Lucene search
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-2044.NASLHistoryDec 23, 2019 - 12:00 a.m.
Debian DLA-2044-1 : cyrus-sasl2 security update
2019-12-2300:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
38
7.7 High
AI Score
Confidence
High
There has been an out-of-bounds write in Cyrus SASL leading to unauthenticated remote denial of service in OpenLDAP via a malformed LDAP packet. The OpenLDAP crash was ultimately caused by an off-by-one error in _sasl_add_string in common.c in cyrus-sasl.
For Debian 8 ‘Jessie’, this problem has been fixed in version 2.1.26.dfsg1-13+deb8u2.
We recommend that you upgrade your cyrus-sasl2 packages.
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-2044-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(132344);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/02");
script_cve_id("CVE-2019-19906");
script_name(english:"Debian DLA-2044-1 : cyrus-sasl2 security update");
script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security update.");
script_set_attribute(attribute:"description", value:
"There has been an out-of-bounds write in Cyrus SASL leading to
unauthenticated remote denial of service in OpenLDAP via a malformed
LDAP packet. The OpenLDAP crash was ultimately caused by an off-by-one
error in _sasl_add_string in common.c in cyrus-sasl.
For Debian 8 'Jessie', this problem has been fixed in version
2.1.26.dfsg1-13+deb8u2.
We recommend that you upgrade your cyrus-sasl2 packages.
NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://lists.debian.org/debian-lts-announce/2019/12/msg00027.html");
script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/jessie/cyrus-sasl2");
script_set_attribute(attribute:"solution", value:
"Upgrade the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-19906");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/12/19");
script_set_attribute(attribute:"patch_publication_date", value:"2019/12/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/12/23");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:cyrus-sasl2-dbg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:cyrus-sasl2-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:cyrus-sasl2-heimdal-dbg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:cyrus-sasl2-mit-dbg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libsasl2-2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libsasl2-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libsasl2-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libsasl2-modules-db");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libsasl2-modules-gssapi-heimdal");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libsasl2-modules-gssapi-mit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libsasl2-modules-ldap");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libsasl2-modules-otp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libsasl2-modules-sql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:sasl2-bin");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:8.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Debian Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"8.0", prefix:"cyrus-sasl2-dbg", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"cyrus-sasl2-doc", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"cyrus-sasl2-heimdal-dbg", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"cyrus-sasl2-mit-dbg", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"libsasl2-2", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"libsasl2-dev", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"libsasl2-modules", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"libsasl2-modules-db", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"libsasl2-modules-gssapi-heimdal", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"libsasl2-modules-gssapi-mit", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"libsasl2-modules-ldap", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"libsasl2-modules-otp", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"libsasl2-modules-sql", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (deb_check(release:"8.0", prefix:"sasl2-bin", reference:"2.1.26.dfsg1-13+deb8u2")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | cyrus-sasl2-dbg | p-cpe:/a:debian:debian_linux:cyrus-sasl2-dbg |
