Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2021 Tenable Network Security, Inc.OPENSUSE-2015-146.NASL
HistoryFeb 16, 2015 - 12:00 a.m.

openSUSE Security Update : tcpdump (openSUSE-2015-146)

2015-02-1600:00:00
This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.
www.tenable.com
15
JSON

tcpdump was updated to fix three security issues.

These security issues were fixed :

  • CVE-2014-8767: Integer underflow in the olsr_print function in tcpdump 3.9.6 through 4.6.2, when in verbose mode, allowed remote attackers to cause a denial of service (crash) via a crafted length value in an OLSR frame (bnc#905870 905871).

  • CVE-2014-8769: tcpdump 3.8 through 4.6.2 might allowed remote attackers to obtain sensitive information from memory or cause a denial of service (packet loss or segmentation fault) via a crafted Ad hoc On-Demand Distance Vector (AODV) packet, which triggers an out-of-bounds memory access (bnc#905871 905872).

  • CVE-2014-8768: Multiple Integer underflows in the geonet_print function in tcpdump 4.5.0 through 4.6.2, when in verbose mode, allowed remote attackers to cause a denial of service (segmentation fault and crash) via a crafted length value in a Geonet frame (bnc#905871).

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2015-146.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(81371);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2014-8767", "CVE-2014-8768", "CVE-2014-8769");

  script_name(english:"openSUSE Security Update : tcpdump (openSUSE-2015-146)");
  script_summary(english:"Check for the openSUSE-2015-146 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"tcpdump was updated to fix three security issues.

These security issues were fixed :

  - CVE-2014-8767: Integer underflow in the olsr_print
    function in tcpdump 3.9.6 through 4.6.2, when in verbose
    mode, allowed remote attackers to cause a denial of
    service (crash) via a crafted length value in an OLSR
    frame (bnc#905870 905871).

  - CVE-2014-8769: tcpdump 3.8 through 4.6.2 might allowed
    remote attackers to obtain sensitive information from
    memory or cause a denial of service (packet loss or
    segmentation fault) via a crafted Ad hoc On-Demand
    Distance Vector (AODV) packet, which triggers an
    out-of-bounds memory access (bnc#905871 905872).

  - CVE-2014-8768: Multiple Integer underflows in the
    geonet_print function in tcpdump 4.5.0 through 4.6.2,
    when in verbose mode, allowed remote attackers to cause
    a denial of service (segmentation fault and crash) via a
    crafted length value in a Geonet frame (bnc#905871)."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=905870"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=905871"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=905872"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected tcpdump packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tcpdump");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tcpdump-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tcpdump-debugsource");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2015/02/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/02/16");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE13\.1|SUSE13\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "13.1 / 13.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE13.1", reference:"tcpdump-4.4.0-2.4.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"tcpdump-debuginfo-4.4.0-2.4.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"tcpdump-debugsource-4.4.0-2.4.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"tcpdump-4.6.2-4.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"tcpdump-debuginfo-4.6.2-4.1") ) flag++;
if ( rpm_check(release:"SUSE13.2", reference:"tcpdump-debugsource-4.6.2-4.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "tcpdump / tcpdump-debuginfo / tcpdump-debugsource");
}
VendorProductVersionCPE
novellopensusetcpdumpp-cpe:/a:novell:opensuse:tcpdump
novellopensusetcpdump-debuginfop-cpe:/a:novell:opensuse:tcpdump-debuginfo
novellopensusetcpdump-debugsourcep-cpe:/a:novell:opensuse:tcpdump-debugsource
novellopensuse13.1cpe:/o:novell:opensuse:13.1
novellopensuse13.2cpe:/o:novell:opensuse:13.2

