Page Comparison

Versions Compared

Old Version 14

changes.mady.by.user inoue

Saved on Apr 05, 2022

compared with

New Version Current

changes.mady.by.user Daniil Egranov

Saved on Apr 14, 2022

Key

This line was added.
This line was removed.
Formatting was changed.

1.6.1+dfsg.3-2ubuntu1

Blueprints that have vulnerabilities with a CVSS score >= 9.0 and meet the following criteria should submit their information in the chart below to have the vulnerability considered for an exception:

Running at least the minimum OS version required by the Akraino Security Sub-Committee
- Ubuntu
- CentOS
- Debian
- Fedora
- Suse Enterprise Server

Legend

Ubuntu Priority/Score Descriptions

...

Srinivasan Selvam

...

Medium

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Negligible

...

Srinivasan Selvam

...

Medium

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Medium

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Negligible

...

Srinivasan Selvam

...

Medium

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Medium

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Negligible

...

Srinivasan Selvam

...

Medium

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Low

...

Srinivasan Selvam

...

Low

...

@Kuralamdhan Ramakrishnan

...

Medium

...

Approved

...

Low

...

Negligible

...

18.04 Not vulnerable

1.18..24ubuntu1

Image Removed

Image Removed

...

@Kuralamdhan Ramakrishnan

...

Medium

...

@Kuralamdhan Ramakrishnan

...

Low

...

Low

...

Low

...

...

Medium

...

...

Low

...

...

Negligible

...

...

Medium

...

...

Low

...

...

Low

...

...

Low

...

Salvador Fuentes (Deactivated)

...

Medium

...

Salvador Fuentes (Deactivated)

...

Low

...

Salvador Fuentes (Deactivated)

...

Negligible

...

Salvador Fuentes (Deactivated)

...

Medium

...

Salvador Fuentes (Deactivated)

...

Low

...

Salvador Fuentes (Deactivated)

...

Low

...

Salvador Fuentes (Deactivated)

...

Low

...

...

Yes, however, patch has been installed (see below) however, vuls still reporting CVE.

...

Approved

...

Yes, however, patch has been installed (see below) however, vuls still reporting CVE.

Image Removed

...

Approved

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

...

CVE-2016-1585

...

inoue.reo@fujitsu.com

...

CVE-2017-18201

...

inoue.reo@fujitsu.com

...

CVE-2017-7827

...

...

inoue.reo@fujitsu.com

...

CVE-2018-5090

...

...

Reported fixed in 58 and later version (installed), but still reported by Vuls

...

CVE-2018-5126

...

...

Reported fixed in 58 and later version (installed), but still reported by Vuls

...

CVE-2018-5145

...

1.6.1+dfsg.3-2ubuntu1

Blueprints that have vulnerabilities with a CVSS score >= 9.0 and meet the following criteria should submit their information in the chart below to have the vulnerability considered for an exception:

Running at least the minimum OS version required by the Akraino Security Sub-Committee
- Ubuntu
- CentOS
- Debian
- Fedora
- Suse Enterprise Server

Legend

Ubuntu Priority/Score Descriptions

Not Vulnerable	Packages which do not exist in the archive, are not affected by the vulnerability or have a fix applied in the archive.
Pending	A fix has been applied and updated packages are awaiting arrival into the archive. For example, this might be used when wider testing is requested for the updated package.
Unknown	Open vulnerability where the priority is currently unknown and needs to be triaged.
Negligible	Open vulnerability that may be a problem but otherwise does not impose a security risk due to various factors. Examples include when the vulnerability is only theoretical in nature, requires a very special situation, has almost no install base or does no real damage. These typically will not receive security updates unless there is an easy fix and some other issue causes an update.
Low	Open vulnerability that is a problem but does very little damage or is otherwise hard to exploit due to small user base or other factors such as requiring specific environment, uncommon configuration, user assistance, etc. These tend to be included in security updates only when higher priority issues require an update or if many low priority issues have built up.
Medium	Open vulnerability that is a real problem and is exploitable for many users of the affected software. Examples include network daemon denial of service, cross-site scripting and gaining user privileges.
High	Open vulnerability that is a real problem and is exploitable for many users in the default configuration of the affected software. Examples include serious remote denial of service of the system, local root privilege escalations or local data theft.
Critical	Open vulnerability that is a world-burning problem and is exploitable for most Ubuntu users. Examples include remote root privilege escalations or remote data theft.

