Lucene search
This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS8_RHSA-2022-1851.NASLHistoryMay 10, 2022 - 12:00 a.m.
CentOS 8 : pki-core:10.6 (CESA-2022:1851)
2022-05-1000:00:00
This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.004 Low
EPSS
Percentile
73.8%
The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the CESA-2022:1851 advisory.
- JSS: memory leak in TLS connection leads to OOM (CVE-2021-4213)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# Red Hat Security Advisory RHSA-2022:1851. The text
# itself is copyright (C) Red Hat, Inc.
##
include('compat.inc');
if (description)
{
script_id(160952);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2022/12/12");
script_cve_id("CVE-2021-4213");
script_xref(name:"RHSA", value:"2022:1851");
script_name(english:"CentOS 8 : pki-core:10.6 (CESA-2022:1851)");
script_set_attribute(attribute:"synopsis", value:
"The remote CentOS host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The remote CentOS Linux 8 host has packages installed that are affected by a vulnerability as referenced in the
CESA-2022:1851 advisory.
- JSS: memory leak in TLS connection leads to OOM (CVE-2021-4213)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2022:1851");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-4213");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2022/05/10");
script_set_attribute(attribute:"patch_publication_date", value:"2022/05/10");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/05/10");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:8-stream");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:ldapjdk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:ldapjdk-javadoc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pki-acme");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pki-base");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pki-base-java");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pki-ca");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pki-kra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pki-server");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pki-symkey");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pki-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:python3-pki");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:tomcatjss");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"CentOS Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list", "Host/cpu");
exit(0);
}
include('rpm.inc');
include('rhel.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var release = get_kb_item('Host/CentOS/release');
if (isnull(release) || 'CentOS' >!< release) audit(AUDIT_OS_NOT, 'CentOS');
var os_ver = pregmatch(pattern: "CentOS(?: Stream)?(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'CentOS');
var os_ver = os_ver[1];
if ('CentOS Stream' >!< release) audit(AUDIT_OS_NOT, 'CentOS 8-Stream');
if (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'CentOS 8.x', 'CentOS ' + os_ver);
if (!get_kb_item('Host/CentOS/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'CentOS', cpu);
var pkgs = [
{'reference':'ldapjdk-4.23.0-1.module_el8.5.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'ldapjdk-4.23.0-1.module_el8.5.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'ldapjdk-javadoc-4.23.0-1.module_el8.5.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'ldapjdk-javadoc-4.23.0-1.module_el8.5.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-acme-10.12.0-2.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-acme-10.12.0-2.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-base-10.12.0-2.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-base-10.12.0-2.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-base-java-10.12.0-2.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-base-java-10.12.0-2.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-ca-10.12.0-2.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-ca-10.12.0-2.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-kra-10.12.0-2.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-kra-10.12.0-2.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-server-10.12.0-2.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-server-10.12.0-2.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-symkey-10.12.0-2.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-symkey-10.12.0-2.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-tools-10.12.0-2.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'pki-tools-10.12.0-2.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python3-pki-10.12.0-2.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python3-pki-10.12.0-2.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'tomcatjss-7.7.1-1.module_el8.6.0', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'tomcatjss-7.7.1-1.module_el8.6.0', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach package_array ( pkgs ) {
var reference = NULL;
var release = NULL;
var sp = NULL;
var cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) release = 'CentOS-' + package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (reference && release) {
if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'ldapjdk / ldapjdk-javadoc / pki-acme / pki-base / pki-base-java / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| centos | centos | 8-stream | cpe:/o:centos:centos:8-stream |
| centos | centos | ldapjdk | p-cpe:/a:centos:centos:ldapjdk |
| centos | centos | ldapjdk-javadoc | p-cpe:/a:centos:centos:ldapjdk-javadoc |
| centos | centos | pki-acme | p-cpe:/a:centos:centos:pki-acme |
| centos | centos | pki-base | p-cpe:/a:centos:centos:pki-base |
| centos | centos | pki-base-java | p-cpe:/a:centos:centos:pki-base-java |
| centos | centos | pki-ca | p-cpe:/a:centos:centos:pki-ca |
| centos | centos | pki-kra | p-cpe:/a:centos:centos:pki-kra |
| centos | centos | pki-server | p-cpe:/a:centos:centos:pki-server |
| centos | centos | pki-symkey | p-cpe:/a:centos:centos:pki-symkey |
Related
ubuntucve
ubuntucve
CVE-2021-4213
2022-08-24 00:00:00
almalinux
almalinux
Moderate: pki-core:10.6 security and bug fix update
2022-05-10 08:04:36
nessus
nessus
Oracle Linux 8 : pki-core:10.6 (ELSA-2022-1851)
2022-05-18 00:00:00
CentOS 9 : jss-5.0.3-1.el9
2024-02-29 00:00:00
Rocky Linux 8 : pki-core:10.6 (RLSA-2022:1851)
2023-11-06 00:00:00
prion
prion
Design/Logic Flaw
2022-08-24 16:15:00
nvd
nvd
CVE-2021-4213
2022-08-24 16:15:09
redhat
redhat
cve
cve
CVE-2021-4213
2022-08-24 16:15:09
debiancve
debiancve
CVE-2021-4213
2022-08-24 16:15:09
osv
osv
CVE-2021-4213
2022-08-24 16:15:09
Moderate: pki-core:10.6 security and bug fix update
2022-05-10 08:04:36
Moderate: pki-core:10.6 security and bug fix update
2022-05-10 08:04:36
redhatcve
redhatcve
CVE-2021-4213
2022-02-09 17:28:15
oraclelinux
oraclelinux
pki-core:10.6 security and bug fix update
2022-05-17 00:00:00
rocky
rocky
pki-core:10.6 security and bug fix update
2022-05-10 08:04:36
cvelist
cvelist
CVE-2021-4213
2022-08-24 15:07:48
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
0.004 Low
EPSS
Percentile
73.8%
Related for CENTOS8_RHSA-2022-1851.NASL