Lucene search
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2018-184.NASLHistoryFeb 21, 2018 - 12:00 a.m.
openSUSE Security Update : glibc (openSUSE-2018-184)
2018-02-2100:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.012 Low
EPSS
Percentile
85.1%
This update for glibc fixes the following issues :
Security issues fixed :
-
CVE-2017-8804: Fix memory leak after deserialization failure in xdr_bytes, xdr_string (bsc#1037930)
-
CVE-2017-12132: Reduce EDNS payload size to 1200 bytes (bsc#1051791)
-
CVE-2018-6485,CVE-2018-6551: Fix integer overflows in internal memalign and malloc functions (bsc#1079036)
-
CVE-2018-1000001: Avoid underflow of malloced area (bsc#1074293)
Non security bugs fixed :
- Release read lock after resetting timeout (bsc#1073990)
This update was imported from the SUSE:SLE-12-SP2:Update update project.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2018-184.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(106916);
script_version("3.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_cve_id("CVE-2017-12132", "CVE-2017-8804", "CVE-2018-1000001", "CVE-2018-6485", "CVE-2018-6551");
script_name(english:"openSUSE Security Update : glibc (openSUSE-2018-184)");
script_summary(english:"Check for the openSUSE-2018-184 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"This update for glibc fixes the following issues :
Security issues fixed :
- CVE-2017-8804: Fix memory leak after deserialization
failure in xdr_bytes, xdr_string (bsc#1037930)
- CVE-2017-12132: Reduce EDNS payload size to 1200 bytes
(bsc#1051791)
- CVE-2018-6485,CVE-2018-6551: Fix integer overflows in
internal memalign and malloc functions (bsc#1079036)
- CVE-2018-1000001: Avoid underflow of malloced area
(bsc#1074293)
Non security bugs fixed :
- Release read lock after resetting timeout (bsc#1073990)
This update was imported from the SUSE:SLE-12-SP2:Update update
project."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1037930"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1051791"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1073990"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1074293"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1079036"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected glibc packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"metasploit_name", value:'glibc "realpath()" Privilege Escalation');
script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-debuginfo-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-devel-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-devel-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-devel-debuginfo-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-devel-static");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-devel-static-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-extra-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-html");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-i18ndata");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-info");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-locale");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-locale-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-locale-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-locale-debuginfo-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-obsolete");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-obsolete-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-profile");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-profile-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-utils");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-utils-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-utils-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-utils-debuginfo-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:glibc-utils-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:nscd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:nscd-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.3");
script_set_attribute(attribute:"patch_publication_date", value:"2018/02/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/02/21");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE42\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "42.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-debuginfo-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-debugsource-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-devel-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-devel-debuginfo-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-devel-static-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-extra-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-extra-debuginfo-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-html-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-i18ndata-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-info-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-locale-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-locale-debuginfo-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-obsolete-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-obsolete-debuginfo-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-profile-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-utils-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-utils-debuginfo-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"glibc-utils-debugsource-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"nscd-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"nscd-debuginfo-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-32bit-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-debuginfo-32bit-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-devel-32bit-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-devel-debuginfo-32bit-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-devel-static-32bit-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-locale-32bit-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-locale-debuginfo-32bit-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-profile-32bit-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-utils-32bit-2.22-13.2") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"glibc-utils-debuginfo-32bit-2.22-13.2") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc-utils / glibc-utils-32bit / glibc-utils-debuginfo / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | opensuse | glibc | p-cpe:/a:novell:opensuse:glibc |
