Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2008-2021 Tenable Network Security, Inc.SUSE_GNUTLS-5844.NASL
HistoryDec 10, 2008 - 12:00 a.m.

openSUSE 10 Security Update : gnutls (gnutls-5844)

2008-12-1000:00:00
This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.
www.tenable.com
19

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.002

Percentile

56.2%

JSON

gnutls did not properly verify x509 certificate chains. An attacker could exploit that to trick client programs into trusting servers that would normally get rejected (CVE-2008-4989).

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update gnutls-5844.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(35080);
  script_version("1.9");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2008-4989");

  script_name(english:"openSUSE 10 Security Update : gnutls (gnutls-5844)");
  script_summary(english:"Check for the gnutls-5844 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"gnutls did not properly verify x509 certificate chains. An attacker
could exploit that to trick client programs into trusting servers that
would normally get rejected (CVE-2008-4989)."
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected gnutls packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_cwe_id(255);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:gnutls");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:gnutls-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:gnutls-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:gnutls-devel-32bit");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:10.3");

  script_set_attribute(attribute:"patch_publication_date", value:"2008/12/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2008/12/10");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE10\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "10.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE10.3", reference:"gnutls-1.6.1-36.4") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"gnutls-devel-1.6.1-36.4") ) flag++;
if ( rpm_check(release:"SUSE10.3", cpu:"x86_64", reference:"gnutls-32bit-1.6.1-36.4") ) flag++;
if ( rpm_check(release:"SUSE10.3", cpu:"x86_64", reference:"gnutls-devel-32bit-1.6.1-36.4") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "gnutls / gnutls-32bit / gnutls-devel / gnutls-devel-32bit");
}
VendorProductVersionCPE
novellopensusegnutls-devel-32bitp-cpe:/a:novell:opensuse:gnutls-devel-32bit
novellopensusegnutlsp-cpe:/a:novell:opensuse:gnutls
novellopensusegnutls-32bitp-cpe:/a:novell:opensuse:gnutls-32bit
novellopensusegnutls-develp-cpe:/a:novell:opensuse:gnutls-devel
novellopensuse10.3cpe:/o:novell:opensuse:10.3

Related

securityvulns 3
openvas 43
prion 1
nessus 33
seebug 1
nvd 1
cve 1
ubuntu 3
freebsd 1
osv 1
cvelist 1
gentoo 1
slackware 1
fedora 4
altlinux 2
oraclelinux 1
debian 2
centos 1
redhat 1
ubuntucve 1
securityvulns
securityvulns
GnuTLS certificates spoofing
2008-11-14 00:00:00
[ MDVSA-2008:227 ] gnutls
2008-11-14 00:00:00
[USN-809-1] GnuTLS vulnerabilities
2009-08-20 00:00:00
openvas
openvas
SLES10: Security update for GnuTLS
2009-10-13 00:00:00
Fedora Update for gnutls FEDORA-2008-10000
2009-02-16 00:00:00
SLES10: Security update for GnuTLS
2009-10-13 00:00:00
prion
prion
Code injection
2008-11-13 01:00:00
nessus
nessus
openSUSE Security Update : gnutls (gnutls-605)
2009-07-21 00:00:00
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : gnutls12, gnutls13, gnutls26 regression (USN-678-2)
2009-04-23 00:00:00
SuSE 11 Security Update : GnuTLS (SAT Patch Number 632)
2009-09-24 00:00:00
seebug
seebug
GnuTLS X.509证书链ιͺŒθ―ζΌζ΄ž
2008-11-12 00:00:00
nvd
nvd
CVE-2008-4989
2008-11-13 01:00:01
cve
cve
CVE-2008-4989
2008-11-13 01:00:01
ubuntu
ubuntu
GnuTLS regression
2008-12-10 00:00:00
GnuTLS vulnerability
2008-11-26 00:00:00
GnuTLS vulnerabilities
2009-08-19 00:00:00
freebsd
freebsd
gnutls -- X.509 certificate chain validation vulnerability
2008-11-10 00:00:00
osv
osv
gnutls13 - certificate validation
2009-02-10 00:00:00
cvelist
cvelist
CVE-2008-4989
2008-11-13 00:00:00
gentoo
gentoo
GnuTLS: Certificate validation error
2009-01-14 00:00:00
slackware
slackware
[slackware-security] gnutls
2008-11-11 03:18:27
fedora
fedora
[SECURITY] Fedora 8 Update: gnutls-1.6.3-5.fc8
2008-11-12 03:00:29
[SECURITY] Fedora 10 Update: gnutls-2.4.2-3.fc10
2008-11-22 16:51:32
[SECURITY] Fedora 9 Update: gnutls-2.0.4-4.fc9
2008-11-12 02:52:29
altlinux
altlinux
Security fix for the ALT Linux 10 package gnutls30 version 2.6.3-alt1
2008-12-21 00:00:00
Security fix for the ALT Linux 9 package gnutls30 version 2.6.3-alt1
2008-12-21 00:00:00
oraclelinux
oraclelinux
gnutls security update
2008-11-11 00:00:00
debian
debian
[SECURITY] [DSA 1719-1] New gnutls13 packages fix certificate validation
2009-02-10 07:00:19
[SECURITY] [DSA 1719-2] New GNUTLS packages fix regression
2009-02-28 11:44:38
centos
centos
gnutls security update
2008-11-11 21:05:18
redhat
redhat
(RHSA-2008:0982) Moderate: gnutls security update
2008-11-11 00:00:00
ubuntucve
ubuntucve
CVE-2008-4989
2008-11-12 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

CVSS3

5.9

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

EPSS

0.002

Percentile

56.2%

JSON
Related for SUSE_GNUTLS-5844.NASL
securityvulns3openvas43prion1nessus33seebug1nvd1cve1ubuntu3freebsd1osv1cvelist1gentoo1slackware1fedora4altlinux2oraclelinux1debian2centos1redhat1ubuntucve1