Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 Tenable Network Security, Inc.SUSE_11_APACHE2-201202-120203.NASL
HistoryFeb 20, 2012 - 12:00 a.m.

SuSE 11.1 Security Update : Apache2 (SAT Patch Number 5760)

2012-02-2000:00:00
This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.
www.tenable.com
26
JSON

This update of apache2 and libapr1 fixes regressions and several security problems.

  • Fixed a scoreboard corruption (shared mem segment) by child causes crash of privileged parent (invalid free()) during shutdown. (CVE-2012-0031)

  • Fixed an issue in error responses that could expose โ€˜httpOnlyโ€™ cookies when no custom ErrorDocument is specified for status code 400โ€™. (CVE-2012-0053)

  • The โ€˜mod_reqtimeoutโ€™ module was backported from Apache 2.2.21 to help mitigate the โ€˜Slowlorisโ€™ Denial of Service attack. You need to enable the โ€˜mod_reqtimeoutโ€™ module in your existing apache configuration to make it effective, e.g. in the APACHE_MODULES line in /etc/sysconfig/apache2. For more detailed information, check also the README file. (CVE-2007-6750)

Also the following bugs have been fixed :

  • Fixed init script action โ€˜check-reloadโ€™ to avoid potential crashes. (bnc#728876)

  • An overlapping memcpy() was replaced by memmove() to make this work with newer glibcs. (bnc#738067 / bnc#741874)

  • libapr1: reset errno to zero to not return previous value despite good status of new operation. (bnc#739783)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(58030);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2007-6750", "CVE-2012-0031", "CVE-2012-0053");

  script_name(english:"SuSE 11.1 Security Update : Apache2 (SAT Patch Number 5760)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update of apache2 and libapr1 fixes regressions and several
security problems.

  - Fixed a scoreboard corruption (shared mem segment) by
    child causes crash of privileged parent (invalid free())
    during shutdown. (CVE-2012-0031)

  - Fixed an issue in error responses that could expose
    'httpOnly' cookies when no custom ErrorDocument is
    specified for status code 400'. (CVE-2012-0053)

  - The 'mod_reqtimeout' module was backported from Apache
    2.2.21 to help mitigate the 'Slowloris' Denial of
    Service attack. You need to enable the 'mod_reqtimeout'
    module in your existing apache configuration to make it
    effective, e.g. in the APACHE_MODULES line in
    /etc/sysconfig/apache2. For more detailed information,
    check also the README file. (CVE-2007-6750)

Also the following bugs have been fixed :

  - Fixed init script action 'check-reload' to avoid
    potential crashes. (bnc#728876)

  - An overlapping memcpy() was replaced by memmove() to
    make this work with newer glibcs. (bnc#738067 /
    bnc#741874)

  - libapr1: reset errno to zero to not return previous
    value despite good status of new operation. (bnc#739783)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=728876"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=738067"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=738855"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=739783"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=741243"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=741874"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=743743"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2007-6750.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-0031.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-0053.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 5760.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:apache2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:apache2-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:apache2-example-pages");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:apache2-prefork");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:apache2-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:apache2-worker");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libapr1");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/02/03");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/02/20");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, "SuSE 11.1");


flag = 0;
if (rpm_check(release:"SLES11", sp:1, reference:"apache2-2.2.12-1.30.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"apache2-doc-2.2.12-1.30.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"apache2-example-pages-2.2.12-1.30.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"apache2-prefork-2.2.12-1.30.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"apache2-utils-2.2.12-1.30.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"apache2-worker-2.2.12-1.30.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"libapr1-1.3.3-11.18.19.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:apache2
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:apache2-doc
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:apache2-example-pages
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:apache2-prefork
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:apache2-utils
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:apache2-worker
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libapr1
novellsuse_linux11cpe:/o:novell:suse_linux:11

