Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2019-2349-1.NASLHistorySep 11, 2019 - 12:00 a.m.
SUSE SLED15 / SLES15 Security Update : libgcrypt (SUSE-SU-2019:2349-1)
2019-09-1100:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
CVSS2
2.6
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:P/A:N
CVSS3
6.3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS
0.003
Percentile
72.1%
This update for libgcrypt fixes the following issues :
Security issues fixed :
CVE-2019-13627: Mitigated ECDSA timing attack. (bsc#1148987)
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2019:2349-1.
# The text itself is copyright (C) SUSE.
#
include("compat.inc");
if (description)
{
script_id(128679);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/02/01");
script_cve_id("CVE-2019-13627");
script_name(english:"SUSE SLED15 / SLES15 Security Update : libgcrypt (SUSE-SU-2019:2349-1)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"This update for libgcrypt fixes the following issues :
Security issues fixed :
CVE-2019-13627: Mitigated ECDSA timing attack. (bsc#1148987)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1148987"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2019-13627/"
);
# https://www.suse.com/support/update/announcement/2019/suse-su-20192349-1/
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?197e5549"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Module for Open Buildservice Development Tools
15:zypper in -t patch
SUSE-SLE-Module-Development-Tools-OBS-15-2019-2349=1
SUSE Linux Enterprise Module for Basesystem 15:zypper in -t patch
SUSE-SLE-Module-Basesystem-15-2019-2349=1"
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:H/Au:N/C:P/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-13627");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt-cavs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt-cavs-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt-devel-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt20");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt20-32bit-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt20-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt20-hmac");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:15");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/09/25");
script_set_attribute(attribute:"patch_publication_date", value:"2019/09/10");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/09/11");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED15|SLES15)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED15 / SLES15", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES15" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLES15 SP0", os_ver + " SP" + sp);
if (os_ver == "SLED15" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLED15 SP0", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES15", sp:"0", cpu:"x86_64", reference:"libgcrypt20-32bit-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", cpu:"x86_64", reference:"libgcrypt20-32bit-debuginfo-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", cpu:"x86_64", reference:"libgcrypt20-hmac-32bit-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", reference:"libgcrypt-cavs-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", reference:"libgcrypt-cavs-debuginfo-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", reference:"libgcrypt-debugsource-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", reference:"libgcrypt-devel-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", reference:"libgcrypt-devel-debuginfo-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", reference:"libgcrypt20-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", reference:"libgcrypt20-debuginfo-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLES15", sp:"0", reference:"libgcrypt20-hmac-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", cpu:"x86_64", reference:"libgcrypt20-32bit-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", cpu:"x86_64", reference:"libgcrypt20-32bit-debuginfo-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", cpu:"x86_64", reference:"libgcrypt20-hmac-32bit-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", reference:"libgcrypt-cavs-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", reference:"libgcrypt-cavs-debuginfo-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", reference:"libgcrypt-debugsource-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", reference:"libgcrypt-devel-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", reference:"libgcrypt-devel-debuginfo-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", reference:"libgcrypt20-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", reference:"libgcrypt20-debuginfo-1.8.2-6.20.1")) flag++;
if (rpm_check(release:"SLED15", sp:"0", reference:"libgcrypt20-hmac-1.8.2-6.20.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
else security_note(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libgcrypt");
}
Related
debian
debian
[SECURITY] [DLA 1931-1] libgcrypt20 security update
2019-09-24 15:40:52
[SECURITY] [DLA 1931-2] libgcrypt20 regression update
2020-01-01 12:36:43
suse
suse
Security update for libgcrypt (moderate)
2020-01-14 00:00:00
Security update for libgcrypt (moderate)
2019-09-24 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4236-1)
2020-01-14 00:00:00
Ubuntu: Security Advisory (USN-4236-3)
2022-08-26 00:00:00
openSUSE: Security Advisory for libgcrypt (openSUSE-SU-2019:2161-1)
2019-09-25 00:00:00
nessus
nessus
Oracle Linux 8 : libgcrypt (ELSA-2020-4482)
2020-11-12 00:00:00
Debian DLA-1931-2 : libgcrypt20 regression update
2019-09-25 00:00:00
CentOS 8 : libgcrypt (CESA-2020:4482)
2021-02-01 00:00:00
osv
osv
Moderate: libgcrypt security, bug fix, and enhancement update
2020-11-03 12:08:44
libgcrypt20 - regression update
2020-01-01 00:00:00
libgcrypt20 - security update
2019-09-24 00:00:00
redhat
redhat
(RHSA-2021:0146) Moderate: Release of OpenShift Serverless 1.12.0
2021-01-14 13:24:22
almalinux
almalinux
Moderate: libgcrypt security, bug fix, and enhancement update
2020-11-03 12:08:44
ubuntu
ubuntu
Libgcrypt vulnerability
2020-01-28 00:00:00
Libgcrypt vulnerability
2020-01-13 00:00:00
Libgcrypt vulnerability
2020-01-14 00:00:00
debiancve
debiancve
CVE-2019-13627
2019-09-25 15:15:11
rocky
rocky
libgcrypt security, bug fix, and enhancement update
2020-11-03 12:08:44
cloudfoundry
cloudfoundry
USN-4236-1: Libgcrypt vulnerability | Cloud Foundry
2020-02-05 00:00:00
USN-4236-2: Libgcrypt vulnerability | Cloud Foundry
2020-02-05 00:00:00
ubuntucve
ubuntucve
CVE-2019-13627
2019-09-25 00:00:00
prion
prion
Code injection
2019-09-25 15:15:00
freebsd
freebsd
libgcrypt -- ECDSA timing attack
2019-08-29 00:00:00
oraclelinux
oraclelinux
libgcrypt security, bug fix, and enhancement update
2020-11-10 00:00:00
nvd
nvd
CVE-2019-13627
2019-09-25 15:15:11
mageia
mageia
Updated libgcrypt packages fix security vulnerability
2019-09-07 00:09:08
alpinelinux
alpinelinux
CVE-2019-13627
2019-09-25 15:15:11
cvelist
cvelist
CVE-2019-13627
2019-09-25 14:44:45
redhatcve
redhatcve
CVE-2019-13627
2019-10-22 07:50:55
gentoo
gentoo
Libgcrypt: Side-channel attack
2020-03-15 00:00:00
cve
cve
CVE-2019-13627
2019-09-25 15:15:11
ibm
ibm
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00
CVSS2
2.6
Attack Vector
LOCAL
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:L/AC:H/Au:N/C:P/I:P/A:N
CVSS3
6.3
Attack Vector
LOCAL
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
NONE
CVSS:3.1/AV:L/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N
EPSS
0.003
Percentile
72.1%
Related for SUSE_SU-2019-2349-1.NASL