Lucene search

HistoryOct 10, 2008 - 12:00 a.m.

Fedora 9 : ruby-1.8.6.287-2.fc9 (2008-8738)

2008-10-1000:00:00

www.tenable.com

Update to new upstream release fixing multiple security issues detailed in the upstream advisories:
http://www.ruby-lang.org/en/news/2008/08/08/multiple- vulnerabilities-in-ruby/ - CVE-2008-3655 - multiple insufficient safe mode restrictions - CVE-2008-3656 - WEBrick DoS vulnerability (CPU consumption) - CVE-2008-3657 - missing ‘taintness’ checks in dl module

CVE-2008-3905 - resolv.rb adds random transactions ids and source ports to prevent DNS spoofing attacks http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in- rexml/ - CVE-2008-3790 - DoS in the REXML module One issue not covered by any upstream advisory: - CVE-2008-3443 - DoS in the regular expression engine

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2008-8738.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(34380);
  script_version("1.35");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2008-1447", "CVE-2008-3443", "CVE-2008-3655", "CVE-2008-3656", "CVE-2008-3657", "CVE-2008-3790", "CVE-2008-3905");
  script_bugtraq_id(30131, 30644, 30682, 30802);
  script_xref(name:"CERT", value:"800113");
  script_xref(name:"IAVA", value:"2008-A-0045");
  script_xref(name:"FEDORA", value:"2008-8738");

  script_name(english:"Fedora 9 : ruby-1.8.6.287-2.fc9 (2008-8738)");
  script_summary(english:"Checks rpm output for the updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Update to new upstream release fixing multiple security issues
detailed in the upstream advisories:
http://www.ruby-lang.org/en/news/2008/08/08/multiple-
vulnerabilities-in-ruby/ - CVE-2008-3655 - multiple insufficient safe
mode restrictions - CVE-2008-3656 - WEBrick DoS vulnerability (CPU
consumption) - CVE-2008-3657 - missing 'taintness' checks in dl module
- CVE-2008-3905 - resolv.rb adds random transactions ids and source
ports to prevent DNS spoofing attacks
http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-
rexml/ - CVE-2008-3790 - DoS in the REXML module One issue not covered
by any upstream advisory: - CVE-2008-3443 - DoS in the regular
expression engine

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.ruby-lang.org/en/news/2008/08/08/multiple-"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=449345"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=458948"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=458953"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=458966"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=459266"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=460134"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2008-October/015199.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?bc21b07b"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected ruby package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(20, 264, 287, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:ruby");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:9");

  script_set_attribute(attribute:"patch_publication_date", value:"2008/10/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2008/10/10");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2008-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^9([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 9.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC9", reference:"ruby-1.8.6.287-2.fc9")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ruby");
}

VendorProductVersionCPE
fedoraprojectfedorarubyp-cpe:/a:fedoraproject:fedora:ruby
fedoraprojectfedora9cpe:/o:fedoraproject:fedora:9

Vendor	Product	Version	CPE
fedoraproject	fedora	ruby	p-cpe:/a:fedoraproject:fedora:ruby
fedoraproject	fedora	9	cpe:/o:fedoraproject:fedora:9

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1447

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3443

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3655

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3656

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3657

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3790

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3905

www.nessus.org/u?bc21b07b

www.ruby-lang.org/en/news/2008/08/08/multiple-

www.ruby-lang.org/en/news/2008/08/23/dos-vulnerability-in-

bugzilla.redhat.com/show_bug.cgi?id=449345

bugzilla.redhat.com/show_bug.cgi?id=458948

bugzilla.redhat.com/show_bug.cgi?id=458953

bugzilla.redhat.com/show_bug.cgi?id=458966

bugzilla.redhat.com/show_bug.cgi?id=459266

bugzilla.redhat.com/show_bug.cgi?id=460134

Fedora 9 : ruby-1.8.6.287-2.fc9 (2008-8738)

References

Related