Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_11_3_DHCP-110830.NASL
HistoryJun 13, 2014 - 12:00 a.m.

openSUSE Security Update : dhcp (openSUSE-SU-2011:1021-1)

2014-06-1300:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
JSON

This update of dhcp fixes two Denial of Service (CVE-2011-2748, CVE-2011-2749) vulnerabilities caused by specially crafted BOOTP packets.

Also following bugs were fixed :

  • Moved server pid files into chroot directory even chroot is not used and create a link in /var/run, so it can write one when started as user without chroot and avoid stop problems when the chroot sysconfig setting changed (bnc#712438).

  • Fixed dhclient-script to not remove alias IP when it didn’t changed to not wipe out iptables connmark when renewing the lease (bnc#700771). Thanks to James Carter for the patch.

  • Removed GPL licensed files (bind-*/contrib/dbus) from bind.tgz to ensure, they’re not used to build non-GPL dhcp.

  • Disabled log-info level messages in dhclient(6) quiet mode to avoid excessive logging of non-critical messages (bnc#711420).

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update dhcp-5081.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(75466);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2011-2748", "CVE-2011-2749");

  script_name(english:"openSUSE Security Update : dhcp (openSUSE-SU-2011:1021-1)");
  script_summary(english:"Check for the dhcp-5081 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update of dhcp fixes two Denial of Service (CVE-2011-2748,
CVE-2011-2749) vulnerabilities caused by specially crafted BOOTP
packets.

Also following bugs were fixed :

  - Moved server pid files into chroot directory even chroot
    is not used and create a link in /var/run, so it can
    write one when started as user without chroot and avoid
    stop problems when the chroot sysconfig setting changed
    (bnc#712438).

  - Fixed dhclient-script to not remove alias IP when it
    didn't changed to not wipe out iptables connmark when
    renewing the lease (bnc#700771). Thanks to James Carter
    for the patch.

  - Removed GPL licensed files (bind-*/contrib/dbus) from
    bind.tgz to ensure, they're not used to build non-GPL
    dhcp.

  - Disabled log-info level messages in dhclient(6) quiet
    mode to avoid excessive logging of non-critical messages
    (bnc#711420)."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=700771"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=711420"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=712438"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=712653"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=714004"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://lists.opensuse.org/opensuse-updates/2011-09/msg00014.html"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected dhcp packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:dhcp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:dhcp-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:dhcp-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:dhcp-relay");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:dhcp-server");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.3");

  script_set_attribute(attribute:"patch_publication_date", value:"2011/08/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/06/13");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE11.3", reference:"dhcp-4.1.2.ESV.1-0.10.1") ) flag++;
if ( rpm_check(release:"SUSE11.3", reference:"dhcp-client-4.1.2.ESV.1-0.10.1") ) flag++;
if ( rpm_check(release:"SUSE11.3", reference:"dhcp-devel-4.1.2.ESV.1-0.10.1") ) flag++;
if ( rpm_check(release:"SUSE11.3", reference:"dhcp-relay-4.1.2.ESV.1-0.10.1") ) flag++;
if ( rpm_check(release:"SUSE11.3", reference:"dhcp-server-4.1.2.ESV.1-0.10.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "dhcp");
}
VendorProductVersionCPE
novellopensusedhcpp-cpe:/a:novell:opensuse:dhcp
novellopensusedhcp-clientp-cpe:/a:novell:opensuse:dhcp-client
novellopensusedhcp-develp-cpe:/a:novell:opensuse:dhcp-devel
novellopensusedhcp-relayp-cpe:/a:novell:opensuse:dhcp-relay
novellopensusedhcp-serverp-cpe:/a:novell:opensuse:dhcp-server
novellopensuse11.3cpe:/o:novell:opensuse:11.3

Related

nessus 17
openvas 28
debian 1
redhat 1
securityvulns 4
ubuntu 1
oraclelinux 1
centos 1
fedora 4
freebsd 1
ubuntucve 2
veracode 2
cve 2
checkpoint_advisories 1
prion 2
debiancve 2
gentoo 1
nessus
nessus
Oracle Linux 4 / 5 / 6 : dhcp (ELSA-2011-1160)
2013-07-12 00:00:00
CentOS 4 / 5 : dhcp (CESA-2011:1160)
2011-08-17 00:00:00
Ubuntu 8.04 LTS / 10.04 LTS / 10.10 / 11.04 : dhcp3, isc-dhcp vulnerabilities (USN-1190-1)
2011-08-16 00:00:00
openvas
openvas
Debian Security Advisory DSA 2292-1 (isc-dhcp)
2012-03-12 00:00:00
RedHat Update for dhcp RHSA-2011:1160-01
2011-08-18 00:00:00
Fedora Update for dhcp FEDORA-2011-10740
2011-08-31 00:00:00
debian
debian
[SECURITY] [DSA 2292-1] ISC DHCP security update
2011-08-11 05:33:46
redhat
redhat
(RHSA-2011:1160) Moderate: dhcp security update
2011-08-15 00:00:00
securityvulns
securityvulns
ISC DHCPD DoS
2011-08-17 00:00:00
[SECURITY] [DSA 2292-1] ISC DHCP security update
2011-08-17 00:00:00
Web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
2011-04-11 00:00:00
ubuntu
ubuntu
DHCP vulnerabilities
2011-08-15 00:00:00
oraclelinux
oraclelinux
dhcp security update
2011-08-15 00:00:00
centos
centos
dhclient, dhcp, libdhcp4client security update
2011-08-16 13:04:38
fedora
fedora
[SECURITY] Fedora 16 Update: dhcp-4.2.2-1.fc16
2011-08-22 15:08:46
[SECURITY] Fedora 15 Update: dhcp-4.2.1-10.P1.fc15
2011-08-26 18:50:32
[SECURITY] Fedora 15 Update: dhcp-4.2.1-14.P1.fc15
2012-01-02 21:49:27
freebsd
freebsd
isc-dhcp-server -- server halt upon processing certain packets
2011-08-10 00:00:00
ubuntucve
ubuntucve
CVE-2011-2748
2011-08-11 00:00:00
CVE-2011-2749
2011-08-11 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:03:44
Denial Of Service (DoS)
2020-04-10 01:03:45
cve
cve
CVE-2011-2749
2011-08-15 21:55:00
CVE-2011-2748
2011-08-15 21:55:00
checkpoint_advisories
checkpoint_advisories
ISC DHCP Server Packet Processing Denial of Service (CVE-2011-2748)
2011-12-06 00:00:00
prion
prion
Code injection
2011-08-15 21:55:00
Code injection
2011-08-15 21:55:00
debiancve
debiancve
CVE-2011-2748
2011-08-15 21:55:00
CVE-2011-2749
2011-08-15 21:55:00
gentoo
gentoo
ISC DHCP: Denial of service
2013-01-09 00:00:00
JSON
Related for SUSE_11_3_DHCP-110830.NASL
nessus17openvas28debian1redhat1securityvulns4ubuntu1oraclelinux1centos1fedora4freebsd1ubuntucve2veracode2cve2checkpoint_advisories1prion2debiancve2gentoo1