Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2023 and is owned by Tenable, Inc. or an Affiliate thereof.MANDRIVA_MDVSA-2014-203.NASL
HistoryOct 24, 2014 - 12:00 a.m.

Mandriva Linux Security Advisory : openssl (MDVSA-2014:203)

2014-10-2400:00:00
This script is Copyright (C) 2014-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
31
JSON

Multiple vulnerabilities has been discovered and corrected in openssl :

OpenSSL has added support for TLS_FALLBACK_SCSV to allow applications to block the ability for a MITM attacker to force a protocol downgrade. Some client applications (such as browsers) will reconnect using a downgraded protocol to work around interoperability bugs in older servers. This could be exploited by an active man-in-the-middle to downgrade connections to SSL 3.0 even if both sides of the connection support higher protocols. SSL 3.0 contains a number of weaknesses including POODLE (CVE-2014-3566).

When an OpenSSL SSL/TLS/DTLS server receives a session ticket the integrity of that ticket is first verified. In the event of a session ticket integrity check failing, OpenSSL will fail to free memory causing a memory leak. By sending a large number of invalid session tickets an attacker could exploit this issue in a Denial Of Service attack (CVE-2014-3567).

The updated packages have been upgraded to the 1.0.0o version where these security flaws has been fixed.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Mandriva Linux Security Advisory MDVSA-2014:203. 
# The text itself is copyright (C) Mandriva S.A.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(78665);
  script_version("1.19");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/06/26");

  script_cve_id("CVE-2014-3566", "CVE-2014-3567");
  script_bugtraq_id(70574, 70586);
  script_xref(name:"MDVSA", value:"2014:203");

  script_name(english:"Mandriva Linux Security Advisory : openssl (MDVSA-2014:203)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Mandriva Linux host is missing one or more security
updates.");
  script_set_attribute(attribute:"description", value:
"Multiple vulnerabilities has been discovered and corrected in 
openssl :

OpenSSL has added support for TLS_FALLBACK_SCSV to allow applications
to block the ability for a MITM attacker to force a protocol
downgrade. Some client applications (such as browsers) will reconnect
using a downgraded protocol to work around interoperability bugs in
older servers. This could be exploited by an active man-in-the-middle
to downgrade connections to SSL 3.0 even if both sides of the
connection support higher protocols. SSL 3.0 contains a number of
weaknesses including POODLE (CVE-2014-3566).

When an OpenSSL SSL/TLS/DTLS server receives a session ticket the
integrity of that ticket is first verified. In the event of a session
ticket integrity check failing, OpenSSL will fail to free memory
causing a memory leak. By sending a large number of invalid session
tickets an attacker could exploit this issue in a Denial Of Service
attack (CVE-2014-3567).

The updated packages have been upgraded to the 1.0.0o version where
these security flaws has been fixed.");
  script_set_attribute(attribute:"see_also", value:"https://www.openssl.org/news/secadv/20141015.txt");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"patch_publication_date", value:"2014/10/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/10/24");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl-engines1.0.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl-static-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:lib64openssl1.0.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:mandriva:linux:openssl");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:mandriva:business_server:1");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Mandriva Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2014-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/Mandrake/release", "Host/Mandrake/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Mandrake/release")) audit(AUDIT_OS_NOT, "Mandriva / Mandake Linux");
if (!get_kb_item("Host/Mandrake/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^(amd64|i[3-6]86|x86_64)$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Mandriva / Mandrake Linux", cpu);


flag = 0;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64openssl-devel-1.0.0o-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64openssl-engines1.0.0-1.0.0o-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64openssl-static-devel-1.0.0o-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"lib64openssl1.0.0-1.0.0o-1.mbs1")) flag++;
if (rpm_check(release:"MDK-MBS1", cpu:"x86_64", reference:"openssl-1.0.0o-1.mbs1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
mandrivalinuxlib64openssl-develp-cpe:/a:mandriva:linux:lib64openssl-devel
mandrivalinuxlib64openssl-engines1.0.0p-cpe:/a:mandriva:linux:lib64openssl-engines1.0.0
mandrivalinuxlib64openssl-static-develp-cpe:/a:mandriva:linux:lib64openssl-static-devel
mandrivalinuxlib64openssl1.0.0p-cpe:/a:mandriva:linux:lib64openssl1.0.0
mandrivalinuxopensslp-cpe:/a:mandriva:linux:openssl
mandrivabusiness_server1cpe:/o:mandriva:business_server:1

