Lucene search

K

Fedora 14 : openssl-1.0.0c-1.fc14 (2010-18765)

๐Ÿ—“๏ธย 12 Dec 2010ย 00:00:00Reported byย This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.Typeย 
nessus
ย nessus
๐Ÿ”—ย www.tenable.com๐Ÿ‘ย 23ย Views

Fedora 14 openssl-1.0.0c-1.fc14 (2010-18765) update fixes minor bugs and a security issue of moderate impact

Show more
Related
Refs
Code
ReporterTitlePublishedViews
Family
Debian CVE
CVE-2010-4180
6 Dec 201021:05
โ€“debiancve
Debian CVE
CVE-2008-7270
6 Dec 201022:30
โ€“debiancve
Veracode
Insecure TLS Configuration
10 Apr 202000:56
โ€“veracode
OpenSSL
Vulnerability in OpenSSL CVE-2010-4180
2 Dec 201000:00
โ€“openssl
Tenable Nessus
RHEL 6 : openssl (RHSA-2010:0979)
14 Dec 201000:00
โ€“nessus
Tenable Nessus
Mandriva Linux Security Advisory : openssl (MDVSA-2010:248)
8 Dec 201000:00
โ€“nessus
Tenable Nessus
SuSE9 Security Update : OpenSSL (YOU Patch Number 12701)
4 May 201100:00
โ€“nessus
Tenable Nessus
openSUSE Security Update : libopenssl-devel (openSUSE-SU-2011:0014-1)
13 Jun 201400:00
โ€“nessus
Tenable Nessus
SuSE 11.1 Security Update : libopenssl (SAT Patch Number 3661)
21 Jan 201100:00
โ€“nessus
Tenable Nessus
SuSE 10 Security Update : OpenSSL (ZYPP Patch Number 7462)
13 Dec 201100:00
โ€“nessus
Rows per page
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2010-18765.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(51129);
  script_version("1.14");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2010-4180");
  script_bugtraq_id(45164);
  script_xref(name:"FEDORA", value:"2010-18765");

  script_name(english:"Fedora 14 : openssl-1.0.0c-1.fc14 (2010-18765)");
  script_summary(english:"Checks rpm output for the updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"New upstream release that fixes a few minor bugs and also a security
issue with moderate impact.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=659462"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2010-December/052027.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?650af9ca"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected openssl package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:openssl");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:14");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/12/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/12/12");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^14([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 14.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC14", reference:"openssl-1.0.0c-1.fc14")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "openssl");
}

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contactย us for a demo andย discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo
12 Dec 2010 00:00Current
7.2High risk
Vulners AI Score7.2
CVSS24.3
EPSS0.13
23
.json
Report