Related

openvas 36
nessus 40
suse 3
hackerone 2
ibm 5
prion 3
f5 6
cve 3
debiancve 3
redhat 4
httpd 4
ubuntu 1
zdt 1
seebug 2
ubuntucve 3
veracode 2
fedora 2
oraclelinux 3
checkpoint_advisories 2
securityvulns 7
packetstorm 1
osv 1
altlinux 3
freebsd 1
amazon 1
debian 2
slackware 1
centos 1
kaspersky 1
apple 2
nmap 1
gentoo 2
oracle 3
openvas
openvas
SuSE Update for apache2 openSUSE-SU-2012:0314-1 (apache2)
2012-08-02 00:00:00
openSUSE: Security Advisory for apache2 (openSUSE-SU-2012:0314-1)
2012-08-02 00:00:00
Mandriva Update for apache MDVSA-2012:012 (apache)
2012-02-03 00:00:00
nessus
nessus
openSUSE Security Update : apache2-201202 (openSUSE-SU-2012:0314-1)
2014-06-13 00:00:00
SuSE 10 Security Update : Apache2 (ZYPP Patch Number 7972)
2012-02-29 00:00:00
openSUSE Security Update : apache2 (openSUSE-2012-132)
2014-06-13 00:00:00
suse
suse
Security update for Apache2 (important)
2012-02-18 13:08:15
Security update for Apache2 (important)
2012-03-06 21:08:42
apache2: fixed various security bugs (important)
2012-02-28 18:08:26
hackerone
hackerone
Tor: solving TOR vulnerability, in other to make bruteforce difficult
2017-09-14 14:11:07
U.S. Dept Of Defense: Out-of-date Version (Apache)
2016-11-24 15:09:27
ibm
ibm
Security Bulletin: IBM Security Network Intrusion Prevention System is affected by a vulnerability in Apache (CVE-2007-6750)
2022-02-23 19:48:26
Security Bulletin: Denial of service for accessing data using HTTP protocol on IBM SONAS (CVE-2007-6750)
2018-06-18 00:08:32
Security Bulletin: Denial of service for accessing data using HTTP protocol on IBM Storwize V7000 Unified (CVE-2007-6750)
2018-06-18 00:08:33
prion
prion
Code injection
2011-12-27 18:55:00
Design/Logic Flaw
2012-01-18 20:55:00
Design/Logic Flaw
2012-01-28 04:05:00
f5
f5
K12636 : Slowloris denial-of-service attack vulnerability CVE-2007-6750
2015-04-29 00:00:00
SOL12636 - Slowloris denial-of-service attack vulnerability CVE-2007-6750
2011-02-22 00:00:00
K15889 : Apache HTTP server vulnerabilities CVE-2011-3368, CVE-2011-4317, CVE-2012-0021, CVE-2012-0031, and CVE-2012-0053
2015-08-03 00:00:00
cve
cve
CVE-2007-6750
2011-12-27 18:55:00
CVE-2012-0031
2012-01-18 20:55:00
CVE-2012-0053
2012-01-28 04:05:00
debiancve
debiancve
CVE-2007-6750
2011-12-27 18:55:00
CVE-2012-0031
2012-01-18 20:55:00
CVE-2012-0053
2012-01-28 04:05:00
redhat
redhat
(RHSA-2012:0323) Moderate: httpd security update
2012-02-21 00:00:00
(RHSA-2012:0128) Moderate: httpd security update
2012-02-13 00:00:00
(RHSA-2012:0542) Moderate: httpd security and bug fix update
2012-05-07 00:00:00
httpd
httpd
Apache Httpd < 2.2.22 : scoreboard parent DoS
2011-12-30 00:00:00
Apache Httpd < 2.0.65 : scoreboard parent DoS
2011-12-30 00:00:00
Apache Httpd < 2.0.65 : error responses can expose cookies
2012-01-15 00:00:00
ubuntu
ubuntu
Apache HTTP Server vulnerabilities
2012-02-16 00:00:00
zdt
zdt
Apache 2.2 - Scoreboard Invalid Free On Shutdown Vulnerability
2017-03-29 00:00:00
seebug
seebug
Apache 2.2.x Scoreboardๆœฌๅœฐๅฎ‰ๅ…จ้™ๅˆถ็ป•่ฟ‡ๆผๆดž