Related

nessus 50
ibm 64
openvas 28
aix 1
suse 7
redhat 4
centos 2
mageia 1
freebsd_advisory 1
slackware 1
freebsd 1
osv 3
debian 2
securityvulns 2
archlinux 1
kaspersky 1
f5 3
checkpoint_advisories 1
debiancve 1
veracode 2
ubuntucve 1
prion 1
openssl 1
cve 1
fedora 13
cisco 1
seebug 1
hackerone 1
citrix 1
cert 1
amazon 1
nessus
nessus
Splunk Enterprise 5.0.x < 5.0.11 Multiple Vulnerabilities (POODLE)
2014-12-04 00:00:00
Scientific Linux Security Update : openssl on SL6.x, SL7.x i386/x86_64 (20141016) (POODLE)
2014-10-17 00:00:00
OpenSSL 0.9.8 < 0.9.8zc Multiple Vulnerabilities (POODLE)
2014-10-17 00:00:00
ibm
ibm
Security Bulletin: Vulnerability in SSLv3 and OpenSSL affect SAN Volume Controller and Storwize Family (CVE-2014-3566 CVE-2014-3567)
2022-08-20 00:54:31
Security Bulletin: Sterling Connect:Enterprise For UNIX and Sterling Connect:Enterprise clients are affected by the POODLE and OpenSSL vulnerabilities (CVE-2014-3566, CVE-2014-3567)
2019-12-18 01:14:08
Security Bulletin: Vulnerability in SSLv3 affects multiple IBM Security Infrastructure appliances (CVE-2014-3566)
2022-02-23 19:48:26
openvas
openvas
OpenSSL Multiple Vulnerabilities (20141015) - Linux
2021-07-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:1512-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:1361-1)
2021-06-09 00:00:00
aix
aix
AIX OpenSSL Denial of Service due to memory leak in DTLS / AIX OpenSSL Patch to mitigate CVE-2014-3566 / AIX OpenSSL Denial of Service due to memory consumption
2014-10-29 04:58:52
suse
suse
Security update for OpenSSL (important)
2014-11-11 01:04:46
Security update for OpenSSL (important)
2014-11-05 23:04:47
Security update for OpenSSL (important)
2014-11-13 01:04:46
redhat
redhat
(RHSA-2014:1692) Important: openssl security update
2014-10-22 00:00:00
(RHSA-2014:1652) Important: openssl security update
2014-10-16 00:00:00
(RHSA-2014:1653) Moderate: openssl security update
2014-10-16 00:00:00
centos
centos
openssl security update
2014-10-16 16:22:42
openssl security update
2014-10-16 15:21:39
mageia
mageia
Updated openssl packages fix security vulnerabilities
2014-10-23 17:27:57
freebsd_advisory
freebsd_advisory
FreeBSD-SA-14:23.openssl
2014-10-21 00:00:00
slackware
slackware
[slackware-security] openssl
2014-10-15 17:58:22
freebsd
freebsd
OpenSSL -- multiple vulnerabilities
2014-10-15 00:00:00
osv
osv
openssl - security update
2014-11-01 00:00:00
openssl - security update
2014-10-16 00:00:00
lighttpd - security update
2015-07-25 00:00:00
debian
debian
[SECURITY] [DLA 81-1] openssl security update
2014-11-01 15:49:46
[SECURITY] [DSA 3053-1] openssl security update
2014-10-16 15:48:24
securityvulns
securityvulns
[slackware-security] openssl &#40;SSA:2014-288-01&#41;
2014-10-17 00:00:00
OpenSSL multiple security vulnerabilities
2014-12-09 00:00:00
archlinux
archlinux
openssl: denial of service / man-in-the-middle / poodle mitigation
2014-10-16 00:00:00
kaspersky
kaspersky
KLA10359 Vulnerability in Tableau
2014-07-18 00:00:00
f5
f5
SOL15723 - OpenSSL vulnerability CVE-2014-3567
2014-10-21 00:00:00
K15723 : OpenSSL vulnerability CVE-2014-3567
2015-11-10 00:00:00
K15702 : SSLv3 vulnerability CVE-2014-3566
2015-09-18 00:00:00
checkpoint_advisories
checkpoint_advisories
OpenSSL Invalid Session Ticket Denial of Service (CVE-2014-3567)
2014-11-03 00:00:00
debiancve
debiancve
CVE-2014-3567
2014-10-19 01:55:00
veracode
veracode
Denial Of Service (DoS) Through Memory Consumption
2017-02-06 08:56:15
Information Disclosure
2017-02-07 00:05:45
ubuntucve
ubuntucve
CVE-2014-3567
2014-10-15 00:00:00
prion
prion
Memory corruption
2014-10-19 01:55:00
openssl
openssl
Vulnerability in OpenSSL CVE-2014-3567
2014-10-15 00:00:00
cve
cve
CVE-2014-3567
2014-10-19 01:55:00
fedora
fedora
[SECURITY] Fedora 22 Update: fossil-1.33-1.fc22
2015-10-15 03:51:23
[SECURITY] Fedora 21 Update: subscription-manager-1.13.6-1.fc21
2014-11-10 06:34:40
[SECURITY] Fedora 19 Update: python-rhsm-1.13.6-1.fc19
2014-11-07 02:33:12
cisco
cisco
SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
2014-10-15 18:30:00
seebug
seebug
SSL 3.0 POODLE(CVE-2014-3566)
2017-02-17 00:00:00
hackerone
hackerone
New Relic: SSL Padding Oracle On Downgraded Legacy Encryption (POODLE) Vulnerability
2017-03-26 19:08:23
citrix
citrix
CVE-2014-3566 - Citrix Security Advisory for SSLv3 Protocol Flaw
2014-10-14 04:00:00
cert
cert
POODLE vulnerability in SSL 3.0
2014-10-17 00:00:00
amazon
amazon
Important: openssl
2014-10-14 22:32:00
JSON
Related for MANDRIVA_MDVSA-2014-203.NASL
nessus50ibm64openvas28aix1suse7redhat4centos2mageia1freebsd_advisory1slackware1freebsd1osv3debian2securityvulns2archlinux1kaspersky1f53checkpoint_advisories1debiancve1veracode2ubuntucve1prion1openssl1cve1fedora13cisco1seebug1hackerone1citrix1cert1amazon1