Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2020-1605.NASLHistorySep 07, 2023 - 12:00 a.m.
Oracle Linux 8 : python27:2.7 (ELSA-2020-1605)
2023-09-0700:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1605 advisory.
-
The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover credentials by sniffing the network. (CVE-2018-18074)
-
urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect (i.e., a redirect that differs in host, port, or scheme). This can allow for credentials in the Authorization header to be exposed to unintended hosts or transmitted in cleartext. (CVE-2018-20060)
-
In the urllib3 library through 1.24.1 for Python, CRLF injection is possible if the attacker controls the request parameter. (CVE-2019-11236)
-
http.cookiejar.DefaultPolicy.domain_return_ok in Lib/http/cookiejar.py in Python before 3.7.3 does not correctly validate the domain: it can be tricked into sending existing cookies to the wrong server. An attacker may abuse this flaw by using a server with a hostname that has another valid hostname as a suffix (e.g., pythonicexample.com to steal cookies for example.com). When a program uses http.cookiejar.DefaultPolicy and tries to do an HTTP connection to an attacker-controlled server, existing cookies can be leaked to the attacker. This affects 2.x through 2.7.16, 3.x before 3.4.10, 3.5.x before 3.5.7, 3.6.x before 3.6.9, and 3.7.x before 3.7.3. (CVE-2018-20852)
-
The urllib3 library before 1.24.2 for Python mishandles certain cases where the desired set of CA certificates is different from the OS store of CA certificates, which results in SSL connections succeeding in situations where a verification failure is the correct outcome. This is related to use of the ssl_context, ca_certs, or ca_certs_dir argument. (CVE-2019-11324)
-
An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9, and 3.7.x through 3.7.4. The email module wrongly parses email addresses that contain multiple @ characters. An application that uses the email module and implements some kind of checks on the From/To headers of a message could be tricked into accepting an email address that should be denied. An attack may be the same as in CVE-2019-11340; however, this CVE applies to Python more generally. (CVE-2019-16056)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Oracle Linux Security Advisory ELSA-2020-1605.
##
include('compat.inc');
if (description)
{
script_id(180976);
script_version("1.0");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/09/07");
script_cve_id(
"CVE-2018-18074",
"CVE-2018-20060",
"CVE-2018-20852",
"CVE-2019-11236",
"CVE-2019-11324",
"CVE-2019-16056"
);
script_xref(name:"IAVA", value:"2021-A-0263-S");
script_name(english:"Oracle Linux 8 : python27:2.7 (ELSA-2020-1605)");
script_set_attribute(attribute:"synopsis", value:
"The remote Oracle Linux host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the
ELSA-2020-1605 advisory.
- The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon
receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover
credentials by sniffing the network. (CVE-2018-18074)
- urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin
redirect (i.e., a redirect that differs in host, port, or scheme). This can allow for credentials in the
Authorization header to be exposed to unintended hosts or transmitted in cleartext. (CVE-2018-20060)
- In the urllib3 library through 1.24.1 for Python, CRLF injection is possible if the attacker controls the
request parameter. (CVE-2019-11236)
- http.cookiejar.DefaultPolicy.domain_return_ok in Lib/http/cookiejar.py in Python before 3.7.3 does not
correctly validate the domain: it can be tricked into sending existing cookies to the wrong server. An
attacker may abuse this flaw by using a server with a hostname that has another valid hostname as a suffix
(e.g., pythonicexample.com to steal cookies for example.com). When a program uses
http.cookiejar.DefaultPolicy and tries to do an HTTP connection to an attacker-controlled server, existing
cookies can be leaked to the attacker. This affects 2.x through 2.7.16, 3.x before 3.4.10, 3.5.x before
3.5.7, 3.6.x before 3.6.9, and 3.7.x before 3.7.3. (CVE-2018-20852)
- The urllib3 library before 1.24.2 for Python mishandles certain cases where the desired set of CA
certificates is different from the OS store of CA certificates, which results in SSL connections
succeeding in situations where a verification failure is the correct outcome. This is related to use of
the ssl_context, ca_certs, or ca_certs_dir argument. (CVE-2019-11324)
- An issue was discovered in Python through 2.7.16, 3.x through 3.5.7, 3.6.x through 3.6.9, and 3.7.x
through 3.7.4. The email module wrongly parses email addresses that contain multiple @ characters. An
application that uses the email module and implements some kind of checks on the From/To headers of a
message could be tricked into accepting an email address that should be denied. An attack may be the same
as in CVE-2019-11340; however, this CVE applies to Python more generally. (CVE-2019-16056)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://linux.oracle.com/errata/ELSA-2020-1605.html");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-16056");
script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2018-20060");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/03/26");
