Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-3475.NASL
HistoryJun 30, 2023 - 12:00 a.m.

Debian DLA-3475-1 : trafficserver - LTS security update

2023-06-3000:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
1
JSON

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3475 advisory.

  • Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: 8.0.0 to 9.2.0. (CVE-2022-47184)

  • Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server. The configuration option proxy.config.http.push_method_enabled didn’t function. However, by default the PUSH method is blocked in the ip_allow configuration file.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0. 8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions (CVE-2023-30631)

  • Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0. 8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions (CVE-2023-33933)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
#
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory dla-3475. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('compat.inc');

if (description)
{
  script_id(177811);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/06/30");

  script_cve_id("CVE-2022-47184", "CVE-2023-30631", "CVE-2023-33933");

  script_name(english:"Debian DLA-3475-1 : trafficserver - LTS security update");

  script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing one or more security-related updates.");
  script_set_attribute(attribute:"description", value:
"The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the
dla-3475 advisory.

  - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation
    Apache Traffic Server.This issue affects Apache Traffic Server: 8.0.0 to 9.2.0. (CVE-2022-47184)

  - Improper Input Validation vulnerability in Apache Software Foundation Apache Traffic Server. The
    configuration option proxy.config.http.push_method_enabled didn't function. However, by default the PUSH
    method is blocked in the ip_allow configuration file.This issue affects Apache Traffic Server: from 8.0.0
    through 9.2.0. 8.x users should upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or
    later versions (CVE-2023-30631)

  - Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Apache Software Foundation
    Apache Traffic Server.This issue affects Apache Traffic Server: from 8.0.0 through 9.2.0. 8.x users should
    upgrade to 8.1.7 or later versions 9.x users should upgrade to 9.2.1 or later versions (CVE-2023-33933)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1038248");
  # https://security-tracker.debian.org/tracker/source-package/trafficserver
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?20613153");
  script_set_attribute(attribute:"see_also", value:"https://www.debian.org/lts/security/2023/dla-3475");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2022-47184");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2023-30631");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2023-33933");
  script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/buster/trafficserver");
  script_set_attribute(attribute:"solution", value:
"Upgrade the trafficserver packages.

For Debian 10 buster, these problems have been fixed in version 8.1.7-0+deb10u1.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-33933");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/06/14");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/06/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/06/30");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:trafficserver");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:trafficserver-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:trafficserver-experimental-plugins");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:10.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Debian Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);

var debian_release = get_kb_item('Host/Debian/release');
if ( isnull(debian_release) ) audit(AUDIT_OS_NOT, 'Debian');
debian_release = chomp(debian_release);
if (! preg(pattern:"^(10)\.[0-9]+", string:debian_release)) audit(AUDIT_OS_NOT, 'Debian 10.0', 'Debian ' + debian_release);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);

var pkgs = [
    {'release': '10.0', 'prefix': 'trafficserver', 'reference': '8.1.7-0+deb10u1'},
    {'release': '10.0', 'prefix': 'trafficserver-dev', 'reference': '8.1.7-0+deb10u1'},
    {'release': '10.0', 'prefix': 'trafficserver-experimental-plugins', 'reference': '8.1.7-0+deb10u1'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var _release = NULL;
  var prefix = NULL;
  var reference = NULL;
  if (!empty_or_null(package_array['release'])) _release = package_array['release'];
  if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (_release && prefix && reference) {
    if (deb_check(release:_release, prefix:prefix, reference:reference)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : deb_report_get()
  );
  exit(0);
}
else
{
  var tested = deb_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'trafficserver / trafficserver-dev / trafficserver-experimental-plugins');
}
VendorProductVersionCPE
debiandebian_linuxtrafficserverp-cpe:/a:debian:debian_linux:trafficserver
debiandebian_linuxtrafficserver-devp-cpe:/a:debian:debian_linux:trafficserver-dev
debiandebian_linuxtrafficserver-experimental-pluginsp-cpe:/a:debian:debian_linux:trafficserver-experimental-plugins
debiandebian_linux10.0cpe:/o:debian:debian_linux:10.0

Related

nessus 3
fedora 2
debian 3
osv 5
openvas 5
cve 3
debiancve 3
ubuntucve 3
cvelist 3
prion 3
veracode 3
cnvd 2
nessus
nessus
Fedora 38 : trafficserver (2023-2e6bead58b)
2023-06-23 00:00:00
Fedora 37 : trafficserver (2023-92686b3e8b)
2023-06-23 00:00:00
Debian DSA-5435-1 : trafficserver - security update
2023-06-22 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: trafficserver-9.2.1-1.fc38
2023-06-23 01:02:02
[SECURITY] Fedora 37 Update: trafficserver-9.2.1-1.fc37
2023-06-23 01:01:06
debian
debian
[SECURITY] [DSA 5435-1] trafficserver security update
2023-06-21 21:31:58
[SECURITY] [DLA 3475-1] trafficserver security update
2023-06-29 23:23:56
[SECURITY] [DSA 5435-2] trafficserver security update
2023-06-22 18:03:37
osv
osv
trafficserver - security update
2023-06-21 00:00:00
trafficserver - security update
2023-06-30 00:00:00
CVE-2023-33933
2023-06-14 08:15:09
openvas
openvas
Fedora: Security Advisory for trafficserver (FEDORA-2023-2e6bead58b)
2023-06-24 00:00:00
Fedora: Security Advisory for trafficserver (FEDORA-2023-92686b3e8b)
2023-06-24 00:00:00
Apache Traffic Server (ATS) 8.x <= 8.1.6, 9.x <= 9.2.0 Multiple Vulnerabilities
2023-06-14 00:00:00
cve
cve
CVE-2023-33933
2023-06-14 08:15:09
CVE-2022-47184
2023-06-14 08:15:00
CVE-2023-30631
2023-06-14 08:15:09
debiancve
debiancve
CVE-2023-33933
2023-06-14 08:15:09
CVE-2022-47184
2023-06-14 08:15:00
CVE-2023-30631
2023-06-14 08:15:09
ubuntucve
ubuntucve
CVE-2023-33933
2023-06-14 00:00:00
CVE-2022-47184
2023-06-14 00:00:00
CVE-2023-30631
2023-06-14 00:00:00
cvelist
cvelist
CVE-2023-33933 Apache Traffic Server: s3_auth plugin problem with hash calculation
2023-06-14 07:44:12
CVE-2022-47184 Apache Traffic Server: The TRACE method can be use to disclose network information
2023-06-14 07:42:36
CVE-2023-30631 Apache Traffic Server: Configuration option to block the PUSH method in ATS didn't work
2023-06-14 07:44:55
prion
prion
Code injection
2023-06-14 08:15:00
Code injection
2023-06-14 08:15:00
Input validation
2023-06-14 08:15:00
veracode
veracode
Information Disclosure
2023-07-01 05:46:57
Information Disclosure
2023-07-06 20:58:44
Improper Input Validation
2023-08-07 01:34:31
cnvd
cnvd
Apache Traffic Server Information Disclosure Vulnerability (CNVD-2023-71727)
2023-06-16 00:00:00
Apache Traffic Server Denial of Service Vulnerability (CNVD-2023-55453)
2023-06-16 00:00:00
JSON
Related for DEBIAN_DLA-3475.NASL
nessus3fedora2debian3osv5openvas5cve3debiancve3ubuntucve3cvelist3prion3veracode3cnvd2