Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2023 Greenbone AGOPENVAS:136141256231112202356384
HistoryMar 02, 2023 - 12:00 a.m.

Ubuntu: Security Advisory (USN-5638-4)

2023-03-0200:00:00
Copyright (C) 2023 Greenbone AG
plugins.openvas.org
4
ubuntu
security advisory
usn-5638-4
expat
vulnerability
ubuntu 14.04
esm.

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.8%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.1.12.2023.5638.4");
  script_cve_id("CVE-2022-40674", "CVE-2022-43680");
  script_tag(name:"creation_date", value:"2023-03-02 04:10:54 +0000 (Thu, 02 Mar 2023)");
  script_version("2024-02-02T05:06:10+0000");
  script_tag(name:"last_modification", value:"2024-02-02 05:06:10 +0000 (Fri, 02 Feb 2024)");
  script_tag(name:"cvss_base", value:"7.6");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:C/I:C/A:C");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2023-02-01 18:07:06 +0000 (Wed, 01 Feb 2023)");

  script_name("Ubuntu: Security Advisory (USN-5638-4)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2023 Greenbone AG");
  script_family("Ubuntu Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages", re:"ssh/login/release=UBUNTU14\.04\ LTS");

  script_xref(name:"Advisory-ID", value:"USN-5638-4");
  script_xref(name:"URL", value:"https://ubuntu.com/security/notices/USN-5638-4");

  script_tag(name:"summary", value:"The remote host is missing an update for the 'expat' package(s) announced via the USN-5638-4 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"USN-5638-1 fixed several vulnerabilities in Expat. This update provides
the corresponding update for Ubuntu 14.04 ESM.

Original advisory details:

 Rhodri James discovered that Expat incorrectly handled memory when
 processing certain malformed XML files. An attacker could possibly
 use this issue to cause a crash or execute arbitrary code.");

  script_tag(name:"affected", value:"'expat' package(s) on Ubuntu 14.04.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-deb.inc");

release = dpkg_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "UBUNTU14.04 LTS") {

  if(!isnull(res = isdpkgvuln(pkg:"expat", ver:"2.1.0-4ubuntu1.4+esm7", rls:"UBUNTU14.04 LTS"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"libexpat1", ver:"2.1.0-4ubuntu1.4+esm7", rls:"UBUNTU14.04 LTS"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Related

