ID CVE-2015-3622Type cveReporter NVDModified 2018-01-04T21:30:06
Description
The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.5 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted certificate.
{"title": "CVE-2015-3622", "reporter": "NVD", "published": "2015-05-12T15:59:24", "cpe": ["cpe:/a:gnu:libtasn1:4.4", "cpe:/o:fedoraproject:fedora:21", "cpe:/o:novell:opensuse:13.2"], "cvelist": ["CVE-2015-3622"], "viewCount": 7, "objectVersion": "1.3", "type": "cve", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3622", "bulletinFamily": "NVD", "hashmap": [{"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "20d65afc9e11f2e164c93909914df054", "key": "cpe"}, {"hash": "12948316831a772db0b95bdf859916c1", "key": "cvelist"}, {"hash": "3873c836ae45fd496c2b40bae50467ed", "key": "cvss"}, {"hash": "053258696b85c855fb621401574467cc", "key": "description"}, {"hash": "d329aba40b04fcfa4bcebb8b6b13c6ec", "key": "href"}, {"hash": "2a89b41aca746ad844ec3b1a7affa7ce", "key": "modified"}, {"hash": "dbd17230aae9bda01166259ffe1949ed", "key": "published"}, {"hash": "9581c578e38ee6d7163134bc5d265d13", "key": "references"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "924c88f53bdf95996ca2851b7b6f6448", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}], "history": [{"bulletin": {"reporter": "NVD", "published": "2015-05-12T15:59:24", "cvelist": ["CVE-2015-3622"], "title": "CVE-2015-3622", "objectVersion": "1.2", "type": "cve", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3622", "bulletinFamily": "NVD", "id": "CVE-2015-3622", "history": [], "scanner": [], "cpe": ["cpe:/a:gnu:libtasn1:4.4", "cpe:/o:fedoraproject:fedora:21", "cpe:/o:novell:opensuse:13.2"], "modified": "2016-06-21T17:57:19", "hash": "e6109e46b3e266f6e44dab18e25575255c05cefee4b3974383b1a7b24be14710", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "viewCount": 3, "edition": 1, "assessment": {"name": "", "href": "", "system": ""}, "references": ["http://seclists.org/fulldisclosure/2015/Apr/109", "http://www.securitytracker.com/id/1032246", "http://packetstormsecurity.com/files/131711/libtasn1-Heap-Overflow.html", "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/158225.html", "http://lists.opensuse.org/opensuse-updates/2016-06/msg00047.html", "http://www.mandriva.com/security/advisories?name=MDVSA-2015:232", "https://lists.gnu.org/archive/html/help-libtasn1/2015-04/msg00000.html", "http://www.securityfocus.com/bid/74419"], "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "19639bae460671bf3548d55add45befc", "key": "references"}, {"hash": "691ec40f47f31b986113aa4915095a6e", "key": "modified"}, {"hash": "20d65afc9e11f2e164c93909914df054", "key": "cpe"}, {"hash": "56765472680401499c79732468ba4340", "key": "objectVersion"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "3873c836ae45fd496c2b40bae50467ed", "key": "cvss"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "12948316831a772db0b95bdf859916c1", "key": "cvelist"}, {"hash": "053258696b85c855fb621401574467cc", "key": "description"}, {"hash": "d329aba40b04fcfa4bcebb8b6b13c6ec", "key": "href"}, {"hash": "924c88f53bdf95996ca2851b7b6f6448", "key": "title"}, {"hash": "dbd17230aae9bda01166259ffe1949ed", "key": "published"}], "lastseen": "2016-09-03T22:32:22", "description": "The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.5 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted certificate."}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T22:32:22"}, {"bulletin": {"reporter": "NVD", "published": "2015-05-12T15:59:24", "cvelist": ["CVE-2015-3622"], "title": "CVE-2015-3622", "objectVersion": "1.2", "description": "The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.5 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted certificate.", "type": "cve", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-3622", "bulletinFamily": "NVD", "id": "CVE-2015-3622", "history": [], "scanner": [], "enchantments": {"score": {"modified": "2017-04-18T15:56:52", "value": 4.3}}, "modified": "2017-01-02T22:00:02", "hash": "669e0df4b92e5b17209e41d5b9a73660ad7a864b1a0b1dc9688433e29d71c6b7", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "viewCount": 6, "edition": 2, "cpe": ["cpe:/a:gnu:libtasn1:4.4", "cpe:/o:fedoraproject:fedora:21", "cpe:/o:novell:opensuse:13.2"], "references": ["http://seclists.org/fulldisclosure/2015/Apr/109", "http://www.securitytracker.com/id/1032246", "http://lists.opensuse.org/opensuse-updates/2016-06/msg00097.html", "http://packetstormsecurity.com/files/131711/libtasn1-Heap-Overflow.html", "http://www.debian.org/security/2015/dsa-3256", "http://lists.opensuse.org/opensuse-updates/2015-08/msg00014.html", "https://security.gentoo.org/glsa/201509-04", "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/158225.html", "http://lists.opensuse.org/opensuse-updates/2016-06/msg00047.html", "http://www.mandriva.com/security/advisories?name=MDVSA-2015:232", "http://www.ubuntu.com/usn/USN-2604-1", "https://lists.gnu.org/archive/html/help-libtasn1/2015-04/msg00000.html", "http://www.securityfocus.com/bid/74419"], "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "20d65afc9e11f2e164c93909914df054", "key": "cpe"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "f4e390608feb7a85a10cb96d478561cd", "key": "references"}, {"hash": "3873c836ae45fd496c2b40bae50467ed", "key": "cvss"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "12948316831a772db0b95bdf859916c1", "key": "cvelist"}, {"hash": "491ba1f32ce6654e8e40e66cb136febc", "key": "modified"}, {"hash": "053258696b85c855fb621401574467cc", "key": "description"}, {"hash": "d329aba40b04fcfa4bcebb8b6b13c6ec", "key": "href"}, {"hash": "924c88f53bdf95996ca2851b7b6f6448", "key": "title"}, {"hash": "dbd17230aae9bda01166259ffe1949ed", "key": "published"}], "lastseen": "2017-04-18T15:56:52", "assessment": {"name": "", "href": "", "system": ""}}, "differentElements": ["references", "modified"], "edition": 2, "lastseen": "2017-04-18T15:56:52"}], "scanner": [], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "modified": "2018-01-04T21:30:06", "hash": "2c7c3a07c7de4a8d5f0a2d0f824d203040798d9212f5668495143f107ab610ee", "enchantments": {"score": {"vector": "NONE", "value": 5.0}, "vulnersScore": 5.0}, "edition": 3, "description": "The _asn1_extract_der_octet function in lib/decoding.c in GNU Libtasn1 before 4.5 allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted certificate.", "references": ["http://seclists.org/fulldisclosure/2015/Apr/109", "http://www.securitytracker.com/id/1032246", "http://lists.opensuse.org/opensuse-updates/2016-06/msg00097.html", "http://packetstormsecurity.com/files/131711/libtasn1-Heap-Overflow.html", "http://www.debian.org/security/2015/dsa-3256", "http://lists.opensuse.org/opensuse-updates/2015-08/msg00014.html", "https://security.gentoo.org/glsa/201509-04", "http://lists.fedoraproject.org/pipermail/package-announce/2015-May/158225.html", "http://lists.opensuse.org/opensuse-updates/2016-06/msg00047.html", "http://www.mandriva.com/security/advisories?name=MDVSA-2015:232", "https://access.redhat.com/errata/RHSA-2017:1860", "http://www.ubuntu.com/usn/USN-2604-1", "https://lists.gnu.org/archive/html/help-libtasn1/2015-04/msg00000.html", "http://www.securityfocus.com/bid/74419"], "id": "CVE-2015-3622", "lastseen": "2018-01-05T11:51:40", "assessment": {"name": "", "href": "", "system": ""}}
{"archlinux": [{"lastseen": "2016-09-02T18:44:36", "references": ["http://git.savannah.gnu.org/gitweb/?p=libtasn1.git;a=commitdiff;h=f979435", "https://access.redhat.com/security/cve/CVE-2015-3622"], "affectedPackage": [{"OS": "any", "OSVersion": "any", "packageVersion": "4.5-1", "packageName": "libtasn1", "arch": "any", "packageFilename": "UNKNOWN", "operator": "lt"}], "edition": 1, "description": "A heap-based buffer overflow flaw was found in the way the libtasn1\nlibrary decoded certain DER-encoded input. A specially crafted,\nDER-encoded input could cause an application using libtasn1 to perform\nan invalid read, causing the application to crash or, possibly, execute\narbitrary code.\nThe heap overflow happens in the function _asn1_extract_der_octet() that\nis called during decoding of DER-encoded input.", "reporter": "Arch Linux", "published": "2015-05-08T00:00:00", "title": "libtasn1: arbitrary code execution", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "archlinux", "bulletinFamily": "unix", "cvelist": ["CVE-2015-3622"], "modified": "2015-05-08T00:00:00", "href": "https://lists.archlinux.org/pipermail/arch-security/2015-May/000318.html", "id": "ASA-201505-5", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "openvas": [{"lastseen": "2018-09-01T23:50:06", "references": ["http://www.debian.org/security/2015/dsa-3256.html"], "pluginID": "1361412562310703256", "description": "Hanno Boeck discovered a heap-based buffer overflow flaw in the way\nLibtasn1, a library to manage ASN.1 structures, decoded certain\nDER-encoded input. A specially crafted DER-encoded input could cause an\napplication using the Libtasn1 library to crash, or potentially to\nexecute arbitrary code.", "edition": 3, "reporter": "Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net", "published": "2015-05-10T00:00:00", "title": "Debian Security Advisory DSA 3256-1 (libtasn1-6 - security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310703256", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310703256", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3256.nasl 9355 2018-04-06 07:16:07Z cfischer $\n# Auto-generated from advisory DSA 3256-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.703256\");\n script_version(\"$Revision: 9355 $\");\n script_cve_id(\"CVE-2015-3622\");\n script_name(\"Debian Security Advisory DSA 3256-1 (libtasn1-6 - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2018-04-06 09:16:07 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name: \"creation_date\", value: \"2015-05-10 00:00:00 +0200 (Sun, 10 May 2015)\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n script_tag(name: \"qod_type\", value: \"package\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2015/dsa-3256.html\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"libtasn1-6 on Debian Linux\");\n script_tag(name: \"insight\", value: \"Manage ASN1 (Abstract Syntax Notation One) structures.\nThe main features of this library are:\n\n* on-line ASN1 structure management that doesn't require any C code\nfile generation.\n* off-line ASN1 structure management with C code file generation\ncontaining an array.\n* DER (Distinguish Encoding Rules) encoding\n* no limits for INTEGER and ENUMERATED values\");\n script_tag(name: \"solution\", value: \"For the stable distribution (jessie), this problem has been fixed in\nversion 4.2-3+deb8u1.\n\nFor the testing distribution (stretch), this problem has been fixed in\nversion 4.4-3.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 4.4-3.\n\nWe recommend that you upgrade your libtasn1-6 packages.\");\n script_tag(name: \"summary\", value: \"Hanno Boeck discovered a heap-based buffer overflow flaw in the way\nLibtasn1, a library to manage ASN.1 structures, decoded certain\nDER-encoded input. A specially crafted DER-encoded input could cause an\napplication using the Libtasn1 library to crash, or potentially to\nexecute arbitrary code.\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed software version using the apt package manager.