This update for squid3 fixes the following issues :
Multiple issues in pinger ICMP processing.
(CVE-2014-7141, CVE-2014-7142)
CVE-2016-3947: Buffer overrun issue in pinger ICMPv6 processing. (bsc#973782)
CVE-2016-4554: fix header smuggling issue in HTTP Request processing (bsc#979010)
fix multiple Denial of Service issues in HTTP Response processing. (CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-2572, bsc#968392, bsc#968393, bsc#968394, bsc#968395)
CVE-2016-3948: Fix denial of service in HTTP Response processing (bsc#973783)
CVE-2016-4051: fixes buffer overflow in cachemgr.cgi (bsc#976553)
CVE-2016-4052, CVE-2016-4053, CVE-2016-4054 :
fixes multiple issues in ESI processing (bsc#976556)
CVE-2016-4556: fixes double free vulnerability in Esi.cc (bsc#979008)
CVE-2015-5400: Improper Protection of Alternate Path (bsc#938715)
CVE-2014-6270: fix off-by-one in snmp subsystem (bsc#895773)
Memory leak in squid3 when using external_acl (bsc#976708)
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2016:1996-1.
# The text itself is copyright (C) SUSE.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(93271);
script_version("2.9");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");
script_cve_id("CVE-2011-3205", "CVE-2011-4096", "CVE-2012-5643", "CVE-2013-0188", "CVE-2013-4115", "CVE-2014-0128", "CVE-2014-6270", "CVE-2014-7141", "CVE-2014-7142", "CVE-2015-5400", "CVE-2016-2390", "CVE-2016-2569", "CVE-2016-2570", "CVE-2016-2571", "CVE-2016-2572", "CVE-2016-3947", "CVE-2016-3948", "CVE-2016-4051", "CVE-2016-4052", "CVE-2016-4053", "CVE-2016-4054", "CVE-2016-4553", "CVE-2016-4554", "CVE-2016-4555", "CVE-2016-4556");
script_bugtraq_id(49356, 50449, 56957, 61111, 66112, 69686, 69688, 70022);
script_name(english:"SUSE SLES11 Security Update : squid3 (SUSE-SU-2016:1996-1)");
script_summary(english:"Checks rpm output for the updated package.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"This update for squid3 fixes the following issues :
- Multiple issues in pinger ICMP processing.
(CVE-2014-7141, CVE-2014-7142)
- CVE-2016-3947: Buffer overrun issue in pinger ICMPv6
processing. (bsc#973782)
- CVE-2016-4554: fix header smuggling issue in HTTP
Request processing (bsc#979010)
- fix multiple Denial of Service issues in HTTP Response
processing. (CVE-2016-2569, CVE-2016-2570,
CVE-2016-2571, CVE-2016-2572, bsc#968392, bsc#968393,
bsc#968394, bsc#968395)
- CVE-2016-3948: Fix denial of service in HTTP Response
processing (bsc#973783)
- CVE-2016-4051: fixes buffer overflow in cachemgr.cgi
(bsc#976553)
- CVE-2016-4052, CVE-2016-4053, CVE-2016-4054 :
- fixes multiple issues in ESI processing (bsc#976556)
- CVE-2016-4556: fixes double free vulnerability in Esi.cc
(bsc#979008)
- CVE-2015-5400: Improper Protection of Alternate Path
(bsc#938715)
- CVE-2014-6270: fix off-by-one in snmp subsystem
(bsc#895773)
- Memory leak in squid3 when using external_acl
(bsc#976708)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=895773"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=902197"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=938715"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=963539"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=967011"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=968392"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=968393"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=968394"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=968395"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=973782"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=973783"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=976553"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=976556"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=976708"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=979008"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=979009"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=979010"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=979011"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2011-3205/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2011-4096/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2012-5643/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2013-0188/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2013-4115/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2014-0128/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2014-6270/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2014-7141/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2014-7142/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2015-5400/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-2390/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-2569/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-2570/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-2571/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-2572/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-3947/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-3948/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4051/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4052/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4053/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4054/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4553/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4554/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4555/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4556/"
