{"id": "FEDORA_2015-7767.NASL", "bulletinFamily": "scanner", "title": "Fedora 22 : NetworkManager-1.0.2-1.fc22 / NetworkManager-openconnect-1.0.2-1.fc22 / etc (2015-7767)", "description": "This is an update of NetworkManager, the VPN plugins, applet and\nconnection editor to 1.0.2 stable release.\n\nThe update includes bug fixes, feature additions, translation updates\nand a fix for the CVE-2015-2924 denial of service security issue with\nlow impact.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "published": "2015-05-12T00:00:00", "modified": "2015-05-12T00:00:00", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}, "href": "https://www.tenable.com/plugins/nessus/83338", "reporter": "This script is Copyright (C) 2015-2020 Tenable Network Security, Inc.", "references": ["http://www.nessus.org/u?bef831cf", "https://bugzilla.redhat.com/show_bug.cgi?id=1209902", "http://www.nessus.org/u?21475616", "http://www.nessus.org/u?963d91ca", "http://www.nessus.org/u?75df4d83", "http://www.nessus.org/u?2faa90e2", "http://www.nessus.org/u?2d79896f"], "cvelist": ["CVE-2015-2924"], "type": "nessus", "lastseen": "2020-06-05T09:27:46", "edition": 16, "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2015-2924"]}, {"type": "gentoo", "idList": ["GLSA-201509-05"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310869555", "OPENVAS:1361412562310869671", "OPENVAS:1361412562310869533", "OPENVAS:1361412562310869649", "OPENVAS:1361412562310121411", "OPENVAS:1361412562310869420", "OPENVAS:1361412562310122782", "OPENVAS:1361412562310869677", "OPENVAS:1361412562310869510", "OPENVAS:1361412562310871481"]}, {"type": "nessus", "idList": ["REDHAT-RHSA-2015-2315.NASL", "FEDORA_2015-7623.NASL", "SL_20151119_NETWORKMANAGER_ON_SL7_X.NASL", "ORACLELINUX_ELSA-2015-2315.NASL", "CENTOS_RHSA-2015-2315.NASL", "GENTOO_GLSA-201509-05.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2015-2315"]}, {"type": "centos", "idList": ["CESA-2015:2315"]}, {"type": "redhat", "idList": ["RHSA-2015:2315"]}], "modified": "2020-06-05T09:27:46", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2020-06-05T09:27:46", "rev": 2}, "vulnersScore": 5.7}, "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-7767.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83338);\n script_version(\"2.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/06/04\");\n\n script_cve_id(\"CVE-2015-2924\");\n script_xref(name:\"FEDORA\", value:\"2015-7767\");\n\n script_name(english:\"Fedora 22 : NetworkManager-1.0.2-1.fc22 / NetworkManager-openconnect-1.0.2-1.fc22 / etc (2015-7767)\");\n script_summary(english:\"Checks rpm output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This is an update of NetworkManager, the VPN plugins, applet and\nconnection editor to 1.0.2 stable release.\n\nThe update includes bug fixes, feature additions, translation updates\nand a fix for the CVE-2015-2924 denial of service security issue with\nlow impact.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1209902\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157798.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?21475616\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157799.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2d79896f\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157800.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?bef831cf\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157801.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?963d91ca\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157802.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2faa90e2\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157803.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?75df4d83\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:NetworkManager\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:NetworkManager-openconnect\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:NetworkManager-openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:NetworkManager-openvpn\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:NetworkManager-vpnc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:network-manager-applet\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:22\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/05/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2020 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^22([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 22.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC22\", reference:\"NetworkManager-1.0.2-1.fc22\")) flag++;\nif (rpm_check(release:\"FC22\", reference:\"NetworkManager-openconnect-1.0.2-1.fc22\")) flag++;\nif (rpm_check(release:\"FC22\", reference:\"NetworkManager-openswan-1.0.2-1.fc22\")) flag++;\nif (rpm_check(release:\"FC22\", reference:\"NetworkManager-openvpn-1.0.2-1.fc22\")) flag++;\nif (rpm_check(release:\"FC22\", reference:\"NetworkManager-vpnc-1.0.2-1.fc22\")) flag++;\nif (rpm_check(release:\"FC22\", reference:\"network-manager-applet-1.0.2-1.fc22\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());\n else security_note(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"NetworkManager / NetworkManager-openconnect / etc\");\n}\n", "naslFamily": "Fedora Local Security Checks", "pluginID": "83338", "cpe": ["p-cpe:/a:fedoraproject:fedora:NetworkManager-openconnect", "p-cpe:/a:fedoraproject:fedora:NetworkManager-vpnc", "p-cpe:/a:fedoraproject:fedora:NetworkManager-openvpn", "p-cpe:/a:fedoraproject:fedora:NetworkManager-openswan", "cpe:/o:fedoraproject:fedora:22", "p-cpe:/a:fedoraproject:fedora:network-manager-applet", "p-cpe:/a:fedoraproject:fedora:NetworkManager"], "scheme": null}

{"cve": [{"lastseen": "2020-11-30T00:13:33", "description": "The receive_ra function in rdisc/nm-lndp-rdisc.c in the Neighbor Discovery (ND) protocol implementation in the IPv6 stack in NetworkManager 1.x allows remote attackers to reconfigure a hop-limit setting via a small hop_limit value in a Router Advertisement (RA) message, a similar issue to CVE-2015-2922.", "edition": 4, "cvss3": {}, "published": "2015-11-16T21:59:00", "title": "CVE-2015-2924", "type": "cve", "cwe": ["CWE-20"], "bulletinFamily": "NVD", "cvss2": {"severity": "LOW", "exploitabilityScore": 6.5, "obtainAllPrivilege": false, "userInteractionRequired": false, "obtainOtherPrivilege": false, "cvssV2": {"accessComplexity": "LOW", "confidentialityImpact": "NONE", "availabilityImpact": "PARTIAL", "integrityImpact": "NONE", "baseScore": 3.3, "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE"}, "impactScore": 2.9, "obtainUserPrivilege": false}, "cvelist": ["CVE-2015-2924"], "modified": "2016-12-07T18:10:00", "cpe": ["cpe:/a:networkmanager_project:networkmanager:1.0.7"], "id": "CVE-2015-2924", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-2924", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}, "cpe23": ["cpe:2.3:a:networkmanager_project:networkmanager:1.0.7:dev:*:*:*:*:*:*"]}], "openvas": [{"lastseen": "2019-05-29T18:36:12", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2015-07-07T00:00:00", "id": "OPENVAS:1361412562310869671", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869671", "type": "openvas", "title": "Fedora Update for NetworkManager FEDORA-2015-7767", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for NetworkManager FEDORA-2015-7767\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869671\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-07 06:33:05 +0200 (Tue, 07 Jul 2015)\");\n script_cve_id(\"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"3.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for NetworkManager FEDORA-2015-7767\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'NetworkManager'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"NetworkManager on Fedora 22\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_xref(name:\"FEDORA\", value:\"2015-7767\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157803.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC22\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"NetworkManager\", rpm:\"NetworkManager~1.0.2~1.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:36:12", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2015-07-07T00:00:00", "id": "OPENVAS:1361412562310869533", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869533", "type": "openvas", "title": "Fedora Update for network-manager-applet FEDORA-2015-7767", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for network-manager-applet FEDORA-2015-7767\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869533\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-07 06:22:57 +0200 (Tue, 07 Jul 2015)\");\n script_cve_id(\"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"3.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for network-manager-applet FEDORA-2015-7767\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'network-manager-applet'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"network-manager-applet on Fedora 22\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_xref(name:\"FEDORA\", value:\"2015-7767\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157798.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC22\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"network-manager-applet\", rpm:\"network-manager-applet~1.0.2~1.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:37:01", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2015-06-09T00:00:00", "id": "OPENVAS:1361412562310869420", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869420", "type": "openvas", "title": "Fedora Update for NetworkManager FEDORA-2015-7623", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for NetworkManager FEDORA-2015-7623\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869420\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2015-06-09 10:54:35 +0200 (Tue, 09 Jun 2015)\");\n script_cve_id(\"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"3.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for NetworkManager FEDORA-2015-7623\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'NetworkManager'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"NetworkManager on Fedora 21\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_xref(name:\"FEDORA\", value:\"2015-7623\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/158103.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC21\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC21\")\n{\n\n if ((res = isrpmvuln(pkg:\"NetworkManager\", rpm:\"NetworkManager~0.9.10.2~5.fc21\", rls:\"FC21\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:36:55", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2015-07-07T00:00:00", "id": "OPENVAS:1361412562310869649", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869649", "type": "openvas", "title": "Fedora Update for NetworkManager-openconnect FEDORA-2015-7767", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for NetworkManager-openconnect FEDORA-2015-7767\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869649\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-07 06:31:46 +0200 (Tue, 07 Jul 2015)\");\n script_cve_id(\"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"3.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for NetworkManager-openconnect FEDORA-2015-7767\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'NetworkManager-openconnect'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"NetworkManager-openconnect on Fedora 22\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_xref(name:\"FEDORA\", value:\"2015-7767\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157800.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC22\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-openconnect\", rpm:\"NetworkManager-openconnect~1.0.2~1.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:36:05", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2015-07-07T00:00:00", "id": "OPENVAS:1361412562310869510", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869510", "type": "openvas", "title": "Fedora Update for NetworkManager-openswan FEDORA-2015-7767", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for NetworkManager-openswan FEDORA-2015-7767\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869510\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-07 06:20:58 +0200 (Tue, 07 Jul 2015)\");\n script_cve_id(\"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"3.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for NetworkManager-openswan FEDORA-2015-7767\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'NetworkManager-openswan'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"NetworkManager-openswan on Fedora 22\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_xref(name:\"FEDORA\", value:\"2015-7767\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157802.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC22\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-openswan\", rpm:\"NetworkManager-openswan~1.0.2~1.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:36:24", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "description": "Gentoo Linux Local Security Checks GLSA 201509-05", "modified": "2018-10-26T00:00:00", "published": "2015-09-29T00:00:00", "id": "OPENVAS:1361412562310121411", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310121411", "type": "openvas", "title": "Gentoo Security Advisory GLSA 201509-05", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: glsa-201509-05.nasl 12128 2018-10-26 13:35:25Z cfischer $\n#\n# Gentoo Linux security check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.121411\");\n script_version(\"$Revision: 12128 $\");\n script_tag(name:\"creation_date\", value:\"2015-09-29 11:29:03 +0300 (Tue, 29 Sep 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-26 15:35:25 +0200 (Fri, 26 Oct 2018) $\");\n script_name(\"Gentoo Security Advisory GLSA 201509-05\");\n script_tag(name:\"insight\", value:\"IPv6 Neighbour Discovery ICMP broadcast containing a non-route with a low hop limit causes a Denial of Service by lowering the hop limit on existing IPv6 routes in NetworkManager.