Lucene search
Copyright (C) 2015 Eero VolotinenOPENVAS:1361412562310121297HistorySep 29, 2015 - 12:00 a.m.
Gentoo Security Advisory GLSA 201412-11
2015-09-2900:00:00
Copyright (C) 2015 Eero Volotinen
plugins.openvas.org
27
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.1
Confidence
High
EPSS
0.974
Percentile
99.9%
Gentoo Linux Local Security Checks GLSA 201412-11
# SPDX-FileCopyrightText: 2015 Eero Volotinen
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.121297");
script_version("2023-11-02T05:05:26+0000");
script_tag(name:"creation_date", value:"2015-09-29 11:28:08 +0300 (Tue, 29 Sep 2015)");
script_tag(name:"last_modification", value:"2023-11-02 05:05:26 +0000 (Thu, 02 Nov 2023)");
script_name("Gentoo Security Advisory GLSA 201412-11");
script_tag(name:"insight", value:"Multiple vulnerabilities have been discovered in AMD64 x86 emulation base libraries. Please review the CVE identifiers referenced below for details.");
script_tag(name:"solution", value:"Update the affected packages to the latest available version.");
script_tag(name:"solution_type", value:"VendorFix");
script_xref(name:"URL", value:"https://security.gentoo.org/glsa/201412-11");
script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
script_cve_id("CVE-2007-0720", "CVE-2007-1536", "CVE-2007-2026", "CVE-2007-2445", "CVE-2007-2741", "CVE-2007-3108", "CVE-2007-4995", "CVE-2007-5116", "CVE-2007-5135", "CVE-2007-5266", "CVE-2007-5268", "CVE-2007-5269", "CVE-2007-5849", "CVE-2010-1205", "CVE-2013-0338", "CVE-2013-0339", "CVE-2013-1664", "CVE-2013-1969", "CVE-2013-2877", "CVE-2014-0160");
script_tag(name:"cvss_base", value:"9.3");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2020-08-14 15:50:00 +0000 (Fri, 14 Aug 2020)");
script_tag(name:"qod_type", value:"package");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/gentoo", "ssh/login/pkg");
script_category(ACT_GATHER_INFO);
script_tag(name:"summary", value:"Gentoo Linux Local Security Checks GLSA 201412-11");
script_copyright("Copyright (C) 2015 Eero Volotinen");
script_family("Gentoo Local Security Checks");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-gentoo.inc");
res = "";
report = "";
if((res=ispkgvuln(pkg:"app-emulation/emul-linux-x86-baselibs", unaffected: make_list("ge 20140406-r1"), vulnerable: make_list("lt 20140406-r1"))) != NULL) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if (__pkg_match) {
exit(99);
}
Related
nessus
nessus
GLSA-201412-11 : AMD64 x86 emulation base libraries: Multiple vulnerabilities (Heartbleed)
2014-12-15 00:00:00
Mandrake Linux Security Advisory : libpng (MDKSA-2007:217)
2007-11-14 00:00:00
GLSA-200711-08 : libpng: Multiple Denials of Service
2007-11-08 00:00:00
gentoo
gentoo
AMD64 x86 emulation base libraries: Multiple vulnerabilities
2014-12-12 00:00:00
libpng: Multiple Denials of Service
2007-11-07 00:00:00
libxml2: Multiple vulnerabilities
2013-11-10 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200711-08 (libpng)
2008-09-24 00:00:00
Mandriva Update for libpng MDKSA-2007:217 (libpng)
2009-04-09 00:00:00
Gentoo Security Advisory GLSA 200711-08 (libpng)
2008-09-24 00:00:00
centos
centos
openssl security update
2007-10-18 00:46:44
openssl security update
2007-10-22 12:29:21
openssl security update
2007-11-15 15:53:13
oraclelinux
oraclelinux
Important: openssl security update
2007-10-12 00:00:00
Moderate: openssl security update
2007-10-22 00:00:00
openssl security and bug fix update
2007-11-27 00:00:00
redhat
redhat
(RHSA-2007:0964) Important: openssl security update
2007-10-12 00:00:00
(RHSA-2007:0813) Moderate: openssl security update
2007-10-22 00:00:00
(RHSA-2007:1003) Moderate: openssl security and bug fix update
2007-11-15 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: openssl-0.9.8b-15.fc7
2007-10-18 02:26:18
[SECURITY] Fedora Core 6 Update: openssl-0.9.8b-15.fc6
2007-10-15 20:05:56
[SECURITY] Fedora 7 Update: libpng10-1.0.29-1.fc7
2007-10-24 07:17:45
securityvulns
securityvulns
libpng multiple security vulnerabilities
2007-10-20 00:00:00
[SECURITY] [DSA 2652-1] libxml2 security update
2013-04-08 00:00:00
slackware
slackware
[slackware-security] libpng for Slackware 10.1 and 10.2
2007-11-21 21:16:25
[slackware-security] libpng
2007-11-21 08:14:31
[slackware-security] file [and bin package]
2007-04-03 23:22:39
freebsd
freebsd
png -- multiple vulnerabilities
2007-10-08 00:00:00
libxml2 -- cpu consumption Dos
2013-02-21 00:00:00
ubuntu
ubuntu
libpng vulnerabilities
2007-10-25 00:00:00
libxml2 vulnerabilities
2013-07-15 00:00:00
libxml2 regression
2013-07-17 00:00:00
debian
debian
[SECURITY] [DSA 2652-1] libxml2 security update
2013-03-26 05:40:13
coresecurity
coresecurity
Multiple Vulnerabilities in Google's Android
2008-03-04 00:00:00
packetstorm
packetstorm
Core Security Technologies Advisory 2008.0124
2008-03-04 00:00:00
osv
osv
openssl - predictable random number generator
2008-05-13 00:00:00
vmware
vmware
Updated service console patches.
2008-01-07 00:00:00
Updated service console patches.
2008-01-07 00:00:00
prion
prion
Design/Logic Flaw
2015-01-21 18:59:00
Code injection
2007-10-13 01:17:00
Buffer overflow
2013-04-25 23:55:00
cvelist
cvelist
cve
cve
nvd
nvd
suse
suse
Security update for libxml2 (important)
2013-11-04 17:04:12
Security update for libxml2 (important)
2013-11-04 18:04:12
debiancve
debiancve
CVE-2007-4995
2007-10-13 01:17:00
CVE-2007-2026
2007-04-13 18:19:00
ubuntucve
ubuntucve
cert
cert
file integer overflow vulnerability
2007-03-26 00:00:00
seebug
seebug
OpenSSL DTLS远程堆溢出漏洞
2007-10-15 00:00:00
f5
f5
SOL8837 - OpenSSL DTLS off-by-one error - CVE-2007-4995
2008-06-17 00:00:00
K8837 : OpenSSL DTLS off-by-one error - CVE-2007-4995
2013-03-18 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2007-4995
2007-10-12 00:00:00
redhatcve
redhatcve
CVE-2007-2026
2015-10-30 10:13:18
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.1
Confidence
High
EPSS
0.974
Percentile
99.9%
Related for OPENVAS:1361412562310121297