Lucene search
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2016-79AC80A0D5.NASLHistoryJul 15, 2016 - 12:00 a.m.
Fedora 24 : php-pecl-zip (2016-79ac80a0d5)
2016-07-1500:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
35
Version 1.13.3
-
Fixed bug php#71923 (integer overflow in ZipArchive::getFrom*). (CVE-2016-3078) (Stas)
-
Fixed bug php#72258 (ZipArchive converts filenames to unrecoverable form). (Anatol)
-
Fixed bug php#72434 (ZipArchive class Use After Free Vulnerability in PHP’s GC algorithm and unserialize).
(Dmitry)
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory FEDORA-2016-79ac80a0d5.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(92258);
script_version("2.9");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2016-3078", "CVE-2016-5773");
script_xref(name:"FEDORA", value:"2016-79ac80a0d5");
script_name(english:"Fedora 24 : php-pecl-zip (2016-79ac80a0d5)");
script_summary(english:"Checks rpm output for the updated package.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Fedora host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"**Version 1.13.3**
- Fixed bug php#71923 (integer overflow in
ZipArchive::getFrom*). (CVE-2016-3078) (Stas)
- Fixed bug php#72258 (ZipArchive converts filenames to
unrecoverable form). (Anatol)
- Fixed bug php#72434 (ZipArchive class Use After Free
Vulnerability in PHP's GC algorithm and unserialize).
(Dmitry)
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bodhi.fedoraproject.org/updates/FEDORA-2016-79ac80a0d5"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected php-pecl-zip package."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:php-pecl-zip");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:24");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/08/07");
script_set_attribute(attribute:"patch_publication_date", value:"2016/07/02");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/07/15");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Fedora Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! preg(pattern:"^24([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 24", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC24", reference:"php-pecl-zip-1.13.3-1.fc24")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "php-pecl-zip");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fedoraproject | fedora | php-pecl-zip | p-cpe:/a:fedoraproject:fedora:php-pecl-zip |
| fedoraproject | fedora | 24 | cpe:/o:fedoraproject:fedora:24 |
Related
nessus
nessus
Fedora 23 : php-pecl-zip (2016-4f3c77ef90)
2016-07-15 00:00:00
Fedora 22 : php-pecl-zip (2016-b08d0b00fc)
2016-07-15 00:00:00
SUSE SLED12 / SLES12 Security Update : php5 (SUSE-SU-2016:2975-1)
2016-12-05 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: php-pecl-zip-1.13.3-1.fc24
2016-07-02 15:45:20
[SECURITY] Fedora 23 Update: php-pecl-zip-1.13.3-1.fc23
2016-07-02 19:34:44
[SECURITY] Fedora 22 Update: php-pecl-zip-1.12.5-2.fc22
2016-07-02 19:28:40
openvas
openvas
Fedora Update for php-pecl-zip FEDORA-2016-79ac80a0d5
2016-07-10 00:00:00
Fedora Update for php-pecl-zip FEDORA-2016-4f3c77ef90
2016-07-10 00:00:00
Fedora Update for php-pecl-zip FEDORA-2016-b08d0b00fc
2016-07-10 00:00:00
redhatcve
redhatcve
CVE-2016-5773
2016-06-29 12:18:26
CVE-2016-6295
2016-07-25 14:19:51
f5
f5
K29691966 : PHP vulnerability CVE-2016-5773
2016-12-22 00:00:00
K56138200 : PHP vulnerability CVE-2016-3078
2016-05-24 00:00:00
SOL56138200 - PHP vulnerability CVE-2016-3078
2016-05-24 00:00:00
debiancve
debiancve
cve
cve
prion
prion
Design/Logic Flaw
2016-08-07 10:59:00
Integer overflow
2016-08-07 10:59:00
Design/Logic Flaw
2016-07-25 14:59:00
ubuntucve
ubuntucve
zdt
zdt
PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow
2016-04-28 00:00:00
myhack58
myhack58
checkpoint_advisories
checkpoint_advisories
PHP ZIP Archive Heap Overflow (CVE-2016-3078)
2016-05-03 00:00:00
exploitpack
exploitpack
PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow
2016-04-28 00:00:00
packetstorm
packetstorm
PHP 7.x Heap Overflow
2016-04-28 00:00:00
threatpost
threatpost
Pornhub Hack Earns Researchers $22,000
2016-07-25 13:01:30
exploitdb
exploitdb
PHP 7.0.5 - ZipArchive::getFrom* Integer Overflow
2016-04-28 00:00:00
thn
thn
PornHub Pays Hackers $20,000 to Find Zero-day Flaws in its Website
2016-07-24 20:25:00
suse
suse
Security update for php53 (important)
2018-03-26 15:08:04
Security update for php5 (important)
2016-07-07 18:08:23
mageia
mageia
Updated php packages fix security vulnerability
2016-07-05 18:47:08
debian
debian
[SECURITY] [DSA 3618-1] php5 security update
2016-07-14 19:50:00
[SECURITY] [DLA 628-1] php5 security update
2016-09-18 15:12:08
slackware
slackware
[slackware-security] php
2016-06-24 23:46:10
freebsd
freebsd
php -- multiple vulnerabilities
2016-06-23 00:00:00
amazon
amazon
Medium: php55, php56
2016-08-01 13:30:00
ubuntu
ubuntu
PHP vulnerabilities
2016-05-24 00:00:00
PHP vulnerabilities
2016-08-02 00:00:00
osv
osv
php5 - security update
2016-09-18 00:00:00
cloudfoundry
cloudfoundry
USN-3045-1 PHP vulnerabilities | Cloud Foundry
2016-09-09 00:00:00
apple
apple
About the security content of macOS Sierra 10.12 - Apple Support
2017-01-23 05:36:06
About the security content of macOS Sierra 10.12
2016-09-20 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 06:02:26
Arbitrary Code Execution
2019-05-02 06:02:23
Null Pointer Dereference
2019-05-02 06:02:24
redhat
redhat
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45
Related for FEDORA_2016-79AC80A0D5.NASL