The Squid HTTP proxy has been updated to version 3.3.14, fixing the following security issues :
Fixed multiple Denial of Service issues in HTTP Response processing. (CVE-2016-2569, CVE-2016-2570, CVE-2016-2571, CVE-2016-2572, bsc#968392, bsc#968393, bsc#968394, bsc#968395)
CVE-2016-3947: Buffer overrun issue in pinger ICMPv6 processing. (bsc#973782)
CVE-2015-5400: Improper protection of alternate path.
(bsc#938715)
CVE-2015-3455: Squid http proxy configured with client-first SSL bumping did not correctly validate server certificate. (bsc#929493)
CVE-2016-3948: Fixed denial of service in HTTP Response processing (bsc#973783)
CVE-2016-4051: fixes buffer overflow in cachemgr.cgi (bsc#976553)
CVE-2016-4052, CVE-2016-4053, CVE-2016-4054: Fixed multiple issues in ESI processing (bsc#976556)
CVE-2016-4553: Fixed cache poisoning issue in HTTP Request handling (bsc#979009)
CVE-2016-4554: Fixed header smuggling issue in HTTP Request processing (bsc#979010)
Fixed multiple Denial of Service issues in ESI Response processing. (CVE-2016-4555, CVE-2016-4556, bsc#979011, bsc#979008)
The update package also includes non-security fixes. See advisory for details.
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2016:2008-1.
# The text itself is copyright (C) SUSE.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(93279);
script_version("2.10");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2015-3455", "CVE-2015-5400", "CVE-2016-2569", "CVE-2016-2570", "CVE-2016-2571", "CVE-2016-2572", "CVE-2016-3947", "CVE-2016-3948", "CVE-2016-4051", "CVE-2016-4052", "CVE-2016-4053", "CVE-2016-4054", "CVE-2016-4553", "CVE-2016-4554", "CVE-2016-4555", "CVE-2016-4556");
script_bugtraq_id(74438);
script_name(english:"SUSE SLES12 Security Update : squid (SUSE-SU-2016:2008-1)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"The Squid HTTP proxy has been updated to version 3.3.14, fixing the
following security issues :
- Fixed multiple Denial of Service issues in HTTP Response
processing. (CVE-2016-2569, CVE-2016-2570,
CVE-2016-2571, CVE-2016-2572, bsc#968392, bsc#968393,
bsc#968394, bsc#968395)
- CVE-2016-3947: Buffer overrun issue in pinger ICMPv6
processing. (bsc#973782)
- CVE-2015-5400: Improper protection of alternate path.
(bsc#938715)
- CVE-2015-3455: Squid http proxy configured with
client-first SSL bumping did not correctly validate
server certificate. (bsc#929493)
- CVE-2016-3948: Fixed denial of service in HTTP Response
processing (bsc#973783)
- CVE-2016-4051: fixes buffer overflow in cachemgr.cgi
(bsc#976553)
- CVE-2016-4052, CVE-2016-4053, CVE-2016-4054: Fixed
multiple issues in ESI processing (bsc#976556)
- CVE-2016-4553: Fixed cache poisoning issue in HTTP
Request handling (bsc#979009)
- CVE-2016-4554: Fixed header smuggling issue in HTTP
Request processing (bsc#979010)
- Fixed multiple Denial of Service issues in ESI Response
processing. (CVE-2016-4555, CVE-2016-4556, bsc#979011,
bsc#979008)
The update package also includes non-security fixes. See advisory for
details.
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=902197"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=929493"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=938715"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=955783"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=959290"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=963539"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=968392"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=968393"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=968394"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=968395"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=973782"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=973783"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=976553"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=976556"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=979008"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=979009"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=979010"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=979011"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2015-3455/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2015-5400/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-2569/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-2570/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-2571/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-2572/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-3947/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-3948/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4051/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4052/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4053/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4054/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4553/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4554/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4555/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2016-4556/"
);
# https://www.suse.com/support/update/announcement/2016/suse-su-20162008-1/
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?0de7d73e"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Server 12-SP1:zypper in -t patch
SUSE-SLE-SERVER-12-SP1-2016-1184=1
To bring your system up-to-date, use 'zypper patch'."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:squid");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:squid-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:squid-debugsource");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/05/18");
script_set_attribute(attribute:"patch_publication_date", value:"2016/08/09");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/09/02");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES12", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(1)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP1", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES12", sp:"1", reference:"squid-3.3.14-20.2")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"squid-debuginfo-3.3.14-20.2")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"squid-debugsource-3.3.14-20.2")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "squid");
}
Vendor | Product | Version | CPE |
---|---|---|---|
novell | suse_linux | squid | p-cpe:/a:novell:suse_linux:squid |
novell | suse_linux | squid-debuginfo | p-cpe:/a:novell:suse_linux:squid-debuginfo |
novell | suse_linux | squid-debugsource | p-cpe:/a:novell:suse_linux:squid-debugsource |
novell | suse_linux | 12 | cpe:/o:novell:suse_linux:12 |
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3455
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5400
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2569
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2570
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2571
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2572
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3947
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3948
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4051
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4052
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4053
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4054
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4553
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4554
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4555
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-4556
www.nessus.org/u?0de7d73e
bugzilla.suse.com/show_bug.cgi?id=902197
bugzilla.suse.com/show_bug.cgi?id=929493
bugzilla.suse.com/show_bug.cgi?id=938715
bugzilla.suse.com/show_bug.cgi?id=955783
bugzilla.suse.com/show_bug.cgi?id=959290
bugzilla.suse.com/show_bug.cgi?id=963539
bugzilla.suse.com/show_bug.cgi?id=968392
bugzilla.suse.com/show_bug.cgi?id=968393
bugzilla.suse.com/show_bug.cgi?id=968394
bugzilla.suse.com/show_bug.cgi?id=968395
bugzilla.suse.com/show_bug.cgi?id=973782
bugzilla.suse.com/show_bug.cgi?id=973783
bugzilla.suse.com/show_bug.cgi?id=976553
bugzilla.suse.com/show_bug.cgi?id=976556
bugzilla.suse.com/show_bug.cgi?id=979008
bugzilla.suse.com/show_bug.cgi?id=979009
bugzilla.suse.com/show_bug.cgi?id=979010
bugzilla.suse.com/show_bug.cgi?id=979011
www.suse.com/security/cve/CVE-2015-3455/
www.suse.com/security/cve/CVE-2015-5400/
www.suse.com/security/cve/CVE-2016-2569/
www.suse.com/security/cve/CVE-2016-2570/
www.suse.com/security/cve/CVE-2016-2571/
www.suse.com/security/cve/CVE-2016-2572/
www.suse.com/security/cve/CVE-2016-3947/
www.suse.com/security/cve/CVE-2016-3948/
www.suse.com/security/cve/CVE-2016-4051/
www.suse.com/security/cve/CVE-2016-4052/
www.suse.com/security/cve/CVE-2016-4053/
www.suse.com/security/cve/CVE-2016-4054/
www.suse.com/security/cve/CVE-2016-4553/
www.suse.com/security/cve/CVE-2016-4554/
www.suse.com/security/cve/CVE-2016-4555/
www.suse.com/security/cve/CVE-2016-4556/