\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libtasn1-3-bin\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6-dbg\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6-dev\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-bin\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-doc\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-3-bin\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6-dbg\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6-dev\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-bin\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-doc\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:51:22", "references": ["http://www.ubuntu.com/usn/usn-2604-1/", "2604-1"], "pluginID": "1361412562310842207", "description": "Check the version of libtasn1-6", "edition": 7, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-05-12T00:00:00", "title": "Ubuntu Update for libtasn1-6 USN-2604-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310842207", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310842207", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Ubuntu Update for libtasn1-6 USN-2604-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.842207\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2015-05-12 05:44:01 +0200 (Tue, 12 May 2015)\");\n script_cve_id(\"CVE-2015-3622\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Ubuntu Update for libtasn1-6 USN-2604-1\");\n script_tag(name:\"summary\", value:\"Check the version of libtasn1-6\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"Hanno Bö ck discovered that Libtasn1\nincorrectly handled certain ASN.1 data. A remote attacker could possibly exploit\nthis with specially crafted ASN.1 data and cause applications using Libtasn1 to\ncrash, resulting in a denial of service, or possibly execute arbitrary code.\");\n script_tag(name:\"affected\", value:\"libtasn1-6 on Ubuntu 14.10,\n Ubuntu 14.04 LTS,\n Ubuntu 12.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_xref(name:\"USN\", value:\"2604-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-2604-1/\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(14\\.10|14\\.04 LTS|12\\.04 LTS)\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU14.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libtasn1-6:amd64\", ver:\"4.0-2ubuntu0.2\", rls:\"UBUNTU14.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"libtasn1-6:i386\", ver:\"4.0-2ubuntu0.2\", rls:\"UBUNTU14.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU14.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libtasn1-6:amd64\", ver:\"3.4-3ubuntu0.3\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isdpkgvuln(pkg:\"libtasn1-6:i386\", ver:\"3.4-3ubuntu0.3\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libtasn1-3\", ver:\"2.10-1ubuntu1.4\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:52:25", "references": ["https://lists.fedoraproject.org/pipermail/package-announce/2015-May/158225.html", "2015-7288"], "pluginID": "1361412562310869408", "description": "Check the version of libtasn1", "edition": 4, "reporter": "Copyright (C) 2015 Greenbone Networks GmbH", "published": "2015-06-09T00:00:00", "title": "Fedora Update for libtasn1 FEDORA-2015-7288", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622"], "modified": "2017-07-10T00:00:00", "id": "OPENVAS:1361412562310869408", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869408", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for libtasn1 FEDORA-2015-7288\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869408\");\n script_version(\"$Revision: 6630 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:34:32 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2015-06-09 10:53:57 +0200 (Tue, 09 Jun 2015)\");\n script_cve_id(\"CVE-2015-3622\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for libtasn1 FEDORA-2015-7288\");\n script_tag(name: \"summary\", value: \"Check the version of libtasn1\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help\nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"A library that provides Abstract Syntax\nNotation One (ASN.1, as specified by the X.680 ITU-T recommendation) parsing and\nstructures management, and Distinguished Encoding Rules (DER, as per X.690)\nencoding and decoding functions.\n\");\n script_tag(name: \"affected\", value: \"libtasn1 on Fedora 21\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n script_xref(name: \"FEDORA\", value: \"2015-7288\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/158225.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"libtasn1\", rpm:\"libtasn1~4.5~1.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-07-24T12:53:54", "references": ["http://www.debian.org/security/2015/dsa-3256.html"], "pluginID": "703256", "description": "Hanno Boeck discovered a heap-based buffer overflow flaw in the way\nLibtasn1, a library to manage ASN.1 structures, decoded certain\nDER-encoded input. A specially crafted DER-encoded input could cause an\napplication using the Libtasn1 library to crash, or potentially to\nexecute arbitrary code.", "edition": 3, "reporter": "Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net", "published": "2015-05-10T00:00:00", "title": "Debian Security Advisory DSA 3256-1 (libtasn1-6 - security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=703256", "id": "OPENVAS:703256", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3256.nasl 6609 2017-07-07 12:05:59Z cfischer $\n# Auto-generated from advisory DSA 3256-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_id(703256);\n script_version(\"$Revision: 6609 $\");\n script_cve_id(\"CVE-2015-3622\");\n script_name(\"Debian Security Advisory DSA 3256-1 (libtasn1-6 - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2017-07-07 14:05:59 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name: \"creation_date\", value: \"2015-05-10 00:00:00 +0200 (Sun, 10 May 2015)\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n script_tag(name: \"qod_type\", value: \"package\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2015/dsa-3256.html\");\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2015 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"libtasn1-6 on Debian Linux\");\n script_tag(name: \"insight\", value: \"Manage ASN1 (Abstract Syntax Notation One) structures.\nThe main features of this library are:\n\n* on-line ASN1 structure management that doesn't require any C code\nfile generation.\n* off-line ASN1 structure management with C code file generation\ncontaining an array.\n* DER (Distinguish Encoding Rules) encoding\n* no limits for INTEGER and ENUMERATED values\");\n script_tag(name: \"solution\", value: \"For the stable distribution (jessie), this problem has been fixed in\nversion 4.2-3+deb8u1.\n\nFor the testing distribution (stretch), this problem has been fixed in\nversion 4.4-3.\n\nFor the unstable distribution (sid), this problem has been fixed in\nversion 4.4-3.\n\nWe recommend that you upgrade your libtasn1-6 packages.\");\n script_tag(name: \"summary\", value: \"Hanno Boeck discovered a heap-based buffer overflow flaw in the way\nLibtasn1, a library to manage ASN.1 structures, decoded certain\nDER-encoded input. A specially crafted DER-encoded input could cause an\napplication using the Libtasn1 library to crash, or potentially to\nexecute arbitrary code.\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed software version using the apt package manager.\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"libtasn1-3-bin\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6-dbg\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6-dev\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-bin\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-doc\", ver:\"4.4-3\", rls_regex:\"DEB9.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-3-bin\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6-dbg\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-6-dev\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-bin\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libtasn1-doc\", ver:\"4.2-3+deb8u1\", rls_regex:\"DEB8.[0-9]+\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:52:28", "references": ["https://security.gentoo.org/glsa/201509-04"], "pluginID": "1361412562310121410", "description": "Gentoo Linux Local Security Checks https://security.gentoo.org/glsa/201509-04", "edition": 5, "reporter": "Eero Volotinen", "published": "2015-09-29T00:00:00", "title": "Gentoo Linux Local Check: https://security.gentoo.org/glsa/201509-04", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.2}}, "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622", "CVE-2015-2806"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310121410", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310121410", "sourceData": "# OpenVAS Vulnerability Test\n# Description: Gentoo Linux security check\n# $Id: glsa-201509-04.nasl 9374 2018-04-06 08:58:12Z cfischer $\n\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.121410\");\nscript_version(\"$Revision: 9374 $\");\nscript_tag(name:\"creation_date\", value:\"2015-09-29 11:29:03 +0300 (Tue, 29 Sep 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 10:58:12 +0200 (Fri, 06 Apr 2018) $\");\nscript_name(\"Gentoo Linux Local Check: https://security.gentoo.org/glsa/201509-04\");\nscript_tag(name: \"insight\", value: \"Multiple vulnerabilities have been discovered in libtasn1. Please review the CVE identifiers referenced below for details.\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_xref(name : \"URL\" , value : \"https://security.gentoo.org/glsa/201509-04\");\nscript_cve_id(\"CVE-2015-2806\",\"CVE-2015-3622\");\nscript_tag(name:\"cvss_base\", value:\"10.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\nscript_category(ACT_GATHER_INFO);\nscript_tag(name:\"summary\", value:\"Gentoo Linux Local Security Checks https://security.gentoo.org/glsa/201509-04\");\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Gentoo Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\n\nif((res=ispkgvuln(pkg:\"dev-libs/libtasn1\", unaffected: make_list(\"ge 1.4.5\"), vulnerable: make_list(\"lt 1.4.5\"))) != NULL) {\n\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:44:15", "references": ["2017:1860-01", "https://www.redhat.com/archives/rhsa-announce/2017-August/msg00007.html"], "pluginID": "1361412562310871853", "description": "Check the version of libtasn1", "edition": 3, "reporter": "Copyright (C) 2017 Greenbone Networks GmbH", "published": "2017-08-04T00:00:00", "title": "RedHat Update for libtasn1 RHSA-2017:1860-01", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622", "CVE-2015-2806"], "modified": "2017-08-04T00:00:00", "id": "OPENVAS:1361412562310871853", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310871853", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_RHSA-2017_1860-01_libtasn1.nasl 6850 2017-08-04 07:23:54Z santu $\n#\n# RedHat Update for libtasn1 RHSA-2017:1860-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.871853\");\n script_version(\"$Revision: 6850 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-08-04 09:23:54 +0200 (Fri, 04 Aug 2017) $\");\n script_tag(name:\"creation_date\", value:\"2017-08-04 12:47:20 +0530 (Fri, 04 Aug 2017)\");\n script_cve_id(\"CVE-2015-2806\", \"CVE-2015-3622\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"RedHat Update for libtasn1 RHSA-2017:1860-01\");\n script_tag(name: \"summary\", value: \"Check the version of libtasn1\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help of \n detect NVT and check if the version is vulnerable or not.