Lucene search
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2021-901.NASLHistoryJun 28, 2021 - 12:00 a.m.
openSUSE 15 Security Update : python-rsa (openSUSE-SU-2021:0901-1)
2021-06-2800:00:00
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
7.5 High
AI Score
Confidence
High
The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the openSUSE-SU-2021:0901-1 advisory.
- Python-RSA before 4.1 ignores leading ‘\0’ bytes during decryption of ciphertext. This could conceivably have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python- RSA, or if the length of accepted ciphertext affects application behavior (such as by causing excessive memory allocation). (CVE-2020-13757)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable Network Security, Inc.
#
# The package checks in this plugin were extracted from
# openSUSE Security Update openSUSE-SU-2021:0901-1. The text itself
# is copyright (C) SUSE.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(151067);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/12/12");
script_cve_id("CVE-2020-13757");
script_name(english:"openSUSE 15 Security Update : python-rsa (openSUSE-SU-2021:0901-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The remote SUSE Linux SUSE15 host has packages installed that are affected by a vulnerability as referenced in the
openSUSE-SU-2021:0901-1 advisory.
- Python-RSA before 4.1 ignores leading '\0' bytes during decryption of ciphertext. This could conceivably
have a security-relevant impact, e.g., by helping an attacker to infer that an application uses Python-
RSA, or if the length of accepted ciphertext affects application behavior (such as by causing excessive
memory allocation). (CVE-2020-13757)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1172389");
# https://lists.opensuse.org/archives/list/[email protected]/thread/P3ME7Z7HY3RZGMZEXVYWABVMMLGMXE2S/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?a7bf29e4");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-13757");
script_set_attribute(attribute:"solution", value:
"Update the affected python2-rsa and / or python3-rsa packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-13757");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/06/01");
script_set_attribute(attribute:"patch_publication_date", value:"2021/06/23");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/06/28");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:python2-rsa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:python3-rsa");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:15.2");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include('audit.inc');
include('global_settings.inc');
include('misc_func.inc');
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item('Host/SuSE/release');
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, 'openSUSE');
os_ver = pregmatch(pattern: "^SUSE([\d.]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'openSUSE');
os_ver = os_ver[1];
if (release !~ "^(SUSE15\.2)$") audit(AUDIT_OS_RELEASE_NOT, 'openSUSE', '15.2', release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'openSUSE ' + os_ver, cpu);
pkgs = [
{'reference':'python2-rsa-3.4.2-lp152.4.3.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python3-rsa-3.4.2-lp152.4.3.1', 'release':'SUSE15.2', 'rpm_spec_vers_cmp':TRUE}
];
flag = 0;
foreach package_array ( pkgs ) {
reference = NULL;
release = NULL;
cpu = NULL;
rpm_spec_vers_cmp = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) release = package_array['release'];
if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (reference && release) {
if (rpm_check(release:release, cpu:cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'python2-rsa / python3-rsa');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | opensuse | python2-rsa | p-cpe:/a:novell:opensuse:python2-rsa |
| novell | opensuse | python3-rsa | p-cpe:/a:novell:opensuse:python3-rsa |
| novell | opensuse | 15.2 | cpe:/o:novell:opensuse:15.2 |
Related
suse
suse
Security update for python-rsa (important)
2021-06-24 00:00:00
Security update for python-rsa (important)
2021-07-11 00:00:00
nessus
nessus
SUSE SLED15 / SLES15 Security Update : python-rsa (SUSE-SU-2021:2008-1)
2021-06-21 00:00:00
EulerOS 2.0 SP3 : python-rsa (EulerOS-SA-2020-2070)
2020-09-28 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for python-rsa (EulerOS-SA-2020-1980)
2020-09-08 00:00:00
Huawei EulerOS: Security Advisory for python-rsa (EulerOS-SA-2020-2050)
2020-09-29 00:00:00
openSUSE: Security Advisory for python-rsa (openSUSE-SU-2021:2008-1)
2021-07-13 00:00:00
debiancve
debiancve
CVE-2020-13757
2020-06-01 19:15:00
ubuntucve
ubuntucve
CVE-2020-13757
2020-06-01 00:00:00
osv
osv
CVE-2020-13757
2020-06-01 19:15:10
python-rsa vulnerability
2022-02-21 17:25:41
PYSEC-2020-99
2020-06-01 19:15:00
fedora
fedora
[SECURITY] Fedora 31 Update: python-rsa-3.4.2-15.fc31
2020-07-13 01:39:28
[SECURITY] Fedora 32 Update: python-rsa-3.4.2-15.fc32
2020-07-14 01:14:05
mageia
mageia
Updated python-rsa packages fix security vulnerability
2020-09-06 23:33:09
veracode
veracode
Information Disclosure
2020-06-02 01:46:25
amazon
amazon
Medium: python-rsa
2020-07-31 19:21:00
Medium: python-rsa
2020-08-26 23:09:00
ubuntu
ubuntu
Python-RSA vulnerability
2022-02-21 00:00:00
Python-RSA vulnerability
2020-08-31 00:00:00
github
github
Python-RSA decryption of ciphertext leads to DoS
2021-03-24 18:24:39
redhatcve
redhatcve
CVE-2020-13757
2020-06-18 13:25:19
cve
cve
CVE-2020-13757
2020-06-01 19:15:00
prion
prion
Memory corruption
2020-06-01 19:15:00
ibm
ibm
redhat
redhat