Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.MANDRIVA_MDVSA-2014-073.NASL
HistoryApr 10, 2014 - 12:00 a.m.

Mandriva Linux Security Advisory : file (MDVSA-2014:073)

2014-04-1000:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
JSON

Updated file packages fix security vulnerabilities :

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters (CVE-2013-7345).

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandriva Linux Security Advisory MDVSA-2014:073. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(73448);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2013-7345");
  script_bugtraq_id(66406);
  script_xref(name:"MDVSA", value:"2014:073");

  script_name(english:"Mandriva Linux Security Advisory : file (MDVSA-2014:073)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Mandriva Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated file packages fix security vulnerabilities :

The BEGIN regular expression in the awk script detector in
magic/Magdir/commands in file before 5.15 uses multiple wildcards with
unlimited repetitions, which allows context-dependent attackers to
cause a denial of service (CPU consumption) via a crafted ASCII file
that triggers a large amount of backtracking, as demonstrated via a
file with many newline characters (CVE-2013-7345)."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://advisories.mageia.org/MGASA-2014-0142.html"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:file");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64magic-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64magic-static-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64magic1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:python-magic");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:business_server:1");

  script_set_attribute(attribute:"patch_publication_date", value:"2014/04/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/04/10");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Mandriva Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"file-5.12-1.1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64magic-devel-5.12-1.1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64magic-static-devel-5.12-1.1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64magic1-5.12-1.1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", reference:"python-magic-5.12-1.1.mbs1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxfilep-cpe:/a:mandriva:linux:file
mandrivalinuxlib64magic-develp-cpe:/a:mandriva:linux:lib64magic-devel
mandrivalinuxlib64magic-static-develp-cpe:/a:mandriva:linux:lib64magic-static-devel
mandrivalinuxlib64magic1p-cpe:/a:mandriva:linux:lib64magic1
mandrivalinuxpython-magicp-cpe:/a:mandriva:linux:python-magic
mandrivabusiness_server1cpe:/o:mandriva:business_server:1

Related

nessus 36
prion 2
mageia 4
amazon 6
openvas 35
f5 2
cve 2
slackware 1
gentoo 2
securityvulns 4
debiancve 2
ubuntucve 2
veracode 4
fedora 6
freebsd 1
osv 3
freebsd_advisory 1
debian 5
ubuntu 1
redhat 2
oraclelinux 3
centos 1
nessus
nessus
Fedora 20 : php-5.5.11-1.fc20 (2014-4767)
2014-04-16 00:00:00
Mandriva Linux Security Advisory : php (MDVSA-2014:075)
2014-04-11 00:00:00
Fedora 19 : php-5.5.11-1.fc19 (2014-4735)
2014-04-16 00:00:00
prion
prion
Design/Logic Flaw
2014-03-24 16:31:00
Design/Logic Flaw
2014-07-03 14:55:00
mageia
mageia
Updated file packages fix security vulnerabilities
2014-03-31 23:34:34
Updated php packages fix security vulnerability
2014-04-18 00:20:35
Updated file packages fix security vulnerability
2014-08-06 00:08:48
amazon
amazon
Medium: php54
2014-04-25 16:04:00
Medium: php55
2014-05-21 10:40:00
Medium: php54
2014-05-21 10:40:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2014-332)
2015-09-08 00:00:00
Mageia: Security Advisory (MGASA-2014-0142)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2014-0178)
2022-01-28 00:00:00
f5
f5
SOL15303 - PHP vulnerability CVE-2013-7345
2014-06-05 00:00:00
K15303 : PHP vulnerability CVE-2013-7345
2014-06-05 00:00:00
cve
cve
CVE-2013-7345
2014-03-24 16:31:00
CVE-2014-3538
2014-07-03 14:55:00
slackware
slackware
[slackware-security] php
2014-04-21 21:13:00
gentoo
gentoo
file: Denial of service
2014-08-26 00:00:00
PHP: Multiple vulnerabilities
2014-08-29 00:00:00
securityvulns
securityvulns
[slackware-security] php (SSA:2014-111-02)
2014-05-04 00:00:00
file utility / libmagic / PHP DoS
2014-05-04 00:00:00
APPLE-SA-2014-09-17-3 OS X Mavericks 10.9.5 and Security Update 2014-004
2014-09-21 00:00:00
debiancve
debiancve
CVE-2013-7345
2014-03-24 16:31:00
CVE-2014-3538
2014-07-03 14:55:00
ubuntucve
ubuntucve
CVE-2013-7345
2014-03-24 00:00:00
CVE-2014-3538
2014-07-03 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:11:28
Denial Of Service (DoS)
2019-05-02 05:04:16
Denial Of Service (DoS)
2019-05-02 05:04:17
fedora
fedora
[SECURITY] Fedora 20 Update: php-5.5.11-1.fc20
2014-04-15 15:57:56
[SECURITY] Fedora 20 Update: file-5.14-20.fc20
2014-03-27 04:52:02
[SECURITY] Fedora 20 Update: file-5.19-7.fc20
2014-10-29 11:03:54
freebsd
freebsd
FreeBSD -- Multiple vulnerabilities in file(1) and libmagic(3)
2014-06-24 00:00:00
osv
osv
php5 - security update
2014-11-04 00:00:00
php5 - security update
2014-09-30 00:00:00
php5 - security update
2014-08-21 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:16.file
2014-06-24 00:00:00
debian
debian
[SECURITY] [DLA 67-1] php5 security update
2014-09-30 07:41:52
[SECURITY] [DSA 3008-1] php5 security update
2014-08-21 06:22:21
[SECURITY] [DSA 3008-2] php5 regression update
2014-08-21 12:39:59
ubuntu
ubuntu
file vulnerabilities
2014-07-15 00:00:00
redhat
redhat
(RHSA-2014:1013) Moderate: php security update
2014-08-06 00:00:00
(RHSA-2014:1765) Important: php54-php security update
2014-10-30 00:00:00
oraclelinux
oraclelinux
php security update
2014-08-06 00:00:00
php security update
2014-09-30 00:00:00
php security and bug fix update
2015-06-23 00:00:00
centos
centos
php security update
2014-08-06 14:38:20
JSON
Related for MANDRIVA_MDVSA-2014-073.NASL
nessus36prion2mageia4amazon6openvas35f52cve2slackware1gentoo2securityvulns4debiancve2ubuntucve2veracode4fedora6freebsd1osv3freebsd_advisory1debian5ubuntu1redhat2oraclelinux3centos1