EulerOS Virtualization 2.11.0 : ncurses (EulerOS-SA-2024-1730)

2024-05-2900:00:00

www.tenable.com

euleros

virtualization

ncurses

vulnerability

gnu

tgetstr

countermeasures

cve-2023-45918

tenable

nessus

security advisory

6.4 Medium

AI Score

Confidence

Low

0.0004 Low

EPSS

Percentile

9.1%

JSON

According to the versions of the ncurses packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :

A vulnerability was found in GNU ncurses 6.4-20230610. It has been rated as problematic. This issue     affects the function tgetstr. There is no information about possible countermeasures known. It may be     suggested to replace the affected object with an alternative product.(CVE-2023-45918)

Tenable has extracted the preceding description block directly from the EulerOS Virtualization ncurses security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(198094);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/05/29");

  script_cve_id("CVE-2023-45918");

  script_name(english:"EulerOS Virtualization 2.11.0 : ncurses (EulerOS-SA-2024-1730)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the ncurses packages installed, the EulerOS Virtualization installation on the remote host
is affected by the following vulnerabilities :

    A vulnerability was found in GNU ncurses 6.4-20230610. It has been rated as problematic. This issue
    affects the function tgetstr. There is no information about possible countermeasures known. It may be
    suggested to replace the affected object with an alternative product.(CVE-2023-45918)

Tenable has extracted the preceding description block directly from the EulerOS Virtualization ncurses security
advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2024-1730
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?c1f7c2f7");
  script_set_attribute(attribute:"solution", value:
"Update the affected ncurses packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-45918");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/02/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/05/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/05/29");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:ncurses");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:ncurses-base");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:ncurses-libs");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:2.11.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var _release = get_kb_item("Host/EulerOS/release");
if (isnull(_release) || _release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
var uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "2.11.0") audit(AUDIT_OS_NOT, "EulerOS Virtualization 2.11.0");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu && "x86" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "x86" >!< cpu) audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);

var flag = 0;

var pkgs = [
  "ncurses-6.3-2.h7.eulerosv2r11",
  "ncurses-base-6.3-2.h7.eulerosv2r11",
  "ncurses-libs-6.3-2.h7.eulerosv2r11"
];

foreach (var pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_NOTE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ncurses");
}

VendorProductVersionCPE
huaweieulerosncursesp-cpe:/a:huawei:euleros:ncurses
huaweieulerosncurses-basep-cpe:/a:huawei:euleros:ncurses-base
huaweieulerosncurses-libsp-cpe:/a:huawei:euleros:ncurses-libs
huaweieulerosuvpcpe:/o:huawei:euleros:uvp:2.11.0

Vendor	Product	Version	CPE
huawei	euleros	ncurses	p-cpe:/a:huawei:euleros:ncurses
huawei	euleros	ncurses-base	p-cpe:/a:huawei:euleros:ncurses-base
huawei	euleros	ncurses-libs	p-cpe:/a:huawei:euleros:ncurses-libs
huawei	euleros	uvp	cpe:/o:huawei:euleros:uvp:2.11.0