Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2020-3377.NASL
HistoryAug 10, 2020 - 12:00 a.m.

RHEL 6 : chromium-browser (RHSA-2020:3377)

2020-08-1000:00:00
This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
JSON

The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:3377 advisory.

  • chromium-browser: Heap buffer overflow in background fetch (CVE-2020-6510)

  • chromium-browser: Side-channel information leakage in content security policy (CVE-2020-6511)

  • chromium-browser: Type Confusion in V8 (CVE-2020-6512, CVE-2020-6533, CVE-2020-6537)

  • chromium-browser: Heap buffer overflow in PDFium (CVE-2020-6513)

  • chromium-browser: Inappropriate implementation in WebRTC (CVE-2020-6514, CVE-2020-6529)

  • chromium-browser: Use after free in tab strip (CVE-2020-6515)

  • chromium-browser: Policy bypass in CORS (CVE-2020-6516)

  • chromium-browser: Heap buffer overflow in history (CVE-2020-6517)

  • chromium-browser: Use after free in developer tools (CVE-2020-6518)

  • chromium-browser: Policy bypass in CSP (CVE-2020-6519)

  • chromium-browser: Heap buffer overflow in Skia (CVE-2020-6520, CVE-2020-6525, CVE-2020-6540)

  • chromium-browser: Side-channel information leakage in autofill (CVE-2020-6521)

  • chromium-browser: Inappropriate implementation in external protocol handlers (CVE-2020-6522)

  • chromium-browser: Out of bounds write in Skia (CVE-2020-6523)

  • chromium-browser: Heap buffer overflow in WebAudio (CVE-2020-6524)

  • chromium-browser: Inappropriate implementation in iframe sandbox (CVE-2020-6526)

  • chromium-browser: Insufficient policy enforcement in CSP (CVE-2020-6527)

  • chromium-browser: Incorrect security UI in basic auth (CVE-2020-6528)

  • chromium-browser: Out of bounds memory access in developer tools (CVE-2020-6530)

  • chromium-browser: Side-channel information leakage in scroll to text (CVE-2020-6531)

  • chromium-browser: Use after free in SCTP (CVE-2020-6532)

  • chromium-browser: Heap buffer overflow in WebRTC (CVE-2020-6534)

  • chromium-browser: Insufficient data validation in WebUI (CVE-2020-6535)

  • chromium-browser: Incorrect security UI in PWAs (CVE-2020-6536)

  • chromium-browser: Inappropriate implementation in WebView (CVE-2020-6538)

  • chromium-browser: Use after free in CSS (CVE-2020-6539)

  • chromium-browser: Use after free in WebUSB (CVE-2020-6541)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2020:3377. The text
# itself is copyright (C) Red Hat, Inc.
##

include('compat.inc');

if (description)
{
  script_id(139467);
  script_version("1.9");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/01/23");

  script_cve_id(
    "CVE-2020-6510",
    "CVE-2020-6511",
    "CVE-2020-6512",
    "CVE-2020-6513",
    "CVE-2020-6514",
    "CVE-2020-6515",
    "CVE-2020-6516",
    "CVE-2020-6517",
    "CVE-2020-6518",
    "CVE-2020-6519",
    "CVE-2020-6520",
    "CVE-2020-6521",
    "CVE-2020-6522",
    "CVE-2020-6523",
    "CVE-2020-6524",
    "CVE-2020-6525",
    "CVE-2020-6526",
    "CVE-2020-6527",
    "CVE-2020-6528",
    "CVE-2020-6529",
    "CVE-2020-6530",
    "CVE-2020-6531",
    "CVE-2020-6532",
    "CVE-2020-6533",
    "CVE-2020-6534",
    "CVE-2020-6535",
    "CVE-2020-6536",
    "CVE-2020-6537",
    "CVE-2020-6538",
    "CVE-2020-6539",
    "CVE-2020-6540",
    "CVE-2020-6541"
  );
  script_xref(name:"RHSA", value:"2020:3377");
  script_xref(name:"IAVA", value:"2020-A-0314-S");
  script_xref(name:"IAVA", value:"2020-A-0342-S");

  script_name(english:"RHEL 6 : chromium-browser (RHSA-2020:3377)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Red Hat host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Redhat Enterprise Linux 6 host has a package installed that is affected by multiple vulnerabilities as
referenced in the RHSA-2020:3377 advisory.

