Lucene search
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20170412_389_DS_BASE_ON_SL7_X.NASLHistoryApr 13, 2017 - 12:00 a.m.
Scientific Linux Security Update : 389-ds-base on SL7.x x86_64 (20170412)
2017-04-1300:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
8
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.006 Low
EPSS
Percentile
78.4%
Security Fix(es) :
- An invalid pointer dereference flaw was found in the way 389-ds-base handled LDAP bind requests. A remote unauthenticated attacker could use this flaw to make ns-slapd crash via a specially crafted LDAP bind request, resulting in denial of service. (CVE-2017-2668)
Bug Fix(es) :
-
Previously, when adding a filtered role definition that uses the ‘nsrole’ virtual attribute in the filter, Directory Server terminated unexpectedly. A patch has been applied, and now the roles plug-in ignores all virtual attributes. As a result, an error message is logged when an invalid filter is used. Additionally, the role is deactivated and Directory Server no longer fails.
-
In a replication topology, Directory Server incorrectly calculated the size of string format entries when a lot of entries were deleted. The calculated size of entries was smaller than the actual required size. Consequently, Directory Server allocated insufficient memory and terminated unexpectedly when the data was written to it.
With this update, the size of string format entries is now calculated correctly in the described situation and Directory Server no longer terminates unexpectedly.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(99349);
script_version("3.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2017-2668");
script_name(english:"Scientific Linux Security Update : 389-ds-base on SL7.x x86_64 (20170412)");
script_summary(english:"Checks rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Scientific Linux host is missing one or more security
updates."
);
script_set_attribute(
attribute:"description",
value:
"Security Fix(es) :
- An invalid pointer dereference flaw was found in the way
389-ds-base handled LDAP bind requests. A remote
unauthenticated attacker could use this flaw to make
ns-slapd crash via a specially crafted LDAP bind
request, resulting in denial of service. (CVE-2017-2668)
Bug Fix(es) :
- Previously, when adding a filtered role definition that
uses the 'nsrole' virtual attribute in the filter,
Directory Server terminated unexpectedly. A patch has
been applied, and now the roles plug-in ignores all
virtual attributes. As a result, an error message is
logged when an invalid filter is used. Additionally, the
role is deactivated and Directory Server no longer
fails.
- In a replication topology, Directory Server incorrectly
calculated the size of string format entries when a lot
of entries were deleted. The calculated size of entries
was smaller than the actual required size. Consequently,
Directory Server allocated insufficient memory and
terminated unexpectedly when the data was written to it.
With this update, the size of string format entries is
now calculated correctly in the described situation and
Directory Server no longer terminates unexpectedly."
);
# https://listserv.fnal.gov/scripts/wa.exe?A2=ind1704&L=scientific-linux-errata&F=&S=&P=8154
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?2046089f"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:389-ds-base");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:389-ds-base-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:389-ds-base-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:389-ds-base-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:389-ds-base-snmp");
script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/06/22");
script_set_attribute(attribute:"patch_publication_date", value:"2017/04/12");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/04/13");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Scientific Linux Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 7.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);
if ("x86_64" >!< cpu) audit(AUDIT_ARCH_NOT, "x86_64", cpu);
flag = 0;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"389-ds-base-1.3.5.10-20.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"389-ds-base-debuginfo-1.3.5.10-20.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"389-ds-base-devel-1.3.5.10-20.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"389-ds-base-libs-1.3.5.10-20.el7_3")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"389-ds-base-snmp-1.3.5.10-20.el7_3")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "389-ds-base / 389-ds-base-debuginfo / 389-ds-base-devel / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fermilab | scientific_linux | 389-ds-base | p-cpe:/a:fermilab:scientific_linux:389-ds-base |
| fermilab | scientific_linux | 389-ds-base-debuginfo | p-cpe:/a:fermilab:scientific_linux:389-ds-base-debuginfo |
| fermilab | scientific_linux | 389-ds-base-devel | p-cpe:/a:fermilab:scientific_linux:389-ds-base-devel |
| fermilab | scientific_linux | 389-ds-base-libs | p-cpe:/a:fermilab:scientific_linux:389-ds-base-libs |
| fermilab | scientific_linux | 389-ds-base-snmp | p-cpe:/a:fermilab:scientific_linux:389-ds-base-snmp |
| fermilab | scientific_linux | x-cpe:/o:fermilab:scientific_linux |
Related
redhat
redhat
(RHSA-2017:0920) Important: 389-ds-base security and bug fix update
2017-04-12 10:03:49
(RHSA-2017:0893) Important: 389-ds-base security and bug fix update
2017-04-11 10:30:44
centos
centos
389 security update
2017-04-11 17:04:15
389 security update
2017-04-13 10:59:06
nessus
nessus
NewStart CGSL MAIN 4.05 : 389-ds-base Vulnerability (NS-SA-2019-0101)
2019-08-12 00:00:00
Oracle Linux 6 : 389-ds-base (ELSA-2017-0893)
2017-04-12 00:00:00
mageia
mageia
Updated 389-ds-base packages fix security vulnerability
2017-05-02 09:37:59
debiancve
debiancve
CVE-2017-2668
2018-06-22 13:29:00
openvas
openvas
RedHat Update for 389-ds-base RHSA-2017:0920-01
2017-04-13 00:00:00
Mageia: Security Advisory (MGASA-2017-0123)
2022-01-28 00:00:00
Huawei EulerOS: Security Advisory for 389-ds-base (EulerOS-SA-2017-1087)
2020-01-23 00:00:00
oraclelinux
oraclelinux
389-ds-base security and bug fix update
2017-04-11 00:00:00
389-ds-base security and bug fix update
2017-04-12 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:16:14
prion
prion
Server side request forgery (ssrf)
2018-06-22 13:29:00
redhatcve
redhatcve
CVE-2017-2668
2019-10-10 04:50:52
amazon
amazon
Important: 389-ds-base
2017-04-27 00:02:00
nvd
nvd
CVE-2017-2668
2018-06-22 13:29:00
cve
cve
CVE-2017-2668
2018-06-22 13:29:00
ubuntucve
ubuntucve
CVE-2017-2668
2018-06-22 00:00:00
cvelist
cvelist
CVE-2017-2668
2018-06-22 13:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:N/I:N/A:P
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
0.006 Low
EPSS
Percentile
78.4%
Related for SL_20170412_389_DS_BASE_ON_SL7_X.NASL