Fedora Core 6 : dovecot-1.0-1.rc15.fc6 (2006-1396)

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2006-1396.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(24064);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_xref(name:"FEDORA", value:"2006-1396");

  script_name(english:"Fedora Core 6 : dovecot-1.0-1.rc15.fc6 (2006-1396)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora Core host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - Tue Nov 21 2006 Petr Rockai <prockai at redhat.com> -
    1.0-1.rc15

    - update to latest upstream, fixes a few bugs, plus a
      security vulnerability (#216510, CVE-2006-5973)

  - Tue Oct 10 2006 Petr Rockai <prockai at redhat.com> -
    1.0-0.3.rc7

    - fix few inconsistencies in specfile, fixes #198940

    - Wed Oct 4 2006 Petr Rockai <prockai at redhat.com> -
      1.0-0.2.rc7

    - fix default paths in the example mkcert.sh to match
      configuration defaults (fixes #183151)

  - Sun Oct 1 2006 Jesse Keating <jkeating at redhat.com> -
    1.0-0.1.rc7

    - rebuilt for unwind info generation, broken in
      gcc-4.1.1-21

    - Fri Sep 22 2006 Petr Rockai <prockai at redhat.com> -
      1.0-0.rc7

    - update to latest upstream release candidate, should
      fix occasional hangs and mbox issues... INBOX.
      namespace is still broken though

  - do not run over symlinked certificates in new locations
    on upgrade

    - Tue Aug 15 2006 Petr Rockai <prockai at redhat.com> -
      1.0-0.rc2.2

    - include /var/lib/dovecot in the package, prevents
      startup failure on new installs

  - Mon Jul 17 2006 Petr Rockai <prockai at redhat.com> -
    1.0-0.rc2.1

    - reenable inotify and see what happens

    - Thu Jul 13 2006 Petr Rockai <prockai at redhat.com> -
      1.0-0.rc2

    - update to latest upstream release candidate

    - disable inotify for now, doesn't build -- this needs
      fixing though

    - Wed Jul 12 2006 Jesse Keating <jkeating at redhat.com>
      - 1.0-0.beta8.2.1

    - rebuild

    - Thu Jun 8 2006 Petr Rockai <prockai at redhat.com> -
      1.0-0.beta8.2

    - put back pop3_uidl_format default that got lost in the
      beta2->beta7 upgrade (would cause pop3 to not work at
      all in many situations)

  - Thu May 4 2006 Petr Rockai <prockai at redhat.com> -
    1.0-0.beta8.1

    - upgrade to latest upstream beta release (beta8)

    - contains a security fix in mbox handling

    - Thu May 4 2006 Petr Rockai <prockai at redhat.com> -
      1.0-0.beta7.1

    - upgrade to latest upstream beta release

    - fixed BR 173048

    - Fri Mar 17 2006 Petr Rockai <prockai at redhat.com> -
      1.0-0.beta2.8

    - fix sqlite detection in upstream configure checks,
      second part of #182240

  - Wed Mar 8 2006 Bill Nottingham <notting at redhat.com> -
    1.0-0.beta2.7

    - fix scriplet noise some more

    - Mon Mar 6 2006 Jeremy Katz <katzj at redhat.com> -
      1.0-0.beta2.6

    - fix scriptlet error (mitr, #184151)

    - Mon Feb 27 2006 Petr Rockai <prockai at redhat.com> -
      1.0-0.beta2.5

    - fix #182240 by looking in lib64 for libs first and
      then lib

    - fix comment #1 in #182240 by copying over the example
      config files to documentation directory

  - Fri Feb 10 2006 Jesse Keating <jkeating at redhat.com> -
    1.0-0.beta2.4.1

    - bump again for double-long bug on ppc(64)

    - Thu Feb 9 2006 Petr Rockai <prockai at redhat.com> -
      1.0-0.beta2.4

    - enable inotify as it should work now (#179431)

    - Tue Feb 7 2006 Jesse Keating <jkeating at redhat.com>
      - 1.0-0.beta2.3.1

[plus 220 lines in the Changelog]

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2006-December/001133.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?3b9ff09a"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected dovecot and / or dovecot-debuginfo packages."
  );
  script_set_attribute(attribute:"risk_factor", value:"High");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:dovecot");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:dovecot-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:6");

  script_set_attribute(attribute:"patch_publication_date", value:"2006/12/18");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/01/17");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 6.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC6", reference:"dovecot-1.0-1.rc15.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"dovecot-debuginfo-1.0-1.rc15.fc6")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "dovecot / dovecot-debuginfo");
}