Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-2781.NASL
HistoryOct 20, 2013 - 12:00 a.m.

Debian DSA-2781-1 : python-crypto - PRNG not correctly reseeded in some situations

2013-10-2000:00:00
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
JSON

A cryptographic vulnerability was discovered in the pseudo random number generator in python-crypto.

In some situations, a race condition could prevent the reseeding of the generator when multiple processes are forked from the same parent.
This would lead it to generate identical output on all processes, which might leak sensitive values like cryptographic keys.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-2781. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(70503);
  script_version("1.8");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2013-1445");
  script_bugtraq_id(63201);
  script_xref(name:"DSA", value:"2781");

  script_name(english:"Debian DSA-2781-1 : python-crypto - PRNG not correctly reseeded in some situations");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A cryptographic vulnerability was discovered in the pseudo random
number generator in python-crypto.

In some situations, a race condition could prevent the reseeding of
the generator when multiple processes are forked from the same parent.
This would lead it to generate identical output on all processes,
which might leak sensitive values like cryptographic keys."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/squeeze/python-crypto"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/wheezy/python-crypto"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2013/dsa-2781"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the python-crypto packages.

For the oldstable distribution (squeeze), this problem has been fixed
in version 2.1.0-2+squeeze2.

For the stable distribution (wheezy), this problem has been fixed in
version 2.6-4+deb7u3."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:python-crypto");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:6.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:7.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2013/10/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/10/20");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"6.0", prefix:"python-crypto", reference:"2.1.0-2+squeeze2")) flag++;
if (deb_check(release:"6.0", prefix:"python-crypto-dbg", reference:"2.1.0-2+squeeze2")) flag++;
if (deb_check(release:"7.0", prefix:"python-crypto", reference:"2.6-4+deb7u3")) flag++;
if (deb_check(release:"7.0", prefix:"python-crypto-dbg", reference:"2.6-4+deb7u3")) flag++;
if (deb_check(release:"7.0", prefix:"python-crypto-doc", reference:"2.6-4+deb7u3")) flag++;
if (deb_check(release:"7.0", prefix:"python3-crypto", reference:"2.6-4+deb7u3")) flag++;
if (deb_check(release:"7.0", prefix:"python3-crypto-dbg", reference:"2.6-4+deb7u3")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxpython-cryptop-cpe:/a:debian:debian_linux:python-crypto
debiandebian_linux6.0cpe:/o:debian:debian_linux:6.0
debiandebian_linux7.0cpe:/o:debian:debian_linux:7.0

Related

securityvulns 2
cvelist 1
cve 1
openvas 8
github 1
fedora 5
nessus 6
osv 2
debiancve 1
amazon 1
ubuntucve 1
prion 1
debian 1
freebsd 1
mageia 1
ibm 2
securityvulns
securityvulns
pycrypto PRNG vulnerabilities
2013-11-05 00:00:00
[ MDVSA-2013:262 ] python-pycrypto
2013-11-05 00:00:00
cvelist
cvelist
CVE-2013-1445
2022-10-03 16:14:47
cve
cve
CVE-2013-1445
2013-10-26 17:55:00
openvas
openvas
Debian: Security Advisory (DSA-2781-1)
2013-10-17 00:00:00
Fedora Update for python-crypto FEDORA-2013-19441
2013-10-28 00:00:00
Fedora Update for python-crypto FEDORA-2013-19472
2013-10-28 00:00:00
github
github
PyCrypto does not properly reseed PRNG before allowing access
2022-05-17 04:59:18
fedora
fedora
[SECURITY] Fedora 18 Update: python-crypto-2.6.1-1.fc18
2013-10-27 04:01:42
[SECURITY] Fedora 19 Update: python-crypto-2.6.1-1.fc19
2013-10-27 03:58:02
[SECURITY] Fedora 20 Update: python-crypto-2.6.1-1.fc20
2013-11-10 07:05:58
nessus
nessus
Fedora 20 : python-crypto-2.6.1-1.fc20 (2013-19390)
2013-11-11 00:00:00
Mandriva Linux Security Advisory : python-pycrypto (MDVSA-2013:262)
2013-10-29 00:00:00
Amazon Linux AMI : python-crypto (ALAS-2013-243)
2013-11-14 00:00:00
osv
osv
PyCrypto does not properly reseed PRNG before allowing access
2022-05-17 04:59:18
PYSEC-2013-29
2013-10-26 17:55:00
debiancve
debiancve
CVE-2013-1445
2013-10-26 17:55:00
amazon
amazon
Low: python-crypto
2013-11-03 12:09:00
ubuntucve
ubuntucve
CVE-2013-1445
2013-10-26 00:00:00
prion
prion
Race condition
2013-10-26 17:55:00
debian
debian
[SECURITY] [DSA 2781-1] python-crypto security update
2013-10-18 19:41:57
freebsd
freebsd
pycrypto -- PRNG reseed race condition
2013-10-17 00:00:00
mageia
mageia
Updated python-pycrypto packages fix CVE-2013-1445
2013-10-26 01:13:58
ibm
ibm
Security Bulletin: Multiple vulnerabilities in software used in node.js affect Cloud Pak System
2023-03-31 14:17:53
Security Bulletin: Mutiple Vulnerabilties in Open Source packages affecting IBM Watson Machine Learning Accelerator on Cloud Pak for Data
2023-12-12 17:35:22
JSON
Related for DEBIAN_DSA-2781.NASL
securityvulns2cvelist1cve1openvas8github1fedora5nessus6osv2debiancve1amazon1ubuntucve1prion1debian1freebsd1mageia1ibm2