20185145Robot basic architecture based on SSES20185151inoueinouereo@fujitsu.Reported fixed in 60 and later version (installed), but still reported by Vuls201917041inoueinouereo@fujitsu.Low201917042inoue.reo@fujitsuLow202131870Robot basic architecture based on SSES202131870inoueinouereo@fujitsu.202131872inoue.reo@fujitsu202131873Robot basic architecture based on SSES202131873inoueinouereo@fujitsu.202139713Robot basic architecture based on SSES202139713inoueinouereo@fujitsu.Low202222822Robot basic architecture based on SSES202222822inoue.reo@fujitsuMedium202222823Robot basic architecture based on SSES202222823inoue.reo@fujitsuMedium202222824Robot basic architecture based on SSES202222824inoue.reo@fujitsu202223852Robot basic architecture based on SSES202223852inoueinouereo@fujitsu.Medium202223990Robot basic architecture based on SSES202223990inoueinouereo@fujitsu.Medium202225235Robot basic architecture based on SSES202225235inoue.reo@fujitsuHigh202225236Robot basic architecture based on SSES202225236inoue.reo@fujitsuHigh202225315Robot basic architecture based on SSES202225315inoueinouereo@fujitsu.Medium20169180Robot basic architecture based on SSES20169180inoueinouereo@fujitsu.Low201920433Robot basic architecture based on SSES201920433inoueinouereo@fujitsu.Low20142830Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker20142830inoueinouereo@fujitsu.High20161585Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker20161585inoue.reo@fujitsuHigh201717479Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker201717479inoueinouereo@fujitsuHigh9117Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker9117inoueinouereo@fujitsuHigh201813410Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker-2018-13410Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker20191010022inoueinouereo@fujitsuHigh8341Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker8341inoueinouereo@fujitsuHigh202027619Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker202027619inoueinouereo@fujitsuHigh202129462Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker2021-29462inoue.reo@fujitsuHigh202129921security-tracker.debian.org/tracker202129921inoueinouereo@fujitsu.Reported fixed in python3.9 (installed), but still reported by Vuls202130473security-tracker.debian.org/tracker202130473inoueinouereo@fujitsu.High2021-30474security-tracker.debian.org/tracker202130474inoueinouereo@fujitsu.High202130475Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker202130475inoueinouereo@fujitsu.High202130498Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker202130498inoueinouereo@fujitsu.High202130499security-tracker.debian.org/tracker202130499inoueinouereo@fujitsu.Highsecurity-tracker.debian.org/tracker202142377inoue.reo@fujitsuMedium202145951Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker202145951inoue.reo@fujitsuHigh202145952Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker202145952inoue.reo@fujitsuHighsecurity-tracker.debian.org/tracker202145953inoue.reo@fujitsuHigh202145954Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker202145954inoue.reo@fujitsuHigh202145955Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker202145955inoue.reo@fujitsuHigh-2021-45956security-tracker.debian.org/tracker202145956inoue.reo@fujitsuHigh202223303Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker202223303inoue.reo@fujitsuMedium202223304Raspberry Pi OS(Debian 11)security-trackerdebianorgtrackerCVE202223304inoueinoue.reo@fujitsuMedium20214048Raspberry Pi OS(Debian 11)security-tracker.debian.org/tracker/CVE-2021-4048Raspberry Pi OS(Debian 11)security-trackerdebianorgtrackerCVE202143400inoue.reo@fujitsu

