Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2024-0C063BE1CC.NASLHistoryAug 11, 2024 - 12:00 a.m.
Fedora 39 : frr (2024-0c063be1cc)
2024-08-1100:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
2
fedora 39
frr
security updates
cve-2024-31948
cve-2024-31950
cve-2024-31951
vulnerability
nessus
package
update
cvss
exploitability
publication date
rpm-list
x86_64
i386
s390
aarch64
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
7.3
Confidence
Low
The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-0c063be1cc advisory.
New version 8.5.5
Tenable has extracted the preceding description block directly from the Fedora security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory FEDORA-2024-0c063be1cc
#
include('compat.inc');
if (description)
{
script_id(205354);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/08/11");
script_cve_id("CVE-2024-31948", "CVE-2024-31950", "CVE-2024-31951");
script_xref(name:"FEDORA", value:"2024-0c063be1cc");
script_name(english:"Fedora 39 : frr (2024-0c063be1cc)");
script_set_attribute(attribute:"synopsis", value:
"The remote Fedora host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the
FEDORA-2024-0c063be1cc advisory.
New version 8.5.5
Tenable has extracted the preceding description block directly from the Fedora security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bodhi.fedoraproject.org/updates/FEDORA-2024-0c063be1cc");
script_set_attribute(attribute:"solution", value:
"Update the affected frr package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-31951");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2024-31948");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2024/04/07");
script_set_attribute(attribute:"patch_publication_date", value:"2024/08/01");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/08/11");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:39");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:frr");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Fedora Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Fedora' >!< os_release) audit(AUDIT_OS_NOT, 'Fedora');
var os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Fedora');
os_ver = os_ver[1];
if (! preg(pattern:"^39([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'Fedora 39', 'Fedora ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Fedora', cpu);
var pkgs = [
{'reference':'frr-8.5.5-1.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (reference && _release) {
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'frr');
}
Related
openvas
openvas
Fedora: Security Advisory (FEDORA-2024-0c063be1cc)
2024-08-11 00:00:00
Ubuntu: Security Advisory (USN-6794-1)
2024-05-29 00:00:00
openSUSE: Security Advisory for frr (SUSE-SU-2024:1971-1)
2024-06-12 00:00:00
fedora
fedora
[SECURITY] Fedora 39 Update: frr-8.5.5-1.fc39
2024-08-11 03:30:22
[SECURITY] Fedora 40 Update: frr-9.1.1-1.fc40
2024-08-09 02:54:34
nessus
nessus
Ubuntu 22.04 LTS / 23.10 / 24.04 LTS : FRR vulnerabilities (USN-6794-1)
2024-05-28 00:00:00
Fedora 40 : frr (2024-e60ca8feb0)
2024-08-09 00:00:00
ubuntu
ubuntu
FRR vulnerabilities
2024-05-28 00:00:00
FRR vulnerabilities
2024-06-05 00:00:00
osv
osv
frr vulnerabilities
2024-05-28 15:29:21
CVE-2024-31951
2024-04-07 21:15:07
CVE-2024-31950
2024-04-07 21:15:07
redos
redos
ROS-20240904-01
2024-09-04 00:00:00
freebsd
freebsd
frr - Multiple vulnerabilities
2024-04-07 00:00:00
veracode
veracode
Buffer Overflow
2024-04-25 07:50:10
Buffer Overflow
2024-04-18 07:09:45
Denial Of Service (DoS)
2024-04-19 10:34:10
vulnrichment
vulnrichment
cve
cve
debiancve
debiancve
ubuntucve
ubuntucve
redhatcve
redhatcve
cvelist
cvelist
nvd
nvd
cbl_mariner
cbl_mariner
CVE-2024-31950 affecting package frr for versions less than 8.5.5-2
2024-08-26 16:33:47
CVE-2024-31951 affecting package frr for versions less than 8.5.5-2
2024-08-26 16:33:47
debian
debian
[SECURITY] [DLA 3797-1] frr security update
2024-04-28 06:30:09
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
AI Score
7.3
Confidence
Low
Related for FEDORA_2024-0C063BE1CC.NASL