Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2012-2021 Tenable Network Security, Inc.SUSE_11_GNUTLS-120123.NASL
HistoryJan 26, 2012 - 12:00 a.m.

SuSE 11.1 Security Update : GnuTLS (SAT Patch Number 5684)

2012-01-2600:00:00
This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.
www.tenable.com
8
JSON

This update for GnuTLS provides the following fixes :

  • Fix typo in patch for gnutls-cli that can cause a crash.
    (bnc#659907)

  • Fix Buffer overflow in the gnutls_session_get_data function in lib/gnutls_session.c , when used on a client that performs nonstandard session resumption, allows remote TLS servers to cause a denial of service (application crash) via a large SessionTicket.
    (CVE-2011-4128)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(57696);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2011-4128");

  script_name(english:"SuSE 11.1 Security Update : GnuTLS (SAT Patch Number 5684)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update for GnuTLS provides the following fixes :

  - Fix typo in patch for gnutls-cli that can cause a crash.
    (bnc#659907)

  - Fix Buffer overflow in the gnutls_session_get_data
    function in lib/gnutls_session.c , when used on a client
    that performs nonstandard session resumption, allows
    remote TLS servers to cause a denial of service
    (application crash) via a large SessionTicket.
    (CVE-2011-4128)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=659907"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=729486"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2011-4128.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 5684.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:gnutls");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libgnutls26");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libgnutls26-32bit");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2012/01/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/01/26");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2012-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (isnull(pl) || int(pl) != 1) audit(AUDIT_OS_NOT, "SuSE 11.1");


flag = 0;
if (rpm_check(release:"SLED11", sp:1, cpu:"i586", reference:"gnutls-2.4.1-24.39.33.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"i586", reference:"libgnutls26-2.4.1-24.39.33.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"gnutls-2.4.1-24.39.33.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"libgnutls26-2.4.1-24.39.33.1")) flag++;
if (rpm_check(release:"SLED11", sp:1, cpu:"x86_64", reference:"libgnutls26-32bit-2.4.1-24.39.33.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"gnutls-2.4.1-24.39.33.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, reference:"libgnutls26-2.4.1-24.39.33.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, cpu:"s390x", reference:"libgnutls26-32bit-2.4.1-24.39.33.1")) flag++;
if (rpm_check(release:"SLES11", sp:1, cpu:"x86_64", reference:"libgnutls26-32bit-2.4.1-24.39.33.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:gnutls
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libgnutls26
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libgnutls26-32bit
novellsuse_linux11cpe:/o:novell:suse_linux:11

Related

prion 1
nessus 21
openvas 25
securityvulns 1
ubuntucve 1
veracode 1
freebsd 1
cve 1
fedora 2
ubuntu 1
amazon 1
oraclelinux 2
centos 2
redhat 4
gentoo 1
slackware 1
vmware 2
prion
prion
Buffer overflow
2011-12-08 20:55:00
nessus
nessus
FreeBSD : gnutls -- client session resumption vulnerability (bdec8dc2-0b3b-11e1-b722-001cc0476564)
2011-11-10 00:00:00
openSUSE Security Update : gnutls (openSUSE-SU-2012:0215-1)
2014-06-13 00:00:00
Mandriva Linux Security Advisory : gnutls (MDVSA-2012:045)
2012-04-02 00:00:00
openvas
openvas
Mandriva Update for gnutls MDVSA-2012:045 (gnutls)
2012-08-03 00:00:00
FreeBSD Ports: gnutls
2012-02-13 00:00:00
FreeBSD Ports: gnutls
2012-02-13 00:00:00
securityvulns
securityvulns
GnuTLS / libtasn1 security vulnerabilities
2012-03-26 00:00:00
ubuntucve
ubuntucve
CVE-2011-4128
2011-12-08 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:12:38
freebsd
freebsd
gnutls -- client session resumption vulnerability
2011-11-08 00:00:00
cve
cve
CVE-2011-4128
2011-12-08 20:55:00
fedora
fedora
[SECURITY] Fedora 15 Update: gnutls-2.10.5-3.fc15
2012-04-11 17:00:37
[SECURITY] Fedora 15 Update: gnutls-2.10.5-3.fc15
2012-04-11 03:49:48
ubuntu
ubuntu
GnuTLS vulnerabilities
2012-04-05 00:00:00
amazon
amazon
Important: gnutls
2012-04-05 12:47:00
oraclelinux
oraclelinux
gnutls security update
2012-03-28 00:00:00
gnutls security update
2012-03-27 00:00:00
centos
centos
gnutls security update
2012-03-28 01:12:42
gnutls security update
2012-03-28 00:49:15
redhat
redhat
(RHSA-2012:0429) Important: gnutls security update
2012-03-27 00:00:00
(RHSA-2012:0428) Important: gnutls security update
2012-03-27 00:00:00
(RHSA-2012:0488) Important: rhev-hypervisor5 security and bug fix update
2012-04-17 00:00:00
gentoo
gentoo
GnuTLS: Multiple vulnerabilities
2012-06-23 00:00:00
slackware
slackware
[slackware-security] gnutls
2013-10-15 00:18:30
vmware
vmware
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
JSON
Related for SUSE_11_GNUTLS-120123.NASL
prion1nessus21openvas25securityvulns1ubuntucve1veracode1freebsd1cve1fedora2ubuntu1amazon1oraclelinux2centos2redhat4gentoo1slackware1vmware2