Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2012-274.NASL
HistoryJun 13, 2014 - 12:00 a.m.

openSUSE Security Update : mariadb (openSUSE-2012-274)

2014-06-1300:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
JSON

mariadb update to version 5.2.12 fixes several security issues and bugs. Please refer to the following upstream announcements for details :

http://kb.askmonty.org/v/mariadb-5212-release-notes http://kb.askmonty.org/v/mariadb-5211-release-notes http://kb.askmonty.org/v/mariadb-5210-release-notes

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2012-274.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(74624);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2011-2262", "CVE-2012-0075", "CVE-2012-0087", "CVE-2012-0101", "CVE-2012-0102", "CVE-2012-0112", "CVE-2012-0113", "CVE-2012-0114", "CVE-2012-0115", "CVE-2012-0116", "CVE-2012-0118", "CVE-2012-0119", "CVE-2012-0120", "CVE-2012-0484", "CVE-2012-0485", "CVE-2012-0490", "CVE-2012-0492", "CVE-2012-0583", "CVE-2012-1688", "CVE-2012-1690", "CVE-2012-1703");

  script_name(english:"openSUSE Security Update : mariadb (openSUSE-2012-274)");
  script_summary(english:"Check for the openSUSE-2012-274 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"mariadb update to version 5.2.12 fixes several security issues and
bugs. Please refer to the following upstream announcements for 
details :

http://kb.askmonty.org/v/mariadb-5212-release-notes
http://kb.askmonty.org/v/mariadb-5211-release-notes
http://kb.askmonty.org/v/mariadb-5210-release-notes"
  );
  # http://kb.askmonty.org/v/mariadb-5210-release-notes
  script_set_attribute(
    attribute:"see_also",
    value:"https://mariadb.com/kb/en/library/mariadb-5210-release-notes/"
  );
  # http://kb.askmonty.org/v/mariadb-5211-release-notes
  script_set_attribute(
    attribute:"see_also",
    value:"https://mariadb.com/kb/en/library/mariadb-5211-release-notes/"
  );
  # http://kb.askmonty.org/v/mariadb-5212-release-notes
  script_set_attribute(
    attribute:"see_also",
    value:"https://mariadb.com/kb/en/library/mariadb-5212-release-notes/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=675870"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=734436"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=742272"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=758460"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected mariadb packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:N/I:N/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmariadbclient16");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmariadbclient16-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmariadbclient_r16");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libmariadbclient_r16-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-bench");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-bench-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-client-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-debug");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-debug-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-test");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-test-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:mariadb-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:12.1");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/01/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/05/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/13");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE12\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "12.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE12.1", reference:"libmariadbclient16-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"libmariadbclient16-debuginfo-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"libmariadbclient_r16-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"libmariadbclient_r16-debuginfo-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-bench-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-bench-debuginfo-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-client-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-client-debuginfo-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-debug-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-debug-debuginfo-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-debuginfo-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-debugsource-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-test-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-test-debuginfo-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-tools-5.2.12-2.5.1") ) flag++;
if ( rpm_check(release:"SUSE12.1", reference:"mariadb-tools-debuginfo-5.2.12-2.5.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libmariadbclient16 / libmariadbclient16-debuginfo / etc");
}
VendorProductVersionCPE
novellopensuselibmariadbclient16p-cpe:/a:novell:opensuse:libmariadbclient16
novellopensuselibmariadbclient16-debuginfop-cpe:/a:novell:opensuse:libmariadbclient16-debuginfo
novellopensuselibmariadbclient_r16p-cpe:/a:novell:opensuse:libmariadbclient_r16
novellopensuselibmariadbclient_r16-debuginfop-cpe:/a:novell:opensuse:libmariadbclient_r16-debuginfo
novellopensusemariadbp-cpe:/a:novell:opensuse:mariadb
novellopensusemariadb-benchp-cpe:/a:novell:opensuse:mariadb-bench
novellopensusemariadb-bench-debuginfop-cpe:/a:novell:opensuse:mariadb-bench-debuginfo
novellopensusemariadb-clientp-cpe:/a:novell:opensuse:mariadb-client
novellopensusemariadb-client-debuginfop-cpe:/a:novell:opensuse:mariadb-client-debuginfo
novellopensusemariadb-debugp-cpe:/a:novell:opensuse:mariadb-debug
Rows per page:
1-10 of 181

