Lucene search
This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.ALMA_LINUX_ALSA-2020-4482.NASLHistoryFeb 09, 2022 - 12:00 a.m.
AlmaLinux 8 : libgcrypt (ALSA-2020:4482)
2022-02-0900:00:00
This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
almalinux
libgcrypt
security update
CVSS2
2.6
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:P/A:N
CVSS3
6.3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS
0.003
Percentile
72.1%
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2020:4482 advisory.
- It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library. Version affected: 1.8.4-5, 1.7.6-2+deb9u3, and 1.6.3-2+deb8u4. Versions fixed: 1.8.5-2 and 1.6.3-2+deb8u7.
(CVE-2019-13627)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
#
# The package checks in this plugin were extracted from
# AlmaLinux Security Advisory ALSA-2020:4482.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(157566);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2022/02/14");
script_cve_id("CVE-2019-13627");
script_xref(name:"ALSA", value:"2020:4482");
script_name(english:"AlmaLinux 8 : libgcrypt (ALSA-2020:4482)");
script_set_attribute(attribute:"synopsis", value:
"The remote AlmaLinux host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the
ALSA-2020:4482 advisory.
- It was discovered that there was a ECDSA timing attack in the libgcrypt20 cryptographic library. Version
affected: 1.8.4-5, 1.7.6-2+deb9u3, and 1.6.3-2+deb8u4. Versions fixed: 1.8.5-2 and 1.6.3-2+deb8u7.
(CVE-2019-13627)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://errata.almalinux.org/8/ALSA-2020-4482.html");
script_set_attribute(attribute:"solution", value:
"Update the affected libgcrypt and / or libgcrypt-devel packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:H/Au:N/C:P/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-13627");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/09/25");
script_set_attribute(attribute:"patch_publication_date", value:"2020/11/03");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/02/09");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libgcrypt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:libgcrypt-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Alma Linux Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/AlmaLinux/release", "Host/AlmaLinux/rpm-list", "Host/cpu");
exit(0);
}
include('audit.inc');
include('global_settings.inc');
include('misc_func.inc');
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var release = get_kb_item('Host/AlmaLinux/release');
if (isnull(release) || 'AlmaLinux' >!< release) audit(AUDIT_OS_NOT, 'AlmaLinux');
var os_ver = pregmatch(pattern: "AlmaLinux release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'AlmaLinux');
var os_ver = os_ver[1];
if (! preg(pattern:"^8([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'AlmaLinux 8.x', 'AlmaLinux ' + os_ver);
if (!get_kb_item('Host/AlmaLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'AlmaLinux', cpu);
var pkgs = [
{'reference':'libgcrypt-1.8.5-4.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libgcrypt-1.8.5-4.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libgcrypt-devel-1.8.5-4.el8', 'cpu':'i686', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libgcrypt-devel-1.8.5-4.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var release = NULL;
var sp = NULL;
var cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) release = 'Alma-' + package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (reference && release && (!exists_check || rpm_exists(release:release, rpm:exists_check))) {
if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_NOTE,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libgcrypt / libgcrypt-devel');
}
Related
nessus
nessus
Debian DLA-1931-2 : libgcrypt20 regression update
2019-09-25 00:00:00
CentOS 8 : libgcrypt (CESA-2020:4482)
2021-02-01 00:00:00
GLSA-202003-32 : Libgcrypt: Side-channel attack
2020-03-16 00:00:00
ubuntu
ubuntu
Libgcrypt vulnerability
2020-01-28 00:00:00
Libgcrypt vulnerability
2020-01-13 00:00:00
Libgcrypt vulnerability
2020-01-14 00:00:00
debiancve
debiancve
CVE-2019-13627
2019-09-25 15:15:11
osv
osv
libgcrypt20 - regression update
2020-01-01 00:00:00
Moderate: libgcrypt security, bug fix, and enhancement update
2020-11-03 12:08:44
libgcrypt20 - security update
2019-09-24 00:00:00
rocky
rocky
libgcrypt security, bug fix, and enhancement update
2020-11-03 12:08:44
openvas
openvas
Ubuntu: Security Advisory (USN-4236-3)
2022-08-26 00:00:00
openSUSE: Security Advisory for libgcrypt (openSUSE-SU-2019:2161-1)
2019-09-25 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:3392-1)
2021-06-09 00:00:00
cloudfoundry
cloudfoundry
USN-4236-1: Libgcrypt vulnerability | Cloud Foundry
2020-02-05 00:00:00
USN-4236-2: Libgcrypt vulnerability | Cloud Foundry
2020-02-05 00:00:00
ubuntucve
ubuntucve
CVE-2019-13627
2019-09-25 00:00:00
prion
prion
Code injection
2019-09-25 15:15:00
freebsd
freebsd
libgcrypt -- ECDSA timing attack
2019-08-29 00:00:00
oraclelinux
oraclelinux
libgcrypt security, bug fix, and enhancement update
2020-11-10 00:00:00
nvd
nvd
CVE-2019-13627
2019-09-25 15:15:11
mageia
mageia
Updated libgcrypt packages fix security vulnerability
2019-09-07 00:09:08
alpinelinux
alpinelinux
CVE-2019-13627
2019-09-25 15:15:11
cvelist
cvelist
CVE-2019-13627
2019-09-25 14:44:45
redhatcve
redhatcve
CVE-2019-13627
2019-10-22 07:50:55
redhat
redhat
(RHSA-2021:0146) Moderate: Release of OpenShift Serverless 1.12.0
2021-01-14 13:24:22
debian
debian
[SECURITY] [DLA 1931-1] libgcrypt20 security update
2019-09-24 15:40:52
[SECURITY] [DLA 1931-2] libgcrypt20 regression update
2020-01-01 12:36:43
suse
suse
Security update for libgcrypt (moderate)
2020-01-14 00:00:00
Security update for libgcrypt (moderate)
2019-09-24 00:00:00
almalinux
almalinux
Moderate: libgcrypt security, bug fix, and enhancement update
2020-11-03 12:08:44
gentoo
gentoo
Libgcrypt: Side-channel attack
2020-03-15 00:00:00
cve
cve
CVE-2019-13627
2019-09-25 15:15:11
ibm
ibm
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
CVSS2
2.6
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:P/A:N
CVSS3
6.3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS
0.003
Percentile
72.1%
Related for ALMA_LINUX_ALSA-2020-4482.NASL