CVE #	Blueprint	Blueprint OS/Ver	URL Showing OS Patch Not Available	Contact Name	Contact Email	Comment	Vendor CVSS Score	Vendor Patch Available	Exception Status
CVE-2016-1585	EALT-Edge	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2016-	1585	inoue	inoue.reo@fujitsu.com	Medium	Reported fixed in 1:52.7.0 and later version (installed), but still reported by Vuls	CVE-2018-5151	Srinivasan Selvam	srinivasanselvam2014@gmail.com		Medium	No	Approved
CVE-2017-18342	EALT-Edge	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2017-	18342	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Low	Medium	No	Approved
CVE-2019-17041Robot basic architecture based on SSES2017-8283	EALT-Edge	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2017-	8283	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Negligible	No	Approved
CVE-20192018-17042Robot basic architecture based on SSES20839	EALT-Edge	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2018-	20839	inoue	Srinivasan Selvam	srinivasanselvam2014@gmail.com		Medium	No	Approved
CVE-	2019-	17041	EALT-Edge	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2019-	17041	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Low	No	Approved
CVE-20212019-31872Robot basic architecture based on SSES17042	EALT-Edge	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2019-	17042	inoue	Srinivasan Selvam	srinivasanselvam2014@gmail.com		Low	No	Approved
CVE-	2019-	19814	EALT-Edge	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2019-	19814	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Low	No	Approved
CVE-	2016-	1585	ELIOT IOT Gateway	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2016-	1585	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Medium	No	Approved
CVE-	2017-	18342	ELIOT IOT Gateway	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2017-	18342	inoue	Srinivasan Selvam	srinivasanselvam2014@gmail.com		Low	No	Approved
CVE-	2017-	8283	ELIOT IOT Gateway	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2017-	8283	inoue	Srinivasan Selvam	srinivasanselvam2014@gmail.com		Negligible	No	Approved
CVE-	2018-	20839	ELIOT IOT Gateway	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2018-	20839	inoue	Srinivasan Selvam	srinivasanselvam2014@gmail.com		Medium	No	Approved
CVE-	2019-	17041	ELIOT IOT Gateway	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2019-	17041	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Low	No	Approved
CVE-	2019-	17042	ELIOT IOT Gateway	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2019-	17042	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Low	No	Approved
CVE-	2019-	19814	ELIOT IOT Gateway	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2019-	19814	inoue	Srinivasan Selvam	srinivasanselvam2014@gmail.com		Low	No	Approved
CVE-	2016-	1585	ELIOT SD-WAN/WAN Edge/uCPE	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2016-	1585	inoue	Srinivasan Selvam	srinivasanselvam2014@gmail.com		Medium	No	Approved
CVE-	2017-	18342	ELIOT SD-WAN/WAN Edge/uCPE	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2017-	18342	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Low	No	Approved
CVE-	2017-	8283	ELIOT SD-WAN/WAN Edge/uCPE	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2017-	8283	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Negligible	No	Approved
CVE-	2018-	20839	ELIOT SD-WAN/WAN Edge/uCPE	Ubuntu 18.04	https://ubuntu.com/security/CVE-	2018-	20839	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Medium	No	Approved
CVE-20052019-2541	Robot basic architecture based on SSES	Raspberry Pi OS(Debian 11)17041	ELIOT SD-WAN/WAN Edge/uCPE	Ubuntu 18.04	https://security-tracker.debian.org/trackerubuntu.com/security/CVE-20052019-254117041	inoue	inoue.reo@fujitsu Srinivasan Selvam	srinivasanselvam2014@gmail.com		High Low	No	Approved
CVE-	2019-	Robot basic architecture based on SSES	17042	ELIOT SD-WAN/WAN Edge/uCPE	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2019-	17042	Srinivasan Selvam	srinivasanselvam2014@gmail.	com		Low	No	Approved
CVE-	2019-	Robot basic architecture based on SSES	19814	ELIOT SD-WAN/WAN Edge/uCPE	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2019-	19814	inoue	Srinivasan Selvam	srinivasanselvam2014@gmail.com		Low	No	Approved
CVE-	2016-	Robot basic architecture based on SSES	1585	ICN	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2016-	1585	@Kuralamdhan Ramakrishnan	kuralamudhan.	ramakrishnan@intel.com		Medium	No	Approved
CVE-2017-	Robot basic architecture based on SSES	18342	ICN	Ubuntu 18.04	https://	ubuntu.com/security/CVE-2017-	18342	@Kuralamdhan Ramakrishnan	kuralamudhan.	ramakrishnan@intel.com		Low	No	Approved
CVE-	2017-	Robot basic architecture based on SSES	8283	ICN	Ubuntu 18.04	https://	ubuntu.com/security/CVE	inoue	inoue.reo@fujitsu.com	High	No	CVE-2019-1010022	Robot basic architecture based on SSES	-2017-8283	@Kuralamdhan Ramakrishnan	kuralamudhan.ramakrishnan@intel.com		Negligible	18.04 Not vulnerable 1.18..24ubuntu1 Image Added Image Added	Approved