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"URL\", value:\"https://security.gentoo.org/glsa/201509-05\");\n script_cve_id(\"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"3.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_category(ACT_GATHER_INFO);\n script_tag(name:\"summary\", value:\"Gentoo Linux Local Security Checks GLSA 201509-05\");\n script_copyright(\"Eero Volotinen\");\n script_family(\"Gentoo Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\n\nif((res=ispkgvuln(pkg:\"net-misc/networkmanager\", unaffected: make_list(\"ge 1.0.2\"), vulnerable: make_list(\"lt 1.0.2\"))) != NULL) {\n report += res;\n}\n\nif(report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:36:35", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2015-07-07T00:00:00", "id": "OPENVAS:1361412562310869677", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869677", "type": "openvas", "title": "Fedora Update for NetworkManager-openvpn FEDORA-2015-7767", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for NetworkManager-openvpn FEDORA-2015-7767\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869677\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-07 06:33:32 +0200 (Tue, 07 Jul 2015)\");\n script_cve_id(\"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"3.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for NetworkManager-openvpn FEDORA-2015-7767\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'NetworkManager-openvpn'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"NetworkManager-openvpn on Fedora 22\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_xref(name:\"FEDORA\", value:\"2015-7767\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157801.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC22\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-openvpn\", rpm:\"NetworkManager-openvpn~1.0.2~1.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:35:58", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2015-07-07T00:00:00", "id": "OPENVAS:1361412562310869555", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310869555", "type": "openvas", "title": "Fedora Update for NetworkManager-vpnc FEDORA-2015-7767", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for NetworkManager-vpnc FEDORA-2015-7767\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.869555\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2015-07-07 06:24:55 +0200 (Tue, 07 Jul 2015)\");\n script_cve_id(\"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"3.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for NetworkManager-vpnc FEDORA-2015-7767\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'NetworkManager-vpnc'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"NetworkManager-vpnc on Fedora 22\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_xref(name:\"FEDORA\", value:\"2015-7767\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/pipermail/package-announce/2015-May/157799.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC22\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC22\")\n{\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-vpnc\", rpm:\"NetworkManager-vpnc~1.0.2~1.fc22\", rls:\"FC22\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:36:58", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924", "CVE-2015-0272"], "description": "Oracle Linux Local Security Checks ELSA-2015-2315", "modified": "2018-09-28T00:00:00", "published": "2015-11-25T00:00:00", "id": "OPENVAS:1361412562310122782", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122782", "type": "openvas", "title": "Oracle Linux Local Check: ELSA-2015-2315", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2015-2315.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122782\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-11-25 13:18:49 +0200 (Wed, 25 Nov 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2015-2315\");\n script_tag(name:\"insight\", value:\"ELSA-2015-2315 - NetworkManager security, bug fix, and enhancement update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2015-2315\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2015-2315.html\");\n script_cve_id(\"CVE-2015-0272\", \"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux7\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux7\")\n{\n if ((res = isrpmvuln(pkg:\"ModemManager\", rpm:\"ModemManager~1.1.0~8.git20130913.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ModemManager-devel\", rpm:\"ModemManager-devel~1.1.0~8.git20130913.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ModemManager-glib\", rpm:\"ModemManager-glib~1.1.0~8.git20130913.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ModemManager-glib-devel\", rpm:\"ModemManager-glib-devel~1.1.0~8.git20130913.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"ModemManager-vala\", rpm:\"ModemManager-vala~1.1.0~8.git20130913.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager\", rpm:\"NetworkManager~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-adsl\", rpm:\"NetworkManager-adsl~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-bluetooth\", rpm:\"NetworkManager-bluetooth~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-config-routing-rules\", rpm:\"NetworkManager-config-routing-rules~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-config-server\", rpm:\"NetworkManager-config-server~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-devel\", rpm:\"NetworkManager-devel~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-glib\", rpm:\"NetworkManager-glib~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-glib-devel\", rpm:\"NetworkManager-glib-devel~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-libnm\", rpm:\"NetworkManager-libnm~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-libnm-devel\", rpm:\"NetworkManager-libnm-devel~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-libreswan\", rpm:\"NetworkManager-libreswan~1.0.6~3.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-libreswan-gnome\", rpm:\"NetworkManager-libreswan-gnome~1.0.6~3.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-team\", rpm:\"NetworkManager-team~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-tui\", rpm:\"NetworkManager-tui~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-wifi\", rpm:\"NetworkManager-wifi~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"NetworkManager-wwan\", rpm:\"NetworkManager-wwan~1.0.6~27.0.1.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"libnm-gtk\", rpm:\"libnm-gtk~1.0.6~2.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"libnm-gtk-devel\", rpm:\"libnm-gtk-devel~1.0.6~2.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"network-manager-applet\", rpm:\"network-manager-applet~1.0.6~2.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"nm-connection-editor\", rpm:\"nm-connection-editor~1.0.6~2.el7\", rls:\"OracleLinux7\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:36:24", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924", "CVE-2015-0272"], "description": "The remote host is missing an update for the ", "modified": "2018-11-23T00:00:00", "published": "2015-11-20T00:00:00", "id": "OPENVAS:1361412562310871481", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310871481", "type": "openvas", "title": "RedHat Update for NetworkManager RHSA-2015:2315-01", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for NetworkManager RHSA-2015:2315-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2015 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.871481\");\n script_version(\"$Revision: 12497 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-23 09:28:21 +0100 (Fri, 23 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2015-11-20 06:19:55 +0100 (Fri, 20 Nov 2015)\");\n script_cve_id(\"CVE-2015-0272\", \"CVE-2015-2924\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"RedHat Update for NetworkManager RHSA-2015:2315-01\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'NetworkManager'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"NetworkManager is a system network service\nthat manages network devices and connections.\n\nIt was discovered that NetworkManager would set device MTUs based on MTU\nvalues received in IPv6 RAs (Router Advertisements), without sanity\nchecking the MTU value first. A remote attacker could exploit this flaw to\ncreate a denial of service attack, by sending a specially crafted IPv6 RA\npacket to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router advertisements.\nAn unprivileged user on a local network could use IPv6 Neighbor Discovery\nICMP to broadcast a non-route with a low hop limit, causing machines to\nlower the hop limit on existing IPv6 routes. If this limit is small enough,\nIPv6 packets would be dropped before reaching the final destination.\n(CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have been\nupgraded to upstream versions 1.0.6, and provide a number of bug fixes and\nenhancements over the previous versions. (BZ#1177582, BZ#1243057)\n\nBugs:\n\n * It was not previously possible to set the Wi-Fi band to the 'a' or 'bg'\nvalues to lock to a specific frequency band. NetworkManager has been fixed,\nand it now sets the wpa_supplicant's 'freq_list' option correctly, which\nenables proper Wi-Fi band locking. (BZ#1254461)\n\n * NetworkManager immediately failed activation of devices that did not have\na carrier early in the boot process. The legacy network.service then\nreported activation failure. Now, NetworkManager has a grace period during\nwhich it waits for the carrier to appear. Devices that have a carrier down\nfor a short time on system startup no longer cause the legacy\nnetwork.service to fail. (BZ#1079353)\n\n * NetworkManager brought down a team device if the teamd service managing\nit exited unexpectedly, and the team device was deactivated. Now,\nNetworkManager respawns the teamd instances that disappear and is able to\nrecover from a teamd failure avoiding disruption of the team device\noperation. (BZ#1145988)\n\n * NetworkManager did not send the FQDN DHCP option even if host name was\nset to FQDN. Consequently, Dynamic DNS (DDNS) setups failed to update the\nDNS records for clients running NetworkManager. Now, NetworkManager sends\nthe FQDN option with DHCP requests, and the DHCP server is able to create\nDNS records for such clients. (BZ#1212597)\n\n * The command-line client was not validating the vlan.flags property\ncorrectly, and a spurious warning message was displayed when the nmcli tool\nworked with VLAN connections. The validation routine has been fixed, and\nthe warning message no longer app ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"affected\", value:\"NetworkManager on Red Hat Enterprise Linux Server (v. 7)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_xref(name:\"RHSA\", value:\"2015:2315-01\");\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2015-November/msg00038.html\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2015 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_7\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_7\")\n{\n\n if ((res = isrpmvuln(pkg:\"ModemManager\", rpm:\"ModemManager~1.1.0~8.git20130913.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"ModemManager-debuginfo\", rpm:\"ModemManager-debuginfo~1.1.0~8.git20130913.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"ModemManager-glib\", rpm:\"ModemManager-glib~1.1.0~8.git20130913.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager\", rpm:\"NetworkManager~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-adsl\", rpm:\"NetworkManager-adsl~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-bluetooth\", rpm:\"NetworkManager-bluetooth~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-config-server\", rpm:\"NetworkManager-config-server~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-debuginfo\", rpm:\"NetworkManager-debuginfo~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-glib\", rpm:\"NetworkManager-glib~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-libnm\", rpm:\"NetworkManager-libnm~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-libreswan\", rpm:\"NetworkManager-libreswan~1.0.6~3.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-libreswan-debuginfo\", rpm:\"NetworkManager-libreswan-debuginfo~1.0.6~3.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-libreswan-gnome\", rpm:\"NetworkManager-libreswan-gnome~1.0.6~3.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-team\", rpm:\"NetworkManager-team~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-tui\", rpm:\"NetworkManager-tui~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-wifi\", rpm:\"NetworkManager-wifi~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"NetworkManager-wwan\", rpm:\"NetworkManager-wwan~1.0.6~27.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"libnm-gtk\", rpm:\"libnm-gtk~1.0.6~2.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"network-manager-applet-debuginfo\", rpm:\"network-manager-applet-debuginfo~1.0.6~2.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"nm-connection-editor\", rpm:\"nm-connection-editor~1.0.6~2.el7\", rls:\"RHENT_7\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:27", "bulletinFamily": "unix", "cvelist": ["CVE-2015-2924"], "edition": 1, "description": "### Background\n\nNetworkManager is an universal network configuration daemon for laptops, desktops, servers and virtualization hosts. \n\n### Description\n\nIPv6 Neighbour Discovery ICMP broadcast containing a non-route with a low hop limit causes a Denial of Service by lowering the hop limit on existing IPv6 routes in NetworkManager. \n\n### Impact\n\nA remote attacker on the same network segment could cause a Denial of Service condition in NetworkManager \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll NetworkManager users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=net-misc/networkmanager-1.0.2\"", "modified": "2015-09-24T00:00:00", "published": "2015-09-24T00:00:00", "id": "GLSA-201509-05", "href": "https://security.gentoo.org/glsa/201509-05", "type": "gentoo", "title": "NetworkManager: Denial of Service", "cvss": {"score": 3.3, "vector": "AV:ADJACENT_NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "nessus": [{"lastseen": "2020-06-05T09:27:46", "description": "This update for NetworkManager fixes a number of bugs and a low-impact\nsecurity issue for IPv6.