Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLELINUX_ELSA-2024-2968.NASLHistoryMay 28, 2024 - 12:00 a.m.
Oracle Linux 8 : fence-agents (ELSA-2024-2968)
2024-05-2800:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
3
oracle linux 8
fence-agents
elsa-2024-2968
vulnerabilities
cve-2023-45803
cve-2023-52323
cve-2024-22195.
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
41.2%
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2968 advisory.
[4.2.1-129]
- bundled urllib3: fix CVE-2023-45803 Resolves: RHEL-18132
- bundled pycryptodome: fix CVE-2023-52323 Resolves: RHEL-20915
- bundled jinja2: fix CVE-2024-22195 Resolves: RHEL-22174
[4.2.1-127]
- fence_scsi: fix registration handling if ISID conflicts Resolves: RHEL-5397
- fence_zvmip: document required user permissions in metadata/manpage Resolves: RHEL-14343
[4.2.1-125]
- all agents: update metadata in non-I/O agents to Power or Network fencing Resolves: RHEL-14031
[4.2.1-123]
- bundled urllib3: fix CVE-2023-43804 Resolves: RHEL-11988
[4.2.1-122]
- bundled certifi: fix CVE-2023-37920 Resolves: RHEL-6972
Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Oracle Linux Security Advisory ELSA-2024-2968.
##
include('compat.inc');
if (description)
{
script_id(197988);
script_version("1.1");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/05/28");
script_cve_id("CVE-2023-45803", "CVE-2023-52323", "CVE-2024-22195");
script_name(english:"Oracle Linux 8 : fence-agents (ELSA-2024-2968)");
script_set_attribute(attribute:"synopsis", value:
"The remote Oracle Linux host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the
ELSA-2024-2968 advisory.
[4.2.1-129]
- bundled urllib3: fix CVE-2023-45803
Resolves: RHEL-18132
- bundled pycryptodome: fix CVE-2023-52323
Resolves: RHEL-20915
- bundled jinja2: fix CVE-2024-22195
Resolves: RHEL-22174
[4.2.1-127]
- fence_scsi: fix registration handling if ISID conflicts
Resolves: RHEL-5397
- fence_zvmip: document required user permissions in metadata/manpage
Resolves: RHEL-14343
[4.2.1-125]
- all agents: update metadata in non-I/O agents to Power or Network
fencing
Resolves: RHEL-14031
[4.2.1-123]
- bundled urllib3: fix CVE-2023-43804
Resolves: RHEL-11988
[4.2.1-122]
- bundled certifi: fix CVE-2023-37920
Resolves: RHEL-6972
Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://linux.oracle.com/errata/ELSA-2024-2968.html");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-22195");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/10/17");
script_set_attribute(attribute:"patch_publication_date", value:"2024/05/23");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/05/28");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:linux:8:10:appstream_base");
script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:linux:8::addons");
script_set_attribute(attribute:"cpe", value:"cpe:/a:oracle:linux:8::appstream");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:linux:8");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-all");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-amt-ws");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-apc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-apc-snmp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-bladecenter");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-brocade");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-cisco-mds");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-cisco-ucs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-compute");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-drac5");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-eaton-snmp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-emerson");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-eps");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-heuristics-ping");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-hpblade");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ibm-powervs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ibm-vpc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ibmblade");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ifmib");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ilo-moonshot");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ilo-mp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ilo-ssh");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ilo2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-intelmodular");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ipdu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-ipmilan");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-kdump");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-kubevirt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-lpar");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-mpath");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-redfish");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-rhevm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-rsa");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-rsb");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-sbd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-scsi");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-virsh");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-vmware-rest");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-vmware-soap");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:linux:fence-agents-wti");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Oracle Linux Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/OracleLinux", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/local_checks_enabled");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item('Host/OracleLinux')) audit(AUDIT_OS_NOT, 'Oracle Linux');