\"); \n script_tag(name: \"insight\", value: \"Libtasn1 is a library that provides Abstract \n Syntax Notation One (ASN.1, as specified by the X.680 ITU-T recommendation) \n parsing and structures management, and Distinguished Encoding Rules (DER, as per \n X.690) encoding and decoding functions. The following packages have been \n upgraded to a later upstream version: libtasn1 (4.10). (BZ#1360639) Security \n Fix(es): * A heap-based buffer overflow flaw was found in the way the libtasn1 \n library decoded certain DER-encoded inputs. A specially crafted DER-encoded \n input could cause an application using libtasn1 to perform an invalid read, \n causing the application to crash. (CVE-2015-3622) * A stack-based buffer \n overflow was found in the way libtasn1 decoded certain DER encoded data. An \n attacker could use this flaw to crash an application using the libtasn1 library. \n (CVE-2015-2806) Additional Changes: For detailed information on changes in this \n release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the \n References section. \"); \n script_tag(name: \"affected\", value: \"libtasn1 on Red Hat Enterprise Linux Server (v. 7)\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n\n script_xref(name: \"RHSA\", value: \"2017:1860-01\");\n script_xref(name: \"URL\" , value: \"https://www.redhat.com/archives/rhsa-announce/2017-August/msg00007.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2017 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_7\")\n{\n\n if ((res = isrpmvuln(pkg:\"libtasn1\", rpm:\"libtasn1~4.10~1.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtasn1-debuginfo\", rpm:\"libtasn1-debuginfo~4.10~1.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libtasn1-devel\", rpm:\"libtasn1-devel~4.10~1.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "nessus": [{"lastseen": "2018-09-01T23:44:32", "references": ["https://packages.debian.org/source/jessie/libtasn1-6", "http://www.debian.org/security/2015/dsa-3256"], "pluginID": "83308", "description": "Hanno Boeck discovered a heap-based buffer overflow flaw in the way Libtasn1, a library to manage ASN.1 structures, decoded certain DER-encoded input. A specially crafted DER-encoded input could cause an application using the Libtasn1 library to crash, or potentially to execute arbitrary code.", "edition": 5, "reporter": "Tenable", "published": "2015-05-11T00:00:00", "title": "Debian DSA-3256-1 : libtasn1-6 - security update", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622"], "modified": "2018-07-10T00:00:00", "cpe": ["p-cpe:/a:debian:debian_linux:libtasn1-6", "cpe:/o:debian:debian_linux:8.0"], "id": "DEBIAN_DSA-3256.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=83308", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-3256. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83308);\n script_version(\"2.5\");\n script_cvs_date(\"Date: 2018/07/10 14:27:31\");\n\n script_cve_id(\"CVE-2015-3622\");\n script_bugtraq_id(74419);\n script_xref(name:\"DSA\", value:\"3256\");\n\n script_name(english:\"Debian DSA-3256-1 : libtasn1-6 - security update\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Hanno Boeck discovered a heap-based buffer overflow flaw in the way\nLibtasn1, a library to manage ASN.1 structures, decoded certain\nDER-encoded input. A specially crafted DER-encoded input could cause\nan application using the Libtasn1 library to crash, or potentially to\nexecute arbitrary code.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/jessie/libtasn1-6\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2015/dsa-3256\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the libtasn1-6 packages.\n\nFor the stable distribution (jessie), this problem has been fixed in\nversion 4.2-3+deb8u1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:libtasn1-6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:8.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/05/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"8.0\", prefix:\"libtasn1-3-bin\", reference:\"4.2-3+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtasn1-6\", reference:\"4.2-3+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtasn1-6-dbg\", reference:\"4.2-3+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtasn1-6-dev\", reference:\"4.2-3+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtasn1-bin\", reference:\"4.2-3+deb8u1\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"libtasn1-doc\", reference:\"4.2-3+deb8u1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:34:42", "references": ["https://bugzilla.opensuse.org/show_bug.cgi?id=929414", "https://bugzilla.opensuse.org/show_bug.cgi?id=929690"], "pluginID": "85371", "description": "- fix for CVE-2015-3622 in bundled libtasn1 (bsc#929414)\n\n - invalid read in octet string\n\n - added gnutls-CVE-2015-3622.patch\n\n - fix for GNUTLS-SA-2015-2 (bsc#929690)\n\n - ServerKeyExchange signature issue\n\n - added gnutls-GNUTLS-SA-2015-2.patch", "edition": 4, "reporter": "Tenable", "published": "2015-08-13T00:00:00", "title": "openSUSE Security Update : gnutls (openSUSE-2015-542)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622"], "modified": "2015-08-13T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:libgnutlsxx28-debuginfo", "p-cpe:/a:novell:opensuse:libgnutls28-debuginfo", "p-cpe:/a:novell:opensuse:libgnutls28-debuginfo-32bit", "p-cpe:/a:novell:opensuse:libgnutls28", "p-cpe:/a:novell:opensuse:libgnutls-openssl-devel", "p-cpe:/a:novell:opensuse:libgnutlsxx28", "p-cpe:/a:novell:opensuse:libgnutls-openssl27-debuginfo", "p-cpe:/a:novell:opensuse:libgnutls28-32bit", "p-cpe:/a:novell:opensuse:libgnutlsxx-devel", "p-cpe:/a:novell:opensuse:libgnutls-openssl27", "cpe:/o:novell:opensuse:13.2", "p-cpe:/a:novell:opensuse:gnutls", "p-cpe:/a:novell:opensuse:libgnutls-devel", "p-cpe:/a:novell:opensuse:gnutls-debugsource", "cpe:/o:novell:opensuse:13.1", "p-cpe:/a:novell:opensuse:gnutls-debuginfo", "p-cpe:/a:novell:opensuse:libgnutls-devel-32bit"], "id": "OPENSUSE-2015-542.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=85371", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2015-542.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(85371);\n script_version(\"$Revision: 2.1 $\");\n script_cvs_date(\"$Date: 2015/08/13 13:44:24 $\");\n\n script_cve_id(\"CVE-2015-3622\");\n\n script_name(english:\"openSUSE Security Update : gnutls (openSUSE-2015-542)\");\n script_summary(english:\"Check for the openSUSE-2015-542 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\" - fix for CVE-2015-3622 in bundled libtasn1 (bsc#929414)\n\n - invalid read in octet string\n\n - added gnutls-CVE-2015-3622.patch\n\n - fix for GNUTLS-SA-2015-2 (bsc#929690)\n\n - ServerKeyExchange signature issue\n\n - added gnutls-GNUTLS-SA-2015-2.patch\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=929414\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=929690\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gnutls packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:gnutls-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:gnutls-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutls-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutls-devel-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutls-openssl-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutls-openssl27\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutls-openssl27-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutls28\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutls28-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutls28-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutls28-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutlsxx-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutlsxx28\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libgnutlsxx28-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:13.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:13.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/08/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/08/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE13\\.1|SUSE13\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"13.1 / 13.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE13.1\", reference:\"gnutls-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"gnutls-debuginfo-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"gnutls-debugsource-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libgnutls-devel-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libgnutls-openssl-devel-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libgnutls-openssl27-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libgnutls-openssl27-debuginfo-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libgnutls28-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libgnutls28-debuginfo-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libgnutlsxx-devel-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libgnutlsxx28-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", reference:\"libgnutlsxx28-debuginfo-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"libgnutls-devel-32bit-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"libgnutls28-32bit-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.1\", cpu:\"x86_64\", reference:\"libgnutls28-debuginfo-32bit-3.2.4-2.35.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"gnutls-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"gnutls-debuginfo-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"gnutls-debugsource-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libgnutls-devel-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libgnutls-openssl-devel-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libgnutls-openssl27-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libgnutls-openssl27-debuginfo-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libgnutls28-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libgnutls28-debuginfo-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libgnutlsxx-devel-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libgnutlsxx28-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", reference:\"libgnutlsxx28-debuginfo-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"libgnutls-devel-32bit-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"libgnutls28-32bit-3.2.18-11.1\") ) flag++;\nif ( rpm_check(release:\"SUSE13.2\", cpu:\"x86_64\", reference:\"libgnutls28-debuginfo-32bit-3.2.18-11.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gnutls / gnutls-debuginfo / gnutls-debugsource / libgnutls-devel / etc\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:41:29", "references": [], "pluginID": "83344", "description": "Hanno Bock discovered that Libtasn1 incorrectly handled certain ASN.1 data. A remote attacker could possibly exploit this with specially crafted ASN.1 data and cause applications using Libtasn1 to crash, resulting in a denial of service, or possibly execute arbitrary code.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2015-05-12T00:00:00", "title": "Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : libtasn1-3, libtasn1-6 vulnerability (USN-2604-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622"], "modified": "2018-08-03T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:libtasn1-6", "cpe:/o:canonical:ubuntu_linux:15.04", "cpe:/o:canonical:ubuntu_linux:14.10", "p-cpe:/a:canonical:ubuntu_linux:libtasn1-3", "cpe:/o:canonical:ubuntu_linux:12.04:-:lts", "cpe:/o:canonical:ubuntu_linux:14.04"], "id": "UBUNTU_USN-2604-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=83344", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-2604-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83344);\n script_version(\"2.6\");\n script_cvs_date(\"Date: 2018/08/03 12:21:25\");\n\n script_cve_id(\"CVE-2015-3622\");\n script_xref(name:\"USN\", value:\"2604-1\");\n\n script_name(english:\"Ubuntu 12.04 LTS / 14.04 LTS / 14.10 / 15.04 : libtasn1-3, libtasn1-6 vulnerability (USN-2604-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Hanno Bock discovered that Libtasn1 incorrectly handled certain ASN.1\ndata. A remote attacker could possibly exploit this with specially\ncrafted ASN.1 data and cause applications using Libtasn1 to crash,\nresulting in a denial of service, or possibly execute arbitrary code.