Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2024-1416.NASL
HistoryMar 21, 2024 - 12:00 a.m.

EulerOS Virtualization 2.11.1 : libtiff (EulerOS-SA-2024-1416)

2024-03-2100:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
5
euleros
virtualization
libtiff
heap-based buffer overflow
denial of service
tiff file
cve-2023-6228
cve-2023-6277

7.1 High

AI Score

Confidence

Low

JSON

According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :

  • An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on processing may cause a heap-based buffer overflow leads to an application crash. (CVE-2023-6228)

  • An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a remote attacker to cause a denial of service via a craft input with size smaller than 379 KB.
    (CVE-2023-6277)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(192335);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/21");

  script_cve_id("CVE-2023-6228", "CVE-2023-6277");

  script_name(english:"EulerOS Virtualization 2.11.1 : libtiff (EulerOS-SA-2024-1416)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing multiple security updates.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the libtiff package installed, the EulerOS Virtualization installation on the remote host
is affected by the following vulnerabilities :

  - An issue was found in the tiffcp utility distributed by the libtiff package where a crafted TIFF file on
    processing may cause a heap-based buffer overflow leads to an application crash. (CVE-2023-6228)

  - An out-of-memory flaw was found in libtiff. Passing a crafted tiff file to TIFFOpen() API may allow a
    remote attacker to cause a denial of service via a craft input with size smaller than 379 KB.
    (CVE-2023-6277)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security
advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional
issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2024-1416
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?2c15e946");
  script_set_attribute(attribute:"solution", value:
"Update the affected libtiff packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-6277");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/11/24");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/03/21");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/03/21");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:libtiff");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:2.11.1");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var _release = get_kb_item("Host/EulerOS/release");
if (isnull(_release) || _release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
var uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "2.11.1") audit(AUDIT_OS_NOT, "EulerOS Virtualization 2.11.1");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu && "x86" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);

var flag = 0;

var pkgs = [
  "libtiff-4.3.0-9.h25.eulerosv2r11"
];

foreach (var pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libtiff");
}
VendorProductVersionCPE
huaweieuleroslibtiffp-cpe:/a:huawei:euleros:libtiff
huaweieulerosuvpcpe:/o:huawei:euleros:uvp:2.11.1

Related

nessus 23
openvas 17
ubuntu 2
osv 3
cloudfoundry 1
prion 2
cgr 2
cve 2
cvelist 2
wolfi 2
debiancve 2
veracode 2
cnvd 1
redhatcve 2
ubuntucve 2
redos 2
mageia 1
fedora 2
amazon 3
photon 1
redhat 2
almalinux 1
oraclelinux 1
nessus
nessus
EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2024-1123)
2024-01-26 00:00:00
EulerOS Virtualization 2.9.0 : libtiff (EulerOS-SA-2024-1471)
2024-03-21 00:00:00
EulerOS Virtualization 2.9.1 : libtiff (EulerOS-SA-2024-1456)
2024-03-21 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-1471)
2024-03-21 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-1456)
2024-03-21 00:00:00
Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2024-1444)
2024-03-21 00:00:00
ubuntu
ubuntu
LibTIFF vulnerabilities
2024-02-19 00:00:00
LibTIFF vulnerabilities
2024-02-27 00:00:00
osv
osv
tiff vulnerabilities
2024-02-27 18:31:07
tiff vulnerabilities
2024-02-19 20:07:28
Moderate: libtiff security update
2024-04-30 00:00:00
cloudfoundry
cloudfoundry
USN-6644-2: LibTIFF vulnerabilities | Cloud Foundry
2024-04-04 00:00:00
prion
prion
Heap overflow
2023-12-18 14:15:00
Memory corruption
2023-11-24 19:15:00
cgr
cgr
CVE-2023-6228 vulnerabilities
2024-05-19 03:07:16
CVE-2023-6277 vulnerabilities
2024-05-19 03:07:16
cve
cve
CVE-2023-6228
2023-12-18 13:43:08
CVE-2023-6277
2023-11-24 18:20:16
cvelist
cvelist
CVE-2023-6228 Libtiff: heap-based buffer overflow in cpstriptotile() in tools/tiffcp.c
2023-12-18 13:43:08
CVE-2023-6277 Libtiff: out-of-memory in tiffopen via a craft file
2023-11-24 18:20:16
wolfi
wolfi
CVE-2023-6228 vulnerabilities
2024-05-29 03:07:31
CVE-2023-6277 vulnerabilities
2024-05-29 03:07:31
debiancve
debiancve
CVE-2023-6228
2023-12-18 13:43:08
CVE-2023-6277
2023-11-24 18:20:16
veracode
veracode
Denial Of Service
2023-11-29 13:16:24
Denial Of Service (DoS)
2023-11-27 06:51:44
cnvd
cnvd
Unspecified vulnerability in LibTIFF (CNVD-2023-9917445)
2023-12-20 00:00:00
redhatcve
redhatcve
CVE-2023-6228
2023-11-21 05:50:40
CVE-2023-6277
2023-11-24 08:51:34
ubuntucve
ubuntucve
CVE-2023-6228
2023-12-18 00:00:00
CVE-2023-6277
2023-11-24 00:00:00
redos
redos
ROS-20240409-08
2024-04-09 00:00:00
ROS-20240328-14
2024-03-28 00:00:00
mageia
mageia
Updated libtiff packages fix security vulnerability
2024-05-09 05:40:29
fedora
fedora
[SECURITY] Fedora 38 Update: tkimg-1.4.16-1.fc38
2024-01-14 00:47:34
[SECURITY] Fedora 39 Update: tkimg-1.4.16-1.fc39
2024-01-14 01:00:15
amazon
amazon
Important: libtiff
2023-11-29 22:19:00
Important: libtiff
2024-02-01 19:33:00
Important: compat-libtiff3
2023-11-29 22:19:00
photon
photon
Moderate Photon OS Security Update - PHSA-2024-3.0-0708
2024-01-05 00:00:00
redhat
redhat
(RHSA-2024:2289) Moderate: libtiff security update
2024-04-30 06:15:17
(RHSA-2024:2932) Important: logging for Red Hat OpenShift security update
2024-05-23 07:05:57
almalinux
almalinux
Moderate: libtiff security update
2024-04-30 00:00:00
oraclelinux
oraclelinux
libtiff security update
2024-05-02 00:00:00

7.1 High

AI Score

Confidence

Low

JSON
Related for EULEROS_SA-2024-1416.NASL
nessus23openvas17ubuntu2osv3cloudfoundry1prion2cgr2cve2cvelist2wolfi2debiancve2veracode2cnvd1redhatcve2ubuntucve2redos2mageia1fedora2amazon3photon1redhat2almalinux1oraclelinux1