Lucene search
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2021-3652-1.NASLHistoryNov 11, 2021 - 12:00 a.m.
SUSE SLED12 / SLES12 Security Update : pcre (SUSE-SU-2021:3652-1)
2021-11-1100:00:00
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
26
suse sled12
sles12
sles_sap12
pcre vulnerabilities
denial of service
out-of-bounds read
application crash
segmentation violation
buffer overflow
remote attackers
crafted regular expression
invalid memory read
integer overflow
vulnerability advisory
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.048
Percentile
92.7%
The remote SUSE Linux SLED12 / SLES12 / SLES_SAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2021:3652-1 advisory.
-
The compile_bracket_matchingpath function in pcre_jit_compile.c in PCRE through 8.x before revision 1680 (e.g., the PHP 7.1.1 bundled version) allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via a crafted regular expression. (CVE-2017-6004)
-
libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service (segmentation violation for read access, and application crash) by triggering an invalid Unicode property lookup. (CVE-2017-7186)
-
The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (invalid memory read) via a crafted file. (CVE-2017-7244)
-
Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 4) or possibly have unspecified other impact via a crafted file. (CVE-2017-7245)
-
Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified other impact via a crafted file. (CVE-2017-7246)
-
libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R has more than one fixed quantifier, a related issue to CVE-2019-20454. (CVE-2019-20838)
-
libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.
(CVE-2020-14155)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# SUSE update advisory SUSE-SU-2021:3652-1. The text itself
# is copyright (C) SUSE.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(155134);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/07/13");
script_cve_id(
"CVE-2017-6004",
"CVE-2017-7186",
"CVE-2017-7244",
"CVE-2017-7245",
"CVE-2017-7246",
"CVE-2019-20838",
"CVE-2020-14155"
);
script_xref(name:"IAVA", value:"2021-A-0058");
script_xref(name:"SuSE", value:"SUSE-SU-2021:3652-1");
script_name(english:"SUSE SLED12 / SLES12 Security Update : pcre (SUSE-SU-2021:3652-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote SUSE Linux SLED12 / SLES12 / SLES_SAP12 host has packages installed that are affected by multiple
vulnerabilities as referenced in the SUSE-SU-2021:3652-1 advisory.
- The compile_bracket_matchingpath function in pcre_jit_compile.c in PCRE through 8.x before revision 1680
(e.g., the PHP 7.1.1 bundled version) allows remote attackers to cause a denial of service (out-of-bounds
read and application crash) via a crafted regular expression. (CVE-2017-6004)
- libpcre1 in PCRE 8.40 and libpcre2 in PCRE2 10.23 allow remote attackers to cause a denial of service
(segmentation violation for read access, and application crash) by triggering an invalid Unicode property
lookup. (CVE-2017-7186)
- The _pcre32_xclass function in pcre_xclass.c in libpcre1 in PCRE 8.40 allows remote attackers to cause a
denial of service (invalid memory read) via a crafted file. (CVE-2017-7244)
- Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40
allows remote attackers to cause a denial of service (WRITE of size 4) or possibly have unspecified other
impact via a crafted file. (CVE-2017-7245)
- Stack-based buffer overflow in the pcre32_copy_substring function in pcre_get.c in libpcre1 in PCRE 8.40
allows remote attackers to cause a denial of service (WRITE of size 268) or possibly have unspecified
other impact via a crafted file. (CVE-2017-7246)
- libpcre in PCRE before 8.43 allows a subject buffer over-read in JIT when UTF is disabled, and \X or \R
has more than one fixed quantifier, a related issue to CVE-2019-20454. (CVE-2019-20838)
- libpcre in PCRE before 8.44 allows an integer overflow via a large number after a (?C substring.
