Lucene search
This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.ALA_ALAS-2015-468.NASLHistoryJan 09, 2015 - 12:00 a.m.
Amazon Linux AMI : glibc (ALAS-2015-468)
2015-01-0900:00:00
This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.
www.tenable.com
10
An out-of-bounds read flaw was found in the way glibc’s iconv() function converted certain encoded data to UTF-8. An attacker able to make an application call the iconv() function with a specially crafted argument could use this flaw to crash that application.
(CVE-2014-6040)
It was found that the wordexp() function would perform command substitution even when the WRDE_NOCMD flag was specified. An attacker able to provide specially crafted input to an application using the wordexp() function, and not sanitizing the input correctly, could potentially use this flaw to execute arbitrary commands with the credentials of the user running that application. (CVE-2014-7817)
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux AMI Security Advisory ALAS-2015-468.
#
include("compat.inc");
if (description)
{
script_id(80419);
script_version("1.6");
script_cvs_date("Date: 2018/04/18 15:09:35");
script_cve_id("CVE-2014-6040", "CVE-2014-7817");
script_xref(name:"ALAS", value:"2015-468");
script_xref(name:"RHSA", value:"2015:0016");
script_name(english:"Amazon Linux AMI : glibc (ALAS-2015-468)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Amazon Linux AMI host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"An out-of-bounds read flaw was found in the way glibc's iconv()
function converted certain encoded data to UTF-8. An attacker able to
make an application call the iconv() function with a specially crafted
argument could use this flaw to crash that application.
(CVE-2014-6040)
It was found that the wordexp() function would perform command
substitution even when the WRDE_NOCMD flag was specified. An attacker
able to provide specially crafted input to an application using the
wordexp() function, and not sanitizing the input correctly, could
potentially use this flaw to execute arbitrary commands with the
credentials of the user running that application. (CVE-2014-7817)"
);
script_set_attribute(
attribute:"see_also",
value:"https://alas.aws.amazon.com/ALAS-2015-468.html"
);
script_set_attribute(
attribute:"solution",
value:"Run 'yum update glibc' to update your system."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:glibc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:glibc-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:glibc-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:glibc-debuginfo-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:glibc-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:glibc-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:glibc-static");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:glibc-utils");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:nscd");
script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux");
script_set_attribute(attribute:"patch_publication_date", value:"2015/01/08");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/01/09");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.");
script_family(english:"Amazon Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "A")
{
if (os_ver == 'A') os_ver = 'AMI';
audit(AUDIT_OS_NOT, "Amazon Linux AMI", "Amazon Linux " + os_ver);
}
if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (rpm_check(release:"ALA", reference:"glibc-2.17-55.92.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"glibc-common-2.17-55.92.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"glibc-debuginfo-2.17-55.92.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"glibc-debuginfo-common-2.17-55.92.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"glibc-devel-2.17-55.92.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"glibc-headers-2.17-55.92.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"glibc-static-2.17-55.92.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"glibc-utils-2.17-55.92.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"nscd-2.17-55.92.amzn1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc / glibc-common / glibc-debuginfo / glibc-debuginfo-common / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| amazon | linux | glibc | p-cpe:/a:amazon:linux:glibc |
