Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2019-1935.NASL
HistorySep 17, 2019 - 12:00 a.m.

EulerOS Virtualization for ARM 64 3.0.2.0 : expat (EulerOS-SA-2019-1935)

2019-09-1700:00:00
This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25
JSON

According to the versions of the expat packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities :

  • In libexpat in Expat before 2.2.7, XML input including XML names that contain a large number of colons could make the XML parser consume a high amount of RAM and CPU resources while processing (enough to be usable for denial-of-service attacks).(CVE-2018-20843)

  • XML External Entity vulnerability in libexpat 2.2.0 and earlier (Expat XML Parser Library) allows attackers to put the parser in an infinite loop using a malformed external entity definition from an external DTD.(CVE-2017-9233)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(128938);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/12/05");

  script_cve_id("CVE-2017-9233", "CVE-2018-20843");
  script_xref(name:"CEA-ID", value:"CEA-2021-0025");

  script_name(english:"EulerOS Virtualization for ARM 64 3.0.2.0 : expat (EulerOS-SA-2019-1935)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization for ARM 64 host is missing multiple security
updates.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the expat packages installed, the
EulerOS Virtualization for ARM 64 installation on the remote host is
affected by the following vulnerabilities :

  - In libexpat in Expat before 2.2.7, XML input including
    XML names that contain a large number of colons could
    make the XML parser consume a high amount of RAM and
    CPU resources while processing (enough to be usable for
    denial-of-service attacks).(CVE-2018-20843)

  - XML External Entity vulnerability in libexpat 2.2.0 and
    earlier (Expat XML Parser Library) allows attackers to
    put the parser in an infinite loop using a malformed
    external entity definition from an external
    DTD.(CVE-2017-9233)

Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2019-1935
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?3506cc3f");
  script_set_attribute(attribute:"solution", value:
"Update the affected expat packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"patch_publication_date", value:"2019/09/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/09/17");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:expat");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:expat-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:expat-static");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:3.0.2.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "3.0.2.0") audit(AUDIT_OS_NOT, "EulerOS Virtualization 3.0.2.0");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);

flag = 0;

pkgs = ["expat-2.1.0-10.h6",
        "expat-devel-2.1.0-10.h6",
        "expat-static-2.1.0-10.h6"];

foreach (pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "expat");
}
VendorProductVersionCPE
huaweieulerosexpatp-cpe:/a:huawei:euleros:expat
huaweieulerosexpat-develp-cpe:/a:huawei:euleros:expat-devel
huaweieulerosexpat-staticp-cpe:/a:huawei:euleros:expat-static
huaweieulerosuvpcpe:/o:huawei:euleros:uvp:3.0.2.0

