Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2021 Tenable Network Security, Inc.MANDRIVA_MDVSA-2011-137.NASL
HistorySep 29, 2011 - 12:00 a.m.

Mandriva Linux Security Advisory : openssl (MDVSA-2011:137)

2011-09-2900:00:00
This script is Copyright (C) 2011-2021 Tenable Network Security, Inc.
www.tenable.com
23
JSON

Multiple vulnerabilities has been discovered and corrected in openssl :

The elliptic curve cryptography (ECC) subsystem in OpenSSL 1.0.0d and earlier, when the Elliptic Curve Digital Signature Algorithm (ECDSA) is used for the ECDHE_ECDSA cipher suite, does not properly implement curves over binary fields, which makes it easier for context-dependent attackers to determine private keys via a timing attack and a lattice calculation (CVE-2011-1945).

crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not initialize certain structure members, which makes it easier for remote attackers to bypass CRL validation by using a nextUpdate value corresponding to a time in the past (CVE-2011-3207).

The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8s and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages, which allows remote attackers to cause a denial of service (application crash) via out-of-order messages that violate the TLS protocol (CVE-2011-3210).

Packages for 2009.0 are provided as of the Extended Maintenance Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149 products_id=490

The updated packages have been patched to correct these issues.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandriva Linux Security Advisory MDVSA-2011:137. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(56325);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2011-1945", "CVE-2011-3207", "CVE-2011-3210");
  script_bugtraq_id(47888, 49469, 49471);
  script_xref(name:"MDVSA", value:"2011:137");

  script_name(english:"Mandriva Linux Security Advisory : openssl (MDVSA-2011:137)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandriva Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Multiple vulnerabilities has been discovered and corrected in 
openssl :

The elliptic curve cryptography (ECC) subsystem in OpenSSL 1.0.0d and
earlier, when the Elliptic Curve Digital Signature Algorithm (ECDSA)
is used for the ECDHE_ECDSA cipher suite, does not properly implement
curves over binary fields, which makes it easier for context-dependent
attackers to determine private keys via a timing attack and a lattice
calculation (CVE-2011-1945).

crypto/x509/x509_vfy.c in OpenSSL 1.0.x before 1.0.0e does not
initialize certain structure members, which makes it easier for remote
attackers to bypass CRL validation by using a nextUpdate value
corresponding to a time in the past (CVE-2011-3207).

The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through
0.9.8s and 1.0.x before 1.0.0e does not ensure thread safety during
processing of handshake messages, which allows remote attackers to
cause a denial of service (application crash) via out-of-order
messages that violate the TLS protocol (CVE-2011-3210).

Packages for 2009.0 are provided as of the Extended Maintenance
Program. Please visit this link to learn more:
http://store.mandriva.com/product_info.php?cPath=149 products_id=490

The updated packages have been patched to correct these issues."
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl-engines1.0.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl-static-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl1.0.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl1.0.0-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl1.0.0-static-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libopenssl-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libopenssl-engines1.0.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libopenssl-static-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libopenssl1.0.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libopenssl1.0.0-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:libopenssl1.0.0-static-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:openssl");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2010.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:linux:2011");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/09/28");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/09/29");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2011-2021 Tenable Network Security, Inc.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK2010.1", cpu:"x86_64", reference:"lib64openssl-engines1.0.0-1.0.0a-1.8mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", cpu:"x86_64", reference:"lib64openssl1.0.0-1.0.0a-1.8mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", cpu:"x86_64", reference:"lib64openssl1.0.0-devel-1.0.0a-1.8mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", cpu:"x86_64", reference:"lib64openssl1.0.0-static-devel-1.0.0a-1.8mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", cpu:"i386", reference:"libopenssl-engines1.0.0-1.0.0a-1.8mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", cpu:"i386", reference:"libopenssl1.0.0-1.0.0a-1.8mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", cpu:"i386", reference:"libopenssl1.0.0-devel-1.0.0a-1.8mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", cpu:"i386", reference:"libopenssl1.0.0-static-devel-1.0.0a-1.8mdv2010.2", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2010.1", reference:"openssl-1.0.0a-1.8mdv2010.2", yank:"mdv")) flag++;

