Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 Tenable Network Security, Inc.OPENSUSE-2012-110.NASL
HistoryJun 13, 2014 - 12:00 a.m.

openSUSE Security Update : lighttpd (openSUSE-2012-110)

2014-06-1300:00:00
This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.
www.tenable.com
14
JSON

  • added lighttpd-1.4.30_head_fixes.patch: cherry picked 4 fixes from HEAD :

    • [ssl] include more headers explicitly

    • list all network handlers in lighttpd -V (fixes lighttpd#2376)

    • Move fdevent subsystem includes to implementation files to reduce conflicts (fixes lighttpd#2373)

    • [ssl] fix segfault in counting renegotiations for openssl versions without TLSEXT/SNI

    • update to 1.4.30: (bnc#733607)

    • Always use our β€˜own’ md5 implementation, fixes linking issues on MacOS (fixes #2331)

    • Limit amount of bytes we send in one go; fixes stalling in one connection and timeouts on slow systems.

    • [ssl] fix build errors when Elliptic-Curve Diffie-Hellman is disabled

    • Add static-file.disable-pathinfo option to prevent handling of urls like …/secret.php/image.jpg as static file

    • Don’t overwrite 401 (auth required) with 501 (unknown method) (fixes #2341)

    • Fix mod_status bug: always showed β€œ0/0” in the β€œRead” column for uploads (fixes #2351)

    • [mod_auth] Fix signedness error in http_auth (fixes #2370, CVE-2011-4362)

    • [ssl] count renegotiations to prevent client renegotiations

    • [ssl] add option to honor server cipher order (fixes #2364, BEAST attack)

    • [core] accept dots in ipv6 addresses in host header (fixes #2359)

    • [ssl] fix ssl connection aborts if files are larger than the MAX_WRITE_LIMIT (256kb)

    • [libev/cgi] fix waitpid ECHILD errors in cgi with libev (fixes #2324)

    • add automake as buildrequire to avoid implicit dependency

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2012-110.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(74546);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2011-4362");

  script_name(english:"openSUSE Security Update : lighttpd (openSUSE-2012-110)");
  script_summary(english:"Check for the openSUSE-2012-110 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - added lighttpd-1.4.30_head_fixes.patch: cherry picked 4
    fixes from HEAD :

  - [ssl] include more headers explicitly

  - list all network handlers in lighttpd -V (fixes
    lighttpd#2376)

  - Move fdevent subsystem includes to implementation files
    to reduce conflicts (fixes lighttpd#2373)

  - [ssl] fix segfault in counting renegotiations for
    openssl versions without TLSEXT/SNI

  - update to 1.4.30: (bnc#733607)

  - Always use our ‘own’ md5 implementation,
    fixes linking issues on MacOS (fixes #2331)

  - Limit amount of bytes we send in one go; fixes stalling
    in one connection and timeouts on slow systems.

  - [ssl] fix build errors when Elliptic-Curve
    Diffie-Hellman is disabled

  - Add static-file.disable-pathinfo option to prevent
    handling of urls like …/secret.php/image.jpg as
    static file

  - Don’t overwrite 401 (auth required) with 501
    (unknown method) (fixes #2341)

  - Fix mod_status bug: always showed “0/0” in
    the “Read” column for uploads (fixes #2351)

  - [mod_auth] Fix signedness error in http_auth (fixes
    #2370, CVE-2011-4362)

  - [ssl] count renegotiations to prevent client
    renegotiations

  - [ssl] add option to honor server cipher order (fixes
    #2364, BEAST attack)

  - [core] accept dots in ipv6 addresses in host header
    (fixes #2359)

  - [ssl] fix ssl connection aborts if files are larger than
    the MAX_WRITE_LIMIT (256kb)

  - [libev/cgi] fix waitpid ECHILD errors in cgi with libev
    (fixes #2324)