2012-01-17 00:00:00
Apache httpOnly Cookie Disclosure(CVE-2012-0053)
2012-02-01 00:00:00
ubuntucve
ubuntucve
CVE-2012-0031
2012-01-18 00:00:00
CVE-2012-0053
2012-01-27 00:00:00
CVE-2007-6750
2011-12-27 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:10:16
Information Disclosure
2020-04-10 01:10:17
fedora
fedora
[SECURITY] Fedora 16 Update: httpd-2.2.22-1.fc16
2012-02-21 01:28:42
[SECURITY] Fedora 15 Update: httpd-2.2.22-1.fc15
2012-03-06 19:30:50
oraclelinux
oraclelinux
httpd security update
2012-02-28 00:00:00
httpd security update
2012-02-13 00:00:00
httpd security, bug fix, and enhancement update
2013-02-22 00:00:00
checkpoint_advisories
checkpoint_advisories
Apache HTTPD Error Code 400 httpOnly Cookie Handling Information Disclosure (CVE-2012-0053)
2012-05-14 00:00:00
Apache HTTPD Error Code 400 httpOnly Cookie Handling Information Disclosure - ver 2 (CVE-2012-0053)
2012-05-10 00:00:00
securityvulns
securityvulns
[security bulletin] HPSBST02848 SSRT101112 rev.1 - HP XP P9000 Command View Advanced Edition Suite Products, Remote Disclosure of Information
2013-04-01 00:00:00
HP XP P9000 information leakage
2013-04-01 00:00:00
Apache multiple security vulnerabilities
2012-02-03 00:00:00
packetstorm
packetstorm
Apache protocol.c Cookie Disclosure
2012-01-31 00:00:00
osv
osv
apache2 - multiple issues
2012-02-06 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 10 package apache2 version 2.2.22-alt1
2012-02-02 00:00:00
Security fix for the ALT Linux 9 package apache2 version 2.2.22-alt1
2012-02-02 00:00:00
Security fix for the ALT Linux 8 package apache2 version 2.2.22-alt1
2012-02-02 00:00:00
freebsd
freebsd
apache -- multiple vulnerabilities
2011-10-05 00:00:00
amazon
amazon
Medium: httpd
2012-02-16 10:48:00
debian
debian
[SECURITY] [DSA 2405-1] apache2 security update
2012-02-06 09:06:39
[SECURITY] [DSA 2405-1] apache2 security update
2012-02-06 09:06:39
slackware
slackware
[slackware-security] httpd
2012-02-10 17:43:57
centos
centos
httpd, mod_ssl security update
2012-02-14 11:13:29
kaspersky
kaspersky
KLA10065 Multiple vulnerabilities in Apache httpd
2013-07-22 00:00:00
apple
apple
About the security content of macOS Server 5.3
2017-03-27 00:00:00
About the security content of macOS Server 5.3 - Apple Support
2017-03-28 04:58:08
nmap
nmap
http-slowloris-check NSE Script
2012-08-24 09:19:30
gentoo
gentoo
Apache HTTP Server: Multiple vulnerabilities
2013-09-23 00:00:00
Apache HTTP Server: Multiple vulnerabilities
2012-06-24 00:00:00
oracle
oracle
Oracle Critical Patch Update - July 2012
2012-07-17 00:00:00
Oracle Critical Patch Update Advisory - January 2015
2015-03-10 00:00:00
Oracle Critical Patch Update - January 2018
2018-01-16 00:00:00
JSON
Related for SUSE_11_APACHE2-201202-120203.NASL
openvas36nessus40suse3hackerone2ibm5prion3f56cve3debiancve3redhat4httpd4ubuntu1zdt1seebug2ubuntucve3veracode2fedora2oraclelinux3checkpoint_advisories2securityvulns7packetstorm1osv1altlinux3freebsd1amazon1debian2slackware1centos1kaspersky1apple2nmap1gentoo2oracle3