Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2020-3978.NASL
HistoryOct 07, 2020 - 12:00 a.m.

Oracle Linux 7 : glib2 / and / ibus (ELSA-2020-3978)

2020-10-0700:00:00
This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
20
JSON

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-3978 advisory.

  • file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 does not properly restrict file permissions while a copy operation is in progress. Instead, default permissions are used. (CVE-2019-12450)

  • A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A local attacker may use this flaw to intercept all keystrokes of a victim user who is using the graphical interface, change the input method engine, or modify other input related configurations of the victim user. (CVE-2019-14822)

Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.

##
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Oracle Linux Security Advisory ELSA-2020-3978.
##

include('compat.inc');

if (description)
{
  script_id(141220);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2020/10/09");

  script_cve_id("CVE-2019-12450", "CVE-2019-14822");

  script_name(english:"Oracle Linux 7 : glib2 / and / ibus (ELSA-2020-3978)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(attribute:"synopsis", value:
"The remote Oracle Linux host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the
ELSA-2020-3978 advisory.

  - file_copy_fallback in gio/gfile.c in GNOME GLib 2.15.0 through 2.61.1 does not properly restrict file
    permissions while a copy operation is in progress. Instead, default permissions are used. (CVE-2019-12450)

  - A flaw was discovered in ibus in versions before 1.5.22 that allows any unprivileged user to monitor and
    send method calls to the ibus bus of another user due to a misconfiguration in the DBus server setup. A
    local attacker may use this flaw to intercept all keystrokes of a victim user who is using the graphical
    interface, change the input method engine, or modify other input related configurations of the victim
    user. (CVE-2019-14822)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"http://linux.oracle.com/errata/ELSA-2020-3978.html");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-12450");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/05/29");
  script_set_attribute(attribute:"patch_publication_date", value:"2020/10/06");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/10/07");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:7");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:glib2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:glib2-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:glib2-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:glib2-fam");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:glib2-static");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:glib2-tests");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ibus");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ibus-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ibus-devel-docs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ibus-gtk2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ibus-gtk3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ibus-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ibus-pygtk2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:ibus-setup");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Oracle Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/local_checks_enabled");

  exit(0);
}


include('audit.inc');
include('global_settings.inc');
include('rpm.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item('Host/OracleLinux')) audit(AUDIT_OS_NOT, 'Oracle Linux');
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:release)) audit(AUDIT_OS_NOT, 'Oracle Linux');
os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Oracle Linux');
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'Oracle Linux 7', 'Oracle Linux ' + os_ver);

if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Oracle Linux', cpu);

pkgs = [
    {'reference':'glib2-2.56.1-7.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'glib2-2.56.1-7.el7', 'cpu':'i686', 'release':'7'},
    {'reference':'glib2-2.56.1-7.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'glib2-devel-2.56.1-7.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'glib2-devel-2.56.1-7.el7', 'cpu':'i686', 'release':'7'},
    {'reference':'glib2-devel-2.56.1-7.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'glib2-doc-2.56.1-7.el7', 'release':'7'},
    {'reference':'glib2-fam-2.56.1-7.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'glib2-fam-2.56.1-7.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'glib2-static-2.56.1-7.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'glib2-static-2.56.1-7.el7', 'cpu':'i686', 'release':'7'},
    {'reference':'glib2-static-2.56.1-7.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'glib2-tests-2.56.1-7.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'glib2-tests-2.56.1-7.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'ibus-1.5.17-11.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'ibus-1.5.17-11.el7', 'cpu':'i686', 'release':'7'},
    {'reference':'ibus-1.5.17-11.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'ibus-devel-1.5.17-11.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'ibus-devel-1.5.17-11.el7', 'cpu':'i686', 'release':'7'},
    {'reference':'ibus-devel-1.5.17-11.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'ibus-devel-docs-1.5.17-11.el7', 'release':'7'},
    {'reference':'ibus-gtk2-1.5.17-11.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'ibus-gtk2-1.5.17-11.el7', 'cpu':'i686', 'release':'7'},
    {'reference':'ibus-gtk2-1.5.17-11.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'ibus-gtk3-1.5.17-11.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'ibus-gtk3-1.5.17-11.el7', 'cpu':'i686', 'release':'7'},
    {'reference':'ibus-gtk3-1.5.17-11.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'ibus-libs-1.5.17-11.el7', 'cpu':'aarch64', 'release':'7'},
    {'reference':'ibus-libs-1.5.17-11.el7', 'cpu':'i686', 'release':'7'},
    {'reference':'ibus-libs-1.5.17-11.el7', 'cpu':'x86_64', 'release':'7'},
    {'reference':'ibus-pygtk2-1.5.17-11.el7', 'release':'7'},
    {'reference':'ibus-setup-1.5.17-11.el7', 'release':'7'}
];

