Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2016-1073.NASL
HistoryMay 01, 2017 - 12:00 a.m.

EulerOS 2.0 SP1 : glibc (EulerOS-SA-2016-1073)

2017-05-0100:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
JSON

According to the version of the glibc packages installed, the EulerOS installation on the remote host is affected by the following vulnerability :

  • A stack overflow vulnerability was found in
    _nss_dns_getnetbyname_r.On systems with nsswitch configured to include ‘networks: dns’ with a privileged or network-facing service that would attempt to resolve user-provided network names, an attacker could provide an excessively long network name, resulting in stack corruption and code execution.(CVE-2016-3075)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(99833);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id(
    "CVE-2016-3075"
  );

  script_name(english:"EulerOS 2.0 SP1 : glibc (EulerOS-SA-2016-1073)");
  script_summary(english:"Checks the rpm output for the updated package.");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the version of the glibc packages installed, the EulerOS
installation on the remote host is affected by the following
vulnerability :

  - A stack overflow vulnerability was found in
    _nss_dns_getnetbyname_r.On systems with nsswitch
    configured to include 'networks: dns' with a privileged
    or network-facing service that would attempt to resolve
    user-provided network names, an attacker could provide
    an excessively long network name, resulting in stack
    corruption and code execution.(CVE-2016-3075)

Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2016-1073
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?384a1aed");
  script_set_attribute(attribute:"solution", value:
"Update the affected glibc package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");

  script_set_attribute(attribute:"patch_publication_date", value:"2016/11/03");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/05/01");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-static");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:nscd");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
  script_exclude_keys("Host/EulerOS/uvp_version");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");

sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(1)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP1");

uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP1", "EulerOS UVP " + uvp);

if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);

flag = 0;

pkgs = ["glibc-2.17-111.h5",
        "glibc-common-2.17-111.h5",
        "glibc-devel-2.17-111.h5",
        "glibc-headers-2.17-111.h5",
        "glibc-static-2.17-111.h5",
        "glibc-utils-2.17-111.h5",
        "nscd-2.17-111.h5"];

foreach (pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", sp:"1", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc");
}
VendorProductVersionCPE
huaweieulerosglibcp-cpe:/a:huawei:euleros:glibc
huaweieulerosglibc-commonp-cpe:/a:huawei:euleros:glibc-common
huaweieulerosglibc-develp-cpe:/a:huawei:euleros:glibc-devel
huaweieulerosglibc-headersp-cpe:/a:huawei:euleros:glibc-headers
huaweieulerosglibc-staticp-cpe:/a:huawei:euleros:glibc-static
huaweieulerosglibc-utilsp-cpe:/a:huawei:euleros:glibc-utils
huaweieulerosnscdp-cpe:/a:huawei:euleros:nscd
huaweieuleros2.0cpe:/o:huawei:euleros:2.0

Related

ibm 3
prion 1
openvas 8
nessus 21
ubuntucve 1
redhat 1
f5 2
amazon 1
centos 1
cve 1
debiancve 1
archlinux 2
altlinux 1
fedora 2
oraclelinux 2
osv 1
mageia 1
debian 1
photon 2
gentoo 1
ubuntu 2
cloudfoundry 1
suse 2
ibm
ibm
Security Bulletin: Vulnerability in glibc affects Power Hardware Management Console (CVE-2016-3075)
2021-09-23 01:31:39
Security Bulletin: A vulnerability in glibc affects PowerKVM
2018-06-18 01:34:56
Security Bulletin: Vulnerability in GNU C Library (glibc) affects IBM Flex System FC5022 16Gb SAN Scalable Switch (CVE-2016-3075)
2019-01-31 02:25:02
prion
prion
Stack overflow
2016-06-01 20:59:00
openvas
openvas
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2016-1073)
2020-01-23 00:00:00
RedHat Update for glibc RHSA-2016:2573-02
2016-11-04 00:00:00
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2018-1344)
2020-01-23 00:00:00
nessus
nessus
CentOS 7 : glibc (CESA-2016:2573)
2016-11-28 00:00:00
Oracle Linux 7 : glibc (ELSA-2016-3638)
2023-09-07 00:00:00
Oracle Linux 7 : glibc (ELSA-2016-2573)
2016-11-11 00:00:00
ubuntucve
ubuntucve
CVE-2016-3075
2016-03-31 00:00:00
redhat
redhat
(RHSA-2016:2573) Low: glibc security, bug fix, and enhancement update
2016-11-03 06:07:14
f5
f5
SOL15439022 - glibc vulnerability CVE-2016-3075
2016-05-23 00:00:00
K15439022 : glibc vulnerability CVE-2016-3075
2016-05-23 00:00:00
amazon
amazon
Low: glibc
2017-02-06 18:00:00
centos
centos
glibc, nscd security update
2016-11-25 15:25:38
cve
cve
CVE-2016-3075
2016-06-01 20:59:00
debiancve
debiancve
CVE-2016-3075
2016-06-01 20:59:00
archlinux
archlinux
glibc: denial of service
2016-08-08 00:00:00
lib32-glibc: denial of service
2016-08-08 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package glibc version 6:2.23-alt2
2016-05-10 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: glibc-2.23.1-7.fc24
2016-05-14 23:42:24
[SECURITY] Fedora 23 Update: glibc-2.22-15.fc23
2016-05-10 18:01:37
oraclelinux
oraclelinux
glibc security update
2016-11-09 00:00:00
glibc security, bug fix, and enhancement update
2016-11-09 00:00:00
osv
osv
eglibc - security update
2016-05-30 00:00:00
mageia
mageia
Updated glibc packages fix security vulnerabilities
2016-05-24 01:00:58
debian
debian
[SECURITY] [DLA 494-1] eglibc security update
2016-05-30 04:24:49
photon
photon
Important Photon OS Security Update - PHSA-2017-0037
2017-04-24 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2017-0013
2017-04-24 00:00:00
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2017-02-19 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2016-05-25 00:00:00
GNU C Library regression
2016-05-26 00:00:00
cloudfoundry
cloudfoundry
USN-2985-2 GNU C Library regression | Cloud Foundry
2016-06-13 00:00:00
suse
suse
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32
Security update for SLES 12 Docker image (important)
2017-10-11 03:06:53
JSON
Related for EULEROS_SA-2016-1073.NASL
ibm3prion1openvas8nessus21ubuntucve1redhat1f52amazon1centos1cve1debiancve1archlinux2altlinux1fedora2oraclelinux2osv1mageia1debian1photon2gentoo1ubuntu2cloudfoundry1suse2