Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 Tenable Network Security, Inc.OPENSUSE-2018-325.NASL
HistoryMar 30, 2018 - 12:00 a.m.

openSUSE Security Update : tomcat (openSUSE-2018-325)

2018-03-3000:00:00
This script is Copyright (C) 2018-2021 Tenable Network Security, Inc.
www.tenable.com
11
JSON

This update for tomcat fixes the following issues :

Security issues fixed :

  • CVE-2018-1305: Fixed late application of security constraints that can lead to resource exposure for unauthorised users (bsc#1082481).

  • CVE-2018-1304: Fixed incorrect handling of empty string URL in security constraints that can lead to unitended exposure of resources (bsc#1082480).

  • CVE-2017-15706: Fixed incorrect documentation of CGI Servlet search algorithm that may lead to misconfiguration (bsc#1078677).

This update was imported from the SUSE:SLE-12-SP2:Update update project.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2018-325.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(108742);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2017-15706", "CVE-2018-1304", "CVE-2018-1305");

  script_name(english:"openSUSE Security Update : tomcat (openSUSE-2018-325)");
  script_summary(english:"Check for the openSUSE-2018-325 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update for tomcat fixes the following issues :

Security issues fixed :

  - CVE-2018-1305: Fixed late application of security
    constraints that can lead to resource exposure for
    unauthorised users (bsc#1082481).

  - CVE-2018-1304: Fixed incorrect handling of empty string
    URL in security constraints that can lead to unitended
    exposure of resources (bsc#1082480).

  - CVE-2017-15706: Fixed incorrect documentation of CGI
    Servlet search algorithm that may lead to
    misconfiguration (bsc#1078677).

This update was imported from the SUSE:SLE-12-SP2:Update update
project."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1078677"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1082480"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1082481"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected tomcat packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-admin-webapps");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-docs-webapp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-el-3_0-api");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-embed");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-javadoc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-jsp-2_3-api");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-jsvc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-lib");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-servlet-3_1-api");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:tomcat-webapps");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.3");

  script_set_attribute(attribute:"patch_publication_date", value:"2018/03/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/03/30");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE42\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "42.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);



flag = 0;

if ( rpm_check(release:"SUSE42.3", reference:"tomcat-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-admin-webapps-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-docs-webapp-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-el-3_0-api-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-embed-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-javadoc-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-jsp-2_3-api-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-jsvc-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-lib-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-servlet-3_1-api-8.0.50-12.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"tomcat-webapps-8.0.50-12.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "tomcat / tomcat-admin-webapps / tomcat-docs-webapp / etc");
}
VendorProductVersionCPE
novellopensusetomcatp-cpe:/a:novell:opensuse:tomcat
novellopensusetomcat-admin-webappsp-cpe:/a:novell:opensuse:tomcat-admin-webapps
novellopensusetomcat-docs-webappp-cpe:/a:novell:opensuse:tomcat-docs-webapp
novellopensusetomcat-el-3_0-apip-cpe:/a:novell:opensuse:tomcat-el-3_0-api
novellopensusetomcat-embedp-cpe:/a:novell:opensuse:tomcat-embed
novellopensusetomcat-javadocp-cpe:/a:novell:opensuse:tomcat-javadoc
novellopensusetomcat-jsp-2_3-apip-cpe:/a:novell:opensuse:tomcat-jsp-2_3-api
novellopensusetomcat-jsvcp-cpe:/a:novell:opensuse:tomcat-jsvc
novellopensusetomcat-libp-cpe:/a:novell:opensuse:tomcat-lib
novellopensusetomcat-servlet-3_1-apip-cpe:/a:novell:opensuse:tomcat-servlet-3_1-api
Rows per page:
1-10 of 121

