Lucene search
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2016-2809.NASLHistoryNov 22, 2016 - 12:00 a.m.
Oracle Linux 7 : ipsilon (ELSA-2016-2809)
2016-11-2200:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
From Red Hat Security Advisory 2016:2809 :
An update for ipsilon is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
The ipsilon packages provide the Ipsilon identity provider service for federated single sign-on (SSO). Ipsilon links authentication providers and applications or utilities to allow for SSO. It includes a server and utilities to configure Apache-based service providers.
Security Fix(es) :
- A vulnerability was found in ipsilon in the SAML2 provider’s handling of sessions. An attacker able to hit the logout URL could determine what service providers other users are logged in to and terminate their sessions. (CVE-2016-8638)
This issue was discovered by Patrick Uiterwijk (Red Hat) and Howard Johnson.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2016:2809 and
# Oracle Linux Security Advisory ELSA-2016-2809 respectively.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(95041);
script_version("2.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2016-8638");
script_xref(name:"RHSA", value:"2016:2809");
script_name(english:"Oracle Linux 7 : ipsilon (ELSA-2016-2809)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Oracle Linux host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"From Red Hat Security Advisory 2016:2809 :
An update for ipsilon is now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security
impact of Important. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.
The ipsilon packages provide the Ipsilon identity provider service for
federated single sign-on (SSO). Ipsilon links authentication providers
and applications or utilities to allow for SSO. It includes a server
and utilities to configure Apache-based service providers.
Security Fix(es) :
* A vulnerability was found in ipsilon in the SAML2 provider's
handling of sessions. An attacker able to hit the logout URL could
determine what service providers other users are logged in to and
terminate their sessions. (CVE-2016-8638)
This issue was discovered by Patrick Uiterwijk (Red Hat) and Howard
Johnson."
);
script_set_attribute(
attribute:"see_also",
value:"https://oss.oracle.com/pipermail/el-errata/2016-November/006531.html"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected ipsilon packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-authform");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-authgssapi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-authldap");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-base");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-client");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-filesystem");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-infosssd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-persona");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-saml2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-saml2-base");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ipsilon-tools-ipa");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:7");
script_set_attribute(attribute:"vuln_publication_date", value:"2017/07/12");
script_set_attribute(attribute:"patch_publication_date", value:"2016/11/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/11/22");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Oracle Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux");
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux");
os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 7", "Oracle Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu);
if ("x86_64" >!< cpu) audit(AUDIT_ARCH_NOT, "x86_64", cpu);
flag = 0;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-authform-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-authgssapi-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-authldap-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-base-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-client-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-filesystem-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-infosssd-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-persona-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-saml2-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-saml2-base-1.0.0-13.el7_3")) flag++;
if (rpm_check(release:"EL7", cpu:"x86_64", reference:"ipsilon-tools-ipa-1.0.0-13.el7_3")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ipsilon / ipsilon-authform / ipsilon-authgssapi / ipsilon-authldap / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | linux | ipsilon | p-cpe:/a:oracle:linux:ipsilon |
| oracle | linux | ipsilon-authform | p-cpe:/a:oracle:linux:ipsilon-authform |
| oracle | linux | ipsilon-authgssapi | p-cpe:/a:oracle:linux:ipsilon-authgssapi |
| oracle | linux | ipsilon-authldap | p-cpe:/a:oracle:linux:ipsilon-authldap |
| oracle | linux | ipsilon-base | p-cpe:/a:oracle:linux:ipsilon-base |
| oracle | linux | ipsilon-client | p-cpe:/a:oracle:linux:ipsilon-client |
| oracle | linux | ipsilon-filesystem | p-cpe:/a:oracle:linux:ipsilon-filesystem |
| oracle | linux | ipsilon-infosssd | p-cpe:/a:oracle:linux:ipsilon-infosssd |
| oracle | linux | ipsilon-persona | p-cpe:/a:oracle:linux:ipsilon-persona |
| oracle | linux | ipsilon-saml2 | p-cpe:/a:oracle:linux:ipsilon-saml2 |
Related
openvas
openvas
RedHat Update for ipsilon RHSA-2016:2809-01
2016-11-22 00:00:00
Huawei EulerOS: Security Advisory for ipsilon (EulerOS-SA-2018-1013)
2020-01-23 00:00:00
Fedora Update for ipsilon FEDORA-2016-2d8fb6d7ad
2016-12-29 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: ipsilon-2.0.2-2.fc24
2016-12-28 21:49:37
[SECURITY] Fedora 25 Update: ipsilon-2.0.2-2.fc25
2016-12-28 20:21:35
nessus
nessus
Fedora 25 : ipsilon (2016-2d8fb6d7ad)
2016-12-29 00:00:00
Fedora 24 : ipsilon (2016-b465090499)
2016-12-29 00:00:00
CentOS 7 : ipsilon (CESA-2016:2809)
2016-11-28 00:00:00
osv
osv
Session Fixation in ipsilon
2022-05-14 03:55:23
redhatcve
redhatcve
CVE-2016-8638
2016-11-21 10:18:29
oraclelinux
oraclelinux
ipsilon security update
2016-11-21 00:00:00
cve
cve
CVE-2016-8638
2017-07-12 13:29:00
CVE-2017-16855
2017-11-16 18:29:00
prion
prion
Design/Logic Flaw
2017-07-12 13:29:00
redhat
redhat
(RHSA-2016:2809) Important: ipsilon security update
2016-11-21 10:19:13
github
github
Session Fixation in ipsilon
2022-05-14 03:55:23
centos
centos
ipsilon security update
2016-11-25 16:47:14
Related for ORACLELINUX_ELSA-2016-2809.NASL