Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-3828.NASL
HistoryJun 15, 2024 - 12:00 a.m.

Debian dla-3828 : atril - security update

2024-06-1500:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
1
debian 10
atril
mate desktop

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L

9.1 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.9%

JSON

The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-3828 advisory.

-------------------------------------------------------------------------     Debian LTS Advisory DLA-3828-1                [email protected]     https://www.debian.org/lts/security/               Santiago Ruano Rincn     June 14, 2024                                 https://wiki.debian.org/LTS
-------------------------------------------------------------------------

Package        : atril     Version        : 1.20.3-1+deb10u2     CVE ID         : CVE-2023-52076     Debian Bug     : 1061522

A vulnerability was discovered in Atril, a simple document viewer designed for     the MATE desktop environment.

CVE-2023-52076

  A missing input sanitising could result in writing arbitrary files if a       malformed epub document is opened, that could result in arbitrary code       execution.

For Debian 10 buster, these problems have been fixed in version     1.20.3-1+deb10u2. This update also disables support for comic book archives,     mitigating CVE-2023-51698.

We recommend that you upgrade your atril packages.

For the detailed security status of atril please refer to     its security tracker page at:
https://security-tracker.debian.org/tracker/atril

Further information about Debian LTS security advisories, how to apply     these updates to your system and frequently asked questions can be     found at: https://wiki.debian.org/LTS     Attachment:
signature.asc     Description: PGP signature

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
#
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory dla-3828. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('compat.inc');

if (description)
{
  script_id(200635);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/06/15");

  script_cve_id("CVE-2023-51698", "CVE-2023-52076");

  script_name(english:"Debian dla-3828 : atril - security update");

  script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing one or more security-related updates.");
  script_set_attribute(attribute:"description", value:
"The remote Debian 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the
dla-3828 advisory.

    -------------------------------------------------------------------------
    Debian LTS Advisory DLA-3828-1                [email protected]
    https://www.debian.org/lts/security/               Santiago Ruano Rincn
    June 14, 2024                                 https://wiki.debian.org/LTS
    -------------------------------------------------------------------------

    Package        : atril
    Version        : 1.20.3-1+deb10u2
    CVE ID         : CVE-2023-52076
    Debian Bug     : 1061522

    A vulnerability was discovered in Atril, a simple document viewer designed for
    the MATE desktop environment.

    CVE-2023-52076

      A missing input sanitising could result in writing arbitrary files if a
      malformed epub document is opened, that could result in arbitrary code
      execution.

    For Debian 10 buster, these problems have been fixed in version
    1.20.3-1+deb10u2. This update also disables support for comic book archives,
    mitigating CVE-2023-51698.

    We recommend that you upgrade your atril packages.

    For the detailed security status of atril please refer to
    its security tracker page at:
    https://security-tracker.debian.org/tracker/atril

    Further information about Debian LTS security advisories, how to apply
    these updates to your system and frequently asked questions can be
    found at: https://wiki.debian.org/LTS
    Attachment:
    signature.asc
    Description: PGP signature

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/atril");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2023-51698");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/CVE-2023-52076");
  script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/buster/atril");
  script_set_attribute(attribute:"solution", value:
"Upgrade the atril packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-51698");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/01/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/06/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/06/15");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:atril");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:atril-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:gir1.2-atril");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:gir1.2-atrildocument-1.5.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:gir1.2-atrilview-1.5.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libatrildocument-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libatrildocument3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libatrilview-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:libatrilview3");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:10.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Debian Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);

var debian_release = get_kb_item('Host/Debian/release');
if ( isnull(debian_release) ) audit(AUDIT_OS_NOT, 'Debian');
debian_release = chomp(debian_release);
if (! preg(pattern:"^(10)\.[0-9]+", string:debian_release)) audit(AUDIT_OS_NOT, 'Debian 10.0', 'Debian ' + debian_release);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Debian', cpu);

