Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2021-1477.NASL
HistoryMar 10, 2021 - 12:00 a.m.

EulerOS Virtualization 3.0.6.6 : glibc (EulerOS-SA-2021-1477)

2021-03-1000:00:00
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
JSON

According to the versions of the glibc packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :

  • On the x86-64 architecture, the GNU C Library (aka glibc) before 2.31 fails to ignore the LD_PREFER_MAP_32BIT_EXEC environment variable during program execution after a security transition, allowing local attackers to restrict the possible mapping addresses for loaded libraries and thus bypass ASLR for a setuid program.(CVE-2019-19126)

  • The iconv feature in the GNU C Library (aka glibc or libc6) through 2.32, when processing invalid multi-byte input sequences in the EUC-KR encoding, may have a buffer over-read.(CVE-2019-25013)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(147592);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/03/16");

  script_cve_id(
    "CVE-2019-19126",
    "CVE-2019-25013"
  );

  script_name(english:"EulerOS Virtualization 3.0.6.6 : glibc (EulerOS-SA-2021-1477)");
  script_summary(english:"Checks the rpm output for the updated packages.");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing multiple security
updates.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the glibc packages installed, the
EulerOS Virtualization installation on the remote host is affected by
the following vulnerabilities :

  - On the x86-64 architecture, the GNU C Library (aka
    glibc) before 2.31 fails to ignore the
    LD_PREFER_MAP_32BIT_EXEC environment variable during
    program execution after a security transition, allowing
    local attackers to restrict the possible mapping
    addresses for loaded libraries and thus bypass ASLR for
    a setuid program.(CVE-2019-19126)

  - The iconv feature in the GNU C Library (aka glibc or
    libc6) through 2.32, when processing invalid multi-byte
    input sequences in the EUC-KR encoding, may have a
    buffer over-read.(CVE-2019-25013)

Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2021-1477
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?75b1e6b1");
  script_set_attribute(attribute:"solution", value:
"Update the affected glibc packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-19126");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"patch_publication_date", value:"2021/03/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/03/10");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-static");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:glibc-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:nscd");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:3.0.6.6");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "3.0.6.6") audit(AUDIT_OS_NOT, "EulerOS Virtualization 3.0.6.6");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);

flag = 0;

pkgs = ["glibc-2.17-222.h36.eulerosv2r7",
        "glibc-common-2.17-222.h36.eulerosv2r7",
        "glibc-devel-2.17-222.h36.eulerosv2r7",
        "glibc-headers-2.17-222.h36.eulerosv2r7",
        "glibc-static-2.17-222.h36.eulerosv2r7",
        "glibc-utils-2.17-222.h36.eulerosv2r7",
        "nscd-2.17-222.h36.eulerosv2r7"];

foreach (pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_NOTE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc");
}
VendorProductVersionCPE
huaweieulerosuvpcpe:/o:huawei:euleros:uvp:3.0.6.6
huaweieulerosglibcp-cpe:/a:huawei:euleros:glibc
huaweieulerosglibc-commonp-cpe:/a:huawei:euleros:glibc-common
huaweieulerosglibc-develp-cpe:/a:huawei:euleros:glibc-devel
huaweieulerosglibc-headersp-cpe:/a:huawei:euleros:glibc-headers
huaweieulerosglibc-staticp-cpe:/a:huawei:euleros:glibc-static
huaweieulerosglibc-utilsp-cpe:/a:huawei:euleros:glibc-utils
huaweieulerosnscdp-cpe:/a:huawei:euleros:nscd

