Oracle Linux Bulletin - July 2019


Description

The Oracle Linux Bulletin lists all CVEs that had been resolved and announced in Oracle Linux Security Advisories (ELSA) in the last one month prior to the release of the bulletin. Oracle Linux Bulletins are published on the same day as Oracle Critical Patch Updates are released. These bulletins will also be updated for the following two months after their release (i.e., the two months between the normal quarterly Critical Patch Update publication dates) to cover all CVEs that had been resolved in those two months following the bulletin's publication. In addition, Oracle Linux Bulletins may also be updated for vulnerability fixes deemed too critical to wait for the next scheduled bulletin publication date.

Due to the threat posed by a successful attack, Oracle strongly recommends that customers apply Oracle Linux Bulletin fixes as soon as possible.


Patch Availability

Please see ULN Advisory https://linux.oracle.com/ol-pad-bulletin


Oracle Linux Bulletin Schedule

Oracle Linux Bulletins are released on the Tuesday closest to the 17th day of January, April, July and October. The next four dates are:

  • 15 October 2019
  • 14 January 2020
  • 14 April 2020
  • 14 July 2020

References


Modification History


2019-September-19 Rev 3. New CVEs added.
2019-August-16 Rev 2. New CVEs added.
2019-July-16 Rev 1. Initial Release

 

Oracle Linux Executive Summary

 

This Oracle Linux Bulletin contains 168 new security fixes for the Oracle Linux.  107 of these vulnerabilities may be remotely exploitable without authentication, i.e., may be exploited over a network without the need for a username and password. 

 

Oracle Linux Risk Matrix


Revision 3: Published on 2019-09-19



CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen-
tication
Confiden-
tiality
Integrity Avail-
ability
CVE-2019-11811 Oracle Linux kernel Yes 9.8 Network Low None High High High 8
CVE-2018-12178 Oracle Linux edk2 Yes 9.1 Network Low None None High High 7
CVE-2018-12180 Oracle Linux edk2 Yes 8.8 Network Low None High High High 7
CVE-2018-19824 Oracle Linux kernel No 7.8 Local Low None High High High 8
CVE-2018-9568 Oracle Linux kernel No 7.8 Local Low None High High High 6
CVE-2019-11085 Oracle Linux kernel No 7.8 Local Low None High High High 8
CVE-2018-3630 Oracle Linux edk2 No 7.6 Physical Low None High High High 7
CVE-2019-11810 Oracle Linux kernel Yes 7.5 Network Low None None None High 6
CVE-2019-11810 Oracle Linux kernel Yes 7.5 Network Low None None None High 8
CVE-2019-12155 Oracle Linux qemu-kvm Yes 7.5 Network Low None None None High 7
CVE-2017-5731 Oracle Linux edk2 No 6.7 Local Low None High High High 7
CVE-2017-5732 Oracle Linux edk2 No 6.7 Local Low None High High High 7
CVE-2017-5733 Oracle Linux edk2 No 6.7 Local Low None High High High 7
CVE-2017-5734 Oracle Linux edk2 No 6.7 Local Low None High High High 7
CVE-2017-5735 Oracle Linux edk2 No 6.7 Local Low None High High High 7
CVE-2018-12181 Oracle Linux edk2 No 6.0 Local Low None None High High 7
CVE-2017-5715 Oracle Linux edk2 No 5.6 Local High None High None None 7
CVE-2017-5753 Oracle Linux edk2 No 5.6 Local High None High None None 7
CVE-2019-1125 Oracle Linux kernel No 5.5 Local Low None High None None 7
CVE-2019-1125 Oracle Linux kernel No 5.5 Local Low None High None None 8
CVE-2019-1125 Oracle Linux Unbreakable Enterprise kernel No 5.5 Local Low None High None None 6
 

 

