This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2021-0199-1.NASLSUSE SLES12 Security Update : ImageMagick (SUSE-SU-2021:0199-1)
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
5.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
48.4%
This update for ImageMagick fixes the following issues :
CVE-2020-19667: Fixed a stack-based buffer overflow in XPM coder could result in a crash (bsc#1179103).
CVE-2020-25664: Fixed a heap-based buffer overflow in PopShortPixel (bsc#1179202).
CVE-2020-25665: Fixed a heap-based buffer overflow in WritePALMImage (bsc#1179208).
CVE-2020-25666: Fixed an outside the range of representable values of type ‘int’ and signed integer overflow (bsc#1179212).
CVE-2020-25674: Fixed a heap-based buffer overflow in WriteOnePNGImage (bsc#1179223).
CVE-2020-25675: Fixed an outside the range of representable values of type ‘long’ and integer overflow (bsc#1179240).
CVE-2020-25676: Fixed an outside the range of representable values of type ‘long’ and integer overflow at MagickCore/pixel.c (bsc#1179244).
CVE-2020-27750: Fixed an division by zero in MagickCore/colorspace-private.h (bsc#1179260).
CVE-2020-27751: Fixed an integer overflow in MagickCore/quantum-export.c (bsc#1179269).
CVE-2020-27752: Fixed a heap-based buffer overflow in PopShortPixel in MagickCore/quantum-private.h (bsc#1179346).
CVE-2020-27753: Fixed memory leaks in AcquireMagickMemory function (bsc#1179397).
CVE-2020-27754: Fixed an outside the range of representable values of type ‘long’ and signed integer overflow at MagickCore/quantize.c (bsc#1179336).
CVE-2020-27755: Fixed memory leaks in ResizeMagickMemory function in ImageMagick/MagickCore/memory.c (bsc#1179345).
CVE-2020-27757: Fixed an outside the range of representable values of type ‘unsigned long long’ at MagickCore/quantum-private.h (bsc#1179268).
CVE-2020-27759: Fixed an outside the range of representable values of type ‘int’ at MagickCore/quantize.c (bsc#1179313).
CVE-2020-27760: Fixed a division by zero at MagickCore/enhance.c (bsc#1179281).
CVE-2020-27761: Fixed an outside the range of representable values of type ‘unsigned long’ at coders/palm.c (bsc#1179315).
CVE-2020-27762: Fixed an outside the range of representable values of type ‘unsigned char’ (bsc#1179278).
CVE-2020-27763: Fixed a division by zero at MagickCore/resize.c (bsc#1179312).
CVE-2020-27764: Fixed an outside the range of representable values of type ‘unsigned long’ at MagickCore/statistic.c (bsc#1179317).
CVE-2020-27765: Fixed a division by zero at MagickCore/segment.c (bsc#1179311).
CVE-2020-27766: Fixed an outside the range of representable values of type ‘unsigned long’ at MagickCore/statistic.c (bsc#1179361).
CVE-2020-27767: Fixed an outside the range of representable values of type ‘float’ at MagickCore/quantum.h (bsc#1179322).
CVE-2020-27768: Fixed an outside the range of representable values of type ‘unsigned int’ at MagickCore/quantum-private.h (bsc#1179339).
CVE-2020-27769: Fixed an outside the range of representable values of type ‘float’ at MagickCore/quantize.c (bsc#1179321).
CVE-2020-27770: Fixed an unsigned offset overflowed at MagickCore/string.c (bsc#1179343).
CVE-2020-27771: Fixed an outside the range of representable values of type ‘unsigned char’ at coders/pdf.c (bsc#1179327).
CVE-2020-27772: Fixed an outside the range of representable values of type ‘unsigned int’ at coders/bmp.c (bsc#1179347).
CVE-2020-27773: Fixed a division by zero at MagickCore/gem-private.h (bsc#1179285).
CVE-2020-27774: Fixed an integer overflow at MagickCore/statistic.c (bsc#1179333).
CVE-2020-27775: Fixed an outside the range of representable values of type ‘unsigned char’ at MagickCore/quantum.h (bsc#1179338).
