ID FEDORA_2017-75C571778E.NASL Type nessus Reporter Tenable Modified 2018-02-02T00:00:00
Description
This is new version with security fixes for CVE-2017-9468, CVE-2017-9469.
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory FEDORA-2017-75c571778e.
#
include("compat.inc");
if (description)
{
script_id(101327);
script_version("$Revision: 3.2 $");
script_cvs_date("$Date: 2018/02/02 14:51:02 $");
script_cve_id("CVE-2017-9468", "CVE-2017-9469");
script_xref(name:"FEDORA", value:"2017-75c571778e");
script_name(english:"Fedora 25 : irssi (2017-75c571778e)");
script_summary(english:"Checks rpm output for the updated package.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Fedora host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"This is new version with security fixes for CVE-2017-9468,
CVE-2017-9469.
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e"
);
script_set_attribute(attribute:"solution", value:"Update the affected irssi package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:irssi");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:25");
script_set_attribute(attribute:"patch_publication_date", value:"2017/07/08");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/07/10");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.");
script_family(english:"Fedora Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^25([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 25", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC25", reference:"irssi-1.0.3-1.fc25")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "irssi");
}
{"id": "FEDORA_2017-75C571778E.NASL", "bulletinFamily": "scanner", "title": "Fedora 25 : irssi (2017-75c571778e)", "description": "This is new version with security fixes for CVE-2017-9468, CVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "published": "2017-07-10T00:00:00", "modified": "2018-02-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=101327", "reporter": "Tenable", "references": ["https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e"], "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "type": "nessus", "lastseen": "2018-09-02T00:00:52", "history": [{"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:fedoraproject:fedora:irssi", "cpe:/o:fedoraproject:fedora:25"], "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "This is new version with security fixes for CVE-2017-9468, CVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 4, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "hash": "d93c25afd9768da959120efcc83e5406f2534ae4dcc7326e23d071ef327b0fad", "hashmap": [{"hash": "3453727c30f9839814933ecbc02ec18a", "key": "href"}, {"hash": "b8f731d9c9b2beb48934f23dd371aa22", "key": "title"}, {"hash": "6cab10cf7994593316386d20717e24ba", "key": "pluginID"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "8225a905e44cafbb9ae00b8544ab148c", "key": "description"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "e62d48965d55a12c38f3b050fa4bd059", "key": "sourceData"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "acf1237a59197ee22a5e58c3ff5b4b69", "key": "cpe"}, {"hash": "e5ea4e133fdd22d0dad25dd00662de7f", "key": "modified"}, {"hash": "0d134bf170d66438eb1e01173ee0187f", "key": "published"}, {"hash": "17c42aa9b6b1269d8718ee02bd2544f0", "key": "references"}, {"hash": "ae7249652a1e94532ee2c8a678ef3b60", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=101327", "id": "FEDORA_2017-75C571778E.NASL", "lastseen": "2018-08-30T19:52:13", "modified": "2018-02-02T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "101327", "published": "2017-07-10T00:00:00", "references": ["https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory FEDORA-2017-75c571778e.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101327);\n script_version(\"$Revision: 3.2 $\");\n script_cvs_date(\"$Date: 2018/02/02 14:51:02 $\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_xref(name:\"FEDORA\", value:\"2017-75c571778e\");\n\n script_name(english:\"Fedora 25 : irssi (2017-75c571778e)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This is new version with security fixes for CVE-2017-9468,\nCVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as\npossible without introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected irssi package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:25\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/07/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/07/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^25([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 25\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"FC25\", reference:\"irssi-1.0.3-1.fc25\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"irssi\");\n}\n", "title": "Fedora 25 : irssi (2017-75c571778e)", "type": "nessus", "viewCount": 3}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:52:13"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:fedoraproject:fedora:irssi", "cpe:/o:fedoraproject:fedora:25"], "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "This is new version with security fixes for CVE-2017-9468, CVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 2, "enchantments": {"score": {"modified": "2017-10-29T13:42:42", "value": 5.0}}, "hash": "52d8d955874fde95b1becd2a2214dd5c9bbcdb8182230468ddbd453e146bba20", "hashmap": [{"hash": "3453727c30f9839814933ecbc02ec18a", "key": "href"}, {"hash": "b8f731d9c9b2beb48934f23dd371aa22", "key": "title"}, {"hash": "6cab10cf7994593316386d20717e24ba", "key": "pluginID"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "8225a905e44cafbb9ae00b8544ab148c", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "d3424eb95a454c4433f15c70391ae14b", "key": "sourceData"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "acf1237a59197ee22a5e58c3ff5b4b69", "key": "cpe"}, {"hash": "0d134bf170d66438eb1e01173ee0187f", "key": "published"}, {"hash": "17c42aa9b6b1269d8718ee02bd2544f0", "key": "references"}, {"hash": "ae7249652a1e94532ee2c8a678ef3b60", "key": "cvelist"}, {"hash": "0d134bf170d66438eb1e01173ee0187f", "key": "modified"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=101327", "id": "FEDORA_2017-75C571778E.NASL", "lastseen": "2017-10-29T13:42:42", "modified": "2017-07-10T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "101327", "published": "2017-07-10T00:00:00", "references": ["https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory FEDORA-2017-75c571778e.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101327);\n script_version(\"$Revision: 3.1 $\");\n script_cvs_date(\"$Date: 2017/07/10 13:46:22 $\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_xref(name:\"FEDORA\", value:\"2017-75c571778e\");\n\n script_name(english:\"Fedora 25 : irssi (2017-75c571778e)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This is new version with security fixes for CVE-2017-9468,\nCVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as\npossible without introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected irssi package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:25\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/07/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/07/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^25([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 25\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"FC25\", reference:\"irssi-1.0.3-1.fc25\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"irssi\");\n}\n", "title": "Fedora 25 : irssi (2017-75c571778e)", "type": "nessus", "viewCount": 3}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-10-29T13:42:42"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": ["p-cpe:/a:fedoraproject:fedora:irssi", "cpe:/o:fedoraproject:fedora:25"], "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "This is new version with security fixes for CVE-2017-9468, CVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 3, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "hash": "fd1676b3c81ae87305b28ad5e348c50b17b853148b0157668b7dd560e4192567", "hashmap": [{"hash": "3453727c30f9839814933ecbc02ec18a", "key": "href"}, {"hash": "b8f731d9c9b2beb48934f23dd371aa22", "key": "title"}, {"hash": "6cab10cf7994593316386d20717e24ba", "key": "pluginID"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "8225a905e44cafbb9ae00b8544ab148c", "key": "description"}, {"hash": "e62d48965d55a12c38f3b050fa4bd059", "key": "sourceData"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "acf1237a59197ee22a5e58c3ff5b4b69", "key": "cpe"}, {"hash": "e5ea4e133fdd22d0dad25dd00662de7f", "key": "modified"}, {"hash": "0d134bf170d66438eb1e01173ee0187f", "key": "published"}, {"hash": "17c42aa9b6b1269d8718ee02bd2544f0", "key": "references"}, {"hash": "ae7249652a1e94532ee2c8a678ef3b60", "key": "cvelist"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=101327", "id": "FEDORA_2017-75C571778E.NASL", "lastseen": "2018-02-04T11:09:25", "modified": "2018-02-02T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "101327", "published": "2017-07-10T00:00:00", "references": ["https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory FEDORA-2017-75c571778e.