Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2007-0777.NASL
HistoryAug 13, 2007 - 12:00 a.m.

RHEL 5 : gdm (RHSA-2007:0777)

2007-08-1300:00:00
This script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

An updated gdm package that fixes a security issue is now available for Red Hat Enterprise Linux 5.

This update has been rated as having moderate security impact by the Red Hat Security Response Team.

Gdm (the GNOME Display Manager) is a highly configurable reimplementation of xdm, the X Display Manager. Gdm allows you to log into your system with the X Window System running and supports running several different X sessions on your local machine at the same time.

A flaw was found in the way Gdm listens on its unix domain socket. A local user could crash a running X session by writing malicious data to Gdmโ€™s unix domain socket. (CVE-2007-3381)

All users of gdm should upgrade to this updated package, which contains a backported patch that resolves this issue.

Red Hat would like to thank JLANTHEA for reporting this issue.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2007:0777. The text 
# itself is copyright (C) Red Hat, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(25878);
  script_version("1.23");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2007-3381");
  script_xref(name:"RHSA", value:"2007:0777");

  script_name(english:"RHEL 5 : gdm (RHSA-2007:0777)");
  script_summary(english:"Checks the rpm output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"An updated gdm package that fixes a security issue is now available
for Red Hat Enterprise Linux 5.

This update has been rated as having moderate security impact by the
Red Hat Security Response Team.

Gdm (the GNOME Display Manager) is a highly configurable
reimplementation of xdm, the X Display Manager. Gdm allows you to log
into your system with the X Window System running and supports running
several different X sessions on your local machine at the same time.

A flaw was found in the way Gdm listens on its unix domain socket. A
local user could crash a running X session by writing malicious data
to Gdm's unix domain socket. (CVE-2007-3381)

All users of gdm should upgrade to this updated package, which
contains a backported patch that resolves this issue.

Red Hat would like to thank JLANTHEA for reporting this issue."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2007-3381"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2007:0777"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected gdm package.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:S/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:gdm");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:5");

  script_set_attribute(attribute:"vuln_publication_date", value:"2007/08/07");
  script_set_attribute(attribute:"patch_publication_date", value:"2007/08/07");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/08/13");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^5([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 5.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2007:0777";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_NOTE,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_check(release:"RHEL5", cpu:"i386", reference:"gdm-2.16.0-31.0.1.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"gdm-2.16.0-31.0.1.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"gdm-2.16.0-31.0.1.el5")) flag++;

  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_NOTE,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "gdm");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxgdmp-cpe:/a:redhat:enterprise_linux:gdm
redhatenterprise_linux5cpe:/o:redhat:enterprise_linux:5

Related

openvas 9
securityvulns 2
nessus 6
fedora 2
cve 1
seebug 1
oraclelinux 1
prion 1
ubuntucve 1
veracode 1
redhat 1
gentoo 1
centos 1
openvas
openvas
Gentoo Security Advisory GLSA 200709-11 (gdm)
2008-09-24 00:00:00
Mandriva Update for gdm MDKSA-2007:169 (gdm)
2009-04-09 00:00:00
Fedora Update for gdm FEDORA-2007-1362
2009-02-27 00:00:00
securityvulns
securityvulns
gdm DoS
2007-08-03 00:00:00
FLEA-2007-0041-1 gdm
2007-08-03 00:00:00
nessus
nessus
Scientific Linux Security Update : gdm on SL5.x i386/x86_64
2012-08-01 00:00:00
Oracle Linux 5 : gdm (ELSA-2007-0777)
2013-07-12 00:00:00
GLSA-200709-11 : GDM: Local Denial of Service
2007-09-24 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: gdm-2.18.4-1.fc7
2007-07-31 22:55:34
[SECURITY] Fedora Core 6 Update: gdm-2.16.5-2.fc6
2007-08-02 03:10:13
cve
cve
CVE-2007-3381
2007-08-07 10:17:00
seebug
seebug
GNOMEๆ˜พ็คบ็ฎก็†ๅ™จG_Strsplitๅ‡ฝๆ•ฐๆœฌๅœฐๆ‹’็ปๆœๅŠกๆผๆดž
2007-08-08 00:00:00
oraclelinux
oraclelinux
Moderate: gdm security and bug fix update
2007-08-09 00:00:00
prion
prion
Command injection
2007-08-07 10:17:00
ubuntucve
ubuntucve
CVE-2007-3381
2007-08-07 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:17:52
redhat
redhat
(RHSA-2007:0777) Moderate: gdm security and bug fix update
2007-08-07 00:00:00
gentoo
gentoo
GDM: Local Denial of service
2007-09-18 00:00:00
centos
centos
gdm security update
2007-08-09 16:40:24
JSON
Related for REDHAT-RHSA-2007-0777.NASL
openvas9securityvulns2nessus6fedora2cve1seebug1oraclelinux1prion1ubuntucve1veracode1redhat1gentoo1centos1