Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2020-13844 (GCVE-0-2020-13844)
Vulnerability from cvelistv5 – Published: 2020-06-08 22:46 – Updated: 2024-08-04 12:32
VLAI
EPSS
Summary
Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka "straight-line speculation."
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
7 references
| URL | Tags |
|---|---|
| https://developer.arm.com/support/arm-security-up… | x_refsource_CONFIRM |
| https://developer.arm.com/support/arm-security-up… | x_refsource_CONFIRM |
| https://developer.arm.com/support/arm-security-up… | x_refsource_MISC |
| https://gcc.gnu.org/pipermail/gcc-patches/2020-Ju… | x_refsource_CONFIRM |
| http://lists.llvm.org/pipermail/llvm-dev/2020-Jun… | x_refsource_CONFIRM |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
| http://lists.opensuse.org/opensuse-security-annou… | vendor-advisoryx_refsource_SUSE |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T12:32:13.103Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html"
},
{
"name": "openSUSE-SU-2020:1692",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html"
},
{
"name": "openSUSE-SU-2020:1693",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\""
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-10-18T20:06:15.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html"
},
{
"name": "openSUSE-SU-2020:1692",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html"
},
{
"name": "openSUSE-SU-2020:1693",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2020-13844",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\""
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability",
"refsource": "CONFIRM",
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability"
},
{
"name": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions",
"refsource": "CONFIRM",
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions"
},
{
"name": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation",
"refsource": "MISC",
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation"
},
{
"name": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html",
"refsource": "CONFIRM",
"url": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html"
},
{
"name": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html",
"refsource": "CONFIRM",
"url": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html"
},
{
"name": "openSUSE-SU-2020:1692",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html"
},
{
"name": "openSUSE-SU-2020:1693",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2020-13844",
"datePublished": "2020-06-08T22:46:03.000Z",
"dateReserved": "2020-06-04T00:00:00.000Z",
"dateUpdated": "2024-08-04T12:32:13.103Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2020-13844",
"date": "2026-05-27",
"epss": "0.00137",
"percentile": "0.33216"
},
"fkie_nvd": {
"configurations": "[{\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:arm:cortex-a32_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2A2DAFCD-0C51-412A-9CC9-F55112A93958\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:arm:cortex-a32:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"049894EE-B2FB-45D9-A372-098F169075AB\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:arm:cortex-a35_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"75367522-84C2-4E5C-8A4C-1CA351D152E6\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:arm:cortex-a35:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C1CA84F9-EC36-4A57-BABC-8E74770D5327\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:arm:cortex-a53_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"35B01CAB-2DD1-47D5-A331-B6C7A658C5D5\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:arm:cortex-a53:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9FF65826-F828-421F-8009-5AA5D25387E6\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"68D895EC-B0A9-4292-AC64-60673F72C765\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B00CD88D-5649-403F-A55A-BD49427D30FA\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"38768B2B-F1A3-4A76-8716-9520CA075F3D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:arm:cortex-a72:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"16E23102-964E-485D-8EFF-4B1BBFE6EDE4\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7173A6DC-4D4E-424C-A922-C16D67627834\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:arm:cortex-a73:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"33B1374D-59E8-4FE5-AC6C-0323AB1DD60D\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:arm:cortex-a34_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"54C5AF1F-673C-4AB6-98B4-53407C1A88EA\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:arm:cortex-a34:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"075E31EF-1A88-4B29-99A4-475942FF5C7B\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B620311B-34A3-48A6-82DF-6F078D7A4493\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B009C22E-30A4-4288-BCF6-C3E81DEAF45A\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \\\"straight-line speculation.\\\"\"}, {\"lang\": \"es\", \"value\": \"Las implementaciones principales de Arm Armv8-A, que usan la ejecuci\\u00f3n especulativa m\\u00e1s all\\u00e1 de los cambios incondicionales en el flujo de control pueden permitir una divulgaci\\u00f3n no autorizada de informaci\\u00f3n a un atacante con acceso de usuario local por medio de un an\\u00e1lisis de canal lateral, tambi\\u00e9n se conoce como \\\"straight-line speculation.\\\"\"}]",
"id": "CVE-2020-13844",
"lastModified": "2024-11-21T05:01:59.290",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:P/I:N/A:N\", \"baseScore\": 2.1, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 3.9, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2020-06-08T23:15:10.047",
"references": "[{\"url\": \"http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}]",
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-203\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2020-13844\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2020-06-08T23:15:10.047\",\"lastModified\":\"2024-11-21T05:01:59.290\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \\\"straight-line speculation.\\\"\"},{\"lang\":\"es\",\"value\":\"Las implementaciones principales de Arm Armv8-A, que usan la ejecuci\u00f3n especulativa m\u00e1s all\u00e1 de los cambios incondicionales en el flujo de control pueden permitir una divulgaci\u00f3n no autorizada de informaci\u00f3n a un atacante con acceso de usuario local por medio de un an\u00e1lisis de canal lateral, tambi\u00e9n se conoce como \\\"straight-line speculation.\\\"\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:P/I:N/A:N\",\"baseScore\":2.1,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":3.9,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-203\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arm:cortex-a32_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A2DAFCD-0C51-412A-9CC9-F55112A93958\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arm:cortex-a32:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"049894EE-B2FB-45D9-A372-098F169075AB\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arm:cortex-a35_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75367522-84C2-4E5C-8A4C-1CA351D152E6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arm:cortex-a35:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1CA84F9-EC36-4A57-BABC-8E74770D5327\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arm:cortex-a53_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"35B01CAB-2DD1-47D5-A331-B6C7A658C5D5\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arm:cortex-a53:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FF65826-F828-421F-8009-5AA5D25387E6\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68D895EC-B0A9-4292-AC64-60673F72C765\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B00CD88D-5649-403F-A55A-BD49427D30FA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38768B2B-F1A3-4A76-8716-9520CA075F3D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arm:cortex-a72:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16E23102-964E-485D-8EFF-4B1BBFE6EDE4\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7173A6DC-4D4E-424C-A922-C16D67627834\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arm:cortex-a73:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33B1374D-59E8-4FE5-AC6C-0323AB1DD60D\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:arm:cortex-a34_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54C5AF1F-673C-4AB6-98B4-53407C1A88EA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:arm:cortex-a34:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"075E31EF-1A88-4B29-99A4-475942FF5C7B\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B620311B-34A3-48A6-82DF-6F078D7A4493\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B009C22E-30A4-4288-BCF6-C3E81DEAF45A\"}]}]}],\"references\":[{\"url\":\"http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]}]}}"
