Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2021 Tenable Network Security, Inc.OPENSUSE-2017-527.NASL
HistoryMay 01, 2017 - 12:00 a.m.

openSUSE Security Update : ruby2.1 (openSUSE-2017-527)

2017-05-0100:00:00
This script is Copyright (C) 2017-2021 Tenable Network Security, Inc.
www.tenable.com
32

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

0.028 Low

EPSS

Percentile

90.7%

JSON

This ruby2.1 update to version 2.1.9 fixes the following issues :

Security issues fixed :

  • CVE-2016-2339: heap overflow vulnerability in the Fiddle::Function.new’initialize’ (bsc#1018808)

  • CVE-2015-7551: Unsafe tainted string usage in Fiddle and DL (bsc#959495)

  • CVE-2015-3900: hostname validation does not work when fetching gems or making API requests (bsc#936032)

  • CVE-2015-1855: Ruby’a OpenSSL extension suffers a vulnerability through overly permissive matching of hostnames (bsc#926974)

  • CVE-2014-4975: off-by-one stack-based buffer overflow in the encodes() function (bsc#887877)

Bugfixes :

  • SUSEconnect doesn’t handle domain wildcards in no_proxy environment variable properly (bsc#1014863)

  • Segmentation fault after pack & ioctl & unpack (bsc#909695)

  • Ruby:HTTP Header injection in ‘net/http’ (bsc#986630)

ChangeLog :

This update was imported from the SUSE:SLE-12:Update update project.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2017-527.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(99753);
  script_version("3.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2014-4975", "CVE-2015-1855", "CVE-2015-3900", "CVE-2015-7551", "CVE-2016-2339");

  script_name(english:"openSUSE Security Update : ruby2.1 (openSUSE-2017-527)");
  script_summary(english:"Check for the openSUSE-2017-527 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This ruby2.1 update to version 2.1.9 fixes the following issues :

Security issues fixed :

  - CVE-2016-2339: heap overflow vulnerability in the
    Fiddle::Function.new'initialize' (bsc#1018808)

  - CVE-2015-7551: Unsafe tainted string usage in Fiddle and
    DL (bsc#959495)

  - CVE-2015-3900: hostname validation does not work when
    fetching gems or making API requests (bsc#936032)

  - CVE-2015-1855: Ruby'a OpenSSL extension suffers a
    vulnerability through overly permissive matching of
    hostnames (bsc#926974)

  - CVE-2014-4975: off-by-one stack-based buffer overflow in
    the encodes() function (bsc#887877)

Bugfixes :

  - SUSEconnect doesn't handle domain wildcards in no_proxy
    environment variable properly (bsc#1014863)

  - Segmentation fault after pack & ioctl & unpack
    (bsc#909695)

  - Ruby:HTTP Header injection in 'net/http' (bsc#986630)

ChangeLog :

- http://svn.ruby-lang.org/repos/ruby/tags/v2_1_9/ChangeLog

This update was imported from the SUSE:SLE-12:Update update project."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://svn.ruby-lang.org/repos/ruby/tags/v2_1_9/ChangeLog"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1014863"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1018808"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=887877"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=909695"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=926974"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=936032"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=959495"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=986630"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected ruby2.1 packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libruby2_1-2_1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libruby2_1-2_1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:ruby2.1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:ruby2.1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:ruby2.1-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:ruby2.1-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:ruby2.1-devel-extra");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:ruby2.1-doc-ri");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:ruby2.1-stdlib");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:ruby2.1-stdlib-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2017/04/28");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/05/01");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2017-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE42\.1|SUSE42\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "42.1 / 42.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE42.1", reference:"libruby2_1-2_1-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"libruby2_1-2_1-debuginfo-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"ruby2.1-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"ruby2.1-debuginfo-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"ruby2.1-debugsource-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"ruby2.1-devel-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"ruby2.1-devel-extra-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"ruby2.1-doc-ri-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"ruby2.1-stdlib-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"ruby2.1-stdlib-debuginfo-2.1.9-10.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"libruby2_1-2_1-2.1.9-8.3.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"libruby2_1-2_1-debuginfo-2.1.9-8.3.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"ruby2.1-2.1.9-8.3.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"ruby2.1-debuginfo-2.1.9-8.3.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"ruby2.1-debugsource-2.1.9-8.3.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"ruby2.1-devel-2.1.9-8.3.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"ruby2.1-devel-extra-2.1.9-8.3.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"ruby2.1-doc-ri-2.1.9-8.3.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"ruby2.1-stdlib-2.1.9-8.3.2") ) flag++;
if ( rpm_check(release:"SUSE42.2", reference:"ruby2.1-stdlib-debuginfo-2.1.9-8.3.2") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libruby2_1-2_1 / libruby2_1-2_1-debuginfo / ruby2.1 / etc");
}
VendorProductVersionCPE
novellopensuselibruby2_1-2_1p-cpe:/a:novell:opensuse:libruby2_1-2_1
novellopensuselibruby2_1-2_1-debuginfop-cpe:/a:novell:opensuse:libruby2_1-2_1-debuginfo
novellopensuseruby2.1p-cpe:/a:novell:opensuse:ruby2.1
novellopensuseruby2.1-debuginfop-cpe:/a:novell:opensuse:ruby2.1-debuginfo
novellopensuseruby2.1-debugsourcep-cpe:/a:novell:opensuse:ruby2.1-debugsource
novellopensuseruby2.1-develp-cpe:/a:novell:opensuse:ruby2.1-devel
novellopensuseruby2.1-devel-extrap-cpe:/a:novell:opensuse:ruby2.1-devel-extra
novellopensuseruby2.1-doc-rip-cpe:/a:novell:opensuse:ruby2.1-doc-ri
novellopensuseruby2.1-stdlibp-cpe:/a:novell:opensuse:ruby2.1-stdlib
novellopensuseruby2.1-stdlib-debuginfop-cpe:/a:novell:opensuse:ruby2.1-stdlib-debuginfo
Rows per page:
1-10 of 121

