Lucene search
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2021-1383.NASLHistoryMar 10, 2021 - 12:00 a.m.
EulerOS Virtualization for ARM 64 3.0.2.0 : python-pillow (EulerOS-SA-2021-1383)
2021-03-1000:00:00
This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
7.8 High
AI Score
Confidence
High
According to the versions of the python-pillow package installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities :
-
Pillow before 2.7.0 allows remote attackers to cause a denial of service via a compressed text chunk in a PNG image that has a large size when it is decompressed.(CVE-2014-9601)
-
in Pillow before 8.1.0, PcxDecode has a buffer over-read when decoding a crafted PCX file because the user-supplied stride value is trusted for buffer calculations.(CVE-2020-35653)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(147492);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/01/11");
script_cve_id("CVE-2014-9601", "CVE-2020-35653");
script_name(english:"EulerOS Virtualization for ARM 64 3.0.2.0 : python-pillow (EulerOS-SA-2021-1383)");
script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization for ARM 64 host is missing multiple security
updates.");
script_set_attribute(attribute:"description", value:
"According to the versions of the python-pillow package installed, the
EulerOS Virtualization for ARM 64 installation on the remote host is
affected by the following vulnerabilities :
- Pillow before 2.7.0 allows remote attackers to cause a
denial of service via a compressed text chunk in a PNG
image that has a large size when it is
decompressed.(CVE-2014-9601)
- in Pillow before 8.1.0, PcxDecode has a buffer
over-read when decoding a crafted PCX file because the
user-supplied stride value is trusted for buffer
calculations.(CVE-2020-35653)
Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
# https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2021-1383
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ec07f998");
script_set_attribute(attribute:"solution", value:
"Update the affected python-pillow packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-35653");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"patch_publication_date", value:"2021/03/04");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/03/10");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:python-pillow");
script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:3.0.2.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Huawei Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2021-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "3.0.2.0") audit(AUDIT_OS_NOT, "EulerOS Virtualization 3.0.2.0");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);
flag = 0;
pkgs = ["python-pillow-2.0.0-19.h9.gitd1c6db8"];
foreach (pkg in pkgs)
if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "python-pillow");
}
Related
nessus
nessus
EulerOS Virtualization 3.0.6.6 : python-pillow (EulerOS-SA-2021-1515)
2021-03-04 00:00:00
EulerOS 2.0 SP5 : python-pillow (EulerOS-SA-2021-1702)
2021-03-24 00:00:00
EulerOS Virtualization 3.0.2.6 : python-pillow (EulerOS-SA-2021-1421)
2021-03-10 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-1702)
2021-03-24 00:00:00
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-1515)
2021-03-05 00:00:00
Huawei EulerOS: Security Advisory for python-pillow (EulerOS-SA-2021-1383)
2021-03-05 00:00:00
prion
prion
Code injection
2015-01-16 16:59:00
Buffer overflow
2021-01-12 09:15:00
ubuntucve
ubuntucve
CVE-2014-9601
2015-01-16 00:00:00
CVE-2020-35653
2021-01-12 00:00:00
cve
cve
CVE-2014-9601
2015-01-16 16:59:00
CVE-2020-35653
2021-01-12 09:15:00
github
github
Pillow denial of service via PNG bomb
2022-05-14 02:05:56
Pillow Out-of-bounds Read
2021-03-18 19:55:41
fedora
fedora
[SECURITY] Fedora 21 Update: python-pillow-2.6.1-2.fc21
2015-01-21 23:07:12
[SECURITY] Fedora 32 Update: python-pillow-7.0.0-5.fc32
2021-01-24 01:23:46
[SECURITY] Fedora 33 Update: python-pillow-7.2.0-3.fc33
2021-01-21 01:47:29
osv
osv
PYSEC-2015-16
2015-01-16 16:59:00
Pillow denial of service via PNG bomb
2022-05-14 02:05:56
PYSEC-2021-69
2021-01-12 09:15:00
mageia
mageia
Updated python-pillow packages fix CVE-2014-9601
2015-01-28 00:08:29
debiancve
debiancve
CVE-2014-9601
2015-01-16 16:59:00
CVE-2020-35653
2021-01-12 09:15:00
redhatcve
redhatcve
CVE-2020-35653
2021-01-12 16:20:06
cnvd
cnvd
Pillow Buffer Overflow Vulnerability (CNVD-2021-54038)
2021-01-14 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-01-13 03:41:47
alpinelinux
alpinelinux
CVE-2020-35653
2021-01-12 09:15:00
amazon
amazon
Important: python-pillow
2023-06-05 16:39:00
ubuntu
ubuntu
Pillow vulnerabilities
2021-01-20 00:00:00
Python Imaging Library vulnerabilities
2017-03-13 00:00:00
Pillow vulnerabilities
2017-03-13 00:00:00
archlinux
archlinux
[ASA-202101-11] python-pillow: multiple issues
2021-01-12 00:00:00
gentoo
gentoo
Pillow: Multiple vulnerabilities
2021-01-11 00:00:00
securityvulns
securityvulns
pillow multiple security vulnerabilities
2015-04-19 00:00:00
[ MDVSA-2015:099 ] python-pillow
2015-04-19 00:00:00
debian
debian
[SECURITY] [DLA 2716-1] pillow security update
2021-07-22 11:17:53
suse
suse
Security update for python-CairoSVG, python-Pillow (moderate)
2021-08-10 00:00:00
almalinux
almalinux
Moderate: python-pillow security update
2021-11-09 08:24:34
rocky
rocky
python-pillow security update
2021-11-09 08:24:34
redhat
redhat
(RHSA-2021:4149) Moderate: python-pillow security update
2021-11-09 08:24:34
rosalinux
rosalinux
Advisory ROSA-SA-2021-1957
2021-07-02 18:03:40