Lucene search
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2018-1027.NASLHistorySep 24, 2018 - 12:00 a.m.
openSUSE Security Update : hylafax+ (openSUSE-2018-1027)
2018-09-2400:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.068 Low
EPSS
Percentile
93.9%
This update for hylafax+ fixes the following issues :
Security issues fixed in 5.6.1 :
- CVE-2018-17141: multiple vulnerabilities affecting fax page reception in JPEG format Specially crafted input may have allowed remote execution of arbitrary code (boo#1109084)
Additionally, this update also contains all upstream corrections and bugfixes in the 5.6.1 version, including :
-
fix RFC2047 encoding by notify
-
add jobcontrol PageSize feature
-
don’t wait forever after +FRH:3
-
fix faxmail transition between a message and external types
-
avoid pagehandling from introducing some unnecessary EOM signals
-
improve proxy connection error handling and logging
-
add initial ModemGroup limits feature
-
pass the user’s uid onto the session log file for sent faxes
-
improve job waits to minimize triggers
-
add ProxyTaglineFormat and ProxyTSI features
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2018-1027.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(117658);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_cve_id("CVE-2018-17141");
script_name(english:"openSUSE Security Update : hylafax+ (openSUSE-2018-1027)");
script_summary(english:"Check for the openSUSE-2018-1027 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"This update for hylafax+ fixes the following issues :
Security issues fixed in 5.6.1 :
- CVE-2018-17141: multiple vulnerabilities affecting fax
page reception in JPEG format Specially crafted input
may have allowed remote execution of arbitrary code
(boo#1109084)
Additionally, this update also contains all upstream corrections and
bugfixes in the 5.6.1 version, including :
- fix RFC2047 encoding by notify
- add jobcontrol PageSize feature
- don't wait forever after +FRH:3
- fix faxmail transition between a message and external
types
- avoid pagehandling from introducing some unnecessary EOM
signals
- improve proxy connection error handling and logging
- add initial ModemGroup limits feature
- pass the user's uid onto the session log file for sent
faxes
- improve job waits to minimize triggers
- add ProxyTaglineFormat and ProxyTSI features"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1109084"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected hylafax+ packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:hylafax+");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:hylafax+-client");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:hylafax+-client-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:hylafax+-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:hylafax+-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libfaxutil5_6_1");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libfaxutil5_6_1-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:15.0");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.3");
script_set_attribute(attribute:"patch_publication_date", value:"2018/09/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/09/24");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE15\.0|SUSE42\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "15.0 / 42.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE15.0", cpu:"x86_64", reference:"hylafax+-5.6.1-lp150.5.6.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", cpu:"x86_64", reference:"hylafax+-client-5.6.1-lp150.5.6.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", cpu:"x86_64", reference:"hylafax+-client-debuginfo-5.6.1-lp150.5.6.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", cpu:"x86_64", reference:"hylafax+-debuginfo-5.6.1-lp150.5.6.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", cpu:"x86_64", reference:"hylafax+-debugsource-5.6.1-lp150.5.6.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", cpu:"x86_64", reference:"libfaxutil5_6_1-5.6.1-lp150.5.6.1") ) flag++;
if ( rpm_check(release:"SUSE15.0", cpu:"x86_64", reference:"libfaxutil5_6_1-debuginfo-5.6.1-lp150.5.6.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"hylafax+-5.6.1-15.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"hylafax+-client-5.6.1-15.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"hylafax+-client-debuginfo-5.6.1-15.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"hylafax+-debuginfo-5.6.1-15.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"hylafax+-debugsource-5.6.1-15.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"libfaxutil5_6_1-5.6.1-15.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"libfaxutil5_6_1-debuginfo-5.6.1-15.1") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "hylafax+ / hylafax+-client / hylafax+-client-debuginfo / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | opensuse | hylafax%2b | p-cpe:/a:novell:opensuse:hylafax%2b |
| novell | opensuse | hylafax%2b-client | p-cpe:/a:novell:opensuse:hylafax%2b-client |
| novell | opensuse | hylafax%2b-client-debuginfo | p-cpe:/a:novell:opensuse:hylafax%2b-client-debuginfo |
| novell | opensuse | hylafax%2b-debuginfo | p-cpe:/a:novell:opensuse:hylafax%2b-debuginfo |
| novell | opensuse | hylafax%2b-debugsource | p-cpe:/a:novell:opensuse:hylafax%2b-debugsource |
| novell | opensuse | libfaxutil5_6_1 | p-cpe:/a:novell:opensuse:libfaxutil5_6_1 |
| novell | opensuse | libfaxutil5_6_1-debuginfo | p-cpe:/a:novell:opensuse:libfaxutil5_6_1-debuginfo |
| novell | opensuse | 15.0 | cpe:/o:novell:opensuse:15.0 |
| novell | opensuse | 42.3 | cpe:/o:novell:opensuse:42.3 |
Related
openvas
openvas
Debian: Security Advisory (DLA-1515-1)
2018-09-23 00:00:00
Mageia: Security Advisory (MGASA-2018-0456)
2022-01-28 00:00:00
Fedora Update for hylafax+ FEDORA-2018-11b966722a
2018-09-28 00:00:00
nessus
nessus
Debian DLA-1515-1 : hylafax security update
2018-09-24 00:00:00
Fedora 29 : hylafax+ (2018-b21354b100)
2019-01-03 00:00:00
Debian DSA-4298-1 : hylafax - security update
2018-09-21 00:00:00
freebsd
freebsd
comms/hylafax -- Malformed fax sender remote code execution in JPEG support
2018-08-24 00:00:00
osv
osv
hylafax - security update
2018-09-20 00:00:00
CVE-2018-17141
2018-09-21 17:29:07
hylafax - security update
2018-09-22 00:00:00
nvd
nvd
CVE-2018-17141
2018-09-21 17:29:07
cve
cve
CVE-2018-17141
2018-09-21 17:29:07
debian
debian
[SECURITY] [DLA 1515-1] hylafax security update
2018-09-22 21:14:31
[SECURITY] [DSA 4298-1] hylafax security update
2018-09-20 19:04:19
suse
suse
Security update for hylafax+ (critical)
2018-09-22 09:29:24
Security update for hylafax+ (critical)
2018-09-21 21:49:49
debiancve
debiancve
CVE-2018-17141
2018-09-21 17:29:07
prion
prion
Code injection
2018-09-21 17:29:00
zdt
zdt
alpinelinux
alpinelinux
CVE-2018-17141
2018-09-21 17:29:07
ubuntucve
ubuntucve
CVE-2018-17141
2018-09-21 00:00:00
mageia
mageia
Updated hylafax+ packages fix security vulnerability
2018-11-18 01:23:26
cvelist
cvelist
CVE-2018-17141
2018-09-21 17:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
0.068 Low
EPSS
Percentile
93.9%
Related for OPENSUSE-2018-1027.NASL