(CVE-2020-14155)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1025709");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1030066");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1030803");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1030805");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1030807");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1172973");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1172974");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-6004");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7186");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7244");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7245");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7246");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2019-20838");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-14155");
# https://lists.suse.com/pipermail/sle-security-updates/2021-November/009715.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?218424e5");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-7246");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2017/02/16");
script_set_attribute(attribute:"patch_publication_date", value:"2021/11/10");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/11/11");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpcre1");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpcre1-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpcre16-0");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpcrecpp0");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpcrecpp0-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libpcreposix0");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:pcre-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:pcre-devel-static");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:pcre-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:selinux-policy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:selinux-policy-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:selinux-policy-minimum");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item("Host/SuSE/release");
if (isnull(os_release) || os_release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
var os_ver = pregmatch(pattern: "^(SLE(S|D)(?:_SAP)?\d+)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED12|SLES12|SLES_SAP12)$", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLED12 / SLES12 / SLES_SAP12', 'SUSE (' + os_ver + ')');
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE (' + os_ver + ')', cpu);
var service_pack = get_kb_item("Host/SuSE/patchlevel");
if (isnull(service_pack)) service_pack = "0";
if (os_ver == "SLED12" && (! preg(pattern:"^(5)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLED12 SP5", os_ver + " SP" + service_pack);
if (os_ver == "SLES12" && (! preg(pattern:"^(2|3|4|5)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES12 SP2/3/4/5", os_ver + " SP" + service_pack);
if (os_ver == "SLES_SAP12" && (! preg(pattern:"^(3|4|5)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES_SAP12 SP3/4/5", os_ver + " SP" + service_pack);
var pkgs = [
{'reference':'libpcre1-32bit-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'libpcre1-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'libpcre16-0-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'pcre-devel-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'selinux-policy-20140730-36.5.2', 'sp':'3', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'selinux-policy-devel-20140730-36.5.2', 'sp':'3', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'selinux-policy-minimum-20140730-36.5.2', 'sp':'3', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.3']},
{'reference':'libpcre1-32bit-8.45-8.7.1', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'libpcre1-8.45-8.7.1', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'libpcre16-0-8.45-8.7.1', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'pcre-devel-8.45-8.7.1', 'sp':'4', 'cpu':'x86_64', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'selinux-policy-20140730-36.5.2', 'sp':'4', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'selinux-policy-devel-20140730-36.5.2', 'sp':'4', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'selinux-policy-minimum-20140730-36.5.2', 'sp':'4', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.4']},
{'reference':'libpcre1-32bit-8.45-8.7.1', 'sp':'5', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.5']},
{'reference':'libpcre1-8.45-8.7.1', 'sp':'5', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.5']},
{'reference':'libpcre16-0-8.45-8.7.1', 'sp':'5', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.5']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'5', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.5']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'5', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.5']},
{'reference':'pcre-devel-8.45-8.7.1', 'sp':'5', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.5']},
{'reference':'selinux-policy-20140730-36.5.2', 'sp':'5', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.5']},