if (rpm_check(release:"MDK2011", cpu:"x86_64", reference:"lib64openssl-devel-1.0.0d-2.1-mdv2011.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2011", cpu:"x86_64", reference:"lib64openssl-engines1.0.0-1.0.0d-2.1-mdv2011.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2011", cpu:"x86_64", reference:"lib64openssl-static-devel-1.0.0d-2.1-mdv2011.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2011", cpu:"x86_64", reference:"lib64openssl1.0.0-1.0.0d-2.1-mdv2011.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2011", cpu:"i386", reference:"libopenssl-devel-1.0.0d-2.1-mdv2011.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2011", cpu:"i386", reference:"libopenssl-engines1.0.0-1.0.0d-2.1-mdv2011.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2011", cpu:"i386", reference:"libopenssl-static-devel-1.0.0d-2.1-mdv2011.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2011", cpu:"i386", reference:"libopenssl1.0.0-1.0.0d-2.1-mdv2011.0", yank:"mdv")) flag++;
if (rpm_check(release:"MDK2011", reference:"openssl-1.0.0d-2.1-mdv2011.0", yank:"mdv")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxlibopenssl-develp-cpe:/a:mandriva:linux:libopenssl-devel
mandrivalinuxlibopenssl-engines1.0.0p-cpe:/a:mandriva:linux:libopenssl-engines1.0.0
mandrivalinuxlibopenssl-static-develp-cpe:/a:mandriva:linux:libopenssl-static-devel
mandrivalinuxlibopenssl1.0.0p-cpe:/a:mandriva:linux:libopenssl1.0.0
mandrivalinuxlibopenssl1.0.0-develp-cpe:/a:mandriva:linux:libopenssl1.0.0-devel
mandrivalinuxlibopenssl1.0.0-static-develp-cpe:/a:mandriva:linux:libopenssl1.0.0-static-devel
mandrivalinuxopensslp-cpe:/a:mandriva:linux:openssl
mandrivalinux2010.1cpe:/o:mandriva:linux:2010.1
mandrivalinux2011cpe:/o:mandriva:linux:2011
mandrivalinuxlib64openssl-develp-cpe:/a:mandriva:linux:lib64openssl-devel
Rows per page:
1-10 of 151

