Lucene search
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20131121_GLIBC_ON_SL6_X.NASLHistoryDec 04, 2013 - 12:00 a.m.
Scientific Linux Security Update : glibc on SL6.x i386/x86_64 (20131121)
2013-12-0400:00:00
This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in glibc’s memory allocator functions (pvalloc, valloc, and memalign). If an application used such a function, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2013-4332)
A flaw was found in the regular expression matching routines that process multibyte character input. If an application utilized the glibc regular expression matching mechanism, an attacker could provide specially crafted input that, when processed, would cause the application to crash. (CVE-2013-0242)
It was found that getaddrinfo() did not limit the amount of stack memory used during name resolution. An attacker able to make an application resolve an attacker-controlled hostname or IP address could possibly cause the application to exhaust all stack memory and crash. (CVE-2013-1914)
Among other changes, this update includes an important fix for the following bug :
- Due to a defect in the initial release of the getaddrinfo() system call in Scientific Linux 6.0, AF_INET and AF_INET6 queries resolved from the /etc/hosts file returned queried names as canonical names. This incorrect behavior is, however, still considered to be the expected behavior. As a result of a recent change in getaddrinfo(), AF_INET6 queries started resolving the canonical names correctly. However, this behavior was unexpected by applications that relied on queries resolved from the /etc/hosts file, and these applications could thus fail to operate properly. This update applies a fix ensuring that AF_INET6 queries resolved from /etc/hosts always return the queried name as canonical. Note that DNS lookups are resolved properly and always return the correct canonical names.
A proper fix to AF_INET6 queries resolution from /etc/hosts may be applied in future releases; for now, due to a lack of standard, Red Hat suggests the first entry in the /etc/hosts file, that applies for the IP address being resolved, to be considered the canonical entry.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(71193);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2013-0242", "CVE-2013-1914", "CVE-2013-4332");
script_name(english:"Scientific Linux Security Update : glibc on SL6.x i386/x86_64 (20131121)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"Multiple integer overflow flaws, leading to heap-based buffer
overflows, were found in glibc's memory allocator functions (pvalloc,
valloc, and memalign). If an application used such a function, it
could cause the application to crash or, potentially, execute
arbitrary code with the privileges of the user running the
application. (CVE-2013-4332)
A flaw was found in the regular expression matching routines that
process multibyte character input. If an application utilized the
glibc regular expression matching mechanism, an attacker could provide
specially crafted input that, when processed, would cause the
application to crash. (CVE-2013-0242)
It was found that getaddrinfo() did not limit the amount of stack
memory used during name resolution. An attacker able to make an
application resolve an attacker-controlled hostname or IP address
could possibly cause the application to exhaust all stack memory and
crash. (CVE-2013-1914)
Among other changes, this update includes an important fix for the
following bug :
- Due to a defect in the initial release of the
getaddrinfo() system call in Scientific Linux 6.0,
AF_INET and AF_INET6 queries resolved from the
/etc/hosts file returned queried names as canonical
names. This incorrect behavior is, however, still
considered to be the expected behavior. As a result of a
recent change in getaddrinfo(), AF_INET6 queries started
resolving the canonical names correctly. However, this
behavior was unexpected by applications that relied on
queries resolved from the /etc/hosts file, and these
applications could thus fail to operate properly. This
update applies a fix ensuring that AF_INET6 queries
resolved from /etc/hosts always return the queried name
as canonical. Note that DNS lookups are resolved
properly and always return the correct canonical names.
A proper fix to AF_INET6 queries resolution from
/etc/hosts may be applied in future releases; for now,
due to a lack of standard, Red Hat suggests the first
entry in the /etc/hosts file, that applies for the IP
address being resolved, to be considered the canonical
entry."