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libtasn1-3 and / or libtasn1-6 packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libtasn1-3\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libtasn1-6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:12.04:-:lts\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:15.04\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/05/11\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2015-2018 Canonical, Inc. / NASL script (C) 2015-2016 Tenable Network Security, Inc.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(12\\.04|14\\.04|14\\.10|15\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 12.04 / 14.04 / 14.10 / 15.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"12.04\", pkgname:\"libtasn1-3\", pkgver:\"2.10-1ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"14.04\", pkgname:\"libtasn1-6\", pkgver:\"3.4-3ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"14.10\", pkgname:\"libtasn1-6\", pkgver:\"4.0-2ubuntu0.2\")) flag++;\nif (ubuntu_check(osver:\"15.04\", pkgname:\"libtasn1-6\", pkgver:\"4.2-2ubuntu1.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libtasn1-3 / libtasn1-6\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:00:57", "references": ["http://www.nessus.org/u?e563a9dc", "https://bugzilla.redhat.com/show_bug.cgi?id=1218141"], "pluginID": "83550", "description": "Update to 4.5 (#1217282)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "reporter": "Tenable", "published": "2015-05-20T00:00:00", "title": "Fedora 21 : libtasn1-4.5-1.fc21 (2015-7288)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622"], "modified": "2015-10-19T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:21", "p-cpe:/a:fedoraproject:fedora:libtasn1"], "id": "FEDORA_2015-7288.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=83550", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-7288.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83550);\n script_version(\"$Revision: 2.2 $\");\n script_cvs_date(\"$Date: 2015/10/19 23:14:52 $\");\n\n script_cve_id(\"CVE-2015-3622\");\n script_xref(name:\"FEDORA\", value:\"2015-7288\");\n\n script_name(english:\"Fedora 21 : libtasn1-4.5-1.fc21 (2015-7288)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Update to 4.5 (#1217282)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1218141\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-May/158225.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e563a9dc\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libtasn1 package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:libtasn1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:21\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/05/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/20\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^21([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 21.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC21\", reference:\"libtasn1-4.5-1.fc21\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libtasn1\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:05:53", "references": ["http://advisories.mageia.org/MGASA-2015-0200.html"], "pluginID": "83329", "description": "Updated libtasn1 packages fix security vulnerability :\n\nA malformed certificate input could cause a heap overflow read in the DER decoding functions of Libtasn1. The heap overflow happens in the function _asn1_extract_der_octet() (CVE-2015-3622).", "edition": 5, "reporter": "Tenable", "published": "2015-05-11T00:00:00", "title": "Mandriva Linux Security Advisory : libtasn1 (MDVSA-2015:232)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622"], "modified": "2018-07-19T00:00:00", "cpe": ["cpe:/o:mandriva:business_server:1", "cpe:/o:mandriva:business_server:2", "p-cpe:/a:mandriva:linux:libtasn1-tools", "p-cpe:/a:mandriva:linux:lib64tasn1-devel", "p-cpe:/a:mandriva:linux:lib64tasn1_6"], "id": "MANDRIVA_MDVSA-2015-232.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=83329", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2015:232. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83329);\n script_version(\"2.3\");\n script_cvs_date(\"Date: 2018/07/19 20:59:19\");\n\n script_cve_id(\"CVE-2015-3622\");\n script_xref(name:\"MDVSA\", value:\"2015:232\");\n\n script_name(english:\"Mandriva Linux Security Advisory : libtasn1 (MDVSA-2015:232)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated libtasn1 packages fix security vulnerability :\n\nA malformed certificate input could cause a heap overflow read in the\nDER decoding functions of Libtasn1. The heap overflow happens in the\nfunction _asn1_extract_der_octet() (CVE-2015-3622).\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://advisories.mageia.org/MGASA-2015-0200.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected lib64tasn1-devel, lib64tasn1_6 and / or\nlibtasn1-tools packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64tasn1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64tasn1_6\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libtasn1-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:business_server:1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:business_server:2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/05/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/11\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"lib64tasn1-devel-3.6-1.5.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"lib64tasn1_6-3.6-1.5.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"libtasn1-tools-3.6-1.5.mbs1\")) flag++;\n\nif (rpm_check(release:\"MDK-MBS2\", cpu:\"x86_64\", reference:\"lib64tasn1-devel-3.6-1.2.mbs2\")) flag++;\nif (rpm_check(release:\"MDK-MBS2\", cpu:\"x86_64\", reference:\"lib64tasn1_6-3.6-1.2.mbs2\")) flag++;\nif (rpm_check(release:\"MDK-MBS2\", cpu:\"x86_64\", reference:\"libtasn1-tools-3.6-1.2.mbs2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:56:48", "references": ["https://www.suse.com/security/cve/CVE-2016-4008.html", "https://bugzilla.suse.com/961491", "https://bugzilla.suse.com/982779", "http://www.nessus.org/u?b55a2247", "https://bugzilla.suse.com/929414", "https://www.suse.com/security/cve/CVE-2015-3622.html"], "pluginID": "93151", "description": "This update for libtasn1 fixes the following issues :\n\n - Malformed asn1 definitions could have caused a segmentation fault in the asn1 definition parser (bsc#961491)\n\n - CVE-2015-3622: Fixed invalid read in octet string decoding (bsc#929414)\n\n - CVE-2016-4008: Fixed infinite loop while parsing DER certificates (bsc#982779)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 7, "reporter": "Tenable", "published": "2016-08-29T00:00:00", "title": "SUSE SLES11 Security Update : libtasn1 (SUSE-SU-2016:1600-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622", "CVE-2016-4008"], "modified": "2018-07-31T00:00:00", "cpe": ["cpe:/o:novell:suse_linux:11", "p-cpe:/a:novell:suse_linux:libtasn1-3", "p-cpe:/a:novell:suse_linux:libtasn1"], "id": "SUSE_SU-2016-1600-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=93151", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from SUSE update advisory SUSE-SU-2016:1600-1.\n# The text itself is copyright (C) SUSE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(93151);\n script_version(\"2.4\");\n script_cvs_date(\"Date: 2018/07/31 17:27:55\");\n\n script_cve_id(\"CVE-2015-3622\", \"CVE-2016-4008\");\n script_bugtraq_id(74419);\n\n script_name(english:\"SUSE SLES11 Security Update : libtasn1 (SUSE-SU-2016:1600-1)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SUSE host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for libtasn1 fixes the following issues :\n\n - Malformed asn1 definitions could have caused a\n segmentation fault in the asn1 definition parser\n (bsc#961491)\n\n - CVE-2015-3622: Fixed invalid read in octet string\n decoding (bsc#929414)\n\n - CVE-2016-4008: Fixed infinite loop while parsing DER\n certificates (bsc#982779)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the SUSE security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/929414\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/961491\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.suse.com/982779\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2015-3622.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.suse.com/security/cve/CVE-2016-4008.html\"\n );\n # https://www.suse.com/support/update/announcement/2016/suse-su-20161600-1.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?b55a2247\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"To install this SUSE Security Update use YaST online_update.\nAlternatively you can run the command listed for your product :\n\nSUSE Linux Enterprise Software Development Kit 11-SP4 :\n\nzypper in -t patch sdksp4-ntp-12614=1\n\nSUSE Linux Enterprise Server 11-SP4 :\n\nzypper in -t patch slessp4-ntp-12614=1\n\nSUSE Linux Enterprise Debuginfo 11-SP4 :\n\nzypper in -t patch dbgsp4-ntp-12614=1\n\nTo bring your system up-to-date, use 'zypper patch'.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libtasn1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:suse_linux:libtasn1-3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:suse_linux:11\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/06/16\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/08/29\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release !~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"SUSE\");\nos_ver = eregmatch(pattern: \"^(SLE(S|D)\\d+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"SUSE\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^(SLES11)$\", string:os_ver)) audit(AUDIT_OS_NOT, \"SUSE SLES11\", \"SUSE \" + os_ver);\n\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^i[3-6]86$\" && \"x86_64\" >!< cpu && \"s390x\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"SUSE \" + os_ver, cpu);\n\nsp = get_kb_item(\"Host/SuSE/patchlevel\");\nif (isnull(sp)) sp = \"0\";\nif (os_ver == \"SLES11\" && (! ereg(pattern:\"^(4)$\", string:sp))) audit(AUDIT_OS_NOT, \"SLES11 SP4\", os_ver + \" SP\" + sp);\n\n\nflag = 0;\nif (rpm_check(release:\"SLES11\", sp:\"4\", cpu:\"x86_64\", reference:\"libtasn1-3-32bit-1.5-1.34.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", cpu:\"s390x\", reference:\"libtasn1-3-32bit-1.5-1.34.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"libtasn1-1.5-1.34.1\")) flag++;\nif (rpm_check(release:\"SLES11\", sp:\"4\", reference:\"libtasn1-3-1.5-1.34.1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libtasn1\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:32:43", "references": ["http://www.nessus.org/u?31376c69"], "pluginID": "103010", "description": "According to the versions of the libtasn1 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :\n\n - A heap-based buffer overflow flaw was found in the way the libtasn1 library decoded certain DER-encoded inputs. A specially crafted DER-encoded input could cause an application using libtasn1 to perform an invalid read, causing the application to crash.\n (CVE-2015-3622)\n\n - A stack-based buffer overflow was found in the way libtasn1 decoded certain DER encoded data. An attacker could use this flaw to crash an application using the libtasn1 library. (CVE-2015-2806)\n\nNote that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 14, "reporter": "Tenable", "published": "2017-09-08T00:00:00", "title": "EulerOS 2.0 SP2 : libtasn1 (EulerOS-SA-2017-1172)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Huawei Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622", "CVE-2015-2806"], "modified": "2018-08-10T00:00:00", "cpe": ["p-cpe:/a:huawei:euleros:libtasn1-devel", "p-cpe:/a:huawei:euleros:libtasn1", "cpe:/o:huawei:euleros:2.0"], "id": "EULEROS_SA-2017-1172.