Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20120213_GLIBC_ON_SL5_X.NASL
HistoryAug 01, 2012 - 12:00 a.m.

Scientific Linux Security Update : glibc on SL5.x i386/x86_64 (20120213)

2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25
JSON

The glibc packages contain the standard C libraries used by multiple programs on the system. These packages contain the standard C and the standard math libraries. Without these two libraries, a Linux system cannot function properly.

An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the glibc library read timezone files. If a carefully-crafted timezone file was loaded by an application linked against glibc, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2009-5029)

A flaw was found in the way the ldd utility identified dynamically linked libraries. If an attacker could trick a user into running ldd on a malicious binary, it could result in arbitrary code execution with the privileges of the user running ldd. (CVE-2009-5064)

An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way the glibc library loaded ELF (Executable and Linking Format) files. If a carefully-crafted ELF file was loaded by an application linked against glibc, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2010-0830)

It was found that the glibc addmntent() function, used by various mount helper utilities, did not handle certain errors correctly when updating the mtab (mounted file systems table) file. If such utilities had the setuid bit set, a local attacker could use this flaw to corrupt the mtab file. (CVE-2011-1089)

A denial of service flaw was found in the remote procedure call (RPC) implementation in glibc. A remote attacker able to open a large number of connections to an RPC service that is using the RPC implementation from glibc, could use this flaw to make that service use an excessive amount of CPU time. (CVE-2011-4609)

Users should upgrade to these updated packages, which resolve these issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(61244);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2009-5029", "CVE-2009-5064", "CVE-2010-0830", "CVE-2011-1089", "CVE-2011-4609");

  script_name(english:"Scientific Linux Security Update : glibc on SL5.x i386/x86_64 (20120213)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The glibc packages contain the standard C libraries used by multiple
programs on the system. These packages contain the standard C and the
standard math libraries. Without these two libraries, a Linux system
cannot function properly.

An integer overflow flaw, leading to a heap-based buffer overflow, was
found in the way the glibc library read timezone files. If a
carefully-crafted timezone file was loaded by an application linked
against glibc, it could cause the application to crash or,
potentially, execute arbitrary code with the privileges of the user
running the application. (CVE-2009-5029)

A flaw was found in the way the ldd utility identified dynamically
linked libraries. If an attacker could trick a user into running ldd
on a malicious binary, it could result in arbitrary code execution
with the privileges of the user running ldd. (CVE-2009-5064)

An integer overflow flaw, leading to a heap-based buffer overflow, was
found in the way the glibc library loaded ELF (Executable and Linking
Format) files. If a carefully-crafted ELF file was loaded by an
application linked against glibc, it could cause the application to
crash or, potentially, execute arbitrary code with the privileges of
the user running the application. (CVE-2010-0830)

It was found that the glibc addmntent() function, used by various
mount helper utilities, did not handle certain errors correctly when
updating the mtab (mounted file systems table) file. If such utilities
had the setuid bit set, a local attacker could use this flaw to
corrupt the mtab file. (CVE-2011-1089)

A denial of service flaw was found in the remote procedure call (RPC)
implementation in glibc. A remote attacker able to open a large number
of connections to an RPC service that is using the RPC implementation
from glibc, could use this flaw to make that service use an excessive
amount of CPU time. (CVE-2011-4609)

Users should upgrade to these updated packages, which resolve these
issues."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1202&L=scientific-linux-errata&T=0&P=2446
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?b70164f6"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-debuginfo-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nscd");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2010/06/01");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/02/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^5([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 5.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL5", reference:"glibc-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"SL5", reference:"glibc-common-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"SL5", reference:"glibc-debuginfo-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"SL5", reference:"glibc-debuginfo-common-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"SL5", reference:"glibc-devel-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"SL5", reference:"glibc-headers-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"SL5", reference:"glibc-utils-2.5-65.el5_7.3")) flag++;
if (rpm_check(release:"SL5", reference:"nscd-2.5-65.el5_7.3")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc / glibc-common / glibc-debuginfo / glibc-debuginfo-common / etc");
}
VendorProductVersionCPE
fermilabscientific_linuxglibcp-cpe:/a:fermilab:scientific_linux:glibc
fermilabscientific_linuxglibc-commonp-cpe:/a:fermilab:scientific_linux:glibc-common
fermilabscientific_linuxglibc-debuginfop-cpe:/a:fermilab:scientific_linux:glibc-debuginfo
fermilabscientific_linuxglibc-debuginfo-commonp-cpe:/a:fermilab:scientific_linux:glibc-debuginfo-common
fermilabscientific_linuxglibc-develp-cpe:/a:fermilab:scientific_linux:glibc-devel
fermilabscientific_linuxglibc-headersp-cpe:/a:fermilab:scientific_linux:glibc-headers
fermilabscientific_linuxglibc-utilsp-cpe:/a:fermilab:scientific_linux:glibc-utils
fermilabscientific_linuxnscdp-cpe:/a:fermilab:scientific_linux:nscd
fermilabscientific_linuxx-cpe:/o:fermilab:scientific_linux

