Lucene search
This script is Copyright (C) 2021-2022 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2021-1172.NASLHistoryAug 21, 2021 - 12:00 a.m.
openSUSE 15 Security Update : chromium (openSUSE-SU-2021:1172-1)
2021-08-2100:00:00
This script is Copyright (C) 2021-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2021:1172-1 advisory.
-
Type Confusion in V8. (CVE-2021-30598, CVE-2021-30599)
-
Use after free in Printing. (CVE-2021-30600)
-
Use after free in Extensions API. (CVE-2021-30601)
-
Use after free in WebRTC. (CVE-2021-30602)
-
Race in WebAudio. (CVE-2021-30603)
-
Use after free in ANGLE. (CVE-2021-30604)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
#
# The package checks in this plugin were extracted from
# openSUSE Security Update openSUSE-SU-2021:1172-1. The text itself
# is copyright (C) SUSE.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(152731);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2022/01/20");
script_cve_id(
"CVE-2021-30598",
"CVE-2021-30599",
"CVE-2021-30600",
"CVE-2021-30601",
"CVE-2021-30602",
"CVE-2021-30603",
"CVE-2021-30604"
);
script_name(english:"openSUSE 15 Security Update : chromium (openSUSE-SU-2021:1172-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote SUSE Linux SUSE15 host has packages installed that are affected by multiple vulnerabilities as referenced in
the openSUSE-SU-2021:1172-1 advisory.
- Type Confusion in V8. (CVE-2021-30598, CVE-2021-30599)
- Use after free in Printing. (CVE-2021-30600)
- Use after free in Extensions API. (CVE-2021-30601)
- Use after free in WebRTC. (CVE-2021-30602)
- Race in WebAudio. (CVE-2021-30603)
- Use after free in ANGLE. (CVE-2021-30604)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1189490");
# https://lists.opensuse.org/archives/list/[email protected]/thread/A6WKS2BLZ2TY63ZSCC2NAODDOSDSPKTN/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?524b2b2d");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-30598");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-30599");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-30600");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-30601");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-30602");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-30603");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-30604");
script_set_attribute(attribute:"solution", value:
"Update the affected chromedriver and / or chromium packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-30604");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2021/08/16");
script_set_attribute(attribute:"patch_publication_date", value:"2021/08/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/08/21");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:chromedriver");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:chromium");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:15.2");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2021-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include('audit.inc');
include('global_settings.inc');
include('misc_func.inc');
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var release = get_kb_item('Host/SuSE/release');
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, 'openSUSE');
var os_ver = pregmatch(pattern: "^SUSE([\d.]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'openSUSE');
os_ver = os_ver[1];
if (release !~ "^(SUSE15\.2)$") audit(AUDIT_OS_RELEASE_NOT, 'openSUSE', '15.2', release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'openSUSE ' + os_ver, cpu);
var pkgs = [
{'reference':'chromedriver-92.0.4515.159-lp152.2.122.1', 'cpu':'x86_64', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},
{'reference':'chromium-92.0.4515.159-lp152.2.122.1', 'cpu':'x86_64', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach package_array ( pkgs ) {
var reference = NULL;
var release = NULL;
var cpu = NULL;
var rpm_spec_vers_cmp = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) release = package_array['release'];
if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (reference && release) {
if (rpm_check(release:release, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'chromedriver / chromium');
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30598
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30599
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30600
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30601
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30602
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30603
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30604
www.nessus.org/u?524b2b2d
bugzilla.suse.com/1189490
www.suse.com/security/cve/CVE-2021-30598
www.suse.com/security/cve/CVE-2021-30599
www.suse.com/security/cve/CVE-2021-30600
www.suse.com/security/cve/CVE-2021-30601
www.suse.com/security/cve/CVE-2021-30602
www.suse.com/security/cve/CVE-2021-30603
www.suse.com/security/cve/CVE-2021-30604
Related
nessus
nessus
FreeBSD : chromium -- multiple vulnerabilities (128deba6-ff56-11eb-8514-3065ec8fd3ec)
2021-08-18 00:00:00
Google Chrome < 92.0.4515.159 Multiple Vulnerabilities
2021-08-16 00:00:00
openSUSE 15 Security Update : chromium (openSUSE-SU-2021:1180-1)
2021-08-24 00:00:00
suse
suse
Security update for opera (important)
2021-09-03 00:00:00
Security update for chromium (important)
2021-08-21 00:00:00
Security update for chromium (important)
2021-08-23 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2021-08-16 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2021-08-16 00:00:00
kaspersky
kaspersky
KLA12267 Multiple vulnerabilities in Microsoft Browser
2021-08-19 00:00:00
cnvd
cnvd
Google Chrome Post-release Reuse Vulnerability (CNVD-2021-68455)
2021-08-18 00:00:00
Google Chrome ANGLE code execution vulnerability
2021-08-18 00:00:00
Google Chrome Type Obfuscation Vulnerability (CNVD-2021-68456)
2021-08-18 00:00:00
veracode
veracode
Denial Of Service (DoS)
2021-08-27 12:52:42
Denial Of Service
2021-08-27 12:52:46
Remote Code Execution (RCE)
2021-08-27 10:47:48
prion
prion
Design/Logic Flaw
2021-08-26 18:15:00
Design/Logic Flaw
2021-08-26 18:15:00
Design/Logic Flaw
2021-08-26 18:15:00
cve
cve
alpinelinux
alpinelinux
ubuntucve
ubuntucve
debiancve
debiancve
mscve
mscve
Chromium: CVE-2021-30604 Use after free in ANGLE
2021-08-19 07:00:00
Chromium: CVE-2021-30603 Race in WebAudio
2021-08-19 07:00:00
Chromium: CVE-2021-30602 Use after free in WebRTC
2021-08-19 07:00:00
redhatcve
redhatcve
CVE-2021-30598
2022-05-20 22:58:45
talos
talos
Google Chrome WebRTC addIceCandidate use after free vulnerability
2021-11-16 00:00:00
fedora
fedora
[SECURITY] Fedora 34 Update: chromium-93.0.4577.63-1.fc34
2021-09-13 13:09:01
[SECURITY] Fedora 35 Update: chromium-93.0.4577.63-1.fc35
2021-09-24 20:47:44
[SECURITY] Fedora 33 Update: chromium-93.0.4577.63-1.fc33
2021-09-13 03:49:46
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2022-01-31 00:00:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0602
2023-06-21 00:00:00
Related for OPENSUSE-2021-1172.NASL