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.", "edition": 16, "published": "2015-05-18T00:00:00", "title": "Fedora 21 : NetworkManager-0.9.10.2-5.fc21 (2015-7623)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "modified": "2015-05-18T00:00:00", "cpe": ["cpe:/o:fedoraproject:fedora:21", "p-cpe:/a:fedoraproject:fedora:NetworkManager"], "id": "FEDORA_2015-7623.NASL", "href": "https://www.tenable.com/plugins/nessus/83504", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory 2015-7623.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(83504);\n script_version(\"2.3\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/06/04\");\n\n script_cve_id(\"CVE-2015-2924\");\n script_xref(name:\"FEDORA\", value:\"2015-7623\");\n\n script_name(english:\"Fedora 21 : NetworkManager-0.9.10.2-5.fc21 (2015-7623)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for NetworkManager fixes a number of bugs and a low-impact\nsecurity issue for IPv6.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=1209902\"\n );\n # https://lists.fedoraproject.org/pipermail/package-announce/2015-May/158103.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?165fbb5a\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected NetworkManager package.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:NetworkManager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:21\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/05/06\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/05/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2020 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^21([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 21.x\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"FC21\", reference:\"NetworkManager-0.9.10.2-5.fc21\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());\n else security_note(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"NetworkManager\");\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-12-01T11:04:53", "description": "The remote host is affected by the vulnerability described in GLSA-201509-05\n(NetworkManager: Denial of Service)\n\n IPv6 Neighbour Discovery ICMP broadcast containing a non-route with a\n low hop limit causes a Denial of Service by lowering the hop limit on\n existing IPv6 routes in NetworkManager.\n \nImpact :\n\n A remote attacker on the same network segment could cause a Denial of\n Service condition in NetworkManager\n \nWorkaround :\n\n There is no known workaround at this time.", "edition": 21, "published": "2015-09-25T00:00:00", "title": "GLSA-201509-05 : NetworkManager: Denial of Service", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924"], "modified": "2020-12-02T00:00:00", "cpe": ["cpe:/o:gentoo:linux", "p-cpe:/a:gentoo:linux:networkmanager"], "id": "GENTOO_GLSA-201509-05.NASL", "href": "https://www.tenable.com/plugins/nessus/86136", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Gentoo Linux Security Advisory GLSA 201509-05.\n#\n# The advisory text is Copyright (C) 2001-2015 Gentoo Foundation, Inc.\n# and licensed under the Creative Commons - Attribution / Share Alike \n# license. See http://creativecommons.org/licenses/by-sa/3.0/\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(86136);\n script_version(\"$Revision: 2.2 $\");\n script_cvs_date(\"$Date: 2015/11/18 15:10:39 $\");\n\n script_cve_id(\"CVE-2015-2924\");\n script_xref(name:\"GLSA\", value:\"201509-05\");\n\n script_name(english:\"GLSA-201509-05 : NetworkManager: Denial of Service\");\n script_summary(english:\"Checks for updated package(s) in /var/db/pkg\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Gentoo host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The remote host is affected by the vulnerability described in GLSA-201509-05\n(NetworkManager: Denial of Service)\n\n IPv6 Neighbour Discovery ICMP broadcast containing a non-route with a\n low hop limit causes a Denial of Service by lowering the hop limit on\n existing IPv6 routes in NetworkManager.\n \nImpact :\n\n A remote attacker on the same network segment could cause a Denial of\n Service condition in NetworkManager\n \nWorkaround :\n\n There is no known workaround at this time.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security.gentoo.org/glsa/201509-05\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"All NetworkManager users should upgrade to the latest version:\n # emerge --sync\n # emerge --ask --oneshot --verbose '>=net-misc/networkmanager-1.0.2'\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:A/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:gentoo:linux:networkmanager\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:gentoo:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/09/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/09/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015 Tenable Network Security, Inc.\");\n script_family(english:\"Gentoo Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Gentoo/release\", \"Host/Gentoo/qpkg-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"qpkg.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Gentoo/release\")) audit(AUDIT_OS_NOT, \"Gentoo\");\nif (!get_kb_item(\"Host/Gentoo/qpkg-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (qpkg_check(package:\"net-misc/networkmanager\", unaffected:make_list(\"ge 1.0.2\"), vulnerable:make_list(\"lt 1.0.2\"))) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_note(port:0, extra:qpkg_report_get());\n else security_note(0);\n exit(0);\n}\nelse\n{\n tested = qpkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"NetworkManager\");\n}\n", "cvss": {"score": 3.3, "vector": "AV:A/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-09-14T18:23:13", "description": "It was discovered that NetworkManager would set device MTUs based on\nMTU values received in IPv6 RAs (Router Advertisements), without\nsanity checking the MTU value first. A remote attacker could exploit\nthis flaw to create a denial of service attack, by sending a specially\ncrafted IPv6 RA packet to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router\nadvertisements. An unprivileged user on a local network could use IPv6\nNeighbor Discovery ICMP to broadcast a non-route with a low hop limit,\ncausing machines to lower the hop limit on existing IPv6 routes. If\nthis limit is small enough, IPv6 packets would be dropped before\nreaching the final destination. (CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have\nbeen upgraded to upstream versions 1.0.6, and provide a number of bug\nfixes and enhancements over the previous versions.\n\nBugs :\n\n - It was not previously possible to set the Wi-Fi band to\n the 'a' or 'bg' values to lock to a specific frequency\n band. NetworkManager has been fixed, and it now sets the\n wpa_supplicant's 'freq_list' option correctly, which\n enables proper Wi-Fi band locking.\n\n - NetworkManager immediately failed activation of devices\n that did not have a carrier early in the boot process.\n The legacy network.service then reported activation\n failure. Now, NetworkManager has a grace period during\n which it waits for the carrier to appear. Devices that\n have a carrier down for a short time on system startup\n no longer cause the legacy network.service to fail.\n\n - NetworkManager brought down a team device if the teamd\n service managing it exited unexpectedly, and the team\n device was deactivated. Now, NetworkManager respawns the\n teamd instances that disappear and is able to recover\n from a teamd failure avoiding disruption of the team\n device operation.\n\n - NetworkManager did not send the FQDN DHCP option even if\n host name was set to FQDN. Consequently, Dynamic DNS\n (DDNS) setups failed to update the DNS records for\n clients running NetworkManager. Now, NetworkManager\n sends the FQDN option with DHCP requests, and the DHCP\n server is able to create DNS records for such clients.\n\n - The command-line client was not validating the\n vlan.flags property correctly, and a spurious warning\n message was displayed when the nmcli tool worked with\n VLAN connections. The validation routine has been fixed,\n and the warning message no longer appears.\n\n - NetworkManager did not propagate a media access control\n (MAC) address change from a bonding interface to a VLAN\n interface on top of it. Consequently, a VLAN interface\n on top of a bond used an incorrect MAC address. Now,\n NetworkManager synchronizes the addresses correctly.\n\nEnhancements :\n\n - IPv6 Privacy extensions are now enabled by default.\n NetworkManager checks the per-network configuration\n files, NetworkManager.conf, and then falls back to\n '/proc/sys/net/ipv6/conf/default/use_tempaddr' to\n determine and set IPv6 privacy settings at device\n activation.\n\n - The NetworkManager command-line tool, nmcli, now allows\n setting the wake-on-lan property to 0 ('none',\n 'disable', 'disabled').\n\n - NetworkManager now provides information about metered\n connections.\n\n - NetworkManager daemon and the connection editor now\n support setting the Maximum Transmission Unit (MTU) of a\n bond. It is now possible to change MTU of a bond\n interface in a GUI.\n\n - NetworkManager daemon and the connection editor now\n support setting the MTU of a team, allowing to change\n MTU of a teaming interface.", "edition": 14, "published": "2015-12-22T00:00:00", "title": "Scientific Linux Security Update : NetworkManager on SL7.x x86_64 (20151119)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924", "CVE-2015-0272"], "modified": "2015-12-22T00:00:00", "cpe": ["p-cpe:/a:fermilab:scientific_linux:NetworkManager-config-routing-rules", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-bluetooth", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-debuginfo", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-libnm-devel", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-tui", "p-cpe:/a:fermilab:scientific_linux:ModemManager-glib-devel", "p-cpe:/a:fermilab:scientific_linux:ModemManager-vala", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-devel", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-wwan", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-config-server", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-glib", "p-cpe:/a:fermilab:scientific_linux:ModemManager", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-libnm", "p-cpe:/a:fermilab:scientific_linux:ModemManager-devel", "p-cpe:/a:fermilab:scientific_linux:network-manager-applet", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-glib-devel", "p-cpe:/a:fermilab:scientific_linux:libnm-gtk-devel", "p-cpe:/a:fermilab:scientific_linux:nm-connection-editor", "x-cpe:/o:fermilab:scientific_linux", "p-cpe:/a:fermilab:scientific_linux:ModemManager-debuginfo", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-adsl", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-libreswan-gnome", "p-cpe:/a:fermilab:scientific_linux:libnm-gtk", "p-cpe:/a:fermilab:scientific_linux:NetworkManager", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-libreswan-debuginfo", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-wifi", "p-cpe:/a:fermilab:scientific_linux:ModemManager-glib", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-libreswan", "p-cpe:/a:fermilab:scientific_linux:network-manager-applet-debuginfo", "p-cpe:/a:fermilab:scientific_linux:NetworkManager-team"], "id": "SL_20151119_NETWORKMANAGER_ON_SL7_X.NASL", "href": "https://www.tenable.com/plugins/nessus/87548", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(87548);\n script_version(\"2.4\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/02/25\");\n\n script_cve_id(\"CVE-2015-0272\", \"CVE-2015-2924\");\n\n script_name(english:\"Scientific Linux Security Update : NetworkManager on SL7.x x86_64 (20151119)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that NetworkManager would set device MTUs based on\nMTU values received in IPv6 RAs (Router Advertisements), without\nsanity checking the MTU value first. A remote attacker could exploit\nthis flaw to create a denial of service attack, by sending a specially\ncrafted IPv6 RA packet to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router\nadvertisements. An unprivileged user on a local network could use IPv6\nNeighbor Discovery ICMP to broadcast a non-route with a low hop limit,\ncausing machines to lower the hop limit on existing IPv6 routes. If\nthis limit is small enough, IPv6 packets would be dropped before\nreaching the final destination. (CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have\nbeen upgraded to upstream versions 1.0.6, and provide a number of bug\nfixes and enhancements over the previous versions.\n\nBugs :\n\n - It was not previously possible to set the Wi-Fi band to\n the 'a' or 'bg' values to lock to a specific frequency\n band. NetworkManager has been fixed, and it now sets the\n wpa_supplicant's 'freq_list' option correctly, which\n enables proper Wi-Fi band locking.\n\n - NetworkManager immediately failed activation of devices\n that did not have a carrier early in the boot process.\n The legacy network.service then reported activation\n failure. Now, NetworkManager has a grace period during\n which it waits for the carrier to appear. Devices that\n have a carrier down for a short time on system startup\n no longer cause the legacy network.service to fail.\n\n - NetworkManager brought down a team device if the teamd\n service managing it exited unexpectedly, and the team\n device was deactivated. Now, NetworkManager respawns the\n teamd instances that disappear and is able to recover\n from a teamd failure avoiding disruption of the team\n device operation.\n\n - NetworkManager did not send the FQDN DHCP option even if\n host name was set to FQDN. Consequently, Dynamic DNS\n (DDNS) setups failed to update the DNS records for\n clients running NetworkManager. Now, NetworkManager\n sends the FQDN option with DHCP requests, and the DHCP\n server is able to create DNS records for such clients.