Related

openvas 33
nessus 33
securityvulns 4
freebsd 1
debian 2
altlinux 5
checkpoint_advisories 2
cve 3
oraclelinux 6
redhat 1
prion 3
openssl 2
veracode 1
f5 6
fedora 8
amazon 1
debiancve 3
ubuntucve 3
osv 1
cert 1
ubuntu 1
ibm 8
gentoo 2
lenovo 2
openvas
openvas
Mandriva Update for openssl MDVSA-2011:137 (openssl)
2011-09-30 00:00:00
Mandriva Update for openssl MDVSA-2011:137 (openssl)
2011-09-30 00:00:00
FreeBSD Ports: openssl
2011-09-21 00:00:00
nessus
nessus
OpenSSL 1.x < 1.0.0e Multiple Vulnerabilities
2011-09-12 00:00:00
FreeBSD : OpenSSL -- multiple vulnerabilities (2ecb7b20-d97e-11e0-b2e2-00215c6a37bb)
2011-09-08 00:00:00
OpenSSL 1.x < 1.0.0e Multiple Vulnerabilities
2011-09-06 00:00:00
securityvulns
securityvulns
OpenSSL security vulnerabilities
2011-10-16 00:00:00
DigiNotar fraudulent certificates
2011-09-16 00:00:00
[SECURITY] [DSA 2309-1] openssl security update
2011-09-16 00:00:00
freebsd
freebsd
OpenSSL -- multiple vulnerabilities
2011-09-06 00:00:00
debian
debian
[BSA-060] Security Update for openssl
2011-11-14 04:20:38
[SECURITY] [DSA 2309-1] openssl security update
2011-09-13 22:59:43
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl10 version 1.0.0e-alt1
2011-09-12 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 1.0.0e-alt1
2011-09-12 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.0e-alt1
2011-09-12 00:00:00
checkpoint_advisories
checkpoint_advisories
OpenSSL Handshake Sequence Cipher Suite Use-After-Free (CVE-2011-3210)
2012-05-14 00:00:00
OpenSSL Handshake Requests ECDH Use-After-Free (CVE-2011-3210)
2012-05-14 00:00:00
cve
cve
CVE-2011-3210
2011-09-22 10:55:00
CVE-2011-3207
2011-09-22 10:55:00
CVE-2011-1945
2011-05-31 20:55:00
oraclelinux
oraclelinux
openssl security update
2011-10-26 00:00:00
openssl-fips security update
2015-04-02 00:00:00
openssl security update
2016-09-27 00:00:00
redhat
redhat
(RHSA-2011:1409) Moderate: openssl security update
2011-10-26 00:00:00
prion
prion
Design/Logic Flaw
2011-09-22 10:55:00
Code injection
2011-09-22 10:55:00
Code injection
2011-05-31 20:55:00
openssl
openssl
Vulnerability in OpenSSL CVE-2011-3207
2011-09-06 00:00:00
Vulnerability in OpenSSL CVE-2011-3210
2011-09-06 00:00:00
veracode
veracode
CRL Validation Bypass
2020-04-10 01:07:24
f5
f5
K15318 : OpenSSL vulnerability CVE-2011-3207
2014-06-05 00:00:00
SOL15318 - OpenSSL vulnerability CVE-2011-3207
2014-06-05 00:00:00
K12998 : OpenSSL vulnerability CVE-2011-1945
2014-07-25 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: openssl-1.0.0e-1.fc16
2011-09-11 01:45:41
[SECURITY] Fedora 15 Update: openssl-1.0.0g-1.fc15
2012-01-24 07:55:34
[SECURITY] Fedora 14 Update: openssl-1.0.0e-1.fc14
2011-09-10 23:55:13
amazon
amazon
Medium: openssl
2011-10-10 23:40:00
debiancve
debiancve
CVE-2011-3207
2011-09-22 10:55:00
CVE-2011-3210
2011-09-22 10:55:00
CVE-2011-1945
2011-05-31 20:55:00
ubuntucve
ubuntucve
CVE-2011-3207
2011-09-22 00:00:00
CVE-2011-3210
2011-09-22 00:00:00
CVE-2011-1945
2011-05-31 00:00:00
osv
osv
openssl - compromised certificate authority
2011-09-13 00:00:00
cert
cert
OpenSSL leaks ECDSA private key through a remote timing attack
2011-05-17 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2012-02-09 00:00:00
ibm
ibm
Security Bulletin: IBM XIV Storage System Gen3 (CVE-2011-4619, CVE-2011-4576, CVE-2011-3210, CVE-2012-4829)
2022-09-26 04:23:14
Security Bulletin: Tivoli Management Framework affected by vulnerabilities in OpenSSL versions prior to 1.0.0
2022-09-25 23:13:40
Security Bulletin: Storage HMC OpenSSL upgrade to address cryptographic vulnerabilities.
2018-06-18 00:07:41
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2011-10-09 00:00:00
OpenSSL: Multiple Vulnerabilities
2013-12-03 00:00:00
lenovo
lenovo
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
JSON
Related for MANDRIVA_MDVSA-2011-137.NASL
openvas33nessus33securityvulns4freebsd1debian2altlinux5checkpoint_advisories2cve3oraclelinux6redhat1prion3openssl2veracode1f56fedora8amazon1debiancve3ubuntucve3osv1cert1ubuntu1ibm8gentoo2lenovo2