Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-1912.NASL
HistoryFeb 24, 2010 - 12:00 a.m.

Debian DSA-1912-1 : camlimages - integer overflow

2010-02-2400:00:00
This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
22
JSON

It was discovered that CamlImages, an open source image processing library, suffers from several integer overflows, which may lead to a potentially exploitable heap overflow and result in arbitrary code execution. This advisory addresses issues with the reading of TIFF files. It also expands the patch for CVE-2009-2660 to cover another potential overflow in the processing of JPEG images.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-1912. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(44777);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");

  script_cve_id("CVE-2009-2660", "CVE-2009-3296");
  script_bugtraq_id(36713);
  script_xref(name:"DSA", value:"1912");

  script_name(english:"Debian DSA-1912-1 : camlimages - integer overflow");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"It was discovered that CamlImages, an open source image processing
library, suffers from several integer overflows, which may lead to a
potentially exploitable heap overflow and result in arbitrary code
execution. This advisory addresses issues with the reading of TIFF
files. It also expands the patch for CVE-2009-2660 to cover another
potential overflow in the processing of JPEG images."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/CVE-2009-2660"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2009/dsa-1912"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the camlimages package.

For the oldstable distribution (etch), this problem has been fixed in
version 2.20-8+etch3.

For the stable distribution (lenny), this problem has been fixed in
version 1:2.2.0-4+lenny3."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(189);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:camlimages");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:4.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:5.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/10/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/02/24");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"4.0", prefix:"libcamlimages-ocaml", reference:"2.20-8+etch3")) flag++;
if (deb_check(release:"4.0", prefix:"libcamlimages-ocaml-dev", reference:"2.20-8+etch3")) flag++;
if (deb_check(release:"4.0", prefix:"libcamlimages-ocaml-doc", reference:"2.20-8+etch3")) flag++;
if (deb_check(release:"5.0", prefix:"libcamlimages-ocaml", reference:"1:2.2.0-4+lenny3")) flag++;
if (deb_check(release:"5.0", prefix:"libcamlimages-ocaml-dev", reference:"1:2.2.0-4+lenny3")) flag++;
if (deb_check(release:"5.0", prefix:"libcamlimages-ocaml-doc", reference:"1:2.2.0-4+lenny3")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxcamlimagesp-cpe:/a:debian:debian_linux:camlimages
debiandebian_linux4.0cpe:/o:debian:debian_linux:4.0
debiandebian_linux5.0cpe:/o:debian:debian_linux:5.0

Related

openvas 14
securityvulns 2
debian 3
gentoo 1
nessus 4
fedora 2
cve 2
prion 2
debiancve 2
seebug 1
ubuntucve 2
osv 2
openvas
openvas
Debian Security Advisory DSA 1912-2 (advi)
2009-10-27 00:00:00
Debian Security Advisory DSA 1912-2 (advi)
2009-10-27 00:00:00
Debian Security Advisory DSA 1912-1 (camlimages)
2009-10-19 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 1912-2] New advi packages fix arbitrary code execution
2009-10-26 00:00:00
CamlImages library integer overflows
2009-10-26 00:00:00
debian
debian
[SECURITY] [DSA 1912-2] New advi packages fix arbitrary code execution
2009-10-23 23:50:26
[SECURITY] [DSA 1912-1] New camlimages fix arbitrary code execution
2009-10-16 10:31:46
[SECURITY] [DSA 1857-1] New camlimages packages fix arbitrary code execution
2009-08-10 00:55:14
gentoo
gentoo
CamlImages: User-assisted execution of arbitrary code
2010-06-01 00:00:00
nessus
nessus
GLSA-201006-02 : CamlImages: User-assisted execution of arbitrary code
2010-06-02 00:00:00
Fedora 10 : ocaml-camlimages-3.0.1-3.fc10.3 (2009-10568)
2009-11-11 00:00:00
Fedora 11 : ocaml-camlimages-3.0.1-7.fc11.3 (2009-10594)
2009-11-11 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: ocaml-camlimages-3.0.1-3.fc10.3
2009-11-10 17:48:14
[SECURITY] Fedora 11 Update: ocaml-camlimages-3.0.1-7.fc11.3
2009-11-10 17:44:02
cve
cve
CVE-2009-3296
2009-10-20 17:30:00
CVE-2009-2660
2009-08-04 16:30:00
prion
prion
Integer overflow
2009-10-20 17:30:00
Integer overflow
2009-08-04 16:30:00
debiancve
debiancve
CVE-2009-3296
2009-10-20 17:30:00
CVE-2009-2660
2009-08-04 16:30:00
seebug
seebug
CamlImages JPEGε€„η†θΏœη¨‹ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2009-10-20 00:00:00
ubuntucve
ubuntucve
CVE-2009-3296
2009-10-20 00:00:00
CVE-2009-2660
2009-08-04 00:00:00
osv
osv
camlimages - arbitrary code execution
2009-10-16 00:00:00
advi - arbitrary code execution
2009-10-16 00:00:00
JSON
Related for DEBIAN_DSA-1912.NASL
openvas14securityvulns2debian3gentoo1nessus4fedora2cve2prion2debiancve2seebug1ubuntucve2osv2