Revision 2: Published on 2019-08-16



CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen-
tication
Confiden-
tiality
Integrity Avail-
ability
CVE-2018-14618 Oracle Linux curl Yes 9.8 Network Low None High High High 7
CVE-2019-11691 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-11692 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-11693 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-11709 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-11713 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-9788 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-9790 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-9791 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-9792 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-9795 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-9796 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-9800 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-9819 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2019-9820 Oracle Linux firefox Yes 9.8 Network Low None High High High 8
CVE-2018-1312 Oracle Linux httpd Yes 9.8 Network Low None High High High 7
CVE-2019-11811 Oracle Linux kernel Yes 9.8 Network Low None High High High 7
CVE-2018-12327 Oracle Linux ntp Yes 9.8 Network Low None High High High 7
CVE-2019-9636 Oracle Linux python3 Yes 9.8 Network Low None High High High 8
CVE-2019-11709 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-11713 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-11691 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-11692 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-11693 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-11703 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-11704 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-11705 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-11709 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 6
CVE-2019-11713 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 6
CVE-2019-9788 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-9790 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-9791 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-9792 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-9795 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-9796 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-9800 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-9819 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2019-9820 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 8
CVE-2018-8014 Oracle Linux tomcat Yes 9.8 Network Low None High High High 7
CVE-2019-5953 Oracle Linux wget Yes 9.8 Network Low None High High High 8
CVE-2019-11234 Oracle Linux freeradius:3.0 Yes 9.8 Network Low None High High High 8
CVE-2019-11235 Oracle Linux freeradius:3.0 Yes 9.8 Network Low None High High High 8
CVE-2018-8014 Oracle Linux pki-deps:10.6 Yes 9.8 Network Low None High High High 8
CVE-2019-9636 Oracle Linux python27:2.7 Yes 9.8 Network Low None High High High 8
CVE-2018-20815 Oracle Linux virt:rhel Yes 9.8 Network Low None High High High 8
CVE-2019-3862 Oracle Linux libssh2 Yes 9.1 Network Low None High None High 7
CVE-2019-10063 Oracle Linux flatpak Yes 9.0 Network High None High High High 8