osv 18
openvas 30
ubuntu 2
nessus 71
cloudfoundry 2
ics 1
ibm 10
fedora 3
redhat 12
slackware 2
wolfi 1
rocky 4
debian 2
f5 2
almalinux 6
suse 2
githubexploit 5
cvelist 1
gentoo 1
nvd 2
cbl_mariner 2
mageia 4
amazon 2
redhatcve 2
photon 1
oraclelinux 3
cve 1
alpinelinux 2
cloudlinux 1
debiancve 2
redos 1
ubuntucve 1
osv
osv
expat vulnerabilities
2023-02-28 15:19:01
expat vulnerabilities
2022-11-17 09:56:58
Moderate: expat security update
2023-01-12 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-5638-2)
2022-11-18 00:00:00
Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2023-2219)
2023-06-12 00:00:00
Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2023-2088)
2023-06-07 00:00:00
ubuntu
ubuntu
Expat vulnerabilities
2023-02-28 00:00:00
Expat vulnerabilities
2022-11-17 00:00:00
nessus
nessus
Ubuntu 18.04 LTS / 20.04 LTS / 22.04 LTS : Expat vulnerabilities (USN-5638-2)
2022-11-18 00:00:00
RHEL 8 : expat (Unpatched Vulnerability)
2024-05-11 00:00:00
EulerOS Virtualization 3.0.6.0 : expat (EulerOS-SA-2023-2219)
2023-06-13 00:00:00
cloudfoundry
cloudfoundry
USN-5638-2: Expat vulnerabilities | Cloud Foundry
2022-12-07 00:00:00
USN-5638-3: Expat vulnerability | Cloud Foundry
2022-12-07 00:00:00
ics
ics
Hitachi Energy’s AFS65x, AFS67x, AFR67x and AFF66x Products
2023-05-23 12:00:00
ibm
ibm
Security Bulletin: Multiple Vulnerabilities in Expat component shipped with IBM Rational ClearCase [CVE-2022-40674, CVE-2022-43680]
2023-01-31 14:01:21
Security Bulletin: Multiple vulnerabilities in the Expat library affect IBM® Db2® Net Search Extender may lead to denial of service or arbitrary code execution.
2023-02-08 16:06:16
Security Bulletin: AIX is affected by a denial of service (CVE-2022-43680) due to Python
2022-12-22 17:08:47
fedora
fedora
[SECURITY] Fedora 35 Update: mingw-expat-2.5.0-1.fc35
2022-11-13 01:20:59
[SECURITY] Fedora 37 Update: mingw-expat-2.5.0-1.fc37
2022-11-14 01:14:14
[SECURITY] Fedora 36 Update: mingw-expat-2.5.0-1.fc36
2022-11-13 01:19:40
redhat
redhat
(RHSA-2023:0103) Moderate: expat security update
2023-01-12 08:25:33
(RHSA-2022:6967) Important: compat-expat1 security update
2022-10-17 08:01:11
(RHSA-2022:7021) Important: thunderbird security update
2022-10-18 17:40:32
slackware
slackware
[slackware-security] expat
2022-10-25 18:53:10
[slackware-security] expat
2022-09-20 22:58:31
wolfi
wolfi
CVE-2022-43680 vulnerabilities
2024-02-07 01:47:52
rocky
rocky
expat security update
2023-01-12 08:25:33
expat security update
2023-01-23 14:30:30
firefox security update
2022-10-18 17:41:04
debian
debian
[SECURITY] [DSA 5266-1] expat security update
2022-10-30 14:03:23
[SECURITY] [DLA 3165-1] expat security update
2022-10-28 01:43:45
f5
f5
K000139525: Libexpat vulnerability CVE-2022-43680
2024-05-25 00:00:00
K44454157 : Expat vulnerability CVE-2022-40674
2022-10-31 00:00:00
almalinux
almalinux
Moderate: expat security update
2023-01-23 00:00:00
Important: expat security update
2022-10-06 00:00:00
Important: thunderbird security update
2022-10-18 00:00:00
suse
suse
Security update for expat (important)
2022-11-07 00:00:00
Security update for expat (important)
2022-10-17 00:00:00
githubexploit
githubexploit
Exploit for Use After Free in Libexpat Project Libexpat
2022-12-19 05:09:12
Exploit for Use After Free in Libexpat Project Libexpat
2022-12-02 08:26:04
Exploit for Use After Free in Libexpat Project Libexpat
2023-04-04 06:31:47
cvelist
cvelist
CVE-2022-43680
2022-10-24 00:00:00
gentoo
gentoo
Expat: Denial of Service
2022-10-31 00:00:00
nvd
nvd
CVE-2022-43680
2022-10-24 14:15:53
CVE-2022-40674
2022-09-14 11:15:54
cbl_mariner
cbl_mariner
CVE-2022-43680 affecting package expat 2.4.9-1
2022-11-03 00:44:53
CVE-2022-40674 affecting package expat for versions less than 2.4.8-2
2022-09-23 18:23:13
mageia
mageia
Updated expat packages fix security vulnerability
2022-11-05 00:16:03
Updated expat packages fix security vulnerability
2022-10-01 20:48:24
Updated firefox packages fix security vulnerability
2022-10-28 09:54:08
amazon
amazon
Important: expat
2022-10-31 19:40:00
Important: expat
2022-12-01 17:34:00
redhatcve
redhatcve
CVE-2022-40674
2022-09-29 05:18:54
CVE-2022-43680
2022-11-04 10:26:43
photon
photon
Critical Photon OS Security Update - PHSA-2022-0249
2022-09-21 00:00:00
oraclelinux
oraclelinux
expat security update
2022-10-29 00:00:00
compat-expat1 security update
2022-10-31 00:00:00
expat security update
2022-10-06 00:00:00
cve
cve
CVE-2022-40674
2022-09-14 11:15:54
alpinelinux
alpinelinux
CVE-2022-40674
2022-09-14 11:15:54
CVE-2022-43680
2022-10-24 14:15:53
cloudlinux
cloudlinux
Fixed CVE-2022-40674 in expat
2022-09-26 11:53:23
debiancve
debiancve
CVE-2022-40674
2022-09-14 11:15:54
CVE-2022-43680
2022-10-24 14:15:53
redos
redos
ROS-20230911-03
2023-09-11 00:00:00
ubuntucve
ubuntucve
CVE-2022-43680
2022-10-24 00:00:00

8.1 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

8.3 High

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

77.8%

JSON
Related for OPENVAS:136141256231112202356384
osv18openvas30ubuntu2nessus71cloudfoundry2ics1ibm10fedora3redhat12slackware2wolfi1rocky4debian2f52almalinux6suse2githubexploit5cvelist1gentoo1nvd2cbl_mariner2mageia4amazon2redhatcve2photon1oraclelinux3cve1alpinelinux2cloudlinux1debiancve2redos1ubuntucve1