Fedora 14 openssl-1.0.0c-1.fc14 (2010-18765) update fixes minor bugs and a security issue of moderate impact
Reporter | Title | Published | Views | Family All 158 |
---|---|---|---|---|
![]() | CVE-2010-4180 | 6 Dec 201021:05 | โ | debiancve |
![]() | CVE-2008-7270 | 6 Dec 201022:30 | โ | debiancve |
![]() | Insecure TLS Configuration | 10 Apr 202000:56 | โ | veracode |
![]() | Vulnerability in OpenSSL CVE-2010-4180 | 2 Dec 201000:00 | โ | openssl |
![]() | RHEL 6 : openssl (RHSA-2010:0979) | 14 Dec 201000:00 | โ | nessus |
![]() | Mandriva Linux Security Advisory : openssl (MDVSA-2010:248) | 8 Dec 201000:00 | โ | nessus |
![]() | SuSE9 Security Update : OpenSSL (YOU Patch Number 12701) | 4 May 201100:00 | โ | nessus |
![]() | openSUSE Security Update : libopenssl-devel (openSUSE-SU-2011:0014-1) | 13 Jun 201400:00 | โ | nessus |
![]() | SuSE 11.1 Security Update : libopenssl (SAT Patch Number 3661) | 21 Jan 201100:00 | โ | nessus |
![]() | SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 7462) | 13 Dec 201100:00 | โ | nessus |
Source | Link |
---|---|
nessus | www.nessus.org/u |
cve | www.cve.mitre.org/cgi-bin/cvename.cgi |
bugzilla | www.bugzilla.redhat.com/show_bug.cgi |
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory 2010-18765.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(51129);
script_version("1.14");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2010-4180");
script_bugtraq_id(45164);
script_xref(name:"FEDORA", value:"2010-18765");
script_name(english:"Fedora 14 : openssl-1.0.0c-1.fc14 (2010-18765)");
script_summary(english:"Checks rpm output for the updated package.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Fedora host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"New upstream release that fixes a few minor bugs and also a security
issue with moderate impact.
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=659462"
);
# https://lists.fedoraproject.org/pipermail/package-announce/2010-December/052027.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?650af9ca"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected openssl package."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:openssl");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:14");
script_set_attribute(attribute:"patch_publication_date", value:"2010/12/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2010/12/12");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Fedora Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^14([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 14.x", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC14", reference:"openssl-1.0.0c-1.fc14")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "openssl");
}
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo