Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2018-2615.NASL
HistorySep 06, 2018 - 12:00 a.m.

RHEL 7 : Storage Server (RHSA-2018:2615)

2018-09-0600:00:00
This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
JSON

An update for collectd is now available for Red Hat Gluster Storage 3.4 for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.

collectd is a host-based system statistics collection daemon that gathers metrics from various sources periodically, such as the operating system, applications, log files and devices, and storage clusters. As the daemon does not start up each time it updates files, it has a low system footprint.

For Red Hat Gluster Storage Web Administration 3.4, collectd service is responsible for gathering metrics from Red Hat Gluster Storage clusters.

The updated collectd package includes the following security bug fixes.

Security Fix(es) :

  • collectd: Infinite loop due to incorrect interaction of parse_packet() and parse_part_sign_sha256() functions (CVE-2017-7401)

  • collectd: double free in csnmp_read_table function in snmp.c (CVE-2017-16820)

For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.

This updated package contains a number of bug fixes and enhancements, which are documented in detail in the Release Notes, linked in the References.

All users of collectd are advised to upgrade to these updated packages, which resolve these issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2018:2615. The text 
# itself is copyright (C) Red Hat, Inc.
#

include("compat.inc");

if (description)
{
  script_id(117321);
  script_version("1.6");
  script_cvs_date("Date: 2019/10/24 15:35:45");

  script_cve_id("CVE-2017-16820", "CVE-2017-7401");
  script_xref(name:"RHSA", value:"2018:2615");

  script_name(english:"RHEL 7 : Storage Server (RHSA-2018:2615)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"An update for collectd is now available for Red Hat Gluster Storage
3.4 for Red Hat Enterprise Linux 7.

Red Hat Product Security has rated this update as having a security
impact of Moderate. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link(s) in the References section.

collectd is a host-based system statistics collection daemon that
gathers metrics from various sources periodically, such as the
operating system, applications, log files and devices, and storage
clusters. As the daemon does not start up each time it updates files,
it has a low system footprint.

For Red Hat Gluster Storage Web Administration 3.4, collectd service
is responsible for gathering metrics from Red Hat Gluster Storage
clusters.

The updated collectd package includes the following security bug
fixes.

Security Fix(es) :

* collectd: Infinite loop due to incorrect interaction of
parse_packet() and parse_part_sign_sha256() functions (CVE-2017-7401)

* collectd: double free in csnmp_read_table function in snmp.c
(CVE-2017-16820)

For more details about the security issue(s), including the impact, a
CVSS score, and other related information, refer to the CVE page(s)
listed in the References section.

This updated package contains a number of bug fixes and enhancements,
which are documented in detail in the Release Notes, linked in the
References.

All users of collectd are advised to upgrade to these updated
packages, which resolve these issues."
  );
  # https://access.redhat.com/site/documentation/en-US/red_hat_gluster_storage/
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?d6c2aef9"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2018:2615"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2017-7401"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2017-16820"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:collectd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:collectd-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:collectd-ping");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:libcollectdclient");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/04/03");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/09/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/09/06");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 7.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);
if ("x86_64" >!< cpu) audit(AUDIT_ARCH_NOT, "x86_64", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2018:2615";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;

  if (! (rpm_exists(release:"RHEL7", rpm:"glusterfs-3.12.2"))) audit(AUDIT_PACKAGE_NOT_INSTALLED, "Storage Server");

  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"collectd-5.7.2-3.1.el7")) flag++;
  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"collectd-debuginfo-5.7.2-3.1.el7")) flag++;
  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"collectd-ping-5.7.2-3.1.el7")) flag++;
  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"libcollectdclient-5.7.2-3.1.el7")) flag++;