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101327);\n script_version(\"$Revision: 3.2 $\");\n script_cvs_date(\"$Date: 2018/02/02 14:51:02 $\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_xref(name:\"FEDORA\", value:\"2017-75c571778e\");\n\n script_name(english:\"Fedora 25 : irssi (2017-75c571778e)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This is new version with security fixes for CVE-2017-9468,\nCVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as\npossible without introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected irssi package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:25\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/07/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/07/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^25([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 25\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"FC25\", reference:\"irssi-1.0.3-1.fc25\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"irssi\");\n}\n", "title": "Fedora 25 : irssi (2017-75c571778e)", "type": "nessus", "viewCount": 3}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-02-04T11:09:25"}, {"bulletin": {"bulletinFamily": "scanner", "cpe": [], "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "This is new version with security fixes for CVE-2017-9468, CVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 1, "enchantments": {}, "hash": "869246aec27be325f8a243f24e841bc22f8f3d8860005a4641a40640bee57f52", "hashmap": [{"hash": "3453727c30f9839814933ecbc02ec18a", "key": "href"}, {"hash": "b8f731d9c9b2beb48934f23dd371aa22", "key": "title"}, {"hash": "6cab10cf7994593316386d20717e24ba", "key": "pluginID"}, {"hash": "9cf00d658b687f030ebe173a0528c567", "key": "reporter"}, {"hash": "8225a905e44cafbb9ae00b8544ab148c", "key": "description"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "5e0bd03bec244039678f2b955a2595aa", "key": "type"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "d3424eb95a454c4433f15c70391ae14b", "key": "sourceData"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "0d134bf170d66438eb1e01173ee0187f", "key": "published"}, {"hash": "17c42aa9b6b1269d8718ee02bd2544f0", "key": "references"}, {"hash": "ae7249652a1e94532ee2c8a678ef3b60", "key": "cvelist"}, {"hash": "0d134bf170d66438eb1e01173ee0187f", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpe"}], "history": [], "href": "https://www.tenable.com/plugins/index.php?view=single&id=101327", "id": "FEDORA_2017-75C571778E.NASL", "lastseen": "2017-07-10T21:48:48", "modified": "2017-07-10T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "101327", "published": "2017-07-10T00:00:00", "references": ["https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e"], "reporter": "Tenable", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory FEDORA-2017-75c571778e.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101327);\n script_version(\"$Revision: 3.1 $\");\n script_cvs_date(\"$Date: 2017/07/10 13:46:22 $\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_xref(name:\"FEDORA\", value:\"2017-75c571778e\");\n\n script_name(english:\"Fedora 25 : irssi (2017-75c571778e)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This is new version with security fixes for CVE-2017-9468,\nCVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as\npossible without introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected irssi package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:25\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/07/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/07/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^25([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 25\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"FC25\", reference:\"irssi-1.0.3-1.fc25\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"irssi\");\n}\n", "title": "Fedora 25 : irssi (2017-75c571778e)", "type": "nessus", "viewCount": 3}, "differentElements": ["cpe"], "edition": 1, "lastseen": "2017-07-10T21:48:48"}], "edition": 5, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cpe", "hash": "acf1237a59197ee22a5e58c3ff5b4b69"}, {"key": "cvelist", "hash": "ae7249652a1e94532ee2c8a678ef3b60"}, {"key": "cvss", "hash": "84813b1457b92d6ba1174abffbb83a2f"}, {"key": "description", "hash": "8225a905e44cafbb9ae00b8544ab148c"}, {"key": "href", "hash": "3453727c30f9839814933ecbc02ec18a"}, {"key": "modified", "hash": "e5ea4e133fdd22d0dad25dd00662de7f"}, {"key": "naslFamily", "hash": "be931514784f88df80712740ad2723e7"}, {"key": "pluginID", "hash": "6cab10cf7994593316386d20717e24ba"}, {"key": "published", "hash": "0d134bf170d66438eb1e01173ee0187f"}, {"key": "references", "hash": "17c42aa9b6b1269d8718ee02bd2544f0"}, {"key": "reporter", "hash": "9cf00d658b687f030ebe173a0528c567"}, {"key": "sourceData", "hash": "e62d48965d55a12c38f3b050fa4bd059"}, {"key": "title", "hash": "b8f731d9c9b2beb48934f23dd371aa22"}, {"key": "type", "hash": "5e0bd03bec244039678f2b955a2595aa"}], "hash": "fd1676b3c81ae87305b28ad5e348c50b17b853148b0157668b7dd560e4192567", "viewCount": 3, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}, "vulnersScore": 2.1}, "objectVersion": "1.3", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory FEDORA-2017-75c571778e.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101327);\n script_version(\"$Revision: 3.2 $\");\n script_cvs_date(\"$Date: 2018/02/02 14:51:02 $\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_xref(name:\"FEDORA\", value:\"2017-75c571778e\");\n\n script_name(english:\"Fedora 25 : irssi (2017-75c571778e)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This is new version with security fixes for CVE-2017-9468,\nCVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as\npossible without introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bodhi.fedoraproject.org/updates/FEDORA-2017-75c571778e\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected irssi package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:25\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/07/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/07/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^25([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 25\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"FC25\", reference:\"irssi-1.0.3-1.fc25\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"irssi\");\n}\n", "naslFamily": "Fedora Local Security Checks", "pluginID": "101327", "cpe": ["p-cpe:/a:fedoraproject:fedora:irssi", "cpe:/o:fedoraproject:fedora:25"]}
