Lucene search
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-4573.NASLHistoryNov 20, 2019 - 12:00 a.m.
Debian DSA-4573-1 : symfony - security update
2019-11-2000:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.6
Confidence
High
EPSS
0.009
Percentile
82.4%
Multiple vulnerabilities have been found in the Symfony PHP framework which could lead to a timing attack/information leak, argument injection and code execution via unserialization.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DSA-4573. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('compat.inc');
if (description)
{
script_id(131141);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/11");
script_cve_id("CVE-2019-18887", "CVE-2019-18888", "CVE-2019-18889");
script_xref(name:"DSA", value:"4573");
script_name(english:"Debian DSA-4573-1 : symfony - security update");
script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security-related update.");
script_set_attribute(attribute:"description", value:
"Multiple vulnerabilities have been found in the Symfony PHP framework
which could lead to a timing attack/information leak, argument
injection and code execution via unserialization.");
script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/symfony");
script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/stretch/symfony");
script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/buster/symfony");
script_set_attribute(attribute:"see_also", value:"https://www.debian.org/security/2019/dsa-4573");
script_set_attribute(attribute:"solution", value:
"Upgrade the symfony packages.
For the oldstable distribution (stretch), these problems have been
fixed in version 2.8.7+dfsg-1.3+deb9u3.
For the stable distribution (buster), these problems have been fixed
in version 3.4.22+dfsg-2+deb10u1.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-18889");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/11/21");
script_set_attribute(attribute:"patch_publication_date", value:"2019/11/18");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/11/20");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:symfony");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:10.0");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:9.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Debian Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"10.0", prefix:"php-symfony", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-asset", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-browser-kit", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-cache", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-class-loader", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-config", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-console", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-css-selector", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-debug", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-debug-bundle", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-dependency-injection", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-doctrine-bridge", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-dom-crawler", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-dotenv", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-event-dispatcher", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-expression-language", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-filesystem", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-finder", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-form", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-framework-bundle", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-http-foundation", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-http-kernel", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-inflector", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-intl", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-ldap", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-lock", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-monolog-bridge", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-options-resolver", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-phpunit-bridge", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-process", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-property-access", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-property-info", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-proxy-manager-bridge", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-routing", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-security", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-security-bundle", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-security-core", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-security-csrf", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-security-guard", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-security-http", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-serializer", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-stopwatch", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-templating", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-translation", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-twig-bridge", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-twig-bundle", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-validator", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-var-dumper", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-web-link", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-web-profiler-bundle", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-web-server-bundle", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-workflow", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"10.0", prefix:"php-symfony-yaml", reference:"3.4.22+dfsg-2+deb10u1")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-asset", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-browser-kit", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-class-loader", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-config", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-console", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-css-selector", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-debug", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-debug-bundle", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-dependency-injection", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-doctrine-bridge", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-dom-crawler", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-event-dispatcher", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-expression-language", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-filesystem", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-finder", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-form", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-framework-bundle", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-http-foundation", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-http-kernel", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-intl", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-ldap", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-locale", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-monolog-bridge", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-options-resolver", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-phpunit-bridge", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-process", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-property-access", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-property-info", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-proxy-manager-bridge", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-routing", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-security", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-security-bundle", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-security-core", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-security-csrf", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-security-guard", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-security-http", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-serializer", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-stopwatch", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-swiftmailer-bridge", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-templating", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-translation", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-twig-bridge", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-twig-bundle", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-validator", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-var-dumper", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-web-profiler-bundle", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"php-symfony-yaml", reference:"2.8.7+dfsg-1.3+deb9u3")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18887
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18888
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18889
packages.debian.org/source/buster/symfony
packages.debian.org/source/stretch/symfony
security-tracker.debian.org/tracker/source-package/symfony
www.debian.org/security/2019/dsa-4573
Related
fedora
fedora
[SECURITY] Fedora 31 Update: php-symfony3-3.4.35-2.fc31
2019-11-22 00:48:10
[SECURITY] Fedora 30 Update: php-symfony-2.8.52-1.fc30
2019-11-22 01:22:56
[SECURITY] Fedora 31 Update: php-symfony-2.8.52-1.fc31
2019-11-22 00:48:09
nessus
nessus
Fedora 31 : php-symfony3 (2019-8b0ba02338)
2019-11-22 00:00:00
Fedora 30 : php-symfony (2019-9c2ad3b018)
2019-11-22 00:00:00
Fedora 31 : php-symfony (2019-5ae4fd9203)
2019-11-22 00:00:00
debian
debian
[SECURITY] [DSA 4573-1] symfony security update
2019-11-18 22:04:18
[SECURITY] [DLA 1999-1] symfony security update
2019-11-19 01:38:11
openvas
openvas
Symfony 2.8.0 <= 2.8.51, 3.4.0 <= 3.4.34, 4.2.0 <= 4.2.11 and 4.3.0 <= 4.3.7 Multiple Vulnerabilities
2019-11-22 00:00:00
Debian: Security Advisory (DSA-4573-1)
2019-11-20 00:00:00
Debian: Security Advisory (DLA-1999-1)
2019-11-26 00:00:00
osv
osv
symfony - security update
2019-11-18 00:00:00
symfony - security update
2019-11-18 00:00:00
Symfony Unsafe Cache Serialization Could Enable RCE
2019-12-02 18:07:16
cvelist
cvelist
symfony
symfony
CVE-2019-18887: Use constant time comparison in UriSigner
2019-11-13 00:00:00
CVE-2019-18888: Prevent argument injection in a MimeTypeGuesser
2019-11-13 00:00:00
nvd
nvd
cve
cve
friendsofphp
friendsofphp
CVE-2019-18888: Prevent argument injection in a MimeTypeGuesser
1970-01-01 00:00:00
CVE-2019-18887: Use constant time comparison in UriSigner
1970-01-01 00:00:00
ubuntucve
ubuntucve
debiancve
debiancve
prion
prion
Code injection
2019-11-21 23:15:00
Design/Logic Flaw
2019-11-21 23:15:00
Input validation
2019-11-21 23:15:00
veracode
veracode
Remote Code Execution
2019-11-18 03:53:15
Timing Attack
2019-11-18 04:13:13
Information Disclosure
2019-11-18 03:30:47
symantec
symantec
Symfony CVE-2019-18889 Multiple Remote Code Execution Vulnerabilities
2019-11-13 00:00:00
github
github
Symfony Unsafe Cache Serialization Could Enable RCE
2019-12-02 18:07:16
Argument injection in a MimeTypeGuesser in Symfony
2019-12-02 18:08:19
Symfony Http-Kernel has non-constant time comparison in UriSigner
2022-03-26 00:22:49
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.6
Confidence
High
EPSS
0.009
Percentile
82.4%
Related for DEBIAN_DSA-4573.NASL