{'reference':'selinux-policy-devel-20140730-36.5.2', 'sp':'5', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.5']},
{'reference':'selinux-policy-minimum-20140730-36.5.2', 'sp':'5', 'release':'SLES_SAP12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['SLES_SAP-release-12.5']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-ha-release-12.3', 'sle-ha-release-12.4', 'sle-ha-release-12.5']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-ha-release-12.3', 'sle-ha-release-12.4', 'sle-ha-release-12.5']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-ha-release-12.3', 'sle-ha-release-12.4', 'sle-ha-release-12.5', 'sle-sdk-release-12.5', 'sles-release-12.5']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5', 'sles-release-12.5']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5']},
{'reference':'pcre-devel-8.45-8.7.1', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5']},
{'reference':'pcre-devel-8.45-8.7.1', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5', 'sles-release-12.5']},
{'reference':'pcre-devel-static-8.45-8.7.1', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5']},
{'reference':'pcre-devel-static-8.45-8.7.1', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5']},
{'reference':'pcre-tools-8.45-8.7.1', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5']},
{'reference':'pcre-tools-8.45-8.7.1', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5']},
{'reference':'selinux-policy-devel-20140730-36.5.2', 'sp':'5', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5']},
{'reference':'selinux-policy-devel-20140730-36.5.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-sdk-release-12.5', 'sles-release-12.5']},
{'reference':'libpcrecpp0-32bit-8.45-8.7.1', 'sp':'5', 'cpu':'x86_64', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-we-release-12.5']},
{'reference':'libpcrecpp0-32bit-8.45-8.7.1', 'sp':'5', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-we-release-12.5']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'5', 'cpu':'x86_64', 'release':'SLED12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-we-release-12.5']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'5', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-we-release-12.5']},
{'reference':'libpcre1-32bit-8.45-8.7.1', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.2']},
{'reference':'libpcre1-8.45-8.7.1', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.2']},
{'reference':'libpcre16-0-8.45-8.7.1', 'sp':'2', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.2']},
{'reference':'selinux-policy-20140730-36.5.2', 'sp':'2', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.2']},
{'reference':'selinux-policy-devel-20140730-36.5.2', 'sp':'2', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.2']},
{'reference':'selinux-policy-minimum-20140730-36.5.2', 'sp':'2', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.2']},
{'reference':'libpcre1-32bit-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcre1-32bit-8.45-8.7.1', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcre1-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcre1-8.45-8.7.1', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcre16-0-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcre16-0-8.45-8.7.1', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'pcre-devel-8.45-8.7.1', 'sp':'3', 'cpu':'x86_64', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'pcre-devel-8.45-8.7.1', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'selinux-policy-20140730-36.5.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'selinux-policy-20140730-36.5.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'selinux-policy-devel-20140730-36.5.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'selinux-policy-devel-20140730-36.5.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'selinux-policy-minimum-20140730-36.5.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'selinux-policy-minimum-20140730-36.5.2', 'sp':'3', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.3']},
{'reference':'libpcre1-32bit-8.45-8.7.1', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'libpcre1-8.45-8.7.1', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'libpcre16-0-8.45-8.7.1', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'libpcrecpp0-8.45-8.7.1', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'libpcreposix0-8.45-8.7.1', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'pcre-devel-8.45-8.7.1', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'selinux-policy-20140730-36.5.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'selinux-policy-devel-20140730-36.5.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'selinux-policy-minimum-20140730-36.5.2', 'sp':'4', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.4']},
{'reference':'libpcre1-32bit-8.45-8.7.1', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.5']},
{'reference':'libpcre1-8.45-8.7.1', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.5']},
{'reference':'libpcre16-0-8.45-8.7.1', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.5']},
