Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2021 Tenable Network Security, Inc.SUSE_11_LIBMYSQL55CLIENT18-150302.NASL
HistoryMar 30, 2015 - 12:00 a.m.

SuSE 11.3 Security Update : MySQL (SAT Patch Number 10387)

2015-03-3000:00:00
This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.
www.tenable.com
18
JSON

The MySQL datebase server was updated to 5.5.42, fixing various bugs and security issues.

More information can be found on :

  • http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-     42.html

  • http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-     41.html

  • http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-     40.html Also various issues with the mysql start script     were fixed. (bsc#868673,bsc#878779)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(82428);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2012-5615", "CVE-2014-0224", "CVE-2014-4274", "CVE-2014-4287", "CVE-2014-6463", "CVE-2014-6464", "CVE-2014-6469", "CVE-2014-6474", "CVE-2014-6478", "CVE-2014-6484", "CVE-2014-6489", "CVE-2014-6491", "CVE-2014-6494", "CVE-2014-6495", "CVE-2014-6496", "CVE-2014-6500", "CVE-2014-6505", "CVE-2014-6507", "CVE-2014-6520", "CVE-2014-6530", "CVE-2014-6551", "CVE-2014-6555", "CVE-2014-6559", "CVE-2014-6564", "CVE-2014-6568", "CVE-2015-0374", "CVE-2015-0381", "CVE-2015-0382", "CVE-2015-0385", "CVE-2015-0391", "CVE-2015-0409", "CVE-2015-0411", "CVE-2015-0432");

  script_name(english:"SuSE 11.3 Security Update : MySQL (SAT Patch Number 10387)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"The MySQL datebase server was updated to 5.5.42, fixing various bugs
and security issues.

More information can be found on :

  -
    http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-
    42.html

  -
    http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-
    41.html

  -
    http://dev.mysql.com/doc/relnotes/mysql/5.5/en/news-5-5-
    40.html Also various issues with the mysql start script
    were fixed. (bsc#868673,bsc#878779)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=857678"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=868673"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=878779"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=901237"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=914058"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2012-5615.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-0224.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-4274.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-4287.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6463.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6464.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6469.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6474.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6478.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6484.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6489.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6491.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6494.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6495.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6496.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6500.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6505.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6507.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6520.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6530.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6551.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6555.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6559.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6564.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-6568.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2015-0374.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2015-0381.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2015-0382.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2015-0385.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2015-0391.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2015-0409.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2015-0411.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2015-0432.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 10387.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:P/I:P/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libmysql55client18");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libmysql55client18-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libmysql55client_r18");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libmysql55client_r18-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libmysqlclient15");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libmysqlclient15-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libmysqlclient_r15");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libmysqlclient_r15-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:mysql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:mysql-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:mysql-tools");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2015/03/02");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/03/30");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (isnull(pl) || int(pl) != 3) audit(AUDIT_OS_NOT, "SuSE 11.3");


flag = 0;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"libmysql55client18-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"libmysql55client_r18-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"libmysqlclient15-5.0.96-0.6.20")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"libmysqlclient_r15-5.0.96-0.6.20")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"mysql-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"mysql-client-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libmysql55client18-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libmysql55client18-32bit-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libmysql55client_r18-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libmysql55client_r18-32bit-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libmysqlclient15-5.0.96-0.6.20")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libmysqlclient15-32bit-5.0.96-0.6.20")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libmysqlclient_r15-5.0.96-0.6.20")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libmysqlclient_r15-32bit-5.0.96-0.6.20")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"mysql-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"mysql-client-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"libmysql55client18-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"libmysql55client_r18-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"libmysqlclient15-5.0.96-0.6.20")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"libmysqlclient_r15-5.0.96-0.6.20")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"mysql-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"mysql-client-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"mysql-tools-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"s390x", reference:"libmysql55client18-32bit-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"s390x", reference:"libmysqlclient15-32bit-5.0.96-0.6.20")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"libmysql55client18-32bit-5.5.42-0.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"libmysqlclient15-32bit-5.0.96-0.6.20")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libmysql55client18
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libmysql55client18-32bit
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libmysql55client_r18
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libmysql55client_r18-32bit
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libmysqlclient15
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libmysqlclient15-32bit
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libmysqlclient_r15
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libmysqlclient_r15-32bit
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:mysql
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:mysql-client
Rows per page:
1-10 of 121

