Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2012-17949.NASL
HistoryNov 26, 2012 - 12:00 a.m.

Fedora 18 : ruby-1.9.3.327-22.fc18 (2012-17949)

2012-11-2600:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
JSON

A security flaw was found on ruby currently shiped on Fedora 18 that carefully crafted sequence of strings may cause a denial of service attack on the service that parses the sequence to create a Hash object by using the strings as keys. This issue is now registered as CVE-2012-5371.

This new package should fix this issue.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2012-17949.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(63030);
  script_version("1.11");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2012-5371");
  script_bugtraq_id(56484);
  script_xref(name:"FEDORA", value:"2012-17949");

  script_name(english:"Fedora 18 : ruby-1.9.3.327-22.fc18 (2012-17949)");
  script_summary(english:"Checks rpm output for the updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A security flaw was found on ruby currently shiped on Fedora 18 that
carefully crafted sequence of strings may cause a denial of service
attack on the service that parses the sequence to create a Hash object
by using the strings as keys. This issue is now registered as
CVE-2012-5371.

This new package should fix this issue.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=875268"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2012-November/092907.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?65fc27f9"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected ruby package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:ruby");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:18");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/11/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/11/26");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^18([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 18.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC18", reference:"ruby-1.9.3.327-22.fc18")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ruby");
}
VendorProductVersionCPE
fedoraprojectfedorarubyp-cpe:/a:fedoraproject:fedora:ruby
fedoraprojectfedora18cpe:/o:fedoraproject:fedora:18

Related

nessus 9
fedora 5
openvas 14
slackware 1
freebsd 1
veracode 1
cve 2
ubuntucve 1
prion 1
rubygems 1
securityvulns 3
ubuntu 1
osv 1
debian 1
gentoo 1
redhat 1
nessus
nessus
FreeBSD : ruby -- Hash-flooding DoS vulnerability for ruby 1.9 (5e647ca3-2aea-11e2-b745-001fd0af1a4c)
2012-11-12 00:00:00
Slackware 13.1 / 13.37 / 14.0 / current : ruby (SSA:2012-341-04)
2012-12-07 00:00:00
Fedora 17 : ruby-1.9.3.327-19.fc17 (2012-18017)
2012-11-19 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: ruby-1.9.3.327-22.fc18
2012-11-23 07:52:57
[SECURITY] Fedora 17 Update: ruby-1.9.3.392-29.fc17
2013-03-05 23:33:43
[SECURITY] Fedora 17 Update: ruby-1.9.3.327-19.fc17
2012-11-19 02:26:49
openvas
openvas
FreeBSD Ports: ruby
2012-11-26 00:00:00
FreeBSD Ports: ruby
2012-11-26 00:00:00
Ubuntu Update for ruby1.9.1 USN-1733-1
2013-02-22 00:00:00
slackware
slackware
[slackware-security] ruby
2012-12-07 03:51:38
freebsd
freebsd
ruby -- Hash-flooding DoS vulnerability for ruby 1.9
2012-11-10 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:53:45
cve
cve
CVE-2012-5371
2012-11-28 13:03:00
CVE-2011-5371
2012-11-28 00:55:00
ubuntucve
ubuntucve
CVE-2012-5371
2012-11-28 00:00:00
prion
prion
Design/Logic Flaw
2012-11-28 13:03:00
rubygems
rubygems
CVE-2012-5371 ruby: Murmur hash-flooding DoS flaw in ruby 1.9 (oCERT-2012-001)
2012-11-22 20:00:00
securityvulns
securityvulns
Ruby multiple security vulnerabilities
2013-02-24 00:00:00
[USN-1733-1] Ruby vulnerabilities
2013-02-24 00:00:00
MurmurHash algorythm vulnerabilities
2012-12-03 00:00:00
ubuntu
ubuntu
Ruby vulnerabilities
2013-02-21 00:00:00
osv
osv
ruby1.9.1 - security update
2015-07-01 00:00:00
debian
debian
[SECURITY] [DLA 263-1] ruby1.9.1 security update
2015-07-01 10:09:26
gentoo
gentoo
Ruby: Denial of service
2014-12-13 00:00:00
redhat
redhat
(RHSA-2013:0582) Moderate: Red Hat OpenShift Enterprise 1.1.1 update
2013-02-28 00:00:00
JSON
Related for FEDORA_2012-17949.NASL
nessus9fedora5openvas14slackware1freebsd1veracode1cve2ubuntucve1prion1rubygems1securityvulns3ubuntu1osv1debian1gentoo1redhat1