  - chromium-browser: Heap buffer overflow in background fetch (CVE-2020-6510)

  - chromium-browser: Side-channel information leakage in content security policy (CVE-2020-6511)

  - chromium-browser: Type Confusion in V8 (CVE-2020-6512, CVE-2020-6533, CVE-2020-6537)

  - chromium-browser: Heap buffer overflow in PDFium (CVE-2020-6513)

  - chromium-browser: Inappropriate implementation in WebRTC (CVE-2020-6514, CVE-2020-6529)

  - chromium-browser: Use after free in tab strip (CVE-2020-6515)

  - chromium-browser: Policy bypass in CORS (CVE-2020-6516)

  - chromium-browser: Heap buffer overflow in history (CVE-2020-6517)

  - chromium-browser: Use after free in developer tools (CVE-2020-6518)

  - chromium-browser: Policy bypass in CSP (CVE-2020-6519)

  - chromium-browser: Heap buffer overflow in Skia (CVE-2020-6520, CVE-2020-6525, CVE-2020-6540)

  - chromium-browser: Side-channel information leakage in autofill (CVE-2020-6521)

  - chromium-browser: Inappropriate implementation in external protocol handlers (CVE-2020-6522)

  - chromium-browser: Out of bounds write in Skia (CVE-2020-6523)

  - chromium-browser: Heap buffer overflow in WebAudio (CVE-2020-6524)

  - chromium-browser: Inappropriate implementation in iframe sandbox (CVE-2020-6526)

  - chromium-browser: Insufficient policy enforcement in CSP (CVE-2020-6527)

  - chromium-browser: Incorrect security UI in basic auth (CVE-2020-6528)

  - chromium-browser: Out of bounds memory access in developer tools (CVE-2020-6530)

  - chromium-browser: Side-channel information leakage in scroll to text (CVE-2020-6531)

  - chromium-browser: Use after free in SCTP (CVE-2020-6532)

  - chromium-browser: Heap buffer overflow in WebRTC (CVE-2020-6534)

  - chromium-browser: Insufficient data validation in WebUI (CVE-2020-6535)

  - chromium-browser: Incorrect security UI in PWAs (CVE-2020-6536)

  - chromium-browser: Inappropriate implementation in WebView (CVE-2020-6538)

  - chromium-browser: Use after free in CSS (CVE-2020-6539)

  - chromium-browser: Use after free in WebUSB (CVE-2020-6541)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6510");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6511");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6512");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6513");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6514");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6515");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6516");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6517");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6518");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6519");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6520");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6521");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6522");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6523");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6524");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6525");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6526");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6527");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6528");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6529");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6530");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6531");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6532");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6533");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6534");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6535");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6536");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6537");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6538");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6539");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6540");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/cve/CVE-2020-6541");
  script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2020:3377");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857320");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857321");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857322");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857323");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857324");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857325");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857326");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857327");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857328");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857329");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857330");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857331");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857332");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857333");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857334");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857336");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857337");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857338");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857339");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857340");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857341");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857342");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857349");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857351");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857352");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1857400");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1861464");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1861465");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1861466");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1861467");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1861468");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/1861469");
  script_set_attribute(attribute:"solution", value:
"Update the affected chromium-browser package.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-6524");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2020-6522");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_cwe_id(122, 358, 416, 843);

  script_set_attribute(attribute:"vuln_publication_date", value:"2020/07/14");
  script_set_attribute(attribute:"patch_publication_date", value:"2020/08/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/08/10");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:rhel_els:6");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:rhel_eus:6.0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:chromium-browser");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Red Hat Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2020-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl", "redhat_repos.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include('rpm.inc');
include('rhel.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');
var os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');
os_ver = os_ver[1];
if (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '6')) audit(AUDIT_OS_NOT, 'Red Hat 6.x', 'Red Hat ' + os_ver);

if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);

