Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.AL2_ALAS-2019-1328.NASL
HistoryOct 25, 2019 - 12:00 a.m.

Amazon Linux 2 : mercurial (ALAS-2019-1328)

2019-10-2500:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14

8 High

AI Score

Confidence

High

JSON

An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer dereference exists in the function be_uint32_read() located in endianrw.h. It can be triggered by sending a crafted file to a binary.
It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.(CVE-2019-8379)

An issue was discovered in AdvanceCOMP through 2.1. An invalid memory address occurs in the function adv_png_unfilter_8 in lib/png.c. It can be triggered by sending a crafted file to a binary. It allows an attacker to cause a Denial of Service (Segmentation fault) or possibly have unspecified other impact when a victim opens a specially crafted file.(CVE-2019-8383)

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux 2 Security Advisory ALAS-2019-1328.
#

include('compat.inc');

if (description)
{
  script_id(130224);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/17");

  script_cve_id("CVE-2019-8379", "CVE-2019-8383");
  script_xref(name:"ALAS", value:"2019-1328");

  script_name(english:"Amazon Linux 2 : mercurial (ALAS-2019-1328)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Amazon Linux 2 host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"An issue was discovered in AdvanceCOMP through 2.1. A NULL pointer
dereference exists in the function be_uint32_read() located in
endianrw.h. It can be triggered by sending a crafted file to a binary.
It allows an attacker to cause a Denial of Service (Segmentation
fault) or possibly have unspecified other impact when a victim opens a
specially crafted file.(CVE-2019-8379)

An issue was discovered in AdvanceCOMP through 2.1. An invalid memory
address occurs in the function adv_png_unfilter_8 in lib/png.c. It can
be triggered by sending a crafted file to a binary. It allows an
attacker to cause a Denial of Service (Segmentation fault) or possibly
have unspecified other impact when a victim opens a specially crafted
file.(CVE-2019-8383)");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/AL2/ALAS-2019-1328.html");
  script_set_attribute(attribute:"solution", value:
"Run 'yum update mercurial' to update your system.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-8383");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/02/17");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/10/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/10/25");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:emacs-mercurial");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:emacs-mercurial-el");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mercurial");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mercurial-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:mercurial-hgk");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux:2");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Amazon Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "2")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux 2", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (rpm_check(release:"AL2", reference:"emacs-mercurial-2.6.2-10.amzn2")) flag++;
if (rpm_check(release:"AL2", reference:"emacs-mercurial-el-2.6.2-10.amzn2")) flag++;
if (rpm_check(release:"AL2", reference:"mercurial-2.6.2-10.amzn2")) flag++;
if (rpm_check(release:"AL2", reference:"mercurial-debuginfo-2.6.2-10.amzn2")) flag++;
if (rpm_check(release:"AL2", reference:"mercurial-hgk-2.6.2-10.amzn2")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "emacs-mercurial / emacs-mercurial-el / mercurial / etc");
}
VendorProductVersionCPE
amazonlinuxemacs-mercurialp-cpe:/a:amazon:linux:emacs-mercurial
amazonlinuxemacs-mercurial-elp-cpe:/a:amazon:linux:emacs-mercurial-el
amazonlinuxmercurialp-cpe:/a:amazon:linux:mercurial
amazonlinuxmercurial-debuginfop-cpe:/a:amazon:linux:mercurial-debuginfo
amazonlinuxmercurial-hgkp-cpe:/a:amazon:linux:mercurial-hgk
amazonlinux2cpe:/o:amazon:linux:2

Related

nessus 9
osv 4
oraclelinux 2
fedora 1
openvas 4
ubuntu 1
amazon 2
ubuntucve 2
redhat 1
centos 1
debian 1
freebsd 1
redhatcve 2
veracode 2
prion 2
cve 2
debiancve 2
cvelist 2
mageia 1
nessus
nessus
Scientific Linux Security Update : advancecomp on SL7.x x86_64 (20190806)
2019-08-27 00:00:00
Oracle Linux 7 : advancecomp (ELSA-2019-2332)
2023-09-07 00:00:00
RHEL 7 : advancecomp (RHSA-2019:2332)
2019-08-12 00:00:00
osv
osv
advancecomp vulnerabilities
2022-10-12 07:21:41
advancecomp - security update
2021-12-29 00:00:00
CVE-2019-8379
2019-02-17 02:29:00
oraclelinux
oraclelinux
advancecomp security update
2019-08-13 00:00:00
advancecomp security update
2020-04-06 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: advancecomp-2.1-11.fc30
2019-06-19 22:46:11
openvas
openvas
Ubuntu: Security Advisory (USN-5671-1)
2022-10-13 00:00:00
Fedora Update for advancecomp FEDORA-2019-b30b48200c
2019-06-20 00:00:00
Debian: Security Advisory (DLA-2868-1)
2021-12-30 00:00:00
ubuntu
ubuntu
AdvanceCOMP vulnerabilities
2022-10-12 00:00:00
amazon
amazon
Low: advancecomp
2019-10-21 18:01:00
Medium: mercurial
2019-10-21 18:01:00
ubuntucve
ubuntucve
CVE-2019-8383
2019-02-17 00:00:00
CVE-2019-8379
2019-02-17 00:00:00
redhat
redhat
(RHSA-2019:2332) Low: advancecomp security update
2019-08-06 08:26:12
centos
centos
advancecomp security update
2019-08-30 02:32:37
debian
debian
[SECURITY] [DLA 2868-1] advancecomp security update
2021-12-29 21:42:50
freebsd
freebsd
advancecomp -- multiple vulnerabilities
2018-07-29 00:00:00
redhatcve
redhatcve
CVE-2019-8379
2019-10-12 02:24:15
CVE-2019-8383
2019-10-12 02:24:16
veracode
veracode
Denial Of Service (DoS)
2019-08-08 00:07:36
Denial Of Service (DoS)
2019-08-08 00:07:36
prion
prion
Null pointer dereference
2019-02-17 02:29:00
Code injection
2019-02-17 02:29:00
cve
cve
CVE-2019-8379
2019-02-17 02:29:00
CVE-2019-8383
2019-02-17 02:29:00
debiancve
debiancve
CVE-2019-8379
2019-02-17 02:29:00
CVE-2019-8383
2019-02-17 02:29:00
cvelist
cvelist
CVE-2019-8379
2019-02-17 02:00:00
CVE-2019-8383
2019-02-17 02:00:00
mageia
mageia
Updated advancecomp packages fix security vulnerability
2020-01-05 18:37:51

8 High

AI Score

Confidence

High

JSON
Related for AL2_ALAS-2019-1328.NASL
nessus9osv4oraclelinux2fedora1openvas4ubuntu1amazon2ubuntucve2redhat1centos1debian1freebsd1redhatcve2veracode2prion2cve2debiancve2cvelist2mageia1