Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2019-4C3CE3AA5C.NASL
HistoryNov 21, 2019 - 12:00 a.m.

Fedora 31 : systemd (2019-4c3ce3aa5c)

2019-11-2100:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.9%

JSON

  • Latest bugfix release. Systemd-stable snapshots will now be numbered.

    • Fix broken PrivateDevices filter on big-endian, s390x in particular (#1769148)

    • systemd-modules-load.service should only warn, not fail, on error (#1254340)

    • Fix incorrect certificate validation with DNS over TLS (#1771725, #1771726, CVE-2018-21029)

    • Fix regression with crypttab keys with colons

    • Various memleaks and minor memory access issues, warning adjustments

No need to log out or reboot.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory FEDORA-2019-4c3ce3aa5c.
#

include('compat.inc');

if (description)
{
  script_id(131168);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/10");

  script_cve_id("CVE-2018-21029");
  script_xref(name:"FEDORA", value:"2019-4c3ce3aa5c");

  script_name(english:"Fedora 31 : systemd (2019-4c3ce3aa5c)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Fedora host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"- Latest bugfix release. Systemd-stable snapshots will now
    be numbered.

  - Fix broken PrivateDevices filter on big-endian, s390x in
    particular (#1769148)

  - systemd-modules-load.service should only warn, not fail,
    on error (#1254340)

  - Fix incorrect certificate validation with DNS over TLS
    (#1771725, #1771726, CVE-2018-21029)

  - Fix regression with crypttab keys with colons

  - Various memleaks and minor memory access issues, warning
    adjustments

No need to log out or reboot.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues.");
  script_set_attribute(attribute:"see_also", value:"https://bodhi.fedoraproject.org/updates/FEDORA-2019-4c3ce3aa5c");
  script_set_attribute(attribute:"solution", value:
"Update the affected systemd package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-21029");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/10/30");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/11/21");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/11/21");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:systemd");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:31");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Fedora Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! preg(pattern:"^31([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 31", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);


flag = 0;
if (rpm_check(release:"FC31", reference:"systemd-243.4-1.fc31")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "systemd");
}
VendorProductVersionCPE
fedoraprojectfedorasystemdp-cpe:/a:fedoraproject:fedora:systemd
fedoraprojectfedora31cpe:/o:fedoraproject:fedora:31

Related

ubuntucve 1
symantec 1
fedora 1
redhatcve 1
prion 1
nvd 1
debiancve 1
cvelist 1
cbl_mariner 1
openvas 1
cve 1
ubuntucve
ubuntucve
CVE-2018-21029
2019-10-30 00:00:00
symantec
symantec
systemd CVE-2018-21029 Certificate Validation Security Bypass Vulnerability
2019-10-30 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: systemd-243.4-1.fc31
2019-11-21 01:27:06
redhatcve
redhatcve
CVE-2018-21029
2019-11-12 20:37:25
prion
prion
Input validation
2019-10-30 22:15:00
nvd
nvd
CVE-2018-21029
2019-10-30 22:15:10
debiancve
debiancve
CVE-2018-21029
2019-10-30 22:15:10
cvelist
cvelist
CVE-2018-21029
2019-10-30 21:46:51
cbl_mariner
cbl_mariner
CVE-2018-21029 affecting package systemd 239-44
2020-09-09 06:09:21
openvas
openvas
Fedora Update for systemd FEDORA-2019-4c3ce3aa5c
2020-01-09 00:00:00
cve
cve
CVE-2018-21029
2019-10-30 22:15:10

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.5 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.9%

JSON
Related for FEDORA_2019-4C3CE3AA5C.NASL
ubuntucve1symantec1fedora1redhatcve1prion1nvd1debiancve1cvelist1cbl_mariner1openvas1cve1