script_set_attribute(attribute:"patch_publication_date", value:"2020/05/05");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/09/07");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:8");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:babel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python-nose-docs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python-psycopg2-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python-sqlalchemy-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-Cython");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-PyMySQL");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-attrs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-babel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-backports");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-backports-ssl_match_hostname");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-bson");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-chardet");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-coverage");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-dns");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-docs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-docs-info");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-docutils");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-funcsigs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-idna");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-ipaddress");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-jinja2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-lxml");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-markupsafe");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-mock");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-nose");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-numpy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-numpy-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-numpy-f2py");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pip");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pip-wheel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pluggy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-psycopg2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-psycopg2-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-psycopg2-tests");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-py");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pygments");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pymongo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pymongo-gridfs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pysocks");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pytest");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pytest-mock");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pytz");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-pyyaml");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-requests");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-rpm-macros");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-scipy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-setuptools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-setuptools-wheel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-setuptools_scm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-six");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-sqlalchemy");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-test");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-tkinter");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-urllib3");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-virtualenv");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-wheel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:python2-wheel-wheel");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Oracle Linux Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/local_checks_enabled");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item('Host/OracleLinux')) audit(AUDIT_OS_NOT, 'Oracle Linux');
var os_release = get_kb_item("Host/RedHat/release");
if (isnull(os_release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:os_release)) audit(AUDIT_OS_NOT, 'Oracle Linux');
var os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Oracle Linux');
os_ver = os_ver[1];
if (! preg(pattern:"^8([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'Oracle Linux 8', 'Oracle Linux ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Oracle Linux', cpu);
var module_ver = get_kb_item('Host/RedHat/appstream/python27');
if (isnull(module_ver)) audit(AUDIT_PACKAGE_NOT_INSTALLED, 'Module python27:2.7');
if ('2.7' >!< module_ver) audit(AUDIT_PACKAGE_NOT_AFFECTED, 'Module python27:' + module_ver);
var appstreams = {
'python27:2.7': [
