Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DSA-4560.NASL
HistoryNov 07, 2019 - 12:00 a.m.

Debian DSA-4560-1 : simplesamlphp - security update

2019-11-0700:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25

8.7 High

AI Score

Confidence

High

JSON

It was discovered that in SimpleSAMLphp, an implementation of the SAML 2.0 protocol, it was possible to circumvent XML signature verification on SAML messages.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-4560. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('compat.inc');

if (description)
{
  script_id(130612);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/15");

  script_cve_id("CVE-2019-3465");
  script_xref(name:"DSA", value:"4560");

  script_name(english:"Debian DSA-4560-1 : simplesamlphp - security update");

  script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security-related update.");
  script_set_attribute(attribute:"description", value:
"It was discovered that in SimpleSAMLphp, an implementation of the SAML
2.0 protocol, it was possible to circumvent XML signature verification
on SAML messages.");
  script_set_attribute(attribute:"see_also", value:"https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=944107");
  # https://security-tracker.debian.org/tracker/source-package/simplesamlphp
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?b2a51c10");
  script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/stretch/simplesamlphp");
  script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/buster/simplesamlphp");
  script_set_attribute(attribute:"see_also", value:"https://www.debian.org/security/2019/dsa-4560");
  script_set_attribute(attribute:"solution", value:
"Upgrade the simplesamlphp packages.

For the oldstable distribution (stretch), this problem has been fixed
in version 1.14.11-1+deb9u2.

For the stable distribution (buster), this problem has been fixed in
version 1.16.3-1+deb10u1.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-3465");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/11/07");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/11/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/11/07");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:simplesamlphp");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:10.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:9.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Debian Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"10.0", prefix:"simplesamlphp", reference:"1.16.3-1+deb10u1")) flag++;
if (deb_check(release:"9.0", prefix:"simplesamlphp", reference:"1.14.11-1+deb9u2")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxsimplesamlphpp-cpe:/a:debian:debian_linux:simplesamlphp
debiandebian_linux10.0cpe:/o:debian:debian_linux:10.0
debiandebian_linux9.0cpe:/o:debian:debian_linux:9.0

Related

fedora 9
nessus 10
osv 4
openvas 11
github 1
prion 1
duo 2
veracode 1
cve 1
debiancve 1
debian 2
ubuntucve 1
fedora
fedora
[SECURITY] Fedora 31 Update: php-robrichards-xmlseclibs-2.1.1-1.fc31
2019-11-15 03:03:02
[SECURITY] Fedora 29 Update: php-robrichards-xmlseclibs-2.1.1-1.fc29
2019-11-15 03:21:01
[SECURITY] Fedora 30 Update: php-robrichards-xmlseclibs-2.1.1-1.fc30
2019-11-15 03:56:21
nessus
nessus
Tenable SecurityCenter 5.9.x to 5.12.x SimpleSAMLPHP Privilege Escalation (TNS-2020-01)
2021-03-19 00:00:00
Fedora 29 : php-robrichards-xmlseclibs (2019-81f61cdceb)
2019-11-15 00:00:00
Fedora 31 : php-robrichards-xmlseclibs3 (2019-9a960c8a98)
2019-11-15 00:00:00
osv
osv
simplesamlphp - security update
2019-11-06 00:00:00
simplesamlphp - security update
2019-11-06 00:00:00
CVE-2019-3465
2019-11-07 20:15:11
openvas
openvas
Fedora: Security Advisory for php-robrichards-xmlseclibs1 (FEDORA-2020-46d0f456a9)
2020-04-14 00:00:00
Fedora Update for php-robrichards-xmlseclibs3 FEDORA-2019-9a960c8a98
2020-01-09 00:00:00
Fedora Update for php-robrichards-xmlseclibs FEDORA-2019-73d0fe1d15
2020-01-09 00:00:00
github
github
Signature validation bypass in XmlSecLibs
2019-11-08 20:06:46
prion
prion
Input validation
2019-11-07 20:15:00
duo
duo
DUO-PSA-2019-002: Duo Product Security Advisory
1976-01-01 00:00:00
DUO-PSA-2019-002: Duo Product Security Advisory
1976-01-01 00:00:00
veracode
veracode
Signature Verification Bypass
2019-11-07 02:25:30
cve
cve
CVE-2019-3465
2019-11-07 20:15:00
debiancve
debiancve
CVE-2019-3465
2019-11-07 20:15:00
debian
debian
[SECURITY] [DSA 4560-1] simplesamlphp security update
2019-11-06 13:42:57
[SECURITY] [DLA 1983-1] simplesamlphp security update
2019-11-06 13:53:27
ubuntucve
ubuntucve
CVE-2019-3465
2019-11-07 00:00:00

8.7 High

AI Score

Confidence

High

JSON
Related for DEBIAN_DSA-4560.NASL
fedora9nessus10osv4openvas11github1prion1duo2veracode1cve1debiancve1debian2ubuntucve1