Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2014-42.NASL
HistoryJun 13, 2014 - 12:00 a.m.

openSUSE Security Update : icinga (openSUSE-SU-2014:0069-1)

2014-06-1300:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

  • imported upstream version 1.10.2

    • includes fix for possible denial of service in CGI executables: CVE-2013-7108 (bnc#856837)

    • core: Add an Icinga syntax plugin for Vim #4150 - LE/MF

    • core: Document dropped options log_external_commands_user and event_profiling_enabled #4957 - BA

    • core: type in spec file on ido2db startup #5000 - MF

    • core: Build fails: xdata/xodtemplate.c requires stdint.h #5021 - SH

    • classic ui: fix status output in JSON format not including short and long plugin output properly #5217 - RB

    • classic ui: fix possible buffer overflows #5250 - RB

    • classic ui: fix Off-by-one memory access in process_cgivars() #5251 - RB

    • idoutils: idoutils oracle compile error #5059 - TD

    • idoutils: Oracle update script 1.10.0 failes while trying to drop nonexisting index #5256 - RB

    • imported upstream version 1.10.1

    • core: add line number information to config verification error messages #4967 - GB

    • core/idoutils: revert check_source attribute due to mod_gearman manipulating in-memory checkresult list #4958 - MF

      ** classic ui/idoutils schema: functionality is kept only for Icinga 2 support

    • classic ui: fix context help on mouseover in cmd.cgi (Marc-Christian Petersen) #4971 - MF

    • classic ui: correction of colspan value in status.cgi (Bernd Arnold) #4961 - MF

    • idoutils: fix pgsql update script #4953 - AW/MF

    • idoutils: fix logentry_type being integer, not unsigned long (thx David Mikulksi) #4953 - MF

    • fixed file permission of icingastats - bnc#851619

    • switch to all unhandled problems per default in index.html

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2014-42.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(75388);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2013-7108");

  script_name(english:"openSUSE Security Update : icinga (openSUSE-SU-2014:0069-1)");
  script_summary(english:"Check for the openSUSE-2014-42 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - imported upstream version 1.10.2

  - includes fix for possible denial of service in CGI
    executables: CVE-2013-7108 (bnc#856837)

  - core: Add an Icinga syntax plugin for Vim #4150 - LE/MF

  - core: Document dropped options
    log_external_commands_user and event_profiling_enabled
    #4957 - BA

  - core: type in spec file on ido2db startup #5000 - MF

  - core: Build fails: xdata/xodtemplate.c requires stdint.h
    #5021 - SH

  - classic ui: fix status output in JSON format not
    including short and long plugin output properly #5217 -
    RB

  - classic ui: fix possible buffer overflows #5250 - RB

  - classic ui: fix Off-by-one memory access in
    process_cgivars() #5251 - RB

  - idoutils: idoutils oracle compile error #5059 - TD

  - idoutils: Oracle update script 1.10.0 failes while
    trying to drop nonexisting index #5256 - RB

  - imported upstream version 1.10.1

  - core: add line number information to config verification
    error messages #4967 - GB

  - core/idoutils: revert check_source attribute due to
    mod_gearman manipulating in-memory checkresult list
    #4958 - MF

    ** classic ui/idoutils schema: functionality is kept
    only for Icinga 2 support

  - classic ui: fix context help on mouseover in cmd.cgi
    (Marc-Christian Petersen) #4971 - MF

  - classic ui: correction of colspan value in status.cgi
    (Bernd Arnold) #4961 - MF

  - idoutils: fix pgsql update script #4953 - AW/MF

  - idoutils: fix logentry_type being integer, not unsigned
    long (thx David Mikulksi) #4953 - MF

