Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2018-517.NASL
HistoryMay 25, 2018 - 12:00 a.m.

openSUSE Security Update : icu (openSUSE-2018-517)

2018-05-2500:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

icu was updated to fix two security issues.

These security issues were fixed :

  • CVE-2014-8147: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) used an integer data type that is inconsistent with a header file, which allowed remote attackers to cause a denial of service (incorrect malloc followed by invalid free) or possibly execute arbitrary code via crafted text (bsc#929629).

  • CVE-2014-8146: The resolveImplicitLevels function in common/ubidi.c in the Unicode Bidirectional Algorithm implementation in ICU4C in International Components for Unicode (ICU) did not properly track directionally isolated pieces of text, which allowed remote attackers to cause a denial of service (heap-based buffer overflow) or possibly execute arbitrary code via crafted text (bsc#929629).

  • CVE-2016-6293: The uloc_acceptLanguageFromHTTP function in common/uloc.cpp in International Components for Unicode (ICU) for C/C++ did not ensure that there is a ‘\0’ character at the end of a certain temporary array, which allowed remote attackers to cause a denial of service (out-of-bounds read) or possibly have unspecified other impact via a call with a long httpAcceptLanguage argument (bsc#990636).

  • CVE-2017-7868: International Components for Unicode (ICU) for C/C++ 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_moveIndex32* function (bsc#1034674)

  • CVE-2017-7867: International Components for Unicode (ICU) for C/C++ 2017-02-13 has an out-of-bounds write caused by a heap-based buffer overflow related to the utf8TextAccess function in common/utext.cpp and the utext_setNativeIndex* function (bsc#1034678)

  • CVE-2017-14952: Double free in i18n/zonemeta.cpp in International Components for Unicode (ICU) for C/C++ allowed remote attackers to execute arbitrary code via a crafted string, aka a ‘redundant UVector entry clean up function call’ issue (bnc#1067203)

  • CVE-2017-17484: The ucnv_UTF8FromUTF8 function in ucnv_u8.cpp in International Components for Unicode (ICU) for C/C++ mishandled ucnv_convertEx calls for UTF-8 to UTF-8 conversion, which allowed remote attackers to cause a denial of service (stack-based buffer overflow and application crash) or possibly have unspecified other impact via a crafted string, as demonstrated by ZNC (bnc#1072193)

  • CVE-2017-15422: An integer overflow in icu during persian calendar date processing could lead to incorrect years shown (bnc#1077999)

This update was imported from the SUSE:SLE-12:Update update project.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2018-517.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(110107);
  script_version("1.4");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2014-8146", "CVE-2014-8147", "CVE-2016-6293", "CVE-2017-14952", "CVE-2017-15422", "CVE-2017-17484", "CVE-2017-7867", "CVE-2017-7868");

  script_name(english:"openSUSE Security Update : icu (openSUSE-2018-517)");
  script_summary(english:"Check for the openSUSE-2018-517 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"icu was updated to fix two security issues.

These security issues were fixed :

  - CVE-2014-8147: The resolveImplicitLevels function in
    common/ubidi.c in the Unicode Bidirectional Algorithm
    implementation in ICU4C in International Components for
    Unicode (ICU) used an integer data type that is
    inconsistent with a header file, which allowed remote
    attackers to cause a denial of service (incorrect malloc
    followed by invalid free) or possibly execute arbitrary
    code via crafted text (bsc#929629).

  - CVE-2014-8146: The resolveImplicitLevels function in
    common/ubidi.c in the Unicode Bidirectional Algorithm
    implementation in ICU4C in International Components for
    Unicode (ICU) did not properly track directionally
    isolated pieces of text, which allowed remote attackers
    to cause a denial of service (heap-based buffer
    overflow) or possibly execute arbitrary code via crafted
    text (bsc#929629).

  - CVE-2016-6293: The uloc_acceptLanguageFromHTTP function
    in common/uloc.cpp in International Components for
    Unicode (ICU) for C/C++ did not ensure that there is a
    '\0' character at the end of a certain temporary array,
    which allowed remote attackers to cause a denial of
    service (out-of-bounds read) or possibly have
    unspecified other impact via a call with a long
    httpAcceptLanguage argument (bsc#990636).