Related

openvas 33
nessus 66
amazon 5
oraclelinux 6
redhat 23
ibm 12
fedora 4
redhatcve 2
ubuntucve 2
prion 2
cve 2
debiancve 2
mageia 2
veracode 2
osv 7
centos 2
cbl_mariner 2
f5 2
photon 10
archlinux 2
ubuntu 3
debian 1
suse 1
rocky 1
almalinux 1
gentoo 1
cloudfoundry 2
ics 1
openvas
openvas
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2021-1477)
2021-03-05 00:00:00
Huawei EulerOS: Security Advisory for glibc (EulerOS-SA-2021-1676)
2021-03-24 00:00:00
Mageia: Security Advisory (MGASA-2019-0349)
2022-01-28 00:00:00
nessus
nessus
EulerOS 2.0 SP5 : glibc (EulerOS-SA-2021-1676)
2021-03-24 00:00:00
Amazon Linux AMI : glibc (ALAS-2021-1511)
2021-07-13 00:00:00
NewStart CGSL CORE 5.05 / MAIN 5.05 : glibc Multiple Vulnerabilities (NS-SA-2021-0180)
2021-10-27 00:00:00
amazon
amazon
Medium: glibc
2021-07-08 18:38:00
Important: glibc
2021-02-17 18:03:00
Medium: glibc
2023-08-21 10:35:00
oraclelinux
oraclelinux
glibc security, bug fix, and enhancement update
2020-05-05 00:00:00
glibc security, bug fix, and enhancement update
2020-10-06 00:00:00
glibc security and bug fix update
2021-02-05 00:00:00
redhat
redhat
(RHSA-2020:3861) Low: glibc security, bug fix, and enhancement update
2020-09-29 07:38:28
(RHSA-2020:1828) Low: glibc security, bug fix, and enhancement update
2020-04-28 09:21:20
(RHSA-2021:0348) Moderate: glibc security and bug fix update
2021-02-02 09:29:25
ibm
ibm
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to a security restrictions bypass in GNU C Library (CVE-2019-19126)
2023-01-12 21:59:00
Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data is vulnerable to multiple Operator package issues
2024-03-01 17:45:34
Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
2021-02-02 22:11:04
fedora
fedora
[SECURITY] Fedora 30 Update: glibc-2.29-28.fc30
2020-02-06 01:02:49
[SECURITY] Fedora 31 Update: glibc-2.30-10.fc31
2020-01-20 22:49:03
[SECURITY] Fedora 33 Update: glibc-2.32-3.fc33
2021-01-18 01:35:42
redhatcve
redhatcve
CVE-2019-19126
2019-11-20 17:37:39
CVE-2019-25013
2021-01-05 22:30:36
ubuntucve
ubuntucve
CVE-2019-19126
2019-11-19 00:00:00
CVE-2019-25013
2021-01-04 00:00:00
prion
prion
Code injection
2019-11-19 22:15:00
Buffer overflow
2021-01-04 18:15:00
cve
cve
CVE-2019-19126
2019-11-19 22:15:00
CVE-2019-25013
2021-01-04 18:15:00
debiancve
debiancve
CVE-2019-19126
2019-11-19 22:15:00
CVE-2019-25013
2021-01-04 18:15:00
mageia
mageia
Updated glibc packages fix security vulnerability
2019-11-30 16:06:06
Updated glibc packages fix security vulnerability
2021-01-24 03:36:09
veracode
veracode
Arbitrary Code Execution
2020-10-01 03:50:18
Buffer Overflow
2021-02-05 03:21:05
osv
osv
CVE-2019-19126
2019-11-19 22:15:11
CVE-2019-25013
2021-01-04 18:15:13
glibc vulnerabilities
2022-12-08 13:17:39
centos
centos
glibc, nscd security update
2020-10-20 18:07:43
glibc, nscd security update
2021-02-04 01:02:29
cbl_mariner
cbl_mariner
CVE-2019-19126 affecting package glibc 2.28-24
2020-11-30 19:30:47
CVE-2019-25013 affecting package glibc 2.28-24
2021-01-29 07:39:27
f5
f5
K68251873 : glibc vulnerability CVE-2019-25013
2021-03-10 00:00:00
K18407453 : Glib vulnerabilities CVE-2018-10767, CVE-2019-12450, and CVE-2019-19126
2022-04-25 00:00:00
photon
photon
Moderate Photon OS Security Update - PHSA-2021-0189
2021-01-28 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2021-2.0-0315
2021-01-28 00:00:00
Moderate Photon OS Security Update - PHSA-2021-3.0-0189
2021-01-28 00:00:00
archlinux
archlinux
[ASA-202102-17] glibc: denial of service
2021-02-07 00:00:00
[ASA-202102-16] lib32-glibc: denial of service
2021-02-07 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2022-12-08 00:00:00
GNU C Library vulnerabilities
2020-07-06 00:00:00
GNU C Library vulnerabilities
2022-03-01 00:00:00
debian
debian
[SECURITY] [DLA 3152-1] glibc security update
2022-10-17 15:54:41
suse
suse
Security update for glibc (important)
2021-02-28 00:00:00
rocky
rocky
glibc security, bug fix, and enhancement update
2021-05-18 05:35:07
almalinux
almalinux
Moderate: glibc security, bug fix, and enhancement update
2021-05-18 05:35:07
gentoo
gentoo
glibc: Multiple vulnerabilities
2021-07-06 00:00:00
cloudfoundry
cloudfoundry
USN-4416-1: GNU C Library vulnerabilities | Cloud Foundry
2020-08-27 00:00:00
USN-5310-1: GNU C Library vulnerabilities | Cloud Foundry
2023-05-18 00:00:00
ics
ics
Siemens SIMATIC S7-1500 TM MFP BIOS
2023-06-15 12:00:00
JSON
Related for EULEROS_SA-2021-1477.NASL
openvas33nessus66amazon5oraclelinux6redhat23ibm12fedora4redhatcve2ubuntucve2prion2cve2debiancve2mageia2veracode2osv7centos2cbl_mariner2f52photon10archlinux2ubuntu3debian1suse1rocky1almalinux1gentoo1cloudfoundry2ics1