Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2016-2600.NASL
HistoryNov 04, 2016 - 12:00 a.m.

RHEL 7 : squid (RHSA-2016:2600)

2016-11-0400:00:00
This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
33

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.957

Percentile

99.4%

JSON

An update for squid is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

Squid is a high-performance proxy caching server for web clients, supporting FTP, Gopher, and HTTP data objects.

The following packages have been upgraded to a newer upstream version:
squid (3.5.20). (BZ#1273942, BZ#1349775)

Security Fix(es) :

  • Incorrect boundary checks were found in the way squid handled headers in HTTP responses, which could lead to an assertion failure. A malicious HTTP server could use this flaw to crash squid using a specially crafted HTTP response. (CVE-2016-2569, CVE-2016-2570)

  • It was found that squid did not properly handle errors when failing to parse an HTTP response, possibly leading to an assertion failure. A malicious HTTP server could use this flaw to crash squid using a specially crafted HTTP response. (CVE-2016-2571, CVE-2016-2572)

  • An incorrect boundary check was found in the way squid handled the Vary header in HTTP responses, which could lead to an assertion failure. A malicious HTTP server could use this flaw to crash squid using a specially crafted HTTP response. (CVE-2016-3948)

Additional Changes :

For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.3 Release Notes linked from the References section.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2016:2600. The text 
# itself is copyright (C) Red Hat, Inc.
#

include("compat.inc");

if (description)
{
  script_id(94563);
  script_version("2.12");
  script_cvs_date("Date: 2019/10/24 15:35:42");

  script_cve_id("CVE-2016-2569", "CVE-2016-2570", "CVE-2016-2571", "CVE-2016-2572", "CVE-2016-3948");
  script_xref(name:"RHSA", value:"2016:2600");

  script_name(english:"RHEL 7 : squid (RHSA-2016:2600)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"An update for squid is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security
impact of Moderate. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.

Squid is a high-performance proxy caching server for web clients,
supporting FTP, Gopher, and HTTP data objects.

The following packages have been upgraded to a newer upstream version:
squid (3.5.20). (BZ#1273942, BZ#1349775)

Security Fix(es) :

* Incorrect boundary checks were found in the way squid handled
headers in HTTP responses, which could lead to an assertion failure. A
malicious HTTP server could use this flaw to crash squid using a
specially crafted HTTP response. (CVE-2016-2569, CVE-2016-2570)

* It was found that squid did not properly handle errors when failing
to parse an HTTP response, possibly leading to an assertion failure. A
malicious HTTP server could use this flaw to crash squid using a
specially crafted HTTP response. (CVE-2016-2571, CVE-2016-2572)

* An incorrect boundary check was found in the way squid handled the
Vary header in HTTP responses, which could lead to an assertion
failure. A malicious HTTP server could use this flaw to crash squid
using a specially crafted HTTP response. (CVE-2016-3948)

Additional Changes :

For detailed information on changes in this release, see the Red Hat
Enterprise Linux 7.3 Release Notes linked from the References section."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2016:2600"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2016-2569"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2016-2570"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2016-2571"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2016-2572"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2016-3948"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:squid");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:squid-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:squid-migration-script");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:squid-sysvinit");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.3");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.4");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.5");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.6");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.7");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/02/27");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/11/03");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/11/04");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 7.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2016:2600";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_check(release:"RHEL7", cpu:"s390x", reference:"squid-3.5.20-2.el7")) flag++;

  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"squid-3.5.20-2.el7")) flag++;

  if (rpm_check(release:"RHEL7", cpu:"s390x", reference:"squid-debuginfo-3.5.20-2.el7")) flag++;

  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"squid-debuginfo-3.5.20-2.el7")) flag++;

  if (rpm_check(release:"RHEL7", cpu:"s390x", reference:"squid-migration-script-3.5.20-2.el7")) flag++;

  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"squid-migration-script-3.5.20-2.el7")) flag++;

  if (rpm_check(release:"RHEL7", cpu:"s390x", reference:"squid-sysvinit-3.5.20-2.el7")) flag++;

  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"squid-sysvinit-3.5.20-2.el7")) flag++;


  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "squid / squid-debuginfo / squid-migration-script / squid-sysvinit");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxsquidp-cpe:/a:redhat:enterprise_linux:squid
redhatenterprise_linuxsquid-debuginfop-cpe:/a:redhat:enterprise_linux:squid-debuginfo
redhatenterprise_linuxsquid-migration-scriptp-cpe:/a:redhat:enterprise_linux:squid-migration-script
redhatenterprise_linuxsquid-sysvinitp-cpe:/a:redhat:enterprise_linux:squid-sysvinit
redhatenterprise_linux7cpe:/o:redhat:enterprise_linux:7
redhatenterprise_linux7.3cpe:/o:redhat:enterprise_linux:7.3
redhatenterprise_linux7.4cpe:/o:redhat:enterprise_linux:7.4
redhatenterprise_linux7.5cpe:/o:redhat:enterprise_linux:7.5
redhatenterprise_linux7.6cpe:/o:redhat:enterprise_linux:7.6
redhatenterprise_linux7.7cpe:/o:redhat:enterprise_linux:7.7

