Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2021 Tenable Network Security, Inc.SUSE_11_GLIBC-150129.NASL
HistoryFeb 11, 2015 - 12:00 a.m.

SuSE 11.3 Security Update : glibc (SAT Patch Number 10259)

2015-02-1100:00:00
This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.
www.tenable.com
7
JSON

glibc has been updated to fix security issues and bugs :

  • Fix crashes on invalid input in IBM gconv modules.
    (CVE-2014-6040 / CVE-2012-6656, bsc#894553, bsc#894556, GLIBC BZ #17325, GLIBC BZ #14134)

  • Avoid infinite loop in nss_dns getnetbyname.
    (CVE-2014-9402)

  • Don’t touch user-controlled stdio locks in forked child.
    (bsc#864081, GLIBC BZ #12847)

  • Unlock mutex before going back to waiting for PI mutexes. (bsc#891843, GLIBC BZ #14417)

  • Implement x86 cpuid handling of leaf4 for cache information. (bsc#903288, GLIBC BZ #12587)

  • Fix infinite loop in check_pf. (bsc#909053, GLIBC BZ #12926)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(81295);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2012-6656", "CVE-2014-6040", "CVE-2014-9402");

  script_name(english:"SuSE 11.3 Security Update : glibc (SAT Patch Number 10259)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"glibc has been updated to fix security issues and bugs :

  - Fix crashes on invalid input in IBM gconv modules.
    (CVE-2014-6040 / CVE-2012-6656, bsc#894553, bsc#894556,
    GLIBC BZ #17325, GLIBC BZ #14134)

  - Avoid infinite loop in nss_dns getnetbyname.
    (CVE-2014-9402)

  - Don't touch user-controlled stdio locks in forked child.
    (bsc#864081, GLIBC BZ #12847)

  - Unlock mutex before going back to waiting for PI
    mutexes. (bsc#891843, GLIBC BZ #14417)

  - Implement x86 cpuid handling of leaf4 for cache
    information. (bsc#903288, GLIBC BZ #12587)

  - Fix infinite loop in check_pf. (bsc#909053, GLIBC BZ
    #12926)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=864081"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=891843"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=894553"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=894556"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=903288"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=909053"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-6656.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6040.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-9402.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 10259.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-devel-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-html");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-i18ndata");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-info");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-locale");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-locale-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-profile");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:glibc-profile-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:nscd");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2015/01/29");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/02/11");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (isnull(pl) || int(pl) != 3) audit(AUDIT_OS_NOT, "SuSE 11.3");


flag = 0;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"glibc-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"glibc-devel-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"glibc-i18ndata-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"glibc-locale-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"nscd-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i686", reference:"glibc-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i686", reference:"glibc-devel-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"glibc-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"glibc-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"glibc-devel-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"glibc-devel-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"glibc-i18ndata-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"glibc-locale-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"glibc-locale-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"nscd-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"glibc-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"glibc-devel-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"glibc-html-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"glibc-i18ndata-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"glibc-info-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"glibc-locale-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"glibc-profile-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"nscd-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"s390x", reference:"glibc-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"s390x", reference:"glibc-devel-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"s390x", reference:"glibc-locale-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"s390x", reference:"glibc-profile-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"glibc-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"glibc-devel-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"glibc-locale-32bit-2.11.3-17.80.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"glibc-profile-32bit-2.11.3-17.80.3")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc-32bit
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc-devel
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc-devel-32bit
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc-html
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc-i18ndata
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc-info
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc-locale
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc-locale-32bit
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:glibc-profile
Rows per page:
1-10 of 131

