Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2023-0365-1.NASLHistoryNov 14, 2023 - 12:00 a.m.
openSUSE 15 Security Update : vlc (openSUSE-SU-2023:0365-1)
2023-11-1400:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
opensuse 15
vlc
security update
multiple vulnerabilities
zlib
inflate
heap buffer overflow
libvpx
google chrome
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0.306
Percentile
97.0%
The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the openSUSE-SU-2023:0365-1 advisory.
-
zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g., see the nodejs/node reference). (CVE-2022-37434)
-
Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High) (CVE-2023-5217)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# openSUSE Security Update openSUSE-SU-2023:0365-1. The text itself
# is copyright (C) SUSE.
##
include('compat.inc');
if (description)
{
script_id(185535);
script_version("1.0");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/11/14");
script_cve_id("CVE-2022-37434", "CVE-2023-5217");
script_xref(name:"CISA-KNOWN-EXPLOITED", value:"2023/10/23");
script_name(english:"openSUSE 15 Security Update : vlc (openSUSE-SU-2023:0365-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote openSUSE host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the
openSUSE-SU-2023:0365-1 advisory.
- zlib through 1.2.12 has a heap-based buffer over-read or buffer overflow in inflate in inflate.c via a
large gzip header extra field. NOTE: only applications that call inflateGetHeader are affected. Some
common applications bundle the affected zlib source code but may be unable to call inflateGetHeader (e.g.,
see the nodejs/node reference). (CVE-2022-37434)
- Heap buffer overflow in vp8 encoding in libvpx in Google Chrome prior to 117.0.5938.132 and libvpx 1.13.1
allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium
security severity: High) (CVE-2023-5217)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
# https://lists.opensuse.org/archives/list/[email protected]/thread/4PHTZYGRNV6PDZMHUALPCK2YD6IRL3XD/
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?70608225");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2022-37434");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2023-5217");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-5217");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2022-37434");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2022/08/05");
script_set_attribute(attribute:"patch_publication_date", value:"2023/11/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/11/14");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libvlc5");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libvlccore9");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vlc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vlc-codec-gstreamer");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vlc-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vlc-jack");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vlc-lang");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vlc-noX");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vlc-opencv");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vlc-qt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vlc-vdpau");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:15.4");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/SuSE/release');
if (isnull(os_release) || os_release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, 'openSUSE');
var _os_ver = pregmatch(pattern: "^SUSE([\d.]+)", string:os_release);
if (isnull(_os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'openSUSE');
_os_ver = _os_ver[1];
if (os_release !~ "^(SUSE15\.4)$") audit(AUDIT_OS_RELEASE_NOT, 'openSUSE', '15.4', os_release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'openSUSE ' + _os_ver, cpu);
var pkgs = [
{'reference':'libvlc5-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libvlc5-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libvlccore9-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libvlccore9-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-codec-gstreamer-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-codec-gstreamer-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-devel-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-devel-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-jack-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-jack-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-lang-3.0.20-bp154.2.6.1', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-noX-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-noX-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-opencv-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-opencv-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-qt-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-qt-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-vdpau-3.0.20-bp154.2.6.1', 'cpu':'aarch64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE},
{'reference':'vlc-vdpau-3.0.20-bp154.2.6.1', 'cpu':'x86_64', 'release':'SUSE15.4', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var _cpu = NULL;
var rpm_spec_vers_cmp = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (reference && _release) {