CVE-2020-27776: Fixed an outside the range of representable values of type ‘unsigned long’ at MagickCore/statistic.c (bsc#1179362).
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2021:0199-1.
# The text itself is copyright (C) SUSE.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(145363);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/26");
script_cve_id(
"CVE-2020-19667",
"CVE-2020-25664",
"CVE-2020-25665",
"CVE-2020-25666",
"CVE-2020-25674",
"CVE-2020-25675",
"CVE-2020-25676",
"CVE-2020-27750",
"CVE-2020-27751",
"CVE-2020-27752",
"CVE-2020-27753",
"CVE-2020-27754",
"CVE-2020-27755",
"CVE-2020-27757",
"CVE-2020-27759",
"CVE-2020-27760",
"CVE-2020-27761",
"CVE-2020-27762",
"CVE-2020-27763",
"CVE-2020-27764",
"CVE-2020-27765",
"CVE-2020-27766",
"CVE-2020-27767",
"CVE-2020-27768",
"CVE-2020-27769",
"CVE-2020-27770",
"CVE-2020-27771",
"CVE-2020-27772",
"CVE-2020-27773",
"CVE-2020-27774",
"CVE-2020-27775",
"CVE-2020-27776"
);
script_name(english:"SUSE SLES12 Security Update : ImageMagick (SUSE-SU-2021:0199-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"This update for ImageMagick fixes the following issues :
CVE-2020-19667: Fixed a stack-based buffer overflow in XPM coder could
result in a crash (bsc#1179103).
CVE-2020-25664: Fixed a heap-based buffer overflow in PopShortPixel
(bsc#1179202).
CVE-2020-25665: Fixed a heap-based buffer overflow in WritePALMImage
(bsc#1179208).
CVE-2020-25666: Fixed an outside the range of representable values of
type 'int' and signed integer overflow (bsc#1179212).
CVE-2020-25674: Fixed a heap-based buffer overflow in WriteOnePNGImage
(bsc#1179223).
CVE-2020-25675: Fixed an outside the range of representable values of
type 'long' and integer overflow (bsc#1179240).
CVE-2020-25676: Fixed an outside the range of representable values of
type 'long' and integer overflow at MagickCore/pixel.c (bsc#1179244).
CVE-2020-27750: Fixed an division by zero in
MagickCore/colorspace-private.h (bsc#1179260).
CVE-2020-27751: Fixed an integer overflow in
MagickCore/quantum-export.c (bsc#1179269).
CVE-2020-27752: Fixed a heap-based buffer overflow in PopShortPixel in
MagickCore/quantum-private.h (bsc#1179346).
CVE-2020-27753: Fixed memory leaks in AcquireMagickMemory function
(bsc#1179397).
CVE-2020-27754: Fixed an outside the range of representable values of
type 'long' and signed integer overflow at MagickCore/quantize.c
(bsc#1179336).
CVE-2020-27755: Fixed memory leaks in ResizeMagickMemory function in
ImageMagick/MagickCore/memory.c (bsc#1179345).
CVE-2020-27757: Fixed an outside the range of representable values of
type 'unsigned long long' at MagickCore/quantum-private.h
(bsc#1179268).
CVE-2020-27759: Fixed an outside the range of representable values of
type 'int' at MagickCore/quantize.c (bsc#1179313).
CVE-2020-27760: Fixed a division by zero at MagickCore/enhance.c
(bsc#1179281).
CVE-2020-27761: Fixed an outside the range of representable values of
type 'unsigned long' at coders/palm.c (bsc#1179315).
CVE-2020-27762: Fixed an outside the range of representable values of
type 'unsigned char' (bsc#1179278).
CVE-2020-27763: Fixed a division by zero at MagickCore/resize.c
(bsc#1179312).
CVE-2020-27764: Fixed an outside the range of representable values of
type 'unsigned long' at MagickCore/statistic.c (bsc#1179317).
CVE-2020-27765: Fixed a division by zero at MagickCore/segment.c
(bsc#1179311).
CVE-2020-27766: Fixed an outside the range of representable values of
type 'unsigned long' at MagickCore/statistic.c (bsc#1179361).
