Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2016-0665-1.NASL
HistoryMar 09, 2016 - 12:00 a.m.

SUSE SLES12 Security Update : Chromium (SUSE-SU-2016:0665-1)

2016-03-0900:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
17
JSON

Chromium was updated to 49.0.2623.75 to fix the following security issues: (boo#969333)

  • CVE-2016-1630: Same-origin bypass in Blink

  • CVE-2016-1631: Same-origin bypass in Pepper Plugin

  • CVE-2016-1632: Bad cast in Extensions

  • CVE-2016-1633: Use-after-free in Blink

  • CVE-2016-1634: Use-after-free in Blink

  • CVE-2016-1635: Use-after-free in Blink

  • CVE-2016-1636: SRI Validation Bypass

  • CVE-2015-8126: Out-of-bounds access in libpng

  • CVE-2016-1637: Information Leak in Skia

  • CVE-2016-1638: WebAPI Bypass

  • CVE-2016-1639: Use-after-free in WebRTC

  • CVE-2016-1640: Origin confusion in Extensions UI

  • CVE-2016-1641: Use-after-free in Favicon

  • CVE-2016-1642: Various fixes from internal audits, fuzzing and other initiatives

  • Multiple vulnerabilities in V8 fixed at the tip of the 4.9 branch (currently 4.9.385.26)

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2016:0665-1.
# The text itself is copyright (C) SUSE.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(89775);
  script_version("2.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2015-8126", "CVE-2016-1630", "CVE-2016-1631", "CVE-2016-1632", "CVE-2016-1633", "CVE-2016-1634", "CVE-2016-1635", "CVE-2016-1636", "CVE-2016-1637", "CVE-2016-1638", "CVE-2016-1639", "CVE-2016-1640", "CVE-2016-1641", "CVE-2016-1642");

  script_name(english:"SUSE SLES12 Security Update : Chromium (SUSE-SU-2016:0665-1)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote SUSE host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description",
    value:
"Chromium was updated to 49.0.2623.75 to fix the following security
issues: (boo#969333)

  - CVE-2016-1630: Same-origin bypass in Blink

  - CVE-2016-1631: Same-origin bypass in Pepper Plugin

  - CVE-2016-1632: Bad cast in Extensions

  - CVE-2016-1633: Use-after-free in Blink

  - CVE-2016-1634: Use-after-free in Blink

  - CVE-2016-1635: Use-after-free in Blink

  - CVE-2016-1636: SRI Validation Bypass

  - CVE-2015-8126: Out-of-bounds access in libpng

  - CVE-2016-1637: Information Leak in Skia

  - CVE-2016-1638: WebAPI Bypass

  - CVE-2016-1639: Use-after-free in WebRTC

  - CVE-2016-1640: Origin confusion in Extensions UI

  - CVE-2016-1641: Use-after-free in Favicon

  - CVE-2016-1642: Various fixes from internal audits,
    fuzzing and other initiatives

  - Multiple vulnerabilities in V8 fixed at the tip of the
    4.9 branch (currently 4.9.385.26)

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=969333"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2015-8126/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1630/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1631/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1632/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1633/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1634/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1635/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1636/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1637/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1638/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1639/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1640/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1641/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2016-1642/"
  );
  # https://www.suse.com/support/update/announcement/2016/suse-su-20160665-1/
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?ff6e57cc"
  );
  script_set_attribute(
    attribute:"solution",
    value:
"To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product :

SUSE Package Hub for SUSE Linux Enterprise 12 :

zypper in -t patch 4789=1

To bring your system up-to-date, use 'zypper patch'."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:chromedriver");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:chromedriver-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:chromium");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:chromium-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:chromium-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:chromium-desktop-gnome");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:chromium-desktop-kde");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:chromium-ffmpegsumo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:chromium-ffmpegsumo-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");

  script_set_attribute(attribute:"vuln_publication_date", value:"2015/11/13");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/03/05");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/03/09");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES12", "SUSE " + os_ver);