{'reference':'babel-2.5.1-9.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python-nose-docs-1.3.7-30.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python-sqlalchemy-doc-1.3.2-1.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-PyMySQL-0.8.0-10.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-attrs-17.4.0-10.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-babel-2.5.1-9.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-backports-ssl_match_hostname-3.5.0.1-11.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-chardet-3.0.4-10.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-dns-1.15.0-10.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-docs-2.7.16-2.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-docs-info-2.7.16-2.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-docutils-0.14-12.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-funcsigs-1.0.2-13.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-idna-2.5-7.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-ipaddress-1.0.18-6.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-jinja2-2.10-8.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-mock-2.0.0-13.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-nose-1.3.7-30.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-numpy-doc-1.14.2-13.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'python2-pip-9.0.3-16.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pip-wheel-9.0.3-16.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pluggy-0.6.0-8.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-py-1.5.3-6.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pygments-2.2.0-20.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pysocks-1.6.8-6.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pytest-3.4.2-13.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pytest-mock-1.9.0-4.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pytz-2017.2-12.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-requests-2.20.0-3.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-rpm-macros-3-38.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-setuptools-39.0.1-11.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-setuptools-wheel-39.0.1-11.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-setuptools_scm-1.15.7-6.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-six-1.11.0-5.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-urllib3-1.24.2-1.0.2.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-virtualenv-15.1.0-19.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-wheel-0.31.1-2.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'python2-wheel-wheel-0.31.1-2.module+el8.2.0+5577+bb63ba72', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'python-psycopg2-doc-2.7.5-7.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-Cython-0.28.1-7.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-backports-1.0-15.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-bson-3.6.1-11.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-coverage-4.5.1-4.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-debug-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-devel-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-libs-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-lxml-4.2.3-3.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-markupsafe-0.23-19.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-numpy-1.14.2-13.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'python2-numpy-f2py-1.14.2-13.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'python2-psycopg2-2.7.5-7.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-psycopg2-debug-2.7.5-7.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-psycopg2-tests-2.7.5-7.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pymongo-3.6.1-11.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pymongo-gridfs-3.6.1-11.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pyyaml-3.12-16.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-scipy-1.0.0-20.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-sqlalchemy-1.3.2-1.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-test-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-tkinter-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-tools-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python-psycopg2-doc-2.7.5-7.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-Cython-0.28.1-7.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-backports-1.0-15.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-bson-3.6.1-11.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-coverage-4.5.1-4.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-debug-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-devel-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-libs-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-lxml-4.2.3-3.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-markupsafe-0.23-19.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-numpy-1.14.2-13.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'python2-numpy-f2py-1.14.2-13.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'epoch':'1'},
{'reference':'python2-psycopg2-2.7.5-7.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-psycopg2-debug-2.7.5-7.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-psycopg2-tests-2.7.5-7.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pymongo-3.6.1-11.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pymongo-gridfs-3.6.1-11.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-pyyaml-3.12-16.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-scipy-1.0.0-20.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-sqlalchemy-1.3.2-1.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-test-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-tkinter-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'python2-tools-2.7.17-1.0.1.module+el8.2.0+5577+bb63ba72', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}
]
};
var flag = 0;
var appstreams_found = 0;
