Oracle Linux Bulletin - January 2016


Description

The Oracle Linux Bulletin lists all CVEs that had been resolved and announced in Oracle Linux Security Advisories (ELSA) in the last one month prior to the release of the bulletin. Oracle Linux Bulletins are published on the same day as Oracle Critical Patch Updates are released. These bulletins will also be updated for the following two months after their release (i.e., the two months between the normal quarterly Critical Patch Update publication dates) to cover all CVEs that had been resolved in those two months following the bulletin's publication. In addition, Oracle Linux Bulletins may also be updated for vulnerability fixes deemed too critical to wait for the next scheduled bulletin publication date.

Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Oracle Linux Bulletin fixes as soon as possible.


Patch Availability

Please see ULN Advisory http://linux.oracle.com/ol-pad-bulletin


Oracle Linux Bulletin Schedule

Oracle Linux Bulletins are released on the Tuesday closest to the 17th day of January, April, July and October. The next four dates are:

  • 19 April 2016
  • 19 July 2016
  • 18 October 2016
  • 17 January 2017

References


Modification History


2016-March-21 Rev 3. New CVEs Added
2016-February-19 Rev 2. New CVEs Added
2016-January-19 Rev 1. Initial Release

 

Oracle Linux Executive Summary

 

This Oracle Linux Bulletin contains 183 new security fixes for the Oracle Linux.  125 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password. 

 

