Lucene search
This script is Copyright (C) 2017-2021 Tenable Network Security, Inc.DEBIAN_DLA-1114.NASLHistorySep 27, 2017 - 12:00 a.m.
Debian DLA-1114-1 : ruby1.9.1 security update
2017-09-2700:00:00
This script is Copyright (C) 2017-2021 Tenable Network Security, Inc.
www.tenable.com
14
Multiple vulnerabilities were discovered in the Ruby 1.9 interpretor.
CVE-2017-0898
Buffer underrun vulnerability in Kernel.sprintf
CVE-2017-0899
ANSI escape sequence vulnerability
CVE-2017-0900
DOS vulernerability in the query command
CVE-2017-0901
gem installer allows a malicious gem to overwrite arbitrary files
CVE-2017-10784
Escape sequence injection vulnerability in the Basic authentication of WEBrick
CVE-2017-14033
Buffer underrun vulnerability in OpenSSL ASN1 decode
CVE-2017-14064
Heap exposure vulnerability in generating JSON
For Debian 7 ‘Wheezy’, these problems have been fixed in version 1.9.3.194-8.1+deb7u6.
We recommend that you upgrade your ruby1.9.1 packages.
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-1114-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(103472);
script_version("3.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2017-0898", "CVE-2017-0899", "CVE-2017-0900", "CVE-2017-0901", "CVE-2017-10784", "CVE-2017-14033", "CVE-2017-14064");
script_name(english:"Debian DLA-1114-1 : ruby1.9.1 security update");
script_summary(english:"Checks dpkg output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Debian host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Multiple vulnerabilities were discovered in the Ruby 1.9 interpretor.
CVE-2017-0898
Buffer underrun vulnerability in Kernel.sprintf
CVE-2017-0899
ANSI escape sequence vulnerability
CVE-2017-0900
DOS vulernerability in the query command
CVE-2017-0901
gem installer allows a malicious gem to overwrite arbitrary files
CVE-2017-10784
Escape sequence injection vulnerability in the Basic authentication of
WEBrick
CVE-2017-14033
Buffer underrun vulnerability in OpenSSL ASN1 decode
CVE-2017-14064
Heap exposure vulnerability in generating JSON
For Debian 7 'Wheezy', these problems have been fixed in version
1.9.3.194-8.1+deb7u6.
We recommend that you upgrade your ruby1.9.1 packages.
NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://lists.debian.org/debian-lts-announce/2017/09/msg00029.html"
);
script_set_attribute(
attribute:"see_also",
value:"https://packages.debian.org/source/wheezy/ruby1.9.1"
);
script_set_attribute(attribute:"solution", value:"Upgrade the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libruby1.9.1");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libruby1.9.1-dbg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libtcltk-ruby1.9.1");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:ri1.9.1");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:ruby1.9.1");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:ruby1.9.1-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:ruby1.9.1-examples");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:ruby1.9.1-full");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:ruby1.9.3");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:7.0");
script_set_attribute(attribute:"patch_publication_date", value:"2017/09/26");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/09/27");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2017-2021 Tenable Network Security, Inc.");
script_family(english:"Debian Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"7.0", prefix:"libruby1.9.1", reference:"1.9.3.194-8.1+deb7u6")) flag++;
if (deb_check(release:"7.0", prefix:"libruby1.9.1-dbg", reference:"1.9.3.194-8.1+deb7u6")) flag++;
if (deb_check(release:"7.0", prefix:"libtcltk-ruby1.9.1", reference:"1.9.3.194-8.1+deb7u6")) flag++;
if (deb_check(release:"7.0", prefix:"ri1.9.1", reference:"1.9.3.194-8.1+deb7u6")) flag++;
if (deb_check(release:"7.0", prefix:"ruby1.9.1", reference:"1.9.3.194-8.1+deb7u6")) flag++;
if (deb_check(release:"7.0", prefix:"ruby1.9.1-dev", reference:"1.9.3.194-8.1+deb7u6")) flag++;
if (deb_check(release:"7.0", prefix:"ruby1.9.1-examples", reference:"1.9.3.194-8.1+deb7u6")) flag++;
if (deb_check(release:"7.0", prefix:"ruby1.9.1-full", reference:"1.9.3.194-8.1+deb7u6")) flag++;
if (deb_check(release:"7.0", prefix:"ruby1.9.3", reference:"1.9.3.194-8.1+deb7u6")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | libruby1.9.1 | p-cpe:/a:debian:debian_linux:libruby1.9.1 |
| debian | debian_linux | libruby1.9.1-dbg | p-cpe:/a:debian:debian_linux:libruby1.9.1-dbg |
