Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2023-9FB10D880D.NASLHistoryMar 10, 2023 - 12:00 a.m.
Fedora 38 : strongswan (2023-9fb10d880d)
2023-03-1000:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
23
fedora 38 host
strongswan
tls
certificate verification
denial of service
remote code execution
cve-2023-26463
nessus
vulnerability
0.008 Low
EPSS
Percentile
81.5%
The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2023-9fb10d880d advisory.
- strongSwan reports: A vulnerability related to certificate verification in TLS-based EAP methods was discovered in strongSwan that results in a denial of service but possibly even remote code execution. Versions 5.9.8 and 5.9.9 may be affected. (CVE-2023-26463)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory FEDORA-2023-9fb10d880d
#
include('compat.inc');
if (description)
{
script_id(172459);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/08/30");
script_cve_id("CVE-2023-26463");
script_xref(name:"FEDORA", value:"2023-9fb10d880d");
script_name(english:"Fedora 38 : strongswan (2023-9fb10d880d)");
script_set_attribute(attribute:"synopsis", value:
"The remote Fedora host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote Fedora 38 host has a package installed that is affected by a vulnerability as referenced in the
FEDORA-2023-9fb10d880d advisory.
- strongSwan reports: A vulnerability related to certificate verification in TLS-based EAP methods
was discovered in strongSwan that results in a denial of service but possibly even remote
code execution. Versions 5.9.8 and 5.9.9 may be affected. (CVE-2023-26463)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bodhi.fedoraproject.org/updates/FEDORA-2023-9fb10d880d");
script_set_attribute(attribute:"solution", value:
"Update the affected strongswan package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-26463");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/03/02");
script_set_attribute(attribute:"patch_publication_date", value:"2023/03/02");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/03/10");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:38");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:strongswan");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Fedora Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Fedora' >!< os_release) audit(AUDIT_OS_NOT, 'Fedora');
var os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Fedora');
os_ver = os_ver[1];
if (! preg(pattern:"^38([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'Fedora 38', 'Fedora ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Fedora', cpu);
var pkgs = [
{'reference':'strongswan-5.9.10-1.fc38', 'release':'FC38', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (reference && _release) {
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'strongswan');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fedoraproject | fedora | 38 | cpe:/o:fedoraproject:fedora:38 |
| fedoraproject | fedora | strongswan | p-cpe:/a:fedoraproject:fedora:strongswan |
Related
debiancve
debiancve
CVE-2023-26463
2023-04-15 00:15:07
cvelist
cvelist
CVE-2023-26463
2023-04-14 00:00:00
ubuntucve
ubuntucve
CVE-2023-26463
2023-03-02 00:00:00
redos
redos
ROS-20240617-01
2024-06-17 00:00:00
nessus
nessus
FreeBSD : strongSwan -- certificate verification vulnerability (3f9b6943-ba58-11ed-bbbd-00e0670f2660)
2023-03-05 00:00:00
Fedora 37 : strongswan (2023-25800591ef)
2023-03-11 00:00:00
GLSA-202405-08 : strongSwan: Multiple Vulnerabilities
2024-05-04 00:00:00
fedora
fedora
[SECURITY] Fedora 37 Update: strongswan-5.9.10-1.fc37
2023-03-11 04:29:15
[SECURITY] Fedora 38 Update: strongswan-5.9.10-1.fc38
2023-03-11 03:58:24
osv
osv
CVE-2023-26463
2023-04-15 00:15:07
openvas
openvas
Fedora: Security Advisory for strongswan (FEDORA-2023-9fb10d880d)
2023-03-12 00:00:00
strongSwan 5.9.8 < 5.9.10 DoS Vulnerability
2023-04-18 00:00:00
Fedora: Security Advisory for strongswan (FEDORA-2023-25800591ef)
2023-03-12 00:00:00
nvd
nvd
CVE-2023-26463
2023-04-15 00:15:07
freebsd
freebsd
strongSwan -- certificate verification vulnerability
2023-03-02 00:00:00
cbl_mariner
cbl_mariner
CVE-2023-26463 affecting package strongswan for versions less than 5.9.10-1
2023-05-25 09:38:10
cve
cve
CVE-2023-26463
2023-04-15 00:15:07
alpinelinux
alpinelinux
CVE-2023-26463
2023-04-15 00:15:07
prion
prion
Null pointer dereference
2023-04-15 00:15:00
veracode
veracode
Denial Of Service (DoS)
2023-03-09 18:05:55
photon
photon
Critical Photon OS Security Update - PHSA-2023-4.0-0366
2023-03-30 00:00:00
Critical Photon OS Security Update - PHSA-2023-5.0-0010
2023-05-23 00:00:00
gentoo
gentoo
strongSwan: Multiple Vulnerabilities
2024-05-04 00:00:00