| novell | opensuse | glibc-32bit | p-cpe:/a:novell:opensuse:glibc-32bit |
| novell | opensuse | glibc-debuginfo | p-cpe:/a:novell:opensuse:glibc-debuginfo |
| novell | opensuse | glibc-debuginfo-32bit | p-cpe:/a:novell:opensuse:glibc-debuginfo-32bit |
| novell | opensuse | glibc-debugsource | p-cpe:/a:novell:opensuse:glibc-debugsource |
| novell | opensuse | glibc-devel | p-cpe:/a:novell:opensuse:glibc-devel |
| novell | opensuse | glibc-devel-32bit | p-cpe:/a:novell:opensuse:glibc-devel-32bit |
| novell | opensuse | glibc-devel-debuginfo | p-cpe:/a:novell:opensuse:glibc-devel-debuginfo |
| novell | opensuse | glibc-devel-debuginfo-32bit | p-cpe:/a:novell:opensuse:glibc-devel-debuginfo-32bit |
| novell | opensuse | glibc-devel-static | p-cpe:/a:novell:opensuse:glibc-devel-static |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-12132
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8804
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-1000001
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6485
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-6551
bugzilla.opensuse.org/show_bug.cgi?id=1037930
bugzilla.opensuse.org/show_bug.cgi?id=1051791
bugzilla.opensuse.org/show_bug.cgi?id=1073990
bugzilla.opensuse.org/show_bug.cgi?id=1074293
bugzilla.opensuse.org/show_bug.cgi?id=1079036
Related
suse
suse
Security update for glibc (important)
2018-02-28 21:07:38
Security update for glibc (important)
2018-02-15 18:10:28
Security update for glibc (important)
2018-02-20 18:13:58
openvas
openvas
openSUSE: Security Advisory for glibc (openSUSE-SU-2018:0494-1)
2018-02-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0451-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0565-1)
2021-06-09 00:00:00
nessus
nessus
SUSE SLED12 / SLES12 Security Update : glibc (SUSE-SU-2018:0451-1)
2018-02-16 00:00:00
SUSE SLES11 Security Update : glibc (SUSE-SU-2018:0565-1)
2018-03-01 00:00:00
Photon OS 1.0: Glibc PHSA-2018-1.0-0111 (deprecated)
2018-08-17 00:00:00
ibm
ibm
photon
photon
fedora
fedora
[SECURITY] Fedora 27 Update: glibc-2.26-26.fc27
2018-03-06 17:36:46
[SECURITY] Fedora 27 Update: glibc-2.26-28.fc27
2018-05-23 15:59:59
[SECURITY] Fedora 26 Update: glibc-2.25-8.fc26
2017-08-20 18:36:31
amazon
amazon
mageia
mageia
Updated glibc packages fix security vulnerability
2018-03-06 10:55:33
Updated glibc packages fix security vulnerabilities
2018-01-25 15:47:25
Updated glibc packages fix security vulnerabilities
2018-01-25 15:47:25
gentoo
gentoo
glibc: Multiple vulnerabilities
2018-04-04 00:00:00
nvd
nvd
CVE-2017-12132
2017-08-01 16:29:00
CVE-2018-1000001
2018-01-31 14:29:00
CVE-2018-6551
2018-02-02 14:29:01
prion
prion
Design/Logic Flaw
2017-08-01 16:29:00
Type confusion
2018-01-31 14:29:00
Integer overflow
2018-02-01 14:29:00
ubuntucve
ubuntucve
CVE-2017-12132
2017-08-01 00:00:00
CVE-2018-1000001
2018-01-11 00:00:00
CVE-2018-6485
2018-02-01 00:00:00
veracode
veracode
DNS Spoofing
2019-05-16 02:50:40
Arbitrary Code Execution
2019-05-16 02:50:43
Integer Overflow
2019-05-16 03:18:40
cvelist
cvelist
CVE-2017-12132
2017-08-01 16:00:00
CVE-2018-1000001
2018-01-31 14:00:00
CVE-2018-6551
2018-02-02 14:00:00
f5
f5
K87355575 : glibc vulnerability CVE-2017-12132
2018-05-29 00:00:00
K12896623 : glibc vulnerability CVE-2018-1000001
2018-03-09 00:00:00
K62463634 : glibc vulnerability CVE-2018-6485
2018-03-19 00:00:00
debiancve
debiancve
CVE-2017-12132
2017-08-01 16:29:00
CVE-2018-1000001
2018-01-31 14:29:00
CVE-2018-6551
2018-02-02 14:29:01
redhatcve
redhatcve
CVE-2017-12132
2017-08-02 11:19:22
CVE-2018-1000001
2020-04-05 16:57:22
CVE-2018-6485
2019-11-03 15:57:31
cve
cve
CVE-2017-12132
2017-08-01 16:29:00
CVE-2018-6485
2018-02-01 14:29:00
CVE-2018-1000001
2018-01-31 14:29:00
osv
osv
CVE-2017-12132
2017-08-01 16:29:00
CVE-2018-1000001
2018-01-31 14:29:00
CVE-2018-6485
2018-02-01 14:29:00
archlinux
archlinux
[ASA-201801-18] glibc: privilege escalation
2018-01-28 00:00:00
[ASA-201801-19] lib32-glibc: privilege escalation
2018-01-28 00:00:00
altlinux
altlinux
packetstorm
packetstorm
glibc 'realpath()' Privilege Escalation
2018-06-12 00:00:00
glibc getcwd() Local Privilege Escalation
2018-01-18 00:00:00
metasploit
metasploit
glibc 'realpath()' Privilege Escalation
2018-05-26 21:25:59
attackerkb
attackerkb
CVE-2018-1000001
2018-01-31 00:00:00
seebug
seebug
Libc Realpath缓冲区下溢漏洞(CVE-2018-1000001)
2018-01-26 00:00:00
ubuntu
ubuntu
GNU C Library vulnerability
2018-01-17 00:00:00
GNU C Library vulnerability
2019-12-10 00:00:00
GNU C Library vulnerabilities
2022-12-08 00:00:00
centos
centos
glibc, nscd security update
2018-04-26 17:41:43
glibc, nscd security update
2018-11-15 18:45:43
redhat
redhat
(RHSA-2018:0805) Moderate: glibc security, bug fix, and enhancement update
2018-04-10 05:01:26
(RHSA-2018:3092) Moderate: glibc security, bug fix, and enhancement update
2018-10-30 04:18:01
exploitdb
exploitdb
glibc - 'realpath()' Privilege Escalation (Metasploit)
2018-06-13 00:00:00
hackerone
hackerone
Internet Bug Bounty: rpcbind "rpcbomb" CVE-2017-8779, CVE-2017-8804
2017-05-31 18:50:34
oraclelinux
oraclelinux
glibc security, bug fix, and enhancement update
2018-04-16 00:00:00
glibc security update
2018-11-06 00:00:00
glibc security, bug fix, and enhancement update
2018-11-05 00:00:00
7.8 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.012 Low
EPSS
Percentile
85.1%
Related for OPENSUSE-2018-184.NASL