Lucene search
This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.DEBIAN_DSA-773.NASLHistoryJan 12, 2012 - 12:00 a.m.
Debian DSA-773-1 : amd64 - several vulnerabilities
2012-01-1200:00:00
This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.
www.tenable.com
17
This advisory adds security support for the stable amd64 distribution.
It covers all security updates since the release of sarge, which were missing updated packages for the not yet official amd64 port. Future security advisories will include updates for this port as well.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DSA-773. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
if (NASL_LEVEL < 3000) exit(0);
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(57528);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");
script_cve_id("CVE-2005-0392", "CVE-2005-0393", "CVE-2005-0469", "CVE-2005-0753", "CVE-2005-1151", "CVE-2005-1152", "CVE-2005-1174", "CVE-2005-1175", "CVE-2005-1266", "CVE-2005-1269", "CVE-2005-1545", "CVE-2005-1546", "CVE-2005-1686", "CVE-2005-1689", "CVE-2005-1796", "CVE-2005-1848", "CVE-2005-1849", "CVE-2005-1850", "CVE-2005-1851", "CVE-2005-1852", "CVE-2005-1853", "CVE-2005-1858", "CVE-2005-1914", "CVE-2005-1916", "CVE-2005-1922", "CVE-2005-1923", "CVE-2005-1934", "CVE-2005-1992", "CVE-2005-1993", "CVE-2005-2024", "CVE-2005-2040", "CVE-2005-2056", "CVE-2005-2070", "CVE-2005-2096", "CVE-2005-2231", "CVE-2005-2250", "CVE-2005-2277", "CVE-2005-2301", "CVE-2005-2302", "CVE-2005-2370");
script_xref(name:"DSA", value:"773");
script_name(english:"Debian DSA-773-1 : amd64 - several vulnerabilities");
script_summary(english:"Checks dpkg output for the updated package");
script_set_attribute(
attribute:"synopsis",
value:"The remote Debian host is missing a security-related update."
);
script_set_attribute(
attribute:"description",
value:
"This advisory adds security support for the stable amd64 distribution.
It covers all security updates since the release of sarge, which were
missing updated packages for the not yet official amd64 port. Future
security advisories will include updates for this port as well."
);
script_set_attribute(
attribute:"see_also",
value:"http://www.debian.org/security/2005/dsa-773"
);
script_set_attribute(
attribute:"solution",
value:"Upgrade the affected several package."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_cwe_id(119);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:several");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:3.1");
script_set_attribute(attribute:"patch_publication_date", value:"2005/08/11");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/01/12");
script_set_attribute(attribute:"vuln_publication_date", value:"2005/03/28");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.");
script_family(english:"Debian Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"3.1", prefix:"affix", reference:"2.1.1-2")) flag++;
if (deb_check(release:"3.1", prefix:"centericq", reference:"4.20.0-1sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"centericq-common", reference:"4.20.0-1sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"centericq-fribidi", reference:"4.20.0-1sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"centericq-utf8", reference:"4.20.0-1sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"clamav", reference:"0.84-2.sarge.1")) flag++;
if (deb_check(release:"3.1", prefix:"clamav-daemon", reference:"0.84-2.sarge.1")) flag++;
if (deb_check(release:"3.1", prefix:"clamav-freshclam", reference:"0.84-2.sarge.1")) flag++;
if (deb_check(release:"3.1", prefix:"clamav-milter", reference:"0.84-2.sarge.1")) flag++;
if (deb_check(release:"3.1", prefix:"crip", reference:"3.5-1sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"cvs", reference:"1.11.1p1debian-11")) flag++;
if (deb_check(release:"3.1", prefix:"dhcpcd", reference:"1.3.22pl4-21sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"ekg", reference:"1.5+20050411-5")) flag++;
if (deb_check(release:"3.1", prefix:"ettercap", reference:"0.7.1-1sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"ettercap-common", reference:"0.7.1-1sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"ettercap-gtk", reference:"0.7.1-1sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"fuse-utils", reference:"2.2.1-4sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"gaim", reference:"1.2.1-1.4")) flag++;
if (deb_check(release:"3.1", prefix:"gaim-dev", reference:"1.2.1-1.4")) flag++;
if (deb_check(release:"3.1", prefix:"gedit", reference:"2.8.3-4sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"gopher", reference:"3.0.7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"heartbeat", reference:"1.2.3-9sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"heartbeat-dev", reference:"1.2.3-9sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"heimdal-clients", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"heimdal-clients-x", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"heimdal-dev", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"heimdal-kdc", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"heimdal-servers", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"heimdal-servers-x", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"ht", reference:"0.8.0-2sarge4")) flag++;
