Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS_RHSA-2012-0126.NASL
HistoryFeb 14, 2012 - 12:00 a.m.

CentOS 5 : glibc (CESA-2012:0126)

2012-02-1400:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
20
JSON

Updated glibc packages that fix multiple security issues are now available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

The glibc packages contain the standard C libraries used by multiple programs on the system. These packages contain the standard C and the standard math libraries. Without these two libraries, a Linux system cannot function properly.

An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the glibc library read timezone files. If a carefully-crafted timezone file was loaded by an application linked against glibc, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2009-5029)

A flaw was found in the way the ldd utility identified dynamically linked libraries. If an attacker could trick a user into running ldd on a malicious binary, it could result in arbitrary code execution with the privileges of the user running ldd. (CVE-2009-5064)

An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the glibc library loaded ELF (Executable and Linking Format) files. If a carefully-crafted ELF file was loaded by an application linked against glibc, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2010-0830)

It was found that the glibc addmntent() function, used by various mount helper utilities, did not handle certain errors correctly when updating the mtab (mounted file systems table) file. If such utilities had the setuid bit set, a local attacker could use this flaw to corrupt the mtab file. (CVE-2011-1089)

A denial of service flaw was found in the remote procedure call (RPC) implementation in glibc. A remote attacker able to open a large number of connections to an RPC service that is using the RPC implementation from glibc, could use this flaw to make that service use an excessive amount of CPU time. (CVE-2011-4609)

Red Hat would like to thank the Ubuntu Security Team for reporting CVE-2010-0830, and Dan Rosenberg for reporting CVE-2011-1089. The Ubuntu Security Team acknowledges Dan Rosenberg as the original reporter of CVE-2010-0830.

Users should upgrade to these updated packages, which resolve these issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2012:0126 and 
# CentOS Errata and Security Advisory 2012:0126 respectively.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(57924);
  script_version("1.14");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2009-5029", "CVE-2009-5064", "CVE-2010-0830", "CVE-2011-1089", "CVE-2011-4609");
  script_bugtraq_id(40063, 46740, 50898, 51439);
  script_xref(name:"RHSA", value:"2012:0126");

  script_name(english:"CentOS 5 : glibc (CESA-2012:0126)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote CentOS host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated glibc packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having
moderate security impact. Common Vulnerability Scoring System (CVSS)
base scores, which give detailed severity ratings, are available for
each vulnerability from the CVE links in the References section.

The glibc packages contain the standard C libraries used by multiple
programs on the system. These packages contain the standard C and the
standard math libraries. Without these two libraries, a Linux system
cannot function properly.

An integer overflow flaw, leading to a heap-based buffer overflow, was
found in the way the glibc library read timezone files. If a
carefully-crafted timezone file was loaded by an application linked
against glibc, it could cause the application to crash or,
potentially, execute arbitrary code with the privileges of the user
running the application. (CVE-2009-5029)

A flaw was found in the way the ldd utility identified dynamically
linked libraries. If an attacker could trick a user into running ldd
on a malicious binary, it could result in arbitrary code execution
with the privileges of the user running ldd. (CVE-2009-5064)

An integer overflow flaw, leading to a heap-based buffer overflow, was
found in the way the glibc library loaded ELF (Executable and Linking
Format) files. If a carefully-crafted ELF file was loaded by an
application linked against glibc, it could cause the application to
crash or, potentially, execute arbitrary code with the privileges of
the user running the application. (CVE-2010-0830)

It was found that the glibc addmntent() function, used by various
mount helper utilities, did not handle certain errors correctly when
updating the mtab (mounted file systems table) file. If such utilities
had the setuid bit set, a local attacker could use this flaw to
corrupt the mtab file. (CVE-2011-1089)

A denial of service flaw was found in the remote procedure call (RPC)
implementation in glibc. A remote attacker able to open a large number
of connections to an RPC service that is using the RPC implementation
from glibc, could use this flaw to make that service use an excessive
amount of CPU time. (CVE-2011-4609)

Red Hat would like to thank the Ubuntu Security Team for reporting
CVE-2010-0830, and Dan Rosenberg for reporting CVE-2011-1089. The
Ubuntu Security Team acknowledges Dan Rosenberg as the original
reporter of CVE-2010-0830.

Users should upgrade to these updated packages, which resolve these
issues."
  );
  # https://lists.centos.org/pipermail/centos-announce/2012-February/018428.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?e48699c2"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected glibc packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2009-5064");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:glibc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:glibc-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:glibc-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:glibc-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:glibc-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:nscd");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:5");

  script_set_attribute(attribute:"vuln_publication_date", value:"2010/06/01");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/02/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/02/14");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"CentOS Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^5([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 5.x", "CentOS " + os_ver);

if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);


flag = 0;
if (rpm_check(release:"CentOS-5", reference:"glibc-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"CentOS-5", reference:"glibc-common-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"CentOS-5", reference:"glibc-devel-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"CentOS-5", reference:"glibc-headers-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"CentOS-5", reference:"glibc-utils-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"CentOS-5", reference:"nscd-2.5-65.el5_7.3")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc / glibc-common / glibc-devel / glibc-headers / glibc-utils / etc");
}
VendorProductVersionCPE
centoscentosglibcp-cpe:/a:centos:centos:glibc
centoscentosglibc-commonp-cpe:/a:centos:centos:glibc-common
centoscentosglibc-develp-cpe:/a:centos:centos:glibc-devel
centoscentosglibc-headersp-cpe:/a:centos:centos:glibc-headers
centoscentosglibc-utilsp-cpe:/a:centos:centos:glibc-utils
centoscentosnscdp-cpe:/a:centos:centos:nscd
centoscentos5cpe:/o:centos:centos:5