var os_release = get_kb_item("Host/RedHat/release");
if (isnull(os_release) || !pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux)", string:os_release)) audit(AUDIT_OS_NOT, 'Oracle Linux');
var os_ver = pregmatch(pattern: "Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Oracle Linux');
os_ver = os_ver[1];
if (! preg(pattern:"^8([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'Oracle Linux 8', 'Oracle Linux ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Oracle Linux', cpu);
var pkgs = [
{'reference':'fence-agents-all-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-amt-ws-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-apc-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-apc-snmp-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-bladecenter-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-brocade-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-cisco-mds-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-cisco-ucs-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-common-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-compute-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-drac5-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-eaton-snmp-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-emerson-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-eps-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-heuristics-ping-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-hpblade-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ibm-powervs-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ibm-vpc-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ibmblade-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ifmib-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ilo-moonshot-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ilo-mp-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ilo-ssh-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ilo2-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-intelmodular-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ipdu-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ipmilan-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-kdump-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-kubevirt-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-lpar-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-mpath-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-redfish-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-rhevm-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-rsa-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-rsb-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-sbd-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-scsi-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-virsh-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-vmware-rest-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-vmware-soap-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-wti-4.2.1-129.el8', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-all-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-amt-ws-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-apc-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-apc-snmp-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-bladecenter-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-brocade-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-cisco-mds-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-cisco-ucs-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-common-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-compute-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-drac5-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-eaton-snmp-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-emerson-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-eps-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-heuristics-ping-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-hpblade-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ibm-powervs-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ibm-vpc-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ibmblade-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ifmib-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ilo-moonshot-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ilo-mp-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ilo-ssh-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ilo2-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-intelmodular-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ipdu-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-ipmilan-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-kdump-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-kubevirt-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-lpar-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-mpath-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-redfish-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-rhevm-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-rsa-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-rsb-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-sbd-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-scsi-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-virsh-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-vmware-rest-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-vmware-soap-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE},