\n\n - The command-line client was not validating the\n vlan.flags property correctly, and a spurious warning\n message was displayed when the nmcli tool worked with\n VLAN connections. The validation routine has been fixed,\n and the warning message no longer appears.\n\n - NetworkManager did not propagate a media access control\n (MAC) address change from a bonding interface to a VLAN\n interface on top of it. Consequently, a VLAN interface\n on top of a bond used an incorrect MAC address. Now,\n NetworkManager synchronizes the addresses correctly.\n\nEnhancements :\n\n - IPv6 Privacy extensions are now enabled by default.\n NetworkManager checks the per-network configuration\n files, NetworkManager.conf, and then falls back to\n '/proc/sys/net/ipv6/conf/default/use_tempaddr' to\n determine and set IPv6 privacy settings at device\n activation.\n\n - The NetworkManager command-line tool, nmcli, now allows\n setting the wake-on-lan property to 0 ('none',\n 'disable', 'disabled').\n\n - NetworkManager now provides information about metered\n connections.\n\n - NetworkManager daemon and the connection editor now\n support setting the Maximum Transmission Unit (MTU) of a\n bond. It is now possible to change MTU of a bond\n interface in a GUI.\n\n - NetworkManager daemon and the connection editor now\n support setting the MTU of a team, allowing to change\n MTU of a teaming interface.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1512&L=scientific-linux-errata&F=&S=&P=8368\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2aa07696\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ModemManager\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ModemManager-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ModemManager-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ModemManager-glib\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ModemManager-glib-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:ModemManager-vala\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-adsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-bluetooth\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-config-routing-rules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-config-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-glib\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-glib-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-libnm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-libnm-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-libreswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-libreswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-libreswan-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-team\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-tui\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-wifi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:NetworkManager-wwan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:libnm-gtk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:libnm-gtk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:network-manager-applet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:network-manager-applet-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:nm-connection-editor\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2015/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/11/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/12/22\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nos_ver = pregmatch(pattern: \"Scientific Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Scientific Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Scientific Linux 7.x\", \"Scientific Linux \" + os_ver);\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\nif (\"x86_64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ModemManager-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ModemManager-debuginfo-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ModemManager-devel-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ModemManager-glib-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ModemManager-glib-devel-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"ModemManager-vala-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-adsl-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-bluetooth-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-config-routing-rules-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-config-server-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-debuginfo-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-devel-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-glib-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-glib-devel-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-libnm-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-libnm-devel-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-1.0.6-3.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-debuginfo-1.0.6-3.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-gnome-1.0.6-3.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-team-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-tui-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-wifi-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"NetworkManager-wwan-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"libnm-gtk-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"libnm-gtk-devel-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"network-manager-applet-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"network-manager-applet-debuginfo-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"SL7\", cpu:\"x86_64\", reference:\"nm-connection-editor-1.0.6-2.el7\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ModemManager / ModemManager-debuginfo / ModemManager-devel / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-12-01T13:05:53", "description": "From Red Hat Security Advisory 2015:2315 :\n\nUpdated NetworkManager packages that fix two security issues, several\nbugs, and add various enhancements are now available for Red Hat\nEnterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nNetworkManager is a system network service that manages network\ndevices and connections.\n\nIt was discovered that NetworkManager would set device MTUs based on\nMTU values received in IPv6 RAs (Router Advertisements), without\nsanity checking the MTU value first. A remote attacker could exploit\nthis flaw to create a denial of service attack, by sending a specially\ncrafted IPv6 RA packet to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router\nadvertisements. An unprivileged user on a local network could use IPv6\nNeighbor Discovery ICMP to broadcast a non-route with a low hop limit,\ncausing machines to lower the hop limit on existing IPv6 routes. If\nthis limit is small enough, IPv6 packets would be dropped before\nreaching the final destination. (CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have\nbeen upgraded to upstream versions 1.0.6, and provide a number of bug\nfixes and enhancements over the previous versions. (BZ#1177582,\nBZ#1243057)\n\nBugs :\n\n* It was not previously possible to set the Wi-Fi band to the 'a' or\n'bg' values to lock to a specific frequency band. NetworkManager has\nbeen fixed, and it now sets the wpa_supplicant's 'freq_list' option\ncorrectly, which enables proper Wi-Fi band locking. (BZ#1254461)\n\n* NetworkManager immediately failed activation of devices that did not\nhave a carrier early in the boot process. The legacy network.service\nthen reported activation failure. Now, NetworkManager has a grace\nperiod during which it waits for the carrier to appear. Devices that\nhave a carrier down for a short time on system startup no longer cause\nthe legacy network.service to fail. (BZ#1079353)\n\n* NetworkManager brought down a team device if the teamd service\nmanaging it exited unexpectedly, and the team device was deactivated.\nNow, NetworkManager respawns the teamd instances that disappear and is\nable to recover from a teamd failure avoiding disruption of the team\ndevice operation. (BZ#1145988)\n\n* NetworkManager did not send the FQDN DHCP option even if host name\nwas set to FQDN. Consequently, Dynamic DNS (DDNS) setups failed to\nupdate the DNS records for clients running NetworkManager. Now,\nNetworkManager sends the FQDN option with DHCP requests, and the DHCP\nserver is able to create DNS records for such clients. (BZ#1212597)\n\n* The command-line client was not validating the vlan.flags property\ncorrectly, and a spurious warning message was displayed when the nmcli\ntool worked with VLAN connections. The validation routine has been\nfixed, and the warning message no longer appears. (BZ#1244048)\n\n* NetworkManager did not propagate a media access control (MAC)\naddress change from a bonding interface to a VLAN interface on top of\nit. Consequently, a VLAN interface on top of a bond used an incorrect\nMAC address. Now, NetworkManager synchronizes the addresses correctly.\n(BZ#1264322)\n\nEnhancements :\n\n* IPv6 Privacy extensions are now enabled by default. NetworkManager\nchecks the per-network configuration files, NetworkManager.conf, and\nthen falls back to '/proc/sys/net/ipv6/conf/default/use_tempaddr' to\ndetermine and set IPv6 privacy settings at device activation.\n(BZ#1187525)\n\n* The NetworkManager command-line tool, nmcli, now allows setting the\nwake-on-lan property to 0 ('none', 'disable', 'disabled').\n(BZ#1260584)\n\n* NetworkManager now provides information about metered connections.\n(BZ#1200452)\n\n* NetworkManager daemon and the connection editor now support setting\nthe Maximum Transmission Unit (MTU) of a bond. It is now possible to\nchange MTU of a bond interface in a GUI. (BZ#1177582, BZ#1177860)\n\n* NetworkManager daemon and the connection editor now support setting\nthe MTU of a team, allowing to change MTU of a teaming interface.\n(BZ#1255927)\n\nNetworkManager users are advised to upgrade to these updated packages,\nwhich correct these issues and add these enhancements.", "edition": 23, "published": "2015-11-30T00:00:00", "title": "Oracle Linux 7 : NetworkManager (ELSA-2015-2315)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924", "CVE-2015-0272"], "modified": "2020-12-02T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:NetworkManager", "p-cpe:/a:oracle:linux:network-manager-applet", "p-cpe:/a:oracle:linux:NetworkManager-devel", "p-cpe:/a:oracle:linux:libnm-gtk-devel", "p-cpe:/a:oracle:linux:NetworkManager-glib-devel", "p-cpe:/a:oracle:linux:NetworkManager-config-routing-rules", "p-cpe:/a:oracle:linux:NetworkManager-wwan", "p-cpe:/a:oracle:linux:NetworkManager-config-server", "p-cpe:/a:oracle:linux:NetworkManager-libreswan", "p-cpe:/a:oracle:linux:NetworkManager-wifi", "p-cpe:/a:oracle:linux:NetworkManager-bluetooth", "p-cpe:/a:oracle:linux:NetworkManager-glib", "p-cpe:/a:oracle:linux:ModemManager-vala", "p-cpe:/a:oracle:linux:ModemManager-devel", "p-cpe:/a:oracle:linux:NetworkManager-adsl", "p-cpe:/a:oracle:linux:NetworkManager-team", "p-cpe:/a:oracle:linux:ModemManager-glib", "p-cpe:/a:oracle:linux:NetworkManager-libnm", "p-cpe:/a:oracle:linux:ModemManager-glib-devel", "cpe:/o:oracle:linux:7", "p-cpe:/a:oracle:linux:libnm-gtk", "p-cpe:/a:oracle:linux:nm-connection-editor", "p-cpe:/a:oracle:linux:NetworkManager-libreswan-gnome", "p-cpe:/a:oracle:linux:ModemManager", "p-cpe:/a:oracle:linux:NetworkManager-tui", "p-cpe:/a:oracle:linux:NetworkManager-libnm-devel"], "id": "ORACLELINUX_ELSA-2015-2315.NASL", "href": "https://www.tenable.com/plugins/nessus/87094", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2015:2315 and \n# Oracle Linux Security Advisory ELSA-2015-2315 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(87094);\n script_version(\"2.7\");\n script_cvs_date(\"Date: 2019/09/27 13:00:36\");\n\n script_cve_id(\"CVE-2015-0272\", \"CVE-2015-2924\");\n script_xref(name:\"RHSA\", value:\"2015:2315\");\n\n script_name(english:\"Oracle Linux 7 : NetworkManager (ELSA-2015-2315)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2015:2315 :\n\nUpdated NetworkManager packages that fix two security issues, several\nbugs, and add various enhancements are now available for Red Hat\nEnterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nNetworkManager is a system network service that manages network\ndevices and connections.\n\nIt was discovered that NetworkManager would set device MTUs based on\nMTU values received in IPv6 RAs (Router Advertisements), without\nsanity checking the MTU value first. A remote attacker could exploit\nthis flaw to create a denial of service attack, by sending a specially\ncrafted IPv6 RA packet to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router\nadvertisements. An unprivileged user on a local network could use IPv6\nNeighbor Discovery ICMP to broadcast a non-route with a low hop limit,\ncausing machines to lower the hop limit on existing IPv6 routes. If\nthis limit is small enough, IPv6 packets would be dropped before\nreaching the final destination. (CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have\nbeen upgraded to upstream versions 1.0.6, and provide a number of bug\nfixes and enhancements over the previous versions. (BZ#1177582,\nBZ#1243057)\n\nBugs :\n\n* It was not previously possible to set the Wi-Fi band to the 'a' or\n'bg' values to lock to a specific frequency band. NetworkManager has\nbeen fixed, and it now sets the wpa_supplicant's 'freq_list' option\ncorrectly, which enables proper Wi-Fi band locking. (BZ#1254461)\n\n* NetworkManager immediately failed activation of devices that did not\nhave a carrier early in the boot process. The legacy network.service\nthen reported activation failure. Now, NetworkManager has a grace\nperiod during which it waits for the carrier to appear. Devices that\nhave a carrier down for a short time on system startup no longer cause\nthe legacy network.service to fail. (BZ#1079353)\n\n* NetworkManager brought down a team device if the teamd service\nmanaging it exited unexpectedly, and the team device was deactivated.