Oracle Linux Risk Matrix


Revision 3: Published on 2016-03-21



CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen-
tication
Confiden-
tiality
Integrity Avail-
ability
CVE-2015-7512 Oracle Linux qemu-kvm Yes 7.6 Network High None Complete Complete Complete 6
CVE-2015-7501 Oracle Linux jakarta-commons-collections Yes 7.5 Network Low None Partial Partial Partial 5
CVE-2015-7872 Oracle Linux kernel No 7.2 Local Low None Complete Complete Complete 7
CVE-2016-0728 Oracle Linux kernel No 7.2 Local Low None Complete Complete Complete 7
CVE-2015-7872 Oracle Linux kernel-uek No 7.2 Local Low None Complete Complete Complete 5,6
CVE-2016-0728 Oracle Linux kernel-uek No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2015-7872 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2016-0728 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2015-5364 Oracle Linux kernel Yes 7.1 Network Medium None None None Complete 5
CVE-2015-5366 Oracle Linux kernel Yes 7.1 Network Medium None None None Complete 5
CVE-2015-3331 Oracle Linux kernel-uek No 7.1 Network High Single Complete Complete Complete 5
CVE-2015-5364 Oracle Linux kernel-uek Yes 7.1 Network Medium None None None Complete 5
CVE-2014-3215 Oracle Linux kernel-uek No 6.9 Local Medium None Complete Complete Complete 5
CVE-2016-1521 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1522 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1523 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1930 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1935 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1952 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1960 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1961 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1962 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1964 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1977 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2790 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2791 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2792 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2793 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2794 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2795 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2796 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2797 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2798 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2799 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2800 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2801 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2802 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2015-7545 Oracle Linux git19-git Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-7547 Oracle Linux glibc Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-7547 Oracle Linux glibc Yes 6.8 Network Medium None Partial Partial Partial 6
CVE-2016-0483 Oracle Linux java-1.6.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0494 Oracle Linux java-1.6.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0483 Oracle Linux java-1.7.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0494 Oracle Linux java-1.7.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0483 Oracle Linux java-1.8.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-0494 Oracle Linux java-1.8.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-5156 Oracle Linux kernel-uek No 6.8 Adjacent network High None Complete Complete Complete 5
CVE-2016-1950 Oracle Linux nss Yes 6.8 Network Medium None Partial Partial Partial 5
CVE-2016-1950 Oracle Linux nss-util Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-3330 Oracle Linux php54 Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-4147 Oracle Linux php54 Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-4147 Oracle Linux php55 Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-3330 Oracle Linux php55-php Yes 6.8 Network Medium None Partial Partial Partial 7
CVE-2016-0773 Oracle Linux postgresql Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-7201 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1930 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1935 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1952 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1960 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1961 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1964 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1977 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2790 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2791 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2792 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2793 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2794 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2795 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2796 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2797 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2798 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2799 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2800 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2801 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2802 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0729 Oracle Linux xerces-c Yes 6.8 Network Medium None Partial Partial Partial 7
CVE-2015-2151 Oracle Linux kernel No 6.5 Adjacent network High Single Complete Complete Complete 5
CVE-2015-7504 Oracle Linux qemu-kvm No 6.5 Adjacent network High Single Complete Complete Complete 6
CVE-2015-8138 Oracle Linux ntp Yes 6.4 Network Low None None Partial Partial 6,7
CVE-2015-5157 Oracle Linux kernel No 6.2 Local High None Complete Complete Complete 7
CVE-2015-0239 Oracle Linux kernel-uek No 6.2 Local High None Complete Complete Complete 5
CVE-2015-3339 Oracle Linux kernel-uek No 6.2 Local High None Complete Complete Complete 5
CVE-2015-5157 Oracle Linux kernel-uek No 6.2 Local High None Complete Complete Complete 6
CVE-2015-7613 Oracle Linux kernel-uek No 6.2 Local High None Complete Complete Complete 5
CVE-2015-5157 Oracle Linux Unbreakable Enterprise kernel No 6.2 Local High None Complete Complete Complete 6,7
CVE-2015-7613 Oracle Linux Unbreakable Enterprise kernel No 6.2 Local High None Complete Complete Complete 5,6
CVE-2013-2596 Oracle Linux kernel No 6.0 Local High Single Complete Complete Complete 5
CVE-2015-2925 Oracle Linux kernel-uek No 6.0 Local High Single Complete Complete Complete 6
CVE-2015-3636 Oracle Linux kernel-uek No 6.0 Local High Single Complete Complete Complete 5
CVE-2015-7529 Oracle Linux sos No 6.0 Local High Single Complete Complete Complete 6,7
CVE-2015-7529 Oracle Linux sos No 6.0 Local High Single Complete Complete Complete 6
CVE-2015-2925 Oracle Linux Unbreakable Enterprise kernel No 6.0 Local High Single Complete Complete Complete 6,7