| amazon | linux | glibc-common | p-cpe:/a:amazon:linux:glibc-common |
| amazon | linux | glibc-debuginfo | p-cpe:/a:amazon:linux:glibc-debuginfo |
| amazon | linux | glibc-debuginfo-common | p-cpe:/a:amazon:linux:glibc-debuginfo-common |
| amazon | linux | glibc-devel | p-cpe:/a:amazon:linux:glibc-devel |
| amazon | linux | glibc-headers | p-cpe:/a:amazon:linux:glibc-headers |
| amazon | linux | glibc-static | p-cpe:/a:amazon:linux:glibc-static |
| amazon | linux | glibc-utils | p-cpe:/a:amazon:linux:glibc-utils |
| amazon | linux | nscd | p-cpe:/a:amazon:linux:nscd |
| amazon | linux | cpe:/o:amazon:linux |
Related
nessus
nessus
Fedora 20 : glibc-2.18-19.fc20 (2015-2845)
2015-03-05 00:00:00
Scientific Linux Security Update : glibc on SL6.x i386/x86_64 (20150107)
2015-01-08 00:00:00
CentOS 6 : glibc (CESA-2015:0016)
2015-01-08 00:00:00
openvas
openvas
CentOS Update for glibc CESA-2015:0016 centos6
2015-01-23 00:00:00
Amazon Linux: Security Advisory (ALAS-2015-468)
2015-09-08 00:00:00
RedHat Update for glibc RHSA-2015:0016-01
2015-01-23 00:00:00
centos
centos
glibc, nscd security update
2015-01-07 22:45:41
glibc, nscd security update
2014-12-19 12:43:11
glibc, nscd security update
2015-03-17 13:28:04
redhat
redhat
(RHSA-2015:0016) Moderate: glibc security and bug fix update
2015-01-07 00:00:00
(RHSA-2014:2023) Moderate: glibc security and bug fix update
2014-12-18 00:00:00
(RHSA-2015:0327) Moderate: glibc security and bug fix update
2015-03-05 00:00:00
oraclelinux
oraclelinux
glibc security and bug fix update
2015-01-07 00:00:00
glibc security and bug fix update
2015-03-09 00:00:00
glibc security and bug fix update
2014-12-18 00:00:00
amazon
amazon
Medium: glibc
2015-01-08 12:38:00
Medium: glibc
2015-03-23 08:30:00
ibm
ibm
osv
osv
eglibc - security update
2014-11-29 00:00:00
eglibc - security update
2015-01-27 00:00:00
debian
debian
[SECURITY] [DLA 97-1] eglibc security update
2014-11-29 19:00:34
[SECURITY] [DSA 3142-1] eglibc security update
2015-01-27 15:39:21
fedora
fedora
[SECURITY] Fedora 20 Update: glibc-2.18-19.fc20
2015-03-04 10:25:31
[SECURITY] Fedora 21 Update: glibc-2.20-8.fc21
2015-03-04 10:27:01
ubuntu
ubuntu
GNU C Library vulnerabilities
2014-12-03 00:00:00
ubuntucve
ubuntucve
CVE-2014-7817
2014-11-24 00:00:00
CVE-2014-6040
2014-09-02 00:00:00
cve
cve
CVE-2014-7817
2014-11-24 15:59:00
CVE-2014-6040
2014-12-05 16:59:00
debiancve
debiancve
CVE-2014-7817
2014-11-24 15:59:00
CVE-2014-6040
2014-12-05 16:59:00
mageia
mageia
Updated glibc packages fix CVE-2014-7817
2014-11-26 20:29:06
Updated glibc packages fix multiple security vulnerabilities
2014-09-15 14:36:30
f5
f5
SOL16010 - GNU C Library (glibc) vulnerability CVE-2014-7817
2015-01-21 00:00:00
K16010 : GNU C Library (glibc) vulnerability CVE-2014-7817
2015-09-17 00:00:00
K16435 : GNU C Library vulnerability CVE-2014-6040
2015-09-16 00:00:00
archlinux
archlinux
glibc: command execution
2014-11-21 00:00:00
securityvulns
securityvulns
GNU glibc code execution
2014-11-30 00:00:00
[ MDVSA-2014:232 ] glibc
2014-11-30 00:00:00
GNU glibc buffer overflow
2014-09-01 00:00:00
prion
prion
Input validation
2014-11-24 15:59:00
Out-of-bounds
2014-12-05 16:59:00
suse
suse
glibc (important)
2014-09-11 09:04:39
Security update for glibc (important)
2014-09-15 19:06:41
Security update for glibc (important)
2014-09-15 19:04:18
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2016-02-17 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package glibc version 6:2.11.3-alt8.M60P.3
2015-12-23 00:00:00
slackware
slackware
[slackware-security] glibc
2014-10-24 05:36:04
oracle
oracle
Oracle Critical Patch Update - January 2018
2018-01-16 00:00:00
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00
Related for ALA_ALAS-2015-468.NASL