Lucene search
This script is Copyright (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2015-0735-1.NASLHistoryMay 20, 2015 - 12:00 a.m.
SUSE SLED12 / SLES12 Security Update : gnutls (SUSE-SU-2015:0735-1)
2015-05-2000:00:00
This script is Copyright (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
gnutls was updated to fix a certificate algorithm consistency checking issue. (CVE-2015-0294)
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2015:0735-1.
# The text itself is copyright (C) SUSE.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(83715);
script_version("2.10");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2015-0294");
script_bugtraq_id(73162);
script_name(english:"SUSE SLED12 / SLES12 Security Update : gnutls (SUSE-SU-2015:0735-1)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"gnutls was updated to fix a certificate algorithm consistency checking
issue. (CVE-2015-0294)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=919938"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2015-0294/"
);
# https://www.suse.com/support/update/announcement/2015/suse-su-20150735-1.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?bb866e17"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Software Development Kit 12 :
zypper in -t patch SUSE-SLE-SDK-12-2015-168=1
SUSE Linux Enterprise Server 12 :
zypper in -t patch SUSE-SLE-SERVER-12-2015-168=1
SUSE Linux Enterprise Desktop 12 :
zypper in -t patch SUSE-SLE-DESKTOP-12-2015-168=1
To bring your system up-to-date, use 'zypper patch'."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:gnutls");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:gnutls-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:gnutls-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgnutls-openssl27");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgnutls-openssl27-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgnutls28");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgnutls28-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/01/27");
script_set_attribute(attribute:"patch_publication_date", value:"2015/03/30");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/20");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2015-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED12|SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED12 / SLES12", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP0", os_ver + " SP" + sp);
if (os_ver == "SLED12" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLED12 SP0", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES12", sp:"0", reference:"gnutls-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"0", reference:"gnutls-debuginfo-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"0", reference:"gnutls-debugsource-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"0", reference:"libgnutls-openssl27-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"0", reference:"libgnutls-openssl27-debuginfo-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"0", reference:"libgnutls28-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"0", reference:"libgnutls28-debuginfo-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"0", reference:"libgnutls28-32bit-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"0", reference:"libgnutls28-debuginfo-32bit-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"gnutls-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"gnutls-debuginfo-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"gnutls-debugsource-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgnutls28-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgnutls28-32bit-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgnutls28-debuginfo-3.2.15-7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"0", cpu:"x86_64", reference:"libgnutls28-debuginfo-32bit-3.2.15-7.2")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "gnutls");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | gnutls | p-cpe:/a:novell:suse_linux:gnutls |
| novell | suse_linux | gnutls-debuginfo | p-cpe:/a:novell:suse_linux:gnutls-debuginfo |
| novell | suse_linux | gnutls-debugsource | p-cpe:/a:novell:suse_linux:gnutls-debugsource |
| novell | suse_linux | libgnutls-openssl27 | p-cpe:/a:novell:suse_linux:libgnutls-openssl27 |
| novell | suse_linux | libgnutls-openssl27-debuginfo | p-cpe:/a:novell:suse_linux:libgnutls-openssl27-debuginfo |
| novell | suse_linux | libgnutls28 | p-cpe:/a:novell:suse_linux:libgnutls28 |
| novell | suse_linux | libgnutls28-debuginfo | p-cpe:/a:novell:suse_linux:libgnutls28-debuginfo |
| novell | suse_linux | 12 | cpe:/o:novell:suse_linux:12 |
Related
prion
prion
Code injection
2020-01-27 16:15:00
cve
cve
CVE-2015-0294
2020-01-27 16:15:00
debiancve
debiancve
CVE-2015-0294
2020-01-27 16:15:00
nessus
nessus
openSUSE Security Update : gnutls (openSUSE-2015-269)
2015-03-31 00:00:00
F5 Networks BIG-IP : GnuTLS vulnerability (K54022413)
2019-04-09 00:00:00
Debian DSA-3191-1 : gnutls26 - security update
2015-03-17 00:00:00
f5
f5
K54022413 : GnuTLS vulnerability CVE-2015-0294
2019-04-08 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:0735-1)
2021-04-19 00:00:00
Debian Security Advisory DSA 3191-1 (gnutls26 - security update)
2015-03-15 00:00:00
Mageia: Security Advisory (MGASA-2015-0322)
2015-10-15 00:00:00
cvelist
cvelist
CVE-2015-0294
2020-01-27 15:12:11
ubuntucve
ubuntucve
CVE-2015-0294
2015-03-01 00:00:00
securityvulns
securityvulns
GnuTLS security vulnerabilities
2015-03-18 00:00:00
[SECURITY] [DSA 3191-1] gnutls26 security update
2015-03-18 00:00:00
mageia
mageia
Updated gnutls packages fix security vulnerabilities
2015-08-25 21:17:48
debian
debian
[SECURITY] [DSA 3191-1] gnutls26 security update
2015-03-15 21:42:48
[SECURITY] [DSA 3191-1] gnutls26 security update
2015-03-15 21:43:05
[SECURITY] [DLA 180-1] gnutls26 security update
2015-03-25 07:50:43
osv
osv
gnutls26 - security update
2015-03-15 00:00:00
gnutls26 - security update
2015-03-25 00:00:00
veracode
veracode
Improper Signature Validation
2019-05-02 05:41:06
Improper Signature Validation
2019-05-02 05:41:06
amazon
amazon
Medium: gnutls
2015-08-04 11:36:00
redhat
redhat
(RHSA-2015:1457) Moderate: gnutls security and bug fix update
2015-07-22 00:00:00
oraclelinux
oraclelinux
gnutls security and bug fix update
2015-07-28 00:00:00
ubuntu
ubuntu
GnuTLS vulnerabilities
2015-03-23 00:00:00
centos
centos
gnutls security update
2015-07-26 14:11:38
Related for SUSE_SU-2015-0735-1.NASL