  - fixed file permission of icingastats - bnc#851619 

  - switch to all unhandled problems per default in
    index.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=851619"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=856837"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://lists.opensuse.org/opensuse-updates/2014-01/msg00046.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected icinga packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-idoutils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-idoutils-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-idoutils-mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-idoutils-oracle");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-idoutils-pgsql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-plugins-downtimes");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-plugins-eventhandlers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-www");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icinga-www-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:monitoring-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:monitoring-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2014/01/07");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/13");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE13\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "13.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE13.1", reference:"icinga-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-debuginfo-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-debugsource-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-devel-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-idoutils-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-idoutils-debuginfo-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-idoutils-mysql-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-idoutils-oracle-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-idoutils-pgsql-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-plugins-downtimes-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-plugins-eventhandlers-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-www-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"icinga-www-debuginfo-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"monitoring-tools-1.10.2-4.6.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"monitoring-tools-debuginfo-1.10.2-4.6.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "icinga / icinga-debuginfo / icinga-debugsource / icinga-devel / etc");
}
VendorProductVersionCPE
novellopensuseicingap-cpe:/a:novell:opensuse:icinga
novellopensuseicinga-debuginfop-cpe:/a:novell:opensuse:icinga-debuginfo
novellopensuseicinga-debugsourcep-cpe:/a:novell:opensuse:icinga-debugsource
novellopensuseicinga-develp-cpe:/a:novell:opensuse:icinga-devel
novellopensuseicinga-idoutilsp-cpe:/a:novell:opensuse:icinga-idoutils
novellopensuseicinga-idoutils-debuginfop-cpe:/a:novell:opensuse:icinga-idoutils-debuginfo
novellopensuseicinga-idoutils-mysqlp-cpe:/a:novell:opensuse:icinga-idoutils-mysql
novellopensuseicinga-idoutils-oraclep-cpe:/a:novell:opensuse:icinga-idoutils-oracle
novellopensuseicinga-idoutils-pgsqlp-cpe:/a:novell:opensuse:icinga-idoutils-pgsql
novellopensuseicinga-plugins-downtimesp-cpe:/a:novell:opensuse:icinga-plugins-downtimes
Rows per page:
1-10 of 161

Related

securityvulns 7
openvas 9
nessus 12
prion 1
cve 1
checkpoint_advisories 1
alpinelinux 1
ubuntucve 2
debiancve 1
mageia 1
osv 3
freebsd 1
debian 3
gentoo 1
ubuntu 2
ibm 2
amazon 1
securityvulns
securityvulns
Deutsche Telekom CERT Advisory [DTC-A-20140324-004] nagios vulnerability
2014-05-05 00:00:00
[ MDVSA-2014:004 ] nagios
2014-01-19 00:00:00
Deutsche Telekom CERT Advisory [DTC-A-20140324-003] vulnerabilities in icinga
2014-05-05 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:0156-1)
2021-06-09 00:00:00
Debian: Security Advisory (DLA-60-1)
2023-03-08 00:00:00
Mageia: Security Advisory (MGASA-2014-0010)
2022-01-28 00:00:00
nessus
nessus
SuSE 11.2 / 11.3 Security Update : nagios (SAT Patch Numbers 8726 / 8727)
2014-01-29 00:00:00
openSUSE Security Update : icinga (openSUSE-SU-2014:0097-1)
2014-06-13 00:00:00
openSUSE Security Update : nagios (openSUSE-SU-2014:0016-1)
2014-06-13 00:00:00
prion
prion
Heap overflow
2014-01-15 16:08:00
cve
cve
CVE-2013-7108
2014-01-15 16:08:00
checkpoint_advisories
checkpoint_advisories
Nagios core CGI Process_cgivars Off-By-One (CVE-2013-7108)
2014-03-16 00:00:00
alpinelinux
alpinelinux
CVE-2013-7108
2014-01-15 16:08:00
ubuntucve
ubuntucve
CVE-2013-7108
2014-01-15 00:00:00
CVE-2013-7205
2014-01-15 00:00:00
debiancve
debiancve
CVE-2013-7108
2014-01-15 16:08:00
mageia
mageia
Updated nagios package fixes security vulnerability
2014-01-17 04:22:05
osv
osv
icinga - security update
2014-09-24 00:00:00
nagios3 - security update
2018-12-24 00:00:00
icinga - security update
2014-06-11 00:00:00
freebsd
freebsd
nagios -- denial of service vulnerability
2013-12-20 00:00:00
debian
debian
[SECURITY] [DLA 60-1] icinga security update
2014-09-24 16:14:21
[SECURITY] [DSA 2956-1] icinga security update
2014-06-11 14:34:20
[SECURITY] [DLA 1615-1] nagios3 security update
2018-12-24 18:11:01
gentoo
gentoo
Nagios: Multiple vulnerabilities
2014-12-13 00:00:00
ubuntu
ubuntu
Nagios regression
2017-06-07 00:00:00
Nagios vulnerabilities
2017-04-03 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in nagios affect PowerKVM
2018-06-18 01:38:44
Security Bulletin: Vulnerabilities in nagios affect PowerKVM
2018-06-18 01:33:23
amazon
amazon
Important: nagios
2017-10-03 11:00:00
JSON
Related for OPENSUSE-2014-42.NASL
securityvulns7openvas9nessus12prion1cve1checkpoint_advisories1alpinelinux1ubuntucve2debiancve1mageia1osv3freebsd1debian3gentoo1ubuntu2ibm2amazon1