Lucene search
This script is Copyright (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2014-1119-1.NASLHistoryMay 20, 2015 - 12:00 a.m.
SUSE SLES10 Security Update : glibc (SUSE-SU-2014:1119-1)
2015-05-2000:00:00
This script is Copyright (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
This glibc update fixes a critical privilege escalation problem and the following security and non security issues :
-
bnc#892073: An off-by-one error leading to a heap-based buffer overflow was found in __gconv_translit_find(). An exploit that targets the problem is publicly available.
(CVE-2014-5119) -
bnc#772242: Replace scope handing with master state
-
bnc#779320: Fix buffer overflow in strcoll (CVE-2012-4412)
-
bnc#818630: Fall back to localhost if no nameserver defined
-
bnc#828235: Fix missing character in IBM-943 charset
-
bnc#828637: Fix use of alloca in gaih_inet
-
bnc#834594: Fix readdir_r with long file names (CVE-2013-4237)
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2014:1119-1.
# The text itself is copyright (C) SUSE.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(83634);
script_version("2.11");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_cve_id("CVE-2012-4412", "CVE-2013-4237", "CVE-2014-5119");
script_bugtraq_id(55462, 61729, 68983, 69738);
script_name(english:"SUSE SLES10 Security Update : glibc (SUSE-SU-2014:1119-1)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"This glibc update fixes a critical privilege escalation problem and
the following security and non security issues :
- bnc#892073: An off-by-one error leading to a heap-based
buffer overflow was found in __gconv_translit_find(). An
exploit that targets the problem is publicly available.
(CVE-2014-5119)
- bnc#772242: Replace scope handing with master state
- bnc#779320: Fix buffer overflow in strcoll
(CVE-2012-4412)
- bnc#818630: Fall back to localhost if no nameserver
defined
- bnc#828235: Fix missing character in IBM-943 charset
- bnc#828637: Fix use of alloca in gaih_inet
- bnc#834594: Fix readdir_r with long file names
(CVE-2013-4237)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=772242"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=779320"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=818630"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=828235"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=828637"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=834594"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=892073"
);
# https://download.suse.com/patch/finder/?keywords=767429925ce018c15cbe14c33d6a0f11
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?2e4ddbfb"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2012-4412/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2013-4237/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2014-5119/"
);
# https://www.suse.com/support/update/announcement/2014/suse-su-20141119-1.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?9acd37d5"
);
script_set_attribute(attribute:"solution", value:"Update the affected glibc packages");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-html");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-i18ndata");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-info");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-locale");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:glibc-profile");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:nscd");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:10");
script_set_attribute(attribute:"vuln_publication_date", value:"2013/10/09");
script_set_attribute(attribute:"patch_publication_date", value:"2014/09/11");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/20");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES10)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES10", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES10" && (! preg(pattern:"^(4)$", string:sp))) audit(AUDIT_OS_NOT, "SLES10 SP4", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES10", sp:"4", cpu:"x86_64", reference:"glibc-32bit-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"x86_64", reference:"glibc-devel-32bit-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"x86_64", reference:"glibc-locale-32bit-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"x86_64", reference:"glibc-profile-32bit-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"s390x", reference:"glibc-32bit-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"s390x", reference:"glibc-devel-32bit-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"s390x", reference:"glibc-locale-32bit-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", cpu:"s390x", reference:"glibc-profile-32bit-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-devel-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-html-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-i18ndata-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-info-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-locale-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"glibc-profile-2.4-31.111.1")) flag++;