  - add automake as buildrequire to avoid implicit
    dependency"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=733607"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected lighttpd packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_cml");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_cml-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_geoip");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_geoip-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_magnet");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_magnet-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_mysql_vhost");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_mysql_vhost-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_rrdtool");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_rrdtool-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_trigger_b4_dl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_trigger_b4_dl-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_webdav");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:lighttpd-mod_webdav-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:12.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/02/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/13");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE12\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "12.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-debuginfo-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-debugsource-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_cml-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_cml-debuginfo-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_geoip-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_geoip-debuginfo-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_magnet-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_magnet-debuginfo-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_mysql_vhost-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_mysql_vhost-debuginfo-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_rrdtool-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_rrdtool-debuginfo-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_trigger_b4_dl-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_trigger_b4_dl-debuginfo-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_webdav-1.4.30-2.3.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"lighttpd-mod_webdav-debuginfo-1.4.30-2.3.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "lighttpd / lighttpd-debuginfo / lighttpd-debugsource / etc");
}
VendorProductVersionCPE
novellopensuselighttpdp-cpe:/a:novell:opensuse:lighttpd
novellopensuselighttpd-debuginfop-cpe:/a:novell:opensuse:lighttpd-debuginfo
novellopensuselighttpd-debugsourcep-cpe:/a:novell:opensuse:lighttpd-debugsource
novellopensuselighttpd-mod_cmlp-cpe:/a:novell:opensuse:lighttpd-mod_cml
novellopensuselighttpd-mod_cml-debuginfop-cpe:/a:novell:opensuse:lighttpd-mod_cml-debuginfo
novellopensuselighttpd-mod_geoipp-cpe:/a:novell:opensuse:lighttpd-mod_geoip
novellopensuselighttpd-mod_geoip-debuginfop-cpe:/a:novell:opensuse:lighttpd-mod_geoip-debuginfo
novellopensuselighttpd-mod_magnetp-cpe:/a:novell:opensuse:lighttpd-mod_magnet
novellopensuselighttpd-mod_magnet-debuginfop-cpe:/a:novell:opensuse:lighttpd-mod_magnet-debuginfo
novellopensuselighttpd-mod_mysql_vhostp-cpe:/a:novell:opensuse:lighttpd-mod_mysql_vhost
Rows per page:
1-10 of 181

Related

openvas 10
seebug 4
exploitpack 1
ubuntucve 1
debiancve 1
freebsd 1
fedora 2
nessus 9
amazon 1
securityvulns 3
cve 1
prion 1
exploitdb 1
osv 1
debian 2
gentoo 1
ibm 1
jvn 1
openvas
openvas
FreeBSD Ports: lighttpd
2012-02-13 00:00:00
Amazon Linux: Security Advisory (ALAS-2012-107)
2015-09-08 00:00:00
Fedora Update for lighttpd FEDORA-2012-9040
2012-08-30 00:00:00
seebug
seebug
Lighttpd Proof of Concept code for CVE-2011-4362
2012-01-02 00:00:00
Lighttpd 1.4.30 / 1.5 Denial Of Service
2011-12-27 00:00:00
lighttpd Denial of Service Vulnerability PoC
2014-07-01 00:00:00
exploitpack
exploitpack
lighttpd - Denial of Service (PoC)
2011-12-31 00:00:00
ubuntucve
ubuntucve
CVE-2011-4362
2011-12-24 00:00:00
debiancve
debiancve
CVE-2011-4362
2011-12-24 19:55:00
freebsd
freebsd
lighttpd -- remote DoS in HTTP authentication
2011-11-29 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: lighttpd-1.4.31-1.fc17
2012-06-26 00:44:26
[SECURITY] Fedora 16 Update: lighttpd-1.4.31-1.fc16
2012-06-26 00:31:28
nessus
nessus
Amazon Linux AMI : lighttpd (ALAS-2012-107)
2013-09-04 00:00:00
Fedora 17 : lighttpd-1.4.31-1.fc17 (2012-9040)
2012-06-26 00:00:00
lighttpd < 1.4.30 base64_decode Function Out-of-Bounds Read Error DoS
2011-12-28 00:00:00
amazon
amazon
Medium: lighttpd
2012-07-09 14:20:00
securityvulns
securityvulns
Lighttpd Proof of Concept code for CVE-2011-4362
2012-01-02 00:00:00
lighthttpd security vulnerabilities
2012-01-02 00:00:00
[SECURITY] [DSA 2368-1] lighttpd security update
2011-12-26 00:00:00
cve
cve
CVE-2011-4362
2011-12-24 19:55:00
prion
prion
Integer overflow
2011-12-24 19:55:00
exploitdb
exploitdb
lighttpd - Denial of Service (PoC)
2011-12-31 00:00:00
osv
osv
lighttpd - several
2011-12-20 00:00:00
debian
debian
[SECURITY] [DSA 2368-1] lighttpd security update
2011-12-21 00:42:08
[SECURITY] [DSA 2381-] lighttpd security update
2011-12-21 00:21:08
gentoo
gentoo
lighttpd: Multiple vulnerabilities
2014-06-13 00:00:00
ibm
ibm
Security Bulletin: IBM System x Integrated Management Module (IMM) Lighttpd W (CVE-2011-4362, CVE-2010-0295, CVE-2008-4360, CVE-2008-4359, CVE-20084298, CVE-2008-1531)
2019-01-30 08:20:01
jvn
jvn
JVN#37417423: Multiple vulnerabilities in SolarView Compact
2021-02-19 00:00:00
JSON
Related for OPENSUSE-2012-110.NASL
openvas10seebug4exploitpack1ubuntucve1debiancve1freebsd1fedora2nessus9amazon1securityvulns3cve1prion1exploitdb1osv1debian2gentoo1ibm1jvn1