var constraints = [
  {
    'repo_relative_urls': [
      'content/dist/rhel/client/6/6Client/i386/debug',
      'content/dist/rhel/client/6/6Client/i386/optional/debug',
      'content/dist/rhel/client/6/6Client/i386/optional/os',
      'content/dist/rhel/client/6/6Client/i386/optional/source/SRPMS',
      'content/dist/rhel/client/6/6Client/i386/oracle-java-rm/os',
      'content/dist/rhel/client/6/6Client/i386/oracle-java-rm/source/SRPMS',
      'content/dist/rhel/client/6/6Client/i386/os',
      'content/dist/rhel/client/6/6Client/i386/source/SRPMS',
      'content/dist/rhel/client/6/6Client/i386/supplementary/debug',
      'content/dist/rhel/client/6/6Client/i386/supplementary/os',
      'content/dist/rhel/client/6/6Client/i386/supplementary/source/SRPMS',
      'content/dist/rhel/client/6/6Client/x86_64/debug',
      'content/dist/rhel/client/6/6Client/x86_64/optional/debug',
      'content/dist/rhel/client/6/6Client/x86_64/optional/os',
      'content/dist/rhel/client/6/6Client/x86_64/optional/source/SRPMS',
      'content/dist/rhel/client/6/6Client/x86_64/oracle-java-rm/os',
      'content/dist/rhel/client/6/6Client/x86_64/oracle-java-rm/source/SRPMS',
      'content/dist/rhel/client/6/6Client/x86_64/os',
      'content/dist/rhel/client/6/6Client/x86_64/source/SRPMS',
      'content/dist/rhel/client/6/6Client/x86_64/supplementary/debug',
      'content/dist/rhel/client/6/6Client/x86_64/supplementary/os',
      'content/dist/rhel/client/6/6Client/x86_64/supplementary/source/SRPMS',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/debug',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/hpn/debug',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/hpn/os',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/hpn/source/SRPMS',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/optional/debug',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/optional/os',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/optional/source/SRPMS',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/oracle-java-rm/os',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/oracle-java-rm/source/SRPMS',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/os',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/scalablefilesystem/debug',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/scalablefilesystem/os',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/scalablefilesystem/source/SRPMS',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/source/SRPMS',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/supplementary/debug',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/supplementary/os',
      'content/dist/rhel/computenode/6/6ComputeNode/x86_64/supplementary/source/SRPMS',
      'content/dist/rhel/server/6/6Server/i386/debug',
      'content/dist/rhel/server/6/6Server/i386/highavailability/debug',
      'content/dist/rhel/server/6/6Server/i386/highavailability/os',
      'content/dist/rhel/server/6/6Server/i386/highavailability/source/SRPMS',
      'content/dist/rhel/server/6/6Server/i386/loadbalancer/debug',
      'content/dist/rhel/server/6/6Server/i386/loadbalancer/os',
      'content/dist/rhel/server/6/6Server/i386/loadbalancer/source/SRPMS',
      'content/dist/rhel/server/6/6Server/i386/optional/debug',
      'content/dist/rhel/server/6/6Server/i386/optional/os',
      'content/dist/rhel/server/6/6Server/i386/optional/source/SRPMS',
      'content/dist/rhel/server/6/6Server/i386/oracle-java-rm/os',
      'content/dist/rhel/server/6/6Server/i386/oracle-java-rm/source/SRPMS',
      'content/dist/rhel/server/6/6Server/i386/os',
      'content/dist/rhel/server/6/6Server/i386/resilientstorage/debug',
      'content/dist/rhel/server/6/6Server/i386/resilientstorage/os',
      'content/dist/rhel/server/6/6Server/i386/resilientstorage/source/SRPMS',
      'content/dist/rhel/server/6/6Server/i386/source/SRPMS',
      'content/dist/rhel/server/6/6Server/i386/supplementary/debug',
      'content/dist/rhel/server/6/6Server/i386/supplementary/os',
      'content/dist/rhel/server/6/6Server/i386/supplementary/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/debug',
      'content/dist/rhel/server/6/6Server/x86_64/highavailability/debug',
      'content/dist/rhel/server/6/6Server/x86_64/highavailability/os',
      'content/dist/rhel/server/6/6Server/x86_64/highavailability/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/hpn/debug',
      'content/dist/rhel/server/6/6Server/x86_64/hpn/os',
      'content/dist/rhel/server/6/6Server/x86_64/hpn/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/loadbalancer/debug',
      'content/dist/rhel/server/6/6Server/x86_64/loadbalancer/os',
      'content/dist/rhel/server/6/6Server/x86_64/loadbalancer/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/optional/debug',
