Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-4259.NASL
HistoryAug 02, 2018 - 12:00 a.m.

Debian DSA-4259-1 : ruby2.3 - security update

2018-08-0200:00:00
This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
22
JSON

Several vulnerabilities have been discovered in the interpreter for the Ruby language, which may result in incorrect processing of HTTP/FTP, directory traversal, command injection, unintended socket creation or information disclosure.

This update also fixes several issues in RubyGems which could allow an attacker to use specially crafted gem files to mount cross-site scripting attacks, cause denial of service through an infinite loop, write arbitrary files, or run malicious code.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-4259. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include("compat.inc");

if (description)
{
  script_id(111468);
  script_version("1.4");
  script_cvs_date("Date: 2019/04/05 23:25:05");

  script_cve_id("CVE-2017-17405", "CVE-2017-17742", "CVE-2017-17790", "CVE-2018-1000073", "CVE-2018-1000074", "CVE-2018-1000075", "CVE-2018-1000076", "CVE-2018-1000077", "CVE-2018-1000078", "CVE-2018-1000079", "CVE-2018-6914", "CVE-2018-8777", "CVE-2018-8778", "CVE-2018-8779", "CVE-2018-8780");
  script_xref(name:"DSA", value:"4259");

  script_name(english:"Debian DSA-4259-1 : ruby2.3 - security update");
  script_summary(english:"Checks dpkg output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Debian host is missing a security-related update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Several vulnerabilities have been discovered in the interpreter for
the Ruby language, which may result in incorrect processing of
HTTP/FTP, directory traversal, command injection, unintended socket
creation or information disclosure.

This update also fixes several issues in RubyGems which could allow an
attacker to use specially crafted gem files to mount cross-site
scripting attacks, cause denial of service through an infinite loop,
write arbitrary files, or run malicious code."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://security-tracker.debian.org/tracker/source-package/ruby2.3"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://packages.debian.org/source/stretch/ruby2.3"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.debian.org/security/2018/dsa-4259"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Upgrade the ruby2.3 packages.

For the stable distribution (stretch), these problems have been fixed
in version 2.3.3-1+deb9u3."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:ruby2.3");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:9.0");

  script_set_attribute(attribute:"patch_publication_date", value:"2018/07/31");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/08/02");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Debian Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"9.0", prefix:"libruby2.3", reference:"2.3.3-1+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"ruby2.3", reference:"2.3.3-1+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"ruby2.3-dev", reference:"2.3.3-1+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"ruby2.3-doc", reference:"2.3.3-1+deb9u3")) flag++;
if (deb_check(release:"9.0", prefix:"ruby2.3-tcltk", reference:"2.3.3-1+deb9u3")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxruby2.3p-cpe:/a:debian:debian_linux:ruby2.3
debiandebian_linux9.0cpe:/o:debian:debian_linux:9.0

