Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2021 Tenable Network Security, Inc.SUSE_SU-2013-0858-1.NASL
HistoryMay 20, 2015 - 12:00 a.m.

SUSE SLED10 / SLES10 Security Update : glibc (SUSE-SU-2013:0858-1)

2015-05-2000:00:00
This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.
www.tenable.com
17
JSON

This collective update for the GNU C library (glibc) provides the following fixes :

  • Fix stack overflow in getaddrinfo with many results (bnc#813121, CVE-2013-1914)

  • Fix locking in _IO_cleanup (bnc#796982)

  • Fix buffer overflow in glob (bnc#691365)

  • Fix memory leak in execve (bnc#805899)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2013:0858-1.
# The text itself is copyright (C) SUSE.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(83588);
  script_version("2.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2013-1914");
  script_bugtraq_id(58839);

  script_name(english:"SUSE SLED10 / SLES10 Security Update : glibc (SUSE-SU-2013:0858-1)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SUSE host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This collective update for the GNU C library (glibc) provides the
following fixes :

  - Fix stack overflow in getaddrinfo with many results
    (bnc#813121, CVE-2013-1914)

  - Fix locking in _IO_cleanup (bnc#796982)

  - Fix buffer overflow in glob (bnc#691365)

  - Fix memory leak in execve (bnc#805899)

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # http://download.suse.com/patch/finder/?keywords=4ca050db7cee063070fd004b2b257e13
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?2dfbe98d"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2013-1914.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/691365"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/796982"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/805899"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/810637"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/813121"
  );
  # https://www.suse.com/support/update/announcement/2013/suse-su-20130858-1.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?f7edf911"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected glibc packages");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-html");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-i18ndata");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-info");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-locale");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-profile");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:nscd");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:10");

  script_set_attribute(attribute:"patch_publication_date", value:"2013/06/04");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/20");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = eregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! ereg(pattern:"^(SLED10|SLES10)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED10 / SLES10", "SUSE " + os_ver);

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);

sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLED10" && (! ereg(pattern:"^4$", string:sp))) audit(AUDIT_OS_NOT, "SLED10 SP4", os_ver + " SP" + sp);
if (os_ver == "SLES10" && (! ereg(pattern:"^4$", string:sp))) audit(AUDIT_OS_NOT, "SLES10 SP4", os_ver + " SP" + sp);


flag = 0;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"glibc-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"glibc-devel-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"glibc-html-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"glibc-i18ndata-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"glibc-info-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"glibc-locale-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"nscd-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"glibc-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"glibc-devel-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"x86_64", reference:"glibc-locale-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"i586", reference:"glibc-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"i586", reference:"glibc-devel-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"i586", reference:"glibc-html-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"i586", reference:"glibc-i18ndata-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"i586", reference:"glibc-info-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"i586", reference:"glibc-locale-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLED10", sp:"4", cpu:"i586", reference:"nscd-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"x86_64", reference:"glibc-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"x86_64", reference:"glibc-devel-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"x86_64", reference:"glibc-locale-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"x86_64", reference:"glibc-profile-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"s390x", reference:"glibc-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"s390x", reference:"glibc-devel-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"s390x", reference:"glibc-locale-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"s390x", reference:"glibc-profile-32bit-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-devel-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-html-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-i18ndata-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-info-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-locale-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-profile-2.4-31.109.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"nscd-2.4-31.109.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc");
}
VendorProductVersionCPE
novellsuse_linuxglibcp-cpe:/a:novell:suse_linux:glibc
novellsuse_linuxglibc-develp-cpe:/a:novell:suse_linux:glibc-devel
novellsuse_linuxglibc-htmlp-cpe:/a:novell:suse_linux:glibc-html
novellsuse_linuxglibc-i18ndatap-cpe:/a:novell:suse_linux:glibc-i18ndata
novellsuse_linuxglibc-infop-cpe:/a:novell:suse_linux:glibc-info
novellsuse_linuxglibc-localep-cpe:/a:novell:suse_linux:glibc-locale
novellsuse_linuxglibc-profilep-cpe:/a:novell:suse_linux:glibc-profile
novellsuse_linuxnscdp-cpe:/a:novell:suse_linux:nscd
novellsuse_linux10cpe:/o:novell:suse_linux:10

