Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.PHOTONOS_PHSA-2017-0044.NASL
HistoryAug 17, 2018 - 12:00 a.m.

Photon OS 1.0: Bash / Curl / Mariadb / Openvswitch / Systemd PHSA-2017-0044 (deprecated)

2018-08-1700:00:00
This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18

0.955 High

EPSS

Percentile

99.2%

JSON

An update of [openvswitch,systemd,curl,mariadb,bash] packages for PhotonOS has been released.

#
# (C) Tenable Network Security, Inc.
#
# @DEPRECATED@
#
# Disabled on 2/7/2019
#

# The descriptive text and package checks in this plugin were
# extracted from VMware Security Advisory PHSA-2017-0044. The text
# itself is copyright (C) VMware, Inc.

include("compat.inc");

if (description)
{
  script_id(111893);
  script_version("1.2");
  script_cvs_date("Date: 2019/02/07 18:59:50");

  script_cve_id(
    "CVE-2016-9401",
    "CVE-2017-10268",
    "CVE-2017-10378",
    "CVE-2017-14970",
    "CVE-2017-15908",
    "CVE-2017-1000254"
  );

  script_name(english:"Photon OS 1.0: Bash / Curl / Mariadb / Openvswitch / Systemd PHSA-2017-0044 (deprecated)");
  script_summary(english:"Checks the rpm output for the updated packages.");

  script_set_attribute(attribute:"synopsis", value:
"This plugin has been deprecated.");
  script_set_attribute(attribute:"description", value:
"An update of [openvswitch,systemd,curl,mariadb,bash] packages for
PhotonOS has been released.");
  # https://github.com/vmware/photon/wiki/Security-Updates-84
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?185d85d0");
  script_set_attribute(attribute:"solution", value:"n/a.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2017-14970");

  script_set_attribute(attribute:"patch_publication_date", value:"2017/11/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/08/17");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:bash");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:curl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:mariadb");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:openvswitch");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:systemd");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:photonos:1.0");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"PhotonOS Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/PhotonOS/release", "Host/PhotonOS/rpm-list");

  exit(0);
}

exit(0, "This plugin has been deprecated.");

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/PhotonOS/release");
if (isnull(release) || release !~ "^VMware Photon") audit(AUDIT_OS_NOT, "PhotonOS");
if (release !~ "^VMware Photon (?:Linux|OS) 1\.0(\D|$)") audit(AUDIT_OS_NOT, "PhotonOS 1.0");

if (!get_kb_item("Host/PhotonOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "PhotonOS", cpu);

flag = 0;

pkgs = [
  "bash-4.3.48-2.ph1",
  "bash-debuginfo-4.3.48-2.ph1",
  "bash-lang-4.3.48-2.ph1",
  "curl-7.54.0-4.ph1",
  "curl-debuginfo-7.54.0-4.ph1",
  "mariadb-10.2.10-1.ph1",
  "mariadb-debuginfo-10.2.10-1.ph1",
  "mariadb-devel-10.2.10-1.ph1",
  "mariadb-errmsg-10.2.10-1.ph1",
  "mariadb-server-10.2.10-1.ph1",
  "mariadb-server-galera-10.2.10-1.ph1",
  "openvswitch-2.6.1-5.ph1",
  "openvswitch-debuginfo-2.6.1-5.ph1",
  "openvswitch-devel-2.6.1-5.ph1",
  "openvswitch-doc-2.6.1-5.ph1",
  "systemd-228-43.ph1",
  "systemd-debuginfo-228-43.ph1"
];

foreach (pkg in pkgs)
  if (rpm_check(release:"PhotonOS-1.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bash / curl / mariadb / openvswitch / systemd");
}
VendorProductVersionCPE
vmwarephotonosbashp-cpe:/a:vmware:photonos:bash
vmwarephotonoscurlp-cpe:/a:vmware:photonos:curl
vmwarephotonosmariadbp-cpe:/a:vmware:photonos:mariadb
vmwarephotonosopenvswitchp-cpe:/a:vmware:photonos:openvswitch
vmwarephotonossystemdp-cpe:/a:vmware:photonos:systemd
vmwarephotonos1.0cpe:/o:vmware:photonos:1.0