References

Related

amazon 2
redhat 3
centos 3
nessus 33
openvas 39
oraclelinux 3
debian 2
prion 22
ubuntucve 22
cve 22
f5 2
suse 1
fedora 2
veracode 25
ubuntu 1
gentoo 1
securityvulns 2
oracle 2
amazon
amazon
Important: mysql
2012-02-15 17:18:00
Important: mysql51
2012-11-20 06:26:00
redhat
redhat
(RHSA-2012:0105) Important: mysql security update
2012-02-08 00:00:00
(RHSA-2012:0127) Moderate: mysql security update
2012-02-13 00:00:00
(RHSA-2012:1462) Important: mysql security update
2012-11-14 00:00:00
centos
centos
mysql security update
2012-02-08 21:54:27
mysql security update
2012-02-14 03:09:41
mysql security update
2012-11-15 03:44:02
nessus
nessus
Debian DSA-2429-1 : mysql-5.1 - several vulnerabilities
2012-03-08 00:00:00
Amazon Linux AMI : mysql (ALAS-2012-44)
2013-09-04 00:00:00
Scientific Linux Security Update : mysql on SL6.x i386/x86_64 (20120208)
2012-08-01 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2012-44)
2015-09-08 00:00:00
RedHat Update for mysql RHSA-2012:0105-01
2012-07-09 00:00:00
Debian: Security Advisory (DSA-2429-1)
2012-04-30 00:00:00
oraclelinux
oraclelinux
mysql security update
2012-02-08 00:00:00
mysql security update
2012-02-13 00:00:00
mysql security update
2012-11-14 00:00:00
debian
debian
[SECURITY] [DSA 2429-1] mysql-5.1 security update
2012-03-07 20:45:13
[SECURITY] [DSA 2496-1] mysql-5.1 security update
2012-06-18 20:38:29
prion
prion
Design/Logic Flaw
2012-01-18 22:55:00
Design/Logic Flaw
2012-01-18 22:55:00
Design/Logic Flaw
2012-01-18 22:55:00
ubuntucve
ubuntucve
CVE-2012-0120
2012-01-18 00:00:00
CVE-2012-0485
2012-01-18 00:00:00
CVE-2012-0119
2012-01-18 00:00:00
cve
cve
CVE-2012-0115
2012-01-18 22:55:00
CVE-2012-0492
2012-01-18 22:55:00
CVE-2012-0112
2012-01-18 22:55:00
f5
f5
SOL14410 - Multiple MySQL vulnerabilities
2013-05-14 00:00:00
K14410 : Multiple MySQL vulnerabilities
2013-09-17 00:00:00
suse
suse
Security update for MySQL (important)
2012-08-13 19:08:39
fedora
fedora
[SECURITY] Fedora 16 Update: mysql-5.5.20-1.fc16
2012-02-08 22:53:23
[SECURITY] Fedora 15 Update: mysql-5.5.20-1.fc15
2012-02-12 22:51:41
veracode
veracode
Denial Of Service (DoS)
2019-05-02 04:40:59
Denial Of Service (DoS)
2020-04-10 01:11:45
Information Disclosure
2020-04-10 01:09:43
ubuntu
ubuntu
MySQL vulnerabilities
2012-03-12 00:00:00
gentoo
gentoo
MySQL: Multiple vulnerabilities
2013-08-29 00:00:00
securityvulns
securityvulns
Oracle / Sun / People Soft / MySQL applications multiple security vulnerabilities
2012-03-10 00:00:00
Oracle / Sun / People Soft / MySQL applications multiple security vulnerabilities
2012-12-02 00:00:00
oracle
oracle
Oracle Critical Patch Update - January 2012
2012-01-17 00:00:00
Oracle Critical Patch Update - April 2012
2012-07-19 00:00:00
JSON
Related for OPENSUSE-2012-274.NASL
amazon2redhat3centos3nessus33openvas39oraclelinux3debian2prion22ubuntucve22cve22f52suse1fedora2veracode25ubuntu1gentoo1securityvulns2oracle2