Lucene search
This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.CENTOS_RHSA-2018-3738.NASLHistoryDec 14, 2018 - 12:00 a.m.
CentOS 7 : ruby (CESA-2018:3738)
2018-12-1400:00:00
This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
47
An update for ruby is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Ruby is an extensible, interpreted, object-oriented, scripting language. It has features to process text files and to perform system management tasks.
Security Fix(es) :
- ruby: OpenSSL::X509::Name equality check does not work correctly (CVE-2018-16395)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2018:3738 and
# CentOS Errata and Security Advisory 2018:3738 respectively.
#
include("compat.inc");
if (description)
{
script_id(119665);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2020/04/08");
script_cve_id("CVE-2018-16395");
script_xref(name:"RHSA", value:"2018:3738");
script_name(english:"CentOS 7 : ruby (CESA-2018:3738)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote CentOS host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"An update for ruby is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security
impact of Important. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.
Ruby is an extensible, interpreted, object-oriented, scripting
language. It has features to process text files and to perform system
management tasks.
Security Fix(es) :
* ruby: OpenSSL::X509::Name equality check does not work correctly
(CVE-2018-16395)
For more details about the security issue(s), including the impact, a
CVSS score, and other related information, refer to the CVE page(s)
listed in the References section."
);
# https://lists.centos.org/pipermail/centos-announce/2018-December/023122.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?319b5949"
);
script_set_attribute(attribute:"solution", value:"Update the affected ruby packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-16395");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:ruby");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:ruby-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:ruby-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:ruby-irb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:ruby-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:ruby-tcltk");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rubygem-bigdecimal");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rubygem-io-console");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rubygem-json");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rubygem-minitest");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rubygem-psych");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rubygem-rake");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rubygem-rdoc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rubygems");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:centos:centos:rubygems-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:centos:centos:7");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/11/16");
script_set_attribute(attribute:"patch_publication_date", value:"2018/12/13");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/12/14");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2018-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"CentOS Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/CentOS/release", "Host/CentOS/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/CentOS/release");
if (isnull(release) || "CentOS" >!< release) audit(AUDIT_OS_NOT, "CentOS");
os_ver = pregmatch(pattern: "CentOS(?: Linux)? release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "CentOS");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "CentOS 7.x", "CentOS " + os_ver);
if (!get_kb_item("Host/CentOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "CentOS", cpu);
