Lucene search
K

Scientific Linux Security Update : tzdata on SL3.x, SL4.x, SL5.x i386/x86_64

🗓️ 01 Aug 2012 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 14 Views

Security update for DST observation on Scientific Linu

Refs
Code
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(60744);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_name(english:"Scientific Linux Security Update : tzdata on SL3.x, SL4.x, SL5.x i386/x86_64");
  script_summary(english:"Checks rpm output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Scientific Linux host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update addresses several changes in Daylight Savings Time (DST)
observation including the following :

  - on February 17th 2010, it was announced that Paraguay
    would extend its 2010 DST observance to Sunday, 11th
    April 2010. (It had been scheduled to end on Sunday,
    14th March 2010.) The same announcement also noted the
    2010-2011 DST observance would begin on Sunday, 3d
    October 2010 (the 1st Sunday in October, rather than the
    previously scheduled 3rd Sunday, 17th October 2010).
    (BZ#568665, BZ#568666, BZ#568667)

  - several cities and towns bordering the United States in
    Northern Mexico will synchronize their DST schedules
    with their Northern neighbor beginning this year. Places
    affected by this change include Tijuana; Mexicali;
    Ciudad Juarez; Ojinaga; Ciudad Acuna; Piedras Negras;
    Anahuac; Nuevo Laredo; Reynosa; and Matamoros. Each of
    these locales will switch to DST on Sunday, 14th March
    2010 and switch back on Sunday, 7th November 2010. This
    is in line with the US DST schedule, which runs from the
    second Sunday of March to the first Sunday of November.
    (No BZ#)

Note: the rest of Mexico will continue to observe DST (or not observe
DST in the case of Sonora, which remains on Mountain Standard Time all
year) from the 2nd Sunday in April through the last Sunday in October."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=568665"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=568666"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=568667"
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1003&L=scientific-linux-errata&T=0&P=753
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?fd6b78ef"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected tzdata package."
  );
  script_set_attribute(attribute:"risk_factor", value:"High");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2010/03/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL3", reference:"tzdata-2010c-1.el3")) flag++;

if (rpm_check(release:"SL4", reference:"tzdata-2010c-1.el4")) flag++;

if (rpm_check(release:"SL5", reference:"tzdata-2010c-1.el5")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

14 Jan 2021 00:00Current
5.6Medium risk
Vulners AI Score5.6
14