Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 Tenable Network Security, Inc.SUSE_11_QUAGGA-130822.NASL
HistorySep 20, 2013 - 12:00 a.m.

SuSE 11.2 / 11.3 Security Update : quagga (SAT Patch Numbers 8234 / 8235)

2013-09-2000:00:00
This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.
www.tenable.com
9
JSON

This update of quagga fixes two security issues :

  • specially crafted OSPF packets could have caused the routing table to be erased. (bnc#822572).
    (CVE-2013-0149)

  • local network stack overflow (bnc#828117).
    (CVE-2013-2236)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(70020);
  script_version("1.9");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2013-0149", "CVE-2013-2236");

  script_name(english:"SuSE 11.2 / 11.3 Security Update : quagga (SAT Patch Numbers 8234 / 8235)");
  script_summary(english:"Checks rpm output for the updated package");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update of quagga fixes two security issues :

  - specially crafted OSPF packets could have caused the
    routing table to be erased. (bnc#822572).
    (CVE-2013-0149)

  - local network stack overflow (bnc#828117).
    (CVE-2013-2236)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=822572"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=828117"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2013-0149.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2013-2236.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Apply SAT patch number 8234 / 8235 as appropriate."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:quagga");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2013/08/22");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/09/20");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);


flag = 0;
if (rpm_check(release:"SLES11", sp:2, reference:"quagga-0.99.15-0.14.1")) flag++;
if (rpm_check(release:"SLES11", sp:3, reference:"quagga-0.99.15-0.14.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:quagga
novellsuse_linux11cpe:/o:novell:suse_linux:11

Related

prion 13
nessus 18
ubuntucve 1
mageia 1
veracode 1
cve 13
debiancve 2
cert 1
checkpoint_advisories 1
openvas 6
securityvulns 4
cisco 1
ibm 2
ubuntu 1
osv 1
debian 1
checkpoint_security 1
gentoo 1
centos 1
redhat 1
oraclelinux 1
oracle 1
prion
prion
Stack overflow
2013-10-24 03:48:00
Design/Logic Flaw
2013-08-05 13:22:00
Design/Logic Flaw
2014-01-23 17:55:00
nessus
nessus
Mandriva Linux Security Advisory : quagga (MDVSA-2013:254)
2013-10-20 00:00:00
Quagga < 0.99.22.2 OSPF API Buffer Overflow
2013-11-05 00:00:00
Oracle Solaris Third-Party Patch Update : quagga (cve_2013_2236_buffer_errors)
2015-01-19 00:00:00
ubuntucve
ubuntucve
CVE-2013-2236
2013-10-23 00:00:00
mageia
mageia
Updated quagga packages fix CVE-2013-2236
2013-10-17 23:40:12
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:15:58
cve
cve
CVE-2013-2236
2013-10-24 03:48:00
CVE-2013-0149
2013-08-05 13:22:00
CVE-2013-7308
2014-01-23 17:55:00
debiancve
debiancve
CVE-2013-2236
2013-10-24 03:48:00
CVE-2013-0149
2013-08-05 13:22:00
cert
cert
Open Shortest Path First (OSPF) Protocol does not specify unique LSA lookup identifiers
2013-08-02 00:00:00
checkpoint_advisories
checkpoint_advisories
Cisco OSPF LSA Manipulation Denial of Service (CVE-2013-0149)
2013-08-13 00:00:00
openvas
openvas
Junos OSPF Protocol Vulnerability
2013-11-29 00:00:00
Debian Security Advisory DSA 2803-1 (quagga - several vulnerabilities)
2013-11-26 00:00:00
Debian Security Advisory DSA 2803-1 (quagga - several vulnerabilities)
2013-11-26 00:00:00
securityvulns
securityvulns
Cisco IOS / ASA / FWSM / NX-OS / StarOS OSPF protocol vulnerability
2013-08-12 00:00:00
quagga security vulnerabilities
2013-12-01 00:00:00
[SECURITY] [DSA 2803-1] quagga security update
2013-12-01 00:00:00
cisco
cisco
OSPF LSA Manipulation Vulnerability in Multiple Cisco Products
2013-08-01 16:00:00
ibm
ibm
Security Bulletin: IBM PureData System For Operational Analytics A1791 is affected by an OSPF vulnerability (CVE-2013-0149)
2022-09-25 23:13:40
Security Bulletin: Vulnerability in OSPFv2 Routing Protocol Used in IBM i Operating System (CVE-2013-0149 and CVE-2013-5385)
2019-12-18 14:26:38
ubuntu
ubuntu
Quagga vulnerabilities
2016-03-24 00:00:00
osv
osv
quagga - several
2013-11-26 00:00:00
debian
debian
[SECURITY] [DSA 2803-1] quagga security update
2013-11-26 16:13:10
checkpoint_security
checkpoint_security
Check Point response to OSPF LSA spoofing vulnerability (CVE-2013-0149, CVE-2013-7311)
2013-08-20 21:00:00
gentoo
gentoo
Quagga: Multiple vulnerabilities
2013-10-10 00:00:00
centos
centos
quagga security update
2017-03-24 15:42:29
redhat
redhat
(RHSA-2017:0794) Moderate: quagga security and bug fix update
2017-03-21 06:17:51
oraclelinux
oraclelinux
quagga security and bug fix update
2017-03-27 00:00:00
oracle
oracle
Oracle Critical Patch Update - October 2013
2013-10-15 00:00:00
JSON
Related for SUSE_11_QUAGGA-130822.NASL
prion13nessus18ubuntucve1mageia1veracode1cve13debiancve2cert1checkpoint_advisories1openvas6securityvulns4cisco1ibm2ubuntu1osv1debian1checkpoint_security1gentoo1centos1redhat1oraclelinux1oracle1