}
}
CERTFR-2022-AVI-308
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Google Android. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à la confidentialité des données et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Google Android versions 10, 11 et 12 sans le correctif de s\u00e9curit\u00e9 du 05 avril 2022",
"product": {
"name": "Android",
"vendor": {
"name": "Google",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-30342",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30342"
},
{
"name": "CVE-2021-30350",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30350"
},
{
"name": "CVE-2021-0707",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0707"
},
{
"name": "CVE-2021-35130",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35130"
},
{
"name": "CVE-2021-30345",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30345"
},
{
"name": "CVE-2021-39808",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39808"
},
{
"name": "CVE-2021-30340",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30340"
},
{
"name": "CVE-2021-39805",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39805"
},
{
"name": "CVE-2021-39800",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39800"
},
{
"name": "CVE-2021-39795",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39795"
},
{
"name": "CVE-2021-30281",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30281"
},
{
"name": "CVE-2021-39799",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39799"
},
{
"name": "CVE-2021-0694",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0694"
},
{
"name": "CVE-2021-39797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39797"
},
{
"name": "CVE-2021-39796",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39796"
},
{
"name": "CVE-2021-30341",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30341"
},
{
"name": "CVE-2021-39794",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39794"
},
{
"name": "CVE-2021-35095",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35095"
},
{
"name": "CVE-2021-35081",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35081"
},
{
"name": "CVE-2021-30343",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30343"
},
{
"name": "CVE-2021-35112",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35112"
},
{
"name": "CVE-2021-39814",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39814"
},
{
"name": "CVE-2021-39803",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39803"
},
{
"name": "CVE-2021-39809",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39809"
},
{
"name": "CVE-2021-30347",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30347"
},
{
"name": "CVE-2021-35104",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35104"
},
{
"name": "CVE-2021-30349",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30349"
},
{
"name": "CVE-2021-30344",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30344"
},
{
"name": "CVE-2021-25477",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25477"
},
{
"name": "CVE-2020-13844",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13844"
},
{
"name": "CVE-2021-35091",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35091"
},
{
"name": "CVE-2021-30339",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30339"
},
{
"name": "CVE-2022-20081",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20081"
},
{
"name": "CVE-2021-35123",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35123"
},
{
"name": "CVE-2021-39812",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39812"
},
{
"name": "CVE-2021-39804",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39804"
},
{
"name": "CVE-2021-30338",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30338"
},
{
"name": "CVE-2021-35071",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35071"
},
{
"name": "CVE-2021-30334",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30334"
},
{
"name": "CVE-2021-39801",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39801"
},
{
"name": "CVE-2021-34866",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34866"
},
{
"name": "CVE-2021-39798",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39798"
},
{
"name": "CVE-2021-35100",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35100"
},
{
"name": "CVE-2021-30346",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30346"
},
{
"name": "CVE-2021-39802",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39802"
},
{
"name": "CVE-2021-35070",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35070"
},
{
"name": "CVE-2021-39807",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39807"
}
],
"links": [],
"reference": "CERTFR-2022-AVI-308",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2022-04-05T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Google Android.\nElles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service, une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Android",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Google Android du 04 avril 2022",
"url": "https://source.android.com/security/bulletin/2022-04-01"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Google Pixel du 04 avril 2022",
"url": "https://source.android.com/security/bulletin/pixel/2022-04-01"
}
]
}
CERTFR-2025-AVI-0279
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Db2 | Db2 versions antérieures à 5.1.2 pour Cloud Pak for Data | ||
| IBM | WebSphere | WebSphere Application Server Liberty sans le correctif APAR PH65394 | ||
| IBM | Db2 Warehouse | Db2 Warehouse versions antérieures à 5.1.2 pour Cloud Pak for Data | ||
| IBM | WebSphere | WebSphere Hybrid Edition sans le dernier correctif de sécurité | ||
| IBM | QRadar Analyst Workflow | QRadar Analyst Workflow versions antérieures à 3.0.0 |
References
| Title | Publication Time | Tags | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Db2 versions ant\u00e9rieures \u00e0 5.1.2 pour Cloud Pak for Data",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server Liberty sans le correctif APAR PH65394",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Warehouse versions ant\u00e9rieures \u00e0 5.1.2 pour Cloud Pak for Data",
"product": {
"name": "Db2 Warehouse",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Hybrid Edition sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Analyst Workflow versions ant\u00e9rieures \u00e0 3.0.0",
"product": {
"name": "QRadar Analyst Workflow",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2021-44906",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44906"
},
{
"name": "CVE-2023-45857",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45857"
},
{
"name": "CVE-2023-45142",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45142"
},
{
"name": "CVE-2022-48890",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48890"
},
{
"name": "CVE-2024-35176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35176"
},
{
"name": "CVE-2024-37071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37071"
},
{
"name": "CVE-2025-25285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25285"
},
{
"name": "CVE-2024-6232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6232"
},
{
"name": "CVE-2024-34997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34997"
},
{
"name": "CVE-2024-51479",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51479"
},
{
"name": "CVE-2024-43398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43398"
},
{
"name": "CVE-2024-35946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35946"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-41761",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41761"
},
{
"name": "CVE-2022-29153",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29153"
},
{
"name": "CVE-2023-52605",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52605"
},
{
"name": "CVE-2021-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23337"
},
{
"name": "CVE-2018-6341",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6341"
},
{
"name": "CVE-2023-52455",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52455"
},
{
"name": "CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"name": "CVE-2025-27152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27152"
},
{
"name": "CVE-2024-26740",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26740"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2025-25288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25288"
},
{
"name": "CVE-2024-35790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35790"
},
{
"name": "CVE-2022-48921",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48921"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2025-25290",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25290"
},
{
"name": "CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"name": "CVE-2024-39908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39908"
},
{
"name": "CVE-2021-47495",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47495"
},
{
