Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2018 Tenable Network Security, Inc.ALA_ALAS-2012-147.NASL
HistorySep 04, 2013 - 12:00 a.m.

Amazon Linux AMI : libtiff (ALAS-2012-147)

2013-09-0400:00:00
This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.
www.tenable.com
9
JSON

A heap-based buffer overflow flaw was found in the way libtiff processed certain TIFF images using the Pixar Log Format encoding. An attacker could create a specially crafted TIFF file that, when opened, could cause an application using libtiff to crash or, possibly, execute arbitrary code with the privileges of the user running the application. (CVE-2012-4447)

A stack-based buffer overflow flaw was found in the way libtiff handled DOTRANGE tags. An attacker could use this flaw to create a specially crafted TIFF file that, when opened, would cause an application linked against libtiff to crash or, possibly, execute arbitrary code. (CVE-2012-5581)

A heap-based buffer overflow flaw was found in the tiff2pdf tool. An attacker could use this flaw to create a specially crafted TIFF file that would cause tiff2pdf to crash or, possibly, execute arbitrary code. (CVE-2012-3401)

A missing return value check flaw, leading to a heap-based buffer overflow, was found in the ppm2tiff tool. An attacker could use this flaw to create a specially crafted PPM (Portable Pixel Map) file that would cause ppm2tiff to crash or, possibly, execute arbitrary code.
(CVE-2012-4564)

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux AMI Security Advisory ALAS-2012-147.
#

include("compat.inc");

if (description)
{
  script_id(69637);
  script_version("1.6");
  script_cvs_date("Date: 2018/04/18 15:09:34");

  script_cve_id("CVE-2012-3401", "CVE-2012-4447", "CVE-2012-4564", "CVE-2012-5581");
  script_xref(name:"ALAS", value:"2012-147");
  script_xref(name:"RHSA", value:"2012:1590");

  script_name(english:"Amazon Linux AMI : libtiff (ALAS-2012-147)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Amazon Linux AMI host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A heap-based buffer overflow flaw was found in the way libtiff
processed certain TIFF images using the Pixar Log Format encoding. An
attacker could create a specially crafted TIFF file that, when opened,
could cause an application using libtiff to crash or, possibly,
execute arbitrary code with the privileges of the user running the
application. (CVE-2012-4447)

A stack-based buffer overflow flaw was found in the way libtiff
handled DOTRANGE tags. An attacker could use this flaw to create a
specially crafted TIFF file that, when opened, would cause an
application linked against libtiff to crash or, possibly, execute
arbitrary code. (CVE-2012-5581)

A heap-based buffer overflow flaw was found in the tiff2pdf tool. An
attacker could use this flaw to create a specially crafted TIFF file
that would cause tiff2pdf to crash or, possibly, execute arbitrary
code. (CVE-2012-3401)

A missing return value check flaw, leading to a heap-based buffer
overflow, was found in the ppm2tiff tool. An attacker could use this
flaw to create a specially crafted PPM (Portable Pixel Map) file that
would cause ppm2tiff to crash or, possibly, execute arbitrary code.
(CVE-2012-4564)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://alas.aws.amazon.com/ALAS-2012-147.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Run 'yum update libtiff' to update your system."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:libtiff");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:libtiff-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:libtiff-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:libtiff-static");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/12/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/09/04");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.");
  script_family(english:"Amazon Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "A")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux AMI", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (rpm_check(release:"ALA", reference:"libtiff-3.9.4-9.11.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"libtiff-debuginfo-3.9.4-9.11.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"libtiff-devel-3.9.4-9.11.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"libtiff-static-3.9.4-9.11.amzn1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libtiff / libtiff-debuginfo / libtiff-devel / libtiff-static");
}
VendorProductVersionCPE
amazonlinuxlibtiffp-cpe:/a:amazon:linux:libtiff
amazonlinuxlibtiff-debuginfop-cpe:/a:amazon:linux:libtiff-debuginfo
amazonlinuxlibtiff-develp-cpe:/a:amazon:linux:libtiff-devel
amazonlinuxlibtiff-staticp-cpe:/a:amazon:linux:libtiff-static
amazonlinuxcpe:/o:amazon:linux