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=103010", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(103010);\n script_version(\"3.9\");\n script_cvs_date(\"Date: 2018/08/10 15:55:08\");\n\n script_cve_id(\n \"CVE-2015-2806\",\n \"CVE-2015-3622\"\n );\n script_bugtraq_id(\n 73436,\n 74419\n );\n\n script_name(english:\"EulerOS 2.0 SP2 : libtasn1 (EulerOS-SA-2017-1172)\");\n script_summary(english:\"Checks the rpm output for the updated packages.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote EulerOS host is missing multiple security updates.\");\n script_set_attribute(attribute:\"description\", value:\n\"According to the versions of the libtasn1 packages installed, the\nEulerOS installation on the remote host is affected by the following\nvulnerabilities :\n\n - A heap-based buffer overflow flaw was found in the way\n the libtasn1 library decoded certain DER-encoded\n inputs. A specially crafted DER-encoded input could\n cause an application using libtasn1 to perform an\n invalid read, causing the application to crash.\n (CVE-2015-3622)\n\n - A stack-based buffer overflow was found in the way\n libtasn1 decoded certain DER encoded data. An attacker\n could use this flaw to crash an application using the\n libtasn1 library. (CVE-2015-2806)\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the EulerOS security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\");\n # http://developer.huawei.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2017-1172\n script_set_attribute(attribute:\"see_also\", value:\"http://www.nessus.org/u?31376c69\");\n script_set_attribute(attribute:\"solution\", value:\n\"Update the affected libtasn1 packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/15\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:libtasn1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:huawei:euleros:libtasn1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:huawei:euleros:2.0\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/09/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Huawei Local Security Checks\");\n\n script_copyright(english:\"This script is Copyright (C) 2017-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/EulerOS/release\", \"Host/EulerOS/rpm-list\", \"Host/EulerOS/sp\");\n script_exclude_keys(\"Host/EulerOS/uvp_version\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/EulerOS/release\");\nif (isnull(release) || release !~ \"^EulerOS\") audit(AUDIT_OS_NOT, \"EulerOS\");\nif (release !~ \"^EulerOS release 2\\.0(\\D|$)\") audit(AUDIT_OS_NOT, \"EulerOS 2.0\");\n\nsp = get_kb_item(\"Host/EulerOS/sp\");\nif (isnull(sp) || sp !~ \"^(2)$\") audit(AUDIT_OS_NOT, \"EulerOS 2.0 SP2\");\n\nuvp = get_kb_item(\"Host/EulerOS/uvp_version\");\nif (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, \"EulerOS 2.0 SP2\", \"EulerOS UVP \" + uvp);\n\nif (!get_kb_item(\"Host/EulerOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"EulerOS\", cpu);\n\nflag = 0;\n\npkgs = [\"libtasn1-4.10-1\",\n \"libtasn1-devel-4.10-1\"];\n\nforeach (pkg in pkgs)\n if (rpm_check(release:\"EulerOS-2.0\", sp:\"2\", reference:pkg, allowmaj:TRUE)) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_HOLE,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libtasn1\");\n}\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:36:38", "references": ["http://www.nessus.org/u?d3ddcef2"], "pluginID": "102739", "description": "An update for libtasn1 is now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.\n\nLibtasn1 is a library that provides Abstract Syntax Notation One (ASN.1, as specified by the X.680 ITU-T recommendation) parsing and structures management, and Distinguished Encoding Rules (DER, as per X.690) encoding and decoding functions.\n\nThe following packages have been upgraded to a later upstream version:\nlibtasn1 (4.10). (BZ#1360639)\n\nSecurity Fix(es) :\n\n* A heap-based buffer overflow flaw was found in the way the libtasn1 library decoded certain DER-encoded inputs. A specially crafted DER-encoded input could cause an application using libtasn1 to perform an invalid read, causing the application to crash. (CVE-2015-3622)\n\n* A stack-based buffer overflow was found in the way libtasn1 decoded certain DER encoded data. An attacker could use this flaw to crash an application using the libtasn1 library. (CVE-2015-2806)\n\nAdditional Changes :\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the References section.", "edition": 5, "reporter": "Tenable", "published": "2017-08-25T00:00:00", "title": "CentOS 7 : libtasn1 (CESA-2017:1860)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622", "CVE-2015-2806"], "modified": "2018-07-02T00:00:00", "cpe": ["p-cpe:/a:centos:centos:libtasn1", "cpe:/o:centos:centos:7", "p-cpe:/a:centos:centos:libtasn1-tools", "p-cpe:/a:centos:centos:libtasn1-devel"], "id": "CENTOS_RHSA-2017-1860.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=102739", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2017:1860 and \n# CentOS Errata and Security Advisory 2017:1860 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102739);\n script_version(\"3.2\");\n script_cvs_date(\"Date: 2018/07/02 18:48:54\");\n\n script_cve_id(\"CVE-2015-2806\", \"CVE-2015-3622\");\n script_xref(name:\"RHSA\", value:\"2017:1860\");\n\n script_name(english:\"CentOS 7 : libtasn1 (CESA-2017:1860)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"An update for libtasn1 is now available for Red Hat Enterprise Linux\n7.\n\nRed Hat Product Security has rated this update as having a security\nimpact of Moderate. A Common Vulnerability Scoring System (CVSS) base\nscore, which gives a detailed severity rating, is available for each\nvulnerability from the CVE link(s) in the References section.\n\nLibtasn1 is a library that provides Abstract Syntax Notation One\n(ASN.1, as specified by the X.680 ITU-T recommendation) parsing and\nstructures management, and Distinguished Encoding Rules (DER, as per\nX.690) encoding and decoding functions.\n\nThe following packages have been upgraded to a later upstream version:\nlibtasn1 (4.10). (BZ#1360639)\n\nSecurity Fix(es) :\n\n* A heap-based buffer overflow flaw was found in the way the libtasn1\nlibrary decoded certain DER-encoded inputs. A specially crafted\nDER-encoded input could cause an application using libtasn1 to perform\nan invalid read, causing the application to crash. (CVE-2015-3622)\n\n* A stack-based buffer overflow was found in the way libtasn1 decoded\ncertain DER encoded data. An attacker could use this flaw to crash an\napplication using the libtasn1 library. (CVE-2015-2806)\n\nAdditional Changes :\n\nFor detailed information on changes in this release, see the Red Hat\nEnterprise Linux 7.4 Release Notes linked from the References section.\"\n );\n # http://lists.centos.org/pipermail/centos-cr-announce/2017-August/004322.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?d3ddcef2\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libtasn1 packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:libtasn1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:libtasn1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:libtasn1-tools\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:7\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/23\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/08/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"libtasn1-4.10-1.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"libtasn1-devel-4.10-1.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"libtasn1-tools-4.10-1.el7\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2018-09-01T23:47:23", "references": ["https://bugzilla.opensuse.org/show_bug.cgi?id=929414", "https://bugzilla.opensuse.org/show_bug.cgi?id=961491", "https://bugzilla.opensuse.org/show_bug.cgi?id=982779"], "pluginID": "91868", "description": "This update for libtasn1 fixes the following issues :\n\n - Malformed asn1 definitions could have caused a segmentation fault in the asn1 definition parser (bsc#961491)\n\n - CVE-2015-3622: Fixed invalid read in octet string decoding (bsc#929414)\n\n - CVE-2016-4008: Fixed infinite loop while parsing DER certificates (bsc#982779)\n\nThis update was imported from the SUSE:SLE-12:Update update project.", "edition": 5, "reporter": "Tenable", "published": "2016-06-28T00:00:00", "title": "openSUSE Security Update : libtasn1 (openSUSE-2016-773)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622", "CVE-2016-4008"], "modified": "2016-10-13T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:libtasn1-6", "p-cpe:/a:novell:opensuse:libtasn1-devel", "p-cpe:/a:novell:opensuse:libtasn1-6-debuginfo", "p-cpe:/a:novell:opensuse:libtasn1", "p-cpe:/a:novell:opensuse:libtasn1-debuginfo", "cpe:/o:novell:opensuse:42.1", "p-cpe:/a:novell:opensuse:libtasn1-6-32bit", "p-cpe:/a:novell:opensuse:libtasn1-6-debuginfo-32bit", "p-cpe:/a:novell:opensuse:libtasn1-debugsource", "p-cpe:/a:novell:opensuse:libtasn1-devel-32bit"], "id": "OPENSUSE-2016-773.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=91868", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2016-773.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(91868);\n script_version(\"$Revision: 2.2 $\");\n script_cvs_date(\"$Date: 2016/10/13 14:37:12 $\");\n\n script_cve_id(\"CVE-2015-3622\", \"CVE-2016-4008\");\n\n script_name(english:\"openSUSE Security Update : libtasn1 (openSUSE-2016-773)\");\n script_summary(english:\"Check for the openSUSE-2016-773 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for libtasn1 fixes the following issues :\n\n - Malformed asn1 definitions could have caused a\n segmentation fault in the asn1 definition parser\n (bsc#961491)\n\n - CVE-2015-3622: Fixed invalid read in octet string\n decoding (bsc#929414)\n\n - CVE-2016-4008: Fixed infinite loop while parsing DER\n certificates (bsc#982779)\n\nThis update was imported from the SUSE:SLE-12:Update update project.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=929414\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=961491\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=982779\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected libtasn1 packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtasn1\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtasn1-6\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtasn1-6-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtasn1-6-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtasn1-6-debuginfo-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtasn1-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtasn1-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtasn1-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:libtasn1-devel-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:42.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2016/06/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2016/06/28\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2016 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE42\\.1)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"42.1\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libtasn1-3.7-12.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libtasn1-6-3.7-12.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libtasn1-6-debuginfo-3.7-12.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libtasn1-debuginfo-3.7-12.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libtasn1-debugsource-3.7-12.