Slackware: Security Advisory (SSA:2023-025-01)

2023-01-2600:00:00

plugins.openvas.org

slackware

security advisory

package 'bind'

update

slackware 15.0

slackware current

cve-2022-3094

cve-2022-3736

cve-2022-3924

vulnerability

remote host

security fix

advisory-id

url

bind package

vendorfix

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

8 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

35.2%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.1.13.2023.025.01");
  script_cve_id("CVE-2022-3094", "CVE-2022-3736", "CVE-2022-3924");
  script_tag(name:"creation_date", value:"2023-01-26 04:19:24 +0000 (Thu, 26 Jan 2023)");
  script_version("2024-02-02T05:06:10+0000");
  script_tag(name:"last_modification", value:"2024-02-02 05:06:10 +0000 (Fri, 02 Feb 2024)");
  script_tag(name:"cvss_base", value:"7.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2023-02-06 16:28:47 +0000 (Mon, 06 Feb 2023)");

  script_name("Slackware: Security Advisory (SSA:2023-025-01)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2023 Greenbone AG");
  script_family("Slackware Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/slackware_linux", "ssh/login/slackpack", re:"ssh/login/release=SLK(15\.0|current)");

  script_xref(name:"Advisory-ID", value:"SSA:2023-025-01");
  script_xref(name:"URL", value:"http://www.slackware.com/security/viewer.php?l=slackware-security&y=2023&m=slackware-security.418424");
  script_xref(name:"URL", value:"https://kb.isc.org/docs/cve-2022-3094");
  script_xref(name:"URL", value:"https://kb.isc.org/docs/cve-2022-3736");
  script_xref(name:"URL", value:"https://kb.isc.org/docs/cve-2022-3924");
  script_xref(name:"URL", value:"https://www.cve.org/CVERecord?id=CVE-2022-3094");
  script_xref(name:"URL", value:"https://www.cve.org/CVERecord?id=CVE-2022-3736");
  script_xref(name:"URL", value:"https://www.cve.org/CVERecord?id=CVE-2022-3924");

  script_tag(name:"summary", value:"The remote host is missing an update for the 'bind' package(s) announced via the SSA:2023-025-01 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"New bind packages are available for Slackware 15.0 and -current to
fix security issues.


Here are the details from the Slackware 15.0 ChangeLog:
+--------------------------+
patches/packages/bind-9.16.37-i586-1_slack15.0.txz: Upgraded.
 This update fixes bugs and the following security issues:
 An UPDATE message flood could cause :iscman:`named` to exhaust all
 available memory. This flaw was addressed by adding a new
 :any:`update-quota` option that controls the maximum number of
 outstanding DNS UPDATE messages that :iscman:`named` can hold in a
 queue at any given time (default: 100).
 :iscman:`named` could crash with an assertion failure when an RRSIG
 query was received and :any:`stale-answer-client-timeout` was set to a
 non-zero value. This has been fixed.
 :iscman:`named` running as a resolver with the
 :any:`stale-answer-client-timeout` option set to any value greater
 than ``0`` could crash with an assertion failure, when the
 :any:`recursive-clients` soft quota was reached. This has been fixed.
 For more information, see:
 [link moved to references]
 [link moved to references]
 [link moved to references]
 [link moved to references]
 [link moved to references]
 [link moved to references]
 (* Security fix *)
+--------------------------+");

  script_tag(name:"affected", value:"'bind' package(s) on Slackware 15.0, Slackware current.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-slack.inc");

release = slk_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "SLK15.0") {

  if(!isnull(res = isslkpkgvuln(pkg:"bind", ver:"9.16.37-i586-1_slack15.0", rls:"SLK15.0"))) {
    report += res;
  }

  if(!isnull(res = isslkpkgvuln(pkg:"bind", ver:"9.16.37-x86_64-1_slack15.0", rls:"SLK15.0"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

if(release == "SLKcurrent") {

  if(!isnull(res = isslkpkgvuln(pkg:"bind", ver:"9.18.11-i586-1", rls:"SLKcurrent"))) {
    report += res;
  }

  if(!isnull(res = isslkpkgvuln(pkg:"bind", ver:"9.18.11-x86_64-1", rls:"SLKcurrent"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);