Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2023-2024 Canonical, Inc. / NASL script (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-6165-2.NASL
HistoryOct 19, 2023 - 12:00 a.m.

Ubuntu 16.04 ESM / 18.04 ESM : GLib vulnerabilities (USN-6165-2)

2023-10-1900:00:00
Ubuntu Security Notice (C) 2023-2024 Canonical, Inc. / NASL script (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
ubuntu
esm
glib
vulnerabilities
gvariant deserialization
denial of service
cve-2023-29499
cve-2023-32611
cve-2023-32636
cve-2023-32643
cve-2023-32665
nessus
scanner

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

Low

EPSS

0.002

Percentile

52.1%

JSON

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6165-2 advisory.

USN-6165-1 fixed vulnerabilities in GLib. This update provides the corresponding updates for Ubuntu 14.04     LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.

Original advisory details:

It was discovered that GLib incorrectly handled non-normal GVariants. An

attacker could use this issue to cause GLib to crash, resulting in a

denial of service, or perform other unknown attacks.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-6165-2. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(183410);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/08/27");

  script_cve_id(
    "CVE-2023-29499",
    "CVE-2023-32611",
    "CVE-2023-32636",
    "CVE-2023-32643",
    "CVE-2023-32665"
  );
  script_xref(name:"USN", value:"6165-2");

  script_name(english:"Ubuntu 16.04 ESM / 18.04 ESM : GLib vulnerabilities (USN-6165-2)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as
referenced in the USN-6165-2 advisory.

    USN-6165-1 fixed vulnerabilities in GLib. This update provides the corresponding updates for Ubuntu 14.04
    LTS, Ubuntu 16.04 LTS and Ubuntu 18.04 LTS.

    Original advisory details:

    It was discovered that GLib incorrectly handled non-normal GVariants. An

    attacker could use this issue to cause GLib to crash, resulting in a

    denial of service, or perform other unknown attacks.

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-6165-2");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-32643");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/06/07");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/10/19");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/10/19");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:esm");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:18.04:-:esm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libglib2.0-0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libglib2.0-0-refdbg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libglib2.0-bin");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libglib2.0-data");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libglib2.0-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libglib2.0-dev-bin");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libglib2.0-tests");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2023-2024 Canonical, Inc. / NASL script (C) 2023-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl", "ubuntu_pro_sub_detect.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('16.04' >< os_release || '18.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 16.04 / 18.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
var ubuntu_pro_detected = get_kb_item('Host/Ubuntu/Pro/Services/esm-apps');
ubuntu_pro_detected = !empty_or_null(ubuntu_pro_detected);

var pro_caveat_needed = FALSE;

var pkgs = [
    {'osver': '16.04', 'pkgname': 'libglib2.0-0', 'pkgver': '2.48.2-0ubuntu4.8+esm3', 'ubuntu_pro': TRUE},
    {'osver': '16.04', 'pkgname': 'libglib2.0-0-refdbg', 'pkgver': '2.48.2-0ubuntu4.8+esm3', 'ubuntu_pro': TRUE},
    {'osver': '16.04', 'pkgname': 'libglib2.0-bin', 'pkgver': '2.48.2-0ubuntu4.8+esm3', 'ubuntu_pro': TRUE},
    {'osver': '16.04', 'pkgname': 'libglib2.0-data', 'pkgver': '2.48.2-0ubuntu4.8+esm3', 'ubuntu_pro': TRUE},
    {'osver': '16.04', 'pkgname': 'libglib2.0-dev', 'pkgver': '2.48.2-0ubuntu4.8+esm3', 'ubuntu_pro': TRUE},
    {'osver': '16.04', 'pkgname': 'libglib2.0-tests', 'pkgver': '2.48.2-0ubuntu4.8+esm3', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'libglib2.0-0', 'pkgver': '2.56.4-0ubuntu0.18.04.9+esm3', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'libglib2.0-bin', 'pkgver': '2.56.4-0ubuntu0.18.04.9+esm3', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'libglib2.0-data', 'pkgver': '2.56.4-0ubuntu0.18.04.9+esm3', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'libglib2.0-dev', 'pkgver': '2.56.4-0ubuntu0.18.04.9+esm3', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'libglib2.0-dev-bin', 'pkgver': '2.56.4-0ubuntu0.18.04.9+esm3', 'ubuntu_pro': TRUE},
    {'osver': '18.04', 'pkgname': 'libglib2.0-tests', 'pkgver': '2.56.4-0ubuntu0.18.04.9+esm3', 'ubuntu_pro': TRUE}
];

var flag = 0;
foreach var package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  var pro_required = NULL;
  if (!empty_or_null(package_array['ubuntu_pro'])) pro_required = package_array['ubuntu_pro'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) {
        flag++;
        if (!ubuntu_pro_detected && !pro_caveat_needed) pro_caveat_needed = pro_required;
    }
  }
}

if (flag)
{
  var extra = '';
  if (pro_caveat_needed) {
    extra += 'NOTE: This vulnerability check contains fixes that apply to packages only \n';
    extra += 'available in Ubuntu ESM repositories. Access to these package security updates \n';
    extra += 'require an Ubuntu Pro subscription.\n\n';
  }
  extra += ubuntu_report_get();
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : extra
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libglib2.0-0 / libglib2.0-0-refdbg / libglib2.0-bin / etc');
}

