Lucene search
Copyright (C) 2022 Greenbone AGOPENVAS:1361412562310893203HistoryNov 24, 2022 - 12:00 a.m.
Debian: Security Advisory (DLA-3203-1)
2022-11-2400:00:00
Copyright (C) 2022 Greenbone AG
plugins.openvas.org
3
debian
nginx
security advisory
alpaca
vulnerability
update
remote
denial of service
memory disclosure
arbitrary code
parsing errors
mp4 module
nginx
tls servers
cross-protocol attacks
cve-2021-3618
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.9%
The remote host is missing an update for the Debian
# SPDX-FileCopyrightText: 2022 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.893203");
script_cve_id("CVE-2021-3618", "CVE-2022-41741", "CVE-2022-41742");
script_tag(name:"creation_date", value:"2022-11-24 02:00:16 +0000 (Thu, 24 Nov 2022)");
script_version("2024-02-02T05:06:08+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:08 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"5.8");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:N");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2022-10-24 17:11:26 +0000 (Mon, 24 Oct 2022)");
script_name("Debian: Security Advisory (DLA-3203-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2022 Greenbone AG");
script_family("Debian Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages", re:"ssh/login/release=DEB10");
script_xref(name:"Advisory-ID", value:"DLA-3203-1");
script_xref(name:"URL", value:"https://www.debian.org/lts/security/2022/DLA-3203-1");
script_xref(name:"URL", value:"https://security-tracker.debian.org/tracker/nginx");
script_xref(name:"URL", value:"https://wiki.debian.org/LTS");
script_tag(name:"summary", value:"The remote host is missing an update for the Debian 'nginx' package(s) announced via the DLA-3203-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"It was discovered that parsing errors in the mp4 module of Nginx, a high-performance web and reverse proxy server, could result in denial of service, memory disclosure or potentially the execution of arbitrary code when processing a malformed mp4 file.
This module is only enabled in the nginx-extras binary package.
In addition the following vulnerability has been fixed.
CVE-2021-3618
ALPACA is an application layer protocol content confusion attack, exploiting TLS servers implementing different protocols but using compatible certificates, such as multi-domain or wildcard certificates. A MiTM attacker having access to victim's traffic at the TCP/IP layer can redirect traffic from one subdomain to another, resulting in a valid TLS session. This breaks the authentication of TLS and cross-protocol attacks may be possible where the behavior of one protocol service may compromise
For Debian 10 buster, these problems have been fixed in version 1.14.2-2+deb10u5.
We recommend that you upgrade your nginx packages.
For the detailed security status of nginx please refer to its security tracker page at: [link moved to references]
Further information about Debian LTS security advisories, how to apply these updates to your system and frequently asked questions can be found at: [link moved to references]");
script_tag(name:"affected", value:"'nginx' package(s) on Debian 10.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-deb.inc");
release = dpkg_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "DEB10") {
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-auth-pam", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-cache-purge", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-dav-ext", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-echo", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-fancyindex", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-geoip", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-headers-more-filter", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-image-filter", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-lua", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-ndk", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-perl", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-subs-filter", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-uploadprogress", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-upstream-fair", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-http-xslt-filter", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-mail", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-nchan", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-rtmp", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libnginx-mod-stream", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"nginx", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"nginx-common", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"nginx-doc", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"nginx-extras", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"nginx-full", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"nginx-light", ver:"1.14.2-2+deb10u5", rls:"DEB10"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