flag = 0;
foreach package_array ( pkgs ) {
  reference = NULL;
  release = NULL;
  sp = NULL;
  cpu = NULL;
  el_string = NULL;
  rpm_spec_vers_cmp = NULL;
  epoch = NULL;
  allowmaj = NULL;
  rpm_prefix = NULL;
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (!empty_or_null(package_array['release'])) release = 'EL' + package_array['release'];
  if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
  if (!empty_or_null(package_array['cpu'])) cpu = package_array['cpu'];
  if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
  if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
  if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
  if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
  if (!empty_or_null(package_array['rpm_prefix'])) rpm_prefix = package_array['rpm_prefix'];
  if (reference && release) {
    if (rpm_prefix) {
        if (rpm_exists(release:release, rpm:rpm_prefix) && rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
    } else {
        if (rpm_check(release:release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
    }
  }
}

if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'glib2 / glib2-devel / glib2-doc / etc');
}
VendorProductVersionCPE
oraclelinux7cpe:/o:oracle:linux:7
oraclelinuxglib2p-cpe:/a:oracle:linux:glib2
oraclelinuxglib2-develp-cpe:/a:oracle:linux:glib2-devel
oraclelinuxglib2-docp-cpe:/a:oracle:linux:glib2-doc
oraclelinuxglib2-famp-cpe:/a:oracle:linux:glib2-fam
oraclelinuxglib2-staticp-cpe:/a:oracle:linux:glib2-static
oraclelinuxglib2-testsp-cpe:/a:oracle:linux:glib2-tests
oraclelinuxibusp-cpe:/a:oracle:linux:ibus
oraclelinuxibus-develp-cpe:/a:oracle:linux:ibus-devel
oraclelinuxibus-devel-docsp-cpe:/a:oracle:linux:ibus-devel-docs
Rows per page:
1-10 of 151