"name": "CVE-2024-41946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41946"
},
{
"name": "CVE-2023-52832",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52832"
},
{
"name": "CVE-2024-41110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41110"
},
{
"name": "CVE-2024-27281",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27281"
},
{
"name": "CVE-2024-52798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52798"
},
{
"name": "CVE-2023-43804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43804"
},
{
"name": "CVE-2024-6484",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6484"
},
{
"name": "CVE-2020-13844",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13844"
},
{
"name": "CVE-2024-26776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26776"
},
{
"name": "CVE-2024-6485",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6485"
},
{
"name": "CVE-2024-41762",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41762"
},
{
"name": "CVE-2024-39494",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39494"
},
{
"name": "CVE-2025-23184",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23184"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2021-4204",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4204"
},
{
"name": "CVE-2024-26843",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26843"
},
{
"name": "CVE-2024-40679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40679"
},
{
"name": "CVE-2023-52885",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52885"
},
{
"name": "CVE-2018-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20225"
},
{
"name": "CVE-2019-11253",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11253"
},
{
"name": "CVE-2023-52898",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52898"
},
{
"name": "CVE-2025-25289",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25289"
},
{
"name": "CVE-2024-45663",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45663"
},
{
"name": "CVE-2023-52467",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52467"
},
{
"name": "CVE-2024-41123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41123"
},
{
"name": "CVE-2024-36620",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36620"
},
{
"name": "CVE-2022-48706",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48706"
},
{
"name": "CVE-2024-49761",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49761"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0279",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-04T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-04-03",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7230024",
"url": "https://www.ibm.com/support/pages/node/7230024"
},
{
"published_at": "2025-04-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7229770",
"url": "https://www.ibm.com/support/pages/node/7229770"
},
{
"published_at": "2025-03-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7229443",
"url": "https://www.ibm.com/support/pages/node/7229443"
},
{
"published_at": "2025-04-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7229768",
"url": "https://www.ibm.com/support/pages/node/7229768"
},
{
"published_at": "2025-04-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7229772",
"url": "https://www.ibm.com/support/pages/node/7229772"
}
]
}
CERTFR-2022-AVI-308
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans Google Android. Elles permettent à un attaquant de provoquer un déni de service, une atteinte à la confidentialité des données et une élévation de privilèges.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Google Android versions 10, 11 et 12 sans le correctif de s\u00e9curit\u00e9 du 05 avril 2022",
"product": {
"name": "Android",
"vendor": {
"name": "Google",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2021-30342",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30342"
},
{
"name": "CVE-2021-30350",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30350"
},
{
"name": "CVE-2021-0707",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0707"
},
{
"name": "CVE-2021-35130",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35130"
},
{
"name": "CVE-2021-30345",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30345"
},
{
"name": "CVE-2021-39808",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39808"
},
{
"name": "CVE-2021-30340",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30340"
},
{
"name": "CVE-2021-39805",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39805"
},
{
"name": "CVE-2021-39800",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39800"
},
{
"name": "CVE-2021-39795",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39795"
},
{
"name": "CVE-2021-30281",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30281"
},
{
"name": "CVE-2021-39799",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39799"
},
{
"name": "CVE-2021-0694",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-0694"
},
{
"name": "CVE-2021-39797",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39797"
},
{
"name": "CVE-2021-39796",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39796"
},
{
"name": "CVE-2021-30341",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30341"
},
{
"name": "CVE-2021-39794",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39794"
},
{
"name": "CVE-2021-35095",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35095"
},
{
"name": "CVE-2021-35081",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35081"
},
{
"name": "CVE-2021-30343",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30343"
},
{
"name": "CVE-2021-35112",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35112"
},
{
"name": "CVE-2021-39814",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39814"
},
{
"name": "CVE-2021-39803",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39803"
},
{
"name": "CVE-2021-39809",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39809"
},
{
"name": "CVE-2021-30347",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30347"
},
{
"name": "CVE-2021-35104",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35104"
},
{
"name": "CVE-2021-30349",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30349"
},
{
"name": "CVE-2021-30344",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30344"
},
{
"name": "CVE-2021-25477",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25477"
},
{
"name": "CVE-2020-13844",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13844"
},
{
"name": "CVE-2021-35091",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35091"
},
{
"name": "CVE-2021-30339",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30339"
},
{
"name": "CVE-2022-20081",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-20081"
},
{
"name": "CVE-2021-35123",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35123"
},
{
"name": "CVE-2021-39812",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39812"
},
{
"name": "CVE-2021-39804",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39804"
},
{
"name": "CVE-2021-30338",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30338"
},
{
"name": "CVE-2021-35071",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35071"
},
{
"name": "CVE-2021-30334",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30334"
},
{
"name": "CVE-2021-39801",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39801"
},
{
"name": "CVE-2021-34866",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-34866"
},
{
"name": "CVE-2021-39798",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39798"
},
{
"name": "CVE-2021-35100",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35100"
},
{
"name": "CVE-2021-30346",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-30346"
},
{
"name": "CVE-2021-39802",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39802"
},
{
"name": "CVE-2021-35070",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35070"
},
{
"name": "CVE-2021-39807",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-39807"
}
],
"links": [],
"reference": "CERTFR-2022-AVI-308",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2022-04-05T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Google Android.\nElles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service, une\natteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une \u00e9l\u00e9vation de\nprivil\u00e8ges.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Google Android",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Google Android du 04 avril 2022",
"url": "https://source.android.com/security/bulletin/2022-04-01"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Google Pixel du 04 avril 2022",
"url": "https://source.android.com/security/bulletin/pixel/2022-04-01"
}
]
}
CERTFR-2025-AVI-0279
Vulnerability from certfr_avis - Published: - Updated:
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Db2 | Db2 versions antérieures à 5.1.2 pour Cloud Pak for Data | ||
| IBM | WebSphere | WebSphere Application Server Liberty sans le correctif APAR PH65394 | ||