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", reference:\"libtasn1-devel-3.7-12.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libtasn1-6-32bit-3.7-12.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libtasn1-6-debuginfo-32bit-3.7-12.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.1\", cpu:\"x86_64\", reference:\"libtasn1-devel-32bit-3.7-12.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"libtasn1 / libtasn1-6 / libtasn1-6-32bit / libtasn1-6-debuginfo / etc\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:08:59", "references": ["http://www.nessus.org/u?a2b303dd"], "pluginID": "102647", "description": "The following packages have been upgraded to a later upstream version:\nlibtasn1 (4.10).\n\nSecurity Fix(es) :\n\n - A heap-based buffer overflow flaw was found in the way the libtasn1 library decoded certain DER-encoded inputs.\n A specially crafted DER- encoded input could cause an application using libtasn1 to perform an invalid read, causing the application to crash. (CVE-2015-3622)\n\n - A stack-based buffer overflow was found in the way libtasn1 decoded certain DER encoded data. An attacker could use this flaw to crash an application using the libtasn1 library. (CVE-2015-2806)", "edition": 4, "reporter": "Tenable", "published": "2017-08-22T00:00:00", "title": "Scientific Linux Security Update : libtasn1 on SL7.x x86_64", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Scientific Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-3622", "CVE-2015-2806"], "modified": "2017-08-22T00:00:00", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "id": "SL_20170801_LIBTASN1_ON_SL7_X.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=102647", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102647);\n script_version(\"$Revision: 3.1 $\");\n script_cvs_date(\"$Date: 2017/08/22 13:51:45 $\");\n\n script_cve_id(\"CVE-2015-2806\", \"CVE-2015-3622\");\n\n script_name(english:\"Scientific Linux Security Update : libtasn1 on SL7.x x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The following packages have been upgraded to a later upstream version:\nlibtasn1 (4.10).\n\nSecurity Fix(es) :\n\n - A heap-based buffer overflow flaw was found in the way\n the libtasn1 library decoded certain DER-encoded inputs.\n A specially crafted DER- encoded input could cause an\n application using libtasn1 to perform an invalid read,\n causing the application to crash. (CVE-2015-3622)\n\n - A stack-based buffer overflow was found in the way\n libtasn1 decoded certain DER encoded data. An attacker\n could use this flaw to crash an application using the\n libtasn1 library. (CVE-2015-2806)\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind1708&L=scientific-linux-errata&F=&S=&P=11423\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a2b303dd\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/08/01\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/08/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"libtasn1-4.10-1.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"libtasn1-debuginfo-4.10-1.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"libtasn1-devel-4.10-1.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"libtasn1-tools-4.10-1.el7\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "debian": [{"lastseen": "2016-09-02T18:26:02", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.2-3+deb8u1", "packageFilename": "libtasn1-3-bin_4.2-3+deb8u1_all.deb", "packageName": "libtasn1-3-bin", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.2-3+deb8u1", "packageFilename": "libtasn1-6-dev_4.2-3+deb8u1_all.deb", "packageName": "libtasn1-6-dev", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.2-3+deb8u1", "packageFilename": "libtasn1-doc_4.2-3+deb8u1_all.deb", "packageName": "libtasn1-doc", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.2-3+deb8u1", "packageFilename": "libtasn1-6-dbg_4.2-3+deb8u1_all.deb", "packageName": "libtasn1-6-dbg", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.2-3+deb8u1", "packageFilename": "libtasn1-bin_4.2-3+deb8u1_all.deb", "packageName": "libtasn1-bin", "arch": "all", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "4.2-3+deb8u1", "packageFilename": "libtasn1-6_4.2-3+deb8u1_all.deb", "packageName": "libtasn1-6", "arch": "all", "operator": "lt"}], "description": "Hanno Boeck discovered a heap-based buffer overflow flaw in the way Libtasn1, a library to manage ASN.1 structures, decoded certain DER-encoded input. A specially crafted DER-encoded input could cause an application using the Libtasn1 library to crash, or potentially to execute arbitrary code.\n\nFor the stable distribution (jessie), this problem has been fixed in version 4.2-3+deb8u1.\n\nFor the testing distribution (stretch), this problem has been fixed in version 4.4-3.\n\nFor the unstable distribution (sid), this problem has been fixed in version 4.4-3.\n\nWe recommend that you upgrade your libtasn1-6 packages.", "edition": 1, "reporter": "Debian", "published": "2015-05-10T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "libtasn1-6 -- security update", "type": "debian", "bulletinFamily": "unix", "cvelist": ["CVE-2015-3622"], "modified": "2015-05-10T00:00:00", "id": "DSA-3256", "href": "http://www.debian.org/security/dsa-3256", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:08:28", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2015-3622"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "14.10", "packageVersion": "4.0-2ubuntu0.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libtasn1-6", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "3.4-3ubuntu0.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libtasn1-6", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "12.04", "packageVersion": "2.10-1ubuntu1.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libtasn1-3", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "15.04", "packageVersion": "4.2-2ubuntu1.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "libtasn1-6", "operator": "lt"}], "description": "Hanno B\u00f6ck discovered that Libtasn1 incorrectly handled certain ASN.1 data. A remote attacker could possibly exploit this with specially crafted ASN.1 data and cause applications using Libtasn1 to crash, resulting in a denial of service, or possibly execute arbitrary code.", "edition": 3, "reporter": "Ubuntu", "published": "2015-05-11T00:00:00", "title": "Libtasn1 vulnerability", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-3622"], "modified": "2015-05-11T00:00:00", "id": "USN-2604-1", "href": "https://usn.ubuntu.com/2604-1/", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:58", "references": [], "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n _______________________________________________________________________\r\n\r\n Mandriva Linux Security Advisory MDVSA-2015:232\r\n http://www.mandriva.com/en/support/security/\r\n _______________________________________________________________________\r\n\r\n Package : libtasn1\r\n Date : May 8, 2015\r\n Affected: Business Server 1.0, Business Server 2.0\r\n _______________________________________________________________________\r\n\r\n Problem Description:\r\n\r\n Updated libtasn1 packages fix security vulnerability:\r\n \r\n A malformed certificate input could cause a heap overflow read in the\r\n DER decoding functions of Libtasn1. The heap overflow happens in the\r\n function _asn1_extract_der_octet() (CVE-2015-3622).\r\n _______________________________________________________________________\r\n\r\n References:\r\n\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3622\r\n http://advisories.mageia.org/MGASA-2015-0200.html\r\n _______________________________________________________________________\r\n\r\n Updated Packages:\r\n\r\n Mandriva Business Server 1/X86_64:\r\n 4bc7773a89eaf2b4a604b109a92d075f mbs1/x86_64/lib64tasn1_6-3.6-1.5.mbs1.x86_64.rpm\r\n 930100232484cf13e36dfac29fa17357 mbs1/x86_64/lib64tasn1-devel-3.6-1.5.mbs1.x86_64.rpm\r\n 5bd5f7ea2ffd134e87bca1b91d49c6d3 mbs1/x86_64/libtasn1-tools-3.6-1.5.mbs1.x86_64.rpm \r\n 6cfc88e6b24f8297ce5a7bc7d6d035e8 mbs1/SRPMS/libtasn1-3.6-1.5.mbs1.src.rpm\r\n\r\n Mandriva Business Server 2/X86_64:\r\n b5a3ffa1c79eb3aad4895d4b99ed59e2 mbs2/x86_64/lib64tasn1_6-3.6-1.2.mbs2.x86_64.rpm\r\n f16c5434df06bcc5c4528ef85bca229c mbs2/x86_64/lib64tasn1-devel-3.6-1.2.mbs2.x86_64.rpm\r\n 6778a6b9107dc7617641527c58f4e3fb mbs2/x86_64/libtasn1-tools-3.6-1.2.mbs2.x86_64.rpm \r\n 16d66ba91bb3f49c24db63704610cffd mbs2/SRPMS/libtasn1-3.6-1.2.mbs2.src.rpm\r\n _______________________________________________________________________\r\n\r\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\r\n of md5 checksums and GPG signatures is performed automatically for you.\r\n\r\n All packages are signed by Mandriva for security. You can obtain the\r\n GPG public key of the Mandriva Security Team by executing:\r\n\r\n gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\r\n\r\n You can view other update advisories for Mandriva Linux at:\r\n\r\n http://www.mandriva.com/en/support/security/advisories/\r\n\r\n If you want to report vulnerabilities, please contact\r\n\r\n security_(at)_mandriva.com\r\n _______________________________________________________________________\r\n\r\n Type Bits/KeyID Date User ID\r\n pub 1024D/22458A98 2000-07-10 Mandriva Security Team\r\n <security*mandriva.com>\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.12 (GNU/Linux)\r\n\r\niD8DBQFVTGttmqjQ0CJFipgRApHWAKDb3T0wA/bzK5wK8/1W+1jKH512iQCg3DVH\r\nKhQCzIL9r1wW18TmNIpg9l8=\r\n=5Y0W\r\n-----END PGP SIGNATURE-----\r\n\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2015-05-10T00:00:00", "title": "[ MDVSA-2015:232 ] libtasn1", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:58", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2015-3622"], "modified": "2015-05-10T00:00:00", "id": "SECURITYVULNS:DOC:32009", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:32009", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:00", "references": ["https://vulners.com/securityvulns/securityvulns:doc:32009"], "description": "Heap buffer overflow on DER decoding.", "edition": 1, "reporter": "BUGTRAQ", "published": "2015-05-10T00:00:00", "title": "libtasn1 buffer overflow", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:00", "vector": "NONE", "value": 