Lucene search

HistoryJul 24, 2018 - 12:00 a.m.

Fedora 27 : libtomcrypt (2018-39e0872379)

2018-07-2400:00:00

www.tenable.com

130

JSON

Fix Side Channel Based ECDSA Key Extraction (CVE-2018-12437) (PR #408)
- Fix potential stack overflow when DER flexi-decoding (CVE-2018-0739) (PR #373)
- Fix two-key 3DES (PR #390)
- Fix accelerated CTR mode (PR #359)
- Fix Fortuna PRNG (PR #363)
- Fix compilation on platforms where cc doesn’t point to gcc (PR #382)
- Fix using the wrong environment variable LT instead of LIBTOOL (PR #392)
- Fix build on platforms where the compiler provides WCHAR_MAX but wchar.h is not available (PR #390)
- Fix & re-factor crypt_list_all_sizes() and crypt_list_all_constants() (PR #414)
- Minor fixes (PR’s #350 #351 #375 #377 #378 #379)

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory FEDORA-2018-39e0872379.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(111238);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2018-0739", "CVE-2018-12437");
  script_xref(name:"FEDORA", value:"2018-39e0872379");

  script_name(english:"Fedora 27 : libtomcrypt (2018-39e0872379)");
  script_summary(english:"Checks rpm output for the updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - Fix Side Channel Based ECDSA Key Extraction
    (CVE-2018-12437) (PR #408)

  - Fix potential stack overflow when DER flexi-decoding
    (CVE-2018-0739) (PR #373)

  - Fix two-key 3DES (PR #390)

  - Fix accelerated CTR mode (PR #359)

  - Fix Fortuna PRNG (PR #363)

  - Fix compilation on platforms where cc doesn't point to
    gcc (PR #382)

  - Fix using the wrong environment variable LT instead of
    LIBTOOL (PR #392)

  - Fix build on platforms where the compiler provides
    WCHAR_MAX but wchar.h is not available (PR #390)

  - Fix & re-factor crypt_list_all_sizes() and
    crypt_list_all_constants() (PR #414)

  - Minor fixes (PR's #350 #351 #375 #377 #378 #379)

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bodhi.fedoraproject.org/updates/FEDORA-2018-39e0872379"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected libtomcrypt package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:libtomcrypt");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:27");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/03/27");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/07/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/07/24");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! preg(pattern:"^27([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 27", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);


flag = 0;
if (rpm_check(release:"FC27", reference:"libtomcrypt-1.18.2-1.fc27")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libtomcrypt");
}

VendorProductVersionCPE
fedoraprojectfedoralibtomcryptp-cpe:/a:fedoraproject:fedora:libtomcrypt
fedoraprojectfedora27cpe:/o:fedoraproject:fedora:27

Vendor	Product	Version	CPE
fedoraproject	fedora	libtomcrypt	p-cpe:/a:fedoraproject:fedora:libtomcrypt
fedoraproject	fedora	27	cpe:/o:fedoraproject:fedora:27

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0739

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12437

bodhi.fedoraproject.org/updates/FEDORA-2018-39e0872379

JSON

Related for FEDORA_2018-39E0872379.NASL