| IBM | Db2 Warehouse | Db2 Warehouse versions antérieures à 5.1.2 pour Cloud Pak for Data | ||
| IBM | WebSphere | WebSphere Hybrid Edition sans le dernier correctif de sécurité | ||
| IBM | QRadar Analyst Workflow | QRadar Analyst Workflow versions antérieures à 3.0.0 |
References
| Title | Publication Time | Tags | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Db2 versions ant\u00e9rieures \u00e0 5.1.2 pour Cloud Pak for Data",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Application Server Liberty sans le correctif APAR PH65394",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Warehouse versions ant\u00e9rieures \u00e0 5.1.2 pour Cloud Pak for Data",
"product": {
"name": "Db2 Warehouse",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Hybrid Edition sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Analyst Workflow versions ant\u00e9rieures \u00e0 3.0.0",
"product": {
"name": "QRadar Analyst Workflow",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2021-44906",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44906"
},
{
"name": "CVE-2023-45857",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45857"
},
{
"name": "CVE-2023-45142",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45142"
},
{
"name": "CVE-2022-48890",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48890"
},
{
"name": "CVE-2024-35176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35176"
},
{
"name": "CVE-2024-37071",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37071"
},
{
"name": "CVE-2025-25285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25285"
},
{
"name": "CVE-2024-6232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6232"
},
{
"name": "CVE-2024-34997",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34997"
},
{
"name": "CVE-2024-51479",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51479"
},
{
"name": "CVE-2024-43398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43398"
},
{
"name": "CVE-2024-35946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35946"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2024-41761",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41761"
},
{
"name": "CVE-2022-29153",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29153"
},
{
"name": "CVE-2023-52605",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52605"
},
{
"name": "CVE-2021-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23337"
},
{
"name": "CVE-2018-6341",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-6341"
},
{
"name": "CVE-2023-52455",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52455"
},
{
"name": "CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"name": "CVE-2025-27152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27152"
},
{
"name": "CVE-2024-26740",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26740"
},
{
"name": "CVE-2024-47764",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47764"
},
{
"name": "CVE-2025-25288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25288"
},
{
"name": "CVE-2024-35790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35790"
},
{
"name": "CVE-2022-48921",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48921"
},
{
"name": "CVE-2024-45296",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45296"
},
{
"name": "CVE-2025-25290",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25290"
},
{
"name": "CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"name": "CVE-2024-39908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39908"
},
{
"name": "CVE-2021-47495",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-47495"
},
{
"name": "CVE-2024-41946",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41946"
},
{
"name": "CVE-2023-52832",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52832"
},
{
"name": "CVE-2024-41110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41110"
},
{
"name": "CVE-2024-27281",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27281"
},
{
"name": "CVE-2024-52798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52798"
},
{
"name": "CVE-2023-43804",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43804"
},
{
"name": "CVE-2024-6484",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6484"
},
{
"name": "CVE-2020-13844",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-13844"
},
{
"name": "CVE-2024-26776",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26776"
},
{
"name": "CVE-2024-6485",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6485"
},
{
"name": "CVE-2024-41762",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41762"
},
{
"name": "CVE-2024-39494",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-39494"
},
{
"name": "CVE-2025-23184",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23184"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2021-4204",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4204"
},
{
"name": "CVE-2024-26843",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26843"
},
{
"name": "CVE-2024-40679",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-40679"
},
{
"name": "CVE-2023-52885",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52885"
},
{
"name": "CVE-2018-20225",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-20225"
},
{
"name": "CVE-2019-11253",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-11253"
},
{
"name": "CVE-2023-52898",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52898"
},
{
"name": "CVE-2025-25289",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25289"
},
{
"name": "CVE-2024-45663",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45663"
},
{
"name": "CVE-2023-52467",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52467"
},
{
"name": "CVE-2024-41123",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41123"
},
{
"name": "CVE-2024-36620",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36620"
},
{
"name": "CVE-2022-48706",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48706"
},
{
"name": "CVE-2024-49761",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49761"
}
],
"links": [],
"reference": "CERTFR-2025-AVI-0279",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-04-04T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Injection de code indirecte \u00e0 distance (XSS)"
},
{
"description": "Injection de requ\u00eates ill\u00e9gitimes par rebond (CSRF)"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-04-03",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7230024",
"url": "https://www.ibm.com/support/pages/node/7230024"
},
{
"published_at": "2025-04-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7229770",
"url": "https://www.ibm.com/support/pages/node/7229770"
},
{
"published_at": "2025-03-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7229443",
"url": "https://www.ibm.com/support/pages/node/7229443"
},
{
"published_at": "2025-04-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7229768",
"url": "https://www.ibm.com/support/pages/node/7229768"
},
{
"published_at": "2025-04-01",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7229772",
"url": "https://www.ibm.com/support/pages/node/7229772"
}
]
}
CNVD-2020-35956
Vulnerability from cnvd - Published: 2020-07-02
VLAI
Title
ARM Armv8-A信息泄露漏洞
Description
ARM Armv8-A是英国ARM公司的一款处理器架构。
Arm Armv8-A中存在安全漏洞。本地攻击者可借助侧通道分析利用该漏洞导致信息泄露。
Severity
低
Patch Name
ARM Armv8-A信息泄露漏洞的补丁
Patch Description
ARM Armv8-A是英国ARM公司的一款处理器架构。
Arm Armv8-A中存在安全漏洞。本地攻击者可借助侧通道分析利用该漏洞导致信息泄露。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/latest-updates
Reference
https://nvd.nist.gov/vuln/detail/CVE-2020-13844
Impacted products
| Name | ARM Armv8-A |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2020-13844"
}
},
"description": "ARM Armv8-A\u662f\u82f1\u56fdARM\u516c\u53f8\u7684\u4e00\u6b3e\u5904\u7406\u5668\u67b6\u6784\u3002\n\nArm Armv8-A\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u501f\u52a9\u4fa7\u901a\u9053\u5206\u6790\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u4fe1\u606f\u6cc4\u9732\u3002",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/latest-updates",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2020-35956",
"openTime": "2020-07-02",
"patchDescription": "ARM Armv8-A\u662f\u82f1\u56fdARM\u516c\u53f8\u7684\u4e00\u6b3e\u5904\u7406\u5668\u67b6\u6784\u3002\r\n\r\nArm Armv8-A\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\u3002\u672c\u5730\u653b\u51fb\u8005\u53ef\u501f\u52a9\u4fa7\u901a\u9053\u5206\u6790\u5229\u7528\u8be5\u6f0f\u6d1e\u5bfc\u81f4\u4fe1\u606f\u6cc4\u9732\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "ARM Armv8-A\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": "ARM Armv8-A"
},
"referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2020-13844",
"serverity": "\u4f4e",
"submitTime": "2020-06-09",
"title": "ARM Armv8-A\u4fe1\u606f\u6cc4\u9732\u6f0f\u6d1e"
}
FKIE_CVE-2020-13844
Vulnerability from fkie_nvd - Published: 2020-06-08 23:15 - Updated: 2024-11-21 05:01
Severity
Summary
Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka "straight-line speculation."