| debian | debian_linux | cyrus-sasl2-doc | p-cpe:/a:debian:debian_linux:cyrus-sasl2-doc |
| debian | debian_linux | cyrus-sasl2-heimdal-dbg | p-cpe:/a:debian:debian_linux:cyrus-sasl2-heimdal-dbg |
| debian | debian_linux | cyrus-sasl2-mit-dbg | p-cpe:/a:debian:debian_linux:cyrus-sasl2-mit-dbg |
| debian | debian_linux | libsasl2-2 | p-cpe:/a:debian:debian_linux:libsasl2-2 |
| debian | debian_linux | libsasl2-dev | p-cpe:/a:debian:debian_linux:libsasl2-dev |
| debian | debian_linux | libsasl2-modules | p-cpe:/a:debian:debian_linux:libsasl2-modules |
| debian | debian_linux | libsasl2-modules-db | p-cpe:/a:debian:debian_linux:libsasl2-modules-db |
| debian | debian_linux | libsasl2-modules-gssapi-heimdal | p-cpe:/a:debian:debian_linux:libsasl2-modules-gssapi-heimdal |
| debian | debian_linux | libsasl2-modules-gssapi-mit | p-cpe:/a:debian:debian_linux:libsasl2-modules-gssapi-mit |
Related
nessus
nessus
NewStart CGSL MAIN 6.02 : cyrus-sasl Vulnerability (NS-SA-2021-0071)
2021-03-10 00:00:00
debian
debian
[SECURITY] [DSA 4591-1] cyrus-sasl2 security update
2019-12-20 21:10:08
[SECURITY] [DSA 4591-1] cyrus-sasl2 security update
2019-12-20 21:10:08
[SECURITY] [DLA 2044-1] cyrus-sasl2 security update
2019-12-20 14:38:49
cve
cve
CVE-2019-19906
2019-12-19 18:15:00
redhatcve
redhatcve
CVE-2019-19906
2020-01-16 16:05:01
freebsd
freebsd
cyrus-sasl -- Fix off by one error
2019-12-19 00:00:00
cbl_mariner
cbl_mariner
CVE-2019-19906 affecting package cyrus-sasl 2.1.27-10
2022-04-09 06:51:52
CVE-2019-19906 affecting package cyrus-sasl 2.1.27-4
2020-09-09 06:09:11
rocky
rocky
cyrus-sasl security, bug fix, and enhancement update
2020-11-03 12:10:00
prion
prion
Out-of-bounds
2019-12-19 18:15:00
fedora
fedora
[SECURITY] Fedora 31 Update: cyrus-sasl-2.1.27-3.fc31
2020-04-04 03:22:19
[SECURITY] Fedora 32 Update: cyrus-sasl-2.1.27-4.fc32
2020-04-01 16:34:38
veracode
veracode
Denial Of Service (DoS)
2020-11-05 03:18:22
oraclelinux
oraclelinux
cyrus-sasl security, bug fix, and enhancement update
2020-11-10 00:00:00
osv
osv
CVE-2019-19906
2019-12-19 18:15:12
cyrus-sasl2 - security update
2019-12-20 00:00:00
Moderate: cyrus-sasl security, bug fix, and enhancement update
2020-11-03 12:10:00
mageia
mageia
Updated cyrus-sasl packages fix security vulnerability
2020-01-05 18:37:51
openvas
openvas
Fedora: Security Advisory for cyrus-sasl (FEDORA-2020-bf829f9a84)
2020-04-05 00:00:00
Debian: Security Advisory (DLA-2044-1)
2019-12-21 00:00:00
Debian: Security Advisory (DSA-4591-1)
2019-12-21 00:00:00
ibm
ibm
ubuntu
ubuntu
Cyrus SASL vulnerability
2020-01-28 00:00:00
debiancve
debiancve
CVE-2019-19906
2019-12-19 18:15:00
alpinelinux
alpinelinux
CVE-2019-19906
2019-12-19 18:15:00
photon
photon
Important Photon OS Security Update - PHSA-2020-0077
2020-04-07 00:00:00
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2020-2.0-0216
2020-03-07 00:00:00
Important Photon OS Security Update - PHSA-2020-3.0-0077
2020-04-06 00:00:00
redhat
redhat
(RHSA-2021:0146) Moderate: Release of OpenShift Serverless 1.12.0
2021-01-14 13:24:22
(RHSA-2020:5149) Moderate: Release of OpenShift Serverless 1.11.0
2020-11-18 13:59:56
almalinux
almalinux
Moderate: cyrus-sasl security, bug fix, and enhancement update
2020-11-03 12:10:00
cloudfoundry
cloudfoundry
USN-4256-1: Cyrus SASL vulnerability | Cloud Foundry
2020-02-12 00:00:00
ubuntucve
ubuntucve
CVE-2019-19906
2019-12-19 00:00:00
slackware
slackware
[slackware-security] cyrus-sasl
2022-02-25 00:10:10
apple
apple
About the security content of iOS 13.6 and iPadOS 13.6 - Apple Support
2020-12-15 05:18:44
About the security content of iOS 13.6 and iPadOS 13.6
2020-07-15 00:00:00
ics
ics
Siemens SIMATIC S7-1500 CPU 1518(F)-4 PN/DP MFP V3.1
2023-12-14 12:00:00