Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2021 Tenable Network Security, Inc.FEDORA_2015-2830.NASL
HistoryMar 10, 2015 - 12:00 a.m.

Fedora 20 : libpng10-1.0.63-1.fc20 (2015-2830)

2015-03-1000:00:00
This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.
www.tenable.com
17
JSON

This update addresses a couple of buffer overflows that might allow context-dependent attackers to execute arbitrary code via very wide PNG images.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2015-2830.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(81711);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2014-9495", "CVE-2015-0973");
  script_bugtraq_id(71820, 71994);
  script_xref(name:"FEDORA", value:"2015-2830");

  script_name(english:"Fedora 20 : libpng10-1.0.63-1.fc20 (2015-2830)");
  script_summary(english:"Checks rpm output for the updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update addresses a couple of buffer overflows that might allow
context-dependent attackers to execute arbitrary code via very wide
PNG images.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=1177327"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=1179186"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2015-March/151242.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?95ab3c01"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected libpng10 package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:libpng10");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:20");

  script_set_attribute(attribute:"patch_publication_date", value:"2015/02/28");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/03/10");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^20([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 20.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC20", reference:"libpng10-1.0.63-1.fc20")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libpng10");
}
VendorProductVersionCPE
fedoraprojectfedoralibpng10p-cpe:/a:fedoraproject:fedora:libpng10
fedoraprojectfedora20cpe:/o:fedoraproject:fedora:20

Related

openvas 9
prion 2
ubuntucve 2
nessus 9
suse 2
cve 2
fedora 3
debiancve 2
mageia 1
gentoo 1
ibm 4
zdt 1
securityvulns 2
rosalinux 1
photon 3
androidsecurity 1
apple 2
openvas
openvas
openSUSE: Security Advisory for libpng16 (openSUSE-SU-2015:0161-1)
2015-01-29 00:00:00
Fedora Update for libpng10 FEDORA-2015-2863
2015-03-10 00:00:00
Fedora Update for libpng10 FEDORA-2015-2765
2015-07-07 00:00:00
prion
prion
Buffer overflow
2015-01-18 18:59:00
Heap overflow
2015-01-10 19:59:00
ubuntucve
ubuntucve
CVE-2015-0973
2015-01-18 00:00:00
CVE-2014-9495
2015-01-10 00:00:00
nessus
nessus
Fedora 21 : libpng10-1.0.63-1.fc21 (2015-2863)
2015-03-10 00:00:00
Fedora 22 : libpng10-1.0.63-1.fc22 (2015-2765)
2015-03-10 00:00:00
SUSE SLED12 / SLES12 Security Update : libpng16 (SUSE-SU-2015:0092-1)
2015-05-20 00:00:00
suse
suse
Security update for libpng16 (important)
2015-01-28 18:05:31
Security update for libpng16 (important)
2015-01-20 14:04:48
cve
cve
CVE-2015-0973
2015-01-18 18:59:00
CVE-2014-9495
2015-01-10 19:59:00
fedora
fedora
[SECURITY] Fedora 22 Update: libpng10-1.0.63-1.fc22
2015-03-09 08:19:25
[SECURITY] Fedora 21 Update: libpng10-1.0.63-1.fc21
2015-03-09 08:37:27
[SECURITY] Fedora 20 Update: libpng10-1.0.63-1.fc20
2015-03-09 08:28:31
debiancve
debiancve
CVE-2015-0973
2015-01-18 18:59:00
CVE-2014-9495
2015-01-10 19:59:00
mageia
mageia
Updated libpng packages fix CVE-2014-9495
2015-01-07 18:14:58
gentoo
gentoo
libpng: User-assisted execution of arbitrary code
2015-02-15 00:00:00
ibm
ibm
Security Bulletin: Security vulnerabilities in Rational DOORS (CVE-2014-3613, CVE-2014-3620, CVE-2014-8730, CVE-2014-9495, CVE-2015-0973)
2020-05-01 08:19:24
Security Bulletin: IBM Cognos Business Intelligence Server is affected by multiple vulnerabilities
2018-06-15 23:13:37
Security Bulletin: Multiple vulnerability in Product IBM Tivoli Common Reporting( CVE-2015-0138, CVE-2014-9495,CVE-2014-8917,CVE-2015-0973 ,CVE-2014-3566 ,CVE-2014-6457 ,CVE-2014-6593,CVE-2015-0410,CVE-2014-3569,CVE-2015-0204,CVE-2014-3570)
2018-06-17 15:02:16
zdt
zdt
libpng 1.6.15 Heap Overflow Exploit
2015-01-24 00:00:00
securityvulns
securityvulns
[ MDVSA-2015:090 ] libpng
2015-04-20 00:00:00
libpng security vulnerabilities
2015-04-20 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1884
2021-07-02 17:16:15
photon
photon
Critical Photon OS Security Update - PHSA-2023-5.0-0033
2023-06-21 00:00:00
Critical Photon OS Security Update - PHSA-2023-4.0-0415
2023-06-22 00:00:00
Critical Photon OS Security Update - PHSA-2023-3.0-0602
2023-06-21 00:00:00
androidsecurity
androidsecurity
Nexus Security Bulletinβ€”August 2015
2015-08-13 00:00:00
apple
apple
About the security content of OS X El Capitan v10.11.4 and Security Update 2016-002 - Apple Support
2017-01-23 03:54:34
About the security content of OS X El Capitan v10.11.4 and Security Update 2016-002
2016-03-21 00:00:00
JSON
Related for FEDORA_2015-2830.NASL
openvas9prion2ubuntucve2nessus9suse2cve2fedora3debiancve2mageia1gentoo1ibm4zdt1securityvulns2rosalinux1photon3androidsecurity1apple2