CVE-2015-7575 Oracle Linux gnutls Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-4871 Oracle Linux java-1.7.0-openjdk Yes 5.8 Network Medium None Partial Partial None 5,6,7
CVE-2015-7575 Oracle Linux java-1.7.0-openjdk Yes 5.8 Network Medium None Partial Partial None 5,6,7
CVE-2015-7575 Oracle Linux java-1.8.0-openjdk Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2016-0475 Oracle Linux java-1.8.0-openjdk Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2016-0787 Oracle Linux libssh2 Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-7575 Oracle Linux nss Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-3197 Oracle Linux openssl Yes 5.8 Network Medium None Partial Partial None 5,6,7
CVE-2015-7575 Oracle Linux openssl Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2016-0800 Oracle Linux openssl Yes 5.8 Network Medium None Partial Partial None 5,6,7
CVE-2015-3197 Oracle Linux openssl098e Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2016-0800 Oracle Linux openssl098e Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-5296 Oracle Linux samba Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-5296 Oracle Linux samba4 Yes 5.8 Network Medium None Partial Partial None 6
CVE-2014-9715 Oracle Linux kernel-uek No 5.7 Adjacent network Medium None None None Complete 5
CVE-2015-2150 Oracle Linux kernel-uek No 5.2 Adjacent network Medium Single None None Complete 5
CVE-2015-5307 Oracle Linux kernel-uek No 5.2 Adjacent network Medium Single None None Complete 5
CVE-2015-8104 Oracle Linux kernel-uek No 5.2 Adjacent network Medium Single None None Complete 5
CVE-2015-5307 Oracle Linux Unbreakable Enterprise kernel No 5.2 Adjacent network Medium Single None None Complete 5,6
CVE-2015-8104 Oracle Linux Unbreakable Enterprise kernel No 5.2 Adjacent network Medium Single None None Complete 5,6
CVE-2016-1957 Oracle Linux firefox Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1966 Oracle Linux firefox Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1973 Oracle Linux firefox Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1974 Oracle Linux firefox Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-0778 Oracle Linux openssh Yes 5.1 Network High None Partial Partial Partial 7
CVE-2014-8142 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0231 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0232 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0273 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-2305 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-3307 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-3329 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-4021 Oracle Linux php54-php Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-4022 Oracle Linux php54-php Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-4643 Oracle Linux php54-php Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2014-8142 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0231 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0232 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0273 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-2305 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-3307 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2015-3329 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2015-4021 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2015-4022 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2015-4643 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2014-1912 Oracle Linux python27 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-7205 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2015-7212 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2015-7213 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1957 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1966 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1974 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-0741 Oracle Linux 389-ds-base Yes 5.0 Network Low None None None Partial 7
CVE-2016-1285 Oracle Linux bind Yes 5.0 Network Low None None None Partial 5,6,7
CVE-2016-1286 Oracle Linux bind Yes 5.0 Network Low None None None Partial 5,6,7
CVE-2016-1285 Oracle Linux bind97 Yes 5.0 Network Low None None None Partial 5
CVE-2016-1286 Oracle Linux bind97 Yes 5.0 Network Low None None None Partial 5
CVE-2015-0228 Oracle Linux httpd24-httpd Yes 5.0 Network Low None None None Partial 7
CVE-2016-0466 Oracle Linux java-1.6.0-openjdk Yes 5.0 Network Low None None None Partial 5,6,7
CVE-2016-0466 Oracle Linux java-1.7.0-openjdk Yes 5.0 Network Low None None None Partial 5,6,7
CVE-2016-0466 Oracle Linux java-1.8.0-openjdk Yes 5.0 Network Low None None None Partial 6,7
CVE-2015-3223 Oracle Linux libldb Yes 5.0 Network Low None None None Partial 6,7
CVE-2010-5107 Oracle Linux openssh Yes 5.0 Network Low None None None Partial 5
CVE-2015-4604 Oracle Linux php54 Yes 5.0 Network Low None None None Partial 6,7
CVE-2015-4605 Oracle Linux php54 Yes 5.0 Network Low None None None Partial 6,7
CVE-2015-4024 Oracle Linux php54-php Yes 5.0 Network Low None None None Partial 6,7
CVE-2015-4024 Oracle Linux php55-php Yes 5.0 Network Low None None None Partial 7
CVE-2015-4604 Oracle Linux php55-php Yes 5.0 Network Low None None None Partial 7
CVE-2015-4605 Oracle Linux php55-php Yes 5.0 Network Low None None None Partial 7
CVE-2014-4650 Oracle Linux python27 Yes 5.0 Network Low None Partial None None 6,7
CVE-2015-3223 Oracle Linux samba Yes 5.0 Network Low None None None Partial 7
CVE-2015-3223 Oracle Linux samba4 Yes 5.0 Network Low None None None Partial 6
CVE-2016-1714 Oracle Linux qemu-kvm No 4.9 Adjacent network Medium Single Partial Partial Partial 7
CVE-2016-1714 Oracle Linux qemu-kvm No 4.9 Adjacent network Medium Single Partial Partial Partial 6
CVE-2014-9420 Oracle Linux kernel-uek No 4.7 Local Medium None None None Complete 5
CVE-2012-3520 Oracle Linux kernel-uek No 4.4 Local Medium None Partial Partial Partial 5
CVE-2015-3256 Oracle Linux polkit No 4.4 Local Medium None Partial Partial Partial 7
CVE-2016-1954 Oracle Linux firefox Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2016-1958 Oracle Linux firefox Yes 4.3 Network Medium None Partial None None 5,6,7
CVE-2016-1965 Oracle Linux firefox Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2013-5704 Oracle Linux httpd24-httpd Yes 4.3 Network Medium None None Partial None 6
CVE-2016-0402 Oracle Linux java-1.6.0-openjdk Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2016-0448 Oracle Linux java-1.6.0-openjdk Yes 4.3 Network Medium None Partial None None 5,6,7
CVE-2016-0402 Oracle Linux java-1.7.0-openjdk Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2016-0448 Oracle Linux java-1.7.0-openjdk Yes 4.3 Network Medium None Partial None None 5,6,7
CVE-2016-0402 Oracle Linux java-1.8.0-openjdk Yes 4.3 Network Medium None None Partial None 6,7
CVE-2016-0448 Oracle Linux java-1.8.0-openjdk Yes 4.3 Network Medium None Partial None None 6,7
CVE-2016-0777 Oracle Linux openssh Yes 4.3 Network Medium None Partial None None 7
