Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2017-1264.NASL
HistoryMay 23, 2017 - 12:00 a.m.

RHEL 7 : kdelibs (RHSA-2017:1264)

2017-05-2300:00:00
This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
29
JSON

An update for kdelibs is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

The K Desktop Environment (KDE) is a graphical desktop environment for the X Window System. The kdelibs packages include core libraries for the K Desktop Environment.

Security Fix(es) :

  • A privilege escalation flaw was found in the way kdelibs handled D-Bus messages. A local user could potentially use this flaw to gain root privileges by spoofing a callerID and leveraging a privileged helper application. (CVE-2017-8422)

Red Hat would like to thank Sebastian Krahmer (SUSE) for reporting this issue.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2017:1264. The text 
# itself is copyright (C) Red Hat, Inc.
#

include("compat.inc");

if (description)
{
  script_id(100345);
  script_version("3.13");
  script_cvs_date("Date: 2019/10/24 15:35:43");

  script_cve_id("CVE-2017-8422");
  script_xref(name:"RHSA", value:"2017:1264");

  script_name(english:"RHEL 7 : kdelibs (RHSA-2017:1264)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"An update for kdelibs is now available for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security
impact of Important. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.

The K Desktop Environment (KDE) is a graphical desktop environment for
the X Window System. The kdelibs packages include core libraries for
the K Desktop Environment.

Security Fix(es) :

* A privilege escalation flaw was found in the way kdelibs handled
D-Bus messages. A local user could potentially use this flaw to gain
root privileges by spoofing a callerID and leveraging a privileged
helper application. (CVE-2017-8422)

Red Hat would like to thank Sebastian Krahmer (SUSE) for reporting
this issue."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2017:1264"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2017-8422"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kdelibs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kdelibs-apidocs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kdelibs-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kdelibs-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kdelibs-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kdelibs-ktexteditor");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.3");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.4");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.5");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.6");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7.7");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/05/17");
  script_set_attribute(attribute:"patch_publication_date", value:"2017/05/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/05/23");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2017-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 7.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2017:1264";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_check(release:"RHEL7", reference:"kdelibs-4.14.8-6.el7_3")) flag++;

  if (rpm_check(release:"RHEL7", reference:"kdelibs-apidocs-4.14.8-6.el7_3")) flag++;

  if (rpm_check(release:"RHEL7", cpu:"s390x", reference:"kdelibs-common-4.14.8-6.el7_3")) flag++;

  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"kdelibs-common-4.14.8-6.el7_3")) flag++;

  if (rpm_check(release:"RHEL7", reference:"kdelibs-debuginfo-4.14.8-6.el7_3")) flag++;

  if (rpm_check(release:"RHEL7", reference:"kdelibs-devel-4.14.8-6.el7_3")) flag++;

  if (rpm_check(release:"RHEL7", reference:"kdelibs-ktexteditor-4.14.8-6.el7_3")) flag++;


  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kdelibs / kdelibs-apidocs / kdelibs-common / kdelibs-debuginfo / etc");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxkdelibsp-cpe:/a:redhat:enterprise_linux:kdelibs
redhatenterprise_linuxkdelibs-apidocsp-cpe:/a:redhat:enterprise_linux:kdelibs-apidocs
redhatenterprise_linuxkdelibs-commonp-cpe:/a:redhat:enterprise_linux:kdelibs-common
redhatenterprise_linuxkdelibs-debuginfop-cpe:/a:redhat:enterprise_linux:kdelibs-debuginfo
redhatenterprise_linuxkdelibs-develp-cpe:/a:redhat:enterprise_linux:kdelibs-devel
redhatenterprise_linuxkdelibs-ktexteditorp-cpe:/a:redhat:enterprise_linux:kdelibs-ktexteditor
redhatenterprise_linux7cpe:/o:redhat:enterprise_linux:7
redhatenterprise_linux7.3cpe:/o:redhat:enterprise_linux:7.3
redhatenterprise_linux7.4cpe:/o:redhat:enterprise_linux:7.4
redhatenterprise_linux7.5cpe:/o:redhat:enterprise_linux:7.5
Rows per page:
1-10 of 121

