Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2010-5357.NASL
HistoryJul 01, 2010 - 12:00 a.m.

Fedora 11 : openssl-0.9.8n-1.fc11 (2010-5357)

2010-07-0100:00:00
This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
26
JSON

Update to upstream version 0.9.8n fixing multiple security issues:
CVE-2009-3555, CVE-2009-3245, CVE-2009-4355, and CVE-2010-0433. Refer to upstream CHANGES file for the detailed list of changes since version 0.9.8k :

  • http://cvs.openssl.org/fileview?f=openssl/CHANGES&v=1.12     38.2.193

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2010-5357.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(47385);
  script_version("1.17");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2009-3245", "CVE-2009-3555", "CVE-2009-4355", "CVE-2010-0433");
  script_bugtraq_id(35001, 35138, 36935, 38533, 38562, 39013);
  script_xref(name:"FEDORA", value:"2010-5357");

  script_name(english:"Fedora 11 : openssl-0.9.8n-1.fc11 (2010-5357)");
  script_summary(english:"Checks rpm output for the updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Update to upstream version 0.9.8n fixing multiple security issues:
CVE-2009-3555, CVE-2009-3245, CVE-2009-4355, and CVE-2010-0433. Refer
to upstream CHANGES file for the detailed list of changes since
version 0.9.8k :

  -
    http://cvs.openssl.org/fileview?f=openssl/CHANGES&v=1.12
    38.2.193

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://cvs.openssl.org/fileview?f=openssl/CHANGES&v=1.1238.2.193"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=533125"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=546707"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=569774"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=570924"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2010-April/039561.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?875f78de"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected openssl package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(20, 310, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:openssl");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/03/26");
  script_set_attribute(attribute:"plugin_publication_date", value:"2010/07/01");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^11([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 11.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC11", reference:"openssl-0.9.8n-1.fc11")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "openssl");
}
VendorProductVersionCPE
fedoraprojectfedoraopensslp-cpe:/a:fedoraproject:fedora:openssl
fedoraprojectfedora11cpe:/o:fedoraproject:fedora:11

Related

openvas 66
nessus 70
redhat 2
fedora 12
oraclelinux 2
centos 2
securityvulns 8
suse 1
vmware 2
ubuntucve 2
openssl 3
prion 2
f5 4
cve 2
veracode 4
debian 3
osv 1
debiancve 2
ubuntu 4
fortinet 1
checkpoint_advisories 2
seebug 1
ibm 1
github 1
nginx 1
openvas
openvas
RedHat Update for openssl RHSA-2010:0162-01
2010-03-31 00:00:00
CentOS Update for openssl CESA-2010:0162 centos5 i386
2011-08-09 00:00:00
Fedora Update for openssl FEDORA-2010-8742
2010-05-28 00:00:00
nessus
nessus
Scientific Linux Security Update : openssl on SL5.x i386/x86_64
2012-08-01 00:00:00
Oracle Linux 5 : openssl (ELSA-2010-0162)
2013-07-12 00:00:00
CentOS 5 : openssl (CESA-2010:0162)
2010-03-29 00:00:00
redhat
redhat
(RHSA-2010:0162) Important: openssl security update
2010-03-25 00:00:00
(RHSA-2010:0173) Important: openssl096b security update
2010-03-25 00:00:00
fedora
fedora
[SECURITY] Fedora 12 Update: openssl-1.0.0-4.fc12
2010-05-25 18:42:18
[SECURITY] Fedora 13 Update: openssl-1.0.0-1.fc13
2010-04-09 03:42:47
[SECURITY] Fedora 11 Update: openssl-0.9.8n-1.fc11
2010-04-16 23:49:46
oraclelinux
oraclelinux
openssl security update
2010-03-25 00:00:00
openssl096b security update
2010-03-25 00:00:00
centos
centos
openssl security update
2010-03-27 17:30:13
openssl096b security update
2010-03-25 22:40:26
securityvulns
securityvulns
[ MDVSA-2010:076-1 ] openssl
2010-04-22 00:00:00
[USN-884-1] OpenSSL vulnerability
2010-01-17 00:00:00
OpenSSL memory leak
2010-01-17 00:00:00
suse
suse
remote denial of service, man in the middle in openssl
2010-04-06 16:55:06
vmware
vmware
VMware ESX third party updates for Service Console
2010-09-30 00:00:00
VMware ESX third party updates for Service Console
2010-09-30 00:00:00
ubuntucve
ubuntucve
CVE-2009-3245
2010-03-05 00:00:00
CVE-2010-0433
2010-03-05 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2009-3245
2010-02-23 00:00:00
Vulnerability in OpenSSL CVE-2009-4355
2010-01-13 00:00:00
Vulnerability in OpenSSL CVE-2010-0433
2010-01-19 00:00:00
prion
prion
Design/Logic Flaw
2010-03-05 19:30:00
Null pointer dereference
2010-03-05 19:30:00
f5
f5
K15404 : OpenSSL vulnerability CVE-2009-3245
2014-07-14 00:00:00
SOL15404 - OpenSSL vulnerability CVE-2009-3245
2014-07-14 00:00:00
SOL13432 - OpenSSL vulnerability CVE-2010-0433
2012-02-29 00:00:00
cve
cve
CVE-2009-3245
2010-03-05 19:30:00
CVE-2010-0433
2010-03-05 19:30:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:45:17
Denial Of Service (DoS)
2020-04-10 00:47:06
Denial Of Service (DoS)
2020-04-10 00:45:18
debian
debian
[SECURITY] [DSA-1970-1] New openssl packages fix denial of service
2010-01-13 18:47:58
[SECURITY] [DSA-1970-1] New openssl packages fix denial of service
2010-01-13 18:47:58
[SECURITY] [DSA-2141-1] New apache2 packages add backward compatibility option
2011-01-05 23:21:00
osv
osv
openssl - denial of service
2010-01-13 00:00:00
debiancve
debiancve
CVE-2009-3245
2010-03-05 19:30:00
CVE-2010-0433
2010-03-05 19:30:00
ubuntu
ubuntu
OpenSSL vulnerability
2010-01-14 00:00:00
NSS vulnerability
2010-07-23 00:00:00
nss vulnerability
2010-06-29 00:00:00
fortinet
fortinet
FortiOS SSL Deep-Inspection possible Insecure Renegotiation
2017-11-03 00:00:00
checkpoint_advisories
checkpoint_advisories
Preemptive Protection against TLS and SSL Spoofing Vulnerability
2010-02-09 00:00:00
TLS Client Initiated Renegotiation (CVE-2009-3555)
2009-11-23 00:00:00
seebug
seebug
TLS Renegotiation Vulnerability PoC
2014-07-01 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities have been identified in IBM Tivoli Netcool/OMNIbus Probe for Network Node Manager i (CVE-2009-3555)
2020-06-23 08:41:14
github
github
Apache Tomcat affected by vulnerability in TLS and SSL protocol
2022-05-02 03:46:22
nginx
nginx
The renegotiation vulnerability in SSL protocol
2009-11-09 17:30:00
JSON
Related for FEDORA_2010-5357.NASL
openvas66nessus70redhat2fedora12oraclelinux2centos2securityvulns8suse1vmware2ubuntucve2openssl3prion2f54cve2veracode4debian3osv1debiancve2ubuntu4fortinet1checkpoint_advisories2seebug1ibm1github1nginx1