CVE-2016-0797 Oracle Linux openssl Yes 4.3 Network Medium None None None Partial 5,6,7
CVE-2015-0293 Oracle Linux openssl098e Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-0703 Oracle Linux openssl098e Yes 4.3 Network Medium None Partial None None 6,7
CVE-2016-0704 Oracle Linux openssl098e Yes 4.3 Network Medium None Partial None None 6,7
CVE-2014-9652 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2014-9705 Oracle Linux php54 Yes 4.3 Network Medium None None None Partial 6,7
CVE-2015-2783 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4148 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4599 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4600 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4601 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4602 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4603 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2014-9652 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2014-9705 Oracle Linux php55 Yes 4.3 Network Medium None None None Partial 6,7
CVE-2015-4148 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4599 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4600 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4601 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-2783 Oracle Linux php55-php Yes 4.3 Network Medium None Partial None None 7
CVE-2015-4602 Oracle Linux php55-php Yes 4.3 Network Medium None Partial None None 7
CVE-2015-4603 Oracle Linux php55-php Yes 4.3 Network Medium None Partial None None 7
CVE-2013-1752 Oracle Linux python27 Yes 4.3 Network Medium None None None Partial 6,7
CVE-2013-1753 Oracle Linux python27 Yes 4.3 Network Medium None None None Partial 6,7
CVE-2015-7236 Oracle Linux rpcbind Yes 4.3 Network Medium None None None Partial 6,7
CVE-2014-8080 Oracle Linux ruby193-ruby Yes 4.3 Network Medium None None None Partial 6
CVE-2014-8090 Oracle Linux ruby193-ruby Yes 4.3 Network Medium None None None Partial 6
CVE-2015-5252 Oracle Linux samba Yes 4.3 Network Medium None None Partial None 6,7
CVE-2015-7540 Oracle Linux samba Yes 4.3 Network Medium None None None Partial 7
CVE-2015-5252 Oracle Linux samba4 Yes 4.3 Network Medium None None Partial None 6
CVE-2015-7540 Oracle Linux samba4 Yes 4.3 Network Medium None None None Partial 6
CVE-2015-7214 Oracle Linux thunderbird Yes 4.3 Network Medium None Partial None None 5,6,7
CVE-2016-1954 Oracle Linux thunderbird Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2010-5313 Oracle Linux kernel-uek No 4.0 Local High None None None Complete 5
CVE-2014-9709 Oracle Linux php54 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-2348 Oracle Linux php54 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-2787 Oracle Linux php54 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-3411 Oracle Linux php54 Yes 4.0 Network High None Partial Partial None 6,7
CVE-2015-3412 Oracle Linux php54 Yes 4.0 Network High None Partial Partial None 6,7
CVE-2015-4025 Oracle Linux php54-php Yes 4.0 Network High None Partial Partial None 6,7
CVE-2015-4026 Oracle Linux php54-php Yes 4.0 Network High None Partial Partial None 6,7
CVE-2015-4598 Oracle Linux php54-php Yes 4.0 Network High None Partial Partial None 6,7
CVE-2014-9709 Oracle Linux php55 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-2348 Oracle Linux php55 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-2787 Oracle Linux php55 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-3411 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2015-3412 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2015-4025 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2015-4026 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2015-4598 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2014-4616 Oracle Linux python27 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2014-7185 Oracle Linux python27 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2014-7842 Oracle Linux Unbreakable Enterprise kernel No 4.0 Local High None None None Complete 5,6
CVE-2014-9683 Oracle Linux kernel-uek No 3.6 Local Low None None Partial Partial 5
CVE-2015-8704 Oracle Linux bind No 3.5 Network Medium Single None None Partial 5,6,7
CVE-2015-8704 Oracle Linux bind97 No 3.5 Network Medium Single None None Partial 5
CVE-2015-5330 Oracle Linux libldb No 3.5 Network Medium Single Partial None None 6,7
CVE-2015-5299 Oracle Linux samba No 3.5 Network Medium Single Partial None None 6,7
CVE-2015-7560 Oracle Linux samba No 3.5 Network Medium Single Partial None None 6,7
CVE-2015-5299 Oracle Linux samba4 No 3.5 Network Medium Single Partial None None 6
CVE-2015-7560 Oracle Linux samba4 No 3.5 Network Medium Single Partial None None 6
CVE-2015-2922 Oracle Linux kernel-uek No 3.3 Adjacent network Low None None None Partial 5
CVE-2015-5229 Oracle Linux glibc Yes 2.6 Network High None None None Partial 7
CVE-2014-3581 Oracle Linux httpd24-httpd Yes 2.6 Network High None None None Partial 6
CVE-2015-0253 Oracle Linux httpd24-httpd Yes 2.6 Network High None None None Partial 7
CVE-2015-3183 Oracle Linux httpd24-httpd Yes 2.6 Network High None None None Partial 7
CVE-2015-3185 Oracle Linux httpd24-httpd Yes 2.6 Network High None None None Partial 7
CVE-2016-0702 Oracle Linux openssl No 2.6 Local High None Partial Partial None 6,7
CVE-2016-0705 Oracle Linux openssl Yes 2.6 Network High None None None Partial 6,7
CVE-2015-1351 Oracle Linux php54 Yes 2.6 Network High None Partial None None 6,7
CVE-2015-2301 Oracle Linux php54 Yes 2.6 Network High None Partial None None 6,7
CVE-2015-4644 Oracle Linux php54-php Yes 2.6 Network High None None None Partial 6,7
CVE-2015-1351 Oracle Linux php55 Yes 2.6 Network High None Partial None None 6,7
CVE-2015-1352 Oracle Linux php55 Yes 2.6 Network High None None None Partial 6,7
CVE-2015-2301 Oracle Linux php55 Yes 2.6 Network High None Partial None None 6,7
CVE-2015-4644 Oracle Linux php55-php Yes 2.6 Network High None None None Partial 7
CVE-2014-4975 Oracle Linux ruby193-ruby Yes 2.6 Network High None None None Partial 6
CVE-2013-7421 Oracle Linux kernel-uek No 2.1 Local Low None None Partial None 5
CVE-2014-9427 Oracle Linux php54 No 2.1 Local Low None None None Partial 6,7
CVE-2014-9427 Oracle Linux php55 No 2.1 Local Low None None None Partial 6,7
CVE-2013-7421 Oracle Linux Unbreakable Enterprise kernel No 2.1 Local Low None None Partial None 5,6
CVE-2014-9644 Oracle Linux Unbreakable Enterprise kernel No 2.1 Local Low None None Partial None 5,6
CVE-2014-8133 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2014-9419 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2014-9584 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2014-9585 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2015-1593 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2015-2830 Oracle Linux kernel-uek No 1.9 Local Medium None None Partial None 5
CVE-2015-5697 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
 

 

Revision 2: Published on 2016-02-19



CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen-
tication
Confiden-
tiality
Integrity Avail-
ability
CVE-2015-7512 Oracle Linux qemu-kvm Yes 7.6 Network High None Complete Complete Complete 6
CVE-2015-7501 Oracle Linux jakarta-commons-collections Yes 7.5 Network Low None Partial Partial Partial 5
CVE-2015-7872 Oracle Linux kernel No 7.2 Local Low None Complete Complete Complete 7
CVE-2016-0728 Oracle Linux kernel No 7.2 Local Low None Complete Complete Complete 7
CVE-2015-7872 Oracle Linux kernel-uek No 7.2 Local Low None Complete Complete Complete 5,6
CVE-2016-0728 Oracle Linux kernel-uek No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2015-7872 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2016-0728 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2015-5364 Oracle Linux kernel Yes 7.1 Network Medium None None None Complete 5
CVE-2015-5366 Oracle Linux kernel Yes 7.1 Network Medium None None None Complete 5
CVE-2015-3331 Oracle Linux kernel-uek No 7.1 Network High Single Complete Complete Complete 5
CVE-2015-5364 Oracle Linux kernel-uek Yes 7.1 Network Medium None None None Complete 5
CVE-2014-3215 Oracle Linux kernel-uek No 6.9 Local Medium None Complete Complete Complete 5
CVE-2016-1521 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1522 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1523 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1930 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1935 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1952 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1960 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1961 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1962 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1964 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1977 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2790 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2791 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2792 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2793 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2794 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2795 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2796 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2797 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2798 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2799 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2800 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2801 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2802 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2015-7545 Oracle Linux git19-git Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-7547 Oracle Linux glibc Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-7547 Oracle Linux glibc Yes 6.8 Network Medium None Partial Partial Partial 6
CVE-2016-0483 Oracle Linux java-1.6.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0494 Oracle Linux java-1.6.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0483 Oracle Linux java-1.7.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0494 Oracle Linux java-1.7.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0483 Oracle Linux java-1.8.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-0494 Oracle Linux java-1.8.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-5156 Oracle Linux kernel-uek No 6.8 Adjacent network High None Complete Complete Complete 5
CVE-2016-1950 Oracle Linux nss Yes 6.8 Network Medium None Partial Partial Partial 5
CVE-2016-1950 Oracle Linux nss-util Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-3330 Oracle Linux php54 Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-4147 Oracle Linux php54 Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-4147 Oracle Linux php55 Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-3330 Oracle Linux php55-php Yes 6.8 Network Medium None Partial Partial Partial 7
CVE-2016-0773 Oracle Linux postgresql Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-7201 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1930 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1935 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1952 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1960 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1961 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1964 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1977 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2790 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2791 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2792 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2793 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2794 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2795 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2796 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2797 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2798 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2799 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2800 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2801 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2802 Oracle Linux thunderbird Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0729 Oracle Linux xerces-c Yes 6.8 Network Medium None Partial Partial Partial 7
CVE-2015-2151 Oracle Linux kernel No 6.5 Adjacent network High Single Complete Complete Complete 5
CVE-2015-7504 Oracle Linux qemu-kvm No 6.5 Adjacent network High Single Complete Complete Complete 6
CVE-2015-8138 Oracle Linux ntp Yes 6.4 Network Low None None Partial Partial 6,7
CVE-2015-5157 Oracle Linux kernel No 6.2 Local High None Complete Complete Complete 7
CVE-2015-0239 Oracle Linux kernel-uek No 6.2 Local High None Complete Complete Complete 5
CVE-2015-3339 Oracle Linux kernel-uek No 6.2 Local High None Complete Complete Complete 5
CVE-2015-5157 Oracle Linux kernel-uek No 6.2 Local High None Complete Complete Complete 6
CVE-2015-7613 Oracle Linux kernel-uek No 6.2 Local High None Complete Complete Complete 5
CVE-2015-5157 Oracle Linux Unbreakable Enterprise kernel No 6.2 Local High None Complete Complete Complete 6,7
CVE-2015-7613 Oracle Linux Unbreakable Enterprise kernel No 6.2 Local High None Complete Complete Complete 5,6
CVE-2013-2596 Oracle Linux kernel No 6.0 Local High Single Complete Complete Complete 5
CVE-2015-2925 Oracle Linux kernel-uek No 6.0 Local High Single Complete Complete Complete 6
CVE-2015-3636 Oracle Linux kernel-uek No 6.0 Local High Single Complete Complete Complete 5
CVE-2015-7529 Oracle Linux sos No 6.0 Local High Single Complete Complete Complete 6,7
CVE-2015-7529 Oracle Linux sos No 6.0 Local High Single Complete Complete Complete 6
CVE-2015-2925 Oracle Linux Unbreakable Enterprise kernel No 6.0 Local High Single Complete Complete Complete 6,7
CVE-2015-7575 Oracle Linux gnutls Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-4871 Oracle Linux java-1.7.0-openjdk Yes 5.8 Network Medium None Partial Partial None 5,6,7