CVE-2018-12180 Oracle Linux edk2 Yes 8.8 Network Low None High High High 8
CVE-2019-11707 Oracle Linux firefox Yes 8.8 Network Low None High High High 8
CVE-2019-11712 Oracle Linux firefox Yes 8.8 Network Low None High High High 8
CVE-2019-9810 Oracle Linux firefox Yes 8.8 Network Low None High High High 8
CVE-2019-9813 Oracle Linux firefox Yes 8.8 Network Low None High High High 8
CVE-2019-8324 Oracle Linux ruby:2.5 Yes 8.8 Network Low None High High High 8
CVE-2019-11712 Oracle Linux thunderbird Yes 8.8 Network Low None High High High 8
CVE-2019-11707 Oracle Linux thunderbird Yes 8.8 Network Low None High High High 8
CVE-2019-11712 Oracle Linux thunderbird Yes 8.8 Network Low None High High High 6
CVE-2019-9810 Oracle Linux thunderbird Yes 8.8 Network Low None High High High 8
CVE-2019-9813 Oracle Linux thunderbird Yes 8.8 Network Low None High High High 8
CVE-2019-10132 Oracle Linux virt:rhel Yes 8.8 Network Low None High High High 8
CVE-2019-10161 Oracle Linux virt:rhel No 8.8 Local Low None High High High 8
CVE-2019-10167 Oracle Linux virt:rhel No 8.8 Local Low None High High High 8
CVE-2019-10168 Oracle Linux virt:rhel No 8.8 Local Low None High High High 8
CVE-2019-3855 Oracle Linux virt:rhel Yes 8.8 Network Low None High High High 8
CVE-2019-3856 Oracle Linux virt:rhel Yes 8.8 Network Low None High High High 8
CVE-2019-3857 Oracle Linux virt:rhel Yes 8.8 Network Low None High High High 8
CVE-2019-3863 Oracle Linux virt:rhel Yes 8.8 Network Low None High High High 8
CVE-2018-5743 Oracle Linux bind Yes 8.6 Network Low None None None High 8
CVE-2019-12735 Oracle Linux vim No 8.6 Local Low None High High High 6,7,8
CVE-2019-5736 Oracle Linux container-tools:rhel8 No 8.6 Local Low None High High High 8
CVE-2018-9363 Oracle Linux kernel No 8.4 Local Low None High High High 7
CVE-2019-9811 Oracle Linux firefox Yes 8.3 Network High None High High High 8
CVE-2019-9811 Oracle Linux thunderbird Yes 8.3 Network High None High High High 8
CVE-2019-9811 Oracle Linux thunderbird Yes 8.3 Network High None High High High 6
CVE-2019-2698 Oracle Linux java-1.8.0-openjdk Yes 8.1 Network High None High High High 8
CVE-2019-3878 Oracle Linux mod_auth_mellon Yes 8.1 Network High None High High High 8
CVE-2018-16884 Oracle Linux kernel No 8.0 Adjacent network Low Single High High High 7
CVE-2019-3839 Oracle Linux ghostscript No 7.8 Local Low None High High High 8
CVE-2017-17805 Oracle Linux kernel No 7.8 Local Low None High High High 6
CVE-2018-14734 Oracle Linux kernel No 7.8 Local Low None High High High 7
CVE-2018-9516 Oracle Linux kernel No 7.8 Local Low None High High High 7
CVE-2019-11085 Oracle Linux kernel No 7.8 Local Low None High High High 7
CVE-2019-6778 Oracle Linux qemu-kvm No 7.8 Local Low None High High High 7
CVE-2019-10166 Oracle Linux virt:rhel No 7.8 Local High None High High High 8
CVE-2019-3883 Oracle Linux 389-ds-base Yes 7.5 Network Low None None None High 7
CVE-2019-11708 Oracle Linux firefox Yes 7.5 Network High None High High High 8
CVE-2019-11711 Oracle Linux firefox Yes 7.5 Network High None High High High 8
CVE-2019-2602 Oracle Linux java-1.8.0-openjdk Yes 7.5 Network Low None None None High 8
CVE-2019-2602 Oracle Linux java-11-openjdk Yes 7.5 Network Low None None None High 8
CVE-2019-11477 Oracle Linux kernel Yes 7.5 Network Low None None None High 8