{'reference':'fence-agents-wti-4.2.1-129.el8', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = 'EL' + package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (reference && _release) {
if (exists_check) {
if (rpm_exists(release:_release, rpm:exists_check) && rpm_check(release:_release, sp:sp, cpu:cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
} else {
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'fence-agents-all / fence-agents-amt-ws / fence-agents-apc / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | linux | fence-agents-kubevirt | p-cpe:/a:oracle:linux:fence-agents-kubevirt |
| oracle | linux | fence-agents-virsh | p-cpe:/a:oracle:linux:fence-agents-virsh |
| oracle | linux | fence-agents-kdump | p-cpe:/a:oracle:linux:fence-agents-kdump |
| oracle | linux | fence-agents-rsb | p-cpe:/a:oracle:linux:fence-agents-rsb |
| oracle | linux | 8 | cpe:/o:oracle:linux:8 |
| oracle | linux | fence-agents-ilo-ssh | p-cpe:/a:oracle:linux:fence-agents-ilo-ssh |
| oracle | linux | fence-agents-ifmib | p-cpe:/a:oracle:linux:fence-agents-ifmib |
| oracle | linux | fence-agents-all | p-cpe:/a:oracle:linux:fence-agents-all |
| oracle | linux | fence-agents-cisco-ucs | p-cpe:/a:oracle:linux:fence-agents-cisco-ucs |
| oracle | linux | fence-agents-vmware-soap | p-cpe:/a:oracle:linux:fence-agents-vmware-soap |
Related
nessus
nessus
Rocky Linux 8 : fence-agents (RLSA-2024:2968)
2024-06-14 00:00:00
RHEL 9 : fence-agents (RHSA-2024:1155)
2024-03-05 00:00:00
RHEL 9 : fence-agents (RHSA-2024:2132)
2024-04-30 00:00:00
osv
osv
Moderate: fence-agents security and bug fix update
2024-06-14 13:59:30
Moderate: fence-agents security and bug fix update
2024-05-22 00:00:00
Moderate: fence-agents security and bug fix update
2024-04-30 00:00:00
almalinux
almalinux
Moderate: fence-agents security and bug fix update
2024-04-30 00:00:00
Moderate: fence-agents security and bug fix update
2024-05-22 00:00:00
Moderate: resource-agents security and bug fix update
2024-05-22 00:00:00
redhat
redhat
(RHSA-2024:2968) Moderate: fence-agents security and bug fix update
2024-05-22 06:35:13
(RHSA-2024:2132) Moderate: fence-agents security and bug fix update
2024-04-30 06:14:50
(RHSA-2024:1155) Moderate: fence-agents security update
2024-03-05 16:29:18
oraclelinux
oraclelinux
fence-agents security and bug fix update
2024-05-23 00:00:00
fence-agents security and bug fix update
2024-05-02 00:00:00
fence-agents security update
2023-12-18 00:00:00
rocky
rocky
fence-agents security and bug fix update
2024-06-14 13:59:30
python-jinja2 security update
2024-06-14 13:59:30
ibm
ibm
Security Bulletin: AIX is affected by multiple vulnerabilities due to Python (CVE-2023-43804, CVE-2023-37920)
2023-12-21 15:15:44
openvas
openvas
Huawei EulerOS: Security Advisory for python-urllib3 (EulerOS-SA-2024-1369)
2024-03-14 00:00:00
Huawei EulerOS: Security Advisory for python-urllib3 (EulerOS-SA-2024-1407)
2024-03-21 00:00:00
Huawei EulerOS: Security Advisory for python-urllib3 (EulerOS-SA-2024-1072)
2024-01-09 00:00:00
aix
aix
AIX is affected by multiple vulnerabilities due to Python
2023-12-21 08:42:03
fedora
fedora
[SECURITY] Fedora 39 Update: python-urllib3-1.26.18-1.fc39
2023-11-03 19:01:21
[SECURITY] Fedora 39 Update: mingw-python-jinja2-3.1.3-1.fc39
2024-01-23 00:58:55
[SECURITY] Fedora 39 Update: python-jinja2-3.1.3-1.fc39
2024-01-25 00:41:41
cloudfoundry
cloudfoundry
USN-6473-1: urllib3 vulnerabilities | Cloud Foundry
2023-11-09 00:00:00
ubuntu
ubuntu
urllib3 vulnerabilities
2023-11-07 00:00:00
pip vulnerabilities
2023-11-15 00:00:00
PyCryptodome vulnerability
2024-01-23 00:00:00
debiancve
debiancve
CVE-2023-52323
2024-01-05 04:15:07
CVE-2024-22195
2024-01-11 03:15:11
redhatcve
redhatcve
CVE-2023-52323
2024-01-06 10:21:42
github
github
wolfi
wolfi
CVE-2023-52323 vulnerabilities
2024-06-27 09:08:32
CVE-2024-22195 vulnerabilities
2024-06-27 09:08:32
cgr
cgr
CVE-2023-52323 vulnerabilities
2024-05-19 03:07:16
cvelist
cvelist
CVE-2023-52323
2024-01-05 00:00:00
CVE-2024-22195 Jinja vulnerable to Cross-Site Scripting (XSS)
2024-01-11 02:25:44
cve
cve
CVE-2023-52323
2024-01-05 04:15:07
ubuntucve
ubuntucve
CVE-2023-52323
2024-01-05 00:00:00
CVE-2023-37920
2023-07-25 00:00:00
nvd
nvd
CVE-2024-22195
2024-01-11 03:15:11
CVE-2023-52323
2024-01-05 04:15:07
debian
debian
[SECURITY] [DLA 3715-1] jinja2 security update
2024-01-23 17:31:34
veracode
veracode
Cross Site Scripting (XSS)
2024-01-12 10:04:04
Information Leak
2024-01-08 06:30:36
prion
prion
Cross site scripting
2024-01-11 03:15:00
amazon
amazon
Medium: python-jinja2
2024-02-01 19:57:00
alpinelinux
alpinelinux
CVE-2023-37920
2023-07-25 21:15:10
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
41.2%
Related for ORACLELINUX_ELSA-2024-2968.NASL