CVE-2015-7575 Oracle Linux java-1.7.0-openjdk Yes 5.8 Network Medium None Partial Partial None 5,6,7
CVE-2015-7575 Oracle Linux java-1.8.0-openjdk Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2016-0475 Oracle Linux java-1.8.0-openjdk Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2016-0787 Oracle Linux libssh2 Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-7575 Oracle Linux nss Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-3197 Oracle Linux openssl Yes 5.8 Network Medium None Partial Partial None 5,6,7
CVE-2015-7575 Oracle Linux openssl Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2016-0800 Oracle Linux openssl Yes 5.8 Network Medium None Partial Partial None 5,6,7
CVE-2015-3197 Oracle Linux openssl098e Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2016-0800 Oracle Linux openssl098e Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-5296 Oracle Linux samba Yes 5.8 Network Medium None Partial Partial None 6,7
CVE-2015-5296 Oracle Linux samba4 Yes 5.8 Network Medium None Partial Partial None 6
CVE-2014-9715 Oracle Linux kernel-uek No 5.7 Adjacent network Medium None None None Complete 5
CVE-2015-2150 Oracle Linux kernel-uek No 5.2 Adjacent network Medium Single None None Complete 5
CVE-2015-5307 Oracle Linux kernel-uek No 5.2 Adjacent network Medium Single None None Complete 5
CVE-2015-8104 Oracle Linux kernel-uek No 5.2 Adjacent network Medium Single None None Complete 5
CVE-2015-5307 Oracle Linux Unbreakable Enterprise kernel No 5.2 Adjacent network Medium Single None None Complete 5,6
CVE-2015-8104 Oracle Linux Unbreakable Enterprise kernel No 5.2 Adjacent network Medium Single None None Complete 5,6
CVE-2016-1957 Oracle Linux firefox Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1966 Oracle Linux firefox Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1973 Oracle Linux firefox Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1974 Oracle Linux firefox Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-0778 Oracle Linux openssh Yes 5.1 Network High None Partial Partial Partial 7
CVE-2014-8142 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0231 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0232 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0273 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-2305 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-3307 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-3329 Oracle Linux php54 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-4021 Oracle Linux php54-php Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-4022 Oracle Linux php54-php Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-4643 Oracle Linux php54-php Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2014-8142 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0231 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0232 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-0273 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-2305 Oracle Linux php55 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-3307 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2015-3329 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2015-4021 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2015-4022 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2015-4643 Oracle Linux php55-php Yes 5.1 Network High None Partial Partial Partial 7
CVE-2014-1912 Oracle Linux python27 Yes 5.1 Network High None Partial Partial Partial 6,7
CVE-2015-7205 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2015-7212 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2015-7213 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1957 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1966 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-1974 Oracle Linux thunderbird Yes 5.1 Network High None Partial Partial Partial 5,6,7
CVE-2016-0741 Oracle Linux 389-ds-base Yes 5.0 Network Low None None None Partial 7
CVE-2016-1285 Oracle Linux bind Yes 5.0 Network Low None None None Partial 5,6,7
CVE-2016-1286 Oracle Linux bind Yes 5.0 Network Low None None None Partial 5,6,7
CVE-2016-1285 Oracle Linux bind97 Yes 5.0 Network Low None None None Partial 5
CVE-2016-1286 Oracle Linux bind97 Yes 5.0 Network Low None None None Partial 5
CVE-2015-0228 Oracle Linux httpd24-httpd Yes 5.0 Network Low None None None Partial 7
CVE-2016-0466 Oracle Linux java-1.6.0-openjdk Yes 5.0 Network Low None None None Partial 5,6,7
CVE-2016-0466 Oracle Linux java-1.7.0-openjdk Yes 5.0 Network Low None None None Partial 5,6,7
CVE-2016-0466 Oracle Linux java-1.8.0-openjdk Yes 5.0 Network Low None None None Partial 6,7
CVE-2015-3223 Oracle Linux libldb Yes 5.0 Network Low None None None Partial 6,7
CVE-2010-5107 Oracle Linux openssh Yes 5.0 Network Low None None None Partial 5
CVE-2015-4604 Oracle Linux php54 Yes 5.0 Network Low None None None Partial 6,7
CVE-2015-4605 Oracle Linux php54 Yes 5.0 Network Low None None None Partial 6,7
CVE-2015-4024 Oracle Linux php54-php Yes 5.0 Network Low None None None Partial 6,7
CVE-2015-4024 Oracle Linux php55-php Yes 5.0 Network Low None None None Partial 7
CVE-2015-4604 Oracle Linux php55-php Yes 5.0 Network Low None None None Partial 7
CVE-2015-4605 Oracle Linux php55-php Yes 5.0 Network Low None None None Partial 7
CVE-2014-4650 Oracle Linux python27 Yes 5.0 Network Low None Partial None None 6,7
CVE-2015-3223 Oracle Linux samba Yes 5.0 Network Low None None None Partial 7
CVE-2015-3223 Oracle Linux samba4 Yes 5.0 Network Low None None None Partial 6
CVE-2016-1714 Oracle Linux qemu-kvm No 4.9 Adjacent network Medium Single Partial Partial Partial 7
CVE-2016-1714 Oracle Linux qemu-kvm No 4.9 Adjacent network Medium Single Partial Partial Partial 6
CVE-2014-9420 Oracle Linux kernel-uek No 4.7 Local Medium None None None Complete 5
CVE-2012-3520 Oracle Linux kernel-uek No 4.4 Local Medium None Partial Partial Partial 5
CVE-2015-3256 Oracle Linux polkit No 4.4 Local Medium None Partial Partial Partial 7
CVE-2016-1954 Oracle Linux firefox Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2016-1958 Oracle Linux firefox Yes 4.3 Network Medium None Partial None None 5,6,7
CVE-2016-1965 Oracle Linux firefox Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2013-5704 Oracle Linux httpd24-httpd Yes 4.3 Network Medium None None Partial None 6
CVE-2016-0402 Oracle Linux java-1.6.0-openjdk Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2016-0448 Oracle Linux java-1.6.0-openjdk Yes 4.3 Network Medium None Partial None None 5,6,7
CVE-2016-0402 Oracle Linux java-1.7.0-openjdk Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2016-0448 Oracle Linux java-1.7.0-openjdk Yes 4.3 Network Medium None Partial None None 5,6,7
CVE-2016-0402 Oracle Linux java-1.8.0-openjdk Yes 4.3 Network Medium None None Partial None 6,7
CVE-2016-0448 Oracle Linux java-1.8.0-openjdk Yes 4.3 Network Medium None Partial None None 6,7
CVE-2016-0777 Oracle Linux openssh Yes 4.3 Network Medium None Partial None None 7
