Lucene search
This script is Copyright (C) 2015-2022 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2015-1177-1.NASLHistoryJul 06, 2015 - 12:00 a.m.
SUSE SLED11 / SLES11 Security Update : MySQL (SUSE-SU-2015:1177-1) (Logjam)
2015-07-0600:00:00
This script is Copyright (C) 2015-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
29
This update fixes the following security issue :
Logjam Attack: MySQL uses 512 bit dh groups in SSL (bnc#934789)
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2015:1177-1.
# The text itself is copyright (C) SUSE.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(84546);
script_version("2.17");
script_set_attribute(attribute:"plugin_modification_date", value:"2022/12/05");
script_cve_id("CVE-2015-4000");
script_bugtraq_id(74733);
script_xref(name:"CEA-ID", value:"CEA-2021-0004");
script_name(english:"SUSE SLED11 / SLES11 Security Update : MySQL (SUSE-SU-2015:1177-1) (Logjam)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"This update fixes the following security issue :
Logjam Attack: MySQL uses 512 bit dh groups in SSL (bnc#934789)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=934789");
# https://download.suse.com/patch/finder/?keywords=753e69cc9c9eccad4cba2c1ef6809885
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?3413b5cf");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2015-4000/");
# https://www.suse.com/support/update/announcement/2015/suse-su-20151177-1.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?744b8677");
script_set_attribute(attribute:"solution", value:
"To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Software Development Kit 11 SP3 :
zypper in -t patch sdksp3-libmysql55client18=10826
SUSE Linux Enterprise Server 11 SP3 for VMware :
zypper in -t patch slessp3-libmysql55client18=10826
SUSE Linux Enterprise Server 11 SP3 :
zypper in -t patch slessp3-libmysql55client18=10826
SUSE Linux Enterprise Desktop 11 SP3 :
zypper in -t patch sledsp3-libmysql55client18=10826
To bring your system up-to-date, use 'zypper patch'.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"in_the_news", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/05/21");
script_set_attribute(attribute:"patch_publication_date", value:"2015/07/02");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/07/06");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmysql55client18");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmysql55client_r18");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmysqlclient15");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libmysqlclient_r15");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:mysql");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:mysql-client");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:mysql-tools");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2015-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED11|SLES11)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED11 / SLES11", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES11" && (! preg(pattern:"^(3)$", string:sp))) audit(AUDIT_OS_NOT, "SLES11 SP3", os_ver + " SP" + sp);
if (os_ver == "SLED11" && (! preg(pattern:"^(3)$", string:sp))) audit(AUDIT_OS_NOT, "SLED11 SP3", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES11", sp:"3", cpu:"x86_64", reference:"libmysql55client18-32bit-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", cpu:"x86_64", reference:"libmysqlclient15-32bit-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", cpu:"s390x", reference:"libmysql55client18-32bit-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", cpu:"s390x", reference:"libmysqlclient15-32bit-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"libmysql55client18-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"libmysql55client_r18-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"libmysqlclient15-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"libmysqlclient_r15-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"mysql-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"mysql-client-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"mysql-tools-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"libmysql55client18-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"libmysql55client_r18-