Lucene search
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.GENTOO_GLSA-201706-19.NASLHistoryJun 21, 2017 - 12:00 a.m.
GLSA-201706-19 : GNU C Library: Multiple vulnerabilities (Stack Clash)
2017-06-2100:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.017 Low
EPSS
Percentile
87.9%
The remote host is affected by the vulnerability described in GLSA-201706-19 (GNU C Library: Multiple vulnerabilities)
Multiple vulnerabilities have been discovered in the GNU C Library.
Please review the CVE identifiers and Qualys’ security advisory referenced below for details.
Impact :
An attacker could possibly execute arbitrary code with the privileges of the process, escalate privileges or cause a Denial of Service condition.
Workaround :
There is no known workaround at this time.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Gentoo Linux Security Advisory GLSA 201706-19.
#
# The advisory text is Copyright (C) 2001-2019 Gentoo Foundation, Inc.
# and licensed under the Creative Commons - Attribution / Share Alike
# license. See http://creativecommons.org/licenses/by-sa/3.0/
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(100945);
script_version("3.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2015-5180", "CVE-2016-6323", "CVE-2017-1000366");
script_xref(name:"GLSA", value:"201706-19");
script_name(english:"GLSA-201706-19 : GNU C Library: Multiple vulnerabilities (Stack Clash)");
script_summary(english:"Checks for updated package(s) in /var/db/pkg");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Gentoo host is missing one or more security-related
patches."
);
script_set_attribute(
attribute:"description",
value:
"The remote host is affected by the vulnerability described in GLSA-201706-19
(GNU C Library: Multiple vulnerabilities)
Multiple vulnerabilities have been discovered in the GNU C Library.
Please review the CVE identifiers and Qualys’ security advisory
referenced below for details.
Impact :
An attacker could possibly execute arbitrary code with the privileges of
the process, escalate privileges or cause a Denial of Service condition.
Workaround :
There is no known workaround at this time."
);
script_set_attribute(
attribute:"see_also",
value:"https://www.qualys.com/2017/06/19/stack-clash/stack-clash.txt"
);
script_set_attribute(
attribute:"see_also",
value:"https://security.gentoo.org/glsa/201706-19"
);
script_set_attribute(
attribute:"solution",
value:
"All GNU C Library users should upgrade to the latest version:
# emerge --sync
# emerge --ask --oneshot --verbose '>=sys-libs/glibc-2.23-r4'"
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:gentoo:linux:glibc");
script_set_attribute(attribute:"cpe", value:"cpe:/o:gentoo:linux");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/10/07");
script_set_attribute(attribute:"patch_publication_date", value:"2017/06/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/06/21");
script_set_attribute(attribute:"in_the_news", value:"true");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Gentoo Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Gentoo/release", "Host/Gentoo/qpkg-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("qpkg.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Gentoo/release")) audit(AUDIT_OS_NOT, "Gentoo");
if (!get_kb_item("Host/Gentoo/qpkg-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (qpkg_check(package:"sys-libs/glibc", unaffected:make_list("ge 2.23-r4"), vulnerable:make_list("lt 2.23-r4"))) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:qpkg_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = qpkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "GNU C Library");
}
Related
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2017-06-20 00:00:00
nvd
nvd
fedora