7.5}}, "bulletinFamily": "software", "affectedSoftware": [{"name": "libtasn1", "version": "3.6", "operator": "eq"}], "cvelist": ["CVE-2015-3622"], "modified": "2015-05-10T00:00:00", "id": "SECURITYVULNS:VULN:14451", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:14451", "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "redhat": [{"lastseen": "2018-04-15T18:29:50", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.aarch64.rpm", "packageName": "libtasn1", "arch": "aarch64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.i686.rpm", "packageName": "libtasn1", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.ppc.rpm", "packageName": "libtasn1", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.ppc64.rpm", "packageName": "libtasn1", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.ppc64le.rpm", "packageName": "libtasn1", "arch": "ppc64le", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.s390.rpm", "packageName": "libtasn1", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.s390x.rpm", "packageName": "libtasn1", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.src.rpm", "packageName": "libtasn1", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-debuginfo-4.10-1.el7.aarch64.rpm", "packageName": "libtasn1-debuginfo", "arch": "aarch64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-debuginfo-4.10-1.el7.i686.rpm", "packageName": "libtasn1-debuginfo", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-debuginfo-4.10-1.el7.ppc.rpm", "packageName": "libtasn1-debuginfo", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-debuginfo-4.10-1.el7.ppc64.rpm", "packageName": "libtasn1-debuginfo", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-debuginfo-4.10-1.el7.ppc64le.rpm", "packageName": "libtasn1-debuginfo", "arch": "ppc64le", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-debuginfo-4.10-1.el7.s390.rpm", "packageName": "libtasn1-debuginfo", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-debuginfo-4.10-1.el7.s390x.rpm", "packageName": "libtasn1-debuginfo", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-debuginfo-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1-debuginfo", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.aarch64.rpm", "packageName": "libtasn1-devel", "arch": "aarch64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.i686.rpm", "packageName": "libtasn1-devel", "arch": "i686", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.ppc.rpm", "packageName": "libtasn1-devel", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.ppc64.rpm", "packageName": "libtasn1-devel", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.ppc64le.rpm", "packageName": "libtasn1-devel", "arch": "ppc64le", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.s390.rpm", "packageName": "libtasn1-devel", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.s390x.rpm", "packageName": "libtasn1-devel", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-tools-4.10-1.el7.aarch64.rpm", "packageName": "libtasn1-tools", "arch": "aarch64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-tools-4.10-1.el7.ppc64.rpm", "packageName": "libtasn1-tools", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-tools-4.10-1.el7.ppc64le.rpm", "packageName": "libtasn1-tools", "arch": "ppc64le", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-tools-4.10-1.el7.s390x.rpm", "packageName": "libtasn1-tools", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-tools-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1-tools", "arch": "x86_64", "operator": "lt"}], "description": "Libtasn1 is a library that provides Abstract Syntax Notation One (ASN.1, as specified by the X.680 ITU-T recommendation) parsing and structures management, and Distinguished Encoding Rules (DER, as per X.690) encoding and decoding functions.\n\nThe following packages have been upgraded to a later upstream version: libtasn1 (4.10). (BZ#1360639)\n\nSecurity Fix(es):\n\n* A heap-based buffer overflow flaw was found in the way the libtasn1 library decoded certain DER-encoded inputs. A specially crafted DER-encoded input could cause an application using libtasn1 to perform an invalid read, causing the application to crash. (CVE-2015-3622)\n\n* A stack-based buffer overflow was found in the way libtasn1 decoded certain DER encoded data. An attacker could use this flaw to crash an application using the libtasn1 library. (CVE-2015-2806)\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the References section.", "reporter": "RedHat", "published": "2017-08-01T09:55:26", "type": "redhat", "title": "(RHSA-2017:1860) Moderate: libtasn1 security, bug fix, and enhancement update", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-2806", "CVE-2015-3622"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2018-04-12T03:33:37", "id": "RHSA-2017:1860", "href": "https://access.redhat.com/errata/RHSA-2017:1860", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "gentoo": [{"lastseen": "2016-09-06T19:47:05", "references": ["http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-2806", "https://bugs.gentoo.org/show_bug.cgi?id=544922", "http://nvd.nist.gov/nvd.cfm?cvename=CVE-2015-3622", "https://bugs.gentoo.org/show_bug.cgi?id=548252"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "1.4.5", "packageFilename": "UNKNOWN", "packageName": "dev-libs/libtasn1", "arch": "all", "operator": "lt"}], "description": "### Background\n\nlibtasn1 is an ASN.1 library\n\n### Description\n\nMultiple vulnerabilities have been discovered in libtasn1. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA remote attacker could possibly execute arbitrary code with the privileges of the process, or cause a Denial of Service condition. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll libtasn1 users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=dev-libs/libtasn1-1.4.5\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2015-09-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "type": "gentoo", "title": "libtasn1: Multiple vulnerabilities", "bulletinFamily": "unix", "cvelist": ["CVE-2015-3622", "CVE-2015-2806"], "modified": "2015-09-24T00:00:00", "id": "GLSA-201509-04", "href": "https://security.gentoo.org/glsa/201509-04", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "centos": [{"lastseen": "2017-10-03T18:26:07", "references": ["https://access.redhat.com/errata/RHSA-2017:1860"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-tools-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1-tools", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.i686.rpm", "packageName": "libtasn1-devel", "arch": "i686", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-devel-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1-devel", "arch": "x86_64", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "7", "packageVersion": "4.10-1.el7", "packageFilename": "libtasn1-4.10-1.el7.i686.rpm", "packageName": "libtasn1", "arch": "i686", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2017:1860\n\n\nLibtasn1 is a library that provides Abstract Syntax Notation One (ASN.1, as specified by the X.680 ITU-T recommendation) parsing and structures management, and Distinguished Encoding Rules (DER, as per X.690) encoding and decoding functions.\n\nThe following packages have been upgraded to a later upstream version: libtasn1 (4.10). (BZ#1360639)\n\nSecurity Fix(es):\n\n* A heap-based buffer overflow flaw was found in the way the libtasn1 library decoded certain DER-encoded inputs. A specially crafted DER-encoded input could cause an application using libtasn1 to perform an invalid read, causing the application to crash. (CVE-2015-3622)\n\n* A stack-based buffer overflow was found in the way libtasn1 decoded certain DER encoded data. An attacker could use this flaw to crash an application using the libtasn1 library. (CVE-2015-2806)\n\nAdditional Changes:\n\nFor detailed information on changes in this release, see the Red Hat Enterprise Linux 7.4 Release Notes linked from the References section.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-cr-announce/2017-August/004322.html\n\n**Affected packages:**\nlibtasn1\nlibtasn1-devel\nlibtasn1-tools\n\n**Upstream details at:**\n", "edition": 1, "reporter": "CentOS Project", "published": "2017-08-24T01:39:20", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "libtasn1 security update", "type": "centos", "bulletinFamily": "unix", "cvelist": ["CVE-2015-3622", "CVE-2015-2806"], "modified": "2017-08-24T01:39:20", "href": "http://lists.centos.org/pipermail/centos-cr-announce/2017-August/004322.html", "id": "CESA-2017:1860", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:49:30", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "4.10-1.el7", "arch": "x86_64", "packageFilename": "libtasn1-tools-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1-tools", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "4.10-1.el7", "arch": "src", "packageFilename": "libtasn1-4.10-1.el7.src.rpm", "packageName": "libtasn1", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "4.10-1.el7", "arch": "i686", "packageFilename": "libtasn1-4.10-1.el7.i686.rpm", "packageName": "libtasn1", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "4.10-1.el7", "arch": "x86_64", "packageFilename": "libtasn1-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "4.10-1.el7", "arch": "x86_64", "packageFilename": "libtasn1-devel-4.10-1.el7.x86_64.rpm", "packageName": "libtasn1-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "7", "packageVersion": "4.10-1.el7", "arch": "i686", "packageFilename": "libtasn1-devel-4.10-1.el7.i686.rpm", "packageName": "libtasn1-devel", "operator": "lt"}], "description": "[4.10-1]\n- Updated to the 4.x branch (#1360639)", "edition": 3, "reporter": "Oracle", "published": "2017-08-07T00:00:00", "title": "libtasn1 security, bug fix, and enhancement update", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 10.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2015-3622", "CVE-2015-2806"], "modified": "2017-08-07T00:00:00", "id": "ELSA-2017-1860", "href": "http://linux.oracle.com/errata/ELSA-2017-1860.html", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "suse": [{"lastseen": "2017-10-11T05:54:20", "references": ["https://bugzilla.suse.com/975726", "https://bugzilla.suse.com/1056193"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12sp1-docker-image-1.0.7-20171002.s390x.rpm", "packageName": "sles12sp1-docker-image-1.0.7", "arch": "s390x", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12sp1-docker-image-1.0.7-20171002.x86_64.rpm", "packageName": "sles12sp1-docker-image-1.0.7", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12sp1-docker-image-1.0.7-20171002.ppc64le.rpm", "packageName": "sles12sp1-docker-image-1.0.7", "arch": "ppc64le", "operator": "lt"}], "description": "The SUSE Linux Enterprise Server 12 SP1 container image has been updated\n to include security and stability fixes.\n\n The following issues related to building of the container images have been\n fixed:\n\n - Included krb5 package to avoid the inclusion of krb5-mini which gets\n selected as a dependency by the Build Service solver. (bsc#1056193)\n - Do not install recommended packages when building container images.\n (bsc#975726)\n\n A number of security issues that have been already fixed by updates\n released for SUSE Linux Enterprise Server 12 SP1 are now included in the\n base image. A package/CVE cross-reference is available below.