CVE-2020-27767: Fixed an outside the range of representable values of
type 'float' at MagickCore/quantum.h (bsc#1179322).
CVE-2020-27768: Fixed an outside the range of representable values of
type 'unsigned int' at MagickCore/quantum-private.h (bsc#1179339).
CVE-2020-27769: Fixed an outside the range of representable values of
type 'float' at MagickCore/quantize.c (bsc#1179321).
CVE-2020-27770: Fixed an unsigned offset overflowed at
MagickCore/string.c (bsc#1179343).
CVE-2020-27771: Fixed an outside the range of representable values of
type 'unsigned char' at coders/pdf.c (bsc#1179327).
CVE-2020-27772: Fixed an outside the range of representable values of
type 'unsigned int' at coders/bmp.c (bsc#1179347).
CVE-2020-27773: Fixed a division by zero at MagickCore/gem-private.h
(bsc#1179285).
CVE-2020-27774: Fixed an integer overflow at MagickCore/statistic.c
(bsc#1179333).
CVE-2020-27775: Fixed an outside the range of representable values of
type 'unsigned char' at MagickCore/quantum.h (bsc#1179338).
CVE-2020-27776: Fixed an outside the range of representable values of
type 'unsigned long' at MagickCore/statistic.c (bsc#1179362).
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179103");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179202");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179208");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179212");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179223");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179240");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179244");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179260");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179268");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179269");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179278");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179281");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179285");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179311");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179312");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179313");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179315");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179317");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179321");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179322");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179327");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179333");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179336");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179338");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179339");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179343");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179345");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179346");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179347");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179361");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179362");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1179397");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-19667/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-25664/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-25665/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-25666/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-25674/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-25675/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-25676/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27750/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27751/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27752/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27753/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27754/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27755/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27757/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27759/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27760/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27761/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27762/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27763/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27764/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27765/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27766/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27767/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27768/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27769/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27770/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27771/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27772/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27773/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27774/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27775/");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-27776/");
# https://www.suse.com/support/update/announcement/2021/suse-su-20210199-1
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?eb12861e");
script_set_attribute(attribute:"solution", value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.
Alternatively you can run the command listed for your product :
SUSE OpenStack Cloud Crowbar 9 :
zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-9-2021-199=1
SUSE OpenStack Cloud Crowbar 8 :
zypper in -t patch SUSE-OpenStack-Cloud-Crowbar-8-2021-199=1
SUSE OpenStack Cloud 9 :
zypper in -t patch SUSE-OpenStack-Cloud-9-2021-199=1
SUSE OpenStack Cloud 8 :
zypper in -t patch SUSE-OpenStack-Cloud-8-2021-199=1
SUSE OpenStack Cloud 7 :
zypper in -t patch SUSE-OpenStack-Cloud-7-2021-199=1
SUSE Linux Enterprise Workstation Extension 12-SP5 :
zypper in -t patch SUSE-SLE-WE-12-SP5-2021-199=1
SUSE Linux Enterprise Software Development Kit 12-SP5 :
zypper in -t patch SUSE-SLE-SDK-12-SP5-2021-199=1
SUSE Linux Enterprise Server for SAP 12-SP4 :
zypper in -t patch SUSE-SLE-SAP-12-SP4-2021-199=1
SUSE Linux Enterprise Server for SAP 12-SP3 :
zypper in -t patch SUSE-SLE-SAP-12-SP3-2021-199=1
SUSE Linux Enterprise Server for SAP 12-SP2 :
zypper in -t patch SUSE-SLE-SAP-12-SP2-2021-199=1
SUSE Linux Enterprise Server 12-SP5 :
zypper in -t patch SUSE-SLE-SERVER-12-SP5-2021-199=1
SUSE Linux Enterprise Server 12-SP4-LTSS :
zypper in -t patch SUSE-SLE-SERVER-12-SP4-LTSS-2021-199=1
SUSE Linux Enterprise Server 12-SP3-LTSS :
zypper in -t patch SUSE-SLE-SERVER-12-SP3-2021-199=1
SUSE Linux Enterprise Server 12-SP3-BCL :
zypper in -t patch SUSE-SLE-SERVER-12-SP3-BCL-2021-199=1
SUSE Linux Enterprise Server 12-SP2-LTSS :
zypper in -t patch SUSE-SLE-SERVER-12-SP2-2021-199=1
SUSE Linux Enterprise Server 12-SP2-BCL :
zypper in -t patch SUSE-SLE-SERVER-12-SP2-BCL-2021-199=1
SUSE Enterprise Storage 5 :
zypper in -t patch SUSE-Storage-5-2021-199=1
HPE Helion Openstack 8 :
zypper in -t patch HPE-Helion-OpenStack-8-2021-199=1");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-27766");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/11/20");
script_set_attribute(attribute:"patch_publication_date", value:"2021/01/22");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/01/25");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ImageMagick-config-6-SUSE");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ImageMagick-config-6-upstream");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ImageMagick-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ImageMagick-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libMagickCore-6_Q16");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libMagickCore-6_Q16-1-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libMagickWand-6_Q16");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libMagickWand-6_Q16-1-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES12", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(2|3|4|5)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP2/3/4/5", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES12", sp:"4", reference:"ImageMagick-config-6-SUSE-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"ImageMagick-config-6-upstream-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"ImageMagick-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"ImageMagick-debugsource-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libMagickCore-6_Q16-1-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libMagickWand-6_Q16-1-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"ImageMagick-config-6-SUSE-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"ImageMagick-config-6-upstream-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"ImageMagick-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"ImageMagick-debugsource-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libMagickCore-6_Q16-1-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libMagickWand-6_Q16-1-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", reference:"ImageMagick-config-6-SUSE-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", reference:"ImageMagick-config-6-upstream-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", reference:"ImageMagick-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", reference:"ImageMagick-debugsource-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", reference:"libMagickCore-6_Q16-1-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", reference:"libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", reference:"libMagickWand-6_Q16-1-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", reference:"libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"5", reference:"ImageMagick-config-6-SUSE-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"5", reference:"ImageMagick-config-6-upstream-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"5", reference:"ImageMagick-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"5", reference:"ImageMagick-debugsource-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"5", reference:"libMagickCore-6_Q16-1-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"5", reference:"libMagickCore-6_Q16-1-debuginfo-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"5", reference:"libMagickWand-6_Q16-1-6.8.8.1-71.154.1")) flag++;
if (rpm_check(release:"SLES12", sp:"5", reference:"libMagickWand-6_Q16-1-debuginfo-6.8.8.1-71.154.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ImageMagick");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | imagemagick-config-6-suse | p-cpe:/a:novell:suse_linux:imagemagick-config-6-suse |
| novell | suse_linux | imagemagick-config-6-upstream | p-cpe:/a:novell:suse_linux:imagemagick-config-6-upstream |