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind1312&L=scientific-linux-errata&T=0&P=448
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?5ae8b87b"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-debuginfo-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-static");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:glibc-utils");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nscd");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"vuln_publication_date", value:"2013/02/08");
script_set_attribute(attribute:"patch_publication_date", value:"2013/11/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/12/04");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 6.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
flag = 0;
if (rpm_check(release:"SL6", reference:"glibc-2.12-1.132.el6")) flag++;
if (rpm_check(release:"SL6", reference:"glibc-common-2.12-1.132.el6")) flag++;
if (rpm_check(release:"SL6", reference:"glibc-debuginfo-2.12-1.132.el6")) flag++;
if (rpm_check(release:"SL6", reference:"glibc-debuginfo-common-2.12-1.132.el6")) flag++;
if (rpm_check(release:"SL6", reference:"glibc-devel-2.12-1.132.el6")) flag++;
if (rpm_check(release:"SL6", reference:"glibc-headers-2.12-1.132.el6")) flag++;
if (rpm_check(release:"SL6", reference:"glibc-static-2.12-1.132.el6")) flag++;
if (rpm_check(release:"SL6", reference:"glibc-utils-2.12-1.132.el6")) flag++;
if (rpm_check(release:"SL6", reference:"nscd-2.12-1.132.el6")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc / glibc-common / glibc-debuginfo / glibc-debuginfo-common / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | glibc | p-cpe:/a:fermilab:scientific_linux:glibc |
| fermilab | scientific_linux | glibc-common | p-cpe:/a:fermilab:scientific_linux:glibc-common |
| fermilab | scientific_linux | glibc-debuginfo | p-cpe:/a:fermilab:scientific_linux:glibc-debuginfo |
| fermilab | scientific_linux | glibc-debuginfo-common | p-cpe:/a:fermilab:scientific_linux:glibc-debuginfo-common |
| fermilab | scientific_linux | glibc-devel | p-cpe:/a:fermilab:scientific_linux:glibc-devel |
| fermilab | scientific_linux | glibc-headers | p-cpe:/a:fermilab:scientific_linux:glibc-headers |
| fermilab | scientific_linux | glibc-static | p-cpe:/a:fermilab:scientific_linux:glibc-static |
| fermilab | scientific_linux | glibc-utils | p-cpe:/a:fermilab:scientific_linux:glibc-utils |
| fermilab | scientific_linux | nscd | p-cpe:/a:fermilab:scientific_linux:nscd |
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux |
Related
nessus
nessus
CentOS 6 : glibc (CESA-2013:1605)
2014-11-12 00:00:00
Amazon Linux AMI : glibc (ALAS-2013-270)
2013-12-23 00:00:00
Oracle Linux 6 : glibc (ELSA-2013-1605)
2013-11-27 00:00:00
redhat
redhat
(RHSA-2013:1605) Moderate: glibc security, bug fix, and enhancement update
2013-11-21 00:00:00
(RHSA-2013:0769) Low: glibc security and bug fix update
2013-04-24 00:00:00
(RHSA-2013:1411) Moderate: glibc security and bug fix update
2013-10-08 00:00:00
openvas
openvas
RedHat Update for glibc RHSA-2013:1605-02
2013-11-21 00:00:00
RedHat Update for glibc RHSA-2013:1605-02
2013-11-21 00:00:00
Amazon Linux: Security Advisory (ALAS-2013-270)
2015-09-08 00:00:00
oraclelinux
oraclelinux
glibc security, bug fix, and enhancement update
2013-11-25 00:00:00
glibc security and bug fix update
2013-04-24 00:00:00
glibc security and bug fix update
2013-10-08 00:00:00
amazon
amazon
Medium: glibc
2013-12-17 21:39:00
centos
centos
glibc, nscd security update
2013-11-26 13:31:38
glibc, nscd security update
2013-04-24 21:58:40
glibc, nscd security update
2013-10-08 20:20:03
veracode
veracode
Stack-based Buffer Overflow
2019-05-02 04:44:45
Denial Of Service (DoS)
2019-01-15 09:00:29
Denial Of Service (DoS)
2019-01-15 08:52:21
securityvulns
securityvulns
GNU glibc security vulnerabilities
2013-05-09 00:00:00
[ MDVSA-2013:163 ] glibc
2013-05-09 00:00:00
[ MDVSA-2013:284 ] glibc
2013-12-01 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2013-10-21 00:00:00
ibm
ibm
ubuntucve
ubuntucve
cve
cve
prion
prion
Integer overflow
2013-10-09 22:55:00
Stack overflow
2013-04-29 22:55:00
Buffer overflow
2013-02-08 20:55:00
debiancve
debiancve
altlinux
altlinux
Security fix for the ALT Linux 6 package glibc version 6:2.11.3-alt8.M60P.3
2015-12-23 00:00:00
Security fix for the ALT Linux 9 package glibc version 6:2.17-alt6
2014-01-11 00:00:00
Security fix for the ALT Linux 7 package glibc version 6:2.17-alt6
2014-01-11 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: glibc-2.15-59.fc17
2013-06-02 01:58:33
[SECURITY] Fedora 18 Update: glibc-2.16-30.fc18
2013-03-30 21:30:28
[SECURITY] Fedora 20 Update: glibc-2.18-9.fc20
2013-09-26 06:13:02
vmware
vmware
VMware vSphere product updates to third party libraries
2014-09-09 00:00:00
VMware vSphere product updates to third party libraries
2014-09-09 00:00:00
VMware vSphere updates to third party libraries
2014-03-11 00:00:00
suse
suse
Security update for glibc (important)
2014-09-12 06:04:16
Security update for glibc (important)
2014-09-15 19:04:18
mageia
mageia
Updated glibc package fixes security vulnerabilities
2013-11-22 22:44:49
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2015-03-08 00:00:00
debian
debian
[SECURITY] [DLA 165-1] eglibc security update
2015-03-06 15:39:53
osv
osv
eglibc - security update
2015-03-06 00:00:00
f5
f5
packetstorm
packetstorm
Moxa Command Injection / Cross Site Scripting / Vulnerable Software
2021-09-01 00:00:00
zdt
zdt
Moxa Command Injection / Cross Site Scripting Vulnerabilities
2021-09-01 00:00:00
Related for SL_20131121_GLIBC_ON_SL6_X.NASL