Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20130805_NSS_AND_NSPR_ON_SL5_X.NASL
HistoryAug 06, 2013 - 12:00 a.m.

Scientific Linux Security Update : nss and nspr on SL5.x i386/x86_64 (20130805)

2013-08-0600:00:00
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
JSON

It was discovered that NSS leaked timing information when decrypting TLS/SSL and DTLS protocol encrypted records when CBC-mode cipher suites were used. A remote attacker could possibly use this flaw to retrieve plain text from the encrypted packets by using a TLS/SSL or DTLS server as a padding oracle. (CVE-2013-1620)

An out-of-bounds memory read flaw was found in the way NSS decoded certain certificates. If an application using NSS decoded a malformed certificate, it could cause the application to crash. (CVE-2013-0791)

This update also fixes the following bugs :

  • A defect in the FreeBL library implementation of the Diffie-Hellman (DH) protocol previously caused Openswan to drop connections.

  • A memory leak in the nssutil_ReadSecmodDB() function has been fixed.

In addition, the nss package has been upgraded to upstream version 3.14.3, and the nspr package has been upgraded to upstream version 4.9.5. These updates provide a number of bug fixes and enhancements over the previous versions.

Note that while upstream NSS version 3.14 prevents the use of certificates that have an MD5 signature, this erratum includes a patch that allows such certificates by default. To prevent the use of certificates that have an MD5 signature, set the ‘NSS_HASH_ALG_SUPPORT’ environment variable to ‘-MD5’.

After installing this update, applications using NSS or NSPR must be restarted for this update to take effect.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(69223);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2013-0791", "CVE-2013-1620");

  script_name(english:"Scientific Linux Security Update : nss and nspr on SL5.x i386/x86_64 (20130805)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"It was discovered that NSS leaked timing information when decrypting
TLS/SSL and DTLS protocol encrypted records when CBC-mode cipher
suites were used. A remote attacker could possibly use this flaw to
retrieve plain text from the encrypted packets by using a TLS/SSL or
DTLS server as a padding oracle. (CVE-2013-1620)

An out-of-bounds memory read flaw was found in the way NSS decoded
certain certificates. If an application using NSS decoded a malformed
certificate, it could cause the application to crash. (CVE-2013-0791)

This update also fixes the following bugs :

  - A defect in the FreeBL library implementation of the
    Diffie-Hellman (DH) protocol previously caused Openswan
    to drop connections.

  - A memory leak in the nssutil_ReadSecmodDB() function has
    been fixed.

In addition, the nss package has been upgraded to upstream version
3.14.3, and the nspr package has been upgraded to upstream version
4.9.5. These updates provide a number of bug fixes and enhancements
over the previous versions.

Note that while upstream NSS version 3.14 prevents the use of
certificates that have an MD5 signature, this erratum includes a patch
that allows such certificates by default. To prevent the use of
certificates that have an MD5 signature, set the
'NSS_HASH_ALG_SUPPORT' environment variable to '-MD5'.

After installing this update, applications using NSS or NSPR must be
restarted for this update to take effect."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1308&L=scientific-linux-errata&T=0&P=77
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?726b44ed"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nspr");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nspr-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nspr-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-pkcs11-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-tools");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/02/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/08/05");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/08/06");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^5([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 5.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL5", reference:"nspr-4.9.5-1.el5_9")) flag++;
if (rpm_check(release:"SL5", reference:"nspr-debuginfo-4.9.5-1.el5_9")) flag++;
if (rpm_check(release:"SL5", reference:"nspr-devel-4.9.5-1.el5_9")) flag++;
if (rpm_check(release:"SL5", reference:"nss-3.14.3-6.el5_9")) flag++;
if (rpm_check(release:"SL5", reference:"nss-debuginfo-3.14.3-6.el5_9")) flag++;
if (rpm_check(release:"SL5", reference:"nss-devel-3.14.3-6.el5_9")) flag++;
if (rpm_check(release:"SL5", reference:"nss-pkcs11-devel-3.14.3-6.el5_9")) flag++;
if (rpm_check(release:"SL5", reference:"nss-tools-3.14.3-6.el5_9")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "nspr / nspr-debuginfo / nspr-devel / nss / nss-debuginfo / etc");
}
VendorProductVersionCPE
fermilabscientific_linuxnsprp-cpe:/a:fermilab:scientific_linux:nspr
fermilabscientific_linuxnspr-debuginfop-cpe:/a:fermilab:scientific_linux:nspr-debuginfo
fermilabscientific_linuxnspr-develp-cpe:/a:fermilab:scientific_linux:nspr-devel
fermilabscientific_linuxnssp-cpe:/a:fermilab:scientific_linux:nss
fermilabscientific_linuxnss-debuginfop-cpe:/a:fermilab:scientific_linux:nss-debuginfo
fermilabscientific_linuxnss-develp-cpe:/a:fermilab:scientific_linux:nss-devel
fermilabscientific_linuxnss-pkcs11-develp-cpe:/a:fermilab:scientific_linux:nss-pkcs11-devel
fermilabscientific_linuxnss-toolsp-cpe:/a:fermilab:scientific_linux:nss-tools
fermilabscientific_linuxx-cpe:/o:fermilab:scientific_linux