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
if (cpu >!< "x86_64") audit(AUDIT_ARCH_NOT, "x86_64", cpu);


sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(0)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP0", os_ver + " SP" + sp);


flag = 0;
if (rpm_check(release:"SLES12", sp:"0", cpu:"x86_64", reference:"chromedriver-49.0.2623.75-55.1")) flag++;
if (rpm_check(release:"SLES12", sp:"0", cpu:"x86_64", reference:"chromedriver-debuginfo-49.0.2623.75-55.1")) flag++;
if (rpm_check(release:"SLES12", sp:"0", cpu:"x86_64", reference:"chromium-49.0.2623.75-55.1", allowmaj:TRUE)) flag++;
if (rpm_check(release:"SLES12", sp:"0", cpu:"x86_64", reference:"chromium-debuginfo-49.0.2623.75-55.1", allowmaj:TRUE)) flag++;
if (rpm_check(release:"SLES12", sp:"0", cpu:"x86_64", reference:"chromium-debugsource-49.0.2623.75-55.1", allowmaj:TRUE)) flag++;
if (rpm_check(release:"SLES12", sp:"0", cpu:"x86_64", reference:"chromium-desktop-gnome-49.0.2623.75-55.1", allowmaj:TRUE)) flag++;
if (rpm_check(release:"SLES12", sp:"0", cpu:"x86_64", reference:"chromium-desktop-kde-49.0.2623.75-55.1", allowmaj:TRUE)) flag++;
if (rpm_check(release:"SLES12", sp:"0", cpu:"x86_64", reference:"chromium-ffmpegsumo-49.0.2623.75-55.1", allowmaj:TRUE)) flag++;
if (rpm_check(release:"SLES12", sp:"0", cpu:"x86_64", reference:"chromium-ffmpegsumo-debuginfo-49.0.2623.75-55.1", allowmaj:TRUE)) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "Chromium");
}
VendorProductVersionCPE
novellsuse_linuxchromedriverp-cpe:/a:novell:suse_linux:chromedriver
novellsuse_linuxchromedriver-debuginfop-cpe:/a:novell:suse_linux:chromedriver-debuginfo
novellsuse_linuxchromiump-cpe:/a:novell:suse_linux:chromium
novellsuse_linuxchromium-debuginfop-cpe:/a:novell:suse_linux:chromium-debuginfo
novellsuse_linuxchromium-debugsourcep-cpe:/a:novell:suse_linux:chromium-debugsource
novellsuse_linuxchromium-desktop-gnomep-cpe:/a:novell:suse_linux:chromium-desktop-gnome
novellsuse_linuxchromium-desktop-kdep-cpe:/a:novell:suse_linux:chromium-desktop-kde
novellsuse_linuxchromium-ffmpegsumop-cpe:/a:novell:suse_linux:chromium-ffmpegsumo
novellsuse_linuxchromium-ffmpegsumo-debuginfop-cpe:/a:novell:suse_linux:chromium-ffmpegsumo-debuginfo
novellsuse_linux12cpe:/o:novell:suse_linux:12

