Lucene search
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2020-446.NASLHistoryApr 06, 2020 - 12:00 a.m.
openSUSE Security Update : spamassassin (openSUSE-2020-446)
2020-04-0600:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.5
Confidence
High
EPSS
0.009
Percentile
82.4%
This update for spamassassin fixes the following issues :
Security issues fixed :
-
CVE-2018-11805: Fixed an issue with delimiter handling in rule files related to is_regexp_valid() (bsc#1118987).
-
CVE-2020-1930: Fixed an issue with rule configuration (.cf) files which can be configured to run system commands (bsc#1162197).
-
CVE-2020-1931: Fixed an issue with rule configuration (.cf) files which can be configured to run system commands with warnings (bsc#1162200). Non-security issue fixed :
-
Altering hash requires restarting loop (bsc#862963).
This update was imported from the SUSE:SLE-15-SP1:Update update project.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2020-446.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('compat.inc');
if (description)
{
script_id(135221);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/19");
script_cve_id("CVE-2018-11805", "CVE-2020-1930", "CVE-2020-1931");
script_name(english:"openSUSE Security Update : spamassassin (openSUSE-2020-446)");
script_set_attribute(attribute:"synopsis", value:
"The remote openSUSE host is missing a security update.");
script_set_attribute(attribute:"description", value:
"This update for spamassassin fixes the following issues :
Security issues fixed :
- CVE-2018-11805: Fixed an issue with delimiter handling
in rule files related to is_regexp_valid()
(bsc#1118987).
- CVE-2020-1930: Fixed an issue with rule configuration
(.cf) files which can be configured to run system
commands (bsc#1162197).
- CVE-2020-1931: Fixed an issue with rule configuration
(.cf) files which can be configured to run system
commands with warnings (bsc#1162200). Non-security issue
fixed :
- Altering hash requires restarting loop (bsc#862963).
This update was imported from the SUSE:SLE-15-SP1:Update update
project.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1118987");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1162197");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1162200");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.opensuse.org/show_bug.cgi?id=862963");
script_set_attribute(attribute:"solution", value:
"Update the affected spamassassin packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-1931");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/12/12");
script_set_attribute(attribute:"patch_publication_date", value:"2020/04/04");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/04/06");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:perl-Mail-SpamAssassin");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:perl-Mail-SpamAssassin-Plugin-iXhash2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:spamassassin");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:spamassassin-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:spamassassin-debugsource");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:15.1");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE15\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "15.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(x86_64)$") audit(AUDIT_ARCH_NOT, "x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE15.1", reference:"perl-Mail-SpamAssassin-3.4.2-lp151.8.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.1", reference:"perl-Mail-SpamAssassin-Plugin-iXhash2-2.05-lp151.8.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.1", reference:"spamassassin-3.4.2-lp151.8.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.1", reference:"spamassassin-debuginfo-3.4.2-lp151.8.3.1") ) flag++;
if ( rpm_check(release:"SUSE15.1", reference:"spamassassin-debugsource-3.4.2-lp151.8.3.1") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "perl-Mail-SpamAssassin / perl-Mail-SpamAssassin-Plugin-iXhash2 / etc");
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-11805
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1930
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-1931
bugzilla.opensuse.org/show_bug.cgi?id=1118987
bugzilla.opensuse.org/show_bug.cgi?id=1162197
bugzilla.opensuse.org/show_bug.cgi?id=1162200
bugzilla.opensuse.org/show_bug.cgi?id=862963
Related
nessus
nessus
SUSE SLED15 / SLES15 Security Update : spamassassin (SUSE-SU-2020:0811-1)
2020-03-31 00:00:00
SUSE SLES12 Security Update : spamassassin (SUSE-SU-2020:0810-1)
2020-03-31 00:00:00
SUSE SLES15 Security Update : spamassassin (SUSE-SU-2020:0813-1)
2020-03-31 00:00:00
openvas
openvas
openSUSE: Security Advisory for spamassassin (openSUSE-SU-2020:0446-1)
2020-04-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:0810-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:0813-1)
2021-04-19 00:00:00
suse
suse
Security update for spamassassin (important)
2020-04-04 00:00:00
almalinux
almalinux
Moderate: spamassassin security update
2020-11-03 12:21:29
redhat
redhat
(RHSA-2020:4625) Moderate: spamassassin security update
2020-11-03 12:21:29
oraclelinux
oraclelinux
spamassassin security update
2020-11-10 00:00:00
debiancve
debiancve
ubuntucve
ubuntucve
nvd
nvd
cve
cve
osv
osv
CVE-2020-1930
2020-01-30 18:15:11
CVE-2020-1931
2020-01-30 18:15:11
spamassassin - security update
2020-02-01 00:00:00
alpinelinux
alpinelinux
veracode
veracode
Arbitrary Command Execution
2020-08-11 03:23:26
Arbitrary Code Execution
2020-11-05 03:19:23
OS Command Injection
2020-08-11 03:23:30
prion
prion
Command injection
2020-01-30 18:15:00
Command injection
2020-01-30 18:15:00
Design/Logic Flaw
2019-12-12 23:15:00
redhatcve
redhatcve
cvelist
cvelist
ubuntu
ubuntu
SpamAssassin vulnerabilities
2020-02-04 00:00:00
SpamAssassin vulnerabilities
2020-02-04 00:00:00
SpamAssassin vulnerabilities
2020-01-15 00:00:00
mageia
mageia
Updated spamassassin packages fix security vulnerabilities
2020-02-09 22:13:40
Updated spamassassin packages fix security vulnerabilities
2019-12-24 15:24:34
debian
debian
[SECURITY] [DLA 2107-1] spamassassin security update
2020-02-18 12:54:51
[SECURITY] [DSA 4615-1] spamassassin security update
2020-02-01 19:42:11
[SECURITY] [DSA 4615-1] spamassassin security update
2020-02-01 19:42:11
fedora
fedora
[SECURITY] Fedora 30 Update: spamassassin-3.4.4-1.fc30
2020-02-12 01:41:33
[SECURITY] Fedora 31 Update: spamassassin-3.4.4-1.fc31
2020-02-12 02:15:41
freebsd
freebsd
spamassassin -- Nefarious rule configuration files can run system commands
2020-01-28 00:00:00
spamassassin -- Apache SpamAssassin Nefarious rule configuration (.cf) files can be configured to run system commands with warnings
2020-01-30 00:00:00
spamassassin -- multiple vulnerabilities
2019-12-11 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1973
2021-07-02 18:08:24
amazon
amazon
Medium: spamassassin
2020-02-04 22:46:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
8.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.5
Confidence
High
EPSS
0.009
Percentile
82.4%
Related for OPENSUSE-2020-446.NASL