var pkgs = [
    {'release': '10.0', 'prefix': 'atril', 'reference': '1.20.3-1+deb10u2'},
    {'release': '10.0', 'prefix': 'atril-common', 'reference': '1.20.3-1+deb10u2'},
    {'release': '10.0', 'prefix': 'gir1.2-atril', 'reference': '1.20.3-1+deb10u2'},
    {'release': '10.0', 'prefix': 'gir1.2-atrildocument-1.5.0', 'reference': '1.20.3-1+deb10u2'},
    {'release': '10.0', 'prefix': 'gir1.2-atrilview-1.5.0', 'reference': '1.20.3-1+deb10u2'},
    {'release': '10.0', 'prefix': 'libatrildocument-dev', 'reference': '1.20.3-1+deb10u2'},
    {'release': '10.0', 'prefix': 'libatrildocument3', 'reference': '1.20.3-1+deb10u2'},
    {'release': '10.0', 'prefix': 'libatrilview-dev', 'reference': '1.20.3-1+deb10u2'},
    {'release': '10.0', 'prefix': 'libatrilview3', 'reference': '1.20.3-1+deb10u2'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var _release = NULL;
  var prefix = NULL;
  var reference = NULL;
  if (!empty_or_null(package_array['release'])) _release = package_array['release'];
  if (!empty_or_null(package_array['prefix'])) prefix = package_array['prefix'];
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (_release && prefix && reference) {
    if (deb_check(release:_release, prefix:prefix, reference:reference)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : deb_report_get()
  );
  exit(0);
}
else
{
  var tested = deb_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'atril / atril-common / gir1.2-atril / gir1.2-atrildocument-1.5.0 / etc');
}
VendorProductVersionCPE
debiandebian_linuxlibatrilview-devp-cpe:/a:debian:debian_linux:libatrilview-dev
debiandebian_linuxlibatrilview3p-cpe:/a:debian:debian_linux:libatrilview3
debiandebian_linux10.0cpe:/o:debian:debian_linux:10.0
debiandebian_linuxgir1.2-atrilp-cpe:/a:debian:debian_linux:gir1.2-atril
debiandebian_linuxlibatrildocument3p-cpe:/a:debian:debian_linux:libatrildocument3
debiandebian_linuxatrilp-cpe:/a:debian:debian_linux:atril
debiandebian_linuxgir1.2-atrildocument-1.5.0p-cpe:/a:debian:debian_linux:gir1.2-atrildocument-1.5.0
debiandebian_linuxgir1.2-atrilview-1.5.0p-cpe:/a:debian:debian_linux:gir1.2-atrilview-1.5.0
debiandebian_linuxatril-commonp-cpe:/a:debian:debian_linux:atril-common
debiandebian_linuxlibatrildocument-devp-cpe:/a:debian:debian_linux:libatrildocument-dev

Related

debian 1
nessus 6
cve 2
osv 5
veracode 2
prion 2
openvas 5
redos 2
cvelist 2
mageia 1
ubuntucve 2
fedora 2
debiancve 2
ubuntu 1
nvd 2
debian
debian
[SECURITY] [DSA 5688-1] atril security update
2024-05-12 13:21:12
nessus
nessus
Debian dsa-5688 : atril - security update
2024-05-12 00:00:00
Amazon Linux 2 : atril (ALASMATE-DESKTOP1.X-2024-007)
2024-02-20 00:00:00
Fedora 39 : atril (2024-3914113f25)
2024-01-26 00:00:00
cve
cve
CVE-2023-51698
2024-01-12 21:15:10
CVE-2023-52076
2024-01-25 16:15:07
osv
osv
CVE-2023-51698
2024-01-12 21:15:10
CVE-2023-52076
2024-01-25 16:15:07
atril - security update
2024-05-12 00:00:00
veracode
veracode
OS Command Injection
2024-01-20 23:14:02
Path Traversal
2024-02-03 03:01:39
prion
prion
Command injection
2024-01-12 21:15:00
Path traversal
2024-01-25 16:15:00
openvas
openvas
Fedora: Security Advisory for atril (FEDORA-2024-3914113f25)
2024-01-27 00:00:00
Ubuntu: Security Advisory (USN-6808-1)
2024-06-06 00:00:00
Mageia: Security Advisory (MGASA-2024-0224)
2024-06-17 00:00:00
redos
redos
ROS-20240412-03
2024-04-12 00:00:00
ROS-20240123-01
2024-01-23 00:00:00
cvelist
cvelist
CVE-2023-52076 Remote Code Execution Vulnerability in Atril's EPUB ebook parsing
2024-01-25 15:30:12
CVE-2023-51698 Atril's CBT comic book parsing vulnerable to Remote Code Execution
2024-01-12 20:27:31
mageia
mageia
Updated atril packages fix security vulnerability
2024-06-16 02:07:50
ubuntucve
ubuntucve
CVE-2023-51698
2024-01-12 00:00:00
CVE-2023-52076
2024-01-25 00:00:00
fedora
fedora
[SECURITY] Fedora 38 Update: atril-1.26.2-2.fc38
2024-02-09 01:52:32
[SECURITY] Fedora 39 Update: atril-1.26.2-1.fc39
2024-01-27 01:30:58
debiancve
debiancve
CVE-2023-52076
2024-01-25 16:15:07
CVE-2023-51698
2024-01-12 21:15:10
ubuntu
ubuntu
Atril vulnerability
2024-06-05 00:00:00
nvd
nvd
CVE-2023-52076
2024-01-25 16:15:07
CVE-2023-51698
2024-01-12 21:15:10

9.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

CHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:L

9.1 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.9%

JSON
Related for DEBIAN_DLA-3828.NASL
debian1nessus6cve2osv5veracode2prion2openvas5redos2cvelist2mageia1ubuntucve2fedora2debiancve2ubuntu1nvd2