| novell | suse_linux | imagemagick-debuginfo | p-cpe:/a:novell:suse_linux:imagemagick-debuginfo |
| novell | suse_linux | imagemagick-debugsource | p-cpe:/a:novell:suse_linux:imagemagick-debugsource |
| novell | suse_linux | libmagickcore-6_q16 | p-cpe:/a:novell:suse_linux:libmagickcore-6_q16 |
| novell | suse_linux | libmagickcore-6_q16-1-debuginfo | p-cpe:/a:novell:suse_linux:libmagickcore-6_q16-1-debuginfo |
| novell | suse_linux | libmagickwand-6_q16 | p-cpe:/a:novell:suse_linux:libmagickwand-6_q16 |
| novell | suse_linux | libmagickwand-6_q16-1-debuginfo | p-cpe:/a:novell:suse_linux:libmagickwand-6_q16-1-debuginfo |
| novell | suse_linux | 12 | cpe:/o:novell:suse_linux:12 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-19667
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25664
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25665
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25666
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25674
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25675
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25676
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27750
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27751
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27752
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27753
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27754
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27755
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27757
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27759
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27760
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27761
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27762
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27763
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27764
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27765
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27766
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27767
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27768
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27769
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27770
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27771
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27772
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27773
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27774
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27775
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-27776
www.nessus.org/u?eb12861e
bugzilla.suse.com/show_bug.cgi?id=1179103
bugzilla.suse.com/show_bug.cgi?id=1179202
bugzilla.suse.com/show_bug.cgi?id=1179208
bugzilla.suse.com/show_bug.cgi?id=1179212
bugzilla.suse.com/show_bug.cgi?id=1179223
bugzilla.suse.com/show_bug.cgi?id=1179240
bugzilla.suse.com/show_bug.cgi?id=1179244
bugzilla.suse.com/show_bug.cgi?id=1179260
bugzilla.suse.com/show_bug.cgi?id=1179268
bugzilla.suse.com/show_bug.cgi?id=1179269
bugzilla.suse.com/show_bug.cgi?id=1179278
bugzilla.suse.com/show_bug.cgi?id=1179281
bugzilla.suse.com/show_bug.cgi?id=1179285
bugzilla.suse.com/show_bug.cgi?id=1179311
bugzilla.suse.com/show_bug.cgi?id=1179312
bugzilla.suse.com/show_bug.cgi?id=1179313
bugzilla.suse.com/show_bug.cgi?id=1179315
bugzilla.suse.com/show_bug.cgi?id=1179317
bugzilla.suse.com/show_bug.cgi?id=1179321
bugzilla.suse.com/show_bug.cgi?id=1179322
bugzilla.suse.com/show_bug.cgi?id=1179327
bugzilla.suse.com/show_bug.cgi?id=1179333
bugzilla.suse.com/show_bug.cgi?id=1179336
bugzilla.suse.com/show_bug.cgi?id=1179338
bugzilla.suse.com/show_bug.cgi?id=1179339
bugzilla.suse.com/show_bug.cgi?id=1179343
bugzilla.suse.com/show_bug.cgi?id=1179345
bugzilla.suse.com/show_bug.cgi?id=1179346
bugzilla.suse.com/show_bug.cgi?id=1179347
bugzilla.suse.com/show_bug.cgi?id=1179361
bugzilla.suse.com/show_bug.cgi?id=1179362
bugzilla.suse.com/show_bug.cgi?id=1179397
www.suse.com/security/cve/CVE-2020-19667/
www.suse.com/security/cve/CVE-2020-25664/
www.suse.com/security/cve/CVE-2020-25665/
www.suse.com/security/cve/CVE-2020-25666/
www.suse.com/security/cve/CVE-2020-25674/
www.suse.com/security/cve/CVE-2020-25675/
www.suse.com/security/cve/CVE-2020-25676/
www.suse.com/security/cve/CVE-2020-27750/
www.suse.com/security/cve/CVE-2020-27751/
www.suse.com/security/cve/CVE-2020-27752/
www.suse.com/security/cve/CVE-2020-27753/
www.suse.com/security/cve/CVE-2020-27754/
www.suse.com/security/cve/CVE-2020-27755/
www.suse.com/security/cve/CVE-2020-27757/
www.suse.com/security/cve/CVE-2020-27759/
www.suse.com/security/cve/CVE-2020-27760/
www.suse.com/security/cve/CVE-2020-27761/
www.suse.com/security/cve/CVE-2020-27762/
www.suse.com/security/cve/CVE-2020-27763/
www.suse.com/security/cve/CVE-2020-27764/
www.suse.com/security/cve/CVE-2020-27765/
www.suse.com/security/cve/CVE-2020-27766/
www.suse.com/security/cve/CVE-2020-27767/
www.suse.com/security/cve/CVE-2020-27768/
www.suse.com/security/cve/CVE-2020-27769/
www.suse.com/security/cve/CVE-2020-27770/
www.suse.com/security/cve/CVE-2020-27771/
www.suse.com/security/cve/CVE-2020-27772/
www.suse.com/security/cve/CVE-2020-27773/
www.suse.com/security/cve/CVE-2020-27774/
www.suse.com/security/cve/CVE-2020-27775/
www.suse.com/security/cve/CVE-2020-27776/
Related
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
5.4 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
48.4%