Lucene search
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20161116_NSS_AND_NSS_UTIL_ON_SL5_X.NASLHistoryNov 22, 2016 - 12:00 a.m.
Scientific Linux Security Update : nss and nss-util on SL5.x, SL6.x, SL7.x i386/x86_64 (20161116)
2016-11-2200:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
26
The nss-util packages provide utilities for use with the Network Security Services (NSS) libraries.
The following packages have been upgraded to a newer upstream version:
nss (3.12.3), nss-util (3.12.3).
Security Fix(es) :
-
Multiple buffer handling flaws were found in the way NSS handled cryptographic data from the network. A remote attacker could use these flaws to crash an application using NSS or, possibly, execute arbitrary code with the permission of the user running the application.
(CVE-2016-2834) -
A NULL pointer dereference flaw was found in the way NSS handled invalid Diffie-Hellman keys. A remote client could use this flaw to crash a TLS/SSL server using NSS.
(CVE-2016-5285) -
It was found that Diffie Hellman Client key exchange handling in NSS was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired group. (CVE-2016-8635)
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(95052);
script_version("2.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2016-2834", "CVE-2016-5285", "CVE-2016-8635");
script_name(english:"Scientific Linux Security Update : nss and nss-util on SL5.x, SL6.x, SL7.x i386/x86_64 (20161116)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"The nss-util packages provide utilities for use with the Network
Security Services (NSS) libraries.
The following packages have been upgraded to a newer upstream version:
nss (3.12.3), nss-util (3.12.3).
Security Fix(es) :
- Multiple buffer handling flaws were found in the way NSS
handled cryptographic data from the network. A remote
attacker could use these flaws to crash an application
using NSS or, possibly, execute arbitrary code with the
permission of the user running the application.
(CVE-2016-2834)
- A NULL pointer dereference flaw was found in the way NSS
handled invalid Diffie-Hellman keys. A remote client
could use this flaw to crash a TLS/SSL server using NSS.
(CVE-2016-5285)
- It was found that Diffie Hellman Client key exchange
handling in NSS was vulnerable to small subgroup
confinement attack. An attacker could use this flaw to
recover private keys by confining the client DH key to
small subgroup of the desired group. (CVE-2016-8635)"
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind1611&L=scientific-linux-errata&F=&S=&P=2517
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?7d7102ad"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-pkcs11-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-sysinit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-util");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-util-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:nss-util-devel");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/06/13");
script_set_attribute(attribute:"patch_publication_date", value:"2016/11/16");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/11/22");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 7.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
flag = 0;
if (rpm_check(release:"SL5", reference:"nss-3.21.3-2.el5_11")) flag++;
if (rpm_check(release:"SL5", reference:"nss-debuginfo-3.21.3-2.el5_11")) flag++;
if (rpm_check(release:"SL5", reference:"nss-devel-3.21.3-2.el5_11")) flag++;
if (rpm_check(release:"SL5", reference:"nss-pkcs11-devel-3.21.3-2.el5_11")) flag++;
if (rpm_check(release:"SL5", reference:"nss-tools-3.21.3-2.el5_11")) flag++;
if (rpm_check(release:"SL6", reference:"nss-3.21.3-2.el6_8")) flag++;
if (rpm_check(release:"SL6", reference:"nss-debuginfo-3.21.3-2.el6_8")) flag++;
if (rpm_check(release:"SL6", reference:"nss-devel-3.21.3-2.el6_8")) flag++;
if (rpm_check(release:"SL6", reference:"nss-pkcs11-devel-3.21.3-2.el6_8")) flag++;
if (rpm_check(release:"SL6", reference:"nss-sysinit-3.21.3-2.el6_8")) flag++;
if (rpm_check(release:"SL6", reference:"nss-tools-3.21.3-2.el6_8")) flag++;
if (rpm_check(release:"SL6", reference:"nss-util-3.21.3-1.el6_8")) flag++;
if (rpm_check(release:"SL6", reference:"nss-util-debuginfo-3.21.3-1.el6_8")) flag++;
