Lucene search

Photon OS 2.0 : perl / libmspack / zsh (PhotonOS-PHSA-2018-2.0-0050) (deprecated)

An update of perl, libmspack, zsh packages of Photon OS has been released. Deprecated plugin

Reporter	Title	Published	Views	Family All 199
Photon	Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0050	29 May 201800:00	–	photon
Photon	Critical Photon OS Security Update - PHSA-2018-0050	29 May 201800:00	–	photon
Photon	Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0140	24 May 201800:00	–	photon
Photon	Important Photon OS Security Update - PHSA-2018-0140	24 May 201800:00	–	photon
Photon	Important Photon OS Security Update - PHSA-2023-4.0-0369	3 Apr 202300:00	–	photon
Photon	Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0167	27 Jul 201800:00	–	photon
Photon	Critical Photon OS Security Update - PHSA-2018-0167	27 Jul 201800:00	–	photon
Fedora	[SECURITY] Fedora 26 Update: perl-Module-CoreList-5.20180414-1.fc26	25 Apr 201818:16	–	fedora
Fedora	[SECURITY] Fedora 26 Update: perl-5.24.4-397.fc26	25 Apr 201818:16	–	fedora
Fedora	[SECURITY] Fedora 27 Update: perl-Module-CoreList-5.20180414-1.fc27	21 Apr 201803:41	–	fedora

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#
# (C) Tenable Network Security, Inc.
#
# @DEPRECATED@
#
# Disabled on 2/7/2019
#

# The descriptive text and package checks in this plugin were
# extracted from VMware Security Advisory PHSA-2018-2.0-0050. The text
# itself is copyright (C) VMware, Inc.

include("compat.inc");

if (description)
{
  script_id(111305);
  script_version("1.4");
  script_cvs_date("Date: 2019/02/07 18:59:50");

  script_cve_id(
    "CVE-2017-6419",
    "CVE-2018-1100",
    "CVE-2018-6797",
    "CVE-2018-6798",
    "CVE-2018-6913"
  );
  script_bugtraq_id(103953);

  script_name(english:"Photon OS 2.0 : perl / libmspack / zsh (PhotonOS-PHSA-2018-2.0-0050) (deprecated)");
  script_summary(english:"Checks the rpm output for the updated packages.");

  script_set_attribute(attribute:"synopsis", value:
"This plugin has been deprecated.");
  script_set_attribute(attribute:"description", value:
"An update of {'perl', 'libmspack', 'zsh'} packages of Photon OS has
been released.");
  script_set_attribute(attribute:"solution", value:"n/a.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-6797");
  # https://github.com/vmware/photon/wiki/Security-Updates-2-50
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?6b137d5a");

  script_set_attribute(attribute:"patch_publication_date", value:"2018/05/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/07/24");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:zsh");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:perl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:vmware:photonos:libmspack");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:vmware:photonos:2.0");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"PhotonOS Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/PhotonOS/release", "Host/PhotonOS/rpm-list");

  exit(0);
}

exit(0, "This plugin has been deprecated.");

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/PhotonOS/release");
if (isnull(release) || release !~ "^VMware Photon") audit(AUDIT_OS_NOT, "PhotonOS");
if (release !~ "^VMware Photon (?:Linux|OS) 2\.0(\D|$)") audit(AUDIT_OS_NOT, "PhotonOS 2.0");

if (!get_kb_item("Host/PhotonOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "PhotonOS", cpu);

flag = 0;

pkgs = [
  "libmspack-0.5alpha-4.ph2",
  "libmspack-debuginfo-0.5alpha-4.ph2",
  "libmspack-devel-0.5alpha-4.ph2",
  "perl-5.24.1-5.ph2",
  "perl-debuginfo-5.24.1-5.ph2",
  "zsh-5.3.1-8.ph2",
  "zsh-debuginfo-5.3.1-8.ph2",
  "zsh-html-5.3.1-8.ph2"
];

foreach (pkg in pkgs)
  if (rpm_check(release:"PhotonOS-2.0", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "zsh / perl / libmspack");
}

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jul 2018 00:00Current

7.1High risk

Vulners AI Score7.1

EPSS0.01274