  - CVE-2017-7868: International Components for Unicode
    (ICU) for C/C++ 2017-02-13 has an out-of-bounds write
    caused by a heap-based buffer overflow related to the
    utf8TextAccess function in common/utext.cpp and the
    utext_moveIndex32* function (bsc#1034674)

  - CVE-2017-7867: International Components for Unicode
    (ICU) for C/C++ 2017-02-13 has an out-of-bounds write
    caused by a heap-based buffer overflow related to the
    utf8TextAccess function in common/utext.cpp and the
    utext_setNativeIndex* function (bsc#1034678)

  - CVE-2017-14952: Double free in i18n/zonemeta.cpp in
    International Components for Unicode (ICU) for C/C++
    allowed remote attackers to execute arbitrary code via a
    crafted string, aka a 'redundant UVector entry clean up
    function call' issue (bnc#1067203)

  - CVE-2017-17484: The ucnv_UTF8FromUTF8 function in
    ucnv_u8.cpp in International Components for Unicode
    (ICU) for C/C++ mishandled ucnv_convertEx calls for
    UTF-8 to UTF-8 conversion, which allowed remote
    attackers to cause a denial of service (stack-based
    buffer overflow and application crash) or possibly have
    unspecified other impact via a crafted string, as
    demonstrated by ZNC (bnc#1072193)

  - CVE-2017-15422: An integer overflow in icu during
    persian calendar date processing could lead to incorrect
    years shown (bnc#1077999)

This update was imported from the SUSE:SLE-12:Update update project."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1034674"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1034678"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1067203"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1072193"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1077999"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1087932"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=929629"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=990636"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected icu packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icu");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icu-data");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icu-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:icu-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libicu-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libicu-devel-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libicu52_1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libicu52_1-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libicu52_1-data");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libicu52_1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libicu52_1-debuginfo-32bit");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.3");

  script_set_attribute(attribute:"patch_publication_date", value:"2018/05/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/05/25");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE42\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "42.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE42.3", reference:"icu-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"icu-data-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"icu-debuginfo-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"icu-debugsource-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"libicu-devel-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"libicu52_1-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"libicu52_1-data-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"libicu52_1-debuginfo-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"libicu-devel-32bit-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"libicu52_1-32bit-52.1-18.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", cpu:"x86_64", reference:"libicu52_1-debuginfo-32bit-52.1-18.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "icu / icu-data / icu-debuginfo / icu-debugsource / etc");
}
VendorProductVersionCPE
novellopensuseicup-cpe:/a:novell:opensuse:icu
novellopensuseicu-datap-cpe:/a:novell:opensuse:icu-data
novellopensuseicu-debuginfop-cpe:/a:novell:opensuse:icu-debuginfo
novellopensuseicu-debugsourcep-cpe:/a:novell:opensuse:icu-debugsource
novellopensuselibicu-develp-cpe:/a:novell:opensuse:libicu-devel
novellopensuselibicu-devel-32bitp-cpe:/a:novell:opensuse:libicu-devel-32bit
novellopensuselibicu52_1p-cpe:/a:novell:opensuse:libicu52_1
novellopensuselibicu52_1-32bitp-cpe:/a:novell:opensuse:libicu52_1-32bit
novellopensuselibicu52_1-datap-cpe:/a:novell:opensuse:libicu52_1-data
novellopensuselibicu52_1-debuginfop-cpe:/a:novell:opensuse:libicu52_1-debuginfo
Rows per page:
1-10 of 121