      'content/dist/rhel/server/6/6Server/x86_64/optional/os',
      'content/dist/rhel/server/6/6Server/x86_64/optional/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/oracle-java-rm/os',
      'content/dist/rhel/server/6/6Server/x86_64/oracle-java-rm/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/os',
      'content/dist/rhel/server/6/6Server/x86_64/resilientstorage/debug',
      'content/dist/rhel/server/6/6Server/x86_64/resilientstorage/os',
      'content/dist/rhel/server/6/6Server/x86_64/resilientstorage/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/sap-hana/debug',
      'content/dist/rhel/server/6/6Server/x86_64/sap-hana/os',
      'content/dist/rhel/server/6/6Server/x86_64/sap-hana/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/sap/debug',
      'content/dist/rhel/server/6/6Server/x86_64/sap/os',
      'content/dist/rhel/server/6/6Server/x86_64/sap/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/scalablefilesystem/debug',
      'content/dist/rhel/server/6/6Server/x86_64/scalablefilesystem/os',
      'content/dist/rhel/server/6/6Server/x86_64/scalablefilesystem/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/source/SRPMS',
      'content/dist/rhel/server/6/6Server/x86_64/supplementary/debug',
      'content/dist/rhel/server/6/6Server/x86_64/supplementary/os',
      'content/dist/rhel/server/6/6Server/x86_64/supplementary/source/SRPMS',
      'content/dist/rhel/workstation/6/6Workstation/i386/debug',
      'content/dist/rhel/workstation/6/6Workstation/i386/optional/debug',
      'content/dist/rhel/workstation/6/6Workstation/i386/optional/os',
      'content/dist/rhel/workstation/6/6Workstation/i386/optional/source/SRPMS',
      'content/dist/rhel/workstation/6/6Workstation/i386/oracle-java-rm/os',
      'content/dist/rhel/workstation/6/6Workstation/i386/oracle-java-rm/source/SRPMS',
      'content/dist/rhel/workstation/6/6Workstation/i386/os',
      'content/dist/rhel/workstation/6/6Workstation/i386/source/SRPMS',
      'content/dist/rhel/workstation/6/6Workstation/i386/supplementary/debug',
      'content/dist/rhel/workstation/6/6Workstation/i386/supplementary/os',
      'content/dist/rhel/workstation/6/6Workstation/i386/supplementary/source/SRPMS',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/debug',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/optional/debug',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/optional/os',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/optional/source/SRPMS',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/oracle-java-rm/os',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/oracle-java-rm/source/SRPMS',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/os',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/scalablefilesystem/debug',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/scalablefilesystem/os',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/scalablefilesystem/source/SRPMS',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/source/SRPMS',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/supplementary/debug',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/supplementary/os',
      'content/dist/rhel/workstation/6/6Workstation/x86_64/supplementary/source/SRPMS',
      'content/els/rhel/server/6/6Server/i386/debug',
      'content/els/rhel/server/6/6Server/i386/optional/debug',
      'content/els/rhel/server/6/6Server/i386/optional/os',
      'content/els/rhel/server/6/6Server/i386/optional/source/SRPMS',
      'content/els/rhel/server/6/6Server/i386/os',
      'content/els/rhel/server/6/6Server/i386/source/SRPMS',
      'content/els/rhel/server/6/6Server/x86_64/debug',
      'content/els/rhel/server/6/6Server/x86_64/optional/debug',
      'content/els/rhel/server/6/6Server/x86_64/optional/os',
      'content/els/rhel/server/6/6Server/x86_64/optional/source/SRPMS',
      'content/els/rhel/server/6/6Server/x86_64/os',
      'content/els/rhel/server/6/6Server/x86_64/sap-hana/debug',
      'content/els/rhel/server/6/6Server/x86_64/sap-hana/os',
      'content/els/rhel/server/6/6Server/x86_64/sap-hana/source/SRPMS',
      'content/els/rhel/server/6/6Server/x86_64/sap/debug',
      'content/els/rhel/server/6/6Server/x86_64/sap/os',
      'content/els/rhel/server/6/6Server/x86_64/sap/source/SRPMS',
      'content/els/rhel/server/6/6Server/x86_64/source/SRPMS',
      'content/fastrack/rhel/client/6/i386/debug',
      'content/fastrack/rhel/client/6/i386/optional/debug',
      'content/fastrack/rhel/client/6/i386/optional/os',
      'content/fastrack/rhel/client/6/i386/optional/source/SRPMS',
      'content/fastrack/rhel/client/6/i386/os',
      'content/fastrack/rhel/client/6/i386/source/SRPMS',
