Search...

MDKA-2006:024 : gzip

2007-02-18T00:00:00

ID MANDRAKE_MDKA-2006-024.NASL
Type nessus
Reporter Tenable
Modified 2012-09-07T00:00:00

Description

The zgrep wrapper script does not correctly pass all available options that grep accepts to the grep binary.

Updated packages have been patched to correct this issue.

                                        
                                            # @DEPRECATED@
#
# This script has been deprecated as the associated patch is not
# currently a security fix.
#
# Disabled on 2012/09/06.
#

#
# (C) Tenable Network Security, Inc.
#
# This script was automatically generated from
# Mandrake Linux Security Advisory MDKA-2006:024.
#

if (!defined_func("bn_random")) exit(0);

include("compat.inc");

if (description)
{
  script_id(24506);
  script_version ("$Revision: 1.9 $"); 
  script_cvs_date("$Date: 2012/09/07 00:23:59 $");

  script_name(english:"MDKA-2006:024 : gzip");
  script_summary(english:"Checks for patch(es) in 'rpm -qa' output");

  script_set_attribute(attribute:"synopsis", value: 
"The remote Mandrake host is missing one or more security-related
patches.");
  script_set_attribute(attribute:"description", value:
"The zgrep wrapper script does not correctly pass all available
options that grep accepts to the grep binary.

Updated packages have been patched to correct this issue.");
  script_set_attribute(attribute:"see_also", value:"http://www.mandriva.com/security/advisories?name=MDKA-2006:024");
  script_set_attribute(attribute:"solution", value:"Update the affected package(s).");
  script_set_attribute(attribute:"risk_factor", value:"High");
  script_set_attribute(attribute:"patch_publication_date", value:"2006/05/09");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux");
  script_set_attribute(attribute:"plugin_type", value:"local");
 script_set_attribute(attribute:"plugin_publication_date", value: "2007/02/18");
  script_end_attributes();
 
  script_category(ACT_GATHER_INFO);
  script_family(english:"Mandriva Local Security Checks");
 
  script_copyright(english:"This script is Copyright (C) 2007-2011 Tenable Network Security, Inc.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}

# Deprecated.
exit(0, "The associated patch is not currently a security fix.");


include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) exit(0, "Local checks are not enabled.");
if (!get_kb_item("Host/Mandrake/release")) exit(0, "The host is not running Mandrake Linux.");
if (!get_kb_item("Host/Mandrake/rpm-list")) exit(1, "Could not get the list of packages.");

flag = 0;

if (rpm_check(reference:"gzip-1.2.4a-14.3.102mdk", release:"MDK10.2", cpu:"i386", yank:"mdk")) flag++;

if (rpm_check(reference:"gzip-1.2.4a-15.2.20060mdk", release:"MDK2006.0", cpu:"i386", yank:"mdk")) flag++;


if (flag)
{
  if (report_verbosity &gt; 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else 
{
  exit(0, "The host is not affected.");
}

JSON Vulners Source

Initial Source

{"published": "2007-02-18T00:00:00", "id": "MANDRAKE_MDKA-2006-024.NASL", "cvss": {"score": 0.0, "vector": "NONE"}, "description": "The zgrep wrapper script does not correctly pass all available options that grep accepts to the grep binary.\n\nUpdated packages have been patched to correct this issue.", "enchantments": {"score": {"value": -0.1, "vector": "NONE", "modified": "2017-10-29T13:43:16", "rev": 2}, "dependencies": {"references": [{"type": "nessus", "idList": ["MANDRAKE_MDKA-2007-024.NASL"]}], "modified": "2017-10-29T13:43:16", "rev": 2}, "vulnersScore": -0.1}, "type": "nessus", "pluginID": "24506", "lastseen": "2017-10-29T13:43:16", "edition": 2, "cpe": ["cpe:/o:mandriva:linux"], "title": "MDKA-2006:024 : gzip", "href": "https://www.tenable.com/plugins/index.php?view=single&id=24506", "modified": "2012-09-07T00:00:00", "bulletinFamily": "scanner", "viewCount": 0, "cvelist": [], "references": ["http://www.mandriva.com/security/advisories?name=MDKA-2006:024"], "naslFamily": "Mandriva Local Security Checks", "reporter": "Tenable", "sourceData": "# @DEPRECATED@\n#\n# This script has been deprecated as the associated patch is not\n# currently a security fix.\n#\n# Disabled on 2012/09/06.\n#\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# This script was automatically generated from\n# Mandrake Linux Security Advisory MDKA-2006:024.\n#\n\nif (!defined_func(\"bn_random\")) exit(0);\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(24506);\n script_version (\"$Revision: 1.9 $\"); \n script_cvs_date(\"$Date: 2012/09/07 00:23:59 $\");\n\n script_name(english:\"MDKA-2006:024 : gzip\");\n script_summary(english:\"Checks for patch(es) in 'rpm -qa' output\");\n\n script_set_attribute(attribute:\"synopsis\", value: \n\"The remote Mandrake host is missing one or more security-related\npatches.\");\n script_set_attribute(attribute:\"description\", value:\n\"The zgrep wrapper script does not correctly pass all available\noptions that grep accepts to the grep binary.\n\nUpdated packages have been patched to correct this issue.\");\n script_set_attribute(attribute:\"see_also\", value:\"http://www.mandriva.com/security/advisories?name=MDKA-2006:024\");\n script_set_attribute(attribute:\"solution\", value:\"Update the affected package(s).\");\n script_set_attribute(attribute:\"risk_factor\", value:\"High\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/05/09\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux\");\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"plugin_publication_date\", value: \"2007/02/18\");\n script_end_attributes();\n \n script_category(ACT_GATHER_INFO);\n script_family(english:\"Mandriva Local Security Checks\");\n \n script_copyright(english:\"This script is Copyright (C) 2007-2011 Tenable Network Security, Inc.\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n# Deprecated.\nexit(0, \"The associated patch is not currently a security fix.\");\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/Mandrake/release\")) exit(0, \"The host is not running Mandrake Linux.\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) exit(1, \"Could not get the list of packages.\");\n\nflag = 0;\n\nif (rpm_check(reference:\"gzip-1.2.4a-14.3.102mdk\", release:\"MDK10.2\", cpu:\"i386\", yank:\"mdk\")) flag++;\n\nif (rpm_check(reference:\"gzip-1.2.4a-15.2.20060mdk\", release:\"MDK2006.0\", cpu:\"i386\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse \n{\n exit(0, \"The host is not affected.\");\n}\n", "immutableFields": []}

MDKA-2006:024 : gzip

Description

The zgrep wrapper script does not correctly pass all available options that grep accepts to the grep binary. Updated packages have been patched to correct this issue.

The zgrep wrapper script does not correctly pass all available options that grep accepts to the grep binary.

Updated packages have been patched to correct this issue.