Search...

Scientific Linux Security Update : tzdata on SL3.x, SL4.x, SL5.x i386/x86_64

2012-08-01T00:00:00

ID SL_20100107_TZDATA_ON_SL3_X.NASL
Type nessus
Reporter This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
Modified 2012-08-01T00:00:00

Description

The tzdata package contains data files with rules for various time zones around the world.

This updated package addresses the following changes to Daylight Saving Time (DST) observations and to time zones :

Bangladesh changed their clock back to Standard Time on December 31, 2009. (BZ#550570, BZ#551446, BZ#552300)

Argentina did not enter DST on October 18, 2009.

San Luis changed its time zone from UTC-4 to UTC-3 on October 11th.

the end of Daylight Saving Time in Syria changed to the last Friday in October.

Kemerovo Oblast in Russia will change its time zone on March 28, 2010 to the newly-created Asia/Novokuznetsk zone.

local times for three Australian research stations in Antarctica were updated.

Fiji plans to re-introduce DST from November 29th, 2009 to April 25th, 2010.

All users, especially those in the locale affected by these time changes and users interacting with people or systems in the affected locale, are advised to upgrade to this updated package, which adds these enhancements.

                                        
                                            #%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(60720);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_name(english:"Scientific Linux Security Update : tzdata on SL3.x, SL4.x, SL5.x i386/x86_64");
  script_summary(english:"Checks rpm output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Scientific Linux host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The tzdata package contains data files with rules for various time
zones around the world.

This updated package addresses the following changes to Daylight
Saving Time (DST) observations and to time zones :

  - Bangladesh changed their clock back to Standard Time on
    December 31, 2009. (BZ#550570, BZ#551446, BZ#552300)

  - Argentina did not enter DST on October 18, 2009.

  - San Luis changed its time zone from UTC-4 to UTC-3 on
    October 11th.

  - the end of Daylight Saving Time in Syria changed to the
    last Friday in October.

  - Kemerovo Oblast in Russia will change its time zone on
    March 28, 2010 to the newly-created Asia/Novokuznetsk
    zone.

  - local times for three Australian research stations in
    Antarctica were updated.

  - Fiji plans to re-introduce DST from November 29th, 2009
    to April 25th, 2010.

All users, especially those in the locale affected by these time
changes and users interacting with people or systems in the affected
locale, are advised to upgrade to this updated package, which adds
these enhancements."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=550570"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=551446"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=552300"
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1001&L=scientific-linux-errata&T=0&P=445
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?a19b6bbd"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected tzdata package."
  );
  script_set_attribute(attribute:"risk_factor", value:"High");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/01/07");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " &gt;!&lt; release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu &gt;!&lt; "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL3", reference:"tzdata-2009u-1.el3")) flag++;

if (rpm_check(release:"SL4", reference:"tzdata-2009u-1.el4")) flag++;

if (rpm_check(release:"SL5", reference:"tzdata-2009u-1.el5")) flag++;


if (flag)
{
  if (report_verbosity &gt; 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

JSON Vulners Source

Initial Source

{"id": "SL_20100107_TZDATA_ON_SL3_X.NASL", "bulletinFamily": "scanner", "title": "Scientific Linux Security Update : tzdata on SL3.x, SL4.x, SL5.x i386/x86_64", "description": "The tzdata package contains data files with rules for various time\nzones around the world.\n\nThis updated package addresses the following changes to Daylight\nSaving Time (DST) observations and to time zones :\n\n - Bangladesh changed their clock back to Standard Time on\n December 31, 2009. (BZ#550570, BZ#551446, BZ#552300)\n\n - Argentina did not enter DST on October 18, 2009.\n\n - San Luis changed its time zone from UTC-4 to UTC-3 on\n October 11th.\n\n - the end of Daylight Saving Time in Syria changed to the\n last Friday in October.\n\n - Kemerovo Oblast in Russia will change its time zone on\n March 28, 2010 to the newly-created Asia/Novokuznetsk\n zone.\n\n - local times for three Australian research stations in\n Antarctica were updated.\n\n - Fiji plans to re-introduce DST from November 29th, 2009\n to April 25th, 2010.\n\nAll users, especially those in the locale affected by these time\nchanges and users interacting with people or systems in the affected\nlocale, are advised to upgrade to this updated package, which adds\nthese enhancements.", "published": "2012-08-01T00:00:00", "modified": "2012-08-01T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "https://www.tenable.com/plugins/nessus/60720", "reporter": "This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://bugzilla.redhat.com/show_bug.cgi?id=552300", "https://bugzilla.redhat.com/show_bug.cgi?id=551446", "https://bugzilla.redhat.com/show_bug.cgi?id=550570", "http://www.nessus.org/u?a19b6bbd"], "cvelist": [], "type": "nessus", "lastseen": "2021-01-17T13:44:38", "edition": 22, "viewCount": 1, "enchantments": {"dependencies": {"references": [], "modified": "2021-01-17T13:44:38", "rev": 2}, "score": {"value": -0.3, "vector": "NONE", "modified": "2021-01-17T13:44:38", "rev": 2}, "vulnersScore": -0.3}, "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(60720);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_name(english:\"Scientific Linux Security Update : tzdata on SL3.x, SL4.x, SL5.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Scientific Linux host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The tzdata package contains data files with rules for various time\nzones around the world.\n\nThis updated package addresses the following changes to Daylight\nSaving Time (DST) observations and to time zones :\n\n - Bangladesh changed their clock back to Standard Time on\n December 31, 2009. (BZ#550570, BZ#551446, BZ#552300)\n\n - Argentina did not enter DST on October 18, 2009.\n\n - San Luis changed its time zone from UTC-4 to UTC-3 on\n October 11th.\n\n - the end of Daylight Saving Time in Syria changed to the\n last Friday in October.\n\n - Kemerovo Oblast in Russia will change its time zone on\n March 28, 2010 to the newly-created Asia/Novokuznetsk\n zone.\n\n - local times for three Australian research stations in\n Antarctica were updated.\n\n - Fiji plans to re-introduce DST from November 29th, 2009\n to April 25th, 2010.\n\nAll users, especially those in the locale affected by these time\nchanges and users interacting with people or systems in the affected\nlocale, are advised to upgrade to this updated package, which adds\nthese enhancements.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=550570\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=551446\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.redhat.com/show_bug.cgi?id=552300\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1001&L=scientific-linux-errata&T=0&P=445\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?a19b6bbd\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected tzdata package.\"\n );\n script_set_attribute(attribute:\"risk_factor\", value:\"High\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2010/01/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL3\", reference:\"tzdata-2009u-1.el3\")) flag++;\n\nif (rpm_check(release:\"SL4\", reference:\"tzdata-2009u-1.el4\")) flag++;\n\nif (rpm_check(release:\"SL5\", reference:\"tzdata-2009u-1.el5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());\n else security_hole(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Scientific Linux Local Security Checks", "pluginID": "60720", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "scheme": null}