\nNow, NetworkManager respawns the teamd instances that disappear and is\nable to recover from a teamd failure avoiding disruption of the team\ndevice operation. (BZ#1145988)\n\n* NetworkManager did not send the FQDN DHCP option even if host name\nwas set to FQDN. Consequently, Dynamic DNS (DDNS) setups failed to\nupdate the DNS records for clients running NetworkManager. Now,\nNetworkManager sends the FQDN option with DHCP requests, and the DHCP\nserver is able to create DNS records for such clients. (BZ#1212597)\n\n* The command-line client was not validating the vlan.flags property\ncorrectly, and a spurious warning message was displayed when the nmcli\ntool worked with VLAN connections. The validation routine has been\nfixed, and the warning message no longer appears. (BZ#1244048)\n\n* NetworkManager did not propagate a media access control (MAC)\naddress change from a bonding interface to a VLAN interface on top of\nit. Consequently, a VLAN interface on top of a bond used an incorrect\nMAC address. Now, NetworkManager synchronizes the addresses correctly.\n(BZ#1264322)\n\nEnhancements :\n\n* IPv6 Privacy extensions are now enabled by default. NetworkManager\nchecks the per-network configuration files, NetworkManager.conf, and\nthen falls back to '/proc/sys/net/ipv6/conf/default/use_tempaddr' to\ndetermine and set IPv6 privacy settings at device activation.\n(BZ#1187525)\n\n* The NetworkManager command-line tool, nmcli, now allows setting the\nwake-on-lan property to 0 ('none', 'disable', 'disabled').\n(BZ#1260584)\n\n* NetworkManager now provides information about metered connections.\n(BZ#1200452)\n\n* NetworkManager daemon and the connection editor now support setting\nthe Maximum Transmission Unit (MTU) of a bond. It is now possible to\nchange MTU of a bond interface in a GUI. (BZ#1177582, BZ#1177860)\n\n* NetworkManager daemon and the connection editor now support setting\nthe MTU of a team, allowing to change MTU of a teaming interface.\n(BZ#1255927)\n\nNetworkManager users are advised to upgrade to these updated packages,\nwhich correct these issues and add these enhancements.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2015-November/005580.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected networkmanager packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ModemManager\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ModemManager-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ModemManager-glib\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ModemManager-glib-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:ModemManager-vala\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-adsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-bluetooth\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-config-routing-rules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-config-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-glib\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-glib-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-libnm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-libnm-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-libreswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-libreswan-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-team\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-tui\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-wifi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:NetworkManager-wwan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:libnm-gtk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:libnm-gtk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:network-manager-applet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:nm-connection-editor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:7\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2015/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/11/25\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/11/30\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 7\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\nif (\"x86_64\" >!< cpu) audit(AUDIT_ARCH_NOT, \"x86_64\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ModemManager-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ModemManager-devel-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ModemManager-glib-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ModemManager-glib-devel-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"ModemManager-vala-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-adsl-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-bluetooth-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-config-routing-rules-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-config-server-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-devel-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-glib-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-glib-devel-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-libnm-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-libnm-devel-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-1.0.6-3.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-gnome-1.0.6-3.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-team-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-tui-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-wifi-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"NetworkManager-wwan-1.0.6-27.0.1.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"libnm-gtk-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"libnm-gtk-devel-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"network-manager-applet-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"EL7\", cpu:\"x86_64\", reference:\"nm-connection-editor-1.0.6-2.el7\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ModemManager / ModemManager-devel / ModemManager-glib / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-12-01T13:31:10", "description": "Updated NetworkManager packages that fix two security issues, several\nbugs, and add various enhancements are now available for Red Hat\nEnterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nNetworkManager is a system network service that manages network\ndevices and connections.\n\nIt was discovered that NetworkManager would set device MTUs based on\nMTU values received in IPv6 RAs (Router Advertisements), without\nsanity checking the MTU value first. A remote attacker could exploit\nthis flaw to create a denial of service attack, by sending a specially\ncrafted IPv6 RA packet to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router\nadvertisements. An unprivileged user on a local network could use IPv6\nNeighbor Discovery ICMP to broadcast a non-route with a low hop limit,\ncausing machines to lower the hop limit on existing IPv6 routes. If\nthis limit is small enough, IPv6 packets would be dropped before\nreaching the final destination. (CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have\nbeen upgraded to upstream versions 1.0.6, and provide a number of bug\nfixes and enhancements over the previous versions. (BZ#1177582,\nBZ#1243057)\n\nBugs :\n\n* It was not previously possible to set the Wi-Fi band to the 'a' or\n'bg' values to lock to a specific frequency band. NetworkManager has\nbeen fixed, and it now sets the wpa_supplicant's 'freq_list' option\ncorrectly, which enables proper Wi-Fi band locking. (BZ#1254461)\n\n* NetworkManager immediately failed activation of devices that did not\nhave a carrier early in the boot process. The legacy network.service\nthen reported activation failure. Now, NetworkManager has a grace\nperiod during which it waits for the carrier to appear. Devices that\nhave a carrier down for a short time on system startup no longer cause\nthe legacy network.service to fail. (BZ#1079353)\n\n* NetworkManager brought down a team device if the teamd service\nmanaging it exited unexpectedly, and the team device was deactivated.\nNow, NetworkManager respawns the teamd instances that disappear and is\nable to recover from a teamd failure avoiding disruption of the team\ndevice operation. (BZ#1145988)\n\n* NetworkManager did not send the FQDN DHCP option even if host name\nwas set to FQDN. Consequently, Dynamic DNS (DDNS) setups failed to\nupdate the DNS records for clients running NetworkManager. Now,\nNetworkManager sends the FQDN option with DHCP requests, and the DHCP\nserver is able to create DNS records for such clients. (BZ#1212597)\n\n* The command-line client was not validating the vlan.flags property\ncorrectly, and a spurious warning message was displayed when the nmcli\ntool worked with VLAN connections. The validation routine has been\nfixed, and the warning message no longer appears. (BZ#1244048)\n\n* NetworkManager did not propagate a media access control (MAC)\naddress change from a bonding interface to a VLAN interface on top of\nit. Consequently, a VLAN interface on top of a bond used an incorrect\nMAC address. Now, NetworkManager synchronizes the addresses correctly.\n(BZ#1264322)\n\nEnhancements :\n\n* IPv6 Privacy extensions are now enabled by default. NetworkManager\nchecks the per-network configuration files, NetworkManager.conf, and\nthen falls back to '/proc/sys/net/ipv6/conf/default/use_tempaddr' to\ndetermine and set IPv6 privacy settings at device activation.\n(BZ#1187525)\n\n* The NetworkManager command-line tool, nmcli, now allows setting the\nwake-on-lan property to 0 ('none', 'disable', 'disabled').\n(BZ#1260584)\n\n* NetworkManager now provides information about metered connections.\n(BZ#1200452)\n\n* NetworkManager daemon and the connection editor now support setting\nthe Maximum Transmission Unit (MTU) of a bond. It is now possible to\nchange MTU of a bond interface in a GUI. (BZ#1177582, BZ#1177860)\n\n* NetworkManager daemon and the connection editor now support setting\nthe MTU of a team, allowing to change MTU of a teaming interface.\n(BZ#1255927)\n\nNetworkManager users are advised to upgrade to these updated packages,\nwhich correct these issues and add these enhancements.", "edition": 27, "published": "2015-11-20T00:00:00", "title": "RHEL 7 : NetworkManager (RHSA-2015:2315)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924", "CVE-2015-0272"], "modified": "2020-12-02T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:NetworkManager-wifi", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-config-server", "p-cpe:/a:redhat:enterprise_linux:NetworkManager", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-libnm", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-glib", "p-cpe:/a:redhat:enterprise_linux:network-manager-applet-debuginfo", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-libreswan", "p-cpe:/a:redhat:enterprise_linux:ModemManager-glib-devel", "p-cpe:/a:redhat:enterprise_linux:ModemManager-debuginfo", "cpe:/o:redhat:enterprise_linux:7.4", "p-cpe:/a:redhat:enterprise_linux:libnm-gtk-devel", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-tui", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-libnm-devel", "p-cpe:/a:redhat:enterprise_linux:libnm-gtk", "p-cpe:/a:redhat:enterprise_linux:ModemManager-glib", "p-cpe:/a:redhat:enterprise_linux:nm-connection-editor", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-adsl", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-libreswan-debuginfo", "cpe:/o:redhat:enterprise_linux:7.7", "p-cpe:/a:redhat:enterprise_linux:network-manager-applet", "cpe:/o:redhat:enterprise_linux:7.5", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-debuginfo", "cpe:/o:redhat:enterprise_linux:7", "p-cpe:/a:redhat:enterprise_linux:ModemManager-vala", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-config-routing-rules", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-libreswan-gnome", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-team", "cpe:/o:redhat:enterprise_linux:7.3", "cpe:/o:redhat:enterprise_linux:7.2", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-bluetooth", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-devel", "p-cpe:/a:redhat:enterprise_linux:ModemManager-devel", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-wwan", "p-cpe:/a:redhat:enterprise_linux:NetworkManager-glib-devel", "cpe:/o:redhat:enterprise_linux:7.6", "p-cpe:/a:redhat:enterprise_linux:ModemManager"], "id": "REDHAT-RHSA-2015-2315.NASL", "href": "https://www.tenable.com/plugins/nessus/86981", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2015:2315. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(86981);\n script_version(\"2.11\");\n script_cvs_date(\"Date: 2019/10/24 15:35:40\");\n\n script_cve_id(\"CVE-2015-0272\", \"CVE-2015-2924\");\n script_xref(name:\"RHSA\", value:\"2015:2315\");\n\n script_name(english:\"RHEL 7 : NetworkManager (RHSA-2015:2315)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated NetworkManager packages that fix two security issues, several\nbugs, and add various enhancements are now available for Red Hat\nEnterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nNetworkManager is a system network service that manages network\ndevices and connections.\n\nIt was discovered that NetworkManager would set device MTUs based on\nMTU values received in IPv6 RAs (Router Advertisements), without\nsanity checking the MTU value first. A remote attacker could exploit\nthis flaw to create a denial of service attack, by sending a specially\ncrafted IPv6 RA packet to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router\nadvertisements. An unprivileged user on a local network could use IPv6\nNeighbor Discovery ICMP to broadcast a non-route with a low hop limit,\ncausing machines to lower the hop limit on existing IPv6 routes. If\nthis limit is small enough, IPv6 packets would be dropped before\nreaching the final destination. (CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have\nbeen upgraded to upstream versions 1.0.6, and provide a number of bug\nfixes and enhancements over the previous versions. (BZ#1177582,\nBZ#1243057)\n\nBugs :\n\n* It was not previously possible to set the Wi-Fi band to the 'a' or\n'bg' values to lock to a specific frequency band. NetworkManager has\nbeen fixed, and it now sets the wpa_supplicant's 'freq_list' option\ncorrectly, which enables proper Wi-Fi band locking. (BZ#1254461)\n\n* NetworkManager immediately failed activation of devices that did not\nhave a carrier early in the boot process. The legacy network.service\nthen reported activation failure. Now, NetworkManager has a grace\nperiod during which it waits for the carrier to appear. Devices that\nhave a carrier down for a short time on system startup no longer cause\nthe legacy network.service to fail. (BZ#1079353)\n\n* NetworkManager brought down a team device if the teamd service\nmanaging it exited unexpectedly, and the team device was deactivated.