Lucene search
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2014-1004.NASLHistoryAug 06, 2014 - 12:00 a.m.
Oracle Linux 5 : yum-updatesd (ELSA-2014-1004)
2014-08-0600:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.006
Percentile
78.5%
From Red Hat Security Advisory 2014:1004 :
An updated yum-updatesd package that fixes one security issue is now available for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.
The yum-updatesd package provides a daemon which checks for available updates and can notify you when they are available via email, syslog, or dbus.
It was discovered that yum-updatesd did not properly perform RPM package signature checks. When yum-updatesd was configured to automatically install updates, a remote attacker could use this flaw to install a malicious update on the target system using an unsigned RPM or an RPM signed with an untrusted key. (CVE-2014-0022)
All yum-updatesd users are advised to upgrade to this updated package, which contains a backported patch to correct this issue. After installing this update, the yum-updatesd service will be restarted automatically.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2014:1004 and
# Oracle Linux Security Advisory ELSA-2014-1004 respectively.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(77008);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2014-0022");
script_bugtraq_id(65119);
script_xref(name:"RHSA", value:"2014:1004");
script_name(english:"Oracle Linux 5 : yum-updatesd (ELSA-2014-1004)");
script_summary(english:"Checks rpm output for the updated package");
script_set_attribute(
attribute:"synopsis",
value:"The remote Oracle Linux host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"From Red Hat Security Advisory 2014:1004 :
An updated yum-updatesd package that fixes one security issue is now
available for Red Hat Enterprise Linux 5.
The Red Hat Security Response Team has rated this update as having
Important security impact. A Common Vulnerability Scoring System
(CVSS) base score, which gives a detailed severity rating, is
available from the CVE link in the References section.
The yum-updatesd package provides a daemon which checks for available
updates and can notify you when they are available via email, syslog,
or dbus.
It was discovered that yum-updatesd did not properly perform RPM
package signature checks. When yum-updatesd was configured to
automatically install updates, a remote attacker could use this flaw
to install a malicious update on the target system using an unsigned
RPM or an RPM signed with an untrusted key. (CVE-2014-0022)
All yum-updatesd users are advised to upgrade to this updated package,
which contains a backported patch to correct this issue. After
installing this update, the yum-updatesd service will be restarted
automatically."
);
script_set_attribute(
attribute:"see_also",
value:"https://oss.oracle.com/pipermail/el-errata/2014-August/004328.html"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected yum-updatesd package."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:yum-updatesd");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:5");
script_set_attribute(attribute:"vuln_publication_date", value:"2014/01/26");
script_set_attribute(attribute:"patch_publication_date", value:"2014/08/05");
script_set_attribute(attribute:"plugin_publication_date", value:"2014/08/06");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Oracle Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux");
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux");
os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^5([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 5", "Oracle Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && "ia64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu);
flag = 0;
if (rpm_check(release:"EL5", reference:"yum-updatesd-0.9-6.el5_10")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "yum-updatesd");
}
Related
nessus
nessus
Amazon Linux AMI : yum (ALAS-2014-315)
2014-03-28 00:00:00
Scientific Linux Security Update : yum-updatesd on SL5.x (noarch) (20140805)
2014-08-06 00:00:00
CentOS 5 : yum-updatesd (CESA-2014:1004)
2014-08-06 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2014-315)
2015-09-08 00:00:00
RedHat Update for yum-updatesd RHSA-2014:1004-01
2014-08-05 00:00:00
CentOS Update for yum-updatesd CESA-2014:1004 centos5
2014-08-06 00:00:00
amazon
amazon
Medium: yum
2014-03-24 23:38:00
veracode
veracode
Authorization Bypass
2019-01-15 08:57:57
cve
cve
CVE-2014-0022
2014-01-26 16:58:11
nvd
nvd
CVE-2014-0022
2014-01-26 16:58:11
oraclelinux
oraclelinux
yum-updatesd security update
2014-08-05 00:00:00
ubuntucve
ubuntucve
CVE-2014-0022
2014-01-26 00:00:00
centos
centos
yum security update
2014-08-05 12:36:19
redhat
redhat
(RHSA-2014:1004) Important: yum-updatesd security update
2014-08-05 00:00:00
cvelist
cvelist
CVE-2014-0022
2014-01-26 11:00:00
prion
prion
Authentication flaw
2014-01-26 16:58:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-2002
2021-07-02 18:21:25
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:L/Au:N/C:N/I:P/A:N
EPSS
0.006
Percentile
78.5%
Related for ORACLELINUX_ELSA-2014-1004.NASL