Lucene search
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.ALMA_LINUX_ALSA-2023-3840.NASLHistoryJun 29, 2023 - 12:00 a.m.
AlmaLinux 8 : sqlite (ALSA-2023:3840)
2023-06-2900:00:00
This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
almalinux
sqlite
buffer overflow
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
7.1 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2023:3840 advisory.
- Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before allows a local attacker to cause a denial of service via a crafted script. (CVE-2020-24736)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# AlmaLinux Security Advisory ALSA-2023:3840.
##
include('compat.inc');
if (description)
{
script_id(177778);
script_version("1.2");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/04");
script_cve_id("CVE-2020-24736");
script_xref(name:"ALSA", value:"2023:3840");
script_xref(name:"IAVA", value:"2023-A-0516-S");
script_name(english:"AlmaLinux 8 : sqlite (ALSA-2023:3840)");
script_set_attribute(attribute:"synopsis", value:
"The remote AlmaLinux host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the
ALSA-2023:3840 advisory.
- Buffer Overflow vulnerability found in SQLite3 v.3.27.1 and before allows a local attacker to cause a
denial of service via a crafted script. (CVE-2020-24736)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://errata.almalinux.org/8/ALSA-2023-3840.html");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-24736");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_cwe_id(400);
script_set_attribute(attribute:"vuln_publication_date", value:"2023/04/11");
script_set_attribute(attribute:"patch_publication_date", value:"2023/06/27");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/06/29");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:lemon");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:sqlite");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:sqlite-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:sqlite-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:alma:linux:sqlite-libs");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::appstream");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::baseos");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::highavailability");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::nfv");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::powertools");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::realtime");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::resilientstorage");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::sap");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::sap_hana");
script_set_attribute(attribute:"cpe", value:"cpe:/o:alma:linux:8::supplementary");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Alma Linux Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/AlmaLinux/release", "Host/AlmaLinux/rpm-list", "Host/cpu");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/AlmaLinux/release');
if (isnull(os_release) || 'AlmaLinux' >!< os_release) audit(AUDIT_OS_NOT, 'AlmaLinux');
var os_ver = pregmatch(pattern: "AlmaLinux release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'AlmaLinux');
os_ver = os_ver[1];
if (! preg(pattern:"^8([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'AlmaLinux 8.x', 'AlmaLinux ' + os_ver);
if (!get_kb_item('Host/AlmaLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'AlmaLinux', cpu);
var pkgs = [
{'reference':'lemon-3.26.0-18.el8_8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'sqlite-3.26.0-18.el8_8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'sqlite-devel-3.26.0-18.el8_8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'sqlite-doc-3.26.0-18.el8_8', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'sqlite-libs-3.26.0-18.el8_8', 'release':'8', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = 'Alma-' + package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (reference && _release && (!exists_check || rpm_exists(release:_release, rpm:exists_check))) {
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'lemon / sqlite / sqlite-devel / sqlite-doc / sqlite-libs');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| alma | linux | lemon | p-cpe:/a:alma:linux:lemon |
| alma | linux | sqlite | p-cpe:/a:alma:linux:sqlite |
| alma | linux | sqlite-devel | p-cpe:/a:alma:linux:sqlite-devel |
| alma | linux | sqlite-doc | p-cpe:/a:alma:linux:sqlite-doc |
| alma | linux | sqlite-libs | p-cpe:/a:alma:linux:sqlite-libs |
| alma | linux | 8 | cpe:/o:alma:linux:8 |
| alma | linux | 8 | cpe:/o:alma:linux:8::appstream |
| alma | linux | 8 | cpe:/o:alma:linux:8::baseos |
| alma | linux | 8 | cpe:/o:alma:linux:8::highavailability |
| alma | linux | 8 | cpe:/o:alma:linux:8::nfv |
Related
osv
osv
Moderate: sqlite security update
2023-08-31 16:54:20
Moderate: sqlite security update
2023-06-27 00:00:00
debiancve
debiancve
CVE-2020-24736
2023-04-11 18:15:58
redhatcve
redhatcve
CVE-2020-24736
2023-04-13 06:30:43
almalinux
almalinux
Moderate: sqlite security update
2023-06-27 00:00:00
rocky
rocky
sqlite security update
2023-08-31 16:54:20
nessus
nessus
RHEL 8 : sqlite (RHSA-2023:3840)
2023-06-27 00:00:00
CentOS 8 : sqlite (CESA-2023:3840)
2024-02-08 00:00:00
Oracle Linux 8 : sqlite (ELSA-2023-3840)
2023-06-30 00:00:00
ibm
ibm
cvelist
cvelist
CVE-2020-24736
2023-04-11 00:00:00
nvd
nvd
CVE-2020-24736
2023-04-11 18:15:58
oraclelinux
oraclelinux
sqlite security update
2023-06-30 00:00:00
ubuntucve
ubuntucve
CVE-2020-24736
2023-04-11 00:00:00
redhat
redhat
(RHSA-2023:3840) Moderate: sqlite security update
2023-06-27 13:36:00
(RHSA-2024:0425) Moderate: sqlite security update
2024-01-24 14:40:30
(RHSA-2023:4276) Moderate: DevWorkspace Operator Security Update
2023-07-25 18:29:37
cve
cve
CVE-2020-24736
2023-04-11 18:15:58
prion
prion
Buffer overflow
2023-04-11 18:15:00
5.5 Medium
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
7.1 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
5.1%
Related for ALMA_LINUX_ALSA-2023-3840.NASL