Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2009-1127.NASL
HistoryJul 12, 2013 - 12:00 a.m.

Oracle Linux 4 / 5 : kdelibs (ELSA-2009-1127)

2013-07-1200:00:00
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
JSON

From Red Hat Security Advisory 2009:1127 :

Updated kdelibs packages that fix multiple security issues are now available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having critical security impact by the Red Hat Security Response Team.

The kdelibs packages provide libraries for the K Desktop Environment (KDE).

A flaw was found in the way the KDE CSS parser handled content for the CSS ‘style’ attribute. A remote attacker could create a specially crafted CSS equipped HTML page, which once visited by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror. (CVE-2009-1698)

A flaw was found in the way the KDE HTML parser handled content for the HTML ‘head’ element. A remote attacker could create a specially crafted HTML page, which once visited by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror.
(CVE-2009-1690)

An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the KDE JavaScript garbage collector handled memory allocation requests. A remote attacker could create a specially crafted HTML page, which once visited by an unsuspecting user, could cause a denial of service (Konqueror crash) or, potentially, execute arbitrary code with the privileges of the user running Konqueror.
(CVE-2009-1687)

Users should upgrade to these updated packages, which contain backported patches to correct these issues. The desktop must be restarted (log out, then log back in) for this update to take effect.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2009:1127 and 
# Oracle Linux Security Advisory ELSA-2009-1127 respectively.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(67882);
  script_version("1.12");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-1687", "CVE-2009-1690", "CVE-2009-1698");
  script_bugtraq_id(35271, 35309, 35318);
  script_xref(name:"RHSA", value:"2009:1127");

  script_name(english:"Oracle Linux 4 / 5 : kdelibs (ELSA-2009-1127)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Oracle Linux host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"From Red Hat Security Advisory 2009:1127 :

Updated kdelibs packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having critical security impact by the
Red Hat Security Response Team.

The kdelibs packages provide libraries for the K Desktop Environment
(KDE).

A flaw was found in the way the KDE CSS parser handled content for the
CSS 'style' attribute. A remote attacker could create a specially
crafted CSS equipped HTML page, which once visited by an unsuspecting
user, could cause a denial of service (Konqueror crash) or,
potentially, execute arbitrary code with the privileges of the user
running Konqueror. (CVE-2009-1698)

A flaw was found in the way the KDE HTML parser handled content for
the HTML 'head' element. A remote attacker could create a specially
crafted HTML page, which once visited by an unsuspecting user, could
cause a denial of service (Konqueror crash) or, potentially, execute
arbitrary code with the privileges of the user running Konqueror.
(CVE-2009-1690)

An integer overflow flaw, leading to a heap-based buffer overflow, was
found in the way the KDE JavaScript garbage collector handled memory
allocation requests. A remote attacker could create a specially
crafted HTML page, which once visited by an unsuspecting user, could
cause a denial of service (Konqueror crash) or, potentially, execute
arbitrary code with the privileges of the user running Konqueror.
(CVE-2009-1687)

Users should upgrade to these updated packages, which contain
backported patches to correct these issues. The desktop must be
restarted (log out, then log back in) for this update to take effect."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://oss.oracle.com/pipermail/el-errata/2009-June/001055.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://oss.oracle.com/pipermail/el-errata/2009-June/001058.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected kdelibs packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(94, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:kdelibs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:kdelibs-apidocs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:kdelibs-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:4");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:5");

  script_set_attribute(attribute:"vuln_publication_date", value:"2009/06/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2009/06/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/07/12");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Oracle Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux");
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux");
os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^(4|5)([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 4 / 5", "Oracle Linux " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu);

flag = 0;
if (rpm_check(release:"EL4", reference:"kdelibs-3.3.1-14.0.1.el4")) flag++;
if (rpm_check(release:"EL4", reference:"kdelibs-devel-3.3.1-14.0.1.el4")) flag++;

if (rpm_check(release:"EL5", reference:"kdelibs-3.5.4-22.0.1.el5_3")) flag++;
if (rpm_check(release:"EL5", reference:"kdelibs-apidocs-3.5.4-22.0.1.el5_3")) flag++;
if (rpm_check(release:"EL5", reference:"kdelibs-devel-3.5.4-22.0.1.el5_3")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kdelibs / kdelibs-apidocs / kdelibs-devel");
}
VendorProductVersionCPE
oraclelinuxkdelibsp-cpe:/a:oracle:linux:kdelibs
oraclelinuxkdelibs-apidocsp-cpe:/a:oracle:linux:kdelibs-apidocs
oraclelinuxkdelibs-develp-cpe:/a:oracle:linux:kdelibs-devel
oraclelinux4cpe:/o:oracle:linux:4
oraclelinux5cpe:/o:oracle:linux:5

