Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2013-0133.NASL
HistoryJan 08, 2013 - 12:00 a.m.

RHEL 5 : hplip3 (RHSA-2013:0133)

2013-01-0800:00:00
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

Updated hplip3 packages that fix one security issue and one bug are now available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.

Hewlett-Packard Linux Imaging and Printing (HPLIP) provides drivers for Hewlett-Packard (HP) printers and multifunction peripherals.

It was found that the HP CUPS (Common UNIX Printing System) fax filter in HPLIP created a temporary file in an insecure way. A local attacker could use this flaw to perform a symbolic link attack, overwriting arbitrary files accessible to a process using the fax filter (such as the hp3-sendfax tool). (CVE-2011-2722)

This update also fixes the following bug :

  • Previous modifications of the hplip3 package to allow it to be installed alongside the original hplip package introduced several problems to fax support; for example, the hp-sendfax utility could become unresponsive. These problems have been fixed with this update.
    (BZ#501834)

All users of hplip3 are advised to upgrade to these updated packages, which contain backported patches to correct these issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2013:0133. The text 
# itself is copyright (C) Red Hat, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(63414);
  script_version("1.18");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2011-2722");
  script_bugtraq_id(48892);
  script_xref(name:"RHSA", value:"2013:0133");

  script_name(english:"RHEL 5 : hplip3 (RHSA-2013:0133)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated hplip3 packages that fix one security issue and one bug are
now available for Red Hat Enterprise Linux 5.

The Red Hat Security Response Team has rated this update as having low
security impact. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available from the
CVE link in the References section.

Hewlett-Packard Linux Imaging and Printing (HPLIP) provides drivers
for Hewlett-Packard (HP) printers and multifunction peripherals.

It was found that the HP CUPS (Common UNIX Printing System) fax filter
in HPLIP created a temporary file in an insecure way. A local attacker
could use this flaw to perform a symbolic link attack, overwriting
arbitrary files accessible to a process using the fax filter (such as
the hp3-sendfax tool). (CVE-2011-2722)

This update also fixes the following bug :

* Previous modifications of the hplip3 package to allow it to be
installed alongside the original hplip package introduced several
problems to fax support; for example, the hp-sendfax utility could
become unresponsive. These problems have been fixed with this update.
(BZ#501834)

All users of hplip3 are advised to upgrade to these updated packages,
which contain backported patches to correct these issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2013:0133"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2011-2722"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:H/Au:N/C:N/I:P/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:hpijs3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:hplip3");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:hplip3-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:hplip3-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:hplip3-gui");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:hplip3-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libsane-hpaio3");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:5");

  script_set_attribute(attribute:"patch_publication_date", value:"2013/01/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/01/08");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = eregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! ereg(pattern:"^5([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 5.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2013:0133";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_NOTE,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_check(release:"RHEL5", cpu:"i386", reference:"hpijs3-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"hpijs3-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"i386", reference:"hplip3-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"hplip3-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"i386", reference:"hplip3-common-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"hplip3-common-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"i386", reference:"hplip3-debuginfo-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"hplip3-debuginfo-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"i386", reference:"hplip3-gui-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"hplip3-gui-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"i386", reference:"hplip3-libs-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"hplip3-libs-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"i386", reference:"libsane-hpaio3-3.9.8-15.el5")) flag++;
  if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"libsane-hpaio3-3.9.8-15.el5")) flag++;

  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_NOTE,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "hpijs3 / hplip3 / hplip3-common / hplip3-debuginfo / hplip3-gui / etc");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxhpijs3p-cpe:/a:redhat:enterprise_linux:hpijs3
redhatenterprise_linuxhplip3p-cpe:/a:redhat:enterprise_linux:hplip3
redhatenterprise_linuxhplip3-commonp-cpe:/a:redhat:enterprise_linux:hplip3-common
redhatenterprise_linuxhplip3-debuginfop-cpe:/a:redhat:enterprise_linux:hplip3-debuginfo
redhatenterprise_linuxhplip3-guip-cpe:/a:redhat:enterprise_linux:hplip3-gui
redhatenterprise_linuxhplip3-libsp-cpe:/a:redhat:enterprise_linux:hplip3-libs
redhatenterprise_linuxlibsane-hpaio3p-cpe:/a:redhat:enterprise_linux:libsane-hpaio3
redhatenterprise_linux5cpe:/o:redhat:enterprise_linux:5

Related

nessus 14
openvas 20
prion 2
veracode 1
debiancve 2
ubuntucve 2
cve 1
redhat 2
fedora 3
cvelist 2
centos 2
securityvulns 2
oraclelinux 2
ubuntu 1
gentoo 1
nessus
nessus
Scientific Linux Security Update : hplip3 on SL5.x i386/x86_64 (20130108)
2013-01-17 00:00:00
SuSE 11.1 Security Update : hplip (SAT Patch Number 5307)
2011-12-13 00:00:00
CentOS 5 : hplip3 (CESA-2013:0133)
2013-01-17 00:00:00
openvas
openvas
CentOS Update for hpijs3 CESA-2013:0133 centos5
2013-01-21 00:00:00
RedHat Update for hplip3 RHSA-2013:0133-01
2013-01-11 00:00:00
Fedora Update for hplip FEDORA-2011-11116
2012-04-02 00:00:00
prion
prion
Design/Logic Flaw
2012-05-25 20:55:00
Design/Logic Flaw
2013-03-06 20:55:00
veracode
veracode
Arbitrary File Overwrite
2019-01-15 08:53:06
debiancve
debiancve
CVE-2011-2722
2012-05-25 20:55:01
CVE-2013-0200
2013-03-06 20:55:01
ubuntucve
ubuntucve
CVE-2011-2722
2012-05-25 00:00:00
CVE-2013-0200
2013-03-06 00:00:00
cve
cve
CVE-2011-2722
2012-05-25 20:55:01
redhat
redhat
(RHSA-2013:0133) Low: hplip3 security and bug fix update
2013-01-08 00:00:00
(RHSA-2013:0500) Low: hplip security, bug fix and enhancement update
2013-02-21 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: hplip-3.11.7-2.fc16
2011-08-30 20:41:34
[SECURITY] Fedora 15 Update: hplip-3.11.7-2.fc15
2011-09-13 05:50:13
[SECURITY] Fedora 14 Update: hplip-3.11.7-2.fc14
2011-09-10 23:57:42
cvelist
cvelist
CVE-2011-2722
2012-05-25 20:00:00
CVE-2013-0200
2013-03-06 20:00:00
centos
centos
hpijs3, hplip3, libsane security update
2013-01-09 19:35:42
hpijs, hplip, libsane security update
2013-02-27 19:35:16
securityvulns
securityvulns
hplip symbolic lcinks vulnerability
2013-10-01 00:00:00
[USN-1981-1] HPLIP vulnerabilities
2013-10-01 00:00:00
oraclelinux
oraclelinux
hplip3 security and bug fix update
2013-01-11 00:00:00
hplip security, bug fix and enhancement update
2013-02-27 00:00:00
ubuntu
ubuntu
HPLIP vulnerabilities
2013-09-30 00:00:00
gentoo
gentoo
HPLIP: Multiple vulnerabilities
2012-03-16 00:00:00
JSON
Related for REDHAT-RHSA-2013-0133.NASL
nessus14openvas20prion2veracode1debiancve2ubuntucve2cve1redhat2fedora3cvelist2centos2securityvulns2oraclelinux2ubuntu1gentoo1