Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20120327_GNUTLS_ON_SL6_X.NASL
HistoryAug 01, 2012 - 12:00 a.m.

Scientific Linux Security Update : gnutls on SL6.x i386/x86_64 (20120327)

2012-08-0100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
JSON

The GnuTLS library provides support for cryptographic algorithms and for protocols such as Transport Layer Security (TLS).

A flaw was found in the way GnuTLS decrypted malformed TLS records.
This could cause a TLS/SSL client or server to crash when processing a specially crafted TLS record from a remote TLS/SSL connection peer.
(CVE-2012-1573)

A boundary error was found in the gnutls_session_get_data() function.
A malicious TLS/SSL server could use this flaw to crash a TLS/SSL client or, possibly, execute arbitrary code as the client, if the client passed a fixed-sized buffer to gnutls_session_get_data() before checking the real size of the session data provided by the server.
(CVE-2011-4128)

Users of GnuTLS are advised to upgrade to these updated packages, which contain backported patches to correct these issues. For the update to take effect, all applications linked to the GnuTLS library must be restarted, or the system rebooted.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(61291);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2011-4128", "CVE-2012-1573");

  script_name(english:"Scientific Linux Security Update : gnutls on SL6.x i386/x86_64 (20120327)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The GnuTLS library provides support for cryptographic algorithms and
for protocols such as Transport Layer Security (TLS).

A flaw was found in the way GnuTLS decrypted malformed TLS records.
This could cause a TLS/SSL client or server to crash when processing a
specially crafted TLS record from a remote TLS/SSL connection peer.
(CVE-2012-1573)

A boundary error was found in the gnutls_session_get_data() function.
A malicious TLS/SSL server could use this flaw to crash a TLS/SSL
client or, possibly, execute arbitrary code as the client, if the
client passed a fixed-sized buffer to gnutls_session_get_data() before
checking the real size of the session data provided by the server.
(CVE-2011-4128)

Users of GnuTLS are advised to upgrade to these updated packages,
which contain backported patches to correct these issues. For the
update to take effect, all applications linked to the GnuTLS library
must be restarted, or the system rebooted."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1203&L=scientific-linux-errata&T=0&P=4696
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?1f1adf31"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:gnutls");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:gnutls-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:gnutls-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:gnutls-guile");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:gnutls-utils");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2011/12/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/03/27");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/08/01");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 6.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL6", reference:"gnutls-2.8.5-4.el6_2.2")) flag++;
if (rpm_check(release:"SL6", reference:"gnutls-debuginfo-2.8.5-4.el6_2.2")) flag++;
if (rpm_check(release:"SL6", reference:"gnutls-devel-2.8.5-4.el6_2.2")) flag++;
if (rpm_check(release:"SL6", reference:"gnutls-guile-2.8.5-4.el6_2.2")) flag++;
if (rpm_check(release:"SL6", reference:"gnutls-utils-2.8.5-4.el6_2.2")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "gnutls / gnutls-debuginfo / gnutls-devel / gnutls-guile / etc");
}
VendorProductVersionCPE
fermilabscientific_linuxgnutlsp-cpe:/a:fermilab:scientific_linux:gnutls
fermilabscientific_linuxgnutls-debuginfop-cpe:/a:fermilab:scientific_linux:gnutls-debuginfo
fermilabscientific_linuxgnutls-develp-cpe:/a:fermilab:scientific_linux:gnutls-devel
fermilabscientific_linuxgnutls-guilep-cpe:/a:fermilab:scientific_linux:gnutls-guile
fermilabscientific_linuxgnutls-utilsp-cpe:/a:fermilab:scientific_linux:gnutls-utils
fermilabscientific_linuxx-cpe:/o:fermilab:scientific_linux

Related

nessus 29
redhat 4
openvas 36
fedora 4
centos 2
oraclelinux 2
ubuntu 1
amazon 1
gentoo 1
slackware 1
prion 2
cve 2
freebsd 2
debiancve 1
checkpoint_advisories 1
veracode 2
ubuntucve 2
debian 1
securityvulns 1
suse 1
vmware 2
nessus
nessus
Amazon Linux AMI : gnutls (ALAS-2012-59)
2013-09-04 00:00:00
Fedora 15 : gnutls-2.10.5-3.fc15 (2012-4569)
2012-04-11 00:00:00
Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 / 11.10 : gnutls13, gnutls26 vulnerabilities (USN-1418-1)
2012-04-06 00:00:00
redhat
redhat
(RHSA-2012:0429) Important: gnutls security update
2012-03-27 00:00:00
(RHSA-2012:0428) Important: gnutls security update
2012-03-27 00:00:00
(RHSA-2012:0488) Important: rhev-hypervisor5 security and bug fix update
2012-04-17 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2012-59)
2015-09-08 00:00:00
RedHat Update for gnutls RHSA-2012:0429-01
2012-07-09 00:00:00
Fedora Update for gnutls FEDORA-2012-4569
2012-04-11 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: gnutls-2.10.5-3.fc15
2012-04-11 17:00:37
[SECURITY] Fedora 15 Update: gnutls-2.10.5-3.fc15
2012-04-11 03:49:48
[SECURITY] Fedora 16 Update: gnutls-2.12.14-2.fc16
2012-03-26 17:54:06
centos
centos
gnutls security update
2012-03-28 01:12:42
gnutls security update
2012-03-28 00:49:15
oraclelinux
oraclelinux
gnutls security update
2012-03-28 00:00:00
gnutls security update
2012-03-27 00:00:00
ubuntu
ubuntu
GnuTLS vulnerabilities
2012-04-05 00:00:00
amazon
amazon
Important: gnutls
2012-04-05 12:47:00
gentoo
gentoo
GnuTLS: Multiple vulnerabilities
2012-06-23 00:00:00
slackware
slackware
[slackware-security] gnutls
2013-10-15 00:18:30
prion
prion
Memory corruption
2012-03-26 19:55:00
Buffer overflow
2011-12-08 20:55:00
cve
cve
CVE-2012-1573
2012-03-26 19:55:00
CVE-2011-4128
2011-12-08 20:55:00
freebsd
freebsd
gnutls -- possible overflow/Denial of service vulnerabilities
2012-03-20 00:00:00
gnutls -- client session resumption vulnerability
2011-11-08 00:00:00
debiancve
debiancve
CVE-2012-1573
2012-03-26 19:55:00
checkpoint_advisories
checkpoint_advisories
GnuTLS TLS Record Application GenericBlockCipher Parsing Integer Overflow (CVE-2012-1573)
2012-09-03 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:12:39
Denial Of Service (DoS)
2020-04-10 01:12:38
ubuntucve
ubuntucve
CVE-2012-1573
2012-03-26 00:00:00
CVE-2011-4128
2011-12-08 00:00:00
debian
debian
[SECURITY] [DSA 2441-1] gnutls26 security update
2012-03-25 18:53:32
securityvulns
securityvulns
GnuTLS / libtasn1 security vulnerabilities
2012-03-26 00:00:00
suse
suse
Security update for gnutls (critical)
2014-03-04 01:04:52
vmware
vmware
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
JSON
Related for SL_20120327_GNUTLS_ON_SL6_X.NASL
nessus29redhat4openvas36fedora4centos2oraclelinux2ubuntu1amazon1gentoo1slackware1prion2cve2freebsd2debiancve1checkpoint_advisories1veracode2ubuntucve2debian1securityvulns1suse1vmware2