CVE-2019-11478 Oracle Linux kernel Yes 7.5 Network Low None None None High 8
CVE-2019-11479 Oracle Linux kernel Yes 7.5 Network Low None None None High 8
CVE-2018-16871 Oracle Linux kernel Yes 7.5 Network Low None None None High 7
CVE-2019-11810 Oracle Linux kernel Yes 7.5 Network Low None None None High 7
CVE-2019-3816 Oracle Linux openwsman Yes 7.5 Network Low None High None None 8
CVE-2019-11711 Oracle Linux thunderbird Yes 7.5 Network High None High High High 8
CVE-2019-11706 Oracle Linux thunderbird Yes 7.5 Network Low None None None High 8
CVE-2019-11708 Oracle Linux thunderbird Yes 7.5 Network High None High High High 8
CVE-2019-11711 Oracle Linux thunderbird Yes 7.5 Network High None High High High 6
CVE-2018-8034 Oracle Linux tomcat Yes 7.5 Network Low None High None None 7
CVE-2018-16871 Oracle Linux Unbreakable Enterprise kernel Yes 7.5 Network Low None None None High 7
CVE-2018-8034 Oracle Linux pki-deps:10.6 Yes 7.5 Network Low None High None None 8
CVE-2018-20169 Oracle Linux Unbreakable Enterprise kernel No 7.2 Local Low None Complete Complete Complete 6
CVE-2017-5731 Oracle Linux ovmf No 6.7 Local Low None High High High 7
CVE-2017-5732 Oracle Linux ovmf No 6.7 Local Low None High High High 7
CVE-2017-5733 Oracle Linux ovmf No 6.7 Local Low None High High High 7
CVE-2017-5734 Oracle Linux ovmf No 6.7 Local Low None High High High 7
CVE-2017-5735 Oracle Linux ovmf No 6.7 Local Low None High High High 7
CVE-2019-5798 Oracle Linux firefox Yes 6.5 Network Low None High None None 8
CVE-2019-3459 Oracle Linux kernel No 6.5 Adjacent network Low None High None None 7
CVE-2019-5798 Oracle Linux thunderbird Yes 6.5 Network Low None High None None 8
CVE-2019-3827 Oracle Linux gvfs No 6.3 Local High None High High None 7
CVE-2019-3827 Oracle Linux gvfs No 6.3 Local High None High High None 8
CVE-2019-11698 Oracle Linux firefox Yes 6.1 Network Low None Low Low None 8
CVE-2019-11715 Oracle Linux firefox Yes 6.1 Network Low None Low Low None 8
CVE-2019-11730 Oracle Linux firefox Yes 6.1 Network Low None Low Low None 8
CVE-2018-16658 Oracle Linux kernel No 6.1 Local Low None Low None High 7
CVE-2019-11715 Oracle Linux thunderbird Yes 6.1 Network Low None Low Low None 8
CVE-2019-11730 Oracle Linux thunderbird Yes 6.1 Network Low None Low Low None 8
CVE-2019-11698 Oracle Linux thunderbird Yes 6.1 Network Low None Low Low None 8
CVE-2019-11715 Oracle Linux thunderbird Yes 6.1 Network Low None Low Low None 6
CVE-2019-11730 Oracle Linux thunderbird Yes 6.1 Network Low None Low Low None 6
CVE-2018-12181 Oracle Linux ovmf No 6.0 Local Low None None High High 7
CVE-2018-18506 Oracle Linux firefox Yes 5.9 Network High None None High None 8
CVE-2019-9793 Oracle Linux firefox Yes 5.9 Network High None None High None 8
CVE-2019-9816 Oracle Linux firefox Yes 5.9 Network High None None High None 8
CVE-2019-2684 Oracle Linux java-1.8.0-openjdk Yes 5.9 Network High None None High None 8
CVE-2019-2684 Oracle Linux java-11-openjdk Yes 5.9 Network High None None High None 8
CVE-2018-18506 Oracle Linux thunderbird Yes 5.9 Network High None None High None 8
CVE-2019-9793 Oracle Linux thunderbird Yes 5.9 Network High None None High None 8
CVE-2018-12126 Oracle Linux kernel No 5.6 Local High None High None None 8