Related

fedora 7
openvas 16
nessus 18
ubuntu 1
gentoo 1
mageia 1
osv 2
securityvulns 8
debian 3
archlinux 1
zdt 1
ubuntucve 3
cve 3
aix 1
exploitpack 1
debiancve 3
packetstorm 3
prion 3
exploitdb 1
fedora
fedora
[SECURITY] Fedora 20 Update: tcpdump-4.5.1-2.fc20
2014-11-27 08:33:48
[SECURITY] Fedora 21 Update: tcpdump-4.6.2-2.fc21
2014-12-06 10:25:34
[SECURITY] Fedora 21 Update: tcpdump-4.6.2-3.fc21
2015-01-07 23:51:43
openvas
openvas
Fedora Update for tcpdump FEDORA-2014-15541
2014-11-28 00:00:00
Fedora Update for tcpdump FEDORA-2014-15609
2015-01-05 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:1723-1)
2021-04-19 00:00:00
nessus
nessus
Fedora 21 : tcpdump-4.6.2-2.fc21 (2014-15609)
2014-12-07 00:00:00
Fedora 20 : tcpdump-4.5.1-2.fc20 (2014-15541)
2014-11-28 00:00:00
GLSA-201502-05 : tcpdump: Multiple vulnerabilities
2015-02-09 00:00:00
ubuntu
ubuntu
tcpdump vulnerabilities
2014-12-04 00:00:00
gentoo
gentoo
tcpdump: Multiple vulnerabilities
2015-02-07 00:00:00
mageia
mageia
Updated tcpdump package fixes security vulnerabilities
2014-12-01 20:57:09
osv
osv
tcpdump - security update
2014-12-03 00:00:00
tcpdump - security update
2014-12-08 00:00:00
securityvulns
securityvulns
tcpdump multiple security vulnerabilities
2014-12-03 00:00:00
[SECURITY] [DSA 3086-1] tcpdump security update
2014-12-03 00:00:00
wireshark multiple security vulnerabilities
2014-11-24 00:00:00
debian
debian
[SECURITY] [DSA 3086-1] tcpdump security update
2014-12-03 19:16:46
[SECURITY] [DSA 3086-1] tcpdump security update
2014-12-03 19:16:29
[SECURITY] [DLA 102-1] tcpdump security update
2014-12-08 19:00:24
archlinux
archlinux
tcpdump: multiple issues
2015-03-20 00:00:00
zdt
zdt
tcpdump 4.6.2 Geonet Decoder Denial of Service Vulnerability
2014-11-24 00:00:00
ubuntucve
ubuntucve
CVE-2014-8768
2014-11-20 00:00:00
CVE-2014-8767
2014-11-20 00:00:00
CVE-2014-8769
2014-11-20 00:00:00
cve
cve
CVE-2014-8768
2014-11-20 17:50:00
CVE-2014-8769
2014-11-20 17:50:00
CVE-2014-8767
2014-11-20 17:50:00
aix
aix
Vulnerability in AIX tcpdump
2015-03-18 10:29:53
exploitpack
exploitpack
tcpdump 4.6.2 - Geonet Decoder Denial of Service
2014-11-24 00:00:00
debiancve
debiancve
CVE-2014-8768
2014-11-20 17:50:00
CVE-2014-8769
2014-11-20 17:50:00
CVE-2014-8767
2014-11-20 17:50:00
packetstorm
packetstorm
tcpdump 4.6.2 Geonet Denial Of Service
2014-11-19 00:00:00
tcpdump 4.6.2 OSLR Denial Of Service
2014-11-19 00:00:00
tcpdump 4.6.2 AOVD Unreliable Output
2014-11-19 00:00:00
prion
prion
Integer overflow
2014-11-20 17:50:00
Design/Logic Flaw
2014-11-20 17:50:00
Integer overflow
2014-11-20 17:50:00
exploitdb
exploitdb
tcpdump 4.6.2 - Geonet Decoder Denial of Service
2014-11-24 00:00:00
JSON
Related for OPENSUSE-2015-146.NASL
fedora7openvas16nessus18ubuntu1gentoo1mageia1osv2securityvulns8debian3archlinux1zdt1ubuntucve3cve3aix1exploitpack1debiancve3packetstorm3prion3exploitdb1