Related

nessus 61
redhat 6
openvas 55
oraclelinux 4
centos 3
amazon 1
securityvulns 7
vmware 4
ubuntucve 10
cve 10
veracode 5
prion 10
debiancve 8
fedora 1
suse 5
slackware 1
ubuntu 2
gentoo 2
debian 2
osv 1
nessus
nessus
RHEL 5 : glibc (RHSA-2012:0126)
2012-02-14 00:00:00
CentOS 5 : glibc (CESA-2012:0126)
2012-02-14 00:00:00
Oracle Linux 5 : glibc (ELSA-2012-0126)
2013-07-12 00:00:00
redhat
redhat
(RHSA-2012:0126) Moderate: glibc security update
2012-02-13 00:00:00
(RHSA-2012:0125) Moderate: glibc security and bug fix update
2012-02-13 00:00:00
(RHSA-2012:0058) Moderate: glibc security and bug fix update
2012-01-24 00:00:00
openvas
openvas
Oracle Linux Local Check: ELSA-2012-0126
2015-10-06 00:00:00
CentOS Update for glibc CESA-2012:0126 centos5
2012-07-30 00:00:00
CentOS Update for glibc CESA-2012:0126 centos5
2012-07-30 00:00:00
oraclelinux
oraclelinux
glibc security update
2012-02-13 00:00:00
glibc security and bug fix update
2012-02-13 00:00:00
glibc security, bug fix, and enhancement update
2011-12-14 00:00:00
centos
centos
glibc, nscd security update
2012-02-14 03:06:54
glibc, nptl, nscd security update
2012-02-14 02:09:08
glibc, nscd security update
2012-01-30 20:26:30
amazon
amazon
Medium: glibc
2012-02-02 14:26:00
securityvulns
securityvulns
VMSA-2012-0018 VMware security updates for vCSA and ESXi
2013-01-02 00:00:00
[USN-1396-1] GNU C Library vulnerabilities
2012-03-10 00:00:00
GNU glibc library security vulnerabilities
2010-05-27 00:00:00
vmware
vmware
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
VMware security updates for vCSA, vCenter Server, and ESXi
2012-12-20 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
ubuntucve
ubuntucve
CVE-2009-5064
2011-03-30 00:00:00
CVE-2011-4609
2012-02-06 00:00:00
CVE-2009-5029
2011-12-19 00:00:00
cve
cve
CVE-2011-4609
2013-05-02 14:55:00
CVE-2009-5064
2011-03-30 22:55:00
CVE-2009-5029
2013-05-02 14:55:00
veracode
veracode
Privilege Escalation
2020-04-10 01:08:59
Denial Of Service (DoS)
2020-04-10 01:10:28
Denial Of Service (DoS)
2020-04-10 01:08:59
prion
prion
Design/Logic Flaw
2013-05-02 14:55:00
Code injection
2011-03-30 22:55:00
Integer overflow
2013-05-02 14:55:00
debiancve
debiancve
CVE-2009-5064
2011-03-30 22:55:00
CVE-2009-5029
2013-05-02 14:55:00
CVE-2010-0830
2010-06-01 20:30:00
fedora
fedora
[SECURITY] Fedora 15 Update: glibc-2.14.1-5
2012-01-17 20:24:50
suse
suse
Security update for glibc (important)
2012-01-05 12:25:46
Security update for glibc (important)
2012-01-05 12:08:52
glibc (important)
2012-01-05 19:08:22
slackware
slackware
[slackware-security] glibc
2012-02-10 17:44:30
ubuntu
ubuntu
GNU C Library vulnerabilities
2012-03-09 00:00:00
GNU C Library vulnerabilities
2010-05-25 00:00:00
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2013-12-03 00:00:00
GNU C library: Multiple vulnerabilities
2010-11-15 00:00:00
debian
debian
[SECURITY] [DSA 2058-1] New glibc packages fix several vulnerabilities
2010-06-10 08:13:46
[SECURITY] [DSA 2058-1] New glibc packages fix several vulnerabilities
2010-06-10 08:13:46
osv
osv
glibc - several vulnerabilities
2010-06-10 00:00:00
JSON
Related for SL_20120213_GLIBC_ON_SL5_X.NASL
nessus61redhat6openvas55oraclelinux4centos3amazon1securityvulns7vmware4ubuntucve10cve10veracode5prion10debiancve8fedora1suse5slackware1ubuntu2gentoo2debian2osv1