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"libmysqlclient15-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"libmysqlclient_r15-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"mysql-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"mysql-client-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"libmysql55client18-32bit-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"libmysql55client_r18-32bit-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"libmysqlclient15-32bit-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"x86_64", reference:"libmysqlclient_r15-32bit-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"i586", reference:"libmysql55client18-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"i586", reference:"libmysql55client_r18-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"i586", reference:"libmysqlclient15-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"i586", reference:"libmysqlclient_r15-5.0.96-0.8.8.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"i586", reference:"mysql-5.5.43-0.9.1")) flag++;
if (rpm_check(release:"SLED11", sp:"3", cpu:"i586", reference:"mysql-client-5.5.43-0.9.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "MySQL");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | libmysql55client18 | p-cpe:/a:novell:suse_linux:libmysql55client18 |
| novell | suse_linux | libmysql55client_r18 | p-cpe:/a:novell:suse_linux:libmysql55client_r18 |
| novell | suse_linux | libmysqlclient15 | p-cpe:/a:novell:suse_linux:libmysqlclient15 |
| novell | suse_linux | libmysqlclient_r15 | p-cpe:/a:novell:suse_linux:libmysqlclient_r15 |
| novell | suse_linux | mysql | p-cpe:/a:novell:suse_linux:mysql |
| novell | suse_linux | mysql-client | p-cpe:/a:novell:suse_linux:mysql-client |
| novell | suse_linux | mysql-tools | p-cpe:/a:novell:suse_linux:mysql-tools |
| novell | suse_linux | 11 | cpe:/o:novell:suse_linux:11 |
Related
ibm
ibm
atlassian
atlassian
Update Java version bundled found in the installer to a version >= 1.8u51
2015-07-15 01:43:18
Update Java version bundled found in the installer to a version >= 1.8u51
2015-07-15 01:35:17
Update Java version bundled found in the installer to a version >= 1.8u51
2015-07-15 01:35:17
openvas
openvas
CentOS Update for nss-util CESA-2015:1185 centos7
2015-06-26 00:00:00
CentOS Update for openssl CESA-2015:1072 centos7
2015-06-09 00:00:00
Fedora Update for nss FEDORA-2015-9130
2015-06-09 00:00:00
nessus
nessus
Fedora 21 : nss-3.19.1-1.0.fc21 / nss-softokn-3.19.1-1.0.fc21 / nss-util-3.19.1-1.0.fc21 (2015-9130) (Logjam)
2015-06-02 00:00:00
OracleVM 3.3 : openssl (OVMSA-2015-0065) (Logjam)
2015-06-05 00:00:00
Oracle Linux 6 / 7 : openssl (ELSA-2015-1072) (Logjam)
2015-06-05 00:00:00
osv
osv
nss - security update
2016-06-07 00:00:00
veracode
veracode
Man-in-the-Middle (MitM)
2019-01-15 09:06:07
centos
centos
openssl security update
2015-06-04 19:47:16
mageia
mageia
Updated filezilla package fixes security vulnerability
2015-07-05 20:22:03
suse
suse
Security update for MySQL (important)
2015-07-10 19:08:04
Security update for MySQL (important)
2015-07-02 21:05:19
citrix
citrix
CVE-2015-4000 - Citrix Security Advisory for DHE_EXPORT TLS Vulnerability
2015-05-22 04:00:00
debian
debian
[SECURITY] [DLA 507-1] nss security update
2016-06-07 10:00:27
fedora
fedora
[SECURITY] Fedora 21 Update: nss-util-3.19.1-1.0.fc21
2015-06-01 17:06:27
[SECURITY] Fedora 22 Update: nss-3.19.1-1.0.fc22
2015-06-02 15:17:04
[SECURITY] Fedora 21 Update: nss-softokn-3.19.1-1.0.fc21
2015-06-01 17:06:26
fortinet
fortinet
CVE-2015-4000 "Logjam" attack
2015-05-20 00:00:00
aix
aix
debiancve
debiancve
CVE-2015-4000
2015-05-21 00:59:00
cisa
cisa
OpenSSL Patches Multiple Vulnerabilities
2015-06-12 00:00:00
f5
f5
SOL16674 - TLS vulnerability CVE-2015-4000
2015-05-21 00:00:00
K16674 : TLS vulnerability CVE-2015-4000
2015-09-16 00:00:00
oraclelinux
oraclelinux
openssl security update
2015-06-04 00:00:00
nss security update
2015-06-25 00:00:00
prion
prion
Code injection
2015-05-21 00:59:00
mozilla
mozilla
NSS accepts export-length DHE keys with regular DHE cipher suites — Mozilla
2015-07-02 00:00:00
amazon
amazon
Medium: nss, nss-util
2015-07-22 10:00:00
threatpost
threatpost
OpenSSL Patches Five Flaws, Adds Protection Against Logjam Attack
2015-06-11 13:48:27
Related for SUSE_SU-2015-1177-1.NASL