Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2005-2021 Tenable Network Security, Inc.FEDORA_2005-244.NASL
HistoryMay 19, 2005 - 12:00 a.m.

Fedora Core 2 : kdelibs-3.2.2-14.FC2 (2005-244)

2005-05-1900:00:00
This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.
www.tenable.com
14
JSON

  • Wed Mar 2 2005 Than Ngo <than at redhat.com> 6:3.2.2-14.FC2

    • Applied patch to fix DCOP DoS, CVE-2005-0396, #150090 thanks KDE security team

    • Wed Feb 16 2005 Than Ngo <than at redhat.com> 3.2.2-13.FC2

    • Applied patch to fix dcopidlng insecure temporary file usage, CVE-2005-0365, #148823

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2005-244.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(18319);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_xref(name:"FEDORA", value:"2005-244");

  script_name(english:"Fedora Core 2 : kdelibs-3.2.2-14.FC2 (2005-244)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora Core host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - Wed Mar 2 2005 Than Ngo <than at redhat.com>
    6:3.2.2-14.FC2

  - Applied patch to fix DCOP DoS, CVE-2005-0396, #150090
    thanks KDE security team

  - Wed Feb 16 2005 Than Ngo <than at redhat.com>
    3.2.2-13.FC2

  - Applied patch to fix dcopidlng insecure temporary file
    usage, CVE-2005-0365, #148823

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # https://lists.fedoraproject.org/pipermail/announce/2005-March/000791.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?78ce5371"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Update the affected kdelibs, kdelibs-debuginfo and / or kdelibs-devel
packages."
  );
  script_set_attribute(attribute:"risk_factor", value:"High");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kdelibs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kdelibs-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kdelibs-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:2");

  script_set_attribute(attribute:"patch_publication_date", value:"2005/03/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2005/05/19");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^2([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 2.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC2", reference:"kdelibs-3.2.2-14.FC2")) flag++;
if (rpm_check(release:"FC2", reference:"kdelibs-debuginfo-3.2.2-14.FC2")) flag++;
if (rpm_check(release:"FC2", reference:"kdelibs-devel-3.2.2-14.FC2")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kdelibs / kdelibs-debuginfo / kdelibs-devel");
}
VendorProductVersionCPE
fedoraprojectfedorakdelibsp-cpe:/a:fedoraproject:fedora:kdelibs
fedoraprojectfedorakdelibs-debuginfop-cpe:/a:fedoraproject:fedora:kdelibs-debuginfo
fedoraprojectfedorakdelibs-develp-cpe:/a:fedoraproject:fedora:kdelibs-devel
fedoraprojectfedora_core2cpe:/o:fedoraproject:fedora_core:2

Related

nessus 11
securityvulns 2
redhat 2
freebsd 2
ubuntucve 2
cve 2
gentoo 2
centos 2
openvas 10
cvelist 2
suse 1
nessus
nessus
RHEL 4 : kdelibs (RHSA-2005:325)
2005-03-25 00:00:00
Fedora Core 3 : kdelibs-3.3.1-2.9.FC3 (2005-245)
2005-09-12 00:00:00
Mandrake Linux Security Advisory : kdelibs (MDKSA-2005:058)
2005-03-17 00:00:00
securityvulns
securityvulns
Multiple KDE Security Advisories &#40;2005-03-16&#41;
2005-03-17 00:00:00
[Full-disclosure] SUSE Security Announcement: various KDE security problems &#40;SUSE-SA:2005:022&#41;
2005-04-12 00:00:00
redhat
redhat
(RHSA-2005:325) kdelibs security update
2005-03-23 00:00:00
(RHSA-2005:307) kdelibs security update
2005-04-06 00:00:00
freebsd
freebsd
kdelibs -- insecure temporary file creation
2005-01-21 00:00:00
kdelibs -- local DCOP denial of service vulnerability
2005-03-16 00:00:00
ubuntucve
ubuntucve
CVE-2005-0365
2005-05-02 00:00:00
CVE-2005-0396
2005-05-02 00:00:00
cve
cve
CVE-2005-0365
2005-05-02 04:00:00
CVE-2005-0396
2005-05-02 04:00:00
gentoo
gentoo
KDE dcopidlng: Insecure temporary file creation
2005-03-07 00:00:00
KDE: Local Denial of service
2005-03-19 00:00:00
centos
centos
kdelibs security update
2005-04-06 19:58:09
arts, kdelibs security update
2005-04-07 00:41:33
openvas
openvas
FreeBSD Ports: kdelibs, ja-kdelibs
2008-09-04 00:00:00
FreeBSD Ports: kdelibs, ja-kdelibs
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200503-22 (kde, dcopserver)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2005-0365
2005-02-11 05:00:00
CVE-2005-0396
2005-03-18 05:00:00
suse
suse
remote code execution in kdelibs3
2005-04-11 15:41:36
JSON
Related for FEDORA_2005-244.NASL
nessus11securityvulns2redhat2freebsd2ubuntucve2cve2gentoo2centos2openvas10cvelist2suse1