Related

openvas 47
nessus 28
osv 4
oraclelinux 2
debian 5
centos 2
redhat 2
ubuntu 3
fedora 10
securityvulns 6
ubuntucve 3
zdi 1
prion 3
debiancve 3
cve 3
veracode 3
chrome 1
altlinux 1
seebug 1
openvas
openvas
CentOS Update for kdelibs CESA-2009:1127 centos5 i386
2011-08-09 00:00:00
Debian Security Advisory DSA 1868-1 (kde4libs)
2009-09-02 00:00:00
Debian Security Advisory DSA 1867-1 (kdelibs)
2009-09-02 00:00:00
nessus
nessus
RHEL 4 / 5 : kdelibs (RHSA-2009:1127)
2009-06-26 00:00:00
Debian DSA-1867-1 : kdelibs - several vulnerabilities
2010-02-24 00:00:00
openSUSE Security Update : kdelibs3 (openSUSE-SU-2010:1034-1)
2011-05-05 00:00:00
osv
osv
kde4libs - several vulnerabilities
2009-08-19 00:00:00
kdelibs - several vulnerabilities
2009-08-19 00:00:00
qt4-x11 - several vulnerabilities
2010-02-02 00:00:00
oraclelinux
oraclelinux
kdelibs security update
2009-06-25 00:00:00
kdelibs security update
2009-06-25 00:00:00
debian
debian
[SECURITY] [DSA 1868-1] New kde4libs packages fix several vulnerabilities
2009-08-19 12:33:34
[SECURITY] [DSA 1867-1] New kdelibs packages fix several vulnerabilities
2009-08-19 12:33:14
[SECURITY] [DSA-1988-1] New qt4-x11 packages fix several vulnerabilities
2010-02-02 22:44:05
centos
centos
kdelibs security update
2009-06-26 14:03:32
kdelibs security update
2009-06-25 17:39:16
redhat
redhat
(RHSA-2009:1127) Critical: kdelibs security update
2009-06-25 00:00:00
(RHSA-2009:1128) Important: kdelibs security update
2009-06-25 00:00:00
ubuntu
ubuntu
KDE-Libs vulnerabilities
2009-08-24 00:00:00
WebKit vulnerabilities
2009-09-23 00:00:00
Qt vulnerabilities
2009-11-10 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: kdelibs3-3.5.10-13.fc10
2009-07-28 18:28:27
[SECURITY] Fedora 11 Update: kdelibs3-3.5.10-13.fc11
2009-07-28 18:27:35
[SECURITY] Fedora 10 Update: kdelibs-4.2.4-6.fc10
2009-07-28 18:26:55
securityvulns
securityvulns
WebKit / Apple Safari multiple security vulnerabilities
2009-06-23 00:00:00
[TZO-37-2009] Apple Safari &lt;v4 Remote code execution
2009-06-16 00:00:00
Apple iPhone memory corruption
2009-07-23 00:00:00
ubuntucve
ubuntucve
CVE-2009-1698
2009-06-10 00:00:00
CVE-2009-1687
2009-06-10 00:00:00
CVE-2009-1690
2009-06-10 00:00:00
zdi
zdi
Apple WebKit attr() Invalid Attribute Memory Corruption Vulnerability
2009-06-08 00:00:00
prion
prion
Memory corruption
2009-06-10 18:00:00
Design/Logic Flaw
2009-06-10 14:30:00
Null pointer dereference
2009-06-10 14:30:00
debiancve
debiancve
CVE-2009-1698
2009-06-10 18:00:00
CVE-2009-1687
2009-06-10 14:30:00
CVE-2009-1690
2009-06-10 14:30:00
cve
cve
CVE-2009-1698
2009-06-10 18:00:00
CVE-2009-1687
2009-06-10 14:30:00
CVE-2009-1690
2009-06-10 14:30:00
veracode
veracode
Remote Code Execution (RCE)
2020-04-10 00:39:14
Denial Of Service (DoS)
2020-04-10 00:39:13
Use-after-free
2020-04-10 00:39:14
chrome
chrome
Stable update: 2 WebKit security fixes
2009-06-09 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package kde4libs version 4.2.4-alt3
2009-06-29 00:00:00
seebug
seebug
Apple Safari 4.0多个安全漏洞
2009-06-11 00:00:00
JSON
Related for ORACLELINUX_ELSA-2009-1127.NASL
openvas47nessus28osv4oraclelinux2debian5centos2redhat2ubuntu3fedora10securityvulns6ubuntucve3zdi1prion3debiancve3cve3veracode3chrome1altlinux1seebug1