Lucene search
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS_RHSA-2016-1025.NASLHistoryMay 13, 2016 - 12:00 a.m.
CentOS 7 : pcre (CESA-2016:1025)
2016-05-1300:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
83
An update for pcre is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
PCRE is a Perl-compatible regular expression library.
Security Fix(es) :
- Multiple flaws were found in the way PCRE handled malformed regular expressions. An attacker able to make an application using PCRE process a specially crafted regular expression could use these flaws to cause the application to crash or, possibly, execute arbitrary code. (CVE-2015-8385, CVE-2016-3191, CVE-2015-2328, CVE-2015-3217, CVE-2015-5073, CVE-2015-8388, CVE-2015-8391, CVE-2015-8386)
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2016:1025 and
# CentOS Errata and Security Advisory 2016:1025 respectively.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(91104);
script_version("2.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");
script_cve_id("CVE-2015-2328", "CVE-2015-3217", "CVE-2015-5073", "CVE-2015-8385", "CVE-2015-8386", "CVE-2015-8388", "CVE-2015-8391", "CVE-2016-3191");
script_xref(name:"RHSA", value:"2016:1025");
script_name(english:"CentOS 7 : pcre (CESA-2016:1025)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote CentOS host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"An update for pcre is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security
impact of Important. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.
PCRE is a Perl-compatible regular expression library.
Security Fix(es) :
* Multiple flaws were found in the way PCRE handled malformed regular
expressions. An attacker able to make an application using PCRE
process a specially crafted regular expression could use these flaws
to cause the application to crash or, possibly, execute arbitrary
code. (CVE-2015-8385, CVE-2016-3191, CVE-2015-2328, CVE-2015-3217,
CVE-2015-5073, CVE-2015-8388, CVE-2015-8391, CVE-2015-8386)"
);
# https://lists.centos.org/pipermail/centos-announce/2016-May/021883.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?49ea9e39"
);
script_set_attribute(attribute:"solution", value:"Update the affected pcre packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-8391");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pcre");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pcre-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pcre-static");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:pcre-tools");
script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:7");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/12/02");
script_set_attribute(attribute:"patch_publication_date", value:"2016/05/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/05/13");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"CentOS Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 7.x", "CentOS " + os_ver);
if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);
flag = 0;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"pcre-8.32-15.el7_2.1")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"pcre-devel-8.32-15.el7_2.1")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"pcre-static-8.32-15.el7_2.1")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"pcre-tools-8.32-15.el7_2.1")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "pcre / pcre-devel / pcre-static / pcre-tools");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| centos | centos | pcre | p-cpe:/a:centos:centos:pcre |
| centos | centos | pcre-devel | p-cpe:/a:centos:centos:pcre-devel |
| centos | centos | pcre-static | p-cpe:/a:centos:centos:pcre-static |
| centos | centos | pcre-tools | p-cpe:/a:centos:centos:pcre-tools |
| centos | centos | 7 | cpe:/o:centos:centos:7 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-2328
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3217
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5073
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8385
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8386
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8388
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-8391
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3191
www.nessus.org/u?49ea9e39
Related
redhat
redhat
(RHSA-2016:1025) Important: pcre security update
2016-05-11 11:17:05
(RHSA-2016:1132) Important: rh-mariadb100-mariadb security update
2016-05-26 08:10:09
openvas
openvas
Huawei EulerOS: Security Advisory for pcre (EulerOS-SA-2016-1023)
2020-01-23 00:00:00
CentOS Update for pcre CESA-2016:1025 centos7
2016-05-17 00:00:00
RedHat Update for pcre RHSA-2016:1025-01
2016-06-03 00:00:00
oraclelinux
oraclelinux
pcre security update
2016-05-11 00:00:00
ibm
ibm
nessus
nessus
Oracle Linux 7 : pcre (ELSA-2016-1025)
2016-05-12 00:00:00
Scientific Linux Security Update : pcre on SL7.x x86_64 (20160511)
2016-05-12 00:00:00
EulerOS 2.0 SP1 : pcre (EulerOS-SA-2016-1023)
2017-05-01 00:00:00
centos
centos
pcre security update
2016-05-13 00:44:08
amazon
amazon
f5
f5
SOL20225390 - Multiple PCRE vulnerabilities
2016-02-04 00:00:00
K20225390 : Multiple PCRE vulnerabilities
2016-02-04 00:00:00
K51440224 : PCRE vulnerability CVE-2016-3191
2016-10-12 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: mingw-pcre-8.38-1.fc22
2016-02-17 04:25:54
[SECURITY] Fedora 23 Update: mingw-pcre-8.38-1.fc23
2016-02-17 04:01:55
[SECURITY] Fedora 22 Update: pcre-8.37-3.fc22
2015-08-13 16:57:41
ubuntu
ubuntu
PCRE vulnerabilities
2016-03-29 00:00:00
PCRE vulnerabilities
2015-07-29 00:00:00
cve
cve
debiancve
debiancve
ubuntucve
ubuntucve
prion
prion
Buffer overflow
2015-12-02 01:59:00
Code injection
2015-12-02 01:59:00
Buffer overflow
2015-12-02 01:59:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:34:19
Denial Of Service (DoS)
2019-05-02 05:34:19
Denial Of Service (DoS)
2019-05-02 05:34:16
symantec
symantec
SA128 : Multiple PCRE Vulnerabilities
2016-07-07 08:00:00
openwrt
openwrt
pcre: Security update (18 CVEs)
2016-01-28 12:40:02
gentoo
gentoo
libpcre: Multiple Vulnerabilities
2016-07-09 00:00:00
mageia
mageia
Updated pcre package fixes security vulnerability
2015-07-05 20:22:03
Updated pcre packages fix security vulnerabilities
2016-05-24 01:00:58
freebsd
freebsd
pcre -- stack buffer overflow
2016-02-09 00:00:00
pcre -- Heap Overflow Vulnerability in find_fixedlength()
2015-06-23 00:00:00
pcre -- multiple vulnerabilities
2015-05-29 00:00:00
zdi
zdi
osv
osv
CVE-2016-3191
2016-03-17 23:59:00
alpinelinux
alpinelinux
CVE-2016-3191
2016-03-17 23:59:00
securityvulns
securityvulns
PCRE multiple security vulnerabilities
2015-08-02 00:00:00
[USN-2694-1] PCRE vulnerabilities
2015-08-02 00:00:00
Related for CENTOS_RHSA-2016-1025.NASL