Lucene search
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2017-0559.NASLHistoryMar 20, 2017 - 12:00 a.m.
Oracle Linux 6 : openjpeg (ELSA-2017-0559)
2017-03-2000:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
35
From Red Hat Security Advisory 2017:0559 :
An update for openjpeg is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
OpenJPEG is an open source library for reading and writing image files in JPEG2000 format.
Security Fix(es) :
-
Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in OpenJPEG. A specially crafted JPEG2000 image could cause an application using OpenJPEG to crash or, potentially, execute arbitrary code. (CVE-2016-5139, CVE-2016-5158, CVE-2016-5159, CVE-2016-7163)
-
A vulnerability was found in the patch for CVE-2013-6045 for OpenJPEG. A specially crafted JPEG2000 image, when read by an application using OpenJPEG, could cause heap-based buffer overflows leading to a crash or, potentially, arbitrary code execution.
(CVE-2016-9675)
The CVE-2016-9675 issue was discovered by Doran Moppert (Red Hat Product Security).
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2017:0559 and
# Oracle Linux Security Advisory ELSA-2017-0559 respectively.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(97821);
script_version("3.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2016-5139", "CVE-2016-5158", "CVE-2016-5159", "CVE-2016-7163", "CVE-2016-9675");
script_xref(name:"RHSA", value:"2017:0559");
script_name(english:"Oracle Linux 6 : openjpeg (ELSA-2017-0559)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Oracle Linux host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"From Red Hat Security Advisory 2017:0559 :
An update for openjpeg is now available for Red Hat Enterprise Linux
6.
Red Hat Product Security has rated this update as having a security
impact of Moderate. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.
OpenJPEG is an open source library for reading and writing image files
in JPEG2000 format.
Security Fix(es) :
* Multiple integer overflow flaws, leading to heap-based buffer
overflows, were found in OpenJPEG. A specially crafted JPEG2000 image
could cause an application using OpenJPEG to crash or, potentially,
execute arbitrary code. (CVE-2016-5139, CVE-2016-5158, CVE-2016-5159,
CVE-2016-7163)
* A vulnerability was found in the patch for CVE-2013-6045 for
OpenJPEG. A specially crafted JPEG2000 image, when read by an
application using OpenJPEG, could cause heap-based buffer overflows
leading to a crash or, potentially, arbitrary code execution.
(CVE-2016-9675)
The CVE-2016-9675 issue was discovered by Doran Moppert (Red Hat
Product Security)."
);
script_set_attribute(
attribute:"see_also",
value:"https://oss.oracle.com/pipermail/el-errata/2017-March/006788.html"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected openjpeg packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:openjpeg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:openjpeg-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:openjpeg-libs");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:6");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/08/07");
script_set_attribute(attribute:"patch_publication_date", value:"2017/03/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/03/20");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Oracle Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/OracleLinux")) audit(AUDIT_OS_NOT, "Oracle Linux");
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, "Oracle Linux");
os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Oracle Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Oracle Linux 6", "Oracle Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Oracle Linux", cpu);
flag = 0;
if (rpm_check(release:"EL6", reference:"openjpeg-1.3-16.el6_8")) flag++;
if (rpm_check(release:"EL6", reference:"openjpeg-devel-1.3-16.el6_8")) flag++;
if (rpm_check(release:"EL6", reference:"openjpeg-libs-1.3-16.el6_8")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "openjpeg / openjpeg-devel / openjpeg-libs");
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5139
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5158
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-5159
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7163
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9675
oss.oracle.com/pipermail/el-errata/2017-March/006788.html
Related
nessus
nessus
Scientific Linux Security Update : openjpeg on SL6.x i386/x86_64 (20170319)
2017-03-21 00:00:00
CentOS 6 : openjpeg (CESA-2017:0559)
2017-03-21 00:00:00
centos
centos
openjpeg security update
2017-03-20 08:25:44
openjpeg security update
2017-03-29 10:58:56
openjpeg security update
2013-12-17 19:00:24
openvas
openvas
RedHat Update for openjpeg RHSA-2017:0559-01
2017-03-20 00:00:00
CentOS Update for openjpeg CESA-2017:0559 centos6
2017-03-21 00:00:00
RedHat Update for openjpeg RHSA-2017:0838-01
2017-03-23 00:00:00
amazon
amazon
Medium: openjpeg
2017-03-22 16:00:00
Important: openjpeg
2014-01-14 15:55:00
redhat
redhat
(RHSA-2017:0559) Moderate: openjpeg security update
2017-03-19 23:39:06
(RHSA-2017:0838) Moderate: openjpeg security update
2017-03-23 02:35:48
(RHSA-2013:1850) Important: openjpeg security update
2013-12-17 00:00:00
oraclelinux
oraclelinux
openjpeg security update
2017-03-19 00:00:00
openjpeg security update
2017-03-22 00:00:00
openjpeg security update
2013-12-17 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in openjpeg affect PowerKVM
2018-06-18 01:36:15
mageia
mageia
Updated openjpeg packages fix security vulnerability
2017-05-02 09:37:59
Updated openjpeg package fixes security vulnerabilities
2014-01-06 05:10:03
Updated chromium-browser-stable packages fix security vulnerability
2016-08-09 11:58:37
ubuntucve
ubuntucve
cve
cve
redhatcve
redhatcve
prion
prion
fedora
fedora
[SECURITY] Fedora 25 Update: mingw-openjpeg2-2.1.1-3.fc25
2016-09-18 17:45:59
[SECURITY] Fedora 24 Update: mingw-openjpeg2-2.1.1-3.fc24
2016-09-18 02:31:22
[SECURITY] Fedora 25 Update: openjpeg2-2.1.1-3.fc25
2016-09-15 19:09:28
veracode
veracode
Arbitrary Code Execution
2019-05-02 06:43:17
Arbitrary Code Execution And Denial Of Service
2019-05-02 06:43:17
Privilege Escalation
2019-01-15 09:16:31
debiancve
debiancve
hackerone
hackerone
osv
osv
openjpeg2 - security update
2017-01-20 00:00:00
openjpeg2 - security update
2018-07-19 00:00:00
openjpeg - regression update
2013-12-03 00:00:00
suse
suse
Security update for openjpeg2 (important)
2017-08-17 00:10:07
Security update for Chromium (important)
2016-08-08 00:10:12
freebsd
freebsd
openjpeg -- multiple vulnerabilities
2016-09-08 00:00:00
chromium -- multiple vulnerabilities
2016-08-03 00:00:00
debian
debian
[SECURITY] [DLA 1433-1] openjpeg2 security update
2018-07-19 20:29:10
[SECURITY] [DSA 3665-1] openjpeg2 security update
2016-09-11 18:05:19
[SECURITY] [DSA 2808-2] openjpeg regression update
2014-04-22 21:59:21
securityvulns
securityvulns
[SECURITY] [DSA 2808-1] openjpeg security update
2013-12-09 00:00:00
[ MDVSA-2014:008 ] openjpeg
2014-01-29 00:00:00
OpenJPEG library multiple security vulnerabilities
2014-01-29 00:00:00
kitploit
kitploit
CDK - Zero Dependency Container Penetration Toolkit
2021-01-21 11:30:00
gentoo
gentoo
OpenJPEG: Multiple vulnerabilities
2014-12-13 00:00:00
archlinux
archlinux
chromium: multiple issues
2016-08-17 00:00:00
Related for ORACLELINUX_ELSA-2017-0559.NASL