Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SLACKWARE_SSA_2012-206-01.NASL
HistoryJul 25, 2012 - 12:00 a.m.

Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / 13.37 / 8.1 / 9.0 / 9.1 / current : libpng (SSA:2012-206-01)

2012-07-2500:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
JSON

New libpng packages are available for Slackware 8.1, 9.0, 9.1, 10.0, 10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to fix security issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Slackware Security Advisory 2012-206-01. The text 
# itself is copyright (C) Slackware Linux, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(60112);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2011-3045", "CVE-2011-3048", "CVE-2012-3386");
  script_bugtraq_id(52453, 52830, 54418);
  script_xref(name:"SSA", value:"2012-206-01");

  script_name(english:"Slackware 10.0 / 10.1 / 10.2 / 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / 13.37 / 8.1 / 9.0 / 9.1 / current : libpng (SSA:2012-206-01)");
  script_summary(english:"Checks for updated package in /var/log/packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Slackware host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"New libpng packages are available for Slackware 8.1, 9.0, 9.1, 10.0,
10.1, 10.2, 11.0, 12.0, 12.1, 12.2, 13.0, 13.1, 13.37, and -current to
fix security issues."
  );
  # http://www.slackware.com/security/viewer.php?l=slackware-security&y=2012&m=slackware-security.632705
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?45a4879d"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected libpng package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:slackware:slackware_linux:libpng");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:10.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:10.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:10.2");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:11.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:12.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:12.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:12.2");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:13.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:13.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:13.37");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:8.1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:9.0");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:slackware:slackware_linux:9.1");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/03/22");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/07/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/07/25");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Slackware Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Slackware/release", "Host/Slackware/packages");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("slackware.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Slackware/release")) audit(AUDIT_OS_NOT, "Slackware");
if (!get_kb_item("Host/Slackware/packages")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Slackware", cpu);


flag = 0;
if (slackware_check(osver:"8.1", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i386", pkgnum:"1_slack8.1")) flag++;

if (slackware_check(osver:"9.0", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i386", pkgnum:"1_slack9.0")) flag++;

if (slackware_check(osver:"9.1", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i486", pkgnum:"1_slack9.1")) flag++;

if (slackware_check(osver:"10.0", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i486", pkgnum:"1_slack10.0")) flag++;

if (slackware_check(osver:"10.1", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i486", pkgnum:"1_slack10.1")) flag++;

if (slackware_check(osver:"10.2", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i486", pkgnum:"1_slack10.2")) flag++;

if (slackware_check(osver:"11.0", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i486", pkgnum:"1_slack11.0")) flag++;

if (slackware_check(osver:"12.0", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i486", pkgnum:"1_slack12.0")) flag++;

if (slackware_check(osver:"12.1", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i486", pkgnum:"1_slack12.1")) flag++;

if (slackware_check(osver:"12.2", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i486", pkgnum:"1_slack12.2")) flag++;

if (slackware_check(osver:"13.0", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"i486", pkgnum:"1_slack13.0")) flag++;
if (slackware_check(osver:"13.0", arch:"x86_64", pkgname:"libpng", pkgver:"1.2.50", pkgarch:"x86_64", pkgnum:"1_slack13.0")) flag++;

if (slackware_check(osver:"13.1", pkgname:"libpng", pkgver:"1.4.12", pkgarch:"i486", pkgnum:"1_slack13.1")) flag++;
if (slackware_check(osver:"13.1", arch:"x86_64", pkgname:"libpng", pkgver:"1.4.12", pkgarch:"x86_64", pkgnum:"1_slack13.1")) flag++;

if (slackware_check(osver:"13.37", pkgname:"libpng", pkgver:"1.4.12", pkgarch:"i486", pkgnum:"1_slack13.37")) flag++;
if (slackware_check(osver:"13.37", arch:"x86_64", pkgname:"libpng", pkgver:"1.4.12", pkgarch:"x86_64", pkgnum:"1_slack13.37")) flag++;

if (slackware_check(osver:"current", pkgname:"libpng", pkgver:"1.4.12", pkgarch:"i486", pkgnum:"1")) flag++;
if (slackware_check(osver:"current", arch:"x86_64", pkgname:"libpng", pkgver:"1.4.12", pkgarch:"x86_64", pkgnum:"1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:slackware_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
slackwareslackware_linuxlibpngp-cpe:/a:slackware:slackware_linux:libpng
slackwareslackware_linuxcpe:/o:slackware:slackware_linux
slackwareslackware_linux10.0cpe:/o:slackware:slackware_linux:10.0
slackwareslackware_linux10.1cpe:/o:slackware:slackware_linux:10.1
slackwareslackware_linux10.2cpe:/o:slackware:slackware_linux:10.2
slackwareslackware_linux11.0cpe:/o:slackware:slackware_linux:11.0
slackwareslackware_linux12.0cpe:/o:slackware:slackware_linux:12.0
slackwareslackware_linux12.1cpe:/o:slackware:slackware_linux:12.1
slackwareslackware_linux12.2cpe:/o:slackware:slackware_linux:12.2
slackwareslackware_linux13.0cpe:/o:slackware:slackware_linux:13.0
Rows per page:
1-10 of 151

