE-2015-7183Oracle Linuxnss and nsprYes6.8NetworkMediumNonePartialPartialPartial5
CVE-2015-7181Oracle Linuxnss, nss-util, and nsprYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-7182Oracle Linuxnss, nss-util, and nsprYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-7183Oracle Linuxnss, nss-util, and nsprYes6.8NetworkMediumNonePartialPartialPartial6,7
CVE-2015-5156Oracle LinuxUnbreakable Enterprise kernelNo6.8Adjacent networkHighNoneCompleteCompleteComplete5,6,7
CVE-2015-5279Oracle LinuxkvmNo6.5Adjacent networkHighSingleCompleteCompleteComplete5
CVE-2015-5279Oracle Linuxqemu-kvmNo6.5Adjacent networkHighSingleCompleteCompleteComplete6
CVE-2015-5279Oracle LinuxxenNo6.5Adjacent networkHighSingleCompleteCompleteComplete5
CVE-2015-7704Oracle LinuxntpYes6.4NetworkLowNoneNonePartialPartial6,7
CVE-2015-1779Oracle Linuxqemu-kvmNo5.7Adjacent networkMediumNoneNoneNoneComplete7
CVE-2015-7189Oracle LinuxfirefoxYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2015-7193Oracle LinuxfirefoxYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2015-7194Oracle LinuxfirefoxYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2015-7196Oracle LinuxfirefoxYes5.1NetworkHighNonePartialPartialPartial5,6,7
CVE-2015-3240Oracle LinuxlibreswanYes5.0NetworkLowNoneNoneNonePartial7
CVE-2015-4695Oracle LinuxlibwmfYes5.0NetworkLowNoneNoneNonePartial6,7
CVE-2014-7822Oracle LinuxUnbreakable Enterprise kernelNo4.9LocalLowNoneNoneNoneComplete6,7
CVE-2015-7188Oracle LinuxfirefoxYes4.3NetworkMediumNoneNonePartialNone5,6,7
CVE-2015-7197Oracle LinuxfirefoxYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-4734Oracle Linuxjava-1.6.0-openjdkYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-4803Oracle Linuxjava-1.6.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial5,6,7
CVE-2015-4806Oracle Linuxjava-1.6.0-openjdkYes4.3NetworkMediumNoneNonePartialNone5,6,7
CVE-2015-4842Oracle Linuxjava-1.6.0-openjdkYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-4872Oracle Linuxjava-1.6.0-openjdkYes4.3NetworkMediumNoneNonePartialNone5,6,7
CVE-2015-4882Oracle Linuxjava-1.6.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial5,6,7
CVE-2015-4893Oracle Linuxjava-1.6.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial5,6,7
CVE-2015-4903Oracle Linuxjava-1.6.0-openjdkYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-4911Oracle Linuxjava-1.6.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial5,6,7
CVE-2015-4734Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-4803Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial5,6,7
CVE-2015-4806Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNoneNonePartialNone5,6,7
CVE-2015-4840Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-4842Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-4872Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNoneNonePartialNone5,6,7
CVE-2015-4882Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial5,6,7
CVE-2015-4893Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial5,6,7
CVE-2015-4903Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-4911Oracle Linuxjava-1.7.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial5,6,7
CVE-2015-4734Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNonePartialNoneNone6,7
CVE-2015-4803Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-4806Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNoneNonePartialNone6,7
CVE-2015-4840Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNonePartialNoneNone6,7
CVE-2015-4842Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNonePartialNoneNone6,7
CVE-2015-4868Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNoneNonePartialNone6,7
CVE-2015-4872Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNoneNonePartialNone6,7
CVE-2015-4882Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-4893Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-4903Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNonePartialNoneNone6,7
CVE-2015-4911Oracle Linuxjava-1.8.0-openjdkYes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-4696Oracle LinuxlibwmfYes4.3NetworkMediumNoneNoneNonePartial6,7
CVE-2015-5300Oracle LinuxntpYes4.3NetworkMediumNoneNonePartialNone6,7
CVE-2015-5289Oracle LinuxpostgresqlYes4.3NetworkMediumNoneNoneNonePartial7
CVE-2014-8559Oracle LinuxkernelNo4.0LocalHighNoneNoneNoneComplete7
CVE-2015-5288Oracle LinuxpostgresqlNo4.0NetworkLowSinglePartialNoneNone6,7
CVE-2015-5292Oracle LinuxsssdNo2.1NetworkHighSingleNoneNonePartial6

Revision 1: Published on 2015-10-20

CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen­tication Confid­entiality Inte­grity Avail­ability
CVE-2015-4700Oracle LinuxkernelNo7.2LocalLowNoneCompleteCompleteComplete7
CVE-2015-1335Oracle LinuxlxcNo7.2LocalLowNoneCompleteCompleteComplete6,7
CVE-2015-5364Oracle LinuxkernelYes7.1NetworkMediumNoneNoneNoneComplete7
CVE-2015-5366Oracle LinuxkernelYes7.1NetworkMediumNoneNoneNoneComplete7
CVE-2015-4500Oracle LinuxfirefoxYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4509Oracle LinuxfirefoxYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4510Oracle LinuxfirefoxYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4500Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4509Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4517Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4520Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4521Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-4522Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7174Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7175Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7176Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7177Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-7180Oracle LinuxthunderbirdYes6.8NetworkMediumNonePartialPartialPartial5,6,7
CVE-2015-5260Oracle LinuxspiceYes5.8NetworkMediumNoneNonePartialPartial7
CVE-2015-5260Oracle Linuxspice-serverYes5.8NetworkMediumNoneNonePartialPartial6
CVE-2015-3212Oracle LinuxkernelNo5.6LocalLowNoneNonePartialComplete7
CVE-2015-3212Oracle LinuxUnbreakable Enterprise kernelNo5.6LocalLowNoneNonePartialComplete6,7
CVE-2015-6908Oracle LinuxopenldapYes5.0NetworkLowNoneNoneNonePartial5,6,7
CVE-2015-1333Oracle LinuxkernelNo4.9LocalLowNoneNoneNoneComplete7
CVE-2015-1333Oracle LinuxUnbreakable Enterprise kernelNo4.9LocalLowNoneNoneNoneComplete6,7
CVE-2015-0275Oracle LinuxkernelNo4.7LocalMediumNoneNoneNoneComplete7
CVE-2015-5261Oracle LinuxspiceNo4.3Adjacent networkMediumNonePartialNonePartial7
CVE-2015-5261Oracle Linuxspice-serverNo4.3Adjacent networkMediumNonePartialNonePartial6
CVE-2015-4519Oracle LinuxthunderbirdYes4.3NetworkMediumNonePartialNoneNone5,6,7
CVE-2015-5165Oracle Linuxqemu-kvmNo3.3Adjacent networkLowNonePartialNoneNone7
CVE-2015-5165Oracle Linuxqemu-kvmNo3.3Adjacent networkLowNonePartialNoneNone6
CVE-2014-9585Oracle LinuxkernelNo1.9LocalMediumNonePartialNoneNone7
CVE-2014-8178Oracle Linuxdocker-engineNo1.2LocalHighNoneNonePartialNone6,7
CVE-2014-8179Oracle Linuxdocker-engineNo1.2LocalHighNoneNonePartialNone6,7