Related

nessus 61
openvas 55
redhat 6
oraclelinux 4
centos 3
amazon 1
securityvulns 7
vmware 4
ubuntucve 10
cve 10
veracode 5
prion 10
debiancve 8
fedora 1
suse 5
slackware 1
ubuntu 2
gentoo 2
debian 2
osv 1
nessus
nessus
Scientific Linux Security Update : glibc on SL5.x i386/x86_64 (20120213)
2012-08-01 00:00:00
RHEL 5 : glibc (RHSA-2012:0126)
2012-02-14 00:00:00
Oracle Linux 5 : glibc (ELSA-2012-0126)
2013-07-12 00:00:00
openvas
openvas
Oracle Linux Local Check: ELSA-2012-0126
2015-10-06 00:00:00
CentOS Update for glibc CESA-2012:0126 centos5
2012-07-30 00:00:00
CentOS Update for glibc CESA-2012:0126 centos5
2012-07-30 00:00:00
redhat
redhat
(RHSA-2012:0126) Moderate: glibc security update
2012-02-13 00:00:00
(RHSA-2012:0125) Moderate: glibc security and bug fix update
2012-02-13 00:00:00
(RHSA-2012:0058) Moderate: glibc security and bug fix update
2012-01-24 00:00:00
oraclelinux
oraclelinux
glibc security update
2012-02-13 00:00:00
glibc security and bug fix update
2012-02-13 00:00:00
glibc security, bug fix, and enhancement update
2011-12-14 00:00:00
centos
centos
glibc, nscd security update
2012-02-14 03:06:54
glibc, nptl, nscd security update
2012-02-14 02:09:08
glibc, nscd security update
2012-01-30 20:26:30
amazon
amazon
Medium: glibc
2012-02-02 14:26:00
securityvulns
securityvulns
VMSA-2012-0018 VMware security updates for vCSA and ESXi
2013-01-02 00:00:00
[USN-1396-1] GNU C Library vulnerabilities
2012-03-10 00:00:00
GNU glibc library security vulnerabilities
2010-05-27 00:00:00
vmware
vmware
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
ubuntucve
ubuntucve
CVE-2009-5064
2011-03-30 00:00:00
CVE-2011-4609
2012-02-06 00:00:00
CVE-2009-5029
2011-12-19 00:00:00
cve
cve
CVE-2011-4609
2013-05-02 14:55:00
CVE-2009-5064
2011-03-30 22:55:00
CVE-2009-5029
2013-05-02 14:55:00
veracode
veracode
Privilege Escalation
2020-04-10 01:08:59
Denial Of Service (DoS)
2020-04-10 01:10:28
Denial Of Service (DoS)
2020-04-10 01:08:59
prion
prion
Design/Logic Flaw
2013-05-02 14:55:00
Code injection
2011-03-30 22:55:00
Integer overflow
2013-05-02 14:55:00
debiancve
debiancve
CVE-2009-5064
2011-03-30 22:55:00
CVE-2009-5029
2013-05-02 14:55:00
CVE-2010-0830
2010-06-01 20:30:00
fedora
fedora
[SECURITY] Fedora 15 Update: glibc-2.14.1-5
2012-01-17 20:24:50
suse
suse
Security update for glibc (important)
2012-01-05 12:25:46
Security update for glibc (important)
2012-01-05 12:36:28
glibc (important)
2012-01-05 19:08:22
slackware
slackware
[slackware-security] glibc
2012-02-10 17:44:30
ubuntu
ubuntu
GNU C Library vulnerabilities
2012-03-09 00:00:00
GNU C Library vulnerabilities
2010-05-25 00:00:00
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2013-12-03 00:00:00
GNU C library: Multiple vulnerabilities
2010-11-15 00:00:00
debian
debian
[SECURITY] [DSA 2058-1] New glibc packages fix several vulnerabilities
2010-06-10 08:13:46
[SECURITY] [DSA 2058-1] New glibc packages fix several vulnerabilities
2010-06-10 08:13:46
osv
osv
glibc - several vulnerabilities
2010-06-10 00:00:00
JSON
Related for CENTOS_RHSA-2012-0126.NASL
nessus61openvas55redhat6oraclelinux4centos3amazon1securityvulns7vmware4ubuntucve10cve10veracode5prion10debiancve8fedora1suse5slackware1ubuntu2gentoo2debian2osv1