{"cve": [{"lastseen": "2017-11-04T10:54:36", "references": ["http://www.securityfocus.com/bid/99015", "http://openwall.com/lists/oss-security/2017/06/06/4", "http://www.debian.org/security/2017/dsa-3885", "http://www.securitytracker.com/id/1038621", "https://irssi.org/security/irssi_sa_2017_06.txt"], "description": "In Irssi before 1.0.3, when receiving a DCC message without source nick/host, it attempts to dereference a NULL pointer. Thus, remote IRC servers can cause a crash.", "edition": 5, "reporter": "NVD", "published": "2017-06-06T21:29:01", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "CVE-2017-9468", "type": "cve", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2017-9468"], "scanner": [], "cpe": ["cpe:/a:irssi:irssi:1.0.2"], "modified": "2017-11-03T21:29:56", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-9468", "id": "CVE-2017-9468", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-11-04T10:54:36", "references": ["http://openwall.com/lists/oss-security/2017/06/06/4", "http://www.debian.org/security/2017/dsa-3885", "http://www.securitytracker.com/id/1038621", "https://irssi.org/security/irssi_sa_2017_06.txt", "http://www.securityfocus.com/bid/99043"], "description": "In Irssi before 1.0.3, when receiving certain incorrectly quoted DCC files, it tries to find the terminating quote one byte before the allocated memory. Thus, remote attackers might be able to cause a crash.", "edition": 5, "reporter": "NVD", "published": "2017-06-06T21:29:01", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "CVE-2017-9469", "type": "cve", "assessment": {"system": "", "name": "", "href": ""}, "bulletinFamily": "NVD", "cvelist": ["CVE-2017-9469"], "scanner": [], "cpe": ["cpe:/a:irssi:irssi:1.0.2"], "modified": "2017-11-03T21:29:56", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-9469", "id": "CVE-2017-9469", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "openvas": [{"lastseen": "2017-07-24T12:57:48", "references": ["http://www.debian.org/security/2017/dsa-3885.html"], "pluginID": "703885", "description": "Multiple vulnerabilities have been discovered in Irssi, a terminal based\nIRC client. The Common Vulnerabilities and Exposures project identifies\nthe following problems:\n\nCVE-2017-9468 \nJoseph Bisch discovered that Irssi does not properly handle DCC\nmessages without source nick/host. A malicious IRC server can take\nadvantage of this flaw to cause Irssi to crash, resulting in a\ndenial of service.\n\nCVE-2017-9469 \nJoseph Bisch discovered that Irssi does not properly handle\nreceiving incorrectly quoted DCC files. A remote attacker can take\nadvantage of this flaw to cause Irssi to crash, resulting in a\ndenial of service.", "edition": 3, "reporter": "Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net", "published": "2017-06-18T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Debian Security Advisory DSA 3885-1 (irssi - security update)", "type": "openvas", "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=703885", "id": "OPENVAS:703885", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3885.nasl 6607 2017-07-07 12:04:25Z cfischer $\n# Auto-generated from advisory DSA 3885-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_id(703885);\n script_version(\"$Revision: 6607 $\");\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_name(\"Debian Security Advisory DSA 3885-1 (irssi - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2017-07-07 14:04:25 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name: \"creation_date\", value: \"2017-06-18 00:00:00 +0200 (Sun, 18 Jun 2017)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n script_tag(name: \"qod_type\", value: \"package\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2017/dsa-3885.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"irssi on Debian Linux\");\n script_tag(name: \"insight\", value: \"Irssi is a terminal based IRC client for UNIX systems. It also supports\nSILC and ICB protocols via plugins.\");\n script_tag(name: \"solution\", value: \"For the oldstable distribution (jessie), these problems have been fixed\nin version 0.8.17-1+deb8u4.\n\nFor the stable distribution (stretch), these problems have been fixed in\nversion 1.0.2-1+deb9u1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1.0.3-1.\n\nWe recommend that you upgrade your irssi packages.\");\n script_tag(name: \"summary\", value: \"Multiple vulnerabilities have been discovered in Irssi, a terminal based\nIRC client. The Common Vulnerabilities and Exposures project identifies\nthe following problems:\n\nCVE-2017-9468 \nJoseph Bisch discovered that Irssi does not properly handle DCC\nmessages without source nick/host. A malicious IRC server can take\nadvantage of this flaw to cause Irssi to crash, resulting in a\ndenial of service.\n\nCVE-2017-9469 \nJoseph Bisch discovered that Irssi does not properly handle\nreceiving incorrectly quoted DCC files. A remote attacker can take\nadvantage of this flaw to cause Irssi to crash, resulting in a\ndenial of service.\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"irssi\", ver:\"0.8.17-1+deb8u4\", rls_regex:\"DEB8.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"irssi-dbg\", ver:\"0.8.17-1+deb8u4\", rls_regex:\"DEB8.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"irssi-dev\", ver:\"0.8.17-1+deb8u4\", rls_regex:\"DEB8.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"irssi\", ver:\"1.0.2-1+deb9u1\", rls_regex:\"DEB9.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"irssi-dev\", ver:\"1.0.2-1+deb9u1\", rls_regex:\"DEB9.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:39:53", "references": ["https://lists.debian.org/debian-lts-announce/2017/09/msg00003.html"], "pluginID": "1361412562310891088", "description": "Irssi has some issues where remote attackers might be able to cause a crash.\n\nCVE-2017-9468\n\nIn irssi, when receiving a DCC message without source nick/host, it\nattempts to dereference a NULL pointer.\n\nCVE-2017-9469\n\nIn irssi, when receiving certain incorrectly quoted DCC files, it tries to\nfind the terminating quote one byte before the allocated memory.", "edition": 7, "reporter": "Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net", "published": "2018-02-07T00:00:00", "title": "Debian LTS Advisory ([SECURITY] [DLA 1088-1] irssi security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-07-10T00:00:00", "id": "OPENVAS:1361412562310891088", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310891088", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: deb_dla_1088.nasl 10474 2018-07-10 08:12:26Z cfischer $\n#\n# Auto-generated from advisory DLA 1088-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License as published by\n# the Free Software Foundation; either version 2 of the License, or\n# (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.891088\");\n script_version(\"$Revision: 10474 $\");\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_name(\"Debian LTS Advisory ([SECURITY] [DLA 1088-1] irssi security update)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-07-10 10:12:26 +0200 (Tue, 10 Jul 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-02-07 00:00:00 +0100 (Wed, 07 Feb 2018)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"qod_type\", value:\"package\");\n\n script_xref(name:\"URL\", value:\"https://lists.debian.org/debian-lts-announce/2017/09/msg00003.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2018 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\", re:\"ssh/login/release=DEB7\\.[0-9]+\");\n script_tag(name:\"affected\", value:\"irssi on Debian Linux\");\n script_tag(name:\"insight\", value:\"Irssi is a terminal based IRC client for UNIX systems. It also supports\nSILC and ICB protocols via plugins.\");\n script_tag(name:\"solution\", value:\"For Debian 7 'Wheezy', these problems have been fixed in version\n0.8.15-5+deb7u2.\n\nWe recommend that you upgrade your irssi packages.\");\n script_tag(name:\"summary\", value:\"Irssi has some issues where remote attackers might be able to cause a crash.\n\nCVE-2017-9468\n\nIn irssi, when receiving a DCC message without source nick/host, it\nattempts to dereference a NULL pointer.\n\nCVE-2017-9469\n\nIn irssi, when receiving certain incorrectly quoted DCC files, it tries to\nfind the terminating quote one byte before the allocated memory.\");\n script_tag(name:\"vuldetect\", value:\"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"irssi\", ver:\"0.8.15-5+deb7u2\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"irssi-dev\", ver:\"0.8.15-5+deb7u2\", rls_regex:\"DEB7\\.