Related

nessus 49
openvas 41
suse 4
ubuntu 2
veracode 3
amazon 9
cvelist 6
redhatcve 1
prion 6
nvd 6
cve 6
ubuntucve 7
osv 10
debiancve 3
seebug 1
talos 1
freebsd 3
mageia 5
alpinelinux 1
fedora 8
hackerone 2
debian 6
securityvulns 3
archlinux 2
redhat 4
github 2
threatpost 1
rubygems 3
cloudfoundry 1
oraclelinux 2
centos 1
nessus
nessus
SUSE SLED12 / SLES12 Security Update : ruby2.1 (SUSE-SU-2017:1067-1)
2017-04-21 00:00:00
openSUSE Security Update : ruby2.2 / ruby2.3 (openSUSE-2017-435)
2017-04-06 00:00:00
SUSE SLES11 Security Update : ruby (SUSE-SU-2017:0948-1)
2017-04-07 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:1067-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for ruby2.1 (openSUSE-SU-2017:1128-1)
2017-04-29 00:00:00
openSUSE: Security Advisory for ruby2.2 (openSUSE-SU-2017:0933-1)
2017-04-06 00:00:00
suse
suse
Security update for ruby2.1 (important)
2017-04-28 18:11:28
Security update for ruby2.1 (important)
2017-04-20 12:08:57
Security update for ruby2.2, ruby2.3 (important)
2017-04-05 15:08:17
ubuntu
ubuntu
Ruby vulnerabilities
2017-07-25 00:00:00
Ruby vulnerabilities
2014-11-04 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-16 02:49:48
Denial Of Service (DoS)
2019-01-15 09:03:14
Man-in-the-Middle (MitM)
2019-01-15 09:07:12
amazon
amazon
Low: ruby19, ruby20, ruby21, ruby22
2016-01-18 11:00:00
Medium: ruby18
2015-05-27 14:05:00
Medium: ruby19
2015-05-27 14:05:00
cvelist
cvelist
CVE-2014-4975
2014-11-15 20:00:00
CVE-2016-2339
2017-01-06 21:00:00
CVE-2015-1855
2019-11-29 20:46:48
redhatcve
redhatcve
CVE-2016-2339
2017-01-12 14:50:43
prion
prion
Stack overflow
2014-11-15 20:59:00
Heap overflow
2017-01-06 21:59:00
Design/Logic Flaw
2019-11-29 21:15:00
nvd
nvd
CVE-2014-4975
2014-11-15 20:59:01
CVE-2016-2339
2017-01-06 21:59:00
CVE-2015-1855
2019-11-29 21:15:10
cve
cve
CVE-2014-4975
2014-11-15 20:59:01
CVE-2016-2339
2017-01-06 21:59:00
CVE-2015-3900
2015-06-24 14:59:01
ubuntucve
ubuntucve
CVE-2014-4975
2014-07-17 00:00:00
CVE-2016-2339
2017-01-06 00:00:00
CVE-2015-1855
2015-04-09 00:00:00
osv
osv
CVE-2016-2339
2017-01-06 21:59:00
RubyGems vulnerable to DNS hijack attack
2022-05-14 01:08:49
ruby1.8 - security update
2015-05-02 00:00:00
debiancve
debiancve
CVE-2016-2339
2017-01-06 21:59:00
CVE-2015-3900
2015-06-24 14:59:01
CVE-2015-4020
2015-08-25 17:59:01
seebug
seebug
Ruby Fiddle::Function.new Heap Overflow Vulnerability(CVE-2016-2339)
2017-10-20 00:00:00
talos
talos
Ruby Fiddle::Function.new Heap Overflow Vulnerability
2016-06-14 00:00:00
freebsd
freebsd
Ruby -- OpenSSL Hostname Verification Vulnerability
2015-04-13 00:00:00
rubygems -- request hijacking vulnerability
2015-05-14 00:00:00
Ruby -- unsafe tainted string vulnerability
2015-12-16 00:00:00
