Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2019-1748.NASLHistoryJul 22, 2019 - 12:00 a.m.
EulerOS 2.0 SP2 : systemd (EulerOS-SA-2019-1748)
2019-07-2200:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
According to the version of the systemd packages installed, the EulerOS installation on the remote host is affected by the following vulnerability :
- An out of bounds read was discovered in systemd-journald in the way it parses log messages that terminate with a colon ‘:’. A local attacker can use this flaw to disclose process memory data.(CVE-2018-16866)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(126875);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id(
"CVE-2018-16866"
);
script_name(english:"EulerOS 2.0 SP2 : systemd (EulerOS-SA-2019-1748)");
script_summary(english:"Checks the rpm output for the updated package.");
script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing a security update.");
script_set_attribute(attribute:"description", value:
"According to the version of the systemd packages installed, the
EulerOS installation on the remote host is affected by the following
vulnerability :
- An out of bounds read was discovered in
systemd-journald in the way it parses log messages that
terminate with a colon ':'. A local attacker can use
this flaw to disclose process memory
data.(CVE-2018-16866)
Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
# https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2019-1748
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?6a7b7609");
script_set_attribute(attribute:"solution", value:
"Update the affected systemd package.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"patch_publication_date", value:"2019/07/23");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/07/22");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libgudev1");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libgudev1-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd-python");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd-sysv");
script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Huawei Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
script_exclude_keys("Host/EulerOS/uvp_version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");
sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(2)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP2");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP2", "EulerOS UVP " + uvp);
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);
flag = 0;
pkgs = ["libgudev1-219-30.6.h42",
"libgudev1-devel-219-30.6.h42",
"systemd-219-30.6.h42",
"systemd-devel-219-30.6.h42",
"systemd-libs-219-30.6.h42",
"systemd-python-219-30.6.h42",
"systemd-sysv-219-30.6.h42"];
foreach (pkg in pkgs)
if (rpm_check(release:"EulerOS-2.0", sp:"2", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_NOTE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "systemd");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| huawei | euleros | libgudev1 | p-cpe:/a:huawei:euleros:libgudev1 |
| huawei | euleros | libgudev1-devel | p-cpe:/a:huawei:euleros:libgudev1-devel |
| huawei | euleros | systemd | p-cpe:/a:huawei:euleros:systemd |
| huawei | euleros | systemd-devel | p-cpe:/a:huawei:euleros:systemd-devel |
| huawei | euleros | systemd-libs | p-cpe:/a:huawei:euleros:systemd-libs |
| huawei | euleros | systemd-python | p-cpe:/a:huawei:euleros:systemd-python |
| huawei | euleros | systemd-sysv | p-cpe:/a:huawei:euleros:systemd-sysv |
| huawei | euleros | 2.0 | cpe:/o:huawei:euleros:2.0 |
Related
prion
prion
Design/Logic Flaw
2019-01-11 19:29:00
osv
osv
CVE-2018-16866
2019-01-11 19:29:00
systemd - security update
2019-01-13 00:00:00
cve
cve
CVE-2018-16866
2019-01-11 19:29:00
ubuntucve
ubuntucve
CVE-2018-16866
2019-01-11 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-08-08 00:07:47
openvas
openvas
Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2019-1748)
2020-01-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:0135-1)
2021-04-19 00:00:00
Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2019-1998)
2020-01-23 00:00:00
debiancve
debiancve
CVE-2018-16866
2019-01-11 19:29:00
redhatcve
redhatcve
CVE-2018-16866
2020-04-09 10:13:40
f5
f5
K30683410 : systemd vulnerability CVE-2018-16866
2019-02-21 00:00:00
cbl_mariner
cbl_mariner
CVE-2018-16866 affecting package systemd 239-44
2020-09-09 06:09:21
redhat
redhat
(RHSA-2020:1264) Moderate: systemd security and bug fix update
2020-04-01 07:32:50
(RHSA-2020:0593) Moderate: systemd security update
2020-02-25 11:32:36
(RHSA-2019:3222) Moderate: systemd security and bug fix update
2019-10-29 12:00:51
nessus
nessus
RHEL 7 : systemd (RHSA-2019:3222)
2019-10-30 00:00:00
RHEL 7 : systemd (RHSA-2020:1264)
2020-04-01 00:00:00
RHEL 7 : systemd (RHSA-2020:0593)
2020-02-26 00:00:00
archlinux
archlinux
[ASA-201901-4] systemd: multiple issues
2019-01-08 00:00:00
myhack58
myhack58
ibm
ibm
debian
debian
[SECURITY] [DSA 4367-1] systemd security update
2019-01-13 21:56:20
[SECURITY] [DSA 4367-1] systemd security update
2019-01-13 21:56:20
ubuntu
ubuntu
systemd vulnerabilities
2019-01-11 00:00:00
suse
suse
Security update for systemd (moderate)
2019-01-29 00:00:00
Security update for systemd (important)
2019-01-29 00:00:00
amazon
amazon
Important: systemd
2019-01-07 21:58:00
Medium: systemd
2021-06-16 20:36:00
Important: systemd
2021-05-20 17:00:00
zdt
zdt
systemd-journald Memory Corruption / Information Leak Vulnerability
2019-01-11 00:00:00
cloudfoundry
cloudfoundry
USN-3855-1: systemd vulnerabilities | Cloud Foundry
2019-01-24 00:00:00
thn
thn
New Systemd Privilege Escalation Flaws Affect Most Linux Distributions
2019-01-10 12:18:00
centos
centos
libgudev1, systemd security update
2019-08-30 04:25:11
gentoo
gentoo
systemd: Multiple vulnerabilities
2019-03-10 00:00:00
oraclelinux
oraclelinux
systemd security, bug fix, and enhancement update
2019-08-13 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: systemd-239-11.git4dc7dce.fc29
2019-02-11 01:57:56
[SECURITY] Fedora 29 Update: systemd-239-8.gite339eae.fc29
2019-01-13 02:32:41
[SECURITY] Fedora 28 Update: systemd-238-11.gita76ee90.fc28
2019-02-18 01:26:53
photon
photon
Critical Photon OS Security Update - PHSA-2019-0205
2019-02-04 00:00:00
Critical Photon OS Security Update - PHSA-2019-0128
2019-02-13 00:00:00
Related for EULEROS_SA-2019-1748.NASL