EulerOS Virtualization 2.9.1 : pkgconf (EulerOS-SA-2023-2002)

🗓️ 02 Jun 2023 00:00:00Reported by TenableType

EulerOS Virtualization 2.9.1 pkgconf vulnerabilit

Reporter	Title	Published	Views	Family All 73
IBM Security Bulletins	Security Bulletin: QRadar Suite Software includes components with multiple known vulnerabilities	3 Jun 202511:35	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerability in jetty affects IBM Netezza Appliance	7 May 202606:21	–	ibm
IBM Security Bulletins	Security Bulletin: security vulnerabilities are addressed with IBM Business Automation Insights iFixes for June 2025.	16 Jul 202509:05	–	ibm
Tenable Nessus	Amazon Linux 2023 : libpkgconf, libpkgconf-devel, pkgconf (ALAS2023-2023-159)	20 Apr 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP10 : pkgconf (EulerOS-SA-2023-1534)	19 Mar 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP10 : pkgconf (EulerOS-SA-2023-1559)	19 Mar 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP8 : pkgconf (EulerOS-SA-2023-1604)	13 Apr 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : pkgconf (EulerOS-SA-2023-1765)	7 May 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : pkgconf (EulerOS-SA-2023-1787)	8 May 202300:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : pkgconf (EulerOS-SA-2023-1851)	13 May 202300:00	–	nessus

Source	Link
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(176578);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/06/02");

  script_cve_id("CVE-2023-24056");

  script_name(english:"EulerOS Virtualization 2.9.1 : pkgconf (EulerOS-SA-2023-2002)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the pkgconf package installed, the EulerOS Virtualization installation on the remote host
is affected by the following vulnerabilities :

  - In pkgconf through 1.9.3, variable duplication can cause unbounded string expansion due to incorrect
    checks in libpkgconf/tuple.c:pkgconf_tuple_parse. For example, a .pc file containing a few hundred bytes
    can expand to one billion bytes. (CVE-2023-24056)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security
advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional
issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2023-2002
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?cef3005b");
  script_set_attribute(attribute:"solution", value:
"Update the affected pkgconf packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-24056");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/01/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/06/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/06/02");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:pkgconf");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:2.9.1");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var _release = get_kb_item("Host/EulerOS/release");
if (isnull(_release) || _release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
var uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "2.9.1") audit(AUDIT_OS_NOT, "EulerOS Virtualization 2.9.1");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu && "x86" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);

var flag = 0;

var pkgs = [
  "pkgconf-1.6.3-6.h1.eulerosv2r9"
];

foreach (var pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "pkgconf");
}

02 Jun 2023 00:00Current

6.3Medium risk

Vulners AI Score6.3

CVSS 3.15.5

EPSS0.00034

SSVC