Related

nessus 50
openvas 33
suse 1
ibm 10
securityvulns 2
f5 3
exploitpack 1
cert 1
gentoo 3
ubuntu 7
fedora 8
debian 8
freebsd 1
redhatcve 6
osv 10
ubuntucve 8
mageia 5
exploitdb 1
prion 8
cve 10
veracode 4
cloudfoundry 3
archlinux 2
debiancve 8
threatpost 1
alpinelinux 3
photon 1
kaspersky 1
nessus
nessus
SUSE SLED12 / SLES12 Security Update : icu (SUSE-SU-2018:1401-1)
2018-05-24 00:00:00
SUSE SLES12 Security Update : icu (SUSE-SU-2018:1401-2)
2018-10-22 00:00:00
SUSE SLES11 Security Update : icu (SUSE-SU-2018:1602-1)
2018-06-11 00:00:00
openvas
openvas
openSUSE: Security Advisory for icu (openSUSE-SU-2018:1422-1)
2018-05-26 00:00:00
Ubuntu Update for icu USN-2605-1
2015-05-12 00:00:00
Gentoo Security Advisory GLSA 201507-04
2015-09-29 00:00:00
suse
suse
Security update for icu (moderate)
2018-05-25 11:33:28
ibm
ibm
Security Bulletin: IBM Flex System Chassis Management Module (CMM) is affected by vulnerabilities in ICU
2023-12-07 22:45:02
Security Bulletin: Multiple vulnerabilities in ICU libraries used in IBM DataPower Gateway
2021-09-10 14:15:27
Security Bulletin: IBM DataPower Gateway Virtual Edition uses out of date ICU libraries in open-vm-tools
2022-06-02 12:50:09
securityvulns
securityvulns
[CVE-2014-8146/8147] - ICU heap and integer overflows / I-C-U-FAIL
2015-05-11 00:00:00
libicu security vulnerabilities
2015-05-11 00:00:00
f5
f5
K16835 : ICU overflow vulnerabilities CVE-2014-8146 and CVE-2014-8147
2015-07-02 00:00:00
SOL16835 - ICU overflow vulnerabilities CVE-2014-8146 and CVE-2014-8147
2015-07-02 00:00:00
K49331953 : libicu vulnerability CVE-2017-17484
2018-01-31 00:00:00
exploitpack
exploitpack
ICU library 52 54 - Multiple Vulnerabilities
2015-06-10 00:00:00
cert
cert
ICU Project ICU4C library contains multiple overflow vulnerabilities
2015-05-04 00:00:00
gentoo
gentoo
International Components for Unicode: Multiple vulnerabilities
2015-07-07 00:00:00
ICU: Multiple vulnerabilities
2017-10-08 00:00:00
ICU: Multiple vulnerabilities
2017-01-24 00:00:00
ubuntu
ubuntu
ICU vulnerabilities
2015-05-11 00:00:00
ICU vulnerabilities
2017-05-02 00:00:00
ICU vulnerabilities
2017-07-18 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: icu-57.1-10.fc27
2018-09-17 18:53:01
[SECURITY] Fedora 26 Update: icu-57.1-6.fc26
2017-05-01 18:19:32
[SECURITY] Fedora 25 Update: icu-57.1-5.fc25
2017-04-25 02:27:47
debian
debian
[SECURITY] [DSA 3830-1] icu security update
2017-04-19 06:44:37
[SECURITY] [DSA 3830-1] icu security update
2017-04-19 06:44:37
[SECURITY] [DLA 947-1] icu security update
2017-05-20 14:28:38
freebsd
freebsd
icu -- multiple vulnerabilities
2017-01-21 00:00:00
redhatcve
redhatcve
CVE-2017-7868
2017-04-20 14:48:16
CVE-2017-17484
2017-12-12 08:19:50
CVE-2016-6293
2016-07-26 13:18:23
osv
osv
icu - security update
2017-05-20 00:00:00
icu - security update
2017-04-19 00:00:00
icu - security update
2015-08-01 00:00:00
ubuntucve
ubuntucve
CVE-2017-7868
2017-04-14 00:00:00
CVE-2014-8146
2014-12-31 00:00:00
CVE-2017-14952
2017-10-16 00:00:00
mageia
mageia
Updated icu packages fix security vulnerability
2017-04-24 10:27:32
Updated icu package fixes security vulnerabilities
2015-07-27 20:34:09
Updated icu packages fix security vulnerability
2016-09-21 23:38:22
exploitdb
exploitdb
ICU library 52 < 54 - Multiple Vulnerabilities
2015-06-10 00:00:00
prion
prion
Stack overflow
2017-12-10 20:29:00
Design/Logic Flaw
2015-05-25 22:59:00
Heap overflow
2015-05-25 22:59:00
cve
cve
CVE-2017-17484
2017-12-10 20:29:00
CVE-2014-8146
2015-05-25 22:59:00
CVE-2014-8147
2015-05-25 22:59:00
veracode
veracode
Remote Code Execution (RCE)
2018-05-28 17:12:41
Remote Code Execution (RCE)
2018-05-30 08:56:39
Denial Of Service (DoS) Through Buffer Overflow
2017-07-06 07:36:26
cloudfoundry
cloudfoundry
USN-3458-1: ICU vulnerability | Cloud Foundry
2017-11-27 00:00:00
USN-3610-1: ICU vulnerability | Cloud Foundry
2018-05-02 00:00:00
USN-3227-1: ICU vulnerabilities | Cloud Foundry
2017-03-31 00:00:00
archlinux
archlinux
[ASA-201711-25] icu: arbitrary code execution
2017-11-19 00:00:00
[ASA-201711-26] lib32-icu: arbitrary code execution
2017-11-20 00:00:00
debiancve
debiancve
CVE-2017-17484
2017-12-10 20:29:00
CVE-2014-8146
2015-05-25 22:59:00
CVE-2014-8147
2015-05-25 22:59:00
threatpost
threatpost
ICU Project ICU4C Library Vulnerabilities Patched
2015-05-05 11:21:07
alpinelinux
alpinelinux
CVE-2016-6293
2016-07-25 14:59:00
CVE-2017-7868
2017-04-14 04:59:00
CVE-2017-7867
2017-04-14 04:59:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0288
2020-10-10 00:00:00
kaspersky
kaspersky
KLA11279 Multiple vulnerabilities in Apple iTunes
2017-12-06 00:00:00
JSON
Related for OPENSUSE-2018-517.NASL
nessus50openvas33suse1ibm10securityvulns2f53exploitpack1cert1gentoo3ubuntu7fedora8debian8freebsd1redhatcve6osv10ubuntucve8mageia5exploitdb1prion8cve10veracode4cloudfoundry3archlinux2debiancve8threatpost1alpinelinux3photon1kaspersky1