CVE-2018-20839	ICN	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2018-	20839	@Kuralamdhan Ramakrishnan	kuralamudhan.	ramakrishnan@intel.com		Medium	No	Approved
CVE-2019-	Robot basic architecture based on SSES	19814	ICN	Ubuntu 18.04	https://	ubuntu.com/security/CVE-2019-	19814	@Kuralamdhan Ramakrishnan	kuralamudhan.	ramakrishnan@intel.com		Low	No	Approved
CVE-	2019-	Robot basic architecture based on SSES	17041	ICN	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2019-	17041	@Kuralamdhan Ramakrishnan	kuralamudhan.	ramakrishnan@intel.com		Low	No	Approved
CVE-	2019-	Robot basic architecture based on SSES	17042	ICN	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	inoue	2019-17042	@Kuralamdhan Ramakrishnan	kuralamudhan.ramakrishnan@intel.com		Low	No	Approved
CVE-	2016-	Robot basic architecture based on SSES	Raspberry Pi OS(Debian 11)	1585	Public Cloud Edge Interface (PCEI)	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2016-	1585	Oleg Berzin	oberzin@equinix.	com	High			Medium	No	Approved
CVE-	2017-	Robot basic architecture based on SSES	Raspberry Pi OS(Debian 11)	18342	Public Cloud Edge Interface (PCEI)	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2017-	18342	Oleg Berzin	oberzin@equinix.	com		Low	No	Approved
CVE-	Robot basic architecture based on SSES	Raspberry Pi OS(Debian 11)	2017-8283	Public Cloud Edge Interface (PCEI)	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2017-	8283	Oleg Berzin	oberzin@equinix.	com		Negligible	No	Approved
CVE-	2018-	Robot basic architecture based on SSES	20839	Public Cloud Edge Interface (PCEI)	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2018-	20839	Oleg Berzin	oberzin@equinix.	com		Medium	No	Approved
CVE-	2019-	Robot basic architecture based on SSES	17041	Public Cloud Edge Interface (PCEI)	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2019-	17041	Oleg Berzin	oberzin@equinix.	com		Low	No	Approved
CVE-	2019-	Robot basic architecture based on SSES	Raspberry Pi OS(Debian 11)	17042	Public Cloud Edge Interface (PCEI)	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2019-	17042	Oleg Berzin	oberzin@equinix.	com		Low	No	CVE-2021-42377	Robot basic architecture based on SSES	Raspberry Pi OS(Debian 11)	Approved
CVE-2019-19814	Public Cloud Edge Interface (PCEI)	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2019-	19814	inoue	Oleg Berzin	oberzin@equinix.com		Low	No	Approved
CVE-	2016-	Robot basic architecture based on SSES	1585	ICN - Multi-Tenant Secure Cloud Native Platform	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2016-	inoue	1585	Salvador Fuentes (Deactivated)	salvador.fuentes@intel.com		Medium	No	Approved
CVE-	2017-	Robot basic architecture based on SSES	18342	ICN - Multi-Tenant Secure Cloud Native Platform	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2017-	inoue	18342	Salvador Fuentes (Deactivated)	salvador.fuentes@intel.com		Low	No	Approved
CVE-20212017-45953	Robot basic architecture based on SSES	Raspberry Pi OS(Debian 11)8283	ICN - Multi-Tenant Secure Cloud Native Platform	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2017-	inoue	8283	Salvador Fuentes (Deactivated)	salvador.fuentes@intel.com		Negligible	No	Approved
CVE-	2018-	Robot basic architecture based on SSES	20839	ICN - Multi-Tenant Secure Cloud Native Platform	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2018-	inoue	20839	Salvador Fuentes (Deactivated)	salvador.fuentes@intel.com		Medium	No	Approved
CVE-	2019-	Robot basic architecture based on SSES	17041	ICN - Multi-Tenant Secure Cloud Native Platform	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2019-	inoue	17041	Salvador Fuentes (Deactivated)	salvador.fuentes@intel.com		Low	No	Approved
CVE	Robot basic architecture based on SSES	Raspberry Pi OS(Debian 11)	-2019-17042	ICN - Multi-Tenant Secure Cloud Native Platform	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2019-	inoue	17042	Salvador Fuentes (Deactivated)	salvador.fuentes@intel.com		Low	No	Approved
CVE-	2019-	Robot basic architecture based on SSES	19814	ICN - Multi-Tenant Secure Cloud Native Platform	Ubuntu 18.04	https://	ubuntu.com/security/CVE-	2019-	inoue	19814	Salvador Fuentes (Deactivated)	salvador.fuentes@intel.com		Low	No	Approved
CVE-	2019-	Robot basic architecture based on SSES	12900	The AI Edge: Federated ML application at edge	CentOS 7.9	https://	access.	redhat.	com/security/	cve/	cve-	2019-	12900	rolandwu	wuzifan0817@gmail.com		Low	No	Approved
CVE-	2017-	Robot basic architecture based on SSES	12652	AI Edge: School/Education Video Security	CentOS 7.9	https://	inoue	inoue.reo@fujitsu.com	Medium	No	CVE-2021-43400	Robot basic architecture based on SSES	access.redhat.com/security/cve/cve-2017-12652	Yu, Liya	yulia@baidu.com		Low	Yes, however, patch has been installed (see below) however, vuls still reporting CVE. Image Added	Approved
CVE-2019-5482	AI Edge: School/Education Video Security	CentOS 7.9	https://	access.	redhat.	com/security/	cve/	cve-	2019-	5482	inoue	Yu, Liya	yulia@baidu.com		Medium	No

...

Yes, however, patch has been installed (see below) however, vuls still reporting CVE.

Image Added

Approved