nessus
nessus
Amazon Linux 2023 : nginx, nginx-all-modules, nginx-core (ALAS2023-2023-099)
2023-03-21 00:00:00
Debian DLA-3203-1 : nginx - LTS security update
2022-11-24 00:00:00
Amazon Linux AMI : nginx (ALAS-2023-1665)
2023-01-24 00:00:00
osv
osv
nginx - security update
2022-11-23 00:00:00
nginx vulnerabilities
2022-11-15 05:25:25
nginx - security update
2022-11-15 00:00:00
debian
debian
[SECURITY] [DLA 3203-1] nginx security update
2022-11-22 23:40:00
[SECURITY] [DSA 5281-1] nginx security update
2022-11-15 20:26:03
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2023:0293-1)
2023-02-08 00:00:00
openSUSE: Security Advisory for nginx (SUSE-SU-2023:0212-1)
2024-03-04 00:00:00
Ubuntu: Security Advisory (USN-5722-1)
2022-11-16 00:00:00
fedora
fedora
[SECURITY] Fedora 36 Update: nginx-1.22.1-1.fc36
2022-10-28 11:16:33
[SECURITY] Fedora 37 Update: nginx-1.22.1-1.fc37
2022-11-10 22:49:39
[SECURITY] Fedora 35 Update: nginx-1.22.1-1.fc35
2022-10-28 11:46:04
altlinux
altlinux
Security fix for the ALT Linux 9 package nginx version 1.22.1-alt1
2022-10-31 00:00:00
Security fix for the ALT Linux 10 package nginx version 1.22.0-alt1
2022-07-14 00:00:00
Security fix for the ALT Linux 9 package nginx version 1.22.0-alt1
2022-07-15 00:00:00
amazon
amazon
Medium: nginx
2023-01-18 20:56:00
Medium: vsftpd
2024-01-19 01:51:00
freebsd
freebsd
nginx -- Two vulnerabilities
2022-10-19 00:00:00
mageia
mageia
Updated nginx packages fix security vulnerability
2022-10-28 09:54:08
Updated nginx/vsftpd packages fix security vulnerability
2021-12-08 23:04:18
cloudlinux
cloudlinux
nginx: Fix of 2 CVEs
2022-11-21 21:36:53
Fix of CVE: CVE-2021-3618
2022-04-11 16:46:59
ubuntu
ubuntu
nginx vulnerabilities
2022-11-15 00:00:00
vsftpd vulnerability
2023-09-18 00:00:00
nginx vulnerabilities
2022-04-12 00:00:00
ibm
ibm
photon
photon
Important Photon OS Security Update - PHSA-2022-3.0-0481
2022-11-01 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0078
2023-08-24 00:00:00
Important Photon OS Security Update - PHSA-2022-4.0-0272
2022-11-02 00:00:00
redhatcve
redhatcve
cbl_mariner
cbl_mariner
CVE-2022-41741 affecting package nginx 1.20.1-3
2022-11-03 00:44:53
CVE-2022-41741 affecting package nginx for versions less than 1.22.1-1
2022-11-03 20:37:46
CVE-2022-41742 affecting package nginx 1.20.1-3
2022-11-03 00:44:53
nvd
nvd
cvelist
cvelist
CVE-2022-41742 NGINX ngx_http_mp4_module vulnerability CVE-2022-41742
2022-10-19 00:00:00
CVE-2022-41741 NGINX ngx_http_mp4_module vulnerability CVE-2022-41741
2022-10-19 00:00:00
CVE-2021-3618
2022-03-23 00:00:00
nginx
nginx
Memory corruption in the ngx_http_mp4_module
2022-10-19 22:15:12
Memory disclosure in the ngx_http_mp4_module
2022-10-19 22:15:12
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2022-10-19 22:15:00
Design/Logic Flaw
2022-10-19 22:15:00
Design/Logic Flaw
2022-03-23 20:15:00
veracode
veracode
Denial Of Service (DoS)
2022-10-20 10:38:18
Denial Of Service (DoS)
2022-10-20 10:38:13
Access Restriction Bypass
2022-04-16 19:23:44
f5
f5
K28112382 : NGINX ngx_http_mp4_module vulnerability CVE-2022-41742
2022-10-19 00:00:00
K81926432 : NGINX ngx_http_mp4_module vulnerability CVE-2022-41741
2022-10-19 00:00:00
K000132639 : ALPACA: TLS vulnerability CVE-2021-3618
2023-02-17 00:00:00
debiancve
debiancve
cve
cve
alpinelinux
alpinelinux
redos
redos
ROS-20220125-08
2022-01-25 00:00:00
ROS-20220125-02
2022-01-25 00:00:00
ROS-20220112-03
2022-01-12 00:00:00
suse
suse
Security update for vsftpd (important)
2022-09-20 00:00:00
Security update for vsftpd (important)
2022-09-28 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2269
2023-10-22 06:05:16
ics
ics
Siemens SINEC Traffic Analyzer
2024-06-13 12:00:00
5.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
46.9%
Related for OPENVAS:1361412562310893203