CVE-2016-0797 Oracle Linux openssl Yes 4.3 Network Medium None None None Partial 5,6,7
CVE-2015-0293 Oracle Linux openssl098e Yes 4.3 Network Medium None None None Partial 6,7
CVE-2016-0703 Oracle Linux openssl098e Yes 4.3 Network Medium None Partial None None 6,7
CVE-2016-0704 Oracle Linux openssl098e Yes 4.3 Network Medium None Partial None None 6,7
CVE-2014-9652 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2014-9705 Oracle Linux php54 Yes 4.3 Network Medium None None None Partial 6,7
CVE-2015-2783 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4148 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4599 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4600 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4601 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4602 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4603 Oracle Linux php54 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2014-9652 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2014-9705 Oracle Linux php55 Yes 4.3 Network Medium None None None Partial 6,7
CVE-2015-4148 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4599 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4600 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-4601 Oracle Linux php55 Yes 4.3 Network Medium None Partial None None 6,7
CVE-2015-2783 Oracle Linux php55-php Yes 4.3 Network Medium None Partial None None 7
CVE-2015-4602 Oracle Linux php55-php Yes 4.3 Network Medium None Partial None None 7
CVE-2015-4603 Oracle Linux php55-php Yes 4.3 Network Medium None Partial None None 7
CVE-2013-1752 Oracle Linux python27 Yes 4.3 Network Medium None None None Partial 6,7
CVE-2013-1753 Oracle Linux python27 Yes 4.3 Network Medium None None None Partial 6,7
CVE-2015-7236 Oracle Linux rpcbind Yes 4.3 Network Medium None None None Partial 6,7
CVE-2014-8080 Oracle Linux ruby193-ruby Yes 4.3 Network Medium None None None Partial 6
CVE-2014-8090 Oracle Linux ruby193-ruby Yes 4.3 Network Medium None None None Partial 6
CVE-2015-5252 Oracle Linux samba Yes 4.3 Network Medium None None Partial None 6,7
CVE-2015-7540 Oracle Linux samba Yes 4.3 Network Medium None None None Partial 7
CVE-2015-5252 Oracle Linux samba4 Yes 4.3 Network Medium None None Partial None 6
CVE-2015-7540 Oracle Linux samba4 Yes 4.3 Network Medium None None None Partial 6
CVE-2015-7214 Oracle Linux thunderbird Yes 4.3 Network Medium None Partial None None 5,6,7
CVE-2016-1954 Oracle Linux thunderbird Yes 4.3 Network Medium None None Partial None 5,6,7
CVE-2010-5313 Oracle Linux kernel-uek No 4.0 Local High None None None Complete 5
CVE-2014-9709 Oracle Linux php54 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-2348 Oracle Linux php54 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-2787 Oracle Linux php54 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-3411 Oracle Linux php54 Yes 4.0 Network High None Partial Partial None 6,7
CVE-2015-3412 Oracle Linux php54 Yes 4.0 Network High None Partial Partial None 6,7
CVE-2015-4025 Oracle Linux php54-php Yes 4.0 Network High None Partial Partial None 6,7
CVE-2015-4026 Oracle Linux php54-php Yes 4.0 Network High None Partial Partial None 6,7
CVE-2015-4598 Oracle Linux php54-php Yes 4.0 Network High None Partial Partial None 6,7
CVE-2014-9709 Oracle Linux php55 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-2348 Oracle Linux php55 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-2787 Oracle Linux php55 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2015-3411 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2015-3412 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2015-4025 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2015-4026 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2015-4598 Oracle Linux php55-php Yes 4.0 Network High None Partial Partial None 7
CVE-2014-4616 Oracle Linux python27 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2014-7185 Oracle Linux python27 Yes 4.0 Network High None Partial None Partial 6,7
CVE-2014-7842 Oracle Linux Unbreakable Enterprise kernel No 4.0 Local High None None None Complete 5,6
CVE-2014-9683 Oracle Linux kernel-uek No 3.6 Local Low None None Partial Partial 5
CVE-2015-8704 Oracle Linux bind No 3.5 Network Medium Single None None Partial 5,6,7
CVE-2015-8704 Oracle Linux bind97 No 3.5 Network Medium Single None None Partial 5
CVE-2015-5330 Oracle Linux libldb No 3.5 Network Medium Single Partial None None 6,7
CVE-2015-5299 Oracle Linux samba No 3.5 Network Medium Single Partial None None 6,7
CVE-2015-7560 Oracle Linux samba No 3.5 Network Medium Single Partial None None 6,7
CVE-2015-5299 Oracle Linux samba4 No 3.5 Network Medium Single Partial None None 6
CVE-2015-7560 Oracle Linux samba4 No 3.5 Network Medium Single Partial None None 6
CVE-2015-2922 Oracle Linux kernel-uek No 3.3 Adjacent network Low None None None Partial 5
CVE-2015-5229 Oracle Linux glibc Yes 2.6 Network High None None None Partial 7
CVE-2014-3581 Oracle Linux httpd24-httpd Yes 2.6 Network High None None None Partial 6
CVE-2015-0253 Oracle Linux httpd24-httpd Yes 2.6 Network High None None None Partial 7
CVE-2015-3183 Oracle Linux httpd24-httpd Yes 2.6 Network High None None None Partial 7
CVE-2015-3185 Oracle Linux httpd24-httpd Yes 2.6 Network High None None None Partial 7
CVE-2016-0702 Oracle Linux openssl No 2.6 Local High None Partial Partial None 6,7
CVE-2016-0705 Oracle Linux openssl Yes 2.6 Network High None None None Partial 6,7
CVE-2015-1351 Oracle Linux php54 Yes 2.6 Network High None Partial None None 6,7
CVE-2015-2301 Oracle Linux php54 Yes 2.6 Network High None Partial None None 6,7
CVE-2015-4644 Oracle Linux php54-php Yes 2.6 Network High None None None Partial 6,7
CVE-2015-1351 Oracle Linux php55 Yes 2.6 Network High None Partial None None 6,7
CVE-2015-1352 Oracle Linux php55 Yes 2.6 Network High None None None Partial 6,7
CVE-2015-2301 Oracle Linux php55 Yes 2.6 Network High None Partial None None 6,7
CVE-2015-4644 Oracle Linux php55-php Yes 2.6 Network High None None None Partial 7
CVE-2014-4975 Oracle Linux ruby193-ruby Yes 2.6 Network High None None None Partial 6
CVE-2013-7421 Oracle Linux kernel-uek No 2.1 Local Low None None Partial None 5
CVE-2014-9427 Oracle Linux php54 No 2.1 Local Low None None None Partial 6,7
CVE-2014-9427 Oracle Linux php55 No 2.1 Local Low None None None Partial 6,7
CVE-2013-7421 Oracle Linux Unbreakable Enterprise kernel No 2.1 Local Low None None Partial None 5,6
CVE-2014-9644 Oracle Linux Unbreakable Enterprise kernel No 2.1 Local Low None None Partial None 5,6
CVE-2014-8133 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2014-9419 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2014-9584 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2014-9585 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2015-1593 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
CVE-2015-2830 Oracle Linux kernel-uek No 1.9 Local Medium None None Partial None 5
CVE-2015-5697 Oracle Linux kernel-uek No 1.9 Local Medium None Partial None None 5
 