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:42:31", "references": ["3317-1", "http://www.ubuntu.com/usn/usn-3317-1/"], "pluginID": "1361412562310843204", "description": "Check the version of irssi", "edition": 6, "reporter": "Copyright (C) 2017 Greenbone Networks GmbH", "published": "2017-06-13T00:00:00", "title": "Ubuntu Update for irssi USN-3317-1", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-08-17T00:00:00", "id": "OPENVAS:1361412562310843204", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310843204", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Ubuntu Update for irssi USN-3317-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.843204\");\n script_version(\"$Revision: 11037 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-08-17 13:51:16 +0200 (Fri, 17 Aug 2018) $\");\n script_tag(name:\"creation_date\", value:\"2017-06-13 10:06:14 +0200 (Tue, 13 Jun 2017)\");\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Ubuntu Update for irssi USN-3317-1\");\n script_tag(name:\"summary\", value:\"Check the version of irssi\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"insight\", value:\"It was discovered that Irssi incorrectly\n handled certain DCC messages. A malicious IRC server could use this issue to\n cause Irssi to crash, resulting in a denial of service. (CVE-2017-9468) Joseph\n Bisch discovered that Irssi incorrectly handled receiving incorrectly quoted DCC\n files. A remote attacker could possibly use this issue to cause Irssi to crash,\n resulting in a denial of service. (CVE-2017-9469)\");\n script_tag(name:\"affected\", value:\"irssi on Ubuntu 17.04,\n Ubuntu 16.10,\n Ubuntu 16.04 LTS,\n Ubuntu 14.04 LTS\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n\n script_xref(name:\"USN\", value:\"3317-1\");\n script_xref(name:\"URL\", value:\"http://www.ubuntu.com/usn/usn-3317-1/\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2017 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\", re:\"ssh/login/release=UBUNTU(14\\.04 LTS|17\\.04|16\\.10|16\\.04 LTS)\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = dpkg_get_ssh_release();\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU14.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"irssi\", ver:\"0.8.15-5ubuntu3.2\", rls:\"UBUNTU14.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU17.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"irssi\", ver:\"0.8.20-2ubuntu2.1\", rls:\"UBUNTU17.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU16.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"irssi\", ver:\"0.8.19-1ubuntu2.2\", rls:\"UBUNTU16.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n\n\nif(release == \"UBUNTU16.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"irssi\", ver:\"0.8.19-1ubuntu1.4\", rls:\"UBUNTU16.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:43:01", "references": ["2017-75c571778e", "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5JKP4AWBNT3XMSXAYCU5WHK4H3ZRKHWT"], "pluginID": "1361412562310872846", "description": "Check the version of irssi", "edition": 3, "reporter": "Copyright (C) 2017 Greenbone Networks GmbH", "published": "2017-07-14T00:00:00", "title": "Fedora Update for irssi FEDORA-2017-75c571778e", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2017-07-14T00:00:00", "id": "OPENVAS:1361412562310872846", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310872846", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for irssi FEDORA-2017-75c571778e\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2017 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.872846\");\n script_version(\"$Revision: 6733 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-14 16:39:43 +0200 (Fri, 14 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2017-07-14 15:55:19 +0530 (Fri, 14 Jul 2017)\");\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for irssi FEDORA-2017-75c571778e\");\n script_tag(name: \"summary\", value: \"Check the version of irssi\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help \nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"Irssi is a modular IRC client with Perl \nscripting. Only text-mode frontend is currently supported. The GTK/GNOME frontend \nis no longer being maintained.\");\n script_tag(name: \"affected\", value: \"irssi on Fedora 25\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n\n script_xref(name: \"FEDORA\", value: \"2017-75c571778e\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/5JKP4AWBNT3XMSXAYCU5WHK4H3ZRKHWT\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2017 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC25\")\n{\n\n if ((res = isrpmvuln(pkg:\"irssi\", rpm:\"irssi~1.0.3~1.fc25\", rls:\"FC25\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:41:11", "references": ["http://www.debian.org/security/2017/dsa-3885.html"], "pluginID": "1361412562310703885", "description": "Multiple vulnerabilities have been discovered in Irssi, a terminal based\nIRC client. The Common Vulnerabilities and Exposures project identifies\nthe following problems:\n\nCVE-2017-9468 \nJoseph Bisch discovered that Irssi does not properly handle DCC\nmessages without source nick/host. A malicious IRC server can take\nadvantage of this flaw to cause Irssi to crash, resulting in a\ndenial of service.\n\nCVE-2017-9469 \nJoseph Bisch discovered that Irssi does not properly handle\nreceiving incorrectly quoted DCC files. A remote attacker can take\nadvantage of this flaw to cause Irssi to crash, resulting in a\ndenial of service.", "edition": 3, "reporter": "Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net", "published": "2017-06-18T00:00:00", "title": "Debian Security Advisory DSA 3885-1 (irssi - security update)", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-04-06T00:00:00", "id": "OPENVAS:1361412562310703885", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310703885", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_3885.nasl 9356 2018-04-06 07:17:02Z cfischer $\n# Auto-generated from advisory DSA 3885-1 using nvtgen 1.0\n# Script version: 1.0\n#\n# Author:\n# Greenbone Networks\n#\n# Copyright:\n# Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.703885\");\n script_version(\"$Revision: 9356 $\");\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_name(\"Debian Security Advisory DSA 3885-1 (irssi - security update)\");\n script_tag(name: \"last_modification\", value: \"$Date: 2018-04-06 09:17:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name: \"creation_date\", value: \"2017-06-18 00:00:00 +0200 (Sun, 18 Jun 2017)\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name: \"solution_type\", value: \"VendorFix\");\n script_tag(name: \"qod_type\", value: \"package\");\n\n script_xref(name: \"URL\", value: \"http://www.debian.org/security/2017/dsa-3885.html\");\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2017 Greenbone Networks GmbH http://greenbone.net\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name: \"affected\", value: \"irssi on Debian Linux\");\n script_tag(name: \"insight\", value: \"Irssi is a terminal based IRC client for UNIX systems. It also supports\nSILC and ICB protocols via plugins.\");\n script_tag(name: \"solution\", value: \"For the oldstable distribution (jessie), these problems have been fixed\nin version 0.8.17-1+deb8u4.\n\nFor the stable distribution (stretch), these problems have been fixed in\nversion 1.0.2-1+deb9u1.\n\nFor the unstable distribution (sid), these problems have been fixed in\nversion 1.0.3-1.\n\nWe recommend that you upgrade your irssi packages.\");\n script_tag(name: \"summary\", value: \"Multiple vulnerabilities have been discovered in Irssi, a terminal based\nIRC client. The Common Vulnerabilities and Exposures project identifies\nthe following problems:\n\nCVE-2017-9468 \nJoseph Bisch discovered that Irssi does not properly handle DCC\nmessages without source nick/host. A malicious IRC server can take\nadvantage of this flaw to cause Irssi to crash, resulting in a\ndenial of service.\n\nCVE-2017-9469 \nJoseph Bisch discovered that Irssi does not properly handle\nreceiving incorrectly quoted DCC files. A remote attacker can take\nadvantage of this flaw to cause Irssi to crash, resulting in a\ndenial of service.\");\n script_tag(name: \"vuldetect\", value: \"This check tests the installed software version using the apt package manager.\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"irssi\", ver:\"0.8.17-1+deb8u4\", rls_regex:\"DEB8.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"irssi-dbg\", ver:\"0.8.17-1+deb8u4\", rls_regex:\"DEB8.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"irssi-dev\", ver:\"0.8.17-1+deb8u4\", rls_regex:\"DEB8.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"irssi\", ver:\"1.0.2-1+deb9u1\", rls_regex:\"DEB9.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"irssi-dev\", ver:\"1.0.2-1+deb9u1\", rls_regex:\"DEB9.[0-9]+\", remove_arch:TRUE )) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "nessus": [{"lastseen": "2018-09-01T23:34:59", "references": ["http://www.nessus.org/u?fb6c9971"], "pluginID": "100703", "description": "New irssi packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1, 14.2, and -current to fix security issues.", "edition": 6, "reporter": "Tenable", "published": "2017-06-09T00:00:00", "title": "Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : irssi (SSA:2017-158-01)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Slackware Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-01-26T00:00:00", "cpe": ["cpe:/o:slackware:slackware_linux:14.2", "cpe:/o:slackware:slackware_linux:14.1", "cpe:/o:slackware:slackware_linux:13.37", "cpe:/o:slackware:slackware_linux:14.0", "cpe:/o:slackware:slackware_linux:13.0", "cpe:/o:slackware:slackware_linux", "p-cpe:/a:slackware:slackware_linux:irssi", "cpe:/o:slackware:slackware_linux:13.1"], "id": "SLACKWARE_SSA_2017-158-01.