\n\n pam:\n\n - CVE-2015-3238\n\n libtasn1:\n\n - CVE-2015-3622\n - CVE-2016-4008\n\n expat:\n\n expat:\n\n - CVE-2012-6702\n - CVE-2015-1283\n - CVE-2016-0718\n - CVE-2016-5300\n - CVE-2016-9063\n - CVE-2017-9233\n\n libidn:\n\n - CVE-2015-2059\n - CVE-2015-8948\n - CVE-2016-6261\n - CVE-2016-6262\n - CVE-2016-6263\n\n\n zlib:\n\n - CVE-2016-9840\n - CVE-2016-9841\n - CVE-2016-9842\n - CVE-2016-9843\n\n curl:\n\n - CVE-2016-5419\n - CVE-2016-5420\n - CVE-2016-5421\n - CVE-2016-7141\n - CVE-2016-7167\n - CVE-2016-8615\n - CVE-2016-8616\n - CVE-2016-8617\n - CVE-2016-8618\n - CVE-2016-8619\n - CVE-2016-8620\n - CVE-2016-8621\n - CVE-2016-8622\n - CVE-2016-8623\n - CVE-2016-8624\n - CVE-2016-9586\n - CVE-2017-1000100\n - CVE-2017-1000101\n - CVE-2017-7407\n\n openssl:\n\n - CVE-2016-2105\n - CVE-2016-2106\n - CVE-2016-2107\n - CVE-2016-2108\n - CVE-2016-2109\n - CVE-2016-2177\n - CVE-2016-2178\n - CVE-2016-2179\n - CVE-2016-2180\n - CVE-2016-2181\n - CVE-2016-2182\n - CVE-2016-2183\n - CVE-2016-6302\n - CVE-2016-6303\n - CVE-2016-6304\n - CVE-2016-6306\n - CVE-2016-7056\n - CVE-2016-8610\n - CVE-2017-3731\n\n cracklib:\n\n - CVE-2016-6318\n\n pcre:\n\n - CVE-2014-8964\n - CVE-2015-2325\n - CVE-2015-2327\n - CVE-2015-2328\n - CVE-2015-3210\n - CVE-2015-3217\n - CVE-2015-5073\n - CVE-2015-8380\n - CVE-2015-8381\n - CVE-2015-8382\n - CVE-2015-8383\n - CVE-2015-8384\n - CVE-2015-8385\n - CVE-2015-8386\n - CVE-2015-8387\n - CVE-2015-8388\n - CVE-2015-8389\n - CVE-2015-8390\n - CVE-2015-8391\n - CVE-2015-8392\n - CVE-2015-8393\n - CVE-2015-8394\n - CVE-2015-8395\n - CVE-2016-1283\n - CVE-2016-3191\n\n appamor:\n\n - CVE-2017-6507\n\n bash:\n\n - CVE-2014-6277\n - CVE-2014-6278\n - CVE-2016-0634\n - CVE-2016-7543\n\n cpio:\n\n - CVE-2016-2037\n\n glibc:\n\n - CVE-2016-1234\n - CVE-2016-3075\n - CVE-2016-3706\n - CVE-2016-4429\n - CVE-2017-1000366\n\n perl:\n\n - CVE-2015-8853\n - CVE-2016-1238\n - CVE-2016-2381\n - CVE-2016-6185\n\n libssh2_org:\n\n - CVE-2016-0787\n\n util-linux:\n\n - CVE-2016-5011\n - CVE-2017-2616\n\n ncurses:\n\n - CVE-2017-10684\n - CVE-2017-10685\n - CVE-2017-11112\n - CVE-2017-11113\n\n libksba:\n\n - CVE-2016-4574\n - CVE-2016-4579\n\n libxml2:\n\n - CVE-2014-0191\n - CVE-2015-8806\n - CVE-2016-1762\n - CVE-2016-1833\n - CVE-2016-1834\n - CVE-2016-1835\n - CVE-2016-1837\n - CVE-2016-1838\n - CVE-2016-1839\n - CVE-2016-1840\n - CVE-2016-2073\n - CVE-2016-3627\n - CVE-2016-3705\n - CVE-2016-4447\n - CVE-2016-4448\n - CVE-2016-4449\n - CVE-2016-4483\n - CVE-2016-4658\n - CVE-2016-9318\n - CVE-2016-9597\n - CVE-2017-9047\n - CVE-2017-9048\n - CVE-2017-9049\n - CVE-2017-9050\n\n libgcrypt:\n\n - CVE-2015-7511\n - CVE-2016-6313\n - CVE-2017-7526\n\n update-alternatives:\n\n - CVE-2015-0860\n\n systemd:\n\n - CVE-2014-9770\n - CVE-2015-8842\n - CVE-2016-7796\n\n dbus-1:\n\n - CVE-2014-7824\n - CVE-2015-0245\n\n Finally, the following packages received non-security fixes:\n\n - augeas\n - bzip2\n - ca-certificates-mozilla\n - coreutils\n - cryptsetup\n - cyrus-sasl\n - dirmngr\n - e2fsprogs\n - findutils\n - gpg2\n - insserv-compat\n - kmod\n - libcap\n - libsolv\n - libzypp\n - lua51\n - lvm2\n - netcfg\n - p11-kit\n - permissions\n - procps\n - rpm\n - sed\n - sg3_utils\n - shadow\n - zypper\n\n", "edition": 1, "reporter": "Suse", "published": "2017-10-11T03:07:32", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Security update for SLES 12-SP1 Docker image (important)", "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2016-6262", "CVE-2016-7056", "CVE-2017-7407", "CVE-2015-8388", "CVE-2016-8620", "CVE-2016-8623", "CVE-2017-9233", "CVE-2016-5420", "CVE-2016-9840", "CVE-2016-3705", "CVE-2016-1840", "CVE-2014-0191", "CVE-2016-8615", "CVE-2016-8616", "CVE-2015-5276", "CVE-2015-3210", "CVE-2015-2325", "CVE-2016-6261", "CVE-2016-8619", "CVE-2017-10685", "CVE-2016-6306", "CVE-2016-2183", "CVE-2015-0860", "CVE-2016-2178", "CVE-2015-8391", "CVE-2016-6263", "CVE-2016-2108", "CVE-2016-9063", "CVE-2016-8618", "CVE-2016-1762", "CVE-2016-6302", "CVE-2016-5300", "CVE-2015-8395", "CVE-2016-7141", "CVE-2016-1834", "CVE-2017-11112", "CVE-2016-2177", "CVE-2014-7169", "CVE-2015-8382", "CVE-2016-3627", "CVE-2015-1283", "CVE-2014-6277", "CVE-2016-2105", "CVE-2016-9318", "CVE-2016-4483", "CVE-2016-2107", "CVE-2017-3731", "CVE-2015-8386", "CVE-2014-6278", "CVE-2015-2327", "CVE-2017-9049", "CVE-2016-3075", "CVE-2016-8617", "CVE-2016-9842", "CVE-2016-7796", "CVE-2017-2616", "CVE-2016-0634", "CVE-2012-6702", "CVE-2015-3238", "CVE-2016-2180", "CVE-2016-1835", "CVE-2016-0787", "CVE-2016-8610", "CVE-2016-1234", "CVE-2016-0718", "CVE-2016-6185", "CVE-2015-8392", "CVE-2016-4574", "CVE-2015-8389", "CVE-2016-2109", "CVE-2015-8380", "CVE-2016-2181", "CVE-2016-6304", "CVE-2016-4449", "CVE-2017-9048", "CVE-2014-8964", "CVE-2015-2059", "CVE-2017-11113", "CVE-2016-1283", "CVE-2016-6313", "CVE-2016-1837", "CVE-2016-6318", "CVE-2015-3622", "CVE-2016-4448", "CVE-2016-1238", "CVE-2015-8393", "CVE-2016-1838", "CVE-2016-3706", "CVE-2016-4429", "CVE-2016-2381", "CVE-2016-7543", "CVE-2017-1000101", "CVE-2016-8622", "CVE-2015-8853", "CVE-2014-7187", "CVE-2015-8394", "CVE-2016-4008", "CVE-2014-9770", "CVE-2015-3217", "CVE-2014-6271", "CVE-2017-7526", "CVE-2016-3191", "CVE-2017-1000366", "CVE-2016-1839", "CVE-2016-8624", "CVE-2015-8384", "CVE-2016-9843", "CVE-2017-9047", "CVE-2015-8948", "CVE-2014-7824", "CVE-2015-8842", "CVE-2016-9597", "CVE-2016-6303", "CVE-2015-8383", "CVE-2017-1000100", "CVE-2015-8381", "CVE-2016-2182", "CVE-2016-5421", "CVE-2016-9586", "CVE-2015-5073", "CVE-2016-4447", "CVE-2016-5011", "CVE-2015-7511", "CVE-2015-8385", "CVE-2015-8806", "CVE-2016-9841", "CVE-2016-4579", "CVE-2015-0245", "CVE-2016-2037", "CVE-2016-2073", "CVE-2016-5419", "CVE-2015-2328", "CVE-2017-6507", "CVE-2016-4658", "CVE-2016-7167", "CVE-2017-10684", "CVE-2016-2179", "CVE-2016-2106", "CVE-2016-1833", "CVE-2015-8387", "CVE-2016-8621", "CVE-2015-8390", "CVE-2017-9050"], "modified": "2017-10-11T03:07:32", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00011.html", "id": "SUSE-SU-2017:2700-1", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}, {"lastseen": "2017-10-11T05:54:19", "references": ["https://bugzilla.suse.com/975726", "https://bugzilla.suse.com/1056193"], "affectedPackage": [{"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12-docker-image-1.1.4-20171002.x86_64.rpm", "packageName": "sles12-docker-image-1.1.4", "arch": "x86_64", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12-docker-image-1.1.4-20171002.ppc64le.rpm", "packageName": "sles12-docker-image-1.1.4", "arch": "ppc64le", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Module for Containers", "OSVersion": "12", "packageVersion": "20171002", "packageFilename": "sles12-docker-image-1.1.4-20171002.s390x.rpm", "packageName": "sles12-docker-image-1.1.4", "arch": "s390x", "operator": "lt"}], "description": "The SUSE Linux Enterprise Server 12 container image has been updated to\n include security and stability fixes.\n\n The following issues related to building of the container images have been\n fixed:\n\n - Included krb5 package to avoid the inclusion of krb5-mini which gets\n selected as a dependency by the Build Service solver. (bsc#1056193)\n - Do not install recommended packages when building container images.\n (bsc#975726)\n\n A number of security issues that have been already fixed by updates\n released for SUSE Linux Enterprise Server 12 are now included in the base\n image. A package/CVE cross-reference is available below.\n\n pam:\n\n - CVE-2015-3238\n\n libtasn1:\n\n - CVE-2015-3622\n - CVE-2016-4008\n\n libidn:\n\n - CVE-2015-2059\n - CVE-2015-8948\n - CVE-2016-6261\n - CVE-2016-6262\n - CVE-2016-6263\n\n zlib:\n\n - CVE-2016-9840\n - CVE-2016-9841\n - CVE-2016-9842\n - CVE-2016-9843\n\n curl:\n\n - CVE-2016-5419\n - CVE-2016-5420\n - CVE-2016-5421\n - CVE-2016-7141\n - CVE-2016-7167\n - CVE-2016-8615\n - CVE-2016-8616\n - CVE-2016-8617\n - CVE-2016-8618\n - CVE-2016-8619\n - CVE-2016-8620\n - CVE-2016-8621\n - CVE-2016-8622\n - CVE-2016-8623\n - CVE-2016-8624\n - CVE-2016-9586\n - CVE-2017-1000100\n - CVE-2017-1000101\n - CVE-2017-7407\n\n openssl:\n\n - CVE-2016-2105\n - CVE-2016-2106\n - CVE-2016-2107\n - CVE-2016-2108\n - CVE-2016-2109\n - CVE-2016-2177\n - CVE-2016-2178\n - CVE-2016-2179\n - CVE-2016-2180\n - CVE-2016-2181\n - CVE-2016-2182\n - CVE-2016-2183\n - CVE-2016-6302\n - CVE-2016-6303\n - CVE-2016-6304\n - CVE-2016-6306\n\n libxml2:\n\n - CVE-2014-0191\n - CVE-2015-8806\n - CVE-2016-1762\n - CVE-2016-1833\n - CVE-2016-1834\n - CVE-2016-1835\n - CVE-2016-1837\n - CVE-2016-1838\n - CVE-2016-1839\n - CVE-2016-1840\n - CVE-2016-2073\n - CVE-2016-3627\n - CVE-2016-3705\n - CVE-2016-4447\n - CVE-2016-4448\n - CVE-2016-4449\n - CVE-2016-4483\n - CVE-2016-4658\n - CVE-2016-9318\n - CVE-2016-9597\n - CVE-2017-9047\n - CVE-2017-9048\n - CVE-2017-9049\n - CVE-2017-9050\n\n util-linux:\n\n - CVE-2015-5218\n - CVE-2016-5011\n - CVE-2017-2616\n\n cracklib:\n\n - CVE-2016-6318\n\n systemd:\n\n - CVE-2014-9770\n - CVE-2015-8842\n - CVE-2016-7796\n\n pcre:\n\n - CVE-2014-8964\n - CVE-2015-2325\n - CVE-2015-2327\n - CVE-2015-2328\n - CVE-2015-3210\n - CVE-2015-3217\n - CVE-2015-5073\n - CVE-2015-8380\n - CVE-2015-8381\n - CVE-2015-8382\n - CVE-2015-8383\n - CVE-2015-8384\n - CVE-2015-8385\n - CVE-2015-8386\n - CVE-2015-8387\n - CVE-2015-8388\n - CVE-2015-8389\n - CVE-2015-8390\n - CVE-2015-8391\n - CVE-2015-8392\n - CVE-2015-8393\n - CVE-2015-8394\n - CVE-2015-8395\n - CVE-2016-1283\n - CVE-2016-3191\n\n appamor:\n\n - CVE-2017-6507\n\n bash:\n\n - CVE-2014-6277\n - CVE-2014-6278\n - CVE-2016-0634\n - CVE-2016-7543\n\n cpio:\n\n - CVE-2016-2037\n\n glibc:\n\n - CVE-2016-1234\n - CVE-2016-3075\n - CVE-2016-3706\n - CVE-2016-4429\n - CVE-2017-1000366\n\n perl:\n\n - CVE-2015-8853\n - CVE-2016-1238\n - CVE-2016-2381\n - CVE-2016-6185\n\n libssh2_org:\n\n - CVE-2016-0787\n\n expat:\n\n - CVE-2012-6702\n - CVE-2015-1283\n - CVE-2016-0718\n - CVE-2016-5300\n - CVE-2016-9063\n - CVE-2017-9233\n\n ncurses:\n\n - CVE-2017-10684\n - CVE-2017-10685\n - CVE-2017-11112\n - CVE-2017-11113\n\n libksba:\n\n - CVE-2016-4574\n - CVE-2016-4579\n\n libgcrypt:\n\n - CVE-2015-7511\n - CVE-2016-6313\n - CVE-2017-7526\n\n dbus-1:\n\n - CVE-2014-7824\n - CVE-2015-0245\n\n Finally, the following packages received non-security fixes:\n\n - augeas\n - bzip2\n - ca-certificates-mozilla\n - coreutils\n - cryptsetup\n - cyrus-sasl\n - dirmngr\n - e2fsprogs\n - findutils\n - gpg2\n - insserv-compat\n - kmod\n - libcap\n - libsolv\n - libzypp\n - openldap2\n - p11-kit\n - permissions\n - procps\n - rpm\n - sed\n - shadow\n - zypper\n\n", "edition": 1, "reporter": "Suse", "published": "2017-10-11T03:06:53", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Security update for SLES 12 Docker image (important)", "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2016-6262", "CVE-2017-7407", "CVE-2015-8388", "CVE-2016-8620", "CVE-2016-8623", "CVE-2017-9233", "CVE-2016-5420", "CVE-2016-9840", "CVE-2016-3705", "CVE-2016-1840", "CVE-2014-0191", "CVE-2016-8615", "CVE-2016-8616", "CVE-2015-5276", "CVE-2015-3210", "CVE-2015-2325", "CVE-2016-6261", "CVE-2016-8619", "CVE-2017-10685", "CVE-2016-6306", "CVE-2016-2183", "CVE-2016-2178", "CVE-2015-8391", "CVE-2016-6263", "CVE-2016-2108", "CVE-2016-9063", "CVE-2016-8618", "CVE-2016-1762", "CVE-2016-6302", "CVE-2016-5300", "CVE-2015-8395", "CVE-2016-7141", "CVE-2016-1834", "CVE-2017-11112", "CVE-2016-2177", "CVE-2014-7169", "CVE-2015-8382", "CVE-2016-3627", "CVE-2015-1283", "CVE-2014-6277", "CVE-2016-2105", "CVE-2016-9318", "CVE-2016-4483", "CVE-2016-2107", "CVE-2015-8386", "CVE-2014-6278", "CVE-2015-2327", "CVE-2017-9049", "CVE-2016-3075", "CVE-2016-8617", "CVE-2016-9842", "CVE-2016-7796", "CVE-2017-2616", "CVE-2016-0634", "CVE-2012-6702", "CVE-2015-3238", "CVE-2016-2180", "CVE-2016-1835", "CVE-2016-0787", "CVE-2016-1234", "CVE-2016-0718", "CVE-2016-6185", "CVE-2015-8392", "CVE-2016-4574", "CVE-2015-8389", "CVE-2016-2109", "CVE-2015-8380", "CVE-2016-2181", "CVE-2016-6304", "CVE-2016-4449", "CVE-2017-9048", "CVE-2014-8964", "CVE-2015-2059", "CVE-2017-11113", "CVE-2016-1283", "CVE-2016-6313", "CVE-2016-1837", "CVE-2016-6318", "CVE-2015-3622", "CVE-2016-4448", "CVE-2016-1238", "CVE-2015-8393", "CVE-2016-1838", "CVE-2016-3706", "CVE-2016-4429", "CVE-2016-2381", "CVE-2016-7543", "CVE-2017-1000101", "CVE-2016-8622", "CVE-2015-8853", "CVE-2014-7187", "CVE-2015-8394", "CVE-2016-4008", "CVE-2014-9770", "CVE-2015-3217", "CVE-2014-6271", "CVE-2017-7526", "CVE-2016-3191", "CVE-2017-1000366", "CVE-2016-1839", "CVE-2016-8624", "CVE-2015-8384", "CVE-2016-9843", "CVE-2017-9047", "CVE-2015-8948", "CVE-2014-7824", "CVE-2015-8842", "CVE-2016-9597", "CVE-2015-5218", "CVE-2016-6303", "CVE-2015-8383", "CVE-2017-1000100", "CVE-2015-8381", "CVE-2016-2182", "CVE-2016-5421", "CVE-2016-9586", "CVE-2015-5073", "CVE-2016-4447", "CVE-2016-5011", "CVE-2015-7511", "CVE-2015-8385", "CVE-2015-8806", "CVE-2016-9841", "CVE-2016-4579", "CVE-2015-0245", "CVE-2016-2037", "CVE-2016-2073", "CVE-2016-5419", "CVE-2015-2328", "CVE-2017-6507", "CVE-2016-4658", "CVE-2016-7167", "CVE-2017-10684", "CVE-2016-2179", "CVE-2016-2106", "CVE-2016-1833", "CVE-2015-8387", "CVE-2016-8621", "CVE-2015-8390", "CVE-2017-9050"], "modified": "2017-10-11T03:06:53", "href": "http://lists.opensuse.org/opensuse-security-announce/2017-10/msg00010.html", "id": "SUSE-SU-2017:2699-1", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}