\nNow, NetworkManager respawns the teamd instances that disappear and is\nable to recover from a teamd failure avoiding disruption of the team\ndevice operation. (BZ#1145988)\n\n* NetworkManager did not send the FQDN DHCP option even if host name\nwas set to FQDN. Consequently, Dynamic DNS (DDNS) setups failed to\nupdate the DNS records for clients running NetworkManager. Now,\nNetworkManager sends the FQDN option with DHCP requests, and the DHCP\nserver is able to create DNS records for such clients. (BZ#1212597)\n\n* The command-line client was not validating the vlan.flags property\ncorrectly, and a spurious warning message was displayed when the nmcli\ntool worked with VLAN connections. The validation routine has been\nfixed, and the warning message no longer appears. (BZ#1244048)\n\n* NetworkManager did not propagate a media access control (MAC)\naddress change from a bonding interface to a VLAN interface on top of\nit. Consequently, a VLAN interface on top of a bond used an incorrect\nMAC address. Now, NetworkManager synchronizes the addresses correctly.\n(BZ#1264322)\n\nEnhancements :\n\n* IPv6 Privacy extensions are now enabled by default. NetworkManager\nchecks the per-network configuration files, NetworkManager.conf, and\nthen falls back to '/proc/sys/net/ipv6/conf/default/use_tempaddr' to\ndetermine and set IPv6 privacy settings at device activation.\n(BZ#1187525)\n\n* The NetworkManager command-line tool, nmcli, now allows setting the\nwake-on-lan property to 0 ('none', 'disable', 'disabled').\n(BZ#1260584)\n\n* NetworkManager now provides information about metered connections.\n(BZ#1200452)\n\n* NetworkManager daemon and the connection editor now support setting\nthe Maximum Transmission Unit (MTU) of a bond. It is now possible to\nchange MTU of a bond interface in a GUI. (BZ#1177582, BZ#1177860)\n\n* NetworkManager daemon and the connection editor now support setting\nthe MTU of a team, allowing to change MTU of a teaming interface.\n(BZ#1255927)\n\nNetworkManager users are advised to upgrade to these updated packages,\nwhich correct these issues and add these enhancements.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2015:2315\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2015-0272\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2015-2924\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ModemManager\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ModemManager-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ModemManager-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ModemManager-glib\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ModemManager-glib-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:ModemManager-vala\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-adsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-bluetooth\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-config-routing-rules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-config-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-glib\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-glib-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-libnm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-libnm-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-libreswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-libreswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-libreswan-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-team\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-tui\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-wifi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:NetworkManager-wwan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:libnm-gtk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:libnm-gtk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:network-manager-applet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:network-manager-applet-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:nm-connection-editor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.2\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.3\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.4\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:7.7\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2015/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/11/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/11/20\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 7.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2015:2315\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL7\", reference:\"ModemManager-1.1.0-8.git20130913.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"ModemManager-debuginfo-1.1.0-8.git20130913.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"ModemManager-devel-1.1.0-8.git20130913.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"ModemManager-glib-1.1.0-8.git20130913.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"ModemManager-glib-devel-1.1.0-8.git20130913.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"ModemManager-vala-1.1.0-8.git20130913.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"ModemManager-vala-1.1.0-8.git20130913.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-adsl-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-adsl-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-bluetooth-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-bluetooth-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-config-routing-rules-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-config-routing-rules-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-config-server-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-config-server-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"NetworkManager-debuginfo-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"NetworkManager-devel-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"NetworkManager-glib-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"NetworkManager-glib-devel-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"NetworkManager-libnm-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"NetworkManager-libnm-devel-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-libreswan-1.0.6-3.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-1.0.6-3.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-libreswan-debuginfo-1.0.6-3.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-debuginfo-1.0.6-3.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-libreswan-gnome-1.0.6-3.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-gnome-1.0.6-3.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-team-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-team-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-tui-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-tui-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-wifi-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-wifi-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"NetworkManager-wwan-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"NetworkManager-wwan-1.0.6-27.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"libnm-gtk-1.0.6-2.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"libnm-gtk-devel-1.0.6-2.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"network-manager-applet-1.0.6-2.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"network-manager-applet-1.0.6-2.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", reference:\"network-manager-applet-debuginfo-1.0.6-2.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"s390x\", reference:\"nm-connection-editor-1.0.6-2.el7\")) flag++;\n\n if (rpm_check(release:\"RHEL7\", cpu:\"x86_64\", reference:\"nm-connection-editor-1.0.6-2.el7\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ModemManager / ModemManager-debuginfo / ModemManager-devel / etc\");\n }\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-12-01T09:32:17", "description": "Updated NetworkManager packages that fix two security issues, several\nbugs, and add various enhancements are now available for Red Hat\nEnterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nNetworkManager is a system network service that manages network\ndevices and connections.\n\nIt was discovered that NetworkManager would set device MTUs based on\nMTU values received in IPv6 RAs (Router Advertisements), without\nsanity checking the MTU value first. A remote attacker could exploit\nthis flaw to create a denial of service attack, by sending a specially\ncrafted IPv6 RA packet to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router\nadvertisements. An unprivileged user on a local network could use IPv6\nNeighbor Discovery ICMP to broadcast a non-route with a low hop limit,\ncausing machines to lower the hop limit on existing IPv6 routes. If\nthis limit is small enough, IPv6 packets would be dropped before\nreaching the final destination. (CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have\nbeen upgraded to upstream versions 1.0.6, and provide a number of bug\nfixes and enhancements over the previous versions. (BZ#1177582,\nBZ#1243057)\n\nBugs :\n\n* It was not previously possible to set the Wi-Fi band to the 'a' or\n'bg' values to lock to a specific frequency band. NetworkManager has\nbeen fixed, and it now sets the wpa_supplicant's 'freq_list' option\ncorrectly, which enables proper Wi-Fi band locking. (BZ#1254461)\n\n* NetworkManager immediately failed activation of devices that did not\nhave a carrier early in the boot process. The legacy network.service\nthen reported activation failure. Now, NetworkManager has a grace\nperiod during which it waits for the carrier to appear. Devices that\nhave a carrier down for a short time on system startup no longer cause\nthe legacy network.service to fail. (BZ#1079353)\n\n* NetworkManager brought down a team device if the teamd service\nmanaging it exited unexpectedly, and the team device was deactivated.\nNow, NetworkManager respawns the teamd instances that disappear and is\nable to recover from a teamd failure avoiding disruption of the team\ndevice operation. (BZ#1145988)\n\n* NetworkManager did not send the FQDN DHCP option even if host name\nwas set to FQDN. Consequently, Dynamic DNS (DDNS) setups failed to\nupdate the DNS records for clients running NetworkManager. Now,\nNetworkManager sends the FQDN option with DHCP requests, and the DHCP\nserver is able to create DNS records for such clients. (BZ#1212597)\n\n* The command-line client was not validating the vlan.flags property\ncorrectly, and a spurious warning message was displayed when the nmcli\ntool worked with VLAN connections. The validation routine has been\nfixed, and the warning message no longer appears. (BZ#1244048)\n\n* NetworkManager did not propagate a media access control (MAC)\naddress change from a bonding interface to a VLAN interface on top of\nit. Consequently, a VLAN interface on top of a bond used an incorrect\nMAC address. Now, NetworkManager synchronizes the addresses correctly.\n(BZ#1264322)\n\nEnhancements :\n\n* IPv6 Privacy extensions are now enabled by default. NetworkManager\nchecks the per-network configuration files, NetworkManager.conf, and\nthen falls back to '/proc/sys/net/ipv6/conf/default/use_tempaddr' to\ndetermine and set IPv6 privacy settings at device activation.\n(BZ#1187525)\n\n* The NetworkManager command-line tool, nmcli, now allows setting the\nwake-on-lan property to 0 ('none', 'disable', 'disabled').\n(BZ#1260584)\n\n* NetworkManager now provides information about metered connections.\n(BZ#1200452)\n\n* NetworkManager daemon and the connection editor now support setting\nthe Maximum Transmission Unit (MTU) of a bond. It is now possible to\nchange MTU of a bond interface in a GUI. (BZ#1177582, BZ#1177860)\n\n* NetworkManager daemon and the connection editor now support setting\nthe MTU of a team, allowing to change MTU of a teaming interface.\n(BZ#1255927)\n\nNetworkManager users are advised to upgrade to these updated packages,\nwhich correct these issues and add these enhancements.", "edition": 26, "published": "2015-12-02T00:00:00", "title": "CentOS 7 : ModemManager / NetworkManager / NetworkManager-libreswan / network-manager-applet (CESA-2015:2315)", "type": "nessus", "bulletinFamily": "scanner", "cvelist": ["CVE-2015-2924", "CVE-2015-0272"], "modified": "2020-12-02T00:00:00", "cpe": ["p-cpe:/a:centos:centos:NetworkManager-config-server", "p-cpe:/a:centos:centos:NetworkManager-glib-devel", "p-cpe:/a:centos:centos:NetworkManager-wifi", "p-cpe:/a:centos:centos:NetworkManager-team", "p-cpe:/a:centos:centos:ModemManager", "p-cpe:/a:centos:centos:NetworkManager-wwan", "p-cpe:/a:centos:centos:NetworkManager-libreswan-gnome", "p-cpe:/a:centos:centos:ModemManager-glib", "cpe:/o:centos:centos:7", "p-cpe:/a:centos:centos:NetworkManager-adsl", "p-cpe:/a:centos:centos:ModemManager-devel", "p-cpe:/a:centos:centos:NetworkManager-tui", "p-cpe:/a:centos:centos:NetworkManager-bluetooth", "p-cpe:/a:centos:centos:NetworkManager-libreswan", "p-cpe:/a:centos:centos:libnm-gtk-devel", "p-cpe:/a:centos:centos:ModemManager-vala", "p-cpe:/a:centos:centos:network-manager-applet", "p-cpe:/a:centos:centos:NetworkManager-glib", "p-cpe:/a:centos:centos:NetworkManager-libnm", "p-cpe:/a:centos:centos:libnm-gtk", "p-cpe:/a:centos:centos:nm-connection-editor", "p-cpe:/a:centos:centos:NetworkManager-devel", "p-cpe:/a:centos:centos:NetworkManager", "p-cpe:/a:centos:centos:ModemManager-glib-devel", "p-cpe:/a:centos:centos:NetworkManager-config-routing-rules", "p-cpe:/a:centos:centos:NetworkManager-libnm-devel"], "id": "CENTOS_RHSA-2015-2315.NASL", "href": "https://www.tenable.com/plugins/nessus/87149", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2015:2315 and \n# CentOS Errata and Security Advisory 2015:2315 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(87149);\n script_version(\"2.7\");\n script_cvs_date(\"Date: 2020/01/02\");\n\n script_cve_id(\"CVE-2015-0272\", \"CVE-2015-2924\");\n script_xref(name:\"RHSA\", value:\"2015:2315\");\n\n script_name(english:\"CentOS 7 : ModemManager / NetworkManager / NetworkManager-libreswan / network-manager-applet (CESA-2015:2315)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated NetworkManager packages that fix two security issues, several\nbugs, and add various enhancements are now available for Red Hat\nEnterprise Linux 7.