 

Revision 1: Published on 2016-01-19



CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen-
tication
Confiden-
tiality
Integrity Avail-
ability
CVE-2015-7512 Oracle Linux qemu-kvm Yes 7.6 Network High None Complete Complete Complete 6
CVE-2015-7501 Oracle Linux jakarta-commons-collections Yes 7.5 Network Low None Partial Partial Partial 5
CVE-2015-7872 Oracle Linux kernel No 7.2 Local Low None Complete Complete Complete 7
CVE-2016-0728 Oracle Linux kernel No 7.2 Local Low None Complete Complete Complete 7
CVE-2015-7872 Oracle Linux kernel-uek No 7.2 Local Low None Complete Complete Complete 5,6
CVE-2016-0728 Oracle Linux kernel-uek No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2015-7872 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2016-0728 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6,7
CVE-2015-5364 Oracle Linux kernel Yes 7.1 Network Medium None None None Complete 5
CVE-2015-5366 Oracle Linux kernel Yes 7.1 Network Medium None None None Complete 5
CVE-2015-3331 Oracle Linux kernel-uek No 7.1 Network High Single Complete Complete Complete 5
CVE-2015-5364 Oracle Linux kernel-uek Yes 7.1 Network Medium None None None Complete 5
CVE-2014-3215 Oracle Linux kernel-uek No 6.9 Local Medium None Complete Complete Complete 5
CVE-2016-1521 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1522 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1523 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1930 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1935 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1952 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1960 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1961 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1962 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1964 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-1977 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2790 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2791 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2792 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2793 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2794 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2795 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2796 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2797 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2798 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2799 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2800 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2801 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-2802 Oracle Linux firefox Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2015-7545 Oracle Linux git19-git Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-7547 Oracle Linux glibc Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-7547 Oracle Linux glibc Yes 6.8 Network Medium None Partial Partial Partial 6
CVE-2016-0483 Oracle Linux java-1.6.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0494 Oracle Linux java-1.6.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0483 Oracle Linux java-1.7.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0494 Oracle Linux java-1.7.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 5,6,7
CVE-2016-0483 Oracle Linux java-1.8.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2016-0494 Oracle Linux java-1.8.0-openjdk Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-5156 Oracle Linux kernel-uek No 6.8 Adjacent network High None Complete Complete Complete 5
CVE-2016-1950 Oracle Linux nss Yes 6.8 Network Medium None Partial Partial Partial 5
CVE-2016-1950 Oracle Linux nss-util Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-3330 Oracle Linux php54 Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-4147 Oracle Linux php54 Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-4147 Oracle Linux php55 Yes 6.8 Network Medium None Partial Partial Partial 6,7
CVE-2015-3330 Oracle Linux php55-php Yes 6.8 Network Medium None