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=100703", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Slackware Security Advisory 2017-158-01. The text \n# itself is copyright (C) Slackware Linux, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(100703);\n script_version(\"$Revision: 3.3 $\");\n script_cvs_date(\"$Date: 2018/01/26 17:50:31 $\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_xref(name:\"SSA\", value:\"2017-158-01\");\n\n script_name(english:\"Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : irssi (SSA:2017-158-01)\");\n script_summary(english:\"Checks for updated package in /var/log/packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Slackware host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"New irssi packages are available for Slackware 13.0, 13.1, 13.37,\n14.0, 14.1, 14.2, and -current to fix security issues.\"\n );\n # http://www.slackware.com/security/viewer.php?l=slackware-security&y=2017&m=slackware-security.541305\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?fb6c9971\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected irssi package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:slackware:slackware_linux:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:13.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:13.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:13.37\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:14.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:14.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:slackware:slackware_linux:14.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/06/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Slackware Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Slackware/release\", \"Host/Slackware/packages\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"slackware.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Slackware/release\")) audit(AUDIT_OS_NOT, \"Slackware\");\nif (!get_kb_item(\"Host/Slackware/packages\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Slackware\", cpu);\n\n\nflag = 0;\nif (slackware_check(osver:\"13.0\", pkgname:\"irssi\", pkgver:\"0.8.21\", pkgarch:\"i486\", pkgnum:\"2_slack13.0\")) flag++;\nif (slackware_check(osver:\"13.0\", arch:\"x86_64\", pkgname:\"irssi\", pkgver:\"0.8.21\", pkgarch:\"x86_64\", pkgnum:\"2_slack13.0\")) flag++;\n\nif (slackware_check(osver:\"13.1\", pkgname:\"irssi\", pkgver:\"0.8.21\", pkgarch:\"i486\", pkgnum:\"2_slack13.1\")) flag++;\nif (slackware_check(osver:\"13.1\", arch:\"x86_64\", pkgname:\"irssi\", pkgver:\"0.8.21\", pkgarch:\"x86_64\", pkgnum:\"2_slack13.1\")) flag++;\n\nif (slackware_check(osver:\"13.37\", pkgname:\"irssi\", pkgver:\"0.8.21\", pkgarch:\"i486\", pkgnum:\"2_slack13.37\")) flag++;\nif (slackware_check(osver:\"13.37\", arch:\"x86_64\", pkgname:\"irssi\", pkgver:\"0.8.21\", pkgarch:\"x86_64\", pkgnum:\"2_slack13.37\")) flag++;\n\nif (slackware_check(osver:\"14.0\", pkgname:\"irssi\", pkgver:\"1.0.3\", pkgarch:\"i486\", pkgnum:\"1_slack14.0\")) flag++;\nif (slackware_check(osver:\"14.0\", arch:\"x86_64\", pkgname:\"irssi\", pkgver:\"1.0.3\", pkgarch:\"x86_64\", pkgnum:\"1_slack14.0\")) flag++;\n\nif (slackware_check(osver:\"14.1\", pkgname:\"irssi\", pkgver:\"1.0.3\", pkgarch:\"i486\", pkgnum:\"1_slack14.1\")) flag++;\nif (slackware_check(osver:\"14.1\", arch:\"x86_64\", pkgname:\"irssi\", pkgver:\"1.0.3\", pkgarch:\"x86_64\", pkgnum:\"1_slack14.1\")) flag++;\n\nif (slackware_check(osver:\"14.2\", pkgname:\"irssi\", pkgver:\"1.0.3\", pkgarch:\"i586\", pkgnum:\"1_slack14.2\")) flag++;\nif (slackware_check(osver:\"14.2\", arch:\"x86_64\", pkgname:\"irssi\", pkgver:\"1.0.3\", pkgarch:\"x86_64\", pkgnum:\"1_slack14.2\")) flag++;\n\nif (slackware_check(osver:\"current\", pkgname:\"irssi\", pkgver:\"1.0.3\", pkgarch:\"i586\", pkgnum:\"1\")) flag++;\nif (slackware_check(osver:\"current\", arch:\"x86_64\", pkgname:\"irssi\", pkgver:\"1.0.3\", pkgarch:\"x86_64\", pkgnum:\"1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:slackware_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:55:58", "references": ["https://bugzilla.opensuse.org/show_bug.cgi?id=1043052", "https://bugzilla.opensuse.org/show_bug.cgi?id=1043051"], "pluginID": "100713", "description": "This update to irssi 1.0.3 fixes the following vulnerabilities :\n\n - CVE-2017-9469: irssi: dcc crash with incorrect quoting (bsc#1043052)\n\n - CVE-2017-9468: irssi: dcc message crash without nick/host (bsc#1043051)", "edition": 7, "reporter": "Tenable", "published": "2017-06-09T00:00:00", "title": "openSUSE Security Update : irssi (openSUSE-2017-668)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-01-26T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:irssi", "p-cpe:/a:novell:opensuse:irssi-debugsource", "p-cpe:/a:novell:opensuse:irssi-devel", "p-cpe:/a:novell:opensuse:irssi-debuginfo", "cpe:/o:novell:opensuse:42.2"], "id": "OPENSUSE-2017-668.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=100713", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2017-668.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(100713);\n script_version(\"$Revision: 3.3 $\");\n script_cvs_date(\"$Date: 2018/01/26 17:32:52 $\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n\n script_name(english:\"openSUSE Security Update : irssi (openSUSE-2017-668)\");\n script_summary(english:\"Check for the openSUSE-2017-668 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update to irssi 1.0.3 fixes the following vulnerabilities :\n\n - CVE-2017-9469: irssi: dcc crash with incorrect quoting\n (bsc#1043052)\n\n - CVE-2017-9468: irssi: dcc message crash without\n nick/host (bsc#1043051)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1043051\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1043052\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected irssi packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:irssi-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:irssi-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:irssi-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:42.2\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/06/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/09\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE42\\.2)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"42.2\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE42.2\", reference:\"irssi-1.0.3-14.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"irssi-debuginfo-1.0.3-14.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"irssi-debugsource-1.0.3-14.7.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.2\", reference:\"irssi-devel-1.0.3-14.7.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"irssi / irssi-debuginfo / irssi-debugsource / irssi-devel\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:06:01", "references": ["http://www.nessus.org/u?20aac993", "https://irssi.org/security/irssi_sa_2017_06.txt"], "pluginID": "100674", "description": "Joseph Bisch reports :\n\nWhen receiving a DCC message without source nick/host, Irssi would attempt to dereference a NULL pointer.\n\nWhen receiving certain incorrectly quoted DCC files, Irssi would try to find the terminating quote one byte before the allocated memory.", "edition": 7, "reporter": "Tenable", "published": "2017-06-08T00:00:00", "title": "FreeBSD : irssi -- remote DoS (165e8951-4be0-11e7-a539-0050569f7e80)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-01-31T00:00:00", "cpe": ["cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:irssi"], "id": "FREEBSD_PKG_165E89514BE011E7A5390050569F7E80.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=100674", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2018 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(100674);\n script_version(\"$Revision: 3.3 $\");\n script_cvs_date(\"$Date: 2018/01/31 16:51:58 $\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n\n script_name(english:\"FreeBSD : irssi -- remote DoS (165e8951-4be0-11e7-a539-0050569f7e80)\");\n script_summary(english:\"Checks for updated package in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote FreeBSD host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Joseph Bisch reports :\n\nWhen receiving a DCC message without source nick/host, Irssi would\nattempt to dereference a NULL pointer.