Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2020-1159.NASL
HistoryFeb 25, 2020 - 12:00 a.m.

EulerOS 2.0 SP8 : libarchive (EulerOS-SA-2020-1159)

2020-02-2500:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

32.7%

JSON

According to the version of the libarchive packages installed, the EulerOS installation on the remote host is affected by the following vulnerability :

  • In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive.(CVE-2019-19221)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(133993);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/26");

  script_cve_id("CVE-2019-19221");

  script_name(english:"EulerOS 2.0 SP8 : libarchive (EulerOS-SA-2020-1159)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the version of the libarchive packages installed, the
EulerOS installation on the remote host is affected by the following
vulnerability :

  - In Libarchive 3.4.0, archive_wstring_append_from_mbs in
    archive_string.c has an out-of-bounds read because of
    an incorrect mbrtowc or mbtowc call. For example,
    bsdtar crashes via a crafted archive.(CVE-2019-19221)

Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2020-1159
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?4ea2c02f");
  script_set_attribute(attribute:"solution", value:
"Update the affected libarchive package.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-19221");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"patch_publication_date", value:"2020/02/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/02/25");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:bsdtar");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libarchive");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libarchive-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
  script_exclude_keys("Host/EulerOS/uvp_version");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");

sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(8)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP8");

uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP8", "EulerOS UVP " + uvp);

if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);

flag = 0;

pkgs = ["bsdtar-3.3.2-2.h7.eulerosv2r8",
        "libarchive-3.3.2-2.h7.eulerosv2r8",
        "libarchive-devel-3.3.2-2.h7.eulerosv2r8"];

foreach (pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", sp:"8", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_NOTE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libarchive");
}
VendorProductVersionCPE
huaweieulerosbsdtarp-cpe:/a:huawei:euleros:bsdtar
huaweieuleroslibarchivep-cpe:/a:huawei:euleros:libarchive
huaweieuleroslibarchive-develp-cpe:/a:huawei:euleros:libarchive-devel
huaweieuleros2.0cpe:/o:huawei:euleros:2.0

Related

nessus 20
openvas 14
cve 1
osv 4
oraclelinux 1
redhat 12
almalinux 1
prion 1
fedora 1
ubuntucve 1
debiancve 1
cvelist 1
veracode 1
redhatcve 1
nvd 1
mageia 1
cloudfoundry 1
ubuntu 1
debian 2
photon 6
ibm 1
nessus
nessus
EulerOS Virtualization for ARM 64 3.0.6.0 : libarchive (EulerOS-SA-2020-1362)
2020-04-02 00:00:00
SUSE SLED12 / SLES12 Security Update : libarchive (SUSE-SU-2021:3722-1)
2021-11-18 00:00:00
RHEL 8 : libarchive (RHSA-2020:4443)
2020-11-04 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2020-1779)
2020-07-03 00:00:00
Huawei EulerOS: Security Advisory for libarchive (EulerOS-SA-2020-1569)
2020-04-30 00:00:00
Fedora: Security Advisory for libarchive (FEDORA-2020-235688c222)
2020-03-20 00:00:00
cve
cve
CVE-2019-19221
2019-11-21 23:15:13
osv
osv
CVE-2019-19221
2019-11-21 23:15:13
Moderate: libarchive security update
2020-11-03 12:05:06
libarchive - security update
2022-11-22 00:00:00
oraclelinux
oraclelinux
libarchive security update
2020-11-10 00:00:00
redhat
redhat
(RHSA-2020:4443) Moderate: libarchive security update
2020-11-03 12:05:06
(RHSA-2021:0146) Moderate: Release of OpenShift Serverless 1.12.0
2021-01-14 13:24:22
(RHSA-2021:2021) Moderate: Release of OpenShift Serverless 1.10.2 security update
2021-05-19 02:03:59
almalinux
almalinux
Moderate: libarchive security update
2020-11-03 12:05:06
prion
prion
Design/Logic Flaw
2019-11-21 23:15:00
fedora
fedora
[SECURITY] Fedora 32 Update: libarchive-3.4.2-1.fc32
2020-03-20 00:14:47
ubuntucve
ubuntucve
CVE-2019-19221
2019-11-21 00:00:00
debiancve
debiancve
CVE-2019-19221
2019-11-21 23:15:13
cvelist
cvelist
CVE-2019-19221
2019-11-21 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-11-25 01:39:19
redhatcve
redhatcve
CVE-2019-19221
2020-02-11 12:44:25
nvd
nvd
CVE-2019-19221
2019-11-21 23:15:13
mageia
mageia
Updated libarchive packages fix security vulnerabilities
2020-03-06 19:13:58
cloudfoundry
cloudfoundry
USN-4293-1: libarchive vulnerabilities | Cloud Foundry
2020-03-10 00:00:00
ubuntu
ubuntu
libarchive vulnerabilities
2020-03-02 00:00:00
debian
debian
[SECURITY] [DLA 3202-1] libarchive security update
2022-11-22 17:32:50
[SECURITY] [DLA 2987-1] libarchive security update
2022-04-30 22:21:35
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0272
2020-02-06 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0207
2020-02-13 00:00:00
Critical Photon OS Security Update - PHSA-2020-0207
2020-02-13 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar SIEM Application Framework Base Image is vulnerable to using components with Known Vulnerabilities
2021-12-03 18:52:37

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:N/I:N/A:P

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H

AI Score

6.9

Confidence

High

EPSS

0.001

Percentile

32.7%

JSON
Related for EULEROS_SA-2020-1159.NASL
nessus20openvas14cve1osv4oraclelinux1redhat12almalinux1prion1fedora1ubuntucve1debiancve1cvelist1veracode1redhatcve1nvd1mageia1cloudfoundry1ubuntu1debian2photon6ibm1