CVE-2018-12127 Oracle Linux kernel No 5.6 Local High None High None None 8
CVE-2018-12130 Oracle Linux kernel No 5.6 Local High None High None None 8
CVE-2019-11091 Oracle Linux kernel No 5.6 Local High None High None None 8
CVE-2018-12126 Oracle Linux virt:rhel No 5.6 Local High None High None None 8
CVE-2018-12127 Oracle Linux virt:rhel No 5.6 Local High None High None None 8
CVE-2018-12130 Oracle Linux virt:rhel No 5.6 Local High None High None None 8
CVE-2019-11091 Oracle Linux virt:rhel No 5.6 Local High None High None None 8
CVE-2019-3835 Oracle Linux ghostscript No 5.5 Local Low None High None None 8
CVE-2019-3838 Oracle Linux ghostscript No 5.5 Local Low None High None None 8
CVE-2018-17972 Oracle Linux kernel No 5.5 Local Low None High None None 6
CVE-2019-1125 Oracle Linux kernel No 5.5 Local Low None High None None 6
CVE-2019-5489 Oracle Linux kernel No 5.5 Local Low None High None None 6
CVE-2019-9213 Oracle Linux kernel No 5.5 Local Low None None None High 8
CVE-2018-13094 Oracle Linux kernel No 5.5 Local Low None None None High 7
CVE-2018-15594 Oracle Linux kernel No 5.5 Local Low None High None None 7
CVE-2018-7755 Oracle Linux kernel No 5.5 Local Low None High None None 7
CVE-2019-11833 Oracle Linux kernel No 5.5 Local Low None High None None 7
CVE-2019-5489 Oracle Linux kernel No 5.5 Local Low None High None None 7
CVE-2019-7222 Oracle Linux kernel No 5.5 Local Low None High None None 7
CVE-2019-9824 Oracle Linux qemu-kvm No 5.5 Local Low None High None None 7
CVE-2019-6454 Oracle Linux systemd No 5.5 Local Low None None None High 8
CVE-2018-5750 Oracle Linux Unbreakable Enterprise kernel No 5.5 Local Low None High None None 6
CVE-2019-1125 Oracle Linux Unbreakable Enterprise kernel No 5.5 Local Low None High None None 6,7
CVE-2019-11833 Oracle Linux Unbreakable Enterprise kernel No 5.5 Local Low None High None None 6,7
CVE-2019-12378 Oracle Linux Unbreakable Enterprise kernel No 5.5 Local Low None None None High 6,7
CVE-2019-12381 Oracle Linux Unbreakable Enterprise kernel No 5.5 Local Low None None None High 6,7
CVE-2019-11717 Oracle Linux firefox Yes 5.3 Network Low None None Low None 8
CVE-2019-7317 Oracle Linux firefox Yes 5.3 Network High None None None High 8
CVE-2019-9797 Oracle Linux firefox Yes 5.3 Network Low None Low None None 8
CVE-2019-9817 Oracle Linux firefox Yes 5.3 Network Low None Low None None 8
CVE-2019-2762 Oracle Linux java-1.7.0-openjdk Yes 5.3 Network Low None None None Low 6,7
CVE-2019-2769 Oracle Linux java-1.7.0-openjdk Yes 5.3 Network Low None None None Low 6,7
CVE-2019-2762 Oracle Linux java-1.8.0-openjdk Yes 5.3 Network Low None None None Low 6,7,8
CVE-2019-2769 Oracle Linux java-1.8.0-openjdk Yes 5.3 Network Low None None None Low 6,7,8
CVE-2019-2762 Oracle Linux java-11-openjdk Yes 5.3 Network Low None None None Low 7,8
CVE-2019-2769 Oracle Linux java-11-openjdk Yes 5.3 Network Low None None None Low 7,8
CVE-2019-2821 Oracle Linux java-11-openjdk Yes 5.3 Network High None High None None 7,8
CVE-2018-15473 Oracle Linux openssh Yes 5.3 Network Low None Low None None 7
CVE-2019-11717 Oracle Linux thunderbird Yes 5.3 Network Low None None Low None 8
CVE-2019-11717 Oracle Linux thunderbird Yes 5.3 Network Low None None Low None 6
CVE-2019-7317 Oracle Linux thunderbird Yes 5.3 Network High None None None High 8
