Lucene search
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-1120.NASLHistoryOct 03, 2017 - 12:00 a.m.
Debian DLA-1120-1 : git security update
2017-10-0300:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
70.3%
joernchen discovered that the git-cvsserver subcommand of Git, a distributed version control system, suffers from a shell command injection vulnerability due to unsafe use of the Perl backtick operator. The git-cvsserver subcommand is reachable from the git-shell subcommand even if CVS support has not been configured (however, the git-cvs package needs to be installed).
For Debian 7 ‘Wheezy’, these problems have been fixed in version 1:1.7.10.4-1+wheezy6.
We recommend that you upgrade your git packages.
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-1120-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(103607);
script_version("3.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2017-14867");
script_name(english:"Debian DLA-1120-1 : git security update");
script_summary(english:"Checks dpkg output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Debian host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"joernchen discovered that the git-cvsserver subcommand of Git, a
distributed version control system, suffers from a shell command
injection vulnerability due to unsafe use of the Perl backtick
operator. The git-cvsserver subcommand is reachable from the git-shell
subcommand even if CVS support has not been configured (however, the
git-cvs package needs to be installed).
For Debian 7 'Wheezy', these problems have been fixed in version
1:1.7.10.4-1+wheezy6.
We recommend that you upgrade your git packages.
NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://lists.debian.org/debian-lts-announce/2017/10/msg00000.html"
);
script_set_attribute(
attribute:"see_also",
value:"https://packages.debian.org/source/wheezy/git"
);
script_set_attribute(attribute:"solution", value:"Upgrade the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-all");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-arch");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-cvs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-daemon-run");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-daemon-sysvinit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-el");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-email");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-gui");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-man");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:git-svn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:gitk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:gitweb");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:7.0");
script_set_attribute(attribute:"patch_publication_date", value:"2017/10/02");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/10/03");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Debian Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"7.0", prefix:"git", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-all", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-arch", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-core", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-cvs", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-daemon-run", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-daemon-sysvinit", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-doc", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-el", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-email", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-gui", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-man", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"git-svn", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"gitk", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (deb_check(release:"7.0", prefix:"gitweb", reference:"1:1.7.10.4-1+wheezy6")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
Related
redhatcve
redhatcve
CVE-2017-14867
2017-09-28 15:49:10
openvas
openvas
Huawei EulerOS: Security Advisory for git (EulerOS-SA-2017-1266)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for git (EulerOS-SA-2017-1265)
2020-01-23 00:00:00
Debian: Security Advisory (DLA-1120-1)
2018-02-06 00:00:00
nessus
nessus
Debian DSA-3984-1 : git - security update
2017-09-27 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : Git vulnerability (USN-3438-1)
2017-10-06 00:00:00
EulerOS 2.0 SP1 : git (EulerOS-SA-2017-1265)
2017-11-01 00:00:00
cbl_mariner
cbl_mariner
CVE-2017-14867 affecting package git for versions less than 2.45.2-1
2024-07-22 23:01:50
nvd
nvd
CVE-2017-14867
2017-09-29 01:34:50
cve
cve
CVE-2017-14867
2017-09-29 01:34:50
debian
debian
[SECURITY] [DLA 1120-1] git security update
2017-10-02 21:20:17
prion
prion
Design/Logic Flaw
2017-09-29 01:34:00
amazon
amazon
Medium: git
2017-10-12 19:39:00
mageia
mageia
Updated git packages fix security vulnerability
2017-11-07 16:49:26
altlinux
altlinux
Security fix for the ALT Linux 10 package git version 2.10.5-alt1
2017-09-22 00:00:00
Security fix for the ALT Linux 8 package git version 2.10.5-alt1
2017-09-22 00:00:00
osv
osv
CVE-2017-14867
2017-09-29 01:34:50
git - security update
2017-09-26 00:00:00
git - security update
2017-10-02 00:00:00
debiancve
debiancve
CVE-2017-14867
2017-09-29 01:34:50
suse
suse
Security update for git (important)
2017-10-12 21:07:31
Security update for git (important)
2017-10-17 18:12:41
Security update for git (important)
2017-10-19 00:07:28
ubuntu
ubuntu
Git vulnerability
2017-10-05 00:00:00
cloudfoundry
cloudfoundry
USN-3438-1: Git vulnerability | Cloud Foundry
2017-10-06 00:00:00
cvelist
cvelist
CVE-2017-14867
2017-09-28 14:00:00
ubuntucve
ubuntucve
CVE-2017-14867
2017-09-28 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1843
2021-07-02 16:45:45
ibm
ibm
photon
photon
Critical Photon OS Security Update - PHSA-2017-0078
2017-10-19 00:00:00
CVSS2
9
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.003
Percentile
70.3%
Related for DEBIAN_DLA-1120.NASL