Lucene search

HistoryMay 11, 2020 - 12:00 a.m.

Debian DSA-4682-1 : squid - security update

2020-05-1100:00:00

www.tenable.com

8.7 High

AI Score

Confidence

Low

JSON

Multiple security issues were discovered in the Squid proxy caching server, which could result in the bypass of security filters, information disclosure, the execution of arbitrary code or denial of service.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Debian Security Advisory DSA-4682. The text 
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('compat.inc');

if (description)
{
  script_id(136430);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/13");

  script_cve_id(
    "CVE-2019-12519",
    "CVE-2019-12520",
    "CVE-2019-12521",
    "CVE-2019-12523",
    "CVE-2019-12524",
    "CVE-2019-12526",
    "CVE-2019-12528",
    "CVE-2019-18676",
    "CVE-2019-18677",
    "CVE-2019-18678",
    "CVE-2019-18679",
    "CVE-2020-11945",
    "CVE-2020-8449",
    "CVE-2020-8450"
  );
  script_xref(name:"DSA", value:"4682");

  script_name(english:"Debian DSA-4682-1 : squid - security update");

  script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security-related update.");
  script_set_attribute(attribute:"description", value:
"Multiple security issues were discovered in the Squid proxy caching
server, which could result in the bypass of security filters,
information disclosure, the execution of arbitrary code or denial of
service.");
  script_set_attribute(attribute:"see_also", value:"https://security-tracker.debian.org/tracker/source-package/squid");
  script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/buster/squid");
  script_set_attribute(attribute:"see_also", value:"https://www.debian.org/security/2020/dsa-4682");
  script_set_attribute(attribute:"solution", value:
"Upgrade the squid packages.

For the stable distribution (buster), these problems have been fixed
in version 4.6-1+deb10u2.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-8450");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2020-11945");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/11/26");
  script_set_attribute(attribute:"patch_publication_date", value:"2020/05/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/05/11");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:squid");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:10.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Debian Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"10.0", prefix:"squid", reference:"4.6-1+deb10u2")) flag++;
if (deb_check(release:"10.0", prefix:"squid-cgi", reference:"4.6-1+deb10u2")) flag++;
if (deb_check(release:"10.0", prefix:"squid-common", reference:"4.6-1+deb10u2")) flag++;
if (deb_check(release:"10.0", prefix:"squid-purge", reference:"4.6-1+deb10u2")) flag++;
if (deb_check(release:"10.0", prefix:"squid3", reference:"4.6-1+deb10u2")) flag++;
if (deb_check(release:"10.0", prefix:"squidclient", reference:"4.6-1+deb10u2")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

VendorProductVersionCPE
debiandebian_linuxsquidp-cpe:/a:debian:debian_linux:squid
debiandebian_linux10.0cpe:/o:debian:debian_linux:10.0

Vendor	Product	Version	CPE
debian	debian_linux	squid	p-cpe:/a:debian:debian_linux:squid
debian	debian_linux	10.0	cpe:/o:debian:debian_linux:10.0

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12519

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12520

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12521

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12523

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12524

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12526

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-12528

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18676

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18677

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18678

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-18679

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-11945

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8449

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-8450

packages.debian.org/source/buster/squid

security-tracker.debian.org/tracker/source-package/squid

www.debian.org/security/2020/dsa-4682

8.7 High

AI Score

Confidence

Low

JSON

Related for DEBIAN_DSA-4682.NASL