CentOS 5 : gnutls (CESA-2008:0982)

🗓️ 06 Jan 2010 00:00:00Reported by TenableType

Updated gnutls packages fix identity spoofing security issu

Reporter	Title	Published	Views	Family All 107
ALT Linux	Security fix for the ALT Linux 9 package gnutls30 version 2.6.3-alt1	21 Dec 200800:00	–	altlinux
ALT Linux	Security fix for the ALT Linux 10 package gnutls30 version 2.6.3-alt1	21 Dec 200800:00	–	altlinux
FreeBSD	gnutls -- X.509 certificate chain validation vulnerability	10 Nov 200800:00	–	freebsd
Cent OS	gnutls security update	11 Nov 200821:05	–	centos
CVE	CVE-2008-4989	13 Nov 200800:00	–	cve
Cvelist	CVE-2008-4989	13 Nov 200800:00	–	cvelist
Debian	[SECURITY] [DSA 1719-1] New gnutls13 packages fix certificate validation	10 Feb 200907:00	–	debian
Debian	[SECURITY] [DSA 1719-2] New GNUTLS packages fix regression	28 Feb 200911:44	–	debian
Tenable Nessus	Debian DSA-1719-1 : gnutls13 - design flaw	12 Feb 200900:00	–	nessus
Tenable Nessus	Fedora 10 2008-10000	23 Apr 200900:00	–	nessus

Source	Link
nessus	www.nessus.org/u
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2008:0982 and 
# CentOS Errata and Security Advisory 2008:0982 respectively.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(43716);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2008-4989");
  script_xref(name:"RHSA", value:"2008:0982");

  script_name(english:"CentOS 5 : gnutls (CESA-2008:0982)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote CentOS host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated gnutls packages that fix a security issue are now available
for Red Hat Enterprise Linux 5.

This update has been rated as having moderate security impact by the
Red Hat Security Response Team.

The GnuTLS library provides support for cryptographic algorithms and
for protocols such as Transport Layer Security (TLS).

Martin von Gagern discovered a flaw in the way GnuTLS verified
certificate chains provided by a server. A malicious server could use
this flaw to spoof its identity by tricking client applications using
the GnuTLS library to trust invalid certificates. (CVE-2008-4989)

Users of GnuTLS are advised to upgrade to these updated packages,
which contain a backported patch that corrects this issue."
  );
  # https://lists.centos.org/pipermail/centos-announce/2008-November/015391.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?4db7d6a2"
  );
  # https://lists.centos.org/pipermail/centos-announce/2008-November/015392.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?202f0d8c"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected gnutls packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_cwe_id(255);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:gnutls");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:gnutls-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:gnutls-utils");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:5");

  script_set_attribute(attribute:"vuln_publication_date", value:"2008/11/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2008/11/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/01/06");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"CentOS Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^5([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 5.x", "CentOS " + os_ver);

if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);


flag = 0;
if (rpm_check(release:"CentOS-5", reference:"gnutls-1.4.1-3.el5_2.1")) flag++;
if (rpm_check(release:"CentOS-5", reference:"gnutls-devel-1.4.1-3.el5_2.1")) flag++;
if (rpm_check(release:"CentOS-5", reference:"gnutls-utils-1.4.1-3.el5_2.1")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "gnutls / gnutls-devel / gnutls-utils");
}

04 Jan 2021 00:00Current

5.7Medium risk

Vulners AI Score5.7

CVSS 24.3

CVSS 3.15.9

EPSS0.00393