Related

cve 2
ubuntucve 2
prion 2
nessus 32
openvas 30
debiancve 2
securityvulns 3
redhat 3
veracode 1
oraclelinux 2
centos 2
amazon 1
f5 2
altlinux 1
fedora 1
vmware 2
ubuntu 1
packetstorm 1
zdt 1
mageia 1
gentoo 1
debian 1
osv 1
cve
cve
CVE-2013-1914
2013-04-29 22:55:00
CVE-2013-4458
2013-12-12 18:55:00
ubuntucve
ubuntucve
CVE-2013-1914
2013-04-29 00:00:00
CVE-2013-4458
2013-12-12 00:00:00
prion
prion
Stack overflow
2013-04-29 22:55:00
Stack overflow
2013-12-12 18:55:00
nessus
nessus
SuSE 10 Security Update : glibc (ZYPP Patch Number 8579)
2013-06-05 00:00:00
ESXi 5.5 < Build 1980513 glibc Library Multiple Vulnerabilities (remote check)
2014-10-09 00:00:00
CentOS 5 : glibc (CESA-2013:0769)
2013-04-26 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2013:0858-1)
2021-06-09 00:00:00
RedHat Update for glibc RHSA-2013:0769-01
2013-04-25 00:00:00
CentOS Update for glibc CESA-2013:0769 centos5
2013-04-25 00:00:00
debiancve
debiancve
CVE-2013-1914
2013-04-29 22:55:00
CVE-2013-4458
2013-12-12 18:55:00
securityvulns
securityvulns
[ MDVSA-2013:163 ] glibc
2013-05-09 00:00:00
GNU glibc security vulnerabilities
2013-05-09 00:00:00
[ MDVSA-2013:284 ] glibc
2013-12-01 00:00:00
redhat
redhat
(RHSA-2013:0769) Low: glibc security and bug fix update
2013-04-24 00:00:00
(RHSA-2013:1605) Moderate: glibc security, bug fix, and enhancement update
2013-11-21 00:00:00
(RHSA-2013:1527) Important: rhev-hypervisor6 security and bug fix update
2013-11-21 00:00:00
veracode
veracode
Stack-based Buffer Overflow
2019-05-02 04:44:45
oraclelinux
oraclelinux
glibc security and bug fix update
2013-04-24 00:00:00
glibc security, bug fix, and enhancement update
2013-11-25 00:00:00
centos
centos
glibc, nscd security update
2013-04-24 21:58:40
glibc, nscd security update
2013-11-26 13:31:38
amazon
amazon
Medium: glibc
2013-12-17 21:39:00
f5
f5
SOL15640 - GNU C Library (glibc) vulnerabilities CVE-2014-0475, CVE-2014-5119, CVE-2013-4458
2014-10-02 00:00:00
K15640 : GNU C Library (glibc) vulnerabilities CVE-2014-0475, CVE-2014-5119, CVE-2013-4458
2014-10-02 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 6 package glibc version 6:2.11.3-alt8.M60P.3
2015-12-23 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: glibc-2.17-13.fc19
2013-08-22 00:50:09
vmware
vmware
VMware vSphere product updates to third party libraries
2014-09-09 00:00:00
VMware vSphere product updates to third party libraries
2014-09-09 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2013-10-21 00:00:00
packetstorm
packetstorm
Moxa Command Injection / Cross Site Scripting / Vulnerable Software
2021-09-01 00:00:00
zdt
zdt
Moxa Command Injection / Cross Site Scripting Vulnerabilities
2021-09-01 00:00:00
mageia
mageia
Updated glibc package fixes security vulnerabilities
2013-11-22 22:44:49
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2015-03-08 00:00:00
debian
debian
[SECURITY] [DLA 165-1] eglibc security update
2015-03-06 15:39:53
osv
osv
eglibc - security update
2015-03-06 00:00:00
JSON
Related for SUSE_SU-2013-0858-1.NASL
cve2ubuntucve2prion2nessus32openvas30debiancve2securityvulns3redhat3veracode1oraclelinux2centos2amazon1f52altlinux1fedora1vmware2ubuntu1packetstorm1zdt1mageia1gentoo1debian1osv1