\n\nWhen receiving certain incorrectly quoted DCC files, Irssi would try\nto find the terminating quote one byte before the allocated memory.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://irssi.org/security/irssi_sa_2017_06.txt\"\n );\n # http://www.freebsd.org/ports/portaudit/165e8951-4be0-11e7-a539-0050569f7e80.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?20aac993\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2017/06/06\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/06/08\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"irssi<1.0.3\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:54:36", "references": ["https://lists.debian.org/debian-lts-announce/2017/09/msg00003.html", "https://packages.debian.org/source/wheezy/irssi"], "pluginID": "102926", "description": "Irssi has some issues where remote attackers might be able to cause a crash.\n\nCVE-2017-9468\n\n In irssi, when receiving a DCC message without source nick/host, it attempts to dereference a NULL pointer.\n\nCVE-2017-9469\n\n In irssi, when receiving certain incorrectly quoted DCC files, it tries to find the terminating quote one byte before the allocated memory.\n\nFor Debian 7 'Wheezy', these problems have been fixed in version 0.8.15-5+deb7u2.\n\nWe recommend that you upgrade your irssi packages.\n\nNOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 7, "reporter": "Tenable", "published": "2017-09-05T00:00:00", "title": "Debian DLA-1088-1 : irssi security update", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-07-09T00:00:00", "cpe": ["p-cpe:/a:debian:debian_linux:irssi", "cpe:/o:debian:debian_linux:7.0", "p-cpe:/a:debian:debian_linux:irssi-dev"], "id": "DEBIAN_DLA-1088.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=102926", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Debian Security Advisory DLA-1088-1. The text\n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(102926);\n script_version(\"3.4\");\n script_cvs_date(\"Date: 2018/07/09 12:26:58\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n\n script_name(english:\"Debian DLA-1088-1 : irssi security update\");\n script_summary(english:\"Checks dpkg output for the updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Irssi has some issues where remote attackers might be able to cause a\ncrash.\n\nCVE-2017-9468\n\n In irssi, when receiving a DCC message without source nick/host,\nit attempts to dereference a NULL pointer.\n\nCVE-2017-9469\n\n In irssi, when receiving certain incorrectly quoted DCC files, it\ntries to find the terminating quote one byte before the allocated\nmemory.\n\nFor Debian 7 'Wheezy', these problems have been fixed in version\n0.8.15-5+deb7u2.\n\nWe recommend that you upgrade your irssi packages.\n\nNOTE: Tenable Network Security has extracted the preceding description\nblock directly from the DLA security advisory. Tenable has attempted\nto automatically clean and format it as much as possible without\nintroducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://lists.debian.org/debian-lts-announce/2017/09/msg00003.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/wheezy/irssi\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Upgrade the affected irssi, and irssi-dev packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:irssi-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:7.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/09/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/09/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"7.0\", prefix:\"irssi\", reference:\"0.8.15-5+deb7u2\")) flag++;\nif (deb_check(release:\"7.0\", prefix:\"irssi-dev\", reference:\"0.8.15-5+deb7u2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-02T00:11:40", "references": ["https://bodhi.fedoraproject.org/updates/FEDORA-2017-2f30e218e7"], "pluginID": "101601", "description": "This is an security fix for CVE-2017-9468, CVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 5, "reporter": "Tenable", "published": "2017-07-17T00:00:00", "title": "Fedora 26 : irssi (2017-2f30e218e7)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Fedora Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-02-01T00:00:00", "cpe": ["p-cpe:/a:fedoraproject:fedora:irssi", "cpe:/o:fedoraproject:fedora:26"], "id": "FEDORA_2017-2F30E218E7.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=101601", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Fedora Security Advisory FEDORA-2017-2f30e218e7.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(101601);\n script_version(\"$Revision: 3.2 $\");\n script_cvs_date(\"$Date: 2018/02/01 16:04:11 $\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_xref(name:\"FEDORA\", value:\"2017-2f30e218e7\");\n\n script_name(english:\"Fedora 26 : irssi (2017-2f30e218e7)\");\n script_summary(english:\"Checks rpm output for the updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Fedora host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This is an security fix for CVE-2017-9468, CVE-2017-9469.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Fedora update system website.\nTenable has attempted to automatically clean and format it as much as\npossible without introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bodhi.fedoraproject.org/updates/FEDORA-2017-2f30e218e7\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected irssi package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fedoraproject:fedora:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:fedoraproject:fedora:26\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/07/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/07/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Fedora Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Fedora\" >!< release) audit(AUDIT_OS_NOT, \"Fedora\");\nos_ver = eregmatch(pattern: \"Fedora.*release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Fedora\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^26([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Fedora 26\", \"Fedora \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Fedora\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"FC26\", reference:\"irssi-1.0.3-1.fc26\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"irssi\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:48:19", "references": ["https://packages.debian.org/source/jessie/irssi", "https://packages.debian.org/source/stretch/irssi", "http://www.debian.org/security/2017/dsa-3885", "http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864400", "https://security-tracker.debian.org/tracker/CVE-2017-9468", "https://security-tracker.debian.org/tracker/CVE-2017-9469"], "pluginID": "100853", "description": "Multiple vulnerabilities have been discovered in Irssi, a terminal based IRC client. The Common Vulnerabilities and Exposures project identifies the following problems :\n\n - CVE-2017-9468 Joseph Bisch discovered that Irssi does not properly handle DCC messages without source nick/host. A malicious IRC server can take advantage of this flaw to cause Irssi to crash, resulting in a denial of service.\n\n - CVE-2017-9469 Joseph Bisch discovered that Irssi does not properly handle receiving incorrectly quoted DCC files. A remote attacker can take advantage of this flaw to cause Irssi to crash, resulting in a denial of service.", "edition": 9, "reporter": "Tenable", "published": "2017-06-19T00:00:00", "title": "Debian DSA-3885-1 : irssi - security update", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-07-11T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:8.0", "p-cpe:/a:debian:debian_linux:irssi", "cpe:/o:debian:debian_linux:9.0"], "id": "DEBIAN_DSA-3885.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=100853", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-3885. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(100853);\n script_version(\"3.7\");\n script_cvs_date(\"Date: 2018/07/11 12:34:08\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_xref(name:\"DSA\", value:\"3885\");\n\n script_name(english:\"Debian DSA-3885-1 : irssi - security update\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities have been discovered in Irssi, a terminal\nbased IRC client. The Common Vulnerabilities and Exposures project\nidentifies the following problems :\n\n - CVE-2017-9468\n Joseph Bisch discovered that Irssi does not properly\n handle DCC messages without source nick/host. A\n malicious IRC server can take advantage of this flaw to\n cause Irssi to crash, resulting in a denial of service.