Related

slackware 1
openvas 79
fedora 15
securityvulns 3
nessus 58
veracode 3
f5 2
amazon 3
centos 4
ubuntucve 3
redhat 4
ubuntu 2
oraclelinux 4
altlinux 3
freebsd 2
prion 3
checkpoint_advisories 1
debian 2
cve 3
suse 1
debiancve 1
gentoo 2
slackware
slackware
[slackware-security] libpng
2012-07-25 03:00:37
openvas
openvas
Slackware Advisory SSA:2012-206-01 libpng
2012-09-10 00:00:00
Slackware: Security Advisory (SSA:2012-206-01)
2012-09-10 00:00:00
Fedora Update for libpng FEDORA-2012-5518
2012-04-26 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: libpng10-1.0.59-1.fc16
2012-04-08 03:34:21
[SECURITY] Fedora 16 Update: libpng-1.2.49-1.fc16
2012-04-24 14:59:35
[SECURITY] Fedora 17 Update: libpng-1.5.10-1.fc17
2012-04-12 02:25:15
securityvulns
securityvulns
libpng integer overflow
2012-02-22 00:00:00
[ MDVSA-2012:103 ] automake
2012-07-16 00:00:00
automake race conditions
2012-07-16 00:00:00
nessus
nessus
F5 Networks BIG-IP : Libpng vulnerability (SOL15881)
2014-11-28 00:00:00
Amazon Linux AMI : libpng (ALAS-2012-68)
2013-09-04 00:00:00
Fedora 15 : libpng10-1.0.59-1.fc15 (2012-5079)
2012-04-09 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:50:57
Arbitrary Code Execution
2020-04-10 01:11:53
Arbitrary Code Execution
2019-01-15 08:57:51
f5
f5
K15881 : Libpng vulnerability CVE-2011-3048
2014-12-19 00:00:00
SOL15881 - Libpng vulnerability CVE-2011-3048
2014-11-27 00:00:00
amazon
amazon
Medium: libpng
2012-04-30 14:52:00
Medium: libpng
2012-03-23 14:13:00
Low: automake19
2014-09-17 21:41:00
centos
centos
libpng security update
2012-04-25 13:17:13
libpng security update
2012-03-20 23:39:58
automake security update
2013-02-27 19:33:58
ubuntucve
ubuntucve
CVE-2011-3048
2011-12-31 00:00:00
CVE-2012-3386
2012-08-07 00:00:00
CVE-2011-3045
2012-03-20 00:00:00
redhat
redhat
(RHSA-2012:0407) Moderate: libpng security update
2012-03-20 00:00:00
(RHSA-2013:0526) Low: automake security update
2013-02-21 00:00:00
(RHSA-2012:0523) Moderate: libpng security update
2012-04-25 00:00:00
ubuntu
ubuntu
libpng vulnerability
2012-03-22 00:00:00
libpng vulnerability
2012-04-05 00:00:00
oraclelinux
oraclelinux
libpng security update
2012-03-20 00:00:00
automake security update
2014-09-17 00:00:00
automake security update
2013-02-22 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package libpng version 1.2.48-alt1
2012-03-23 00:00:00
Security fix for the ALT Linux 7 package automake_1.10 version 1:1.10.3-alt2
2012-09-09 00:00:00
Security fix for the ALT Linux 6 package libpng version 1.2.49-alt1
2012-04-05 00:00:00
freebsd
freebsd
automake -- Insecure 'distcheck' recipe granted world-writable distdir
2012-07-09 00:00:00
png -- memory corruption/possible remote code execution
2012-03-29 00:00:00
prion
prion
Heap overflow
2012-05-29 20:55:00
Race condition
2012-08-07 21:55:00
Integer overflow
2012-03-22 16:55:00
checkpoint_advisories
checkpoint_advisories
libpng png_inflate Buffer Overflow (CVE-2011-3045)
2012-05-14 00:00:00
debian
debian
[SECURITY] [DSA 2439-1] libpng security update
2012-03-22 22:22:28
[SECURITY] [DSA 2446-1] libpng security update
2012-04-04 19:13:41
cve
cve
CVE-2011-3048
2012-05-29 20:55:00
CVE-2012-3386
2012-08-07 21:55:00
CVE-2011-3045
2012-03-22 16:55:00
suse
suse
Security update for wdiff (moderate)
2022-06-25 00:00:00
debiancve
debiancve
CVE-2012-3386
2012-08-07 21:55:00
gentoo
gentoo
GNU Automake: Multiple vulnerabilities
2013-10-25 00:00:00
libpng: Multiple vulnerabilities
2012-06-22 00:00:00
JSON
Related for SLACKWARE_SSA_2012-206-01.NASL
slackware1openvas79fedora15securityvulns3nessus58veracode3f52amazon3centos4ubuntucve3redhat4ubuntu2oraclelinux4altlinux3freebsd2prion3checkpoint_advisories1debian2cve3suse1debiancve1gentoo2