Related

ubuntu 2
nessus 51
openvas 38
securityvulns 3
debian 4
osv 3
suse 3
prion 3
f5 6
ubuntucve 3
cve 3
debiancve 3
altlinux 1
ibm 13
archlinux 1
mageia 2
redhat 3
amazon 3
oraclelinux 4
centos 3
fedora 2
gentoo 2
slackware 1
packetstorm 2
oracle 1
ubuntu
ubuntu
GNU C Library vulnerabilities
2014-12-03 00:00:00
GNU C Library vulnerabilities
2015-02-26 00:00:00
nessus
nessus
SUSE SLES11 Security Update : glibc (SUSE-SU-2015:0167-1)
2015-05-20 00:00:00
Mandriva Linux Security Advisory : glibc (MDVSA-2014:175)
2014-09-12 00:00:00
Debian DLA-97-1 : eglibc security update
2015-03-26 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:0164-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0167-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-2432-1)
2022-08-26 00:00:00
securityvulns
securityvulns
GNU glibc buffer overflow
2014-09-01 00:00:00
GNU glibc multiple security vulnerabilities
2015-03-07 00:00:00
[SECURITY] [DSA 3169-1] eglibc security update
2015-03-07 00:00:00
debian
debian
[SECURITY] [DLA 97-1] eglibc security update
2014-11-29 19:00:34
[SECURITY] [DSA 3142-1] eglibc security update
2015-01-27 15:39:21
[SECURITY] [DLA 122-1] eglibc security update
2014-12-22 23:30:25
osv
osv
eglibc - security update
2014-11-29 00:00:00
eglibc - security update
2015-01-27 00:00:00
eglibc - security update
2015-02-23 00:00:00
suse
suse
Security update for glibc (important)
2014-09-15 19:06:41
Security update for glibc (important)
2014-09-15 19:04:18
glibc (important)
2014-09-11 09:04:39
prion
prion
Out-of-bounds
2014-12-05 16:59:00
Design/Logic Flaw
2015-02-24 15:59:00
Out-of-bounds
2014-12-05 16:59:00
f5
f5
SOL16342 - GNU C Library (glibc) vulnerability CVE-2012-6656
2015-04-01 00:00:00
K16342 : GNU C Library (glibc) vulnerability CVE-2012-6656
2015-07-23 00:00:00
K16365 : glibc vulnerability CVE-2014-9402
2015-07-23 00:00:00
ubuntucve
ubuntucve
CVE-2012-6656
2012-12-31 00:00:00
CVE-2014-9402
2015-02-24 00:00:00
CVE-2014-6040
2014-09-02 00:00:00
cve
cve
CVE-2012-6656
2014-12-05 16:59:00
CVE-2014-9402
2015-02-24 15:59:00
CVE-2014-6040
2014-12-05 16:59:00
debiancve
debiancve
CVE-2012-6656
2014-12-05 16:59:00
CVE-2014-9402
2015-02-24 15:59:00
CVE-2014-6040
2014-12-05 16:59:00
altlinux
altlinux
Security fix for the ALT Linux 6 package glibc version 6:2.11.3-alt8.M60P.3
2015-12-23 00:00:00
ibm
ibm
Security Bulletin: GNU C library (glibc) vulnerability affect IBM DataPower Gateway appliances (CVE-2014-6040)
2018-06-15 07:02:32
Security Bulletin: GNU C Library (glibc) Vulnerability Affects Power Hardware Management Console (CVE-2015-0235, CVE-2014-6040, CVE-2014-7817)
2021-09-23 01:31:39
Security Bulletin: PowerKVM is affected by glibc vulnerabilities (Multiple CVEs)
2018-06-18 01:28:19
archlinux
archlinux
glibc: arbitrary code execution
2014-12-18 00:00:00
mageia
mageia
Updated glibc packages fix security vulnerabilities
2015-01-08 15:24:22
Updated glibc packages fix multiple security vulnerabilities
2014-09-15 14:36:30
redhat
redhat
(RHSA-2015:0327) Moderate: glibc security and bug fix update
2015-03-05 00:00:00
(RHSA-2015:0016) Moderate: glibc security and bug fix update
2015-01-07 00:00:00
(RHSA-2018:0805) Moderate: glibc security, bug fix, and enhancement update
2018-04-10 05:01:26
amazon
amazon
Medium: glibc
2015-03-23 08:30:00
Medium: glibc
2015-01-08 12:38:00
Important: glibc
2018-05-10 17:45:00
oraclelinux
oraclelinux
glibc security and bug fix update
2015-01-07 00:00:00
glibc security and bug fix update
2015-03-09 00:00:00
glibc security update
2018-04-18 00:00:00
centos
centos
glibc, nscd security update
2015-01-07 22:45:41
glibc, nscd security update
2015-03-17 13:28:04
glibc, nscd security update
2018-04-26 17:41:43
fedora
fedora
[SECURITY] Fedora 21 Update: glibc-2.20-8.fc21
2015-03-04 10:27:01
[SECURITY] Fedora 20 Update: glibc-2.18-19.fc20
2015-03-04 10:25:31
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2016-02-17 00:00:00
GNU C Library: Multiple vulnerabilities
2015-03-08 00:00:00
slackware
slackware
[slackware-security] glibc
2014-10-24 05:36:04
packetstorm
packetstorm
Cisco Device Hardcoded Credentials / GNU glibc / BusyBox
2019-09-04 00:00:00
WAGO 852 Industrial Managed Switch Series Code Execution / Hardcoded Credentials
2019-06-13 00:00:00
oracle
oracle
Oracle Critical Patch Update - January 2018
2018-01-16 00:00:00
JSON
Related for SUSE_11_GLIBC-150129.NASL
ubuntu2nessus51openvas38securityvulns3debian4osv3suse3prion3f56ubuntucve3cve3debiancve3altlinux1ibm13archlinux1mageia2redhat3amazon3oraclelinux4centos3fedora2gentoo2slackware1packetstorm2oracle1