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| arm | cortex-a32_firmware | - | |
| arm | cortex-a32 | - | |
| arm | cortex-a35_firmware | - | |
| arm | cortex-a35 | - | |
| arm | cortex-a53_firmware | - | |
| arm | cortex-a53 | - | |
| arm | cortex-a57_firmware | - | |
| arm | cortex-a57 | - | |
| arm | cortex-a72_firmware | - | |
| arm | cortex-a72 | - | |
| arm | cortex-a73_firmware | - | |
| arm | cortex-a73 | - | |
| arm | cortex-a34_firmware | - | |
| arm | cortex-a34 | - | |
| opensuse | leap | 15.1 | |
| opensuse | leap | 15.2 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arm:cortex-a32_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "2A2DAFCD-0C51-412A-9CC9-F55112A93958",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:arm:cortex-a32:-:*:*:*:*:*:*:*",
"matchCriteriaId": "049894EE-B2FB-45D9-A372-098F169075AB",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arm:cortex-a35_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "75367522-84C2-4E5C-8A4C-1CA351D152E6",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:arm:cortex-a35:-:*:*:*:*:*:*:*",
"matchCriteriaId": "C1CA84F9-EC36-4A57-BABC-8E74770D5327",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arm:cortex-a53_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "35B01CAB-2DD1-47D5-A331-B6C7A658C5D5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:arm:cortex-a53:-:*:*:*:*:*:*:*",
"matchCriteriaId": "9FF65826-F828-421F-8009-5AA5D25387E6",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "68D895EC-B0A9-4292-AC64-60673F72C765",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:*",
"matchCriteriaId": "B00CD88D-5649-403F-A55A-BD49427D30FA",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "38768B2B-F1A3-4A76-8716-9520CA075F3D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:arm:cortex-a72:-:*:*:*:*:*:*:*",
"matchCriteriaId": "16E23102-964E-485D-8EFF-4B1BBFE6EDE4",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "7173A6DC-4D4E-424C-A922-C16D67627834",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:arm:cortex-a73:-:*:*:*:*:*:*:*",
"matchCriteriaId": "33B1374D-59E8-4FE5-AC6C-0323AB1DD60D",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:arm:cortex-a34_firmware:-:*:*:*:*:*:*:*",
"matchCriteriaId": "54C5AF1F-673C-4AB6-98B4-53407C1A88EA",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:h:arm:cortex-a34:-:*:*:*:*:*:*:*",
"matchCriteriaId": "075E31EF-1A88-4B29-99A4-475942FF5C7B",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"matchCriteriaId": "B620311B-34A3-48A6-82DF-6F078D7A4493",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*",
"matchCriteriaId": "B009C22E-30A4-4288-BCF6-C3E81DEAF45A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\""
},
{
"lang": "es",
"value": "Las implementaciones principales de Arm Armv8-A, que usan la ejecuci\u00f3n especulativa m\u00e1s all\u00e1 de los cambios incondicionales en el flujo de control pueden permitir una divulgaci\u00f3n no autorizada de informaci\u00f3n a un atacante con acceso de usuario local por medio de un an\u00e1lisis de canal lateral, tambi\u00e9n se conoce como \"straight-line speculation.\""
}
],
"id": "CVE-2020-13844",
"lastModified": "2024-11-21T05:01:59.290",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2020-06-08T23:15:10.047",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation"
},
{
"source": "cve@mitre.org",
"tags": [
"Vendor Advisory"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-203"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-JWJH-W2WP-2GVV
Vulnerability from github – Published: 2022-05-24 17:19 – Updated: 2022-05-24 17:19
VLAI
Details
Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka "straight-line speculation."
Severity
5.5 (Medium)
{
"affected": [],
"aliases": [
"CVE-2020-13844"
],
"database_specific": {
"cwe_ids": [
"CWE-200",
"CWE-203"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2020-06-08T23:15:00Z",
"severity": "LOW"
},
"details": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\"",
"id": "GHSA-jwjh-w2wp-2gvv",
"modified": "2022-05-24T17:19:36Z",
"published": "2022-05-24T17:19:36Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2020-13844"
},
{
"type": "WEB",
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability"
},
{
"type": "WEB",
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation"
},
{
"type": "WEB",
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions"
},
{
"type": "WEB",
"url": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html"
},
{
"type": "WEB",
"url": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GSD-2020-13844
Vulnerability from gsd - Updated: 2023-12-13 01:21Details
Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka "straight-line speculation."
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2020-13844",
"description": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\"",
"id": "GSD-2020-13844",
"references": [
"https://www.suse.com/security/cve/CVE-2020-13844.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2020-13844"
],
"details": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\"",
"id": "GSD-2020-13844",
"modified": "2023-12-13T01:21:47.360616Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2020-13844",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\""
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability",
"refsource": "CONFIRM",
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability"
},
{
"name": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions",
"refsource": "CONFIRM",
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions"
},
{
"name": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation",
"refsource": "MISC",
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation"
},
{
"name": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html",
"refsource": "CONFIRM",
"url": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html"
},
{
"name": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html",
"refsource": "CONFIRM",
"url": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html"
},
{
"name": "openSUSE-SU-2020:1692",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html"
},
{
"name": "openSUSE-SU-2020:1693",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:arm:cortex-a32_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:arm:cortex-a32:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:arm:cortex-a35_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:arm:cortex-a35:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:arm:cortex-a53_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:arm:cortex-a53:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:arm:cortex-a57_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:arm:cortex-a57:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:arm:cortex-a72_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:arm:cortex-a72:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:arm:cortex-a73_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:arm:cortex-a73:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:arm:cortex-a34_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:arm:cortex-a34:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:opensuse:leap:15.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2020-13844"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\""
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-203"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability"
},
{
"name": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://gcc.gnu.org/pipermail/gcc-patches/2020-June/547520.html"
},
{
"name": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html",
"refsource": "CONFIRM",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.llvm.org/pipermail/llvm-dev/2020-June/142109.html"
},
{
"name": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/frequently-asked-questions"
},
{
"name": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation",
"refsource": "MISC",
"tags": [
"Vendor Advisory"
],
"url": "https://developer.arm.com/support/arm-security-updates/speculative-processor-vulnerability/downloads/straight-line-speculation"
},
{
"name": "openSUSE-SU-2020:1692",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00040.html"
},
{
"name": "openSUSE-SU-2020:1693",
"refsource": "SUSE",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "http://lists.opensuse.org/opensuse-security-announce/2020-10/msg00039.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"availabilityImpact": "NONE",
"baseScore": 2.1,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:L/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 3.9,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "NONE",
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"exploitabilityScore": 1.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2022-04-28T19:30Z",
"publishedDate": "2020-06-08T23:15Z"
}
}
}
OPENSUSE-SU-2020:1692-1
Vulnerability from csaf_opensuse - Published: 2020-10-18 15:37 - Updated: 2020-10-18 15:37Summary
Security update for gcc10, nvptx-tools
Severity
Moderate
Notes
Title of the patch: Security update for gcc10, nvptx-tools
Description of the patch: This update for gcc10, nvptx-tools fixes the following issues:
This update provides the GCC10 compiler suite and runtime libraries.
The base SUSE Linux Enterprise libraries libgcc_s1, libstdc++6 are replaced by
the gcc10 variants.