Related

mageia 1
amazon 5
openvas 21
nessus 34
ibm 16
debian 5
fedora 4
osv 10
kaspersky 2
tomcat 8
freebsd 1
ubuntu 1
centos 1
redhat 10
ubuntucve 3
cve 3
debiancve 3
redhatcve 3
prion 3
veracode 3
github 3
f5 2
seebug 1
oraclelinux 1
symantec 1
atlassian 2
oracle 5
mageia
mageia
Updated tomcat packages fix security vulnerabilities
2018-02-28 16:55:21
amazon
amazon
Medium: tomcat80
2018-03-21 22:08:00
Medium: tomcat7, tomcat8
2018-03-21 22:06:00
Low: tomcat8
2018-02-20 21:37:00
openvas
openvas
Mageia: Security Advisory (MGASA-2018-0149)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0817-1)
2021-04-19 00:00:00
Fedora Update for tomcat FEDORA-2018-50f0da5d38
2018-04-06 00:00:00
nessus
nessus
Amazon Linux AMI : tomcat80 (ALAS-2018-973)
2018-03-27 00:00:00
Debian DLA-1301-1 : tomcat7 security update
2018-03-07 00:00:00
Apache Tomcat 8.5.x < 8.5.28 Security Constraint Weakness
2018-02-23 00:00:00
ibm
ibm
Security Bulletin: Open Source Apache Tomcat vulnerabilities affect IBM Tivoli Application Dependency Discovery Manager (TADDM) (CVE-2017-15698, CVE-2017-15706, CVE-2018-1304, CVE-2018-1305)
2018-06-17 15:51:09
Security Bulletin: Rational DOORS Web Access is affected by Apache Tomcat vulnerabilities
2018-06-22 03:56:40
Security Bulletin: Apache Tomcat as used in IBM QRadar SIEM is vulnerable to security constraint bypass. (CVE-2018-1304, CVE-2018-1305)
2019-02-06 22:45:01
debian
debian
[SECURITY] [DLA 1450-1] tomcat8 security update
2018-07-29 11:57:59
[SECURITY] [DLA 1301-1] tomcat7 security update
2018-03-06 13:24:42
[SECURITY] [DSA 4281-1] tomcat8 security update
2018-08-29 06:29:28
fedora
fedora
[SECURITY] Fedora 26 Update: tomcat-8.0.50-1.fc26
2018-04-04 16:47:53
[SECURITY] Fedora 27 Update: tomcat-8.0.50-1.fc27
2018-04-04 17:10:49
[SECURITY] Fedora 26 Update: tomcat-8.0.49-1.fc26
2018-02-20 16:40:04
osv
osv
tomcat7 - security update
2018-03-06 00:00:00
tomcat8 - security update
2018-07-29 00:00:00
Inconsistent documentation in Apache Tomcat
2022-05-14 01:10:15
kaspersky
kaspersky
KLA11203 Multiple vulnerabilities in Apache Tomcat
2018-02-13 00:00:00
KLA11189 DoS vulnerability in Apache Tomcat
2018-01-31 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 8.5.28
2018-02-11 00:00:00
Fixed in Apache Tomcat 9.0.5
2018-02-11 00:00:00
Fixed in Apache Tomcat 7.0.85
2018-02-13 00:00:00
freebsd
freebsd
tomcat -- Security constraints ignored or applied too late
2018-02-23 00:00:00
ubuntu
ubuntu
Tomcat vulnerabilities
2018-05-30 00:00:00
centos
centos
tomcat security update
2019-08-30 04:27:31
redhat
redhat
(RHSA-2019:2205) Moderate: tomcat security, bug fix, and enhancement update
2019-08-06 08:13:03
(RHSA-2018:1320) Critical: Red Hat OpenShift Application Runtimes security and bug fix update
2018-05-03 17:05:40
(RHSA-2018:0466) Important: Red Hat JBoss Web Server 3.1.0 Service Pack 2 security update
2018-03-07 15:08:21
ubuntucve
ubuntucve
CVE-2017-15706
2018-01-31 00:00:00
CVE-2018-1305
2018-02-23 00:00:00
CVE-2018-1304
2018-02-28 00:00:00
cve
cve
CVE-2017-15706
2018-01-31 14:29:00
CVE-2018-1305
2018-02-23 23:29:00
CVE-2018-1304
2018-02-28 20:29:00
debiancve
debiancve
CVE-2017-15706
2018-01-31 14:29:00
CVE-2018-1305
2018-02-23 23:29:00
CVE-2018-1304
2018-02-28 20:29:00
redhatcve
redhatcve
CVE-2017-15706
2020-04-08 19:53:58
CVE-2018-1305
2020-01-02 15:28:52
CVE-2018-1304
2020-01-07 21:28:52
prion
prion
Design/Logic Flaw
2018-01-31 14:29:00
Design/Logic Flaw
2018-02-23 23:29:00
Code injection
2018-02-28 20:29:00
veracode
veracode
Incorrect Documentation
2018-02-01 08:52:01
Security Constraint Bypass
2018-02-27 01:21:00
Authorization Bypass
2018-02-27 05:36:11
github
github
Inconsistent documentation in Apache Tomcat
2022-05-14 01:10:15
Apache Tomcat information exposure vulnerability
2018-10-17 16:31:48
Apache Tomcat unauthorized access vulnerability
2018-10-17 16:31:17
f5
f5
K32051722 : Apache Tomcat vulnerability CVE-2018-1305
2018-03-12 00:00:00
K04623854 : Apache Tomcat vulnerability CVE-2018-1304
2018-03-12 00:00:00
seebug
seebug
Apache Tomcat Security Bypass Vulnerability(CVE-2018-1305)
2018-02-27 00:00:00
oraclelinux
oraclelinux
tomcat security, bug fix, and enhancement update
2019-08-13 00:00:00
symantec
symantec
Apache Tomcat Vulnerabilities Jan-Aug 2018
2018-10-11 08:01:01
atlassian
atlassian
Update bundled Apache Tomcat due to security vulnerabilities
2017-04-17 08:48:35
Update bundled Apache Tomcat due to security vulnerabilities
2017-04-17 08:48:35
oracle
oracle
Oracle Critical Patch Update Advisory - July 2019
2019-07-16 00:00:00
Oracle Critical Patch Update Advisory - April 2019
2019-04-16 00:00:00
Oracle Critical Patch Update - October 2018
2018-12-18 00:00:00
JSON
Related for OPENSUSE-2018-325.NASL
mageia1amazon5openvas21nessus34ibm16debian5fedora4osv10kaspersky2tomcat8freebsd1ubuntu1centos1redhat10ubuntucve3cve3debiancve3redhatcve3prion3veracode3github3f52seebug1oraclelinux1symantec1atlassian2oracle5