Lucene search
Copyright (C) 2021 Greenbone AGOPENVAS:13614125623114201733811HistoryJun 09, 2021 - 12:00 a.m.
SUSE: Security Advisory (SUSE-SU-2017:3381-1)
2021-06-0900:00:00
Copyright (C) 2021 Greenbone AG
plugins.openvas.org
11
salt package
security vulnerabilities
suse linux enterprise server 11-sp3
suse linux enterprise server 11-sp4
remote host
directory traversal vulnerability
denial of service
package update
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.034
Percentile
91.4%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2021 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.4.2017.3381.1");
script_cve_id("CVE-2017-14695", "CVE-2017-14696");
script_tag(name:"creation_date", value:"2021-06-09 14:57:50 +0000 (Wed, 09 Jun 2021)");
script_version("2024-02-02T14:37:49+0000");
script_tag(name:"last_modification", value:"2024-02-02 14:37:49 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_tag(name:"severity_vector", value:"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2017-11-14 21:49:19 +0000 (Tue, 14 Nov 2017)");
script_name("SUSE: Security Advisory (SUSE-SU-2017:3381-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2021 Greenbone AG");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse_sles", "ssh/login/rpms", re:"ssh/login/release=(SLES11\.0SP3|SLES11\.0SP4)");
script_xref(name:"Advisory-ID", value:"SUSE-SU-2017:3381-1");
script_xref(name:"URL", value:"https://www.suse.com/support/update/announcement/2017/suse-su-20173381-1/");
script_tag(name:"summary", value:"The remote host is missing an update for the 'Salt' package(s) announced via the SUSE-SU-2017:3381-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update for salt fixes one security issue and bugs.
The following security issues have been fixed:
- CVE-2017-14695: A directory traversal vulnerability in minion id
validation allowed remote minions with incorrect credentials to
authenticate to a master via a crafted minion ID. (bsc#1062462)
- CVE-2017-14696: It was possible to force a remote Denial of Service with
a specially crafted authentication request. (bsc#1062464)
Additionally, the following non-security issues have been fixed:
- Removed deprecation warning for beacon configuration using dictionaries.
(bsc#1041993)
- Fixed beacons failure when pillar-based suppressing config-based.
(bsc#1060230)
- Fixed minion resource exhaustion when many functions are being executed
in parallel. (bsc#1059758)
- Remove 'TasksTask' attribute from salt-master.service in older versions
of systemd. (bsc#985112)
- Fix for delete_deployment in Kubernetes module. (bsc#1059291)
- Catching error when PIDfile cannot be deleted. (bsc#1050003)
- Use $HOME to get the user home directory instead using '~' char.
(bsc#1042749)");
script_tag(name:"affected", value:"'Salt' package(s) on SUSE Linux Enterprise Server 11-SP3, SUSE Linux Enterprise Server 11-SP4.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "SLES11.0SP3") {
if(!isnull(res = isrpmvuln(pkg:"salt", rpm:"salt~2016.11.4~43.10.2", rls:"SLES11.0SP3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"salt-doc", rpm:"salt-doc~2016.11.4~43.10.2", rls:"SLES11.0SP3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"salt-minion", rpm:"salt-minion~2016.11.4~43.10.2", rls:"SLES11.0SP3"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "SLES11.0SP4") {
if(!isnull(res = isrpmvuln(pkg:"salt", rpm:"salt~2016.11.4~43.10.2", rls:"SLES11.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"salt-doc", rpm:"salt-doc~2016.11.4~43.10.2", rls:"SLES11.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"salt-minion", rpm:"salt-minion~2016.11.4~43.10.2", rls:"SLES11.0SP4"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
archlinux
archlinux
[ASA-201710-12] salt: multiple issues
2017-10-09 00:00:00
nessus
nessus
openSUSE Security Update : salt (openSUSE-2017-1182)
2017-10-23 00:00:00
SUSE SLES11 Security Update : Salt (SUSE-SU-2017:3381-1)
2017-12-28 00:00:00
openSUSE Security Update : salt (openSUSE-2017-1183)
2017-10-23 00:00:00
freebsd
freebsd
salt -- multiple vulnerabilities
2017-10-09 00:00:00
debiancve
debiancve
CVE-2017-14696
2017-10-24 17:29:00
CVE-2017-14695
2017-10-24 17:29:00
nvd
nvd
CVE-2017-14696
2017-10-24 17:29:00
CVE-2017-14695
2017-10-24 17:29:00
prion
prion
Cross site request forgery (csrf)
2017-10-24 17:29:00
Directory traversal
2017-10-24 17:29:00
ubuntucve
ubuntucve
CVE-2017-14696
2017-10-24 00:00:00
CVE-2017-14695
2017-10-24 00:00:00
github
github
SaltStack Salt Denial of Service via a crafted authentication request
2022-05-17 00:23:46
SaltStack Salt Directory traversal vulnerability in minion id validation
2022-05-17 00:24:32
osv
osv
CVE-2017-14696
2017-10-24 17:29:00
PYSEC-2017-37
2017-10-24 17:29:00
SaltStack Salt Denial of Service via a crafted authentication request
2022-05-17 00:23:46
redhatcve
redhatcve
CVE-2017-14696
2017-10-17 17:26:15
CVE-2017-14695
2017-10-19 12:25:28
veracode
veracode
Denial Of Service (DoS)
2017-10-25 03:26:01
Directory Traversal
2017-10-25 02:27:30
cve
cve
CVE-2017-14696
2017-10-24 17:29:00
CVE-2017-14695
2017-10-24 17:29:00
cvelist
cvelist
CVE-2017-14696
2017-10-24 17:00:00
CVE-2017-14695
2017-10-24 17:00:00
photon
photon
openvas
openvas
Ubuntu: Security Advisory (USN-4769-1)
2023-01-27 00:00:00
ubuntu
ubuntu
Salt vulnerabilities
2021-03-15 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.034
Percentile
91.4%
Related for OPENVAS:13614125623114201733811