Related

oraclelinux 3
nessus 63
centos 1
redhat 8
redhatcve 3
openvas 38
fedora 4
suse 3
almalinux 1
mageia 2
debian 4
prion 3
osv 6
cve 3
debiancve 3
ubuntu 4
ubuntucve 3
cbl_mariner 2
veracode 2
f5 2
amazon 5
cloudfoundry 1
ibm 5
alpinelinux 1
photon 6
oracle 1
oraclelinux
oraclelinux
glib2 and ibus security and bug fix update
2020-10-06 00:00:00
glib2 security, bug fix, and enhancement update
2019-11-14 00:00:00
ibus and glib2 security and bug fix update
2020-05-05 00:00:00
nessus
nessus
CentOS 7 : glib2 and ibus (CESA-2020:3978)
2020-10-20 00:00:00
Scientific Linux Security Update : glib2 and ibus on SL7.x x86_64 (20201001)
2020-10-21 00:00:00
RHEL 7 : glib2 and ibus (RHSA-2020:3978)
2020-09-29 00:00:00
centos
centos
glib2, ibus security update
2020-10-20 18:07:15
redhat
redhat
(RHSA-2020:3978) Moderate: glib2 and ibus security and bug fix update
2020-09-29 07:48:16
(RHSA-2020:1880) Moderate: ibus and glib2 security and bug fix update
2020-04-28 09:26:53
(RHSA-2019:3530) Moderate: glib2 security, bug fix, and enhancement update
2019-11-05 17:56:44
redhatcve
redhatcve
CVE-2019-14822
2019-09-13 07:51:28
CVE-2019-12450
2019-12-29 21:44:45
CVE-2019-13012
2019-07-10 10:51:48
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:2389-1)
2021-04-19 00:00:00
Huawei EulerOS: Security Advisory for ibus (EulerOS-SA-2020-1855)
2020-08-31 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:2387-1)
2021-06-09 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: ibus-1.5.20-5.fc30
2019-09-25 01:08:28
[SECURITY] Fedora 29 Update: ibus-1.5.19-17.fc29
2019-09-29 02:22:59
[SECURITY] Fedora 31 Update: ibus-1.5.21-2.fc31
2019-09-18 00:07:07
suse
suse
Security update for ibus (important)
2019-09-24 00:00:00
Security update for ibus (important)
2019-09-26 00:00:00
Security update for glib2 (important)
2019-06-27 00:00:00
almalinux
almalinux
Moderate: ibus and glib2 security and bug fix update
2020-04-28 09:26:53
mageia
mageia
Updated ibus packages fix security vulnerability
2019-09-21 14:07:28
Updated glib2.0 packages fix security vulnerability
2019-11-30 16:06:06
debian
debian
[SECURITY] [DLA 1826-1] glib2.0 security update
2019-06-18 20:47:44
[SECURITY] [DSA 4525-1] ibus security update
2019-09-18 21:02:42
[SECURITY] [DSA 4525-1] ibus security update
2019-09-18 21:02:42
prion
prion
Input validation
2019-11-25 12:15:00
Default credentials
2019-05-29 17:29:00
Null pointer dereference
2019-06-28 15:15:00
osv
osv
ibus - security update
2019-09-18 00:00:00
CVE-2019-14822
2019-11-25 12:15:11
CVE-2019-12450
2019-05-29 17:29:00
cve
cve
CVE-2019-14822
2019-11-25 12:15:00
CVE-2019-12450
2019-05-29 17:29:00
CVE-2019-13012
2019-06-28 15:15:00
debiancve
debiancve
CVE-2019-14822
2019-11-25 12:15:00
CVE-2019-12450
2019-05-29 17:29:00
CVE-2019-13012
2019-06-28 15:15:00
ubuntu
ubuntu
IBus vulnerability
2019-09-16 00:00:00
IBus vulnerability
2020-03-24 00:00:00
GLib vulnerability
2019-06-10 00:00:00
ubuntucve
ubuntucve
CVE-2019-12450
2019-05-29 00:00:00
CVE-2019-14822
2019-09-13 00:00:00
CVE-2019-13012
2019-06-28 00:00:00
cbl_mariner
cbl_mariner
CVE-2019-12450 affecting package glib 2.58.0-10
2020-09-09 06:09:08
CVE-2019-12450 affecting package glib 2.60.1-5
2022-04-09 06:51:45
veracode
veracode
Insecure Access Controls
2020-10-01 03:51:33
Insecure File Permissions
2019-11-06 00:21:01
f5
f5
K70949911 : Glib vulnerability CVE-2019-14822
2022-08-26 00:00:00
K18407453 : Glib vulnerabilities CVE-2018-10767, CVE-2019-12450, and CVE-2019-19126
2022-04-25 00:00:00
amazon
amazon
Medium: ibus
2020-11-09 17:10:00
Medium: glib2
2020-11-09 17:10:00
Medium: glib2
2019-08-07 23:00:00
cloudfoundry
cloudfoundry
USN-4014-1: GLib vulnerability | Cloud Foundry
2019-06-18 00:00:00
ibm
ibm
Security Bulletin: IBM Security Privileged Identity Manager is affected by security vulnerabilities (CVE-2019-12450)
2021-08-04 17:37:31
Security Bulletin: IBM Security Privileged Identity Manager is affected by security vulnerabilities (CVE-2019-12450)
2021-08-04 17:56:39
Security Bulletin: IBM QRadar SIEM is vulnerable to using components with known vulnerabilities
2021-02-02 22:11:04
alpinelinux
alpinelinux
CVE-2019-12450
2019-05-29 17:29:00
photon
photon
Critical Photon OS Security Update - PHSA-2019-0018
2019-06-12 00:00:00
Critical Photon OS Security Update - PHSA-2019-3.0-0018
2019-06-12 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-1.0-0237
2019-06-12 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2022
2022-04-19 00:00:00
JSON
Related for ORACLELINUX_ELSA-2020-3978.NASL
oraclelinux3nessus63centos1redhat8redhatcve3openvas38fedora4suse3almalinux1mageia2debian4prion3osv6cve3debiancve3ubuntu4ubuntucve3cbl_mariner2veracode2f52amazon5cloudfoundry1ibm5alpinelinux1photon6oracle1