\n\n - CVE-2017-9469\n Joseph Bisch discovered that Irssi does not properly\n handle receiving incorrectly quoted DCC files. A remote\n attacker can take advantage of this flaw to cause Irssi\n to crash, resulting in a denial of service.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=864400\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2017-9468\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://security-tracker.debian.org/tracker/CVE-2017-9469\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/jessie/irssi\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://packages.debian.org/source/stretch/irssi\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2017/dsa-3885\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the irssi packages.\n\nFor the oldstable distribution (jessie), these problems have been\nfixed in version 0.8.17-1+deb8u4.\n\nFor the stable distribution (stretch), these problems have been fixed\nin version 1.0.2-1+deb9u1.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:8.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:9.0\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/06/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/19\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2017-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"8.0\", prefix:\"irssi\", reference:\"0.8.17-1+deb8u4\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"irssi-dbg\", reference:\"0.8.17-1+deb8u4\")) flag++;\nif (deb_check(release:\"8.0\", prefix:\"irssi-dev\", reference:\"0.8.17-1+deb8u4\")) flag++;\nif (deb_check(release:\"9.0\", prefix:\"irssi\", reference:\"1.0.2-1+deb9u1\")) flag++;\nif (deb_check(release:\"9.0\", prefix:\"irssi-dev\", reference:\"1.0.2-1+deb9u1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-09-01T23:50:46", "references": [], "pluginID": "100755", "description": "It was discovered that Irssi incorrectly handled certain DCC messages.\nA malicious IRC server could use this issue to cause Irssi to crash, resulting in a denial of service. (CVE-2017-9468)\n\nJoseph Bisch discovered that Irssi incorrectly handled receiving incorrectly quoted DCC files. A remote attacker could possibly use this issue to cause Irssi to crash, resulting in a denial of service.\n(CVE-2017-9469).\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 10, "reporter": "Tenable", "published": "2017-06-13T00:00:00", "title": "Ubuntu 14.04 LTS / 16.04 LTS / 16.10 / 17.04 : irssi vulnerabilities (USN-3317-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2018-08-06T00:00:00", "cpe": ["cpe:/o:canonical:ubuntu_linux:17.04", "cpe:/o:canonical:ubuntu_linux:16.04", "p-cpe:/a:canonical:ubuntu_linux:irssi", "cpe:/o:canonical:ubuntu_linux:16.10", "cpe:/o:canonical:ubuntu_linux:14.04"], "id": "UBUNTU_USN-3317-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=100755", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-3317-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(100755);\n script_version(\"3.6\");\n script_cvs_date(\"Date: 2018/08/06 12:58:58\");\n\n script_cve_id(\"CVE-2017-9468\", \"CVE-2017-9469\");\n script_xref(name:\"USN\", value:\"3317-1\");\n\n script_name(english:\"Ubuntu 14.04 LTS / 16.04 LTS / 16.10 / 17.04 : irssi vulnerabilities (USN-3317-1)\");\n script_summary(english:\"Checks dpkg output for updated package.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Ubuntu host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was discovered that Irssi incorrectly handled certain DCC messages.\nA malicious IRC server could use this issue to cause Irssi to crash,\nresulting in a denial of service. (CVE-2017-9468)\n\nJoseph Bisch discovered that Irssi incorrectly handled receiving\nincorrectly quoted DCC files. A remote attacker could possibly use\nthis issue to cause Irssi to crash, resulting in a denial of service.\n(CVE-2017-9469).\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected irssi package.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:irssi\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:14.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:16.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:17.04\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2017/06/12\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2017/06/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2017-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(14\\.04|16\\.04|16\\.10|17\\.04)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 14.04 / 16.04 / 16.10 / 17.04\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"14.04\", pkgname:\"irssi\", pkgver:\"0.8.15-5ubuntu3.2\")) flag++;\nif (ubuntu_check(osver:\"16.04\", pkgname:\"irssi\", pkgver:\"0.8.19-1ubuntu1.4\")) flag++;\nif (ubuntu_check(osver:\"16.10\", pkgname:\"irssi\", pkgver:\"0.8.19-1ubuntu2.2\")) flag++;\nif (ubuntu_check(osver:\"17.04\", pkgname:\"irssi\", pkgver:\"0.8.20-2ubuntu2.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"irssi\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "slackware": [{"lastseen": "2018-08-31T00:37:05", "references": [], "affectedPackage": [{"OS": "Slackware", "OSVersion": "14.1", "packageVersion": "1.0.3", "arch": "x86_64", "packageFilename": "irssi-1.0.3-x86_64-1_slack14.1.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.37", "packageVersion": "0.8.21", "arch": "i486", "packageFilename": "irssi-0.8.21-i486-2_slack13.37.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.1", "packageVersion": "0.8.21", "arch": "i486", "packageFilename": "irssi-0.8.21-i486-2_slack13.1.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.0", "packageVersion": "1.0.3", "arch": "i486", "packageFilename": "irssi-1.0.3-i486-1_slack14.0.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.1", "packageVersion": "0.8.21", "arch": "x86_64", "packageFilename": "irssi-0.8.21-x86_64-2_slack13.1.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.1", "packageVersion": "1.0.3", "arch": "i486", "packageFilename": "irssi-1.0.3-i486-1_slack14.1.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.0", "packageVersion": "0.8.21", "arch": "i486", "packageFilename": "irssi-0.8.21-i486-2_slack13.0.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.37", "packageVersion": "0.8.21", "arch": "x86_64", "packageFilename": "irssi-0.8.21-x86_64-2_slack13.37.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.2", "packageVersion": "1.0.3", "arch": "i586", "packageFilename": "irssi-1.0.3-i586-1_slack14.2.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.2", "packageVersion": "1.0.3", "arch": "x86_64", "packageFilename": "irssi-1.0.3-x86_64-1_slack14.2.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "13.0", "packageVersion": "0.8.21", "arch": "x86_64", "packageFilename": "irssi-0.8.21-x86_64-2_slack13.0.txz", "packageName": "irssi", "operator": "lt"}, {"OS": "Slackware", "OSVersion": "14.0", "packageVersion": "1.0.3", "arch": "x86_64", "packageFilename": "irssi-1.0.3-x86_64-1_slack14.0.txz", "packageName": "irssi", "operator": "lt"}], "description": "New irssi packages are available for Slackware 13.0, 13.1, 13.37, 14.0, 14.1,\n14.2, and -current to fix security issues.\n\n\nHere are the details from the Slackware 14.2 ChangeLog:\n\npatches/packages/irssi-1.0.3-i586-1_slack14.2.txz: Upgraded.\n Fixed security issues that may result in a denial of service.\n For more information, see:\n https://irssi.org/security/irssi_sa_2017_06.txt\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9468\n https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9469\n (* Security fix *)\n\nWhere to find the new packages:\n\nThanks to the friendly folks at the OSU Open Source Lab\n(http://osuosl.org) for donating FTP and rsync hosting\nto the Slackware project! :-)\n\nAlso see the "Get Slack" section on http://slackware.com for\nadditional mirror sites near you.\n\nUpdated package for Slackware 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/irssi-0.8.21-i486-2_slack13.0.txz\n\nUpdated package for Slackware x86_64 13.