5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.098 Low
EPSS
Percentile
94.8%
Updated glibc packages are available to fix a buffer overflow in the resolver.
The GNU C library package, glibc, contains standard libraries used by multiple programs on the system.
A read buffer overflow vulnerability exists in the glibc resolver code in versions of glibc up to and including 2.2.5. The vulnerability is triggered by DNS packets larger than 1024 bytes and can cause applications to crash.
In addition to this, several non-security related bugs have been fixed, the majority for the Itanium (IA64) platform.
All Red Hat Linux Advanced Server users are advised to upgrade to these errata packages which contain a patch to correct this vulnerability.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2003:022. The text
# itself is copyright (C) Red Hat, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(12354);
script_version("1.24");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2002-1146");
script_xref(name:"CERT", value:"738331");
script_xref(name:"RHSA", value:"2003:022");
script_name(english:"RHEL 2.1 : glibc (RHSA-2003:022)");
script_summary(english:"Checks the rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Red Hat host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"Updated glibc packages are available to fix a buffer overflow in the
resolver.
The GNU C library package, glibc, contains standard libraries used by
multiple programs on the system.
A read buffer overflow vulnerability exists in the glibc resolver code
in versions of glibc up to and including 2.2.5. The vulnerability is
triggered by DNS packets larger than 1024 bytes and can cause
applications to crash.
In addition to this, several non-security related bugs have been
fixed, the majority for the Itanium (IA64) platform.
All Red Hat Linux Advanced Server users are advised to upgrade to
these errata packages which contain a patch to correct this
vulnerability."
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2002-1146"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/errata/RHSA-2003:022"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:glibc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:glibc-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:glibc-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:glibc-profile");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:nscd");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:2.1");
script_set_attribute(attribute:"vuln_publication_date", value:"2002/10/11");
script_set_attribute(attribute:"patch_publication_date", value:"2003/02/04");
script_set_attribute(attribute:"plugin_publication_date", value:"2004/07/06");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2004-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Red Hat Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^2\.1([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 2.1", "Red Hat " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);
yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo))
{
rhsa = "RHSA-2003:022";
yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
if (!empty_or_null(yum_report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : yum_report
);
exit(0);
}
else
{
audit_message = "affected by Red Hat security advisory " + rhsa;
audit(AUDIT_OS_NOT, audit_message);
}
}
else
{
flag = 0;
if (rpm_check(release:"RHEL2.1", cpu:"i386", reference:"glibc-2.2.4-31.7")) flag++;
if (rpm_check(release:"RHEL2.1", cpu:"i686", reference:"glibc-2.2.4-31.7")) flag++;
if (rpm_check(release:"RHEL2.1", cpu:"i386", reference:"glibc-common-2.2.4-31.7")) flag++;
if (rpm_check(release:"RHEL2.1", cpu:"i386", reference:"glibc-devel-2.2.4-31.7")) flag++;
if (rpm_check(release:"RHEL2.1", cpu:"i386", reference:"glibc-profile-2.2.4-31.7")) flag++;
if (rpm_check(release:"RHEL2.1", cpu:"i386", reference:"nscd-2.2.4-31.7")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get() + redhat_report_package_caveat()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc / glibc-common / glibc-devel / glibc-profile / nscd");
}
}
Vendor | Product | Version | CPE |
---|---|---|---|
redhat | enterprise_linux | glibc | p-cpe:/a:redhat:enterprise_linux:glibc |
redhat | enterprise_linux | glibc-common | p-cpe:/a:redhat:enterprise_linux:glibc-common |
redhat | enterprise_linux | glibc-devel | p-cpe:/a:redhat:enterprise_linux:glibc-devel |
redhat | enterprise_linux | glibc-profile | p-cpe:/a:redhat:enterprise_linux:glibc-profile |
redhat | enterprise_linux | nscd | p-cpe:/a:redhat:enterprise_linux:nscd |
redhat | enterprise_linux | 2.1 | cpe:/o:redhat:enterprise_linux:2.1 |