CentOS 4 : xpdf (CESA-2008:0240)

🗓️ 22 Apr 2008 00:00:00Reported by TenableType

Updated xpdf packages available for CentOS 4 to fix a security flaw in PDF font handlin

Reporter	Title	Published	Views	Family All 107
Tenable Nessus	CentOS 4 : kdegraphics (CESA-2008:0238)	22 Apr 200800:00	–	nessus
Tenable Nessus	CentOS 5 : poppler (CESA-2008:0239)	6 Jan 201000:00	–	nessus
Tenable Nessus	CentOS 4 : gpdf (CESA-2008:0262)	6 Jan 201000:00	–	nessus
Tenable Nessus	Debian DSA-1548-1 : xpdf - several vulnerabilities	22 Apr 200800:00	–	nessus
Tenable Nessus	Fedora 7 : poppler-0.5.4-9.fc7 (2008-3312)	1 May 200800:00	–	nessus
Tenable Nessus	GLSA-200804-18 : Poppler: User-assisted execution of arbitrary code	22 Apr 200800:00	–	nessus
Tenable Nessus	Mandriva Linux Security Advisory : koffice (MDVSA-2008:197-1)	23 Apr 200900:00	–	nessus
Tenable Nessus	Oracle Linux 4 : kdegraphics (ELSA-2008-0238)	12 Jul 201300:00	–	nessus
Tenable Nessus	Oracle Linux 5 : poppler (ELSA-2008-0239)	12 Jul 201300:00	–	nessus
Tenable Nessus	Oracle Linux 4 : xpdf (ELSA-2008-0240)	12 Jul 201300:00	–	nessus

Source	Link
nessus	www.nessus.org/u
nessus	www.nessus.org/u
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2008:0240 and 
# CentOS Errata and Security Advisory 2008:0240 respectively.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(32002);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2008-1693");
  script_bugtraq_id(28830);
  script_xref(name:"RHSA", value:"2008:0240");

  script_name(english:"CentOS 4 : xpdf (CESA-2008:0240)");
  script_summary(english:"Checks rpm output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote CentOS host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated xpdf packages that fix a security issue are now available for
Red Hat Enterprise Linux 4.

This update has been rated as having important security impact by the
Red Hat Security Response Team.

Xpdf is an X Window System-based viewer for Portable Document Format
(PDF) files.

Kees Cook discovered a flaw in the way xpdf displayed malformed fonts
embedded in PDF files. An attacker could create a malicious PDF file
that would cause xpdf to crash, or, potentially, execute arbitrary
code when opened. (CVE-2008-1693)

Users are advised to upgrade to these updated packages, which contain
backported patches to resolve this issue."
  );
  # https://lists.centos.org/pipermail/centos-announce/2008-April/014846.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?597879b0"
  );
  # https://lists.centos.org/pipermail/centos-announce/2008-April/014847.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?c8e0ccc1"
  );
  # https://lists.centos.org/pipermail/centos-announce/2008-April/014865.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?0a89e627"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected xpdf package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(20);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:xpdf");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:4");

  script_set_attribute(attribute:"vuln_publication_date", value:"2008/04/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2008/04/21");
  script_set_attribute(attribute:"plugin_publication_date", value:"2008/04/22");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"CentOS Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^4([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 4.x", "CentOS " + os_ver);

if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);


flag = 0;
if (rpm_check(release:"CentOS-4", reference:"xpdf-3.00-16.el4")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "xpdf");
}

04 Jan 2021 00:00Current

5.6Medium risk

Vulners AI Score5.6

CVSS 26.8

EPSS0.07598