{'reference':'selinux-policy-20140730-36.5.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.5']},
{'reference':'selinux-policy-minimum-20140730-36.5.2', 'sp':'5', 'release':'SLES12', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-12.5']}
];
var ltss_caveat_required = FALSE;
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var exists_check = NULL;
var rpm_spec_vers_cmp = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (reference && _release) {
if (exists_check) {
var check_flag = 0;
foreach var check (exists_check) {
if (!rpm_exists(release:_release, rpm:check)) continue;
if ('ltss' >< tolower(check)) ltss_caveat_required = TRUE;
check_flag++;
}
if (!check_flag) continue;
}
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;
}
}
if (flag)
{
var ltss_plugin_caveat = NULL;
if(ltss_caveat_required) ltss_plugin_caveat = '\n' +
'NOTE: This vulnerability check contains fixes that apply to\n' +
'packages only available in SUSE Enterprise Linux Server LTSS\n' +
'repositories. Access to these package security updates require\n' +
'a paid SUSE LTSS subscription.\n';
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get() + ltss_plugin_caveat
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libpcre1 / libpcre1-32bit / libpcre16-0 / libpcrecpp0 / etc');
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-6004
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7186
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7244
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7245
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7246
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-20838
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-14155
www.nessus.org/u?218424e5
bugzilla.suse.com/1025709
bugzilla.suse.com/1030066
bugzilla.suse.com/1030803
bugzilla.suse.com/1030805
bugzilla.suse.com/1030807
bugzilla.suse.com/1172973
bugzilla.suse.com/1172974
www.suse.com/security/cve/CVE-2017-6004
www.suse.com/security/cve/CVE-2017-7186
www.suse.com/security/cve/CVE-2017-7244
www.suse.com/security/cve/CVE-2017-7245
www.suse.com/security/cve/CVE-2017-7246
www.suse.com/security/cve/CVE-2019-20838
www.suse.com/security/cve/CVE-2020-14155
Related
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:3652-1)
2021-11-11 00:00:00
Mageia: Security Advisory (MGASA-2017-0454)
2022-01-28 00:00:00
Fedora Update for mingw-glib2 FEDORA-2018-3238d4da59
2018-08-13 00:00:00
mageia
mageia
Updated pcre packages fix security vulnerabilities
2017-12-21 20:43:29
Updated pcre2 packages fix security vulnerability
2020-08-01 02:25:42
gentoo
gentoo
PCRE: Multiple vulnerabilities
2017-10-23 00:00:00
PCRE library: Denial of service
2017-06-06 00:00:00
PCRE2: Denial of service
2020-06-15 00:00:00
archlinux
archlinux
[ASA-201707-20] pcre: multiple issues
2017-07-18 00:00:00
[ASA-201710-18] pcre2: denial of service
2017-10-12 00:00:00
nessus
nessus
RHEL 7 : pcre (Unpatched Vulnerability)
2024-05-11 00:00:00
GLSA-201710-25 : PCRE: Multiple vulnerabilities
2017-10-23 00:00:00
RHEL 6 : pcre (Unpatched Vulnerability)
2024-05-11 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: mingw-glib2-2.56.1-1.fc28
2018-08-11 19:13:27
[SECURITY] Fedora 28 Update: mingw-glibmm24-2.56.0-1.fc28
2018-08-11 19:13:27
[SECURITY] Fedora 31 Update: mingw-pcre2-10.33-3.fc31
2020-07-09 01:07:27
ubuntucve
ubuntucve
redhat
redhat
(RHSA-2021:4373) Low: pcre security update
2021-11-09 09:12:45
(RHSA-2020:4539) Moderate: pcre2 security and enhancement update
2020-11-03 12:13:54
osv
osv
Low: pcre security update
2021-11-09 09:12:45
pcre3 vulnerabilities
2022-10-10 19:26:42
Low: pcre security update
2021-11-09 09:12:45
redhatcve
redhatcve
nvd
nvd
cvelist
cvelist
prion
prion
Design/Logic Flaw
2020-06-15 17:15:00
Stack overflow
2017-03-23 21:59:00
Design/Logic Flaw
2017-03-23 21:59:00
debiancve
debiancve
rocky
rocky
pcre security update
2021-11-09 09:12:45
pcre2 security and enhancement update
2020-11-03 12:13:54
oraclelinux
oraclelinux
pcre security update
2021-11-16 00:00:00
pcre2 security and enhancement update
2020-11-10 00:00:00
suse
suse
Security update for pcre (moderate)
2021-10-27 00:00:00
Security update for pcre (moderate)
2021-11-02 00:00:00
Security update for pcre2 (important)
2022-08-03 00:00:00
ubuntu
ubuntu
PCRE vulnerabilities
2022-05-17 00:00:00
PCRE vulnerabilities
2022-10-10 00:00:00
cve
cve
almalinux
almalinux
Low: pcre security update
2021-11-09 09:12:45
Moderate: pcre2 security and enhancement update
2020-11-03 12:13:54
cloudfoundry
cloudfoundry
USN-5425-1: PCRE vulnerabilities | Cloud Foundry
2022-07-29 00:00:00
alpinelinux
alpinelinux
cbl_mariner
cbl_mariner
CVE-2019-20838 affecting package pcre 8.42-4
2020-11-30 19:30:42
CVE-2020-14155 affecting package pcre 8.42-4
2020-11-30 19:30:42
ibm
ibm
veracode
veracode
Denial Of Service (DoS)
2020-11-05 03:19:20
Denial Of Service (DoS)
2021-11-12 00:40:34
Integer Overflow
2020-12-10 16:18:29
f5
f5
K02219239 : PCRE vulnerability CVE-2020-14155
2020-08-04 00:00:00
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0.048
Percentile
92.7%
Related for SUSE_SU-2021-3652-1.NASL