Related

photon 3
nessus 59
mageia 3
slackware 2
openvas 31
altlinux 2
ubuntu 3
osv 11
debian 7
suse 2
amazon 3
ubuntucve 6
ibm 13
redhatcve 6
fedora 5
cve 6
prion 6
debiancve 6
alpinelinux 4
veracode 3
archlinux 6
zdi 1
freebsd 1
checkpoint_advisories 1
mariadbunix 2
gentoo 1
oraclelinux 2
centos 2
redhat 2
photon
photon
Important Photon OS Security Update - PHSA-2017-0084
2017-11-15 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2017-0045
2017-11-17 00:00:00
Critical Photon OS Security Update - PHSA-2017-0002
2017-11-17 00:00:00
nessus
nessus
Photon OS 1.0: Systemd PHSA-2017-0044
2019-02-07 00:00:00
Photon OS 1.0: Curl PHSA-2017-0044
2019-02-07 00:00:00
openSUSE Security Update : mariadb (openSUSE-2018-146)
2018-02-08 00:00:00
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2017-12-21 21:18:18
Updated bash packages fix security vulnerability
2017-01-06 11:28:18
Updated systemd packages fix security vulnerability
2018-01-03 21:52:52
slackware
slackware
[slackware-security] mariadb
2017-11-03 06:23:58
[slackware-security] curl
2017-10-06 06:33:52
openvas
openvas
Mageia: Security Advisory (MGASA-2017-0461)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:0384-1)
2021-04-19 00:00:00
Slackware: Security Advisory (SSA:2017-306-01)
2022-04-21 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package mariadb version 10.1.29-alt1
2017-12-06 00:00:00
Security fix for the ALT Linux 8 package curl version 7.56.0-alt1
2017-10-04 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2017-10-30 00:00:00
systemd vulnerability
2017-10-26 00:00:00
systemd vulnerabilities
2018-02-05 00:00:00
osv
osv
mysql-5.5 - security update
2017-10-19 00:00:00
mysql-5.5 - security update
2017-10-19 00:00:00
CVE-2017-14970
2017-10-02 01:29:00
debian
debian
[SECURITY] [DSA 4002-1] mysql-5.5 security update
2017-10-19 17:20:45
[SECURITY] [DSA 4002-1] mysql-5.5 security update
2017-10-19 17:20:45
[SECURITY] [DLA 1141-1] mysql-5.5 security update
2017-10-19 18:15:56
suse
suse
Security update for mysql (important)
2017-11-11 00:07:25
Security update for mariadb (important)
2018-03-15 21:07:44
amazon
amazon
Medium: mysql55
2017-12-05 21:54:00
Medium: curl
2017-11-02 20:18:00
Medium: bash
2017-08-31 15:53:00
ubuntucve
ubuntucve
CVE-2017-14970
2017-10-02 00:00:00
CVE-2016-9401
2017-01-23 00:00:00
CVE-2017-15908
2017-10-26 00:00:00
ibm
ibm
Security Bulletin: Vulnerability in bash affects IBM BladeCenter Advanced Management Module (AMM) (CVE-2016-9401)
2023-04-14 14:32:25
Security Bulletin: A vulnerability in bash affects IBM Flex System Manager (FSM) (CVE-2016-9401)
2018-06-18 01:38:08
Security Bulletin: Vulnerability in bash affects IBM Chassis Management Module (CVE-2016-9401)
2019-01-31 02:25:02
redhatcve
redhatcve
CVE-2016-9401
2016-11-18 09:17:17
CVE-2017-14970
2017-10-03 09:19:04
CVE-2017-15908
2017-10-30 13:49:27
fedora
fedora
[SECURITY] Fedora 27 Update: openvswitch-2.8.1-1.fc27
2017-10-17 00:18:53
[SECURITY] Fedora 27 Update: curl-7.55.1-6.fc27
2017-11-11 03:23:12
[SECURITY] Fedora 27 Update: curl-7.55.1-6.fc27
2017-11-11 13:41:16
cve
cve
CVE-2017-14970
2017-10-02 01:29:00
CVE-2016-9401
2017-01-23 21:59:00
CVE-2017-15908
2017-10-26 14:29:00
prion
prion
Authentication flaw
2017-01-23 21:59:00
Design/Logic Flaw
2017-10-26 14:29:00
Design/Logic Flaw
2017-10-02 01:29:00
debiancve
debiancve
CVE-2016-9401
2017-01-23 21:59:00
CVE-2017-14970
2017-10-02 01:29:00
CVE-2017-1000254
2017-10-06 13:29:00
alpinelinux
alpinelinux
CVE-2016-9401
2017-01-23 21:59:00
CVE-2017-1000254
2017-10-06 13:29:00
CVE-2017-10268
2017-10-19 17:29:00
veracode
veracode
Authorization Bypass
2019-05-02 05:51:56
Out-Of-Bounds Read
2019-05-16 03:21:39
Privilege Escalation
2019-05-02 06:37:50
archlinux
archlinux
[ASA-201710-2] curl: denial of service
2017-10-05 00:00:00
[ASA-201710-6] lib32-libcurl-compat: multiple issues
2017-10-05 00:00:00
[ASA-201710-3] lib32-curl: multiple issues
2017-10-05 00:00:00
zdi
zdi
systemd Network Name Resolution Manager NSEC Resource Record Pseudo-Types Denial of Service Vulnerability
2017-11-20 00:00:00
freebsd
freebsd
cURL -- out of bounds read
2017-10-04 00:00:00
checkpoint_advisories
checkpoint_advisories
Systemd resolved dns_packet_read_type_window Infinite Loop (CVE-2017-15908)
2017-12-13 00:00:00
mariadbunix
mariadbunix
CVE-2017-10268
2017-10-19 17:29:00
CVE-2017-10378
2017-10-19 17:29:00
gentoo
gentoo
Bash: Multiple vulnerabilities
2017-01-01 00:00:00
oraclelinux
oraclelinux
bash security and bug fix update
2017-08-07 00:00:00
bash security and bug fix update
2017-03-27 00:00:00
centos
centos
bash security update
2017-08-24 01:36:04
bash security update
2017-03-24 15:27:21
redhat
redhat
(RHSA-2017:1931) Moderate: bash security and bug fix update
2017-08-01 05:56:24
(RHSA-2017:0725) Moderate: bash security and bug fix update
2017-03-21 06:17:48

0.955 High

EPSS

Percentile

99.2%

JSON
Related for PHOTONOS_PHSA-2017-0044.NASL
photon3nessus59mageia3slackware2openvas31altlinux2ubuntu3osv11debian7suse2amazon3ubuntucve6ibm13redhatcve6fedora5cve6prion6debiancve6alpinelinux4veracode3archlinux6zdi1freebsd1checkpoint_advisories1mariadbunix2gentoo1oraclelinux2centos2redhat2