Related

redhat 5
nessus 56
openvas 82
amazon 4
centos 4
oraclelinux 2
veracode 6
securityvulns 4
fedora 10
ubuntu 4
mozilla 1
prion 2
debiancve 2
ubuntucve 2
cve 2
f5 2
suse 7
vmware 1
gentoo 2
freebsd 1
redhat
redhat
(RHSA-2013:1135) Moderate: nss and nspr security, bug fix, and enhancement update
2013-08-05 00:00:00
(RHSA-2013:1144) Moderate: nss, nss-util, nss-softokn, and nspr security update
2013-08-07 00:00:00
(RHSA-2013:1181) Moderate: rhev-hypervisor6 security and bug fix update
2013-08-27 00:00:00
nessus
nessus
RHEL 6 : nss, nss-util, nss-softokn, and nspr (RHSA-2013:1144)
2013-08-08 00:00:00
Oracle Linux 6 : nspr / nss / nss-softokn / nss-util (ELSA-2013-1144)
2013-08-08 00:00:00
CentOS 5 : nss (CESA-2013:1135)
2013-08-06 00:00:00
openvas
openvas
RedHat Update for nss and nspr RHSA-2013:1135-01
2013-08-08 00:00:00
RedHat Update for nss, nss-util, nss-softokn, and nspr RHSA-2013:1144-01
2013-08-08 00:00:00
CentOS Update for nspr CESA-2013:1144 centos6
2013-08-08 00:00:00
amazon
amazon
Medium: nss
2013-08-07 21:23:00
Medium: nspr
2013-08-07 21:23:00
Important: nss
2013-12-17 21:31:00
centos
centos
nspr, nss security update
2013-08-05 19:56:06
nspr, nss security update
2013-08-07 22:22:50
nspr, nss security update
2013-12-13 00:04:31
oraclelinux
oraclelinux
nss and nspr security, bug fix, and enhancement update
2013-08-05 00:00:00
nss, nss-util, nss-softokn, and nspr security update
2013-08-07 00:00:00
veracode
veracode
Timing Side-Channel
2019-05-02 04:48:16
Denial Of Service (DoS)
2019-01-15 08:57:12
Denial Of Service
2019-01-15 08:52:48
securityvulns
securityvulns
Mozilla NSS library TLS timing attacks
2013-03-24 00:00:00
[USN-1763-1] NSS vulnerability
2013-03-24 00:00:00
Mozilla Firefox / Thunderbird / Seamonkey multiple security vulnerabilities
2013-04-03 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: nss-util-3.14.3-1.fc18
2013-02-28 07:04:40
[SECURITY] Fedora 17 Update: nss-3.14.3-1.fc17
2013-03-14 02:40:31
[SECURITY] Fedora 17 Update: nss-softokn-3.14.3-1.fc17
2013-03-14 02:40:31
ubuntu
ubuntu
NSS vulnerability
2013-03-14 00:00:00
Thunderbird vulnerabilities
2013-04-08 00:00:00
Firefox vulnerabilities
2013-04-04 00:00:00
mozilla
mozilla
Out-of-bounds array read in CERT_DecodeCertPackage — Mozilla
2013-04-02 00:00:00
prion
prion
Out-of-bounds
2013-04-03 11:56:00
Design/Logic Flaw
2013-02-08 19:55:00
debiancve
debiancve
CVE-2013-0791
2013-04-03 11:56:00
CVE-2013-1620
2013-02-08 19:55:00
ubuntucve
ubuntucve
CVE-2013-0791
2013-04-03 00:00:00
CVE-2013-1620
2013-02-08 00:00:00
cve
cve
CVE-2013-0791
2013-04-03 11:56:00
CVE-2013-1620
2013-02-08 19:55:00
f5
f5
SOL15630 - TLS in Mozilla NSS vulnerability CVE-2013-1620
2014-09-25 00:00:00
K15630 : TLS in Mozilla NSS vulnerability CVE-2013-1620
2015-09-17 00:00:00
suse
suse
Mozilla Firefox and others: Update to Firefox 20.0 release (important)
2013-04-05 15:06:14
Mozilla Firefox and others: Update to 20.0/17.0.5 releases (important)
2013-04-05 18:06:10
Security update for Mozilla Firefox (important)
2013-05-28 21:04:38
vmware
vmware
VMware ESX updates to third party libraries
2013-12-05 00:00:00
gentoo
gentoo
Mozilla Network Security Service: Multiple vulnerabilities
2014-06-21 00:00:00
Mozilla Products: Multiple vulnerabilities
2013-09-27 00:00:00
freebsd
freebsd
mozilla -- multiple vulnerabilities
2013-04-02 00:00:00
JSON
Related for SL_20130805_NSS_AND_NSPR_ON_SL5_X.NASL
redhat5nessus56openvas82amazon4centos4oraclelinux2veracode6securityvulns4fedora10ubuntu4mozilla1prion2debiancve2ubuntucve2cve2f52suse7vmware1gentoo2freebsd1