      'content/fastrack/rhel/client/6/x86_64/debug',
      'content/fastrack/rhel/client/6/x86_64/optional/debug',
      'content/fastrack/rhel/client/6/x86_64/optional/os',
      'content/fastrack/rhel/client/6/x86_64/optional/source/SRPMS',
      'content/fastrack/rhel/client/6/x86_64/os',
      'content/fastrack/rhel/client/6/x86_64/source/SRPMS',
      'content/fastrack/rhel/computenode/6/x86_64/debug',
      'content/fastrack/rhel/computenode/6/x86_64/hpn/debug',
      'content/fastrack/rhel/computenode/6/x86_64/hpn/os',
      'content/fastrack/rhel/computenode/6/x86_64/hpn/source/SRPMS',
      'content/fastrack/rhel/computenode/6/x86_64/optional/debug',
      'content/fastrack/rhel/computenode/6/x86_64/optional/os',
      'content/fastrack/rhel/computenode/6/x86_64/optional/source/SRPMS',
      'content/fastrack/rhel/computenode/6/x86_64/os',
      'content/fastrack/rhel/computenode/6/x86_64/scalablefilesystem/debug',
      'content/fastrack/rhel/computenode/6/x86_64/scalablefilesystem/os',
      'content/fastrack/rhel/computenode/6/x86_64/scalablefilesystem/source/SRPMS',
      'content/fastrack/rhel/computenode/6/x86_64/source/SRPMS',
      'content/fastrack/rhel/server/6/i386/debug',
      'content/fastrack/rhel/server/6/i386/highavailability/debug',
      'content/fastrack/rhel/server/6/i386/highavailability/os',
      'content/fastrack/rhel/server/6/i386/highavailability/source/SRPMS',
      'content/fastrack/rhel/server/6/i386/loadbalancer/debug',
      'content/fastrack/rhel/server/6/i386/loadbalancer/os',
      'content/fastrack/rhel/server/6/i386/loadbalancer/source/SRPMS',
      'content/fastrack/rhel/server/6/i386/optional/debug',
      'content/fastrack/rhel/server/6/i386/optional/os',
      'content/fastrack/rhel/server/6/i386/optional/source/SRPMS',
      'content/fastrack/rhel/server/6/i386/os',
      'content/fastrack/rhel/server/6/i386/resilientstorage/debug',
      'content/fastrack/rhel/server/6/i386/resilientstorage/os',
      'content/fastrack/rhel/server/6/i386/resilientstorage/source/SRPMS',
      'content/fastrack/rhel/server/6/i386/source/SRPMS',
      'content/fastrack/rhel/server/6/x86_64/debug',
      'content/fastrack/rhel/server/6/x86_64/highavailability/debug',
      'content/fastrack/rhel/server/6/x86_64/highavailability/os',
      'content/fastrack/rhel/server/6/x86_64/highavailability/source/SRPMS',
      'content/fastrack/rhel/server/6/x86_64/hpn/debug',
      'content/fastrack/rhel/server/6/x86_64/hpn/os',
      'content/fastrack/rhel/server/6/x86_64/hpn/source/SRPMS',
      'content/fastrack/rhel/server/6/x86_64/loadbalancer/debug',
      'content/fastrack/rhel/server/6/x86_64/loadbalancer/os',
      'content/fastrack/rhel/server/6/x86_64/loadbalancer/source/SRPMS',
      'content/fastrack/rhel/server/6/x86_64/optional/debug',
      'content/fastrack/rhel/server/6/x86_64/optional/os',
      'content/fastrack/rhel/server/6/x86_64/optional/source/SRPMS',
      'content/fastrack/rhel/server/6/x86_64/os',
      'content/fastrack/rhel/server/6/x86_64/resilientstorage/debug',
      'content/fastrack/rhel/server/6/x86_64/resilientstorage/os',
      'content/fastrack/rhel/server/6/x86_64/resilientstorage/source/SRPMS',
      'content/fastrack/rhel/server/6/x86_64/scalablefilesystem/debug',
      'content/fastrack/rhel/server/6/x86_64/scalablefilesystem/os',
      'content/fastrack/rhel/server/6/x86_64/scalablefilesystem/source/SRPMS',
      'content/fastrack/rhel/server/6/x86_64/source/SRPMS',
      'content/fastrack/rhel/workstation/6/i386/debug',
      'content/fastrack/rhel/workstation/6/i386/optional/debug',
      'content/fastrack/rhel/workstation/6/i386/optional/os',
      'content/fastrack/rhel/workstation/6/i386/optional/source/SRPMS',
      'content/fastrack/rhel/workstation/6/i386/os',
      'content/fastrack/rhel/workstation/6/i386/source/SRPMS',
      'content/fastrack/rhel/workstation/6/x86_64/debug',
      'content/fastrack/rhel/workstation/6/x86_64/optional/debug',
      'content/fastrack/rhel/workstation/6/x86_64/optional/os',
      'content/fastrack/rhel/workstation/6/x86_64/optional/source/SRPMS',
      'content/fastrack/rhel/workstation/6/x86_64/os',
      'content/fastrack/rhel/workstation/6/x86_64/scalablefilesystem/debug',
      'content/fastrack/rhel/workstation/6/x86_64/scalablefilesystem/os',
      'content/fastrack/rhel/workstation/6/x86_64/scalablefilesystem/source/SRPMS',
      'content/fastrack/rhel/workstation/6/x86_64/source/SRPMS'
    ],
    'pkgs': [
      {'reference':'chromium-browser-84.0.4147.105-2.el6_10', 'cpu':'i686', 'release':'6', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE},
      {'reference':'chromium-browser-84.0.4147.105-2.el6_10', 'cpu':'x86_64', 'release':'6', 'rpm_spec_vers_cmp':TRUE, 'allowmaj':TRUE}
    ]
  }
];

var applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);
if(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);

var flag = 0;
foreach var constraint_array ( constraints ) {
  var repo_relative_urls = NULL;
  if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];
  var enterprise_linux_flag = rhel_repo_urls_has_content_dist_rhel(repo_urls:repo_relative_urls);
  foreach var pkg ( constraint_array['pkgs'] ) {
    var reference = NULL;
    var _release = NULL;
    var sp = NULL;
    var _cpu = NULL;
    var el_string = NULL;
    var rpm_spec_vers_cmp = NULL;
    var epoch = NULL;
    var allowmaj = NULL;
    var exists_check = NULL;
    if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
    if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];
    if (!empty_or_null(pkg['sp']) && !enterprise_linux_flag) sp = pkg['sp'];
    if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
    if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
    if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
    if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
    if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
    if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
    if (reference &&
        _release &&
        rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&
        (applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&
        rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
  }
}

if (flag)
{
  var extra = NULL;
  if (empty_or_null(applicable_repo_urls)) extra = rpm_report_get() + redhat_report_repo_caveat();
  else extra = rpm_report_get() + redhat_report_package_caveat();
  security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : extra
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'chromium-browser');
}
VendorProductVersionCPE
redhatenterprise_linux6cpe:/o:redhat:enterprise_linux:6
redhatrhel_els6cpe:/o:redhat:rhel_els:6
redhatrhel_eus6.0cpe:/o:redhat:rhel_eus:6.0
redhatenterprise_linuxchromium-browserp-cpe:/a:redhat:enterprise_linux:chromium-browser