References

Related

nessus 53
openvas 27
suse 6
debian 4
freebsd 2
chrome 1
redhat 2
archlinux 4
osv 2
kaspersky 1
ubuntu 1
mageia 3
prion 15
cve 15
ubuntucve 15
debiancve 15
seebug 3
fedora 14
veracode 2
amazon 1
f5 4
ibm 5
slackware 2
centos 1
oraclelinux 1
nessus
nessus
openSUSE Security Update : Chromium (openSUSE-2016-316)
2016-03-10 00:00:00
openSUSE Security Update : Chromium (openSUSE-2016-664)
2016-03-23 00:00:00
openSUSE Security Update : Chromium (openSUSE-2016-330)
2016-03-14 00:00:00
openvas
openvas
openSUSE: Security Advisory for Chromium (openSUSE-SU-2016:0729-1)
2016-03-12 00:00:00
openSUSE: Security Advisory for Chromium (openSUSE-SU-2016:0664-1)
2016-03-07 00:00:00
Debian Security Advisory DSA 3507-1 (chromium-browser - security update)
2016-03-05 00:00:00
suse
suse
Security update for Chromium (important)
2016-03-06 17:12:11
Security update for Chromium (important)
2016-03-11 22:11:41
Security update for Chromium (important)
2016-03-08 11:12:27
debian
debian
[SECURITY] [DSA 3507-1] chromium-browser security update
2016-03-05 21:22:56
[SECURITY] [DSA 3507-1] chromium-browser security update
2016-03-05 21:22:56
[SECURITY] [DSA 3399-1] libpng security update
2015-11-18 19:55:41
freebsd
freebsd
chromium -- multiple vulnerabilities
2016-03-02 00:00:00
libpng buffer overflow in png_set_PLTE
2015-11-15 00:00:00
chrome
chrome
Stable Channel Update
2016-03-02 00:00:00
redhat
redhat
(RHSA-2016:0359) Important: chromium-browser security update
2016-03-07 00:00:00
(RHSA-2015:2596) Moderate: libpng security update
2015-12-09 13:26:42
archlinux
archlinux
chromium: multiple issues
2016-03-03 00:00:00
libpng: buffer overflow
2015-12-28 00:00:00
libpng: multiple issues
2015-11-17 00:00:00
osv
osv
chromium-browser - security update
2016-03-05 00:00:00
libpng - security update
2015-11-18 00:00:00
kaspersky
kaspersky
KLA10764 Multiple vulnerabilities in Google Chrome
2016-03-02 00:00:00
ubuntu
ubuntu
Oxide vulnerabilities
2016-03-10 00:00:00
mageia
mageia
Updated chromium-browser-stable packages fix security vulnerability
2016-03-31 23:22:34
Updated libpng/libpng12 packages fix security vulnerability
2015-11-20 01:08:19
Updated libpng packages fix security vulnerabilities
2015-12-17 00:01:04
prion
prion
Design/Logic Flaw
2016-03-06 02:59:00
Design/Logic Flaw
2016-03-06 02:59:00
Design/Logic Flaw
2016-03-06 02:59:00
cve
cve
CVE-2016-1631
2016-03-06 02:59:00
CVE-2016-1638
2016-03-06 02:59:00
CVE-2016-1640
2016-03-06 02:59:00
ubuntucve
ubuntucve
CVE-2016-1638
2016-03-06 00:00:00
CVE-2016-1630
2016-03-05 00:00:00
CVE-2016-1632
2016-03-06 00:00:00
debiancve
debiancve
CVE-2016-1631
2016-03-06 02:59:00
CVE-2016-1640
2016-03-06 02:59:00
CVE-2016-1639
2016-03-06 02:59:00
seebug
seebug
Chrome Universal XSS using Flash message loop (CVE-2016-1631)
2017-04-24 00:00:00
Chrome Universal XSS using widget updates in ContainerNode::parserRemoveChild (CVE-2016-1630)
2017-04-24 00:00:00
Chrome the improper use of Flash message loop leads to the UXSS Vulnerability, CVE-2016-1631)
2016-11-21 00:00:00
fedora
fedora
[SECURITY] Fedora 23 Update: mingw-libpng-1.6.19-1.fc23
2015-11-27 18:24:08
[SECURITY] Fedora 23 Update: mingw-libpng-1.6.21-1.fc23
2016-02-17 04:02:12
[SECURITY] Fedora 22 Update: mingw-libpng-1.6.21-1.fc22
2016-02-17 04:26:13
veracode
veracode
Buffer Overflow
2017-02-08 02:19:46
Denial-of-Service (DoS) Via Embedded Dependency
2017-02-27 07:42:41
amazon
amazon
Medium: libpng
2015-11-23 13:43:00
f5
f5
SOL76930736 - Libpng vulnerability CVE-2015-8126
2015-12-18 00:00:00
K76930736 : Libpng vulnerability CVE-2015-8126
2015-12-19 00:00:00
SOL81903701 - Libpng vulnerability CVE-2015-8472
2016-03-07 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in libpng affect Rational DOORS (CVE-2015-8126, CVE-2015-8472)
2020-05-01 08:19:24
Security Bulletin: Vulnerabilities in libpng affect IBM Integrated Management Module (IMM) (CVE-2015-7981, CVE-2015-8126)
2023-04-14 14:32:25
Security Bulletin: IBM Flex System Manager (FSM) is affected by libpng vulnerabilities (CVE-2015-7981, CVE-2015-8126)
2018-06-18 01:32:48
slackware
slackware
[slackware-security] libpng
2015-12-03 08:20:21
[slackware-security] libpng
2015-12-16 06:25:09
centos
centos
libpng security update
2015-12-09 19:21:36
oraclelinux
oraclelinux
libpng security update
2015-12-09 00:00:00
JSON
Related for SUSE_SU-2016-0665-1.NASL
nessus53openvas27suse6debian4freebsd2chrome1redhat2archlinux4osv2kaspersky1ubuntu1mageia3prion15cve15ubuntucve15debiancve15seebug3fedora14veracode2amazon1f54ibm5slackware2centos1oraclelinux1