foreach var module (keys(appstreams)) {
var appstream = NULL;
var appstream_name = NULL;
var appstream_version = NULL;
var appstream_split = split(module, sep:':', keep:FALSE);
if (!empty_or_null(appstream_split)) {
appstream_name = appstream_split[0];
appstream_version = appstream_split[1];
if (!empty_or_null(appstream_name)) appstream = get_one_kb_item('Host/RedHat/appstream/' + appstream_name);
}
if (!empty_or_null(appstream) && appstream_version == appstream || appstream_name == 'all') {
appstreams_found++;
foreach var package_array ( appstreams[module] ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = 'EL' + package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (reference && _release) {
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
}
}
if (!appstreams_found) audit(AUDIT_PACKAGE_NOT_INSTALLED, 'Module python27:2.7');
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'babel / python-nose-docs / python-psycopg2-doc / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | linux | 8 | cpe:/o:oracle:linux:8 |
| oracle | linux | babel | p-cpe:/a:oracle:linux:babel |
| oracle | linux | python-nose-docs | p-cpe:/a:oracle:linux:python-nose-docs |
| oracle | linux | python-psycopg2-doc | p-cpe:/a:oracle:linux:python-psycopg2-doc |
| oracle | linux | python-sqlalchemy-doc | p-cpe:/a:oracle:linux:python-sqlalchemy-doc |
| oracle | linux | python2 | p-cpe:/a:oracle:linux:python2 |
| oracle | linux | python2-cython | p-cpe:/a:oracle:linux:python2-cython |
| oracle | linux | python2-pymysql | p-cpe:/a:oracle:linux:python2-pymysql |
| oracle | linux | python2-attrs | p-cpe:/a:oracle:linux:python2-attrs |
| oracle | linux | python2-babel | p-cpe:/a:oracle:linux:python2-babel |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-18074
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20060
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20852
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11236
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11324
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-16056
linux.oracle.com/errata/ELSA-2020-1605.html
Related
oraclelinux
oraclelinux
python27:2.7 security, bug fix, and enhancement update
2020-05-05 00:00:00
python-pip security update
2020-05-05 00:00:00
python-pip security update
2020-05-19 00:00:00
almalinux
almalinux
Moderate: python27:2.7 security, bug fix, and enhancement update
2020-04-28 08:55:59
nessus
nessus
Rocky Linux 8 : python27:2.7 (RLSA-2020:1605)
2023-11-07 00:00:00
CentOS 8 : python27:2.7 (CESA-2020:1605)
2021-02-01 00:00:00
RHEL 8 : python27:2.7 (RHSA-2020:1605)
2020-04-28 00:00:00
osv
osv
Moderate: python27:2.7 security, bug fix, and enhancement update
2020-04-28 08:55:59
Moderate: python27:2.7 security, bug fix, and enhancement update
2020-04-28 08:55:59
python-urllib3 - security update
2021-06-15 00:00:00
redhat
redhat
(RHSA-2020:1605) Moderate: python27:2.7 security, bug fix, and enhancement update
2020-04-28 08:55:59
(RHSA-2020:0850) Moderate: python-pip security update
2020-03-17 13:10:26
(RHSA-2020:1916) Moderate: python-pip security update
2020-04-28 09:30:31
rocky
rocky
python27:2.7 security, bug fix, and enhancement update
2020-04-28 08:55:59
centos
centos
python3 security update
2020-03-18 19:33:57
python security update
2020-03-25 19:10:05
python security update
2019-08-30 04:04:34
openvas
openvas
CentOS: Security Advisory for python3-pip (CESA-2020:0850)
2020-03-26 00:00:00
Ubuntu: Security Advisory (USN-3990-1)
2019-05-22 00:00:00
CentOS: Security Advisory for python-virtualenv (CESA-2020:0851)
2020-03-26 00:00:00
ubuntu
ubuntu
urllib3 vulnerabilities
2019-05-21 00:00:00
freebsd
freebsd
urllib3 -- multiple vulnerabilities
2018-12-11 00:00:00
mageia
mageia
Updated python-urllib3 packages fix security vulnerability
2019-09-07 00:09:08
Updated python-pip packages fix security vulnerabilities
2020-01-28 14:32:54
amazon
amazon
Medium: python-virtualenv
2020-04-20 20:48:00
Medium: python27, python34, python35, python36
2019-10-28 17:10:00
Medium: python, python3
2019-11-19 17:53:00
debian
debian
[SECURITY] [DLA 2686-1] python-urllib3 security update
2021-06-15 18:34:44
[SECURITY] [DLA 3610-1] python-urllib3 security update
2023-10-08 11:06:20
suse
suse
Security update for python-urllib3 (moderate)
2019-09-14 00:00:00
Security update for python-urllib3 (moderate)
2019-09-15 00:00:00
ubuntucve
ubuntucve
CVE-2019-16056
2019-09-06 00:00:00
redhatcve
redhatcve
CVE-2019-16056
2019-09-09 09:21:16
CVE-2018-20060
2021-08-22 13:20:42
alpinelinux
alpinelinux
CVE-2019-16056
2019-09-06 18:15:00
prion
prion
Design/Logic Flaw
2019-09-06 18:15:00
Design/Logic Flaw
2019-04-19 14:29:00
Design/Logic Flaw
2019-04-18 21:29:00
fedora
fedora
[SECURITY] Fedora 30 Update: python-pip-19.0.3-6.fc30
2020-01-20 03:19:41
[SECURITY] Fedora 31 Update: python-pip-19.1.1-7.fc31
2020-01-08 11:55:39
[SECURITY] Fedora 30 Update: python2-2.7.17-1.fc30
2019-11-09 22:39:56
cve
cve
CVE-2019-16056
2019-09-06 18:15:00
CVE-2019-11340
2019-04-19 14:29:00
debiancve
debiancve
photon
photon
f5
f5
K000133668 : Python urllib3 vulnerability CVE-2018-20060
2023-04-27 00:00:00
K000133448 : Python urllib3 vulnerability CVE-2019-11324
2023-04-27 00:00:00
github
github
Matrix Sydent mishandles emails
2022-05-24 16:43:57
Improper Certificate Validation in urllib3
2019-04-19 16:55:10
ibm
ibm
veracode
veracode
SSL Hostname Verification Bypass
2019-04-22 03:35:22
Related for ORACLELINUX_ELSA-2020-1605.NASL