Related

nessus 24
openvas 24
redhat 1
centos 1
mageia 2
freebsd 2
ubuntu 3
osv 4
debian 4
oraclelinux 1
fedora 4
gentoo 1
ubuntucve 5
cve 5
debiancve 5
nvd 5
cvelist 5
checkpoint_advisories 2
prion 5
suse 2
nessus
nessus
Oracle Linux 7 : squid (ELSA-2016-2600)
2016-11-11 00:00:00
EulerOS 2.0 SP1 : squid (EulerOS-SA-2016-1056)
2017-05-01 00:00:00
Scientific Linux Security Update : squid on SL7.x x86_64 (20161103)
2016-12-15 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for squid (EulerOS-SA-2016-1056)
2020-01-23 00:00:00
RedHat Update for squid RHSA-2016:2600-02
2016-11-04 00:00:00
Squid Multiple DoS Vulnerabilities (SQUID-2016:2) - Linux
2016-03-03 00:00:00
redhat
redhat
(RHSA-2016:2600) Moderate: squid security, bug fix, and enhancement update
2016-11-03 06:07:16
centos
centos
squid security update
2016-11-25 16:02:47
mageia
mageia
Updated squid packages fix security vulnerabilities
2016-03-07 14:20:30
Updated squid packages fix security vulnerabilities
2016-04-06 17:09:53
freebsd
freebsd
squid -- remote DoS in HTTP response processing
2016-02-24 00:00:00
squid -- multiple vulnerabilities
2016-03-28 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2018-02-05 00:00:00
Squid regression
2022-12-12 00:00:00
Squid vulnerabilities
2016-03-07 00:00:00
osv
osv
squid3 regression
2022-12-12 00:46:49
squid3 - regression update
2016-03-03 00:00:00
squid3 - security update
2016-03-03 00:00:00
debian
debian
[SECURITY] [DLA 445-1] squid3 security update
2016-02-29 22:18:34
[SECURITY] [DLA 445-2] squid3 regression update
2016-03-03 21:59:04
[SECURITY] [DSA 3522-1] squid3 security update
2016-03-20 18:36:35
oraclelinux
oraclelinux
squid security, bug fix, and enhancement update
2016-11-09 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: squid-3.5.10-4.fc23
2016-07-13 00:00:11
[SECURITY] Fedora 22 Update: squid-3.5.10-1.fc22
2016-05-06 19:58:05
[SECURITY] Fedora 22 Update: libecap-1.0.0-1.fc22
2016-05-06 19:58:05
gentoo
gentoo
Squid: Multiple vulnerabilities
2016-07-09 00:00:00
ubuntucve
ubuntucve
CVE-2016-2572
2016-02-27 00:00:00
CVE-2016-3948
2016-04-07 00:00:00
CVE-2016-2570
2016-02-27 00:00:00
cve
cve
CVE-2016-2572
2016-02-27 05:59:06
CVE-2016-2569
2016-02-27 05:59:03
CVE-2016-3948
2016-04-07 18:59:01
debiancve
debiancve
CVE-2016-2569
2016-02-27 05:59:03
CVE-2016-3948
2016-04-07 18:59:01
CVE-2016-2572
2016-02-27 05:59:06
nvd
nvd
CVE-2016-2569
2016-02-27 05:59:03
CVE-2016-2572
2016-02-27 05:59:06
CVE-2016-3948
2016-04-07 18:59:01
cvelist
cvelist
CVE-2016-2569
2016-02-27 02:00:00
CVE-2016-2570
2016-02-27 02:00:00
CVE-2016-3948
2016-04-07 18:00:00
checkpoint_advisories
checkpoint_advisories
Squid HTTP Response Processing Denial of Service (CVE-2016-3948)
2016-05-19 00:00:00
Squid Long String Header Processing Assertion Failure (CVE-2016-2569)
2016-06-13 00:00:00
prion
prion
Out-of-bounds
2016-04-07 18:59:00
Code injection
2016-02-27 05:59:00
Design/Logic Flaw
2016-02-27 05:59:00
suse
suse
Security update for squid3 (important)
2016-08-16 18:08:55
Security update for squid3 (important)
2016-08-09 17:12:26

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.957

Percentile

99.4%

JSON
Related for REDHAT-RHSA-2016-2600.NASL
nessus24openvas24redhat1centos1mageia2freebsd2ubuntu3osv4debian4oraclelinux1fedora4gentoo1ubuntucve5cve5debiancve5nvd5cvelist5checkpoint_advisories2prion5suse2