CVE-2019-9797 Oracle Linux thunderbird Yes 5.3 Network Low None Low None None 8
CVE-2019-9817 Oracle Linux thunderbird Yes 5.3 Network Low None Low None None 8
CVE-2019-2745 Oracle Linux java-1.7.0-openjdk No 5.1 Local High None High None None 6,7
CVE-2019-2745 Oracle Linux java-1.8.0-openjdk No 5.1 Local High None High None None 6,7,8
CVE-2019-2745 Oracle Linux java-11-openjdk No 5.1 Local High None High None None 7,8
CVE-2019-11719 Oracle Linux nss and nspr Yes 5.0 Network Low None Partial None None 8
CVE-2019-11727 Oracle Linux nss and nspr Yes 5.0 Network Low None None Partial None 8
CVE-2019-11729 Oracle Linux nss and nspr Yes 5.0 Network Low None None None Partial 8
CVE-2019-2816 Oracle Linux java-1.7.0-openjdk Yes 4.8 Network High None Low Low None 6,7
CVE-2019-2816 Oracle Linux java-1.8.0-openjdk Yes 4.8 Network High None Low Low None 6,7,8
CVE-2019-2816 Oracle Linux java-11-openjdk Yes 4.8 Network High None Low Low None 7,8
CVE-2018-0495 Oracle Linux nss, nss-softokn, nss-util, and nspr No 4.7 Local High None High None None 7
CVE-2018-5407 Oracle Linux ovmf No 4.7 Local High None High None None 7
CVE-2017-18203 Oracle Linux Unbreakable Enterprise kernel No 4.7 Local High None None None High 6
CVE-2018-18511 Oracle Linux firefox Yes 4.3 Network Low None Low None None 8
CVE-2018-18511 Oracle Linux thunderbird Yes 4.3 Network Low None Low None None 8
CVE-2018-11784 Oracle Linux pki-deps:10.6 Yes 4.3 Network Low None None Low None 8
CVE-2019-2842 Oracle Linux java-1.7.0-openjdk Yes 3.7 Network High None None None Low 6,7
CVE-2019-2842 Oracle Linux java-1.8.0-openjdk Yes 3.7 Network High None None None Low 6,7,8
CVE-2018-13053 Oracle Linux kernel No 3.3 Local Low None None None Low 7
CVE-2019-2786 Oracle Linux java-1.7.0-openjdk Yes 3.1 Network High None Low None None 6,7
CVE-2019-2786 Oracle Linux java-1.8.0-openjdk Yes 3.1 Network High None Low None None 6,7,8
CVE-2019-2786 Oracle Linux java-11-openjdk Yes 3.1 Network High None Low None None 7,8
CVE-2019-2818 Oracle Linux java-11-openjdk Yes 3.1 Network High None Low None None 7,8
CVE-2019-0804 Oracle Linux WALinuxAgent Undefined 8
CVE-2019-6471 Oracle Linux bind Undefined 8
CVE-2019-11356 Oracle Linux cyrus-imapd Undefined 8
CVE-2019-0757 Oracle Linux dotnet Undefined 8
CVE-2019-0820 Oracle Linux dotnet Undefined 8
CVE-2019-0980 Oracle Linux dotnet Undefined 8
CVE-2019-0981 Oracle Linux dotnet Undefined 8
CVE-2019-10181 Oracle Linux icedtea-web Undefined 7,8
CVE-2019-10182 Oracle Linux icedtea-web Undefined 7,8
CVE-2019-10185 Oracle Linux icedtea-web Undefined 7,8
CVE-2018-18508 Oracle Linux nss and nspr Undefined 8
CVE-2018-16877 Oracle Linux pacemaker Undefined 8
CVE-2018-16878 Oracle Linux pacemaker Undefined 8
CVE-2019-3885 Oracle Linux pacemaker Undefined 8
CVE-2019-10906 Oracle Linux python-jinja2 Undefined 8
CVE-2019-9741 Oracle Linux go-toolset:rhel8 Undefined 8
CVE-2019-0211 Oracle Linux httpd:2.4 Undefined 8
CVE-2019-0215 Oracle Linux httpd:2.4 Undefined 8
CVE-2018-8037 Oracle Linux pki-deps:10.6 Undefined 8
CVE-2019-7164 Oracle Linux python27:2.7 Undefined 8
CVE-2019-7548 Oracle Linux python27:2.7 Undefined 8
CVE-2019-7164 Oracle Linux python36:3.6 Undefined 8
CVE-2019-7548 Oracle Linux python36:3.6 Undefined 8
 