\n\nRed Hat Product Security has rated this update as having Moderate\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nNetworkManager is a system network service that manages network\ndevices and connections.\n\nIt was discovered that NetworkManager would set device MTUs based on\nMTU values received in IPv6 RAs (Router Advertisements), without\nsanity checking the MTU value first. A remote attacker could exploit\nthis flaw to create a denial of service attack, by sending a specially\ncrafted IPv6 RA packet to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router\nadvertisements. An unprivileged user on a local network could use IPv6\nNeighbor Discovery ICMP to broadcast a non-route with a low hop limit,\ncausing machines to lower the hop limit on existing IPv6 routes. If\nthis limit is small enough, IPv6 packets would be dropped before\nreaching the final destination. (CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have\nbeen upgraded to upstream versions 1.0.6, and provide a number of bug\nfixes and enhancements over the previous versions. (BZ#1177582,\nBZ#1243057)\n\nBugs :\n\n* It was not previously possible to set the Wi-Fi band to the 'a' or\n'bg' values to lock to a specific frequency band. NetworkManager has\nbeen fixed, and it now sets the wpa_supplicant's 'freq_list' option\ncorrectly, which enables proper Wi-Fi band locking. (BZ#1254461)\n\n* NetworkManager immediately failed activation of devices that did not\nhave a carrier early in the boot process. The legacy network.service\nthen reported activation failure. Now, NetworkManager has a grace\nperiod during which it waits for the carrier to appear. Devices that\nhave a carrier down for a short time on system startup no longer cause\nthe legacy network.service to fail. (BZ#1079353)\n\n* NetworkManager brought down a team device if the teamd service\nmanaging it exited unexpectedly, and the team device was deactivated.\nNow, NetworkManager respawns the teamd instances that disappear and is\nable to recover from a teamd failure avoiding disruption of the team\ndevice operation. (BZ#1145988)\n\n* NetworkManager did not send the FQDN DHCP option even if host name\nwas set to FQDN. Consequently, Dynamic DNS (DDNS) setups failed to\nupdate the DNS records for clients running NetworkManager. Now,\nNetworkManager sends the FQDN option with DHCP requests, and the DHCP\nserver is able to create DNS records for such clients. (BZ#1212597)\n\n* The command-line client was not validating the vlan.flags property\ncorrectly, and a spurious warning message was displayed when the nmcli\ntool worked with VLAN connections. The validation routine has been\nfixed, and the warning message no longer appears. (BZ#1244048)\n\n* NetworkManager did not propagate a media access control (MAC)\naddress change from a bonding interface to a VLAN interface on top of\nit. Consequently, a VLAN interface on top of a bond used an incorrect\nMAC address. Now, NetworkManager synchronizes the addresses correctly.\n(BZ#1264322)\n\nEnhancements :\n\n* IPv6 Privacy extensions are now enabled by default. NetworkManager\nchecks the per-network configuration files, NetworkManager.conf, and\nthen falls back to '/proc/sys/net/ipv6/conf/default/use_tempaddr' to\ndetermine and set IPv6 privacy settings at device activation.\n(BZ#1187525)\n\n* The NetworkManager command-line tool, nmcli, now allows setting the\nwake-on-lan property to 0 ('none', 'disable', 'disabled').\n(BZ#1260584)\n\n* NetworkManager now provides information about metered connections.\n(BZ#1200452)\n\n* NetworkManager daemon and the connection editor now support setting\nthe Maximum Transmission Unit (MTU) of a bond. It is now possible to\nchange MTU of a bond interface in a GUI. (BZ#1177582, BZ#1177860)\n\n* NetworkManager daemon and the connection editor now support setting\nthe MTU of a team, allowing to change MTU of a teaming interface.\n(BZ#1255927)\n\nNetworkManager users are advised to upgrade to these updated packages,\nwhich correct these issues and add these enhancements.\"\n );\n # https://lists.centos.org/pipermail/centos-cr-announce/2015-November/002487.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?de82efed\"\n );\n # https://lists.centos.org/pipermail/centos-cr-announce/2015-November/002500.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a75fb47f\"\n );\n # https://lists.centos.org/pipermail/centos-cr-announce/2015-November/002501.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?2307d9db\"\n );\n # https://lists.centos.org/pipermail/centos-cr-announce/2015-November/002502.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?50f64ade\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2015-0272\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ModemManager\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ModemManager-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ModemManager-glib\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ModemManager-glib-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:ModemManager-vala\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-adsl\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-bluetooth\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-config-routing-rules\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-config-server\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-glib\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-glib-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-libnm\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-libnm-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-libreswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-libreswan-gnome\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-team\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-tui\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-wifi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:NetworkManager-wwan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:libnm-gtk\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:libnm-gtk-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:network-manager-applet\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:nm-connection-editor\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:7\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2015/11/16\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2015/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/12/02\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/CentOS/release\");\nif (isnull(release) || \"CentOS\" >!< release) audit(AUDIT_OS_NOT, \"CentOS\");\nos_ver = pregmatch(pattern: \"CentOS(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"CentOS\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^7([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"CentOS 7.x\", \"CentOS \" + os_ver);\n\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ModemManager-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ModemManager-devel-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ModemManager-glib-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ModemManager-glib-devel-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"ModemManager-vala-1.1.0-8.git20130913.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-adsl-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-bluetooth-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-config-routing-rules-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-config-server-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-devel-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-glib-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-glib-devel-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-libnm-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-libnm-devel-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-1.0.6-3.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-libreswan-gnome-1.0.6-3.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-team-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-tui-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-wifi-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"NetworkManager-wwan-1.0.6-27.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"libnm-gtk-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"libnm-gtk-devel-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"network-manager-applet-1.0.6-2.el7\")) flag++;\nif (rpm_check(release:\"CentOS-7\", cpu:\"x86_64\", reference:\"nm-connection-editor-1.0.6-2.el7\")) flag++;\n\n\nif (flag)\n{\n cr_plugin_caveat = '\\n' +\n 'NOTE: The security advisory associated with this vulnerability has a\\n' +\n 'fixed package version that may only be available in the continuous\\n' +\n 'release (CR) repository for CentOS, until it is present in the next\\n' +\n 'point release of CentOS.\\n\\n' +\n\n 'If an equal or higher package level does not exist in the baseline\\n' +\n 'repository for your major version of CentOS, then updates from the CR\\n' +\n 'repository will need to be applied in order to address the\\n' +\n 'vulnerability.\\n';\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + cr_plugin_caveat\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"ModemManager / ModemManager-devel / ModemManager-glib / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "redhat": [{"lastseen": "2019-08-13T18:46:21", "bulletinFamily": "unix", "cvelist": ["CVE-2015-0272", "CVE-2015-2924"], "description": "NetworkManager is a system network service that manages network devices\nand connections.\n\nIt was discovered that NetworkManager would set device MTUs based on MTU\nvalues received in IPv6 RAs (Router Advertisements), without sanity\nchecking the MTU value first. A remote attacker could exploit this flaw to\ncreate a denial of service attack, by sending a specially crafted IPv6 RA\npacket to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router advertisements.\nAn unprivileged user on a local network could use IPv6 Neighbor Discovery\nICMP to broadcast a non-route with a low hop limit, causing machines to\nlower the hop limit on existing IPv6 routes. If this limit is small enough,\nIPv6 packets would be dropped before reaching the final destination.\n(CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have been\nupgraded to upstream versions 1.0.6, and provide a number of bug fixes and\nenhancements over the previous versions. (BZ#1177582, BZ#1243057)\n\nBugs:\n\n* It was not previously possible to set the Wi-Fi band to the \"a\" or \"bg\"\nvalues to lock to a specific frequency band. NetworkManager has been fixed,\nand it now sets the wpa_supplicant's \"freq_list\" option correctly, which\nenables proper Wi-Fi band locking. (BZ#1254461)\n\n* NetworkManager immediately failed activation of devices that did not have\na carrier early in the boot process. The legacy network.service then\nreported activation failure. Now, NetworkManager has a grace period during\nwhich it waits for the carrier to appear. Devices that have a carrier down\nfor a short time on system startup no longer cause the legacy\nnetwork.service to fail. (BZ#1079353)\n\n* NetworkManager brought down a team device if the teamd service managing\nit exited unexpectedly, and the team device was deactivated. Now,\nNetworkManager respawns the teamd instances that disappear and is able to\nrecover from a teamd failure avoiding disruption of the team device\noperation. (BZ#1145988)\n\n* NetworkManager did not send the FQDN DHCP option even if host name was\nset to FQDN. Consequently, Dynamic DNS (DDNS) setups failed to update the\nDNS records for clients running NetworkManager. Now, NetworkManager sends\nthe FQDN option with DHCP requests, and the DHCP server is able to create\nDNS records for such clients. (BZ#1212597)\n\n* The command-line client was not validating the vlan.flags property\ncorrectly, and a spurious warning message was displayed when the nmcli tool\nworked with VLAN connections. The validation routine has been fixed, and\nthe warning message no longer appears. (BZ#1244048)\n\n* NetworkManager did not propagate a media access control (MAC) address\nchange from a bonding interface to a VLAN interface on top of it.\nConsequently, a VLAN interface on top of a bond used an incorrect MAC\naddress. Now, NetworkManager synchronizes the addresses correctly.\n(BZ#1264322)\n\nEnhancements:\n\n* IPv6 Privacy extensions are now enabled by default. NetworkManager checks\nthe per-network configuration files, NetworkManager.conf, and then falls\nback to \"/proc/sys/net/ipv6/conf/default/use_tempaddr\" to determine and set\nIPv6 privacy settings at device activation. (BZ#1187525)\n\n* The NetworkManager command-line tool, nmcli, now allows setting the\nwake-on-lan property to 0 (\"none\", \"disable\", \"disabled\"). (BZ#1260584)\n\n* NetworkManager now provides information about metered connections.