if (rpm_check(release:"SL6", reference:"nss-util-devel-3.21.3-1.el6_8")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"nss-3.21.3-2.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"nss-debuginfo-3.21.3-2.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"nss-devel-3.21.3-2.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"nss-pkcs11-devel-3.21.3-2.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"nss-sysinit-3.21.3-2.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"nss-tools-3.21.3-2.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"nss-util-3.21.3-1.1.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"nss-util-debuginfo-3.21.3-1.1.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"nss-util-devel-3.21.3-1.1.el7_3")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "nss / nss-debuginfo / nss-devel / nss-pkcs11-devel / nss-sysinit / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | nss | p-cpe:/a:fermilab:scientific_linux:nss |
| fermilab | scientific_linux | nss-debuginfo | p-cpe:/a:fermilab:scientific_linux:nss-debuginfo |
| fermilab | scientific_linux | nss-devel | p-cpe:/a:fermilab:scientific_linux:nss-devel |
| fermilab | scientific_linux | nss-pkcs11-devel | p-cpe:/a:fermilab:scientific_linux:nss-pkcs11-devel |
| fermilab | scientific_linux | nss-sysinit | p-cpe:/a:fermilab:scientific_linux:nss-sysinit |
| fermilab | scientific_linux | nss-tools | p-cpe:/a:fermilab:scientific_linux:nss-tools |
| fermilab | scientific_linux | nss-util | p-cpe:/a:fermilab:scientific_linux:nss-util |
| fermilab | scientific_linux | nss-util-debuginfo | p-cpe:/a:fermilab:scientific_linux:nss-util-debuginfo |
| fermilab | scientific_linux | nss-util-devel | p-cpe:/a:fermilab:scientific_linux:nss-util-devel |
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux |
Related
nessus
nessus
Oracle Linux 5 / 6 / 7 : nss / nss-util (ELSA-2016-2779)
2016-11-17 00:00:00
CentOS 5 / 6 / 7 : nss / nss-util (CESA-2016:2779)
2016-11-21 00:00:00
EulerOS 2.0 SP1 : nss, nss-util (EulerOS-SA-2016-1084)
2017-05-01 00:00:00
redhat
redhat
(RHSA-2016:2779) Moderate: nss and nss-util security update
2016-11-16 00:00:00
ibm
ibm
openvas
openvas
CentOS Update for nss-util CESA-2016:2779 centos6
2016-11-20 00:00:00
Huawei EulerOS: Security Advisory for nss, nss-util (EulerOS-SA-2016-1084)
2020-01-23 00:00:00
CentOS Update for nss CESA-2016:2779 centos5
2016-11-20 00:00:00
centos
centos
nss security update
2016-11-19 11:17:02
amazon
amazon
Medium: nss-util, nss, nss-softokn
2016-12-15 00:32:00
symantec
symantec
SA137 : NSS Vulnerabilities
2016-12-20 08:00:00
oraclelinux
oraclelinux
nss and nss-util security update
2016-11-16 00:00:00
ubuntu
ubuntu
NSS vulnerabilities
2017-01-04 00:00:00
NSS vulnerability
2016-07-11 00:00:00
Firefox vulnerabilities
2016-06-09 00:00:00
prion
prion
Null pointer dereference
2019-11-15 16:15:00
Design/Logic Flaw
2018-08-01 13:29:00
Memory corruption
2016-06-13 10:59:00
veracode
veracode
Null Pointer Dereference
2019-05-02 06:02:29
Denial Of Service
2019-01-15 09:14:44
Information Disclosure
2019-05-02 06:02:29
redhatcve
redhatcve
ubuntucve
ubuntucve
cve
cve
debiancve
debiancve
mozilla
mozilla
Network Security Services (NSS) vulnerabilities โ Mozilla
2016-06-07 00:00:00
osv
osv
nss - security update
2016-06-25 00:00:00
nss - security update
2016-10-05 00:00:00
freebsd
freebsd
NSS -- multiple vulnerabilities
2016-06-07 00:00:00
debian
debian
[SECURITY] [DLA 527-1] nss security update
2016-06-25 18:05:55
[SECURITY] [DSA 3688-1] nss security update
2016-10-05 20:20:43
f5
f5
K15479471 : Mozilla NSS vulnerability CVE-2016-2834
2016-09-01 00:00:00
SOL15479471 - Mozilla NSS vulnerability CVE-2016-2834
2016-09-01 00:00:00
gentoo
gentoo
Mozilla Network Security Service (NSS): Multiple vulnerabilities
2017-01-19 00:00:00
suse
suse
Security update for MozillaFirefox, mozilla-nss (important)
2016-12-05 21:07:10
Security update for MozillaFirefox, mozilla-nss (important)
2016-12-10 23:09:49
Security update for MozillaFirefox, mozilla-nss (important)
2016-12-13 13:07:50
kaspersky
kaspersky
KLA10822 Multiple vulnerabilities in Mozilla Firefox and Firefox ESR
2016-06-07 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2017
2017-10-17 00:00:00
Oracle Critical Patch Update Advisory - July 2017
2018-03-20 00:00:00
Related for SL_20161116_NSS_AND_NSS_UTIL_ON_SL5_X.NASL