 

Revision 1: Published on 2019-07-16



CVE# Product Component Remote Exploit without Auth.? CVSS VERSION 2.0 RISK (see Risk Matrix Definitions) Supported Versions Affected
Base Score Access Vector Access Complexity Authen-
tication
Confiden-
tiality
Integrity Avail-
ability
CVE-2019-11709 Oracle Linux firefox Yes 9.8 Network Low None High High High 6,7
CVE-2019-11713 Oracle Linux firefox Yes 9.8 Network Low None High High High 6,7
CVE-2019-10160 Oracle Linux python Yes 9.8 Network Low None High High High 7
CVE-2019-11703 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 6,7
CVE-2019-11704 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 6,7
CVE-2019-11705 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 6,7
CVE-2019-11709 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 7
CVE-2019-11713 Oracle Linux thunderbird Yes 9.8 Network Low None High High High 7
CVE-2019-3862 Oracle Linux libssh2 Yes 9.1 Network Low None High None High 6,7
CVE-2019-11707 Oracle Linux firefox Yes 8.8 Network Low None High High High 6,7
CVE-2019-11712 Oracle Linux firefox Yes 8.8 Network Low None High High High 6,7
CVE-2019-3855 Oracle Linux libssh2 Yes 8.8 Network Low None High High High 6
CVE-2019-3856 Oracle Linux libssh2 Yes 8.8 Network Low None High High High 6
CVE-2019-3857 Oracle Linux libssh2 Yes 8.8 Network Low None High High High 6
CVE-2019-3863 Oracle Linux libssh2 Yes 8.8 Network Low None High High High 6
CVE-2019-10161 Oracle Linux libvirt No 8.8 Local Low None High High High 7
CVE-2019-10167 Oracle Linux libvirt No 8.8 Local Low None High High High 7
CVE-2019-10168 Oracle Linux libvirt No 8.8 Local Low None High High High 7
CVE-2019-10161 Oracle Linux libvirt No 8.8 Local Low None High High High 6,7
CVE-2019-10167 Oracle Linux libvirt No 8.8 Local Low None High High High 7
CVE-2019-10168 Oracle Linux libvirt No 8.8 Local Low None High High High 7
CVE-2017-5931 Oracle Linux qemu No 8.8 Local Low None High High High 7
CVE-2019-11707 Oracle Linux thunderbird Yes 8.8 Network Low None High High High 6,7
CVE-2019-11712 Oracle Linux thunderbird Yes 8.8 Network Low None High High High 7
CVE-2018-5743 Oracle Linux bind Yes 8.6 Network Low None None None High 6
CVE-2019-9811 Oracle Linux firefox Yes 8.3 Network High None High High High 6,7
CVE-2019-9811 Oracle Linux thunderbird Yes 8.3 Network High None High High High 7
CVE-2019-3896 Oracle Linux kernel No 7.8 Local Low None High High High 6
CVE-2019-10166 Oracle Linux libvirt No 7.8 Local High None High High High 7
CVE-2019-10166 Oracle Linux libvirt No 7.8 Local High None High High High 7
CVE-2019-11708 Oracle Linux firefox Yes 7.5 Network High None High High High 6,7
CVE-2019-11711 Oracle Linux firefox Yes 7.5 Network High None High High High 6,7
CVE-2019-11477 Oracle Linux kernel Yes 7.5 Network Low None None None High 6
CVE-2019-11478 Oracle Linux kernel Yes 7.5 Network Low None None None High 6
CVE-2019-11479 Oracle Linux kernel Yes 7.5 Network Low None None None High 6
CVE-2019-11477 Oracle Linux kernel Yes 7.5 Network Low None None None High 7
CVE-2019-11478 Oracle Linux kernel Yes 7.5 Network Low None None None High 7
CVE-2019-11479 Oracle Linux kernel Yes 7.5 Network Low None None None High 7
CVE-2017-6058 Oracle Linux qemu Yes 7.5 Network Low None None None High 7
CVE-2017-9524 Oracle Linux qemu Yes 7.5 Network Low None None None High 7
CVE-2019-12155 Oracle Linux qemu Yes 7.5 Network Low None None None High 7
CVE-2019-11706 Oracle Linux thunderbird Yes 7.5 Network Low None None None High 6,7
CVE-2019-11708 Oracle Linux thunderbird Yes 7.5 Network High None High High High 6,7
CVE-2019-11711 Oracle Linux thunderbird Yes 7.5 Network High None High High High 7
CVE-2019-12749 Oracle Linux dbus No 7.1 Local Low None High High None 6
CVE-2019-6133 Oracle Linux Unbreakable Enterprise kernel No 6.7 Local High None High High High 6,7
CVE-2019-11715 Oracle Linux firefox Yes 6.1 Network Low None Low Low None 6,7
CVE-2019-11730 Oracle Linux firefox Yes 6.1 Network Low None Low Low None 6,7
CVE-2019-11715 Oracle Linux thunderbird Yes 6.1 Network Low None Low Low None 7
CVE-2019-11730 Oracle Linux thunderbird Yes 6.1 Network Low None Low Low None 7
CVE-2018-12126 Oracle Linux libvirt No 5.6 Local High None High None None 7
CVE-2018-12127 Oracle Linux libvirt No 5.6 Local High None High None None 7
CVE-2018-12130 Oracle Linux libvirt No 5.6 Local High None High None None 7
CVE-2019-11091 Oracle Linux libvirt No 5.6 Local High None High None None 7
CVE-2017-5715 Oracle Linux Unbreakable Enterprise kernel No 5.6 Local High None High None None 6
CVE-2018-20123 Oracle Linux qemu No 5.5 Local Low None None None High 7
CVE-2019-9824 Oracle Linux qemu-kvm No 5.5 Local Low None High None None 6
CVE-2017-18208 Oracle Linux Unbreakable Enterprise kernel No 5.5 Local Low None None None High 6
CVE-2018-7191 Oracle Linux Unbreakable Enterprise kernel No 5.5 Local Low None None None High 6
CVE-2019-11717 Oracle Linux firefox Yes 5.3 Network Low None None Low None 6,7
CVE-2019-11717 Oracle Linux thunderbird Yes 5.3 Network Low None None Low None 7