Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-1520.NASL
HistorySep 27, 2018 - 12:00 a.m.

Debian DLA-1520-1 : python3.4 security update

2018-09-2700:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
JSON

Multiple vulnerabilities were found in the CPython interpreter which can cause denial of service, information gain, and arbitrary code execution.

CVE-2017-1000158

CPython (aka Python) is vulnerable to an integer overflow in the PyString_DecodeEscape function in stringobject.c, resulting in heap-based buffer overflow (and possible arbitrary code execution)

CVE-2018-1060

python is vulnerable to catastrophic backtracking in pop3lib’s apop() method. An attacker could use this flaw to cause denial of service.

CVE-2018-1061

python is vulnerable to catastrophic backtracking in the difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause denial of service.

CVE-2018-1000802

Python Software Foundation Python (CPython) version 2.7 contains a CWE-77: Improper Neutralization of Special Elements used in a Command (‘Command Injection’) vulnerability in shutil module (make_archive function) that can result in Denial of service, Information gain via injection of arbitrary files on the system or entire drive. This attack appear to be exploitable via Passage of unfiltered user input to the function.

For Debian 8 ‘Jessie’, these problems have been fixed in version 3.4.2-1+deb8u1.

We recommend that you upgrade your python3.4 packages.

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-1520-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(117713);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2017-1000158", "CVE-2018-1000802", "CVE-2018-1060", "CVE-2018-1061");

  script_name(english:"Debian DLA-1520-1 : python3.4 security update");
  script_summary(english:"Checks dpkg output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Multiple vulnerabilities were found in the CPython interpreter which
can cause denial of service, information gain, and arbitrary code
execution.

CVE-2017-1000158

CPython (aka Python) is vulnerable to an integer overflow in the
PyString_DecodeEscape function in stringobject.c, resulting in
heap-based buffer overflow (and possible arbitrary code execution)

CVE-2018-1060

python is vulnerable to catastrophic backtracking in pop3lib's apop()
method. An attacker could use this flaw to cause denial of service.

CVE-2018-1061

python is vulnerable to catastrophic backtracking in the
difflib.IS_LINE_JUNK method. An attacker could use this flaw to cause
denial of service.

CVE-2018-1000802

Python Software Foundation Python (CPython) version 2.7 contains a
CWE-77: Improper Neutralization of Special Elements used in a Command
('Command Injection') vulnerability in shutil module (make_archive
function) that can result in Denial of service, Information gain via
injection of arbitrary files on the system or entire drive. This
attack appear to be exploitable via Passage of unfiltered user input
to the function.

For Debian 8 'Jessie', these problems have been fixed in version
3.4.2-1+deb8u1.

We recommend that you upgrade your python3.4 packages.

NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://lists.debian.org/debian-lts-announce/2018/09/msg00031.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/jessie/python3.4"
  );
  script_set_attribute(attribute:"solution", value:"Upgrade the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:idle-python3.4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libpython3.4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libpython3.4-dbg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libpython3.4-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libpython3.4-minimal");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libpython3.4-stdlib");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libpython3.4-testsuite");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:python3.4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:python3.4-dbg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:python3.4-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:python3.4-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:python3.4-examples");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:python3.4-minimal");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:python3.4-venv");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:8.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2018/09/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/09/27");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"8.0", prefix:"idle-python3.4", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"libpython3.4", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"libpython3.4-dbg", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"libpython3.4-dev", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"libpython3.4-minimal", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"libpython3.4-stdlib", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"libpython3.4-testsuite", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"python3.4", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"python3.4-dbg", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"python3.4-dev", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"python3.4-doc", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"python3.4-examples", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"python3.4-minimal", reference:"3.4.2-1+deb8u1")) flag++;
if (deb_check(release:"8.0", prefix:"python3.4-venv", reference:"3.4.2-1+deb8u1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxidle-python3.4p-cpe:/a:debian:debian_linux:idle-python3.4
debiandebian_linuxlibpython3.4p-cpe:/a:debian:debian_linux:libpython3.4
debiandebian_linuxlibpython3.4-dbgp-cpe:/a:debian:debian_linux:libpython3.4-dbg
debiandebian_linuxlibpython3.4-devp-cpe:/a:debian:debian_linux:libpython3.4-dev
debiandebian_linuxlibpython3.4-minimalp-cpe:/a:debian:debian_linux:libpython3.4-minimal
debiandebian_linuxlibpython3.4-stdlibp-cpe:/a:debian:debian_linux:libpython3.4-stdlib
debiandebian_linuxlibpython3.4-testsuitep-cpe:/a:debian:debian_linux:libpython3.4-testsuite
debiandebian_linuxpython3.4p-cpe:/a:debian:debian_linux:python3.4
debiandebian_linuxpython3.4-dbgp-cpe:/a:debian:debian_linux:python3.4-dbg
debiandebian_linuxpython3.4-devp-cpe:/a:debian:debian_linux:python3.4-dev
Rows per page:
1-10 of 151