The new compiler variants are available with '-10' suffix, you can specify them
via:
CC=gcc-10
CXX=g++-10
or similar commands.
For a detailed changelog check out https://gcc.gnu.org/gcc-10/changes.html
Changes in nvptx-tools:
- Enable build on aarch64
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2020-1692
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.1:cpp10-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-ada-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-c++-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-d-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-go-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-info-10.2.1+git583-lp151.2.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-locale-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-objc-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libada10-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libada10-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libasan6-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libatomic1-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgcc_s1-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgdruntime1-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgfortran5-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgo16-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgomp1-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgphobos1-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libitm1-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:liblsan0-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libobjc4-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libquadmath0-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libstdc++6-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libtsan0-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libubsan1-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.1:nvptx-tools-1.0-lp151.3.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
13 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for gcc10, nvptx-tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for gcc10, nvptx-tools fixes the following issues:\n\nThis update provides the GCC10 compiler suite and runtime libraries.\n\nThe base SUSE Linux Enterprise libraries libgcc_s1, libstdc++6 are replaced by\nthe gcc10 variants.\n\nThe new compiler variants are available with \u0027-10\u0027 suffix, you can specify them\nvia:\n\n\tCC=gcc-10\n\tCXX=g++-10\n\nor similar commands.\n\nFor a detailed changelog check out https://gcc.gnu.org/gcc-10/changes.html\n\nChanges in nvptx-tools:\n\n- Enable build on aarch64\n \nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2020-1692",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_1692-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2020:1692-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/57REXVKUA57FRN7SLQ76XSABQZPDODBX/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2020:1692-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/57REXVKUA57FRN7SLQ76XSABQZPDODBX/"
},
{
"category": "self",
"summary": "SUSE Bug 1172798",
"url": "https://bugzilla.suse.com/1172798"
},
{
"category": "self",
"summary": "SUSE Bug 1172846",
"url": "https://bugzilla.suse.com/1172846"
},
{
"category": "self",
"summary": "SUSE Bug 1173972",
"url": "https://bugzilla.suse.com/1173972"
},
{
"category": "self",
"summary": "SUSE Bug 1174753",
"url": "https://bugzilla.suse.com/1174753"
},
{
"category": "self",
"summary": "SUSE Bug 1174817",
"url": "https://bugzilla.suse.com/1174817"
},
{
"category": "self",
"summary": "SUSE Bug 1175168",
"url": "https://bugzilla.suse.com/1175168"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13844 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13844/"
}
],
"title": "Security update for gcc10, nvptx-tools",
"tracking": {
"current_release_date": "2020-10-18T15:37:03Z",
"generator": {
"date": "2020-10-18T15:37:03Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2020:1692-1",
"initial_release_date": "2020-10-18T15:37:03Z",
"revision_history": [
{
"date": "2020-10-18T15:37:03Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "gcc10-info-10.2.1+git583-lp151.2.2.noarch",
"product": {
"name": "gcc10-info-10.2.1+git583-lp151.2.2.noarch",
"product_id": "gcc10-info-10.2.1+git583-lp151.2.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cpp10-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "cpp10-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "cpp10-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64",
"product": {
"name": "cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64",
"product_id": "cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64",
"product": {
"name": "cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64",
"product_id": "cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-ada-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-ada-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-ada-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-c++-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-c++-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-c++-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-d-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-d-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-d-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-go-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-go-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-go-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-locale-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-locale-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-locale-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-objc-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-objc-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-objc-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libada10-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libada10-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libada10-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libada10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libada10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libada10-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libasan6-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libasan6-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libasan6-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libatomic1-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libatomic1-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libatomic1-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgcc_s1-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgcc_s1-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgcc_s1-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgdruntime1-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgdruntime1-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgdruntime1-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgfortran5-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgfortran5-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgfortran5-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgo16-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgo16-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgo16-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgomp1-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgomp1-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgomp1-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgphobos1-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgphobos1-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgphobos1-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libitm1-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libitm1-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libitm1-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "liblsan0-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "liblsan0-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "liblsan0-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libobjc4-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libobjc4-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libobjc4-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libquadmath0-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libquadmath0-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libquadmath0-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libstdc++6-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libstdc++6-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libtsan0-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libtsan0-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libtsan0-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libubsan1-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libubsan1-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libubsan1-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product": {
"name": "libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"product_id": "libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "nvptx-tools-1.0-lp151.3.3.2.x86_64",
"product": {
"name": "nvptx-tools-1.0-lp151.3.3.2.x86_64",
"product_id": "nvptx-tools-1.0-lp151.3.3.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.1",
"product": {
"name": "openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cpp10-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:cpp10-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "cpp10-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64"
},
"product_reference": "cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64"
},
"product_reference": "cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-ada-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-ada-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-ada-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-c++-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-c++-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-c++-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-d-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-d-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-d-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-go-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-go-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-go-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-info-10.2.1+git583-lp151.2.2.noarch as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-info-10.2.1+git583-lp151.2.2.noarch"
},
"product_reference": "gcc10-info-10.2.1+git583-lp151.2.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-locale-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-locale-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-locale-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-objc-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-objc-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-objc-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libada10-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libada10-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libada10-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libada10-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libada10-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libada10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libasan6-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libasan6-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libasan6-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libatomic1-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libatomic1-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libatomic1-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgcc_s1-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgcc_s1-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgcc_s1-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgdruntime1-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgdruntime1-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgdruntime1-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgfortran5-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgfortran5-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgfortran5-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgo16-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgo16-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgo16-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgomp1-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgomp1-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgomp1-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgphobos1-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgphobos1-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgphobos1-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libitm1-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libitm1-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libitm1-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "liblsan0-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:liblsan0-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "liblsan0-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libobjc4-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libobjc4-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libobjc4-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libquadmath0-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libquadmath0-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libquadmath0-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libstdc++6-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libstdc++6-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtsan0-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libtsan0-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libtsan0-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libubsan1-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libubsan1-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libubsan1-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64"
},
"product_reference": "libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nvptx-tools-1.0-lp151.3.3.2.x86_64 as component of openSUSE Leap 15.1",
"product_id": "openSUSE Leap 15.1:nvptx-tools-1.0-lp151.3.3.2.x86_64"
},
"product_reference": "nvptx-tools-1.0-lp151.3.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13844"
}
],
"notes": [
{
"category": "general",
"text": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.1:cpp10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64",
"openSUSE Leap 15.1:cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64",
