Lucene search
This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2016-0189.NASLHistoryFeb 17, 2016 - 12:00 a.m.
RHEL 7 : polkit (RHSA-2016:0189)
2016-02-1700:00:00
This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
65
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Updated polkit packages that fix one security issue are now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having Moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.
PolicyKit is a toolkit for defining and handling authorizations.
A denial of service flaw was found in how polkit handled authorization requests. A local, unprivileged user could send malicious requests to polkit, which could then cause the polkit daemon to corrupt its memory and crash. (CVE-2015-3256)
All polkit users should upgrade to these updated packages, which contain a backported patch to correct this issue. The system must be rebooted for this update to take effect.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2016:0189. The text
# itself is copyright (C) Red Hat, Inc.
#
include("compat.inc");
if (description)
{
script_id(88788);
script_version("2.12");
script_cvs_date("Date: 2019/10/24 15:35:41");
script_cve_id("CVE-2015-3256");
script_xref(name:"RHSA", value:"2016:0189");
script_name(english:"RHEL 7 : polkit (RHSA-2016:0189)");
script_summary(english:"Checks the rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Red Hat host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"Updated polkit packages that fix one security issue are now available
for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having Moderate
security impact. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available from the
CVE link in the References section.
PolicyKit is a toolkit for defining and handling authorizations.
A denial of service flaw was found in how polkit handled authorization
requests. A local, unprivileged user could send malicious requests to
polkit, which could then cause the polkit daemon to corrupt its memory
and crash. (CVE-2015-3256)
All polkit users should upgrade to these updated packages, which
contain a backported patch to correct this issue. The system must be
rebooted for this update to take effect."
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/errata/RHSA-2016:0189"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2015-3256"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:polkit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:polkit-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:polkit-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:polkit-docs");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.2");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.3");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.4");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.5");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.6");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.7");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/10/26");
script_set_attribute(attribute:"patch_publication_date", value:"2016/02/16");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/02/17");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Red Hat Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 7.x", "Red Hat " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);
yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo))
{
rhsa = "RHSA-2016:0189";
yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
if (!empty_or_null(yum_report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : yum_report
);
exit(0);
}
else
{
audit_message = "affected by Red Hat security advisory " + rhsa;
audit(AUDIT_OS_NOT, audit_message);
}
}
else
{
flag = 0;
if (rpm_check(release:"RHEL7", reference:"polkit-0.112-6.el7_2")) flag++;
if (rpm_check(release:"RHEL7", reference:"polkit-debuginfo-0.112-6.el7_2")) flag++;
if (rpm_check(release:"RHEL7", reference:"polkit-devel-0.112-6.el7_2")) flag++;
if (rpm_check(release:"RHEL7", reference:"polkit-docs-0.112-6.el7_2")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get() + redhat_report_package_caveat()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "polkit / polkit-debuginfo / polkit-devel / polkit-docs");
}
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | polkit | p-cpe:/a:redhat:enterprise_linux:polkit |
| redhat | enterprise_linux | polkit-debuginfo | p-cpe:/a:redhat:enterprise_linux:polkit-debuginfo |
| redhat | enterprise_linux | polkit-devel | p-cpe:/a:redhat:enterprise_linux:polkit-devel |
| redhat | enterprise_linux | polkit-docs | p-cpe:/a:redhat:enterprise_linux:polkit-docs |
| redhat | enterprise_linux | 7 | cpe:/o:redhat:enterprise_linux:7 |
| redhat | enterprise_linux | 7.2 | cpe:/o:redhat:enterprise_linux:7.2 |
| redhat | enterprise_linux | 7.3 | cpe:/o:redhat:enterprise_linux:7.3 |
| redhat | enterprise_linux | 7.4 | cpe:/o:redhat:enterprise_linux:7.4 |
| redhat | enterprise_linux | 7.5 | cpe:/o:redhat:enterprise_linux:7.5 |
| redhat | enterprise_linux | 7.6 | cpe:/o:redhat:enterprise_linux:7.6 |
Related
redhat
redhat
(RHSA-2016:0189) Moderate: polkit security update
2016-02-16 10:08:51
nessus
nessus
CentOS 7 : polkit (CESA-2016:0189)
2016-02-17 00:00:00
Oracle Linux 7 : polkit (ELSA-2016-0189)
2016-02-17 00:00:00
Scientific Linux Security Update : polkit on SL7.x x86_64 (20160216)
2016-02-17 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2016-0189)
2016-02-18 00:00:00
RedHat Update for polkit RHSA-2016:0189-01
2016-02-17 00:00:00
CentOS Update for polkit CESA-2016:0189 centos7
2016-02-17 00:00:00
nvd
nvd
CVE-2015-3256
2015-10-26 19:59:04
debiancve
debiancve
CVE-2015-3256
2015-10-26 19:59:04
oraclelinux
oraclelinux
polkit security update
2016-02-16 00:00:00
centos
centos
polkit security update
2016-02-17 01:41:36
ubuntucve
ubuntucve
CVE-2015-3256
2015-10-26 00:00:00
prion
prion
Memory corruption
2015-10-26 19:59:00
ibm
ibm
cvelist
cvelist
CVE-2015-3256
2015-10-26 19:00:00
cve
cve
CVE-2015-3256
2015-10-26 19:59:04
fedora
fedora
[SECURITY] Fedora 21 Update: polkit-0.113-4.fc21
2015-07-21 08:23:46
[SECURITY] Fedora 22 Update: polkit-0.113-1.fc22
2015-07-13 19:09:03
mageia
mageia
Updated polkit package fixes security vulnerabilities
2015-07-05 20:22:03
suse
suse
Security update for polkit (important)
2015-10-14 10:10:10
freebsd
freebsd
polkit -- multiple vulnerabilities
2015-06-03 00:00:00
4.6 Medium
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
5.1%
Related for REDHAT-RHSA-2016-0189.NASL