References

Related

openvas 45
suse 3
f5 4
debian 4
osv 2
nessus 43
ubuntu 2
fedora 3
slackware 1
mageia 1
ibm 1
gentoo 2
oraclelinux 4
redhat 9
veracode 5
centos 3
amazon 1
prion 14
ubuntucve 10
cve 11
cvelist 12
debiancve 5
mariadbunix 13
packetstorm 1
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:0620-1)
2021-06-09 00:00:00
SUSE: Security Advisory for MySQL (SUSE-SU-2015:0620-1)
2015-10-13 00:00:00
Ubuntu: Security Advisory (USN-2384-1)
2014-10-16 00:00:00
suse
suse
Security update for MySQL (important)
2015-03-28 01:04:56
Security update for mariadb (important)
2015-04-21 19:05:04
Security update for MariaDB (important)
2015-07-09 17:08:05
f5
f5
SOL15725 - Multiple 5.5.x and 5.6.x MySQL vulnerabilities
2014-10-23 00:00:00
K15725 : Multiple 5.5.x and 5.6.x MySQL vulnerabilities
2014-10-23 00:00:00
SOL16355 - Multiple MySQL vulnerabilities
2015-04-03 00:00:00
debian
debian
[SECURITY] [DSA 3054-1] mysql-5.5 security update
2014-10-20 15:27:13
[SECURITY] [DSA 3054-1] mysql-5.5 security update
2014-10-20 16:19:38
[SECURITY] [DSA 3135-1] mysql-5.5 security update
2015-01-23 16:17:10
osv
osv
mysql-5.5 - security update
2014-10-20 00:00:00
mysql-5.5 - security update
2015-01-23 00:00:00
nessus
nessus
Debian DSA-3054-1 : mysql-5.5 - security update
2014-10-21 00:00:00
Ubuntu 14.04 LTS : MySQL vulnerabilities (USN-2384-1)
2014-10-16 00:00:00
MySQL 5.6.x < 5.6.20 Multiple Vulnerabilities (October 2014 CPU)
2014-09-12 00:00:00
ubuntu
ubuntu
MySQL vulnerabilities
2014-10-15 00:00:00
MySQL vulnerabilities
2015-01-22 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: mariadb-galera-5.5.40-2.fc20
2014-12-03 01:02:24
[SECURITY] Fedora 20 Update: mariadb-5.5.40-1.fc20
2014-12-12 04:25:50
[SECURITY] Fedora 20 Update: community-mysql-5.5.41-1.fc20
2015-02-15 03:25:22
slackware
slackware
[slackware-security] mariadb
2014-11-04 01:25:07
mageia
mageia
Updated mariadb packages fix security vulnerabilities
2014-10-26 00:23:09
ibm
ibm
Security Bulletin: InfoSphere Guardium Database Activity Monitoring vulnerable to multiple Oracle MySQL vulnerabilties
2018-06-16 21:28:16
gentoo
gentoo
MySQL, MariaDB: Multiple vulnerabilities
2014-11-05 00:00:00
MySQL and MariaDB: Multiple vulnerabilities
2015-04-11 00:00:00
oraclelinux
oraclelinux
mariadb security update
2015-02-03 00:00:00
mysql55-mysql security update
2014-11-17 00:00:00
mariadb security update
2014-11-17 00:00:00
redhat
redhat
(RHSA-2015:0118) Moderate: mariadb security update
2015-02-03 00:00:00
(RHSA-2015:0116) Moderate: mysql55-mysql security update
2015-02-03 00:00:00
(RHSA-2015:0117) Moderate: mariadb55-mariadb security update
2015-02-03 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:13:25
Unauthenticated Access
2019-05-02 05:43:32
Denial Of Service (DoS)
2019-01-15 09:03:41
centos
centos
mariadb security update
2015-02-05 16:54:20
mysql55 security update
2014-11-17 17:35:05
mariadb security update
2014-11-17 17:32:07
amazon
amazon
Important: mysql55
2014-10-16 22:14:00
prion
prion
Design/Logic Flaw
2014-10-15 22:55:00
Design/Logic Flaw
2014-10-15 22:55:00
Design/Logic Flaw
2014-10-15 22:55:00
ubuntucve
ubuntucve
CVE-2014-6494
2014-10-15 00:00:00
CVE-2014-6491
2014-10-15 00:00:00
CVE-2014-6496
2014-10-15 00:00:00
cve
cve
CVE-2014-6494
2014-10-15 22:55:00
CVE-2014-6496
2014-10-15 22:55:00
CVE-2014-6500
2014-10-15 22:55:00
cvelist
cvelist
CVE-2014-6496
2014-10-15 22:03:00
CVE-2014-6500
2014-10-15 22:03:00
CVE-2014-6494
2014-10-15 22:03:00
debiancve
debiancve
CVE-2014-6494
2014-10-15 22:55:00
CVE-2014-6496
2014-10-15 22:55:00
CVE-2014-6491
2014-10-15 22:55:00
mariadbunix
mariadbunix
CVE-2014-6494
2014-10-15 22:55:00
CVE-2014-6491
2014-10-15 22:55:00
CVE-2014-6496
2014-10-15 22:55:00
packetstorm
packetstorm
Oracle MySQL User Account Enumeration Utility
2012-12-03 00:00:00
JSON
Related for SUSE_11_LIBMYSQL55CLIENT18-150302.NASL
openvas45suse3f54debian4osv2nessus43ubuntu2fedora3slackware1mageia1ibm1gentoo2oraclelinux4redhat9veracode5centos3amazon1prion14ubuntucve10cve11cvelist12debiancve5mariadbunix13packetstorm1