Related

nessus 20
fedora 2
openvas 10
osv 10
ubuntu 2
almalinux 2
oraclelinux 2
photon 2
redhat 15
ubuntucve 6
gentoo 1
cloudfoundry 1
redos 1
debian 1
redhatcve 5
nvd 5
cvelist 5
debiancve 5
prion 5
vulnrichment 2
cve 5
ibm 4
alpinelinux 5
hp 2
oracle 1
ics 1
nessus
nessus
Fedora 38 : mingw-glib2 (2023-9e5a29a25d)
2023-06-16 00:00:00
Fedora 37 : mingw-glib2 (2023-1a7e2b3dda)
2023-06-16 00:00:00
Photon OS 4.0: Glib PHSA-2023-4.0-0500
2024-07-24 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: mingw-glib2-2.74.7-1.fc37
2023-06-16 02:15:09
[SECURITY] Fedora 38 Update: mingw-glib2-2.74.7-1.fc38
2023-06-16 02:22:05
openvas
openvas
Fedora: Security Advisory for mingw-glib2 (FEDORA-2023-9e5a29a25d)
2023-06-17 00:00:00
Fedora: Security Advisory for mingw-glib2 (FEDORA-2023-1a7e2b3dda)
2023-06-17 00:00:00
Ubuntu: Security Advisory (USN-6165-2)
2023-10-20 00:00:00
osv
osv
glib2.0 vulnerabilities
2023-10-19 11:46:21
Low: mingw-glib2 security update
2024-04-30 00:00:00
glib2.0 vulnerabilities
2023-06-14 13:26:19
ubuntu
ubuntu
GLib vulnerabilities
2023-10-19 00:00:00
GLib vulnerabilities
2023-06-14 00:00:00
almalinux
almalinux
Low: mingw-glib2 security update
2024-04-30 00:00:00
Low: glib2 security and bug fix update
2023-11-07 00:00:00
oraclelinux
oraclelinux
mingw-glib2 security update
2024-05-03 00:00:00
glib2 security and bug fix update
2023-11-11 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-4.0-0500
2023-10-28 00:00:00
Important Photon OS Security Update - PHSA-2023-3.0-0692
2023-11-26 00:00:00
redhat
redhat
(RHSA-2024:2528) Low: mingw-glib2 security update
2024-04-30 06:15:57
(RHSA-2023:6631) Low: glib2 security and bug fix update
2023-11-07 06:10:40
(RHSA-2023:6279) Important: cert-manager Operator for Red Hat OpenShift 1.11.5
2023-11-15 00:50:45
ubuntucve
ubuntucve
CVE-2023-32643
2023-06-07 00:00:00
CVE-2023-32636
2023-06-07 00:00:00
CVE-2023-24593
2023-03-29 00:00:00
gentoo
gentoo
GLib: Multiple Vulnerabilities
2023-11-27 00:00:00
cloudfoundry
cloudfoundry
USN-6165-1: GLib vulnerabilities | Cloud Foundry
2023-06-29 00:00:00
redos
redos
ROS-20240506-02
2024-05-06 00:00:00
debian
debian
[SECURITY] [DLA 3583-1] glib2.0 security update
2023-09-25 17:58:14
redhatcve
redhatcve
CVE-2023-32636
2023-06-05 12:35:43
CVE-2023-32643
2023-06-05 12:35:46
CVE-2023-32665
2023-06-05 12:35:54
nvd
nvd
CVE-2023-32636
2023-09-14 20:15:09
CVE-2023-32643
2023-09-14 20:15:09
CVE-2023-32665
2023-09-14 20:15:09
cvelist
cvelist
CVE-2023-32643
2023-09-14 19:14:56
CVE-2023-32636
2023-09-14 19:19:21
CVE-2023-32611 G_variant_byteswap() can take a long time with some non-normal inputs
2023-09-14 19:07:19
debiancve
debiancve
CVE-2023-32643
2023-09-14 20:15:09
CVE-2023-32636
2023-09-14 20:15:09
CVE-2023-32611
2023-09-14 20:15:09
prion
prion
Heap overflow
2023-09-14 20:15:00
Deserialization of untrusted data
2023-09-14 20:15:00
Deserialization of untrusted data
2023-09-14 20:15:00
vulnrichment
vulnrichment
CVE-2023-32643
2023-09-14 19:14:56
CVE-2023-32665 Gvariant deserialisation does not match spec for non-normal data
2023-09-14 19:03:58
cve
cve
CVE-2023-32643
2023-09-14 20:15:09
CVE-2023-32636
2023-09-14 20:15:09
CVE-2023-32665
2023-09-14 20:15:09
ibm
ibm
Security Bulletin: Multiple CVEs may affect Operating System packages shipped with IBM CICS TX Advanced 10.1
2023-09-04 11:15:53
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Base OS issues
2024-06-20 20:32:32
Security Bulletin: Netcool Operations Insights 1.6.12 addresses multiple security vulnerabilities.
2024-04-02 11:06:22
alpinelinux
alpinelinux
CVE-2023-32636
2023-09-14 20:15:09
CVE-2023-32643
2023-09-14 20:15:09
CVE-2023-32611
2023-09-14 20:15:09
hp
hp
HP ThinPro 8.0 SP 7 Security Updates
2024-01-26 00:00:00
HP ThinPro 8.0 SP 8 Security Updates
2024-03-01 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00

CVSS3

7.8

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

AI Score

7.4

Confidence

Low

EPSS

0.002

Percentile

52.1%

JSON
Related for UBUNTU_USN-6165-2.NASL
nessus20fedora2openvas10osv10ubuntu2almalinux2oraclelinux2photon2redhat15ubuntucve6gentoo1cloudfoundry1redos1debian1redhatcve5nvd5cvelist5debiancve5prion5vulnrichment2cve5ibm4alpinelinux5hp2oracle1ics1