fedora
[SECURITY] Fedora 26 Update: glibc-2.25-12.fc26
2017-10-25 23:16:57
[SECURITY] Fedora 24 Update: glibc-arm-linux-gnu-2.24-2.fc24
2016-10-19 14:21:17
[SECURITY] Fedora 23 Update: glibc-2.22-18.fc23
2016-09-02 23:23:08
symantec
symantec
GNU glibc CVE-2015-5180 Remote Denial of Service Vulnerability
2017-06-27 00:00:00
cvelist
cvelist
cve
cve
f5
f5
K55001100 : glibc vulnerability CVE-2015-5180
2017-03-13 00:00:00
K20486351 : glibc vulnerability CVE-2017-1000366
2017-07-11 00:00:00
K56061418 : glibc vulnerability CVE-2016-6323
2017-02-09 00:00:00
nessus
nessus
Fedora 24 : glibc-arm-linux-gnu (2016-7e57edc4cc)
2016-10-20 00:00:00
SUSE SLES12 Security Update : glibc (SUSE-SU-2017:1611-1) (Stack Clash)
2017-06-20 00:00:00
Fedora 24 : glibc (2017-698daef73c) (Stack Clash)
2017-06-28 00:00:00
ubuntucve
ubuntucve
suse
suse
Security update for glibc (important)
2017-06-19 21:10:14
Security update for glibc (important)
2017-06-21 03:09:06
Security update for glibc (important)
2017-06-20 03:09:24
oraclelinux
oraclelinux
glibc security update
2017-06-19 00:00:00
glibc security update
2017-06-19 00:00:00
glibc security update
2017-07-06 00:00:00
openvas
openvas
CentOS Update for glibc CESA-2017:1480 centos6
2017-06-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1611-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2017:1619-1)
2021-04-19 00:00:00
osv
osv
glibc - security update
2017-06-19 00:00:00
eglibc - security update
2017-06-19 00:00:00
CVE-2017-1000366
2017-06-19 16:29:00
ibm
ibm
amazon
amazon
Critical: glibc
2017-06-19 08:51:00
debian
debian
[SECURITY] [DLA 992-1] eglibc security update
2017-06-19 19:56:25
[SECURITY] [DSA 3887-1] glibc security update
2017-06-19 15:32:03
redhatcve
redhatcve
CVE-2016-6323
2016-10-10 11:47:22
CVE-2017-1000366
2017-06-19 15:18:36
CVE-2017-1000408
2017-12-12 09:49:57
prion
prion
Session fixation
2016-10-07 14:59:00
Null pointer dereference
2017-06-27 20:29:00
Design/Logic Flaw
2017-06-19 16:29:00
ubuntu
ubuntu
GNU C Library vulnerability
2017-06-29 00:00:00
GNU C Library vulnerability
2017-06-19 00:00:00
GNU C Library Regression
2017-03-21 00:00:00
centos
centos
glibc, nscd security update
2017-06-20 08:39:12
glibc, nscd security update
2017-06-20 10:48:53
debiancve
debiancve
redhat
redhat
(RHSA-2017:1481) Important: glibc security update
2017-06-19 15:07:57
(RHSA-2017:1479) Important: glibc security update
2017-06-19 00:00:00
(RHSA-2017:1480) Important: glibc security update
2017-06-19 15:08:21
archlinux
archlinux
[ASA-201706-23] glibc: privilege escalation
2017-06-20 00:00:00
[ASA-201706-22] lib32-glibc: privilege escalation
2017-06-20 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-16 02:50:40
Arbitrary Code Execution
2019-01-15 09:17:40
slackware
slackware
[slackware-security] glibc
2017-06-30 22:17:14
cloudfoundry
cloudfoundry
USN-3323-1: GNU C Library vulnerability | Cloud Foundry
2017-06-22 00:00:00
USN-3239-2: GNU C Library Regression | Cloud Foundry
2017-03-31 00:00:00
lenovo
lenovo
exploitpack
exploitpack
mageia
mageia
Updated glibc packages fix security vulnerability
2017-03-27 16:55:27
Updated glibc packages fixes critical security vulnerabilities
2017-06-27 00:37:03
photon
photon
Critical Photon OS Security Update - PHSA-2017-0088
2017-11-30 00:00:00
Important Photon OS Security Update - PHSA-2017-0053
2017-07-10 00:00:00
packetstorm
packetstorm
Qualys Security Advisory - GNU C Library Memory Leak / Buffer Overflow
2017-12-13 00:00:00
exploitdb
exploitdb
Linux Kernel (Debian 9/10 / Ubuntu 14.04.5/16.04.2/17.04 / Fedora 23/24/25) - 'ldso_dynamic Stack Clash' Local Privilege Escalation
2017-06-28 00:00:00
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
0.017 Low
EPSS
Percentile
87.9%
Related for GENTOO_GLSA-201706-19.NASL