Amazon Linux AMI : nss (ALAS-2012-108)

🗓️ 04 Sep 2013 00:00:00Reported by TenableType

The nss package in Amazon Linux AMI is missing a security update (ALAS-2012-108) due to a flaw in the ASN.1 decoder handling zero length items (CVE-2012-0441). Run 'yum update nss' to update your system

Reporter	Title	Published	Views	Family All 122
Tenable Nessus	SeaMonkey 2.x < 2.10 Multiple Vulnerabilities	11 Jun 201200:00	–	nessus
Tenable Nessus	Mozilla Firefox < 13.0 Multiple Vulnerabilities	7 Jun 201200:00	–	nessus
Tenable Nessus	Mozilla Thunderbird < 13.0 Multiple Vulnerabilities	7 Jun 201200:00	–	nessus
Tenable Nessus	Mozilla Thunderbird 12.x < 12 Multiple Vulnerabilities	7 Jun 201200:00	–	nessus
Tenable Nessus	Mozilla Firefox 12.x < 12 Multiple Vulnerabilities	7 Jun 201200:00	–	nessus
Tenable Nessus	Mozilla SeaMonkey 2.x < 2.10 Multiple Vulnerabilities	11 Jun 201200:00	–	nessus
Tenable Nessus	CentOS 5 : nss (CESA-2012:1090)	18 Jul 201200:00	–	nessus
Tenable Nessus	CentOS 6 : nss (CESA-2012:1091)	18 Jul 201200:00	–	nessus
Tenable Nessus	Debian DSA-2490-1 : nss - denial of service	29 Jun 201200:00	–	nessus
Tenable Nessus	FreeBSD : mozilla -- multiple vulnerabilities (bfecf7c1-af47-11e1-9580-4061862b8c22)	6 Jun 201200:00	–	nessus

Source	Link
alas	www.alas.aws.amazon.com/ALAS-2012-108.html
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux AMI Security Advisory ALAS-2012-108.
#

include("compat.inc");

if (description)
{
  script_id(69598);
  script_version("1.6");
  script_cvs_date("Date: 2018/04/18 15:09:34");

  script_cve_id("CVE-2012-0441");
  script_xref(name:"ALAS", value:"2012-108");
  script_xref(name:"RHSA", value:"2012:1091");

  script_name(english:"Amazon Linux AMI : nss (ALAS-2012-108)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Amazon Linux AMI host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A flaw was found in the way the ASN.1 (Abstract Syntax Notation One)
decoder in NSS handled zero length items. This flaw could cause the
decoder to incorrectly skip or replace certain items with a default
value, or could cause an application to crash if, for example, it
received a specially crafted OCSP (Online Certificate Status Protocol)
response. (CVE-2012-0441)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://alas.aws.amazon.com/ALAS-2012-108.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Run 'yum update nss' to update your system."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:nss");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:nss-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:nss-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:nss-pkcs11-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:nss-sysinit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:nss-tools");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/07/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/09/04");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.");
  script_family(english:"Amazon Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "A")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux AMI", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (rpm_check(release:"ALA", reference:"nss-3.13.5-1.26.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"nss-debuginfo-3.13.5-1.26.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"nss-devel-3.13.5-1.26.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"nss-pkcs11-devel-3.13.5-1.26.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"nss-sysinit-3.13.5-1.26.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"nss-tools-3.13.5-1.26.amzn1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "nss / nss-debuginfo / nss-devel / nss-pkcs11-devel / nss-sysinit / etc");
}

18 Apr 2018 15:09Current

8High risk

Vulners AI Score8

CVSS 25

EPSS0.03581