Related

debian 6
nessus 60
osv 11
openvas 41
fedora 23
suse 3
ubuntu 5
ibm 9
amazon 5
redhat 1
mageia 3
centos 1
ubuntucve 3
cloudfoundry 3
oraclelinux 1
redhatcve 4
debiancve 3
prion 3
cve 3
photon 3
alpinelinux 2
gentoo 1
veracode 2
f5 1
kaspersky 1
freebsd 1
debian
debian
[SECURITY] [DLA 1519-1] python2.7 security update
2018-09-25 23:47:43
[SECURITY] [DLA 1520-1] python3.4 security update
2018-09-26 00:26:39
[SECURITY] [DSA 4306-1] python2.7 security update
2018-09-27 21:05:32
nessus
nessus
Debian DLA-1519-1 : python2.7 security update
2018-09-27 00:00:00
openSUSE Security Update : python / python-base (openSUSE-2018-1363)
2018-11-11 00:00:00
SUSE SLED12 / SLES12 Security Update : python, python-base (SUSE-SU-2018:3554-2)
2018-12-11 00:00:00
osv
osv
python2.7 - security update
2018-09-25 00:00:00
python3.4 - security update
2018-09-25 00:00:00
python2.7 - security update
2018-09-27 00:00:00
openvas
openvas
Debian LTS: Security Advisory for python3.4 (DLA-1520-1)
2018-09-26 00:00:00
Debian LTS: Security Advisory for python2.7 (DLA-1519-1)
2018-09-26 00:00:00
openSUSE: Security Advisory for python (openSUSE-SU-2018:3703-1)
2018-11-10 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: python34-3.4.9-2.fc27
2018-08-16 07:24:43
[SECURITY] Fedora 27 Update: python35-3.5.6-1.fc27
2018-08-15 19:19:41
[SECURITY] Fedora 27 Update: python3-docs-3.6.5-1.fc27
2018-04-09 19:10:14
suse
suse
Security update for python, python-base (moderate)
2018-11-10 00:20:28
Security update for python3 (moderate)
2018-09-14 18:08:02
Security update for python (moderate)
2018-10-06 18:09:21
ubuntu
ubuntu
Python vulnerabilities
2018-11-13 00:00:00
Python vulnerabilities
2018-11-15 00:00:00
Python vulnerability
2017-11-28 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in Python affect PowerKVM
2018-12-17 14:20:01
Security Bulletin: Multiple Security Vulnerabilities affect IBM Cloud Private (CVE-2018-1060, CVE-2018-1061)
2018-12-10 12:55:02
Security Bulletin: Vulnerabilities in Python affect IBM Operations Analytics Predictive Insights (CVE-2018-1060, CVE-2018-1061)
2018-11-05 05:10:01
amazon
amazon
Medium: python34, python35, python36, python27
2018-04-26 17:28:00
Medium: python27
2018-12-06 00:22:00
Medium: python35, python34
2018-01-17 23:18:00
redhat
redhat
(RHSA-2018:3041) Moderate: python security and bug fix update
2018-10-30 04:12:01
mageia
mageia
Updated python packages fix security vulnerabilities
2018-05-29 22:41:14
Updated python3 packages fix security vulnerabilities
2018-06-04 18:11:47
Updated python/python3 packages fix security vulnerability
2018-01-01 04:17:34
centos
centos
python, tkinter security update
2018-11-15 18:51:33
ubuntucve
ubuntucve
CVE-2018-1061
2018-06-19 00:00:00
CVE-2018-1000802
2018-09-18 00:00:00
CVE-2017-1000158
2017-11-17 00:00:00
cloudfoundry
cloudfoundry
USN-3817-1: Python vulnerabilities | Cloud Foundry
2018-11-20 00:00:00
USN-3496-1: Python vulnerability | Cloud Foundry
2017-12-14 00:00:00
USN-3496-3: Python vulnerability | Cloud Foundry
2017-12-14 00:00:00
oraclelinux
oraclelinux
python security and bug fix update
2018-11-05 00:00:00
redhatcve
redhatcve
CVE-2018-1000802
2018-09-20 14:52:37
CVE-2017-1000158
2017-12-01 01:49:42
CVE-2018-1061
2018-04-04 01:48:52
debiancve
debiancve
CVE-2018-1000802
2018-09-18 17:29:00
CVE-2017-1000158
2017-11-17 05:29:00
CVE-2018-1061
2018-06-19 12:29:00
prion
prion
Command injection
2018-09-18 17:29:00
Integer overflow
2017-11-17 05:29:00
Denial of service
2018-06-19 12:29:00
cve
cve
CVE-2018-1000802
2018-09-18 17:29:00
CVE-2017-1000158
2017-11-17 05:29:00
CVE-2018-1061
2018-06-19 12:29:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0086
2018-08-23 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0178
2018-08-23 00:00:00
Important Photon OS Security Update - PHSA-2018-0086
2018-08-24 00:00:00
alpinelinux
alpinelinux
CVE-2017-1000158
2017-11-17 05:29:00
CVE-2018-1061
2018-06-19 12:29:00
gentoo
gentoo
Python: Buffer overflow
2018-05-02 00:00:00
veracode
veracode
Arbitrary Code Execution
2020-05-10 23:24:35
Denial Of Service (DoS)
2019-05-16 03:18:15
f5
f5
K37332121 : Python vulnerability CVE-2017-1000158
2017-12-13 00:00:00
kaspersky
kaspersky
KLA11144 ACE vulnerability in Python
2017-11-17 00:00:00
freebsd
freebsd
python -- possible integer overflow vulnerability
2017-06-03 00:00:00
JSON
Related for DEBIAN_DLA-1520.NASL
debian6nessus60osv11openvas41fedora23suse3ubuntu5ibm9amazon5redhat1mageia3centos1ubuntucve3cloudfoundry3oraclelinux1redhatcve4debiancve3prion3cve3photon3alpinelinux2gentoo1veracode2f51kaspersky1freebsd1