Related

nessus 36
oraclelinux 1
veracode 4
openvas 53
redhat 1
fedora 11
amazon 1
centos 1
securityvulns 6
ubuntu 3
prion 4
ubuntucve 4
cve 4
debiancve 4
debian 4
osv 2
gentoo 2
altlinux 2
slackware 1
nessus
nessus
CentOS 5 / 6 : libtiff (CESA-2012:1590)
2012-12-20 00:00:00
Scientific Linux Security Update : libtiff on SL5.x, SL6.x i386/x86_64 (20121218)
2012-12-20 00:00:00
Oracle Linux 5 / 6 : libtiff (ELSA-2012-1590)
2013-07-12 00:00:00
oraclelinux
oraclelinux
libtiff security update
2012-12-18 00:00:00
veracode
veracode
Denial Of Service (DoS) And Remote Code Execution (RCE)
2019-05-02 04:42:00
Denial Of Service (DoS) And Remote Code Execution (RCE)
2019-05-02 04:42:00
Denial Of Service (DoS) And Remote Code Execution (RCE)
2019-05-02 04:42:00
openvas
openvas
CentOS Update for libtiff CESA-2012:1590 centos6
2012-12-26 00:00:00
RedHat Update for libtiff RHSA-2012:1590-01
2012-12-26 00:00:00
Oracle: Security Advisory (ELSA-2012-1590)
2015-10-06 00:00:00
redhat
redhat
(RHSA-2012:1590) Moderate: libtiff security update
2012-12-18 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: libtiff-4.0.3-2.fc18
2013-01-12 00:28:00
[SECURITY] Fedora 17 Update: libtiff-3.9.7-1.fc17
2012-12-31 03:28:09
[SECURITY] Fedora 16 Update: libtiff-3.9.7-1.fc16
2012-12-31 03:24:28
amazon
amazon
Medium: libtiff
2012-12-20 13:55:00
centos
centos
libtiff security update
2012-12-19 01:20:39
securityvulns
securityvulns
libtiff buffer overflow
2012-11-18 00:00:00
libtiff tiff2pdf code execution
2012-08-13 00:00:00
[ MDVSA-2012:127 ] libtiff
2012-08-13 00:00:00
ubuntu
ubuntu
LibTIFF vulnerabilities
2012-11-15 00:00:00
tiff vulnerability
2012-07-19 00:00:00
LibTIFF vulnerability
2012-12-05 00:00:00
prion
prion
Heap overflow
2012-08-13 20:55:00
Integer overflow
2012-11-11 13:00:00
Stack overflow
2013-01-04 22:55:00
ubuntucve
ubuntucve
CVE-2012-3401
2012-07-19 00:00:00
CVE-2012-4564
2012-11-11 00:00:00
CVE-2012-5581
2012-11-28 00:00:00
cve
cve
CVE-2012-3401
2012-08-13 20:55:00
CVE-2012-4564
2012-11-11 13:00:00
CVE-2012-5581
2013-01-04 22:55:00
debiancve
debiancve
CVE-2012-3401
2012-08-13 20:55:00
CVE-2012-4564
2012-11-11 13:00:00
CVE-2012-5581
2013-01-04 22:55:00
debian
debian
[SECURITY] [DSA 2589-1] tiff security update
2012-12-16 16:04:53
[SECURITY] [DSA 2575-1] tiff security update
2012-11-18 14:22:07
[SECURITY] [DSA 2561-1] tiff security update
2012-10-21 16:03:07
osv
osv
tiff - buffer overflow
2012-10-21 00:00:00
tiff - several
2012-09-26 00:00:00
gentoo
gentoo
libTIFF: Multiple vulnerabilities
2014-02-21 00:00:00
libTIFF: Multiple vulnerabilities
2012-09-23 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package libtiff version 3.9.6-alt3
2012-08-27 00:00:00
Security fix for the ALT Linux 10 package libtiff version 4.0.10.0.57.f9fc01c3-alt1
2019-04-09 00:00:00
slackware
slackware
[slackware-security] libtiff
2013-10-18 19:38:32
JSON
Related for ALA_ALAS-2012-147.NASL
nessus36oraclelinux1veracode4openvas53redhat1fedora11amazon1centos1securityvulns6ubuntu3prion4ubuntucve4cve4debiancve4debian4osv2gentoo2altlinux2slackware1