Related

openvas 40
veracode 2
osv 12
ubuntucve 2
cloudfoundry 2
cve 2
nessus 61
ubuntu 6
f5 2
rocky 2
cbl_mariner 1
redhatcve 2
debian 6
debiancve 2
almalinux 2
mageia 2
redhat 3
prion 2
alpinelinux 2
slackware 3
ibm 22
fedora 5
suse 1
archlinux 2
freebsd 3
amazon 3
oraclelinux 2
gentoo 1
altlinux 1
centos 1
photon 2
openvas
openvas
Huawei EulerOS: Security Advisory for expat (EulerOS-SA-2019-1935)
2020-01-23 00:00:00
Debian: Security Advisory (DLA-990-1)
2018-01-28 00:00:00
Slackware: Security Advisory (SSA:2017-199-01)
2022-04-21 00:00:00
veracode
veracode
Denial Of Service (DoS) Through Infinite Loop
2017-06-27 07:36:23
Denial Of Service (DoS)
2019-07-01 08:36:31
osv
osv
expat - security update
2017-06-18 00:00:00
expat - security update
2017-06-25 00:00:00
CVE-2018-20843
2019-06-24 17:15:09
ubuntucve
ubuntucve
CVE-2017-9233
2017-06-21 00:00:00
CVE-2018-20843
2019-06-24 00:00:00
cloudfoundry
cloudfoundry
USN-3356-1: Expat vulnerability | Cloud Foundry
2017-08-04 00:00:00
USN-4040-1: Expat vulnerability | Cloud Foundry
2019-08-28 00:00:00
cve
cve
CVE-2017-9233
2017-07-25 20:29:00
CVE-2018-20843
2019-06-24 17:15:00
nessus
nessus
F5 Networks BIG-IP : XML vulnerability (K03244804)
2019-04-22 00:00:00
EulerOS 2.0 SP5 : expat (EulerOS-SA-2019-1896)
2019-09-16 00:00:00
Photon OS 1.0: Expat PHSA-2019-1.0-0247
2019-08-26 00:00:00
ubuntu
ubuntu
Expat vulnerability
2017-07-19 00:00:00
Expat vulnerability
2017-07-19 00:00:00
Coin3D vulnerability
2021-03-15 00:00:00
f5
f5
K51011533 : Expat XML parser vulnerability CVE-2018-20843
2019-07-18 00:00:00
K03244804 : XML vulnerability CVE-2017-9233
2019-03-27 00:00:00
rocky
rocky
mingw-expat security update
2020-11-03 00:00:00
expat security update
2020-11-03 12:09:00
cbl_mariner
cbl_mariner
CVE-2018-20843 affecting package expat 2.2.6-4
2020-09-09 06:09:14
redhatcve
redhatcve
CVE-2017-9233
2017-06-19 12:52:03
CVE-2018-20843
2020-04-04 05:18:28
debian
debian
[SECURITY] [DLA 990-1] expat security update
2017-06-18 01:54:29
[SECURITY] [DLA 1839-1] expat security update
2019-06-29 18:59:53
[SECURITY] [DSA 4472-1] expat security update
2019-06-28 09:30:19
debiancve
debiancve
CVE-2017-9233
2017-07-25 20:29:00
CVE-2018-20843
2019-06-24 17:15:00
almalinux
almalinux
Moderate: mingw-expat security update
2020-11-03 12:41:03
Moderate: expat security update
2020-11-03 12:09:00
mageia
mageia
Updated expat packages fix security vulnerability
2019-09-15 15:11:55
Updated expat packages fix security vulnerabilities
2017-07-23 22:58:56
redhat
redhat
(RHSA-2020:4846) Moderate: mingw-expat security update
2020-11-03 12:41:03
(RHSA-2020:4484) Moderate: expat security update
2020-11-03 12:09:00
(RHSA-2020:3952) Moderate: expat security update
2020-09-29 07:46:19
prion
prion
Xxe
2017-07-25 20:29:00
Input validation
2019-06-24 17:15:00
alpinelinux
alpinelinux
CVE-2017-9233
2017-07-25 20:29:00
CVE-2018-20843
2019-06-24 17:15:00
slackware
slackware
[slackware-security] expat
2017-07-18 23:13:45
[slackware-security] python
2017-09-23 06:33:04
[slackware-security] python
2018-05-04 20:53:50
ibm
ibm
Security Bulletin: IBM Security SiteProtector System is affected by Apache HTTP Server vulnerabilities
2020-02-27 10:34:31
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server, a component of IBM WebSphere Application Server, which is shipped with, or a required product for, IBM Tivoli Netcool Configuration Manager (CVE-2018-20843)
2020-03-25 11:34:06
Security Bulletin: A security vulnerability has been identified in IBM HTTP Server, a component of IBM WebSphere Application Server, which is required product for IBM Tivoli Netcool Configuration Manager (CVE-2018-20843)
2020-08-24 13:03:40
fedora
fedora
[SECURITY] Fedora 30 Update: expat-2.2.7-1.fc30
2019-07-10 00:51:48
[SECURITY] Fedora 29 Update: expat-2.2.7-1.fc29
2019-07-16 03:22:19
[SECURITY] Fedora 26 Update: expat-2.2.1-1.fc26
2017-07-14 13:26:21
suse
suse
Security update for expat (moderate)
2019-07-21 00:00:00
archlinux
archlinux
[ASA-201706-32] expat: denial of service
2017-06-26 00:00:00
[ASA-201707-27] lib32-expat: denial of service
2017-07-26 00:00:00
freebsd
freebsd
expat -- multiple vulnerabilities
2016-10-27 00:00:00
Python 2.7 -- multiple vulnerabilities
2017-08-26 00:00:00
python 2.7 -- multiple vulnerabilities
2018-05-01 00:00:00
amazon
amazon
Medium: expat
2021-01-12 22:51:00
Medium: expat
2020-12-16 20:31:00
Medium: expat
2020-10-22 17:32:00
oraclelinux
oraclelinux
expat security update
2020-11-10 00:00:00
expat security update
2020-10-06 00:00:00
gentoo
gentoo
Expat: Multiple vulnerabilities
2019-11-25 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package expat version 2.2.9-alt1
2020-05-31 00:00:00
centos
centos
expat security update
2020-10-20 17:58:03
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-1.0-0247
2019-08-02 00:00:00
Important Photon OS Security Update - PHSA-2019-0247
2019-08-02 00:00:00
JSON
Related for EULEROS_SA-2019-1935.NASL
openvas40veracode2osv12ubuntucve2cloudfoundry2cve2nessus61ubuntu6f52rocky2cbl_mariner1redhatcve2debian6debiancve2almalinux2mageia2redhat3prion2alpinelinux2slackware3ibm22fedora5suse1archlinux2freebsd3amazon3oraclelinux2gentoo1altlinux1centos1photon2