if (rpm_check(release:"SLES10", sp:"4", reference:"nscd-2.4-31.111.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "glibc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | glibc | p-cpe:/a:novell:suse_linux:glibc |
| novell | suse_linux | glibc-devel | p-cpe:/a:novell:suse_linux:glibc-devel |
| novell | suse_linux | glibc-html | p-cpe:/a:novell:suse_linux:glibc-html |
| novell | suse_linux | glibc-i18ndata | p-cpe:/a:novell:suse_linux:glibc-i18ndata |
| novell | suse_linux | glibc-info | p-cpe:/a:novell:suse_linux:glibc-info |
| novell | suse_linux | glibc-locale | p-cpe:/a:novell:suse_linux:glibc-locale |
| novell | suse_linux | glibc-profile | p-cpe:/a:novell:suse_linux:glibc-profile |
| novell | suse_linux | nscd | p-cpe:/a:novell:suse_linux:nscd |
| novell | suse_linux | 10 | cpe:/o:novell:suse_linux:10 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4412
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4237
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119
www.nessus.org/u?2e4ddbfb
www.nessus.org/u?9acd37d5
bugzilla.novell.com/show_bug.cgi?id=772242
bugzilla.novell.com/show_bug.cgi?id=779320
bugzilla.novell.com/show_bug.cgi?id=818630
bugzilla.novell.com/show_bug.cgi?id=828235
bugzilla.novell.com/show_bug.cgi?id=828637
bugzilla.novell.com/show_bug.cgi?id=834594
bugzilla.novell.com/show_bug.cgi?id=892073
www.suse.com/security/cve/CVE-2012-4412/
www.suse.com/security/cve/CVE-2013-4237/
www.suse.com/security/cve/CVE-2014-5119/
Related
suse
suse
Security update for glibc (important)
2014-09-12 02:04:23
Security update for glibc (important)
2014-09-12 06:04:16
Security update for glibc (important)
2014-09-15 19:04:18
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2014:1119-1)
2021-06-09 00:00:00
SUSE: Security Advisory for glibc (SUSE-SU-2014:1122-1)
2015-10-16 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:1122-1)
2021-06-09 00:00:00
nessus
nessus
SUSE SLES11 Security Update : glibc (SUSE-SU-2014:1122-1)
2015-05-20 00:00:00
SUSE SLES10 Security Update : glibc (SUSE-SU-2014:1128-1)
2015-05-20 00:00:00
OracleVM 3.3 : glibc (OVMSA-2014-0033)
2014-11-26 00:00:00
fedora
fedora
[SECURITY] Fedora 19 Update: glibc-2.17-14.fc19
2013-08-27 23:29:45
[SECURITY] Fedora 19 Update: glibc-2.17-21.fc19
2014-10-19 13:24:18
[SECURITY] Fedora 19 Update: glibc-2.17-13.fc19
2013-08-22 00:50:09
oraclelinux
oraclelinux
glibc security, bug fix, and enhancement update
2014-10-15 00:00:00
glibc security update
2014-08-29 00:00:00
glibc security and bug fix update
2014-12-18 00:00:00
slackware
slackware
[slackware-security] glibc
2014-10-24 05:36:04
prion
prion
Integer overflow
2013-10-09 22:55:00
Code injection
2014-08-29 16:55:00
Out-of-bounds
2013-10-09 22:55:00
cve
cve
ubuntucve
ubuntucve
debiancve
debiancve
zdt
zdt
glibc Off-by-One NUL Byte gconv_translit_find Exploit
2014-08-27 00:00:00
ibm
ibm
Security Bulletin: IBM Software Delivery and Lifecycle Patterns for the glibc vulnerabilities (CVE-2014-5119)
2018-06-17 04:57:32
amazon
amazon
Important: glibc
2014-09-03 14:44:00
osv
osv
eglibc - security update
2014-08-27 00:00:00
eglibc - security update
2015-11-26 00:00:00
eglibc - security update
2014-09-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:59:59
redhat
redhat
(RHSA-2014:1118) Important: glibc security update
2014-09-02 00:00:00
(RHSA-2014:1391) Moderate: glibc security, bug fix, and enhancement update
2014-10-14 00:00:00
(RHSA-2014:1110) Important: glibc security update
2014-08-29 00:00:00
cloudfoundry
cloudfoundry
CVE-2014-5119 glib_gconv_translit_find() exploit | Cloud Foundry
2014-09-19 00:00:00
seebug
seebug
glibc Off-by-One NUL Byte gconv_translit_find Exploit
2014-09-04 00:00:00
exploitpack
exploitpack
glibc - NUL Byte gconv_translit_find Off-by-One
2014-08-27 00:00:00
debian
debian
[SECURITY] [DSA 3012-1] eglibc security update
2014-08-27 05:51:39
[SECURITY] [DLA 350-1] eglibc security update
2015-11-26 17:49:55
[DLA 43-1] eglibc security update
2014-09-02 18:16:47
altlinux
altlinux
Security fix for the ALT Linux 9 package glibc version 6:2.17-alt6
2014-01-11 00:00:00
Security fix for the ALT Linux 7 package glibc version 6:2.17-alt6
2014-01-11 00:00:00
Security fix for the ALT Linux 6 package glibc version 6:2.11.3-alt8.M60P.3
2015-12-23 00:00:00
ubuntu
ubuntu
GNU C Library vulnerabilities
2013-10-21 00:00:00
GNU C Library vulnerability
2014-08-29 00:00:00
exploitdb
exploitdb
glibc - NUL Byte gconv_translit_find Off-by-One
2014-08-27 00:00:00
centos
centos
glibc, nscd security update
2014-08-29 20:28:37
glibc, nscd security update
2014-10-20 18:08:56
mageia
mageia
Updated glibc packages fix multiple security vulnerabilities
2014-09-15 14:36:30
Updated glibc package fixes security vulnerabilities
2013-11-22 22:44:49
Updated glibc packages fix security vulnerabilities
2015-05-06 18:16:01
securityvulns
securityvulns
[USN-2328-1] GNU C Library vulnerability
2014-09-01 00:00:00
GNU glibc buffer overflow
2014-09-01 00:00:00
glibc security vulnerabilities
2013-12-01 00:00:00
f5
f5
gentoo
gentoo
GNU C Library: Multiple vulnerabilities
2015-03-08 00:00:00
GNU C Library: Multiple vulnerabilities
2016-02-17 00:00:00
packetstorm
packetstorm
Related for SUSE_SU-2014-1119-1.NASL