| debian | debian_linux | libtcltk-ruby1.9.1 | p-cpe:/a:debian:debian_linux:libtcltk-ruby1.9.1 |
| debian | debian_linux | ri1.9.1 | p-cpe:/a:debian:debian_linux:ri1.9.1 |
| debian | debian_linux | ruby1.9.1 | p-cpe:/a:debian:debian_linux:ruby1.9.1 |
| debian | debian_linux | ruby1.9.1-dev | p-cpe:/a:debian:debian_linux:ruby1.9.1-dev |
| debian | debian_linux | ruby1.9.1-examples | p-cpe:/a:debian:debian_linux:ruby1.9.1-examples |
| debian | debian_linux | ruby1.9.1-full | p-cpe:/a:debian:debian_linux:ruby1.9.1-full |
| debian | debian_linux | ruby1.9.3 | p-cpe:/a:debian:debian_linux:ruby1.9.3 |
| debian | debian_linux | 7.0 | cpe:/o:debian:debian_linux:7.0 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0898
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0899
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0900
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-0901
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-10784
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14033
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14064
lists.debian.org/debian-lts-announce/2017/09/msg00029.html
packages.debian.org/source/wheezy/ruby1.9.1
Related
nessus
nessus
Ubuntu 14.04 LTS : Ruby vulnerabilities (USN-3439-1)
2017-10-06 00:00:00
Slackware 14.2 / current : ruby (SSA:2017-261-03)
2017-09-19 00:00:00
Amazon Linux AMI : ruby24 (ALAS-2017-915)
2017-10-27 00:00:00
osv
osv
ruby1.9.1 - security update
2017-09-26 00:00:00
ruby2.3 - security update
2017-11-11 00:00:00
ruby1.8 - security update
2017-09-26 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-3439-1)
2018-10-26 00:00:00
Debian: Security Advisory (DLA-1114-1)
2018-02-06 00:00:00
Slackware: Security Advisory (SSA:2017-261-03)
2022-04-21 00:00:00
debian
debian
[SECURITY] [DLA 1114-1] ruby1.9.1 security update
2017-09-26 21:16:53
[SECURITY] [DSA 4031-1] ruby2.3 security update
2017-11-11 14:46:00
[SECURITY] [DSA 4031-1] ruby2.3 security update
2017-11-11 14:46:00
ubuntu
ubuntu
Ruby vulnerabilities
2017-10-05 00:00:00
Ruby vulnerabilities
2018-01-10 00:00:00
Ruby vulnerabilities
2018-06-13 00:00:00
slackware
slackware
[slackware-security] ruby
2017-09-18 19:20:47
amazon
amazon
Medium: ruby24
2017-10-26 17:01:00
Medium: ruby22, ruby23
2017-10-02 17:01:00
freebsd
freebsd
ruby -- multiple vulnerabilities
2017-09-14 00:00:00
mageia
mageia
Updated ruby packages fix security vulnerabilities
2017-10-18 23:19:34
Updated ruby-RubyGems packages fix security vulnerabilities
2017-12-31 18:14:43
redhat
redhat
(RHSA-2017:3485) Moderate: rh-ruby24-ruby security, bug fix, and enhancement update
2017-12-19 08:13:07
(RHSA-2018:0378) Important: ruby security update
2018-02-28 16:24:33
oraclelinux
oraclelinux
ruby security update
2018-02-28 00:00:00
centos
centos
ruby, rubygem, rubygems security update
2018-03-10 11:53:01
fedora
fedora
[SECURITY] Fedora 26 Update: ruby-2.4.2-84.fc26
2017-12-26 16:32:32
[SECURITY] Fedora 27 Update: ruby-2.4.2-84.fc27
2017-10-02 14:27:35
[SECURITY] Fedora 25 Update: ruby-2.3.4-64.fc25
2017-09-16 03:24:34
gentoo
gentoo
Ruby: Multiple vulnerabilities
2017-10-18 00:00:00
RubyGems: Multiple vulnerabilities
2017-10-08 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Ruby affect PowerKVM
2018-06-18 01:42:18
ubuntucve
ubuntucve
f5
f5
alpinelinux
alpinelinux
hackerone
hackerone
Ruby: Escape sequence injection vulnerability in WEBrick BasicAuth
2017-04-24 10:25:41
Ruby: Arbitrary heap exposure in JSON.generate
2017-03-01 22:55:39
Ruby: sprintf combined format string attack
2017-03-10 11:48:41
veracode
veracode
Buffer Overflow
2019-05-16 02:16:35
Denial Of Service (DoS)
2019-05-16 02:49:49
Privilege Escalation
2019-05-16 02:16:35
redhatcve
redhatcve
prion
prion
Null pointer dereference
2017-08-31 17:29:00
Design/Logic Flaw
2017-09-19 17:29:00
Authentication flaw
2017-09-19 17:29:00
debiancve
debiancve
cve
cve
github
github
Ruby OpenSSL DoS Vulnerability
2022-05-14 02:03:26
WEBrick RCE Vulnerability
2022-05-14 02:03:29
RubyGems may allow a maliciously crafted gem to overwrite files
2022-05-13 01:38:26
zdt
zdt
RubyGems < 2.6.13 - Arbitrary File Overwrite Exploit
2017-09-04 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2017-0076
2017-10-06 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2017-0034
2017-09-19 00:00:00
Important Photon OS Security Update - PHSA-2017-0070
2017-09-19 00:00:00
apple
apple
About the security content of macOS High Sierra 10.13.6, Security Update 2018-004 Sierra, Security Update 2018-004 El Capitan - Apple Support
2020-07-28 05:29:11
Related for DEBIAN_DLA-1114.NASL