flag = 0;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"ruby-2.0.0.648-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"ruby-devel-2.0.0.648-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"ruby-doc-2.0.0.648-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"ruby-irb-2.0.0.648-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"ruby-libs-2.0.0.648-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"ruby-tcltk-2.0.0.648-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"rubygem-bigdecimal-1.2.0-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"rubygem-io-console-0.4.2-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"rubygem-json-1.7.7-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"rubygem-minitest-4.3.2-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"rubygem-psych-2.0.0-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"rubygem-rake-0.9.6-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"rubygem-rdoc-4.0.0-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"rubygems-2.0.14.1-34.el7_6")) flag++;
if (rpm_check(release:"CentOS-7", cpu:"x86_64", reference:"rubygems-devel-2.0.14.1-34.el7_6")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ruby / ruby-devel / ruby-doc / ruby-irb / ruby-libs / ruby-tcltk / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| centos | centos | ruby | p-cpe:/a:centos:centos:ruby |
| centos | centos | ruby-devel | p-cpe:/a:centos:centos:ruby-devel |
| centos | centos | ruby-doc | p-cpe:/a:centos:centos:ruby-doc |
| centos | centos | ruby-irb | p-cpe:/a:centos:centos:ruby-irb |
| centos | centos | ruby-libs | p-cpe:/a:centos:centos:ruby-libs |
| centos | centos | ruby-tcltk | p-cpe:/a:centos:centos:ruby-tcltk |
| centos | centos | rubygem-bigdecimal | p-cpe:/a:centos:centos:rubygem-bigdecimal |
| centos | centos | rubygem-io-console | p-cpe:/a:centos:centos:rubygem-io-console |
| centos | centos | rubygem-json | p-cpe:/a:centos:centos:rubygem-json |
| centos | centos | rubygem-minitest | p-cpe:/a:centos:centos:rubygem-minitest |
Related
prion
prion
Code injection
2018-11-16 18:29:00
oraclelinux
oraclelinux
ruby security update
2018-11-29 00:00:00
centos
centos
ruby, rubygem, rubygems security update
2018-12-13 20:46:01
redhat
redhat
(RHSA-2018:3738) Important: ruby security update
2018-11-29 20:15:03
(RHSA-2019:1948) Important: ruby security update
2019-07-30 08:23:28
(RHSA-2019:2565) Important: ruby security update
2019-08-27 10:11:37
cbl_mariner
cbl_mariner
CVE-2018-16395 affecting package openssl 1.1.1g-6
2021-08-11 06:39:26
github
github
Ruby Openssl Allows Incorrect Value Comparison
2022-05-13 01:50:20
redhatcve
redhatcve
CVE-2018-16395
2020-01-25 22:09:37
cve
cve
CVE-2018-16395
2018-11-16 18:29:00
nessus
nessus
Scientific Linux Security Update : ruby on SL7.x x86_64 (20181130)
2018-12-06 00:00:00
Fedora 29 : ruby (2018-319b9d0f68)
2019-01-03 00:00:00
RHEL 7 : ruby (RHSA-2018:3738)
2018-11-30 00:00:00
hackerone
hackerone
Ruby: OpenSSL::X509::Name Equality Check Does Not Work, Patch included
2018-07-26 17:24:30
symantec
symantec
osv
osv
CVE-2018-16395
2018-11-16 18:29:00
Ruby Openssl Allows Incorrect Value Comparison
2022-05-13 01:50:20
ruby2.3 - security update
2018-11-03 00:00:00
openvas
openvas
CentOS Update for ruby CESA-2018:3738 centos7
2018-12-18 00:00:00
Ubuntu: Security Advisory (USN-3808-1)
2018-11-06 00:00:00
Huawei EulerOS: Security Advisory for ruby (EulerOS-SA-2019-1340)
2020-01-23 00:00:00
ibm
ibm
veracode
veracode
Authentication Bypass
2018-11-19 07:52:01
alpinelinux
alpinelinux
CVE-2018-16395
2018-11-16 18:29:00
amazon
amazon
Important: ruby
2019-01-07 22:05:00
Important: ruby23, ruby24
2018-12-06 00:31:00
ubuntucve
ubuntucve
CVE-2018-16395
2018-10-26 00:00:00
debiancve
debiancve
CVE-2018-16395
2018-11-16 18:29:00
photon
photon
ubuntu
ubuntu
Ruby vulnerabilities
2018-11-05 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: ruby-2.4.5-90.fc27
2018-11-22 02:55:42
[SECURITY] Fedora 28 Update: ruby-2.5.3-94.fc28
2018-11-21 03:13:57
[SECURITY] Fedora 29 Update: ruby-2.5.3-99.fc29
2018-11-09 06:04:38
debian
debian
[SECURITY] [DSA 4332-1] ruby2.3 security update
2018-11-03 10:24:23
[SECURITY] [DSA 4332-1] ruby2.3 security update
2018-11-03 10:24:23
[SECURITY] [DLA 1558-1] ruby2.1 security update
2018-10-28 21:37:32
freebsd
freebsd
ruby -- multiple vulnerabilities
2018-10-17 00:00:00
cloudfoundry
cloudfoundry
USN-3808-1: Ruby vulnerabilities | Cloud Foundry
2018-11-06 00:00:00
mageia
mageia
Updated ruby packages fix security vulnerability
2018-10-26 21:47:14
rosalinux
rosalinux
Advisory ROSA-SA-2021-1939
2021-07-02 17:38:47
suse
suse
Security update for ruby-bundled-gems-rpmhelper, ruby2.5 (important)
2019-07-21 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2020
2020-01-14 00:00:00
Related for CENTOS_RHSA-2018-3738.NASL