if (deb_check(release:"3.1", prefix:"krb5-admin-server", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"krb5-clients", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"krb5-ftpd", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"krb5-kdc", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"krb5-rsh-server", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"krb5-telnetd", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"krb5-user", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libaffix-dev", reference:"2.1.1-2")) flag++;
if (deb_check(release:"3.1", prefix:"libaffix2", reference:"2.1.1-2")) flag++;
if (deb_check(release:"3.1", prefix:"libasn1-6-heimdal", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libclamav-dev", reference:"0.84-2.sarge.1")) flag++;
if (deb_check(release:"3.1", prefix:"libclamav1", reference:"0.84-2.sarge.1")) flag++;
if (deb_check(release:"3.1", prefix:"libdbm-ruby1.8", reference:"1.8.2-7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libfuse-dev", reference:"2.2.1-4sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libfuse2", reference:"2.2.1-4sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libgadu-dev", reference:"1.5+20050411-5")) flag++;
if (deb_check(release:"3.1", prefix:"libgadu3", reference:"1.5+20050411-5")) flag++;
if (deb_check(release:"3.1", prefix:"libgdbm-ruby1.8", reference:"1.8.2-7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libgssapi1-heimdal", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libhdb7-heimdal", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libkadm55", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libkadm5clnt4-heimdal", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libkadm5srv7-heimdal", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libkafs0-heimdal", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libkrb5-17-heimdal", reference:"0.6.3-10sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libkrb5-dev", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libkrb53", reference:"1.3.6-2sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libopenssl-ruby1.8", reference:"1.8.2-7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libpils-dev", reference:"1.2.3-9sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libpils0", reference:"1.2.3-9sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libreadline-ruby1.8", reference:"1.8.2-7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libruby1.8", reference:"1.8.2-7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libruby1.8-dbg", reference:"1.8.2-7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"libstonith-dev", reference:"1.2.3-9sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libstonith0", reference:"1.2.3-9sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"libtcltk-ruby1.8", reference:"1.8.2-7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"pdns", reference:"2.9.17-13sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"pdns-backend-geo", reference:"2.9.17-13sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"pdns-backend-ldap", reference:"2.9.17-13sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"pdns-backend-mysql", reference:"2.9.17-13sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"pdns-backend-pgsql", reference:"2.9.17-13sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"pdns-backend-pipe", reference:"2.9.17-13sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"pdns-backend-sqlite", reference:"2.9.17-13sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"pdns-recursor", reference:"2.9.17-13sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"pdns-server", reference:"2.9.17-13sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"ppxp", reference:"0.2001080415-10sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"ppxp-dev", reference:"0.2001080415-10sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"ppxp-tcltk", reference:"0.2001080415-10sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"ppxp-x11", reference:"0.2001080415-10sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"qpopper", reference:"4.0.5-4sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"qpopper-drac", reference:"4.0.5-4sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"razor", reference:"2.670-1sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"ruby1.8", reference:"1.8.2-7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"ruby1.8-dev", reference:"1.8.2-7sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"spamc", reference:"3.0.3-2")) flag++;
if (deb_check(release:"3.1", prefix:"stonith", reference:"1.2.3-9sarge2")) flag++;
if (deb_check(release:"3.1", prefix:"sudo", reference:"1.6.8p7-1.1sarge1")) flag++;
if (deb_check(release:"3.1", prefix:"zlib-bin", reference:"1.2.2-4.sarge.2")) flag++;