  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "collectd / collectd-debuginfo / collectd-ping / libcollectdclient");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxcollectdp-cpe:/a:redhat:enterprise_linux:collectd
redhatenterprise_linuxcollectd-debuginfop-cpe:/a:redhat:enterprise_linux:collectd-debuginfo
redhatenterprise_linuxcollectd-pingp-cpe:/a:redhat:enterprise_linux:collectd-ping
redhatenterprise_linuxlibcollectdclientp-cpe:/a:redhat:enterprise_linux:libcollectdclient
redhatenterprise_linux7cpe:/o:redhat:enterprise_linux:7

Related

redhat 7
nessus 14
osv 4
ubuntu 1
fedora 6
openvas 6
veracode 2
alpinelinux 2
redhatcve 1
prion 2
debiancve 2
ubuntucve 2
cve 2
amazon 2
debian 1
freebsd 1
gentoo 1
redhat
redhat
(RHSA-2018:2615) Moderate: collectd security update
2018-09-04 06:28:01
(RHSA-2018:0560) Moderate: collectd security, bug fix, and enhancement update
2018-03-20 16:16:12
(RHSA-2018:0252) Moderate: collectd security update
2018-01-30 20:54:49
nessus
nessus
Ubuntu 16.04 ESM : collectd vulnerabilities (USN-4793-1)
2023-10-20 00:00:00
Fedora 27 : collectd (2017-f47206eae4)
2018-01-15 00:00:00
RHEL 7 : collectd (RHSA-2018:0560)
2018-03-28 00:00:00
osv
osv
collectd vulnerabilities
2021-03-15 21:14:39
CVE-2017-16820
2017-11-14 21:29:00
collectd - security update
2017-04-04 00:00:00
ubuntu
ubuntu
collectd vulnerabilities
2021-03-15 00:00:00
fedora
fedora
[SECURITY] Fedora 27 Update: collectd-5.8.0-2.fc27
2017-12-10 05:11:27
[SECURITY] Fedora 26 Update: collectd-5.8.0-2.fc26
2017-12-09 22:30:20
[SECURITY] Fedora 25 Update: collectd-5.8.0-2.fc25
2017-12-09 04:58:59
openvas
openvas
Fedora Update for collectd FEDORA-2017-f47206eae4
2017-12-10 00:00:00
Fedora Update for collectd FEDORA-2017-d7ab32cc23
2017-12-09 00:00:00
Fedora Update for collectd FEDORA-2017-f9cfcef9d6
2017-12-10 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:20:32
Denial Of Service (DoS)
2019-01-15 09:17:26
alpinelinux
alpinelinux
CVE-2017-16820
2017-11-14 21:29:00
CVE-2017-7401
2017-04-03 14:59:00
redhatcve
redhatcve
CVE-2017-16820
2017-11-22 16:19:46
prion
prion
Double free
2017-11-14 21:29:00
Code injection
2017-04-03 14:59:00
debiancve
debiancve
CVE-2017-16820
2017-11-14 21:29:00
CVE-2017-7401
2017-04-03 14:59:00
ubuntucve
ubuntucve
CVE-2017-16820
2017-11-14 00:00:00
CVE-2017-7401
2017-04-03 00:00:00
cve
cve
CVE-2017-16820
2017-11-14 21:29:00
CVE-2017-7401
2017-04-03 14:59:00
amazon
amazon
Medium: collectd
2018-01-04 19:38:00
Medium: collectd
2017-05-18 18:58:00
debian
debian
[SECURITY] [DLA 884-1] collectd security update
2017-04-04 15:23:57
freebsd
freebsd
collectd5 -- Denial of service by sending a signed network packet to a server which is not set up to check signatures
2017-02-13 00:00:00
gentoo
gentoo
collectd: Multiple vulnerabilities
2018-03-22 00:00:00
JSON
Related for REDHAT-RHSA-2018-2615.NASL
redhat7nessus14osv4ubuntu1fedora6openvas6veracode2alpinelinux2redhatcve1prion2debiancve2ubuntucve2cve2amazon2debian1freebsd1gentoo1