Lucene search
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20071109_PCRE_ON_SL5_X.NASLHistoryAug 01, 2012 - 12:00 a.m.
Scientific Linux Security Update : pcre on SL5.x i386/x86_64
2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.2%
This importance of this has been reduced to ‘Important’ We have renumbered the release for SL5 so that it doesn’t conflict with the previous pcre security update.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(60298);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2005-4872", "CVE-2006-7227", "CVE-2006-7228");
script_name(english:"Scientific Linux Security Update : pcre on SL5.x i386/x86_64");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"This importance of this has been reduced to 'Important' We have
renumbered the release for SL5 so that it doesn't conflict with the
previous pcre security update."
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind0711&L=scientific-linux-errata&T=0&P=2748
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?6aa502b7"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected pcre and / or pcre-devel packages."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
script_cwe_id(119, 189);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"patch_publication_date", value:"2007/11/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
flag = 0;
if (rpm_check(release:"SL5", reference:"pcre-6.6-2.el5.1.0.1")) flag++;
if (rpm_check(release:"SL5", reference:"pcre-devel-6.6-2.el5.1.0.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux |
Related
nvd
nvd
cve
cve
centos
centos
pcre security update
2007-11-10 05:09:58
python, tkinter security update
2007-12-11 01:22:44
pcre security update
2007-11-29 16:25:21
redhat
redhat
(RHSA-2007:1052) Important: pcre security update
2007-11-09 00:00:00
(RHSA-2007:1065) Moderate: pcre security update
2007-11-29 00:00:00
(RHSA-2007:1077) Moderate: python security update
2007-12-10 00:00:00
nessus
nessus
SuSE9 Security Update : Apache 2 (YOU Patch Number 12000)
2009-09-24 00:00:00
RHEL 4 / 5 : pcre (RHSA-2007:1052)
2007-11-12 00:00:00
CentOS 4 : pcre (CESA-2007:1052)
2009-04-23 00:00:00
oraclelinux
oraclelinux
Critical: pcre security update
2007-11-10 00:00:00
Moderate: python security update
2007-12-10 00:00:00
Important: pcre security update
2007-11-30 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2007-1052)
2015-10-08 00:00:00
SuSE Update for pcre SUSE-SA:2007:062
2009-01-28 00:00:00
Gentoo Security Advisory GLSA 200802-10 (python)
2008-09-24 00:00:00
debiancve
debiancve
cvelist
cvelist
ubuntucve
ubuntucve
suse
suse
remote code execution in pcre
2007-11-23 15:35:33
remote code execution in php4, php5
2008-01-29 14:18:48
gentoo
gentoo
Python: PCRE Integer overflow
2008-02-23 00:00:00
PCRE: Multiple vulnerabilities
2007-11-20 00:00:00
securityvulns
securityvulns
[ GLSA 200802-10 ] Python: PCRE Integer overflow
2008-02-26 00:00:00
PCRE library buffer overflow
2008-04-17 00:00:00
debian
debian
vmware
vmware
Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
2008-04-15 00:00:00
Moderate Updated Service Console packages pcre, net-snmp, and OpenPegasus
2008-04-15 00:00:00
Updated aacraid driver and Samba and Python service console updates
2008-02-04 00:00:00
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.021 Low
EPSS
Percentile
89.2%
Related for SL_20071109_PCRE_ON_SL5_X.NASL