if (rpm_check(release:_release, cpu:_cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libvlc5 / libvlccore9 / vlc / vlc-codec-gstreamer / vlc-devel / etc');
}
Related
openvas
openvas
openSUSE: Security Advisory for vlc (openSUSE-SU-2023:0365-1)
2024-03-04 00:00:00
openSUSE: Security Advisory for vlc (openSUSE-SU-2023:0366-1)
2024-03-04 00:00:00
Huawei EulerOS: Security Advisory for zlib (EulerOS-SA-2022-2705)
2022-11-03 00:00:00
osv
osv
libvlc5-3.0.19-1.1 on GA media
2024-06-15 00:00:00
zlib - security update
2022-09-12 00:00:00
Moderate: rsync security and bug fix update
2022-11-15 00:00:00
nessus
nessus
openSUSE 15 Security Update : vlc (openSUSE-SU-2023:0366-1)
2023-11-14 00:00:00
EulerOS 2.0 SP10 : zlib (EulerOS-SA-2022-2673)
2022-11-02 00:00:00
AlmaLinux 9 : zlib (ALSA-2022:7314)
2022-11-03 00:00:00
cloudlinux
cloudlinux
Fixed CVE-2022-37434 in rsync
2022-08-25 15:56:39
Fixed CVE-2022-37434 in zlib
2022-08-17 18:47:33
rosalinux
rosalinux
Advisory ROSA-SA-2023-2131
2023-03-14 14:13:27
debian
debian
[SECURITY] [DLA 3103-1] zlib security update
2022-09-12 09:00:53
[SECURITY] [DSA 5218-1] zlib security update
2022-08-25 19:51:59
[SECURITY] [DSA 5510-1] libvpx security update
2023-09-29 21:10:17
amazon
amazon
Medium: zlib
2022-12-01 17:34:00
Medium: rsync
2023-06-05 16:39:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-22:13.zlib
2022-08-30 00:00:00
cloudfoundry
cloudfoundry
USN-5573-1: rsync vulnerability | Cloud Foundry
2022-08-25 00:00:00
USN-5570-1: zlib vulnerability | Cloud Foundry
2023-01-19 00:00:00
USN-5573-1: rsync vulnerability | Cloud Foundry
2023-01-19 00:00:00
ibm
ibm
Security Bulletin: Zlib for IBM i is vulnerable to a buffer overflow issue during inflate (CVE-2022-37434)
2022-11-01 14:26:43
redhat
redhat
(RHSA-2022:7106) Moderate: zlib security update
2022-10-25 07:22:56
(RHSA-2024:0254) Moderate: rsync security update
2024-01-15 15:28:49
(RHSA-2023:1095) Moderate: zlib security update
2023-03-07 08:56:16
freebsd
freebsd
FreeBSD -- zlib heap buffer overflow
2022-08-30 00:00:00
electron{22,24,25} -- Heap buffer overflow in vp8 encoding in libvpx
2023-09-28 00:00:00
oraclelinux
oraclelinux
zlib security update
2022-11-09 00:00:00
zlib security update
2022-11-02 00:00:00
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Zlib
2022-09-14 07:28:23
Exploit for Out-of-bounds Write in Zlib
2022-09-30 10:20:36
Exploit for Out-of-bounds Write in Webmproject Libvpx
2023-10-06 05:46:16
qt
qt
Security advisory: zlib in Qt
2022-09-12 00:00:00
wolfi
wolfi
CVE-2022-37434 vulnerabilities
2024-09-30 03:53:08
centos
centos
minizip, zlib security update
2023-03-08 16:30:28
f5
f5
K67213091 : Zlib vulnerability CVE-2022-37434
2022-10-21 00:00:00
K000137105 : libvpx vulnerability CVE-2023-5217
2023-10-03 00:00:00
rocky
rocky
zlib security update
2022-10-25 07:22:56
zlib security update
2022-11-02 13:50:56
almalinux
almalinux
Moderate: rsync security and bug fix update
2022-11-15 00:00:00
Moderate: rsync security and enhancement update
2022-11-08 00:00:00
debiancve
debiancve
CVE-2022-37434
2022-08-05 07:15:07
CVE-2023-5217
2023-09-28 16:15:10
ubuntu
ubuntu
zlib vulnerability
2022-10-17 00:00:00
veracode
veracode
Denial Of Service (DoS)
2022-08-09 02:04:05
photon
photon
Critical Photon OS Security Update - PHSA-2022-0236
2022-08-23 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-37434 affecting package zlib for versions less than 1.2.12-2
2022-09-13 22:36:39
CVE-2022-37434 affecting package crash for versions less than 8.0.4-2
2024-06-21 09:32:44
fedora
fedora
[SECURITY] Fedora 37 Update: zlib-1.2.12-5.fc37
2022-09-14 00:23:02
[SECURITY] Fedora 39 Update: libvpx-1.13.0-5.fc39
2023-10-02 00:16:31
slackware
slackware
[slackware-security] zlib
2022-10-15 20:38:53
[slackware-security] mozilla-thunderbird
2023-09-30 21:42:55
[slackware-security] libvpx
2023-09-30 21:42:24
redos
redos
ROS-20221207-01
2022-12-07 00:00:00
ROS-20231016-04
2023-10-16 00:00:00
suse
suse
Security update for zlib (important)
2022-09-01 00:00:00
cgr
cgr
CVE-2022-37434 vulnerabilities
2024-05-19 03:07:16
alpinelinux
alpinelinux
CVE-2022-37434
2022-08-05 07:15:07
CVE-2023-5217
2023-09-28 16:15:10
ubuntucve
ubuntucve
CVE-2023-5217
2023-09-29 00:00:00
mageia
mageia
Updated libvpx packages fix security vulnerability
2023-10-02 13:18:07
Updated zlib packages fix security vulnerability
2022-09-16 22:39:55
kaspersky
kaspersky
KLA60820 DoS vulnerability in Mozilla Firefox
2023-09-28 00:00:00
KLA61042 DoS vulnerability in Mozilla Thunderbird
2023-09-28 00:00:00
KLA61592 DoS vulnerability in Microsoft Office
2023-09-29 00:00:00
malwarebytes
malwarebytes
Update Chrome now! Google patches another actively exploited vulnerability
2023-09-29 11:15:00
mozilla
mozilla
cve
cve
CVE-2023-5217
2023-09-28 16:15:10
cisa_kev
cisa_kev
Google Chromium libvpx Heap Buffer Overflow Vulnerability
2023-10-02 00:00:00
redhatcve
redhatcve
CVE-2023-5217
2023-09-28 14:24:48
CVE-2022-37434
2022-08-09 06:36:51
cvelist
cvelist
CVE-2023-5217
2023-09-28 15:23:18
nvd
nvd
CVE-2023-5217
2023-09-28 16:15:10
mscve
mscve
Chromium: CVE-2023-5217 Heap buffer overflow in vp8 encoding in libvpx
2023-09-29 16:24:54
attackerkb
attackerkb
CVE-2023-5217
2023-09-28 00:00:00
github
github
CefSharp affected by libvpx's heap buffer overflow in vp8 encoding
2023-10-05 13:22:50
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
7.8
Confidence
High
EPSS
0.306
Percentile
97.0%
Related for OPENSUSE-2023-0365-1.NASL