Related

fedora 6
oraclelinux 1
nessus 18
openvas 11
suse 3
archlinux 2
osv 3
slackware 1
redhat 1
seebug 1
redhatcve 1
prion 1
ubuntucve 1
debiancve 1
gentoo 1
mageia 1
freebsd 1
ubuntu 1
cve 1
centos 1
packetstorm 1
zdt 1
debian 3
fedora
fedora
[SECURITY] Fedora 25 Update: kdelibs-4.14.30-2.fc25
2017-05-15 04:44:43
[SECURITY] Fedora 24 Update: kdelibs-4.14.30-2.fc24
2017-05-17 05:57:38
[SECURITY] Fedora 26 Update: kdelibs-4.14.30-2.fc26
2017-05-15 12:56:06
oraclelinux
oraclelinux
kdelibs security update
2017-05-22 00:00:00
nessus
nessus
Fedora 25 : 6:kdelibs (2017-aff6f6bd9d)
2017-05-16 00:00:00
Slackware 13.37 / 14.0 / 14.1 / 14.2 / current : kdelibs (SSA:2017-136-02)
2017-05-17 00:00:00
Fedora 24 : kf5-kauth (2017-6bdbf57f29)
2017-05-16 00:00:00
openvas
openvas
Ubuntu Update for kde4libs USN-3286-1
2017-05-15 00:00:00
RedHat Update for kdelibs RHSA-2017:1264-01
2017-05-23 00:00:00
CentOS Update for kdelibs CESA-2017:1264 centos7
2017-05-23 00:00:00
suse
suse
Security update for kauth, kdelibs4 (important)
2017-05-15 18:22:43
Security update for kdelibs4 (important)
2017-05-18 18:23:43
Security update for kauth, kdelibs4 (important)
2017-05-15 18:10:49
archlinux
archlinux
[ASA-201705-12] kauth: privilege escalation
2017-05-10 00:00:00
[ASA-201705-13] kdelibs: privilege escalation
2017-05-10 00:00:00
osv
osv
CVE-2017-8422
2017-05-17 14:29:00
kde4libs - security update
2017-05-12 00:00:00
kde4libs - security update
2017-05-25 00:00:00
slackware
slackware
[slackware-security] kdelibs
2017-05-16 20:14:57
redhat
redhat
(RHSA-2017:1264) Important: kdelibs security update
2017-05-22 07:36:42
seebug
seebug
KDE kauth and kdelibs Logic Flaw Lets Local Users Obtain Root Privileges(CVE-2017-8422)
2017-05-19 00:00:00
redhatcve
redhatcve
CVE-2017-8422
2017-05-10 12:25:12
prion
prion
Spoofing
2017-05-17 14:29:00
ubuntucve
ubuntucve
CVE-2017-8422
2017-05-10 00:00:00
debiancve
debiancve
CVE-2017-8422
2017-05-17 14:29:00
gentoo
gentoo
KAuth and KDELibs: Privilege escalation
2017-06-27 00:00:00
mageia
mageia
Updated kauth and kdelibs4 packages fix security vulnerability
2017-08-17 01:32:05
freebsd
freebsd
kauth: Local privilege escalation
2017-05-10 00:00:00
ubuntu
ubuntu
KDE-Libs vulnerability
2017-05-15 00:00:00
cve
cve
CVE-2017-8422
2017-05-17 14:29:00
centos
centos
kdelibs security update
2017-05-22 16:27:46
packetstorm
packetstorm
KDE 4/5 KAuth Privilege Escalation
2017-05-23 00:00:00
zdt
zdt
KDE 4/5 - KAuth Privilege Escalation Exploit
2017-05-23 00:00:00
debian
debian
[SECURITY] [DSA 3849-1] kde4libs security update
2017-05-12 08:44:26
[SECURITY] [DSA 3849-1] kde4libs security update
2017-05-12 08:44:26
[SECURITY] [DLA 952-1] kde4libs security update
2017-05-25 16:25:15
JSON
Related for REDHAT-RHSA-2017-1264.NASL
fedora6oraclelinux1nessus18openvas11suse3archlinux2osv3slackware1redhat1seebug1redhatcve1prion1ubuntucve1debiancve1gentoo1mageia1freebsd1ubuntu1cve1centos1packetstorm1zdt1debian3