);
# https://www.suse.com/support/update/announcement/2016/suse-su-20161996-1/
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?f570bb57"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Server 11-SP4:zypper in -t patch
slessp4-squid3-12682=1
SUSE Linux Enterprise Debuginfo 11-SP4:zypper in -t patch
dbgsp4-squid3-12682=1
To bring your system up-to-date, use 'zypper patch'."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:squid3");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");
script_set_attribute(attribute:"vuln_publication_date", value:"2011/09/06");
script_set_attribute(attribute:"patch_publication_date", value:"2016/08/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/09/02");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES11)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES11", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES11" && (! preg(pattern:"^(4)$", string:sp))) audit(AUDIT_OS_NOT, "SLES11 SP4", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES11", sp:"4", reference:"squid3-3.1.23-8.16.27.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "squid3");
}
Vendor | Product | Version | CPE |
---|---|---|---|
novell | suse_linux | squid3 | p-cpe:/a:novell:suse_linux:squid3 |
novell | suse_linux | 11 | cpe:/o:novell:suse_linux:11 |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3205
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-4096
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-5643
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0188
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4115
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0128
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-6270
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7141
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-7142
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5400
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2390
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2569
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2570
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2571
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2572
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3947
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3948
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4051
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4052
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4053
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4054
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4553
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4554
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4555
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4556
www.nessus.org/u?f570bb57
bugzilla.suse.com/show_bug.cgi?id=895773
bugzilla.suse.com/show_bug.cgi?id=902197
bugzilla.suse.com/show_bug.cgi?id=938715
bugzilla.suse.com/show_bug.cgi?id=963539
bugzilla.suse.com/show_bug.cgi?id=967011
bugzilla.suse.com/show_bug.cgi?id=968392
bugzilla.suse.com/show_bug.cgi?id=968393
bugzilla.suse.com/show_bug.cgi?id=968394
bugzilla.suse.com/show_bug.cgi?id=968395
bugzilla.suse.com/show_bug.cgi?id=973782
bugzilla.suse.com/show_bug.cgi?id=973783
bugzilla.suse.com/show_bug.cgi?id=976553
bugzilla.suse.com/show_bug.cgi?id=976556
bugzilla.suse.com/show_bug.cgi?id=976708
bugzilla.suse.com/show_bug.cgi?id=979008
bugzilla.suse.com/show_bug.cgi?id=979009
bugzilla.suse.com/show_bug.cgi?id=979010
bugzilla.suse.com/show_bug.cgi?id=979011
www.suse.com/security/cve/CVE-2011-3205/
www.suse.com/security/cve/CVE-2011-4096/
www.suse.com/security/cve/CVE-2012-5643/
www.suse.com/security/cve/CVE-2013-0188/
www.suse.com/security/cve/CVE-2013-4115/
www.suse.com/security/cve/CVE-2014-0128/
www.suse.com/security/cve/CVE-2014-6270/
www.suse.com/security/cve/CVE-2014-7141/
www.suse.com/security/cve/CVE-2014-7142/
www.suse.com/security/cve/CVE-2015-5400/
www.suse.com/security/cve/CVE-2016-2390/
www.suse.com/security/cve/CVE-2016-2569/
www.suse.com/security/cve/CVE-2016-2570/
www.suse.com/security/cve/CVE-2016-2571/
www.suse.com/security/cve/CVE-2016-2572/
www.suse.com/security/cve/CVE-2016-3947/
www.suse.com/security/cve/CVE-2016-3948/
www.suse.com/security/cve/CVE-2016-4051/
www.suse.com/security/cve/CVE-2016-4052/
www.suse.com/security/cve/CVE-2016-4053/
www.suse.com/security/cve/CVE-2016-4054/
www.suse.com/security/cve/CVE-2016-4553/
www.suse.com/security/cve/CVE-2016-4554/
www.suse.com/security/cve/CVE-2016-4555/
www.suse.com/security/cve/CVE-2016-4556/