"openSUSE Leap 15.1:gcc10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-ada-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-c++-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-d-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-go-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-info-10.2.1+git583-lp151.2.2.noarch",
"openSUSE Leap 15.1:gcc10-locale-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-objc-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libada10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libada10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libasan6-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libatomic1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgcc_s1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgdruntime1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgfortran5-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgo16-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgomp1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgphobos1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libitm1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:liblsan0-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libobjc4-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libquadmath0-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libtsan0-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libubsan1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:nvptx-tools-1.0-lp151.3.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13844",
"url": "https://www.suse.com/security/cve/CVE-2020-13844"
},
{
"category": "external",
"summary": "SUSE Bug 1172798 for CVE-2020-13844",
"url": "https://bugzilla.suse.com/1172798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.1:cpp10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64",
"openSUSE Leap 15.1:cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64",
"openSUSE Leap 15.1:gcc10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-ada-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-c++-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-d-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-go-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-info-10.2.1+git583-lp151.2.2.noarch",
"openSUSE Leap 15.1:gcc10-locale-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-objc-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libada10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libada10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libasan6-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libatomic1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgcc_s1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgdruntime1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgfortran5-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgo16-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgomp1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgphobos1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libitm1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:liblsan0-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libobjc4-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libquadmath0-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libtsan0-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libubsan1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:nvptx-tools-1.0-lp151.3.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.1:cpp10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:cross-nvptx-gcc10-10.2.1+git583-lp151.2.1.x86_64",
"openSUSE Leap 15.1:cross-nvptx-newlib10-devel-10.2.1+git583-lp151.2.1.x86_64",
"openSUSE Leap 15.1:gcc10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-ada-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-ada-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-c++-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-d-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-d-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-fortran-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-fortran-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-go-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-go-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-info-10.2.1+git583-lp151.2.2.noarch",
"openSUSE Leap 15.1:gcc10-locale-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-obj-c++-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-obj-c++-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-objc-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:gcc10-objc-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libada10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libada10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libasan6-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libasan6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libatomic1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libatomic1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgcc_s1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgcc_s1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgdruntime1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgdruntime1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgfortran5-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgfortran5-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgo16-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgo16-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgomp1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgomp1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgphobos1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libgphobos1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libitm1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libitm1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:liblsan0-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libobjc4-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libobjc4-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libquadmath0-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libquadmath0-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-devel-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-locale-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-pp-gcc10-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libtsan0-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libubsan1-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:libubsan1-32bit-10.2.1+git583-lp151.2.2.x86_64",
"openSUSE Leap 15.1:nvptx-tools-1.0-lp151.3.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-18T15:37:03Z",
"details": "moderate"
}
],
"title": "CVE-2020-13844"
}
]
}
OPENSUSE-SU-2020:1693-1
Vulnerability from csaf_opensuse - Published: 2020-10-18 15:38 - Updated: 2020-10-18 15:38Summary
Security update for gcc10, nvptx-tools
Severity
Moderate
Notes
Title of the patch: Security update for gcc10, nvptx-tools
Description of the patch: This update for gcc10, nvptx-tools fixes the following issues:
This update provides the GCC10 compiler suite and runtime libraries.
The base SUSE Linux Enterprise libraries libgcc_s1, libstdc++6 are replaced by
the gcc10 variants.
The new compiler variants are available with '-10' suffix, you can specify them
via:
CC=gcc-10
CXX=g++-10
or similar commands.
For a detailed changelog check out https://gcc.gnu.org/gcc-10/changes.html
Changes in nvptx-tools:
- Enable build on aarch64
This update was imported from the SUSE:SLE-15:Update update project.
Patchnames: openSUSE-2020-1693
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
5.5 (Medium)
Affected products
Recommended
57 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Leap 15.2:cpp10-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-ada-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-c++-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-d-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-go-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-info-10.2.1+git583-lp152.2.2.noarch | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-locale-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-objc-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libada10-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libada10-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libasan6-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libatomic1-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgcc_s1-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgdruntime1-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgfortran5-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgo16-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgomp1-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgphobos1-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libitm1-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:liblsan0-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libobjc4-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libquadmath0-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libstdc++6-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libtsan0-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libubsan1-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Leap 15.2:nvptx-tools-1.0-lp152.4.3.2.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
References
13 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for gcc10, nvptx-tools",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for gcc10, nvptx-tools fixes the following issues:\n\nThis update provides the GCC10 compiler suite and runtime libraries.\n\nThe base SUSE Linux Enterprise libraries libgcc_s1, libstdc++6 are replaced by\nthe gcc10 variants.\n\nThe new compiler variants are available with \u0027-10\u0027 suffix, you can specify them\nvia:\n\n\tCC=gcc-10\n\tCXX=g++-10\n\nor similar commands.\n\nFor a detailed changelog check out https://gcc.gnu.org/gcc-10/changes.html\n\nChanges in nvptx-tools:\n\n- Enable build on aarch64\n \nThis update was imported from the SUSE:SLE-15:Update update project.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-2020-1693",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2020_1693-1.json"
},
{
"category": "self",
"summary": "URL for openSUSE-SU-2020:1693-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VBPOTLDSYOVSFPHOQTKIX6LT32O5K234/"
},
{
"category": "self",
"summary": "E-Mail link for openSUSE-SU-2020:1693-1",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VBPOTLDSYOVSFPHOQTKIX6LT32O5K234/"
},
{
"category": "self",
"summary": "SUSE Bug 1172798",
"url": "https://bugzilla.suse.com/1172798"
},
{
"category": "self",
"summary": "SUSE Bug 1172846",
"url": "https://bugzilla.suse.com/1172846"
},
{
"category": "self",
"summary": "SUSE Bug 1173972",
"url": "https://bugzilla.suse.com/1173972"
},
{
"category": "self",
"summary": "SUSE Bug 1174753",
"url": "https://bugzilla.suse.com/1174753"
},
{
"category": "self",
"summary": "SUSE Bug 1174817",
"url": "https://bugzilla.suse.com/1174817"
},
{
"category": "self",
"summary": "SUSE Bug 1175168",
"url": "https://bugzilla.suse.com/1175168"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2020-13844 page",
"url": "https://www.suse.com/security/cve/CVE-2020-13844/"
}
],
"title": "Security update for gcc10, nvptx-tools",
"tracking": {
"current_release_date": "2020-10-18T15:38:42Z",
"generator": {
"date": "2020-10-18T15:38:42Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2020:1693-1",
"initial_release_date": "2020-10-18T15:38:42Z",
"revision_history": [
{
"date": "2020-10-18T15:38:42Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "gcc10-info-10.2.1+git583-lp152.2.2.noarch",
"product": {
"name": "gcc10-info-10.2.1+git583-lp152.2.2.noarch",
"product_id": "gcc10-info-10.2.1+git583-lp152.2.2.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cpp10-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "cpp10-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "cpp10-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64",
"product": {
"name": "cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64",
"product_id": "cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64",
"product": {
"name": "cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64",
"product_id": "cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-ada-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-ada-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-ada-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-c++-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-c++-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-c++-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-d-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-d-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-d-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-go-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-go-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-go-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-locale-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-locale-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-locale-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-objc-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-objc-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-objc-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libada10-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libada10-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libada10-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libada10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libada10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libada10-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libasan6-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libasan6-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libasan6-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libatomic1-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libatomic1-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libatomic1-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgcc_s1-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgcc_s1-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgcc_s1-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgdruntime1-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgdruntime1-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgdruntime1-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgfortran5-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgfortran5-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgfortran5-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgo16-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgo16-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgo16-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgomp1-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgomp1-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgomp1-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgphobos1-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgphobos1-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgphobos1-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libitm1-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libitm1-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libitm1-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "liblsan0-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "liblsan0-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "liblsan0-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libobjc4-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libobjc4-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libobjc4-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libquadmath0-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libquadmath0-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libquadmath0-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libstdc++6-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libstdc++6-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libtsan0-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libtsan0-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libtsan0-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libubsan1-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libubsan1-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libubsan1-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product": {