References

Related

fedora 2
nessus 19
openvas 11
suse 11
redhat 1
kaspersky 3
chrome 2
freebsd 2
gentoo 3
redhatcve 23
cve 24
veracode 24
prion 23
debiancve 24
ubuntucve 25
talos 1
debian 1
fedora
fedora
[SECURITY] Fedora 32 Update: chromium-84.0.4147.89-1.fc32
2020-07-30 17:54:07
[SECURITY] Fedora 31 Update: chromium-84.0.4147.89-1.fc31
2020-08-02 01:09:48
nessus
nessus
openSUSE Security Update : chromium (openSUSE-2020-1021)
2020-07-21 00:00:00
Google Chrome < 84.0.4147.89 Multiple Vulnerabilities
2020-07-14 00:00:00
Fedora 31 : chromium (2020-84d87cbd50)
2020-08-03 00:00:00
openvas
openvas
openSUSE: Security Advisory for chromium (openSUSE-SU-2020:1020-1)
2020-07-21 00:00:00
Google Chrome Security Update (stable-channel-update-for-desktop-2020-07) - Mac OS X
2020-08-12 00:00:00
openSUSE: Security Advisory for chromium (openSUSE-SU-2020:1021-1)
2020-07-21 00:00:00
suse
suse
Security update for opera (moderate)
2020-08-05 00:00:00
Security update for chromium (important)
2020-07-20 00:00:00
Security update for chromium (important)
2020-07-20 00:00:00
redhat
redhat
(RHSA-2020:3377) Critical: chromium-browser security update
2020-08-10 06:22:50
kaspersky
kaspersky
KLA11869 Multiple vulnerability in Google Chrome
2020-07-14 00:00:00
KLA11917 Multiple vulnerabilities in Google Chrome
2020-07-27 00:00:00
KLA11925 Multiple vulnerabilites in Opera
2020-08-05 00:00:00
chrome
chrome
Stable Channel Update for Desktop
2020-07-14 00:00:00
Stable Channel Update for Desktop
2020-07-27 00:00:00
freebsd
freebsd
chromium -- multiple vulnerabilities
2020-07-14 00:00:00
chromium -- multiple vulnerabilities
2020-07-27 00:00:00
gentoo
gentoo
Chromium, Google Chrome: Multiple vulnerabilities
2020-07-26 00:00:00
Chromium, Google Chrome: Multiple vulnerabilities
2020-07-29 00:00:00
Qt WebEngine: Multiple vulnerabilities
2021-01-26 00:00:00
redhatcve
redhatcve
CVE-2020-6518
2020-07-15 17:08:20
CVE-2020-6523
2020-07-15 17:08:07
CVE-2020-6539
2020-07-28 17:38:17
cve
cve
CVE-2020-6518
2020-07-22 17:15:00
CVE-2020-6534
2020-07-22 17:15:00
CVE-2020-6529
2020-07-22 17:15:00
veracode
veracode
Out Of Bounds Write
2020-12-21 19:50:03
Authentication Bypass
2020-12-21 19:49:58
Denial Of Service (DoS)
2020-09-21 06:32:27
prion
prion
Design/Logic Flaw
2020-07-22 17:15:00
Type confusion
2020-07-22 17:15:00
Design/Logic Flaw
2020-07-22 17:15:00
debiancve
debiancve
CVE-2020-6521
2020-07-22 17:15:00
CVE-2020-6533
2020-07-22 17:15:00
CVE-2020-6522
2020-07-22 17:15:00
ubuntucve
ubuntucve
CVE-2020-6539
2020-09-21 00:00:00
CVE-2020-6534
2020-07-22 00:00:00
CVE-2020-6522
2020-07-22 00:00:00
talos
talos
Google Chrome PDFium Javascript Active Document Memory Corruption Vulnerability
2020-09-14 00:00:00
debian
debian
[SECURITY] [DSA 4824-1] chromium security update
2021-01-01 18:49:56
JSON
Related for REDHAT-RHSA-2020-3377.NASL
fedora2nessus19openvas11suse11redhat1kaspersky3chrome2freebsd2gentoo3redhatcve23cve24veracode24prion23debiancve24ubuntucve25talos1debian1