Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
debianDebianDEBIAN:DLA-1768-1:C6F98
HistoryApr 28, 2019 - 6:31 p.m.

[SECURITY] [DLA 1768-1] checkstyle security update

2019-04-2818:31:07
lists.debian.org
35

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.4%

JSON

Package : checkstyle
Version : 5.9-1+deb8u1
CVE ID : CVE-2019-9658

checkstyle was loading external DTDs by default,
which is now disabled by default.

If needed it can be re-enabled by setting the system property
checkstyle.enableExternalDtdLoad to true.

For Debian 8 "Jessie", this problem has been fixed in version
5.9-1+deb8u1.

We recommend that you upgrade your checkstyle packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS

Related

openvas 5
fedora 3
cvelist 2
osv 5
nvd 2
nessus 4
ubuntucve 2
cve 2
veracode 1
prion 2
debiancve 2
github 2
redhatcve 1
debian 1
openvas
openvas
Debian: Security Advisory (DLA-1768-1)
2019-04-29 00:00:00
Fedora Update for checkstyle FEDORA-2019-a3f67e2364
2019-04-12 00:00:00
Fedora Update for checkstyle FEDORA-2019-4696630d6f
2019-05-21 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: checkstyle-8.0-4.1.fc29
2019-04-12 01:16:28
[SECURITY] Fedora 30 Update: checkstyle-8.0-7.fc30
2019-05-21 01:10:03
[SECURITY] Fedora 28 Update: checkstyle-8.0-4.1.fc28
2019-04-11 18:43:22
cvelist
cvelist
CVE-2019-9658
2019-03-11 04:00:00
CVE-2019-10782
2020-01-30 22:16:00
osv
osv
checkstyle - security update
2019-04-28 00:00:00
Moderate severity vulnerability that affects com.puppycrawl.tools:checkstyle
2019-03-14 15:39:14
CVE-2019-9658
2019-03-11 05:29:00
nvd
nvd
CVE-2019-9658
2019-03-11 05:29:00
CVE-2019-10782
2020-01-30 23:15:10
nessus
nessus
Debian DLA-1768-1 : checkstyle security update
2019-04-29 00:00:00
Fedora 28 : checkstyle (2019-a3f67e2364)
2019-04-12 00:00:00
Fedora 29 : checkstyle (2019-e4405b4c9f)
2019-04-12 00:00:00
ubuntucve
ubuntucve
CVE-2019-9658
2019-03-11 00:00:00
CVE-2019-10782
2020-01-30 00:00:00
cve
cve
CVE-2019-9658
2019-03-11 05:29:00
CVE-2019-10782
2020-01-30 23:15:10
veracode
veracode
XML External Entity (XXE)
2019-03-12 05:56:51
prion
prion
Default credentials
2019-03-11 05:29:00
Xxe
2020-01-30 23:15:00
debiancve
debiancve
CVE-2019-9658
2019-03-11 05:29:00
CVE-2019-10782
2020-01-30 23:15:10
github
github
Moderate severity vulnerability that affects com.puppycrawl.tools:checkstyle
2019-03-14 15:39:14
XML external entity (XXE) processing ('external-parameter-entities' feature was not fully disabled))
2020-01-31 18:00:07
redhatcve
redhatcve
CVE-2019-10782
2020-07-30 17:43:29
debian
debian
[SECURITY] [DLA 2099-1] checkstyle security update
2020-02-10 15:55:38

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

5.3 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

5 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.4%

JSON
Related for DEBIAN:DLA-1768-1:C6F98
openvas5fedora3cvelist2osv5nvd2nessus4ubuntucve2cve2veracode1prion2debiancve2github2redhatcve1debian1