References

Related

debian 12
osv 17
openvas 32
nessus 58
amazon 3
redhat 11
centos 1
fedora 5
ubuntu 5
mageia 4
f5 3
slackware 1
freebsd 2
oraclelinux 1
suse 1
debiancve 4
cve 5
ubuntucve 7
prion 7
photon 1
exploitpack 1
seebug 1
gentoo 1
redhatcve 6
veracode 5
github 2
checkpoint_advisories 1
hackerone 1
zdt 1
debian
debian
[SECURITY] [DSA 4259-1] ruby2.3 security update
2018-07-31 21:40:30
[SECURITY] [DLA 1358-1] ruby1.9.1 security update
2018-04-23 09:51:06
[SECURITY] [DSA 4219-1] jruby security update
2018-06-08 09:31:46
osv
osv
ruby2.3 - security update
2018-07-31 00:00:00
ruby1.9.1 - security update
2018-04-23 00:00:00
jruby - security update
2018-06-08 00:00:00
openvas
openvas
Debian Security Advisory DSA 4259-1 (ruby2.3 - security update)
2018-07-31 00:00:00
Fedora Update for ruby FEDORA-2018-40ed78700c
2018-03-03 00:00:00
Debian LTS: Security Advisory for ruby1.9.1 (DLA-1358-1)
2018-04-25 00:00:00
nessus
nessus
Amazon Linux AMI : ruby20 / ruby22,ruby23,ruby24 (ALAS-2018-983)
2018-04-06 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : ruby Multiple Vulnerabilities (NS-SA-2019-0221)
2019-12-02 00:00:00
NewStart CGSL CORE 5.05 / MAIN 5.05 : ruby Multiple Vulnerabilities (NS-SA-2019-0245)
2019-12-31 00:00:00
amazon
amazon
Medium: ruby20, ruby22, ruby23, ruby24
2018-04-04 23:18:00
Medium: ruby
2019-08-23 03:41:00
Medium: ruby
2018-04-05 16:06:00
redhat
redhat
(RHSA-2020:0591) Moderate: ruby security update
2020-02-25 11:32:20
(RHSA-2019:2028) Moderate: ruby security update
2019-08-06 07:52:23
(RHSA-2020:0663) Moderate: ruby security update
2020-03-03 13:41:04
centos
centos
ruby, rubygem, rubygems security update
2019-08-30 04:17:17
fedora
fedora
[SECURITY] Fedora 26 Update: ruby-2.4.3-87.fc26
2018-03-11 20:00:06
[SECURITY] Fedora 27 Update: ruby-2.4.3-87.fc27
2018-03-02 16:26:05
[SECURITY] Fedora 28 Update: ruby-2.5.1-92.fc28
2018-04-15 02:45:12
ubuntu
ubuntu
Ruby regression
2018-04-13 00:00:00
Ruby vulnerabilities
2018-04-05 00:00:00
Ruby vulnerabilities
2018-04-16 00:00:00
mageia
mageia
Updated jruby packages fix security vulnerability
2019-02-13 14:08:25
Updated ruby packages fix security vulnerability
2018-10-26 21:47:14
Updated ruby-RubyGems packages fix security vulnerability
2020-06-11 00:39:20
f5
f5
K52952871 : Multiple RubyGems vulnerabilities
2022-02-16 00:00:00
K84262603 : Multiple Ruby vulnerabilities
2022-04-22 00:00:00
K80173446 : Multiple Ruby vulnerabilities
2018-05-08 00:00:00
slackware
slackware
[slackware-security] ruby
2018-03-29 22:43:54
freebsd
freebsd
ruby -- multiple vulnerabilities
2018-03-28 00:00:00
ruby -- Command injection vulnerability in Net::FTP
2017-12-14 00:00:00
oraclelinux
oraclelinux
ruby security update
2019-08-13 00:00:00
suse
suse
Security update for ruby-bundled-gems-rpmhelper, ruby2.5 (important)
2019-07-21 00:00:00
debiancve
debiancve
CVE-2017-17790
2017-12-20 09:29:00
CVE-2018-1000073
2018-03-13 15:29:00
CVE-2018-1000078
2018-03-13 15:29:00
cve
cve
CVE-2017-17790
2017-12-20 09:29:00
CVE-2018-1000078
2018-03-13 15:29:00
CVE-2018-1000073
2018-03-13 15:29:00
ubuntucve
ubuntucve
CVE-2017-17790
2017-12-20 00:00:00
CVE-2018-1000079
2018-03-13 00:00:00
CVE-2018-1000078
2018-03-13 00:00:00
prion
prion
Command injection
2017-12-20 09:29:00
Input validation
2018-03-13 15:29:00
Directory traversal
2018-03-13 15:29:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0100
2018-01-18 00:00:00
exploitpack
exploitpack
Ruby 2.2.8 2.3.5 2.4.2 2.5.0-preview1 - NET::Ftp Command Injection
2017-12-02 00:00:00
seebug
seebug
Command injection vulnerability in Net::FTP(CVE-2017-17405)
2017-12-18 00:00:00
gentoo
gentoo
Ruby: Command injection
2018-02-20 00:00:00
redhatcve
redhatcve
CVE-2018-1000073
2018-02-21 11:16:12
CVE-2018-1000076
2020-02-25 13:31:46
CVE-2018-1000079
2019-10-08 10:59:04
veracode
veracode
Deserialization Of Untrusted Data
2019-05-16 03:22:56
Command Injection
2019-05-16 02:49:49
Directory Traversal
2019-05-16 03:22:57
github
github
RubyGems Improper Input Validation vulnerability
2022-05-14 01:01:09
RubyGems Link Following vulnerability
2022-05-13 01:18:44
checkpoint_advisories
checkpoint_advisories
Ruby Net FTP Command Injection (CVE-2017-17405) - Ver2
2018-04-15 00:00:00
hackerone
hackerone
Ruby: NET::Ftp allows command injection in filenames
2017-12-02 11:33:02
zdt
zdt
Ruby < 2.2.8 / < 2.3.5 / < 2.4.2 / < 2.5.0-preview1 - NET::Ftp Command Injection Exploit
2017-12-22 00:00:00
JSON
Related for DEBIAN_DSA-4259.NASL
debian12osv17openvas32nessus58amazon3redhat11centos1fedora5ubuntu5mageia4f53slackware1freebsd2oraclelinux1suse1debiancve4cve5ubuntucve7prion7photon1exploitpack1seebug1gentoo1redhatcve6veracode5github2checkpoint_advisories1hackerone1zdt1