"name": "libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"product_id": "libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "nvptx-tools-1.0-lp152.4.3.2.x86_64",
"product": {
"name": "nvptx-tools-1.0-lp152.4.3.2.x86_64",
"product_id": "nvptx-tools-1.0-lp152.4.3.2.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Leap 15.2",
"product": {
"name": "openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:leap:15.2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "cpp10-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:cpp10-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "cpp10-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64"
},
"product_reference": "cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64"
},
"product_reference": "cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-ada-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-ada-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-ada-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-c++-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-c++-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-c++-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-d-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-d-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-d-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-go-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-go-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-go-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-info-10.2.1+git583-lp152.2.2.noarch as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-info-10.2.1+git583-lp152.2.2.noarch"
},
"product_reference": "gcc10-info-10.2.1+git583-lp152.2.2.noarch",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-locale-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-locale-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-locale-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-objc-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-objc-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-objc-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libada10-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libada10-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libada10-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libada10-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libada10-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libada10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libasan6-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libasan6-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libasan6-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libatomic1-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libatomic1-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libatomic1-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgcc_s1-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgcc_s1-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgcc_s1-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgdruntime1-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgdruntime1-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgdruntime1-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgfortran5-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgfortran5-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgfortran5-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgo16-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgo16-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgo16-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgomp1-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgomp1-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgomp1-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgphobos1-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgphobos1-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgphobos1-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libitm1-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libitm1-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libitm1-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "liblsan0-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:liblsan0-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "liblsan0-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libobjc4-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libobjc4-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libobjc4-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libquadmath0-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libquadmath0-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libquadmath0-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libstdc++6-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libstdc++6-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtsan0-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libtsan0-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libtsan0-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libubsan1-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libubsan1-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libubsan1-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64"
},
"product_reference": "libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nvptx-tools-1.0-lp152.4.3.2.x86_64 as component of openSUSE Leap 15.2",
"product_id": "openSUSE Leap 15.2:nvptx-tools-1.0-lp152.4.3.2.x86_64"
},
"product_reference": "nvptx-tools-1.0-lp152.4.3.2.x86_64",
"relates_to_product_reference": "openSUSE Leap 15.2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-13844",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2020-13844"
}
],
"notes": [
{
"category": "general",
"text": "Arm Armv8-A core implementations utilizing speculative execution past unconditional changes in control flow may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis, aka \"straight-line speculation.\"",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Leap 15.2:cpp10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64",
"openSUSE Leap 15.2:cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64",
"openSUSE Leap 15.2:gcc10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-ada-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-c++-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-d-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-go-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-info-10.2.1+git583-lp152.2.2.noarch",
"openSUSE Leap 15.2:gcc10-locale-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-objc-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libada10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libada10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libasan6-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libatomic1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgcc_s1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgdruntime1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgfortran5-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgo16-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgomp1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgphobos1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libitm1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:liblsan0-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libobjc4-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libquadmath0-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libtsan0-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libubsan1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:nvptx-tools-1.0-lp152.4.3.2.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2020-13844",
"url": "https://www.suse.com/security/cve/CVE-2020-13844"
},
{
"category": "external",
"summary": "SUSE Bug 1172798 for CVE-2020-13844",
"url": "https://bugzilla.suse.com/1172798"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Leap 15.2:cpp10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64",
"openSUSE Leap 15.2:cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64",
"openSUSE Leap 15.2:gcc10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-ada-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-c++-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-d-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-go-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-info-10.2.1+git583-lp152.2.2.noarch",
"openSUSE Leap 15.2:gcc10-locale-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-objc-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libada10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libada10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libasan6-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libatomic1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgcc_s1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgdruntime1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgfortran5-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgo16-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgomp1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgphobos1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libitm1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:liblsan0-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libobjc4-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libquadmath0-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libtsan0-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libubsan1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:nvptx-tools-1.0-lp152.4.3.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"openSUSE Leap 15.2:cpp10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:cross-nvptx-gcc10-10.2.1+git583-lp152.2.1.x86_64",
"openSUSE Leap 15.2:cross-nvptx-newlib10-devel-10.2.1+git583-lp152.2.1.x86_64",
"openSUSE Leap 15.2:gcc10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-ada-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-ada-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-c++-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-d-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-d-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-fortran-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-fortran-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-go-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-go-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-info-10.2.1+git583-lp152.2.2.noarch",
"openSUSE Leap 15.2:gcc10-locale-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-obj-c++-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-obj-c++-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-objc-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:gcc10-objc-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libada10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libada10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libasan6-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libasan6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libatomic1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libatomic1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgcc_s1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgcc_s1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgdruntime1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgdruntime1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgfortran5-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgfortran5-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgo16-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgo16-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgomp1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgomp1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgphobos1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libgphobos1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libitm1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libitm1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:liblsan0-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libobjc4-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libobjc4-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libquadmath0-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libquadmath0-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-devel-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-devel-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-locale-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-pp-gcc10-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libstdc++6-pp-gcc10-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libtsan0-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libubsan1-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:libubsan1-32bit-10.2.1+git583-lp152.2.2.x86_64",
"openSUSE Leap 15.2:nvptx-tools-1.0-lp152.4.3.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2020-10-18T15:38:42Z",
"details": "moderate"
}
],
"title": "CVE-2020-13844"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…