Lucene search

K
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20111013_PIDGIN_ON_SL4_X.NASL
HistoryAug 01, 2012 - 12:00 a.m.

Scientific Linux Security Update : pidgin on SL4.x, SL5.x i386/x86_64

2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
8

Pidgin is an instant messaging program which can log in to multiple accounts on multiple instant messaging networks simultaneously.

An input sanitization flaw was found in the way the Pidgin SILC (Secure Internet Live Conferencing) protocol plug-in escaped certain UTF-8 characters. A remote attacker could use this flaw to crash Pidgin via a specially crafted SILC message. (CVE-2011-3594)

Multiple NULL pointer dereference flaws were found in the way the Pidgin Yahoo! Messenger Protocol plug-in handled malformed YMSG packets. A remote attacker could use these flaws to crash Pidgin via a specially crafted notification message. (CVE-2011-1091)

All Pidgin users should upgrade to these updated packages, which contain backported patches to resolve these issues. Pidgin must be restarted for this update to take effect.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(61153);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2011-1091", "CVE-2011-3594");

  script_name(english:"Scientific Linux Security Update : pidgin on SL4.x, SL5.x i386/x86_64");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Pidgin is an instant messaging program which can log in to multiple
accounts on multiple instant messaging networks simultaneously.

An input sanitization flaw was found in the way the Pidgin SILC
(Secure Internet Live Conferencing) protocol plug-in escaped certain
UTF-8 characters. A remote attacker could use this flaw to crash
Pidgin via a specially crafted SILC message. (CVE-2011-3594)

Multiple NULL pointer dereference flaws were found in the way the
Pidgin Yahoo! Messenger Protocol plug-in handled malformed YMSG
packets. A remote attacker could use these flaws to crash Pidgin via a
specially crafted notification message. (CVE-2011-1091)

All Pidgin users should upgrade to these updated packages, which
contain backported patches to resolve these issues. Pidgin must be
restarted for this update to take effect."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=1087
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?02826496"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/10/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL4", reference:"finch-2.6.6-7.el4")) flag++;
if (rpm_check(release:"SL4", reference:"finch-devel-2.6.6-7.el4")) flag++;
if (rpm_check(release:"SL4", reference:"libpurple-2.6.6-7.el4")) flag++;
if (rpm_check(release:"SL4", reference:"libpurple-devel-2.6.6-7.el4")) flag++;
if (rpm_check(release:"SL4", reference:"libpurple-perl-2.6.6-7.el4")) flag++;
if (rpm_check(release:"SL4", reference:"libpurple-tcl-2.6.6-7.el4")) flag++;
if (rpm_check(release:"SL4", reference:"pidgin-2.6.6-7.el4")) flag++;
if (rpm_check(release:"SL4", reference:"pidgin-debuginfo-2.6.6-7.el4")) flag++;
if (rpm_check(release:"SL4", reference:"pidgin-devel-2.6.6-7.el4")) flag++;
if (rpm_check(release:"SL4", reference:"pidgin-perl-2.6.6-7.el4")) flag++;

if (rpm_check(release:"SL5", reference:"finch-2.6.6-5.el5_7.1")) flag++;
if (rpm_check(release:"SL5", reference:"finch-devel-2.6.6-5.el5_7.1")) flag++;
if (rpm_check(release:"SL5", reference:"libpurple-2.6.6-5.el5_7.1")) flag++;
if (rpm_check(release:"SL5", reference:"libpurple-devel-2.6.6-5.el5_7.1")) flag++;
if (rpm_check(release:"SL5", reference:"libpurple-perl-2.6.6-5.el5_7.1")) flag++;
if (rpm_check(release:"SL5", reference:"libpurple-tcl-2.6.6-5.el5_7.1")) flag++;
if (rpm_check(release:"SL5", reference:"pidgin-2.6.6-5.el5_7.1")) flag++;
if (rpm_check(release:"SL5", reference:"pidgin-debuginfo-2.6.6-5.el5_7.1")) flag++;
if (rpm_check(release:"SL5", reference:"pidgin-devel-2.6.6-5.el5_7.1")) flag++;
if (rpm_check(release:"SL5", reference:"pidgin-perl-2.6.6-5.el5_7.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersion
fermilabscientific_linux