\n(BZ#1200452)\n\n* NetworkManager daemon and the connection editor now support setting the\nMaximum Transmission Unit (MTU) of a bond. It is now possible to change MTU\nof a bond interface in a GUI. (BZ#1177582, BZ#1177860)\n\n* NetworkManager daemon and the connection editor now support setting the\nMTU of a team, allowing to change MTU of a teaming interface. (BZ#1255927)\n\nNetworkManager users are advised to upgrade to these updated packages,\nwhich correct these issues and add these enhancements.", "modified": "2018-04-12T03:32:40", "published": "2015-11-19T18:34:47", "id": "RHSA-2015:2315", "href": "https://access.redhat.com/errata/RHSA-2015:2315", "type": "redhat", "title": "(RHSA-2015:2315) Moderate: NetworkManager security, bug fix, and enhancement update", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "oraclelinux": [{"lastseen": "2019-05-29T18:39:09", "bulletinFamily": "unix", "cvelist": ["CVE-2015-2924", "CVE-2015-0272"], "description": "ModemManager\n[1.1.0-8.git20130913]\n- rfcomm: don't open the ttys until NetworkManager connects them (rh #1251954)\n[1.1.0-7.git20130913]\n- iface-modem: fix MODEM_STATE_IS_INTERMEDIATE macro (rh #1200958)\nNetworkManager\n[1.0.6-27.0.1]\n- fix build error on i386\n[1:1.0.6-27]\n* build: update vala-tools build requirement (rh #1274000)\n[1:1.0.6-26]\n- wifi: emit NEW_BSS on ScanDone to update APs in Wi-Fi device (rh #1267327)\n[1:1.0.6-25]\n- vpn: cancel the secrets request on agent timeout (rh #1272023)\n- vpn: cancel the connect timer when vpn reconnects (rh #1272023)\n[1:1.0.6-24]\n- device: fix problem in not managing software devices (rh #1273879)\n[1:1.0.6-23]\n- wake-on-lan: ignore by default existing settings (rh #1270194)\n[1:1.0.6-22]\n- platform: fix detection of s390 CTC device (rh #1272974)\n- core: fix queuing activation while waiting for carrier (rh #1079353)\n[1:1.0.6-21]\n- core: fix invalid assertion in nm_clear_g_signal_handler() (rh #1183444)\n[1:1.0.6-20]\n- rebuild package\n[1:1.0.6-19]\n- device: fix race wrongly managing external-down device (2) (rh #1269199)\n[1:1.0.6-18]\n- device/vlan: update VLAN MAC address when parent's one changes\n[1:1.0.6-17]\n- dhcp6: destroy the lease when destroying a client (rh #1260727)\n- device: fix race wrongly managing external-down device (rh #1269199)\n[1:1.0.6-16]\n- device: silence spurious errors about activation schedule (rh #1269520)\n[1:1.0.6-15]\n- core: really fix enslaving team device to bridge (rh #1183444)\n[1:1.0.6-14]\n- platform: updating link cache when moving link to other netns (rh #1264361)\n- nmtui: fix possible crash during secret request (rh #1267672)\n- vpn: increase the plugin inactivity quit timer (rh #1268030)\n- core: fix enslaving team device to bridge (rh #1183444)\n[1:1.0.6-13]\n- vpn-connection: set the MTU for the VPN IP interface (rh #1267004)\n- modem-broadband: update modem's supported-ip-families (rh #1263959)\n- wifi: fix a crash in on_bss_proxy_acquired() (rh #1267462)\n[1:1.0.6-12]\n- core: increase IPv6LL DAD timeout to 15 seconds (rh #1101809)\n[1:1.0.6-11]\n- platform: better handle devices without permanent address (rh #1264024)\n[1:1.0.6-10]\n- dhcp: fix crash in internal DHCP client (rh #1260727)\n[1:1.0.6-9]\n- build: fix installing language files (rh #1265117)\n[1:1.0.6-8]\n- nmcli: allow creating ADSL connections with 'nmcli connection add' (rh #1264089)\n[1:1.0.6-7]\n- ifcfg-rh: ignore GATEWAY from network file for DHCP connections (rh #1262972)\n[1:1.0.6-6]\n- device: retry DHCP after timeout/expiration for assumed connections (rh #1246496)\n- device: retry creation of default connection after link is initialized (rh #1254089)\n[1:1.0.6-5]\n- config: add code comments to NetworkManager.conf file\n- iface-helper: enabled slaac/dhcp4 based on connection setting only (rh #1260243)\n- utils: avoid generation of duplicated assumed connection for veth devices (rh #1256430)\n- nmcli: improve handling of wake-on-lan property (rh #1260584)\n[1:1.0.6-4]\n- config: fix config-changed signal for s390x and ppc64 archs (rh #1062301)\n- device: fix handling ignore-auto-dns for IPv6 nameservers (rh #1261428)\n[1:1.0.6-3]\n- vpn: fix the tunelled VPN setup (rh #1238840)\n[1:1.0.6-2]\n- nmcli: fix argument parsing for config subcommand\n[1:1.0.6-1]\n- Align with the upstream 1.0.6 release:\n- device: add support for configuring Wake-On-Lan (rh #1141417)\n- device: don't disconnect after DHCP failure when there's static addresses (rh #1168388)\n- device: provide information about metered connections (rh #1200452)\n- device: fix an assert fail when cleaning up a slave connection (rh #1243371)\n- team: add support for setting MTU (rh #1255927)\n- config: avoid premature exit with configure-and-quit option (rh #1256772)\n[1:1.0.4-10]\n- supplicant: fix passing freq_list option to wpa_supplicant (rh #1254461)\n[1:1.0.4-9]\n- udev: fix call to ethtool in udev rules (rh #1247156)\n[1:1.0.4-8]\n- device: accept multiple addresses in a DHCPv6 lease (rh #1244293)\n[1:1.0.4-7]\n- device: fix a crash when unconfiguring a device (rh #1253744)\n[1:1.0.4-6]\n- ifcfg-rh: respect DEVTIMEOUT if link is not announced by udev yet (rh #1192633)\n[1:1.0.4-5]\n- core: avoid ethtool to autoload kernel module (rh #1247156)\n[1:1.0.4-4]\n- device: fix setting of a MTU (rh #1250019)\n[1:1.0.4-3]\n- daemon,libnm: fix handling of default routes for assumed connections (rh #1245648)\n[1:1.0.4-2]\n- cli: fix verifying flag-based properties (rh #1244048)\n[1:1.0.4-1]\n- Align with the upstream 1.0.4 release\n- Fix the libreswan plugin (rh #1238840)\n[1:1.0.4-0.2.git20150713.38bf2cb0]\n- vpn: send firewall zone to firewalld also for VPN connections (rh #1238124)\n[1:1.0.4-0.1.git20150713.38bf2cb0]\n- Update to a bit newer 1.0.4 git snapshot, to fix test failures\n- device: restart ping process when it exits with an error (rh #1128581)\n[1:1.0.3-2.git20150624.f245b49a]\n- config: allow rewriting resolv.conf on SIGUSR1 (rh #1062301)\n[1:1.0.3-1.git20150624.f245b49a]\n- Update to a bit newer 1.0.4 git snapshot, to fix test failures\n[1:1.0.3-1.git20150622.9c83d18d]\n- Update to a 1.0.4 git snapshot:\n- bond: add support for setting a MTU (rh #1177860)\n- core: delay initialization of the connection for devices without carrier at startup (rh #1079353)\n- route-manager: ensure the routes are set up properly with multiple interface in the same subnet (rh #1164441)\n- config: add support for reloading configuration (rh #1062301)\n- device: disallow ipv6.method=shared connections early during activation (rh #1183015)\n- device: don't save the newly added connection for a device until activation succeeds (rh #1174164)\n- rdisc: prevent solicitation loop for expiring DNS information (rh #1207730)\n- wifi: Indicate support of wireless radio bands (rh #1200451)\n- nmcli: Fix client hang upon multiple deletion attempts of the same connection (rh #1168657)\n- nmcli: Fix documentation for specifying a certificate path (rh #1182575)\n- device: add support for auto-connecting slave connection when activating a master (rh #1158529)\n- nmtui: Fix a crash when attempting an activation with no connection present (rh #1197203)\n- nmcli: Add auto-completion and hints for valid values in enumeration properties (rh #1034126)\n- core: load the the libnl library from the correct location (rh #1211859)\n- config: avoid duplicate connection UUIDs (rh #1171751)\n- device: enable IPv6 privacy extensions by default (rh #1187525)\n- device: fix handling if DHCP hostname for configure-and-quit (rh #1201497)\n- manager: reuse the device connection is active on when reactivating it (rh #1182085)\n- device: reject incorrect MTU settings from an IPv6 RA (rh #1194007)\n- default-route: allow preventing the connection to override externally configured default route (rh #1205405)\n- manager: reduce logging for interface activation (rh #1212196)\n- device: don't assume a connection for interfaces that only have an IPv6 link-local address (rh #1138426)\n- device: reject hop limits that are too low (CVE-2015-2924) (rh #1217090)\n[1:1.0.0-17.git20150121.b4ea599c]\n- dhclient: use fqdn.fqdn for server DDNS updates (rh #1212597)\nNetworkManager-libreswan\n[1.0.6-3]\n- Fix the pty hangup patch (rh #1271973)\n[1.0.6-2]\n- Fix recovery after failures (rh #1271973)\n[1.0.6-1]\n- Update to a newer upstream release (rh #1243057)\nnetwork-manager-applet\n[1.0.6-2]\n- libnm-gtk: fix a possible crash on widgets destroy (rh #1267326)\n - libnm-gtk: use symbolic icons for password store menu (rh #1267330)\n[1.0.6-1]\n- Align with the 1.0.6 upstream release:\n- editor: add support for setting MTU on team connections (rh #1255927)\n- editor: offer bond connections in vlan slave picker (rh #1255735)\n[1.0.4-1]\n- Align with the upstream release\n[1.0.3-2.git20150617.a0b0166]\n- New snapshot:\n- editor: let users edit connection.interface-name property (rh #1139536)\n[1.0.3-1.git20160615.28a0e28]\n- New snapshot:\n- applet: make new auto connections only available for current user (rh #1176042)\n- editor: allow forcing always-on-top windows for installer (rh #1097883)\n- editor: allow changing bond MTU (rh #1177582)\n- editor: use ifname instead of UUID in slaves' master property (rh #1083186)\n- editor: allow adding Bluetooth connections (rh #1229471)\n[1.0.0-3.git20150122.76569a46]\n- Drop gnome-bluetooth BR because it does not work with newer versions (rh #1174547)", "edition": 4, "modified": "2015-11-24T00:00:00", "published": "2015-11-24T00:00:00", "id": "ELSA-2015-2315", "href": "http://linux.oracle.com/errata/ELSA-2015-2315.html", "title": "NetworkManager security, bug fix, and enhancement update", "type": "oraclelinux", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "centos": [{"lastseen": "2020-03-18T12:39:22", "bulletinFamily": "unix", "cvelist": ["CVE-2015-2924", "CVE-2015-0272"], "description": "**CentOS Errata and Security Advisory** CESA-2015:2315\n\n\nNetworkManager is a system network service that manages network devices\nand connections.\n\nIt was discovered that NetworkManager would set device MTUs based on MTU\nvalues received in IPv6 RAs (Router Advertisements), without sanity\nchecking the MTU value first. A remote attacker could exploit this flaw to\ncreate a denial of service attack, by sending a specially crafted IPv6 RA\npacket to disturb IPv6 communication. (CVE-2015-0272)\n\nA flaw was found in the way NetworkManager handled router advertisements.\nAn unprivileged user on a local network could use IPv6 Neighbor Discovery\nICMP to broadcast a non-route with a low hop limit, causing machines to\nlower the hop limit on existing IPv6 routes. If this limit is small enough,\nIPv6 packets would be dropped before reaching the final destination.\n(CVE-2015-2924)\n\nThe network-manager-applet and NetworkManager-libreswan packages have been\nupgraded to upstream versions 1.0.6, and provide a number of bug fixes and\nenhancements over the previous versions. (BZ#1177582, BZ#1243057)\n\nBugs:\n\n* It was not previously possible to set the Wi-Fi band to the \"a\" or \"bg\"\nvalues to lock to a specific frequency band. NetworkManager has been fixed,\nand it now sets the wpa_supplicant's \"freq_list\" option correctly, which\nenables proper Wi-Fi band locking. (BZ#1254461)\n\n* NetworkManager immediately failed activation of devices that did not have\na carrier early in the boot process. The legacy network.service then\nreported activation failure. Now, NetworkManager has a grace period during\nwhich it waits for the carrier to appear. Devices that have a carrier down\nfor a short time on system startup no longer cause the legacy\nnetwork.service to fail. (BZ#1079353)\n\n* NetworkManager brought down a team device if the teamd service managing\nit exited unexpectedly, and the team device was deactivated. Now,\nNetworkManager respawns the teamd instances that disappear and is able to\nrecover from a teamd failure avoiding disruption of the team device\noperation. (BZ#1145988)\n\n* NetworkManager did not send the FQDN DHCP option even if host name was\nset to FQDN. Consequently, Dynamic DNS (DDNS) setups failed to update the\nDNS records for clients running NetworkManager. Now, NetworkManager sends\nthe FQDN option with DHCP requests, and the DHCP server is able to create\nDNS records for such clients. (BZ#1212597)\n\n* The command-line client was not validating the vlan.flags property\ncorrectly, and a spurious warning message was displayed when the nmcli tool\nworked with VLAN connections. The validation routine has been fixed, and\nthe warning message no longer appears. (BZ#1244048)\n\n* NetworkManager did not propagate a media access control (MAC) address\nchange from a bonding interface to a VLAN interface on top of it.\nConsequently, a VLAN interface on top of a bond used an incorrect MAC\naddress. Now, NetworkManager synchronizes the addresses correctly.\n(BZ#1264322)\n\nEnhancements:\n\n* IPv6 Privacy extensions are now enabled by default. NetworkManager checks\nthe per-network configuration files, NetworkManager.conf, and then falls\nback to \"/proc/sys/net/ipv6/conf/default/use_tempaddr\" to determine and set\nIPv6 privacy settings at device activation. (BZ#1187525)\n\n* The NetworkManager command-line tool, nmcli, now allows setting the\nwake-on-lan property to 0 (\"none\", \"disable\", \"disabled\"). (BZ#1260584)\n\n* NetworkManager now provides information about metered connections.\n(BZ#1200452)\n\n* NetworkManager daemon and the connection editor now support setting the\nMaximum Transmission Unit (MTU) of a bond. It is now possible to change MTU\nof a bond interface in a GUI. (BZ#1177582, BZ#1177860)\n\n* NetworkManager daemon and the connection editor now support setting the\nMTU of a team, allowing to change MTU of a teaming interface. (BZ#1255927)\n\nNetworkManager users are advised to upgrade to these updated packages,\nwhich correct these issues and add these enhancements.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-cr-announce/2015-November/008687.html\nhttp://lists.centos.org/pipermail/centos-cr-announce/2015-November/008700.html\nhttp://lists.centos.org/pipermail/centos-cr-announce/2015-November/008701.html\nhttp://lists.centos.org/pipermail/centos-cr-announce/2015-November/008702.html\n\n**Affected packages:**\nModemManager\nModemManager-devel\nModemManager-glib\nModemManager-glib-devel\nModemManager-vala\nNetworkManager\nNetworkManager-adsl\nNetworkManager-bluetooth\nNetworkManager-config-routing-rules\nNetworkManager-config-server\nNetworkManager-devel\nNetworkManager-glib\nNetworkManager-glib-devel\nNetworkManager-libnm\nNetworkManager-libnm-devel\nNetworkManager-libreswan\nNetworkManager-libreswan-gnome\nNetworkManager-team\nNetworkManager-tui\nNetworkManager-wifi\nNetworkManager-wwan\nlibnm-gtk\nlibnm-gtk-devel\nnetwork-manager-applet\nnm-connection-editor\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2015-2315.html", "edition": 5, "modified": "2015-11-30T19:45:27", "published": "2015-11-30T19:44:35", "href": "http://lists.centos.org/pipermail/centos-cr-announce/2015-November/008687.html", "id": "CESA-2015:2315", "title": "ModemManager, NetworkManager, libnm, network, nm security update", "type": "centos", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}]}