Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2021 Tenable Network Security, Inc.FEDORA_2016-7B40EB9E29.NASL
HistoryMay 09, 2016 - 12:00 a.m.

Fedora 22 : libecap-1.0.0-1.fc22 / squid-3.5.10-1.fc22 (2016-7b40eb9e29)

2016-05-0900:00:00
This script is Copyright (C) 2016-2021 Tenable Network Security, Inc.
www.tenable.com
18
JSON

Security fix for CVE-2016-2571, CVE-2016-2572 ---- squid-3.4.13-3.fc22

  • Resolves: #1231992 ---- Security fix for #1240741, #1240744 Updated to version 3.4.13, which fixes CVE-2015-3455

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2016-7b40eb9e29.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(90960);
  script_version("2.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2015-3455", "CVE-2015-5400");
  script_xref(name:"FEDORA", value:"2016-7b40eb9e29");

  script_name(english:"Fedora 22 : libecap-1.0.0-1.fc22 / squid-3.5.10-1.fc22 (2016-7b40eb9e29)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Security fix for CVE-2016-2571, CVE-2016-2572 ---- squid-3.4.13-3.fc22
- Resolves: #1231992 ---- Security fix for #1240741, #1240744 Updated
to version 3.4.13, which fixes CVE-2015-3455

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=1218118"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=1240741"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2016-May/183597.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?314ae20e"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2016-May/183598.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?51491c24"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected libecap and / or squid packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:libecap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:squid");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:22");

  script_set_attribute(attribute:"patch_publication_date", value:"2016/05/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/05/09");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2016-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^22([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 22.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC22", reference:"libecap-1.0.0-1.fc22")) flag++;
if (rpm_check(release:"FC22", reference:"squid-3.5.10-1.fc22")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libecap / squid");
}
VendorProductVersionCPE
fedoraprojectfedoralibecapp-cpe:/a:fedoraproject:fedora:libecap
fedoraprojectfedorasquidp-cpe:/a:fedoraproject:fedora:squid
fedoraprojectfedora22cpe:/o:fedoraproject:fedora:22

Related

openvas 22
fedora 3
nessus 28
ubuntucve 4
securityvulns 4
redhat 2
mageia 3
archlinux 1
centos 2
oraclelinux 2
prion 4
freebsd 3
cve 4
debiancve 4
osv 4
debian 6
altlinux 1
checkpoint_advisories 1
ubuntu 3
gentoo 1
suse 2
openvas
openvas
Fedora Update for squid FEDORA-2016-7
2016-05-07 00:00:00
Fedora Update for libecap FEDORA-2016-7
2016-05-07 00:00:00
Oracle Linux Local Check: ELSA-2015-2378
2015-11-24 00:00:00
fedora
fedora
[SECURITY] Fedora 22 Update: squid-3.5.10-1.fc22
2016-05-06 19:58:05
[SECURITY] Fedora 22 Update: libecap-1.0.0-1.fc22
2016-05-06 19:58:05
[SECURITY] Fedora 23 Update: squid-3.5.10-4.fc23
2016-07-13 00:00:11
nessus
nessus
Squid 3.x < 3.5.15 / 4.x < 4.0.7 Multiple DoS
2016-03-02 00:00:00
Squid 3.2 < 3.5.4 Incorrect X509 Server Certificate Validation Vulnerability
2015-05-19 00:00:00
FreeBSD : squid -- client-first SSL-bump does not correctly validate X509 server certificate (b6da24da-23f7-11e5-a4a5-002590263bf5)
2015-07-07 00:00:00
ubuntucve
ubuntucve
CVE-2015-3455
2015-05-18 00:00:00
CVE-2016-2572
2016-02-27 00:00:00
CVE-2015-5400
2015-09-28 00:00:00
securityvulns
securityvulns
[ MDVSA-2015:230 ] squid
2015-05-11 00:00:00
squid insufficient certificate validation
2015-05-11 00:00:00
[SECURITY] [DSA 3327-1] squid3 security update
2015-08-10 00:00:00
redhat
redhat
(RHSA-2015:2378) Moderate: squid security and bug fix update
2015-11-19 13:41:16
(RHSA-2016:2600) Moderate: squid security, bug fix, and enhancement update
2016-11-03 06:07:16
mageia
mageia
Updated squid packages fix CVE-2015-3455
2015-05-05 16:36:50
Updated squid packages fix CVE-2015-5400
2015-09-08 20:55:59
Updated squid packages fix security vulnerabilities
2016-03-07 14:20:30
archlinux
archlinux
squid: weak certificate validation
2015-05-01 00:00:00
centos
centos
squid security update
2015-11-30 19:52:33
squid security update
2016-11-25 16:02:47
oraclelinux
oraclelinux
squid security and bug fix update
2015-11-23 00:00:00
squid security, bug fix, and enhancement update
2016-11-09 00:00:00
prion
prion
Code injection
2015-05-18 15:59:00
Cross site request forgery (csrf)
2015-09-28 20:59:00
Design/Logic Flaw
2016-02-27 05:59:00
freebsd
freebsd
squid -- client-first SSL-bump does not correctly validate X509 server certificate
2015-05-01 00:00:00
squid -- Improper Protection of Alternate Path with CONNECT requests
2015-07-06 00:00:00
squid -- remote DoS in HTTP response processing
2016-02-24 00:00:00
cve
cve
CVE-2015-3455
2015-05-18 15:59:00
CVE-2016-2572
2016-02-27 05:59:00
CVE-2015-5400
2015-09-28 20:59:00
debiancve
debiancve
CVE-2016-2572
2016-02-27 05:59:00
CVE-2015-3455
2015-05-18 15:59:00
CVE-2016-2571
2016-02-27 05:59:00
osv
osv
squid3 - security update
2015-08-03 00:00:00
squid3 - security update
2015-07-30 00:00:00
squid3 - security update
2016-03-20 00:00:00
debian
debian
[SECURITY] [DSA 3327-1] squid3 security update
2015-08-03 20:33:08
[SECURITY] [DSA 3327-1] squid3 security update
2015-08-03 20:33:08
[SECURITY] [DLA 286-1] squid3 security update
2015-07-30 08:53:00
altlinux
altlinux
Security fix for the ALT Linux 8 package squid version 3.5.10-alt1
2015-10-20 00:00:00
checkpoint_advisories
checkpoint_advisories
Multiple Vendors TLS Certificate Common Name NULL Byte Input Validation Error (CVE-2015-3008; CVE-2015-3455)
2015-05-21 00:00:00
ubuntu
ubuntu
Squid vulnerabilities
2016-03-07 00:00:00
Squid vulnerabilities
2018-02-05 00:00:00
Squid regression
2022-12-12 00:00:00
gentoo
gentoo
Squid: Multiple vulnerabilities
2016-07-09 00:00:00
suse
suse
Security update for squid3 (important)
2016-08-09 17:12:26
Security update for squid3 (important)
2016-08-16 18:08:55
JSON
Related for FEDORA_2016-7B40EB9E29.NASL
openvas22fedora3nessus28ubuntucve4securityvulns4redhat2mageia3archlinux1centos2oraclelinux2prion4freebsd3cve4debiancve4osv4debian6altlinux1checkpoint_advisories1ubuntu3gentoo1suse2