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/irssi-0.8.21-x86_64-2_slack13.0.txz\n\nUpdated package for Slackware 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/irssi-0.8.21-i486-2_slack13.1.txz\n\nUpdated package for Slackware x86_64 13.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/irssi-0.8.21-x86_64-2_slack13.1.txz\n\nUpdated package for Slackware 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware-13.37/patches/packages/irssi-0.8.21-i486-2_slack13.37.txz\n\nUpdated package for Slackware x86_64 13.37:\nftp://ftp.slackware.com/pub/slackware/slackware64-13.37/patches/packages/irssi-0.8.21-x86_64-2_slack13.37.txz\n\nUpdated package for Slackware 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/irssi-1.0.3-i486-1_slack14.0.txz\n\nUpdated package for Slackware x86_64 14.0:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/irssi-1.0.3-x86_64-1_slack14.0.txz\n\nUpdated package for Slackware 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/irssi-1.0.3-i486-1_slack14.1.txz\n\nUpdated package for Slackware x86_64 14.1:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/irssi-1.0.3-x86_64-1_slack14.1.txz\n\nUpdated package for Slackware 14.2:\nftp://ftp.slackware.com/pub/slackware/slackware-14.2/patches/packages/irssi-1.0.3-i586-1_slack14.2.txz\n\nUpdated package for Slackware x86_64 14.2:\nftp://ftp.slackware.com/pub/slackware/slackware64-14.2/patches/packages/irssi-1.0.3-x86_64-1_slack14.2.txz\n\nUpdated package for Slackware -current:\nftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/n/irssi-1.0.3-i586-1.txz\n\nUpdated package for Slackware x86_64 -current:\nftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/n/irssi-1.0.3-x86_64-1.txz\n\n\nMD5 signatures:\n\nSlackware 13.0 package:\n4ea7e2aba422913a28563d87fe8e3092 irssi-0.8.21-i486-2_slack13.0.txz\n\nSlackware x86_64 13.0 package:\n2fd312f29a76649bfde9efee6aa2e185 irssi-0.8.21-x86_64-2_slack13.0.txz\n\nSlackware 13.1 package:\n57ec48a4a8b343f96efdd305dd0fad46 irssi-0.8.21-i486-2_slack13.1.txz\n\nSlackware x86_64 13.1 package:\n66486f1767962cb649e848465c901faf irssi-0.8.21-x86_64-2_slack13.1.txz\n\nSlackware 13.37 package:\nc3e039c4efdbf12e1d51675e26dee1b2 irssi-0.8.21-i486-2_slack13.37.txz\n\nSlackware x86_64 13.37 package:\ne421825f78778d47a4cb40ccacefd617 irssi-0.8.21-x86_64-2_slack13.37.txz\n\nSlackware 14.0 package:\n762c8278fafaa02d632d8a6f9048de8f irssi-1.0.3-i486-1_slack14.0.txz\n\nSlackware x86_64 14.0 package:\nbbe7cc310e23dea4e9e65770203e2405 irssi-1.0.3-x86_64-1_slack14.0.txz\n\nSlackware 14.1 package:\na8ba3c7f2e58f7e8f6ddb048e7158cff irssi-1.0.3-i486-1_slack14.1.txz\n\nSlackware x86_64 14.1 package:\n889bae866fce57c8f9dbcd56f89e533a irssi-1.0.3-x86_64-1_slack14.1.txz\n\nSlackware 14.2 package:\ne3f23dc090945a0972af8afc3cb424a1 irssi-1.0.3-i586-1_slack14.2.txz\n\nSlackware x86_64 14.2 package:\n5592a9c00b8b44a7d7775842104e388f irssi-1.0.3-x86_64-1_slack14.2.txz\n\nSlackware -current package:\n90acd3b7d4d21f4aaecb029ade492aa9 n/irssi-1.0.3-i586-1.txz\n\nSlackware x86_64 -current package:\n1949ad49b2f401db6fbaed034f9b2066 n/irssi-1.0.3-x86_64-1.txz\n\n\nInstallation instructions:\n\nUpgrade the package as root:\n > upgradepkg irssi-1.0.3-i586-1_slack14.2.txz", "edition": 3, "reporter": "Slackware Linux Project", "published": "2017-06-07T15:44:20", "title": "irssi", "type": "slackware", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2017-06-07T15:44:20", "id": "SSA-2017-158-01", "href": "http://www.slackware.com/security/viewer.php?l=slackware-security&y=2017&m=slackware-security.541305", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "debian": [{"lastseen": "2017-06-18T18:14:50", "references": [], "affectedPackage": [{"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "0.8.17-1+deb8u4", "arch": "all", "packageName": "irssi-dbg", "packageFilename": "irssi-dbg_0.8.17-1+deb8u4_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "0.8.17-1+deb8u4", "arch": "all", "packageName": "irssi-dev", "packageFilename": "irssi-dev_0.8.17-1+deb8u4_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "9", "packageVersion": "1.0.2-1+deb9u1", "arch": "all", "packageName": "irssi", "packageFilename": "irssi_1.0.2-1+deb9u1_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "9", "packageVersion": "1.0.2-1+deb9u1", "arch": "all", "packageName": "irssi-dev", "packageFilename": "irssi-dev_1.0.2-1+deb9u1_all.deb", "operator": "lt"}, {"OS": "Debian GNU/Linux", "OSVersion": "8", "packageVersion": "0.8.17-1+deb8u4", "arch": "all", "packageName": "irssi", "packageFilename": "irssi_0.8.17-1+deb8u4_all.deb", "operator": "lt"}], "description": "Multiple vulnerabilities have been discovered in Irssi, a terminal based IRC client. The Common Vulnerabilities and Exposures project identifies the following problems:\n\n * [CVE-2017-9468](<https://security-tracker.debian.org/tracker/CVE-2017-9468>)\n\nJoseph Bisch discovered that Irssi does not properly handle DCC messages without source nick/host. A malicious IRC server can take advantage of this flaw to cause Irssi to crash, resulting in a denial of service.\n\n * [CVE-2017-9469](<https://security-tracker.debian.org/tracker/CVE-2017-9469>)\n\nJoseph Bisch discovered that Irssi does not properly handle receiving incorrectly quoted DCC files. A remote attacker can take advantage of this flaw to cause Irssi to crash, resulting in a denial of service.\n\nFor the oldstable distribution (jessie), these problems have been fixed in version 0.8.17-1+deb8u4.\n\nFor the stable distribution (stretch), these problems have been fixed in version 1.0.2-1+deb9u1.\n\nFor the unstable distribution (sid), these problems have been fixed in version 1.0.3-1.\n\nWe recommend that you upgrade your irssi packages.", "edition": 1, "reporter": "Debian", "published": "2017-06-18T00:00:00", "title": "irssi -- security update", "type": "debian", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2017-06-18T00:00:00", "href": "http://www.debian.org/security/dsa-3885", "id": "DSA-3885", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "freebsd": [{"lastseen": "2018-08-31T01:13:58", "references": ["https://irssi.org/security/irssi_sa_2017_06.txt"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.0.3", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "irssi", "operator": "lt"}], "description": "\nJoseph Bisch reports:\n\nWhen receiving a DCC message without source nick/host, Irssi would\n\t attempt to dereference a NULL pointer.\nWhen receiving certain incorrectly quoted DCC files, Irssi would\n\t try to find the terminating quote one byte before the allocated\n\t memory.\n\n", "edition": 4, "reporter": "FreeBSD", "published": "2017-06-06T00:00:00", "title": "irssi -- remote DoS", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2017-06-06T00:00:00", "id": "165E8951-4BE0-11E7-A539-0050569F7E80", "href": "https://vuxml.freebsd.org/freebsd/165e8951-4be0-11e7-a539-0050569f7e80.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}], "ubuntu": [{"lastseen": "2018-08-31T00:09:09", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9468", "https://people.canonical.com/~ubuntu-security/cve/CVE-2017-9469"], "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "16.10", "packageVersion": "0.8.19-1ubuntu2.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "irssi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "14.04", "packageVersion": "0.8.15-5ubuntu3.2", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "irssi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "17.04", "packageVersion": "0.8.20-2ubuntu2.1", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "irssi", "operator": "lt"}, {"OS": "Ubuntu", "OSVersion": "16.04", "packageVersion": "0.8.19-1ubuntu1.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "irssi", "operator": "lt"}], "description": "It was discovered that Irssi incorrectly handled certain DCC messages. A malicious IRC server could use this issue to cause Irssi to crash, resulting in a denial of service. (CVE-2017-9468)\n\nJoseph Bisch discovered that Irssi incorrectly handled receiving incorrectly quoted DCC files. A remote attacker could possibly use this issue to cause Irssi to crash, resulting in a denial of service. (CVE-2017-9469)", "edition": 3, "reporter": "Ubuntu", "published": "2017-06-12T00:00:00", "title": "Irssi vulnerabilities", "type": "ubuntu", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2017-9468", "CVE-2017-9469"], "modified": "2017-06-12T00:00:00", "id": "USN-3317-1", "href": "https://usn.ubuntu.com/3317-1/", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}]}