if (deb_check(release:"3.1", prefix:"zlib1g", reference:"1.2.2-4.sarge.2")) flag++;
if (deb_check(release:"3.1", prefix:"zlib1g-dev", reference:"1.2.2-4.sarge.2")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:deb_report_get());
else security_hole(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | several | p-cpe:/a:debian:debian_linux:several |
| debian | debian_linux | 3.1 | cpe:/o:debian:debian_linux:3.1 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0392
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0393
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0469
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-0753
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1151
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1152
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1174
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1175
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1266
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1269
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1545
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1546
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1686
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1689
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1796
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1848
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1849
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1850
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1851
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1852
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1853
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1858
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1914
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1916
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1922
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1923
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1934
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1992
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-1993
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2024
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2040
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2056
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2070
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2096
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2231
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2250
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2277
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2301
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2302
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-2370
www.debian.org/security/2005/dsa-773
Related
debian
debian
[SECURITY] [DSA 737-1] New clamav packages fix potential DOS
2005-07-05 23:44:41
[SECURITY] [DSA 737-1] New clamav packages fix potential DOS
2005-07-05 23:44:41
[SECURITY] [DSA 760-1] New ekg packages fix several vulnerabilities
2005-07-18 17:35:33
openvas
openvas
Debian: Security Advisory (DSA-737-1)
2008-01-17 00:00:00
Debian Security Advisory DSA 737-1 (clamav)
2008-01-17 00:00:00
FreeBSD Ports: gaim, ja-gaim, ko-gaim, ru-gaim
2008-09-04 00:00:00
securityvulns
securityvulns
Multiple vulnerabilities in libgadu and ekg package
2005-07-22 00:00:00
[SECURITY] [DSA 760-1] New ekg packages fix several vulnerabilities
2005-07-19 00:00:00
zsync Multiple zlib Vulnerabilities
2005-09-03 00:00:00
nessus
nessus
Debian DSA-737-1 : clamav - remote denial of service
2005-07-06 00:00:00
Ubuntu 5.04 : ekg vulnerabilities (USN-162-1)
2006-01-15 00:00:00
Debian DSA-760-1 : ekg - several vulnerabilities
2005-07-19 00:00:00
osv
osv
ekg - several
2005-07-18 00:00:00
krb5 - buffer overflow, double-free memory
2005-07-17 00:00:00
affix - several
2005-07-19 00:00:00
ubuntu
ubuntu
ekg and Gadu library vulnerabilities
2005-08-09 00:00:00
Kerberos vulnerabilities
2005-12-06 00:00:00
zlib vulnerability
2005-07-21 00:00:00
gentoo
gentoo
MIT Kerberos 5: Multiple vulnerabilities
2005-07-12 00:00:00
Compress::Zlib: Buffer overflow
2005-08-01 00:00:00
AMD64 x86 emulation base libraries: Buffer overflow
2005-07-30 00:00:00
freebsd
freebsd
libgadu -- multiple vulnerabilities
2005-07-21 00:00:00
qpopper -- multiple privilege escalation vulnerabilities
2005-05-26 00:00:00
heimdal -- Multiple vulnerabilities
2006-02-06 00:00:00
debiancve
debiancve
ubuntucve
ubuntucve
cve
cve
suse
suse
remote denial of service in clamav
2005-06-29 14:40:10
denial of service in zlib
2005-07-28 15:46:58
redhat
redhat
(RHSA-2005:518) gaim security update
2005-06-16 00:00:00
(RHSA-2005:584) zlib security update
2005-07-21 00:00:00
(RHSA-2005:567) krb5 security update
2005-07-12 00:00:00
centos
centos
zlib security update
2005-07-21 19:23:28
gaim security update
2005-06-16 21:02:37
krb5 security update
2005-07-12 23:06:13
cert
cert
Ruby library contains vulnerable default value
2005-10-03 00:00:00
Related for DEBIAN_DSA-773.NASL