Lucene search
This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.ALA_ALAS-2019-1202.NASLHistoryMay 07, 2019 - 12:00 a.m.
Amazon Linux AMI : python34 (ALAS-2019-1202)
2019-05-0700:00:00
This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
Python is affected by improper Handling of Unicode Encoding (with an incorrect netloc) during NFKC normalization. The impact is information disclosure (credentials, cookies, etc. that are cached against a given hostname). The components are: urllib.parse.urlsplit, urllib.parse.urlparse. The attack vector is: A specially crafted URL could be incorrectly parsed to locate cookies or authentication data and send that information to a different host than when parsed correctly. (CVE-2019-9636)
Modules/_pickle.c in Python has an integer overflow via a large LONG_BINPUT value that is mishandled during a ‘resize to twice the size’ attempt. This issue might cause memory exhaustion, but is only relevant if the pickle format is used for serializing tens or hundreds of gigabytes of data. (CVE-2018-20406)
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux AMI Security Advisory ALAS-2019-1202.
#
include("compat.inc");
if (description)
{
script_id(124655);
script_version("1.2");
script_cvs_date("Date: 2020/01/21");
script_cve_id("CVE-2018-20406", "CVE-2019-9636");
script_xref(name:"ALAS", value:"2019-1202");
script_name(english:"Amazon Linux AMI : python34 (ALAS-2019-1202)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Amazon Linux AMI host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Python is affected by improper Handling of Unicode Encoding (with an
incorrect netloc) during NFKC normalization. The impact is information
disclosure (credentials, cookies, etc. that are cached against a given
hostname). The components are: urllib.parse.urlsplit,
urllib.parse.urlparse. The attack vector is: A specially crafted URL
could be incorrectly parsed to locate cookies or authentication data
and send that information to a different host than when parsed
correctly. (CVE-2019-9636)
Modules/_pickle.c in Python has an integer overflow via a large
LONG_BINPUT value that is mishandled during a 'resize to twice the
size' attempt. This issue might cause memory exhaustion, but is only
relevant if the pickle format is used for serializing tens or hundreds
of gigabytes of data. (CVE-2018-20406)"
);
script_set_attribute(
attribute:"see_also",
value:"https://alas.aws.amazon.com/ALAS-2019-1202.html"
);
script_set_attribute(
attribute:"solution",
value:"Run 'yum update python34' to update your system."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-9636");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python34");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python34-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python34-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python34-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python34-test");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python34-tools");
script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/12/23");
script_set_attribute(attribute:"patch_publication_date", value:"2019/05/06");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/05/07");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Amazon Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "A")
{
if (os_ver == 'A') os_ver = 'AMI';
audit(AUDIT_OS_NOT, "Amazon Linux AMI", "Amazon Linux " + os_ver);
}
if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (rpm_check(release:"ALA", reference:"python34-3.4.10-1.43.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"python34-debuginfo-3.4.10-1.43.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"python34-devel-3.4.10-1.43.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"python34-libs-3.4.10-1.43.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"python34-test-3.4.10-1.43.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"python34-tools-3.4.10-1.43.amzn1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "python34 / python34-debuginfo / python34-devel / python34-libs / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| amazon | linux | python34 | p-cpe:/a:amazon:linux:python34 |
| amazon | linux | python34-debuginfo | p-cpe:/a:amazon:linux:python34-debuginfo |
| amazon | linux | python34-devel | p-cpe:/a:amazon:linux:python34-devel |
| amazon | linux | python34-libs | p-cpe:/a:amazon:linux:python34-libs |
| amazon | linux | python34-test | p-cpe:/a:amazon:linux:python34-test |
| amazon | linux | python34-tools | p-cpe:/a:amazon:linux:python34-tools |
| amazon | linux | cpe:/o:amazon:linux |
Related
amazon
amazon
Important: python34
2019-05-02 17:31:00
Important: python3
2019-05-02 18:48:00
Important: python
2019-06-25 21:04:00
nessus
nessus
Amazon Linux 2 : python3 (ALAS-2019-1204)
2019-05-06 00:00:00
Fedora 30 : python34 (2019-7d9f3cf3ce)
2019-05-02 00:00:00
Fedora 28 : python34 (2019-6baeb15da3)
2019-03-29 00:00:00
fedora
fedora
[SECURITY] Fedora 28 Update: python34-3.4.10-1.fc28
2019-03-29 02:05:28
[SECURITY] Fedora 30 Update: python34-3.4.10-1.fc30
2019-03-29 19:39:48
[SECURITY] Fedora 29 Update: python34-3.4.10-1.fc29
2019-03-29 03:00:18
openvas
openvas
Fedora Update for python34 FEDORA-2019-6baeb15da3
2019-04-03 00:00:00
Fedora Update for python34 FEDORA-2019-6b02154aa0
2019-05-07 00:00:00
Mageia: Security Advisory (MGASA-2019-0135)
2022-01-28 00:00:00
mageia
mageia
Updated python3 packages fix security vulnerability
2019-04-11 00:25:19
Updated python packages fix security vulnerability
2019-04-11 01:07:23
cve
cve
osv
osv
pickle.load denial of service
2018-12-23 23:00:00
CVE-2018-20406
2018-12-23 23:29:00
CVE-2019-9636
2019-03-08 21:29:00
debiancve
debiancve
redhatcve
redhatcve
alpinelinux
alpinelinux
CVE-2018-20406
2018-12-23 23:29:00
CVE-2019-9636
2019-03-08 21:29:00
veracode
veracode
Denial Of Service (DoS)
2019-11-07 00:19:06
Information Disclosure
2019-05-16 03:38:57
Information Disclosure
2019-06-24 00:20:59
ubuntucve
ubuntucve
prion
prion
Integer overflow
2018-12-23 23:29:00
Information disclosure
2019-03-08 21:29:00
Authentication flaw
2019-06-07 18:29:00
ibm
ibm
symantec
symantec
Python CVE-2019-9636 Information Disclosure Vulnerability
2019-03-08 00:00:00
redhat
redhat
(RHSA-2019:2980) Important: python security update
2019-10-08 09:21:25
(RHSA-2019:1467) Important: python security update
2019-06-13 11:37:17
(RHSA-2019:0997) Important: python3 security update
2019-05-07 03:41:52
suse
suse
Security update for python3 (important)
2019-05-10 00:00:00
Security update for python3 (important)
2019-04-26 00:00:00
Security update for python3 (important)
2019-02-09 00:00:00
centos
centos
python, tkinter security update
2019-06-20 20:32:56
python, tkinter security update
2019-04-12 14:02:06
python, tkinter security update
2019-06-24 17:07:31
archlinux
archlinux
[ASA-201906-17] python: information disclosure
2019-06-18 00:00:00
[ASA-201911-4] python2: information disclosure
2019-11-03 00:00:00
oraclelinux
oraclelinux
python security update
2019-04-10 00:00:00
python3 security update
2019-07-30 00:00:00
python security update
2019-06-13 00:00:00
ubuntu
ubuntu
Python vulnerabilities
2019-09-09 00:00:00
Python vulnerabilities
2019-09-10 00:00:00
cloudfoundry
cloudfoundry
USN-4127-1: Python vulnerabilities | Cloud Foundry
2019-09-30 00:00:00
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2019-3.0-0005
2019-03-19 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2019-2.0-0141
2019-03-18 00:00:00
Critical Photon OS Security Update - PHSA-2019-0006
2019-03-18 00:00:00
f5
f5
K57542514 : Python vulnerabilities CVE-2019-9636 and CVE-2019-10160
2020-09-16 00:00:00
Related for ALA_ALAS-2019-1202.NASL