mageia
mageia
Updated ruby packages fix CVE-2015-1855
2015-05-03 03:19:16
Updated ruby-RubyGems packages fix security vulnerabilities
2015-09-08 20:55:59
Updated ruby packages fix security vulnerability
2016-01-12 12:13:53
alpinelinux
alpinelinux
CVE-2015-1855
2019-11-29 21:15:10
fedora
fedora
[SECURITY] Fedora 22 Update: ruby-2.2.2-11.fc22
2015-04-23 16:09:56
[SECURITY] Fedora 21 Update: rubygems-2.2.5-100.fc21
2015-08-19 08:17:15
[SECURITY] Fedora 21 Update: ruby-2.1.6-27.fc21
2015-04-28 13:11:23
hackerone
hackerone
RubyGems: Request Hijacking Vulnerability In RubyGems 2.4.6 And Earlier
2015-05-06 00:00:00
RubyGems: Request Hijacking Vulnerability in RubyGems 2.6.11 and earlier
2017-04-02 17:31:05
debian
debian
[SECURITY] [DLA 224-1] ruby1.8 security update
2015-05-18 21:57:18
[SECURITY] [DSA 3246-1] ruby1.9.1 security update
2015-05-02 11:20:09
[SECURITY] [DSA 3245-1] ruby1.8 security update
2015-05-02 11:19:31
securityvulns
securityvulns
Ruby SSL checks bypass
2015-05-04 00:00:00
[ MDVSA-2015:224 ] ruby
2015-05-04 00:00:00
Ruby DoS
2014-11-24 00:00:00
archlinux
archlinux
ruby: permissive certificate verification
2015-04-14 00:00:00
ruby: unsafe tainted string usage
2015-12-17 00:00:00
redhat
redhat
(RHSA-2015:1657) Important: rh-ruby22-ruby security update
2015-08-24 00:00:00
(RHSA-2014:1914) Moderate: ruby200-ruby security update
2014-11-26 00:00:00
(RHSA-2014:1912) Moderate: ruby security update
2014-11-26 00:00:00
github
github
RubyGems vulnerable to DNS hijack attack
2022-05-14 01:08:49
RubyGems Improper Input Validation vulnerability
2022-05-17 00:16:50
threatpost
threatpost
RubyGems Patches Serious Redirection Vulnerability
2015-06-23 09:55:51
rubygems
rubygems
CVE-2014-4975 ruby: off-by-one stack-based buffer overflow in the encodes() function
2014-07-09 00:00:00
CVE-2015-3900 rubygems: DNS hijacking vulnerability in api_endpoint()
2015-05-13 21:00:00
RubyGems remote_fetcher.rb api_endpoint() Function Missing SRV Record Hostname Validation Request Hijacking
2015-06-07 21:00:00
cloudfoundry
cloudfoundry
CVE-2015-1855 Ruby OpenSSL Hostname Verification | Cloud Foundry
2015-04-30 00:00:00
oraclelinux
oraclelinux
ruby193-ruby security update
2016-02-04 00:00:00
ruby security update
2014-11-26 00:00:00
centos
centos
ruby, rubygem, rubygems security update
2014-12-01 13:45:48

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

0.028 Low

EPSS

Percentile

90.7%

JSON
Related for OPENSUSE-2017-527.NASL
nessus49openvas41suse4ubuntu2veracode3amazon9cvelist6redhatcve1prion6nvd6cve6ubuntucve7osv10debiancve3seebug1talos1freebsd3mageia5alpinelinux1fedora8hackerone2debian6securityvulns3archlinux2redhat4github2threatpost1rubygems3cloudfoundry1oraclelinux2centos1