Lucene search
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2017-1608-1.NASLHistoryJun 20, 2017 - 12:00 a.m.
SUSE SLED12 / SLES12 Security Update : libgcrypt (SUSE-SU-2017:1608-1)
2017-06-2000:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
This update for libgcrypt fixes the following issues :
-
CVE-2017-9526: Store the session key in secure memory to ensure that constant time point operations are used in the MPI library. (bsc#1042326)
-
Don’t require secure memory for the fips selftests, this prevents the ‘Oops, secure memory pool already initialized’ warning. (bsc#931932)
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2017:1608-1.
# The text itself is copyright (C) SUSE.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(100910);
script_version("3.9");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id("CVE-2017-9526");
script_name(english:"SUSE SLED12 / SLES12 Security Update : libgcrypt (SUSE-SU-2017:1608-1)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"This update for libgcrypt fixes the following issues :
- CVE-2017-9526: Store the session key in secure memory to
ensure that constant time point operations are used in
the MPI library. (bsc#1042326)
- Don't require secure memory for the fips selftests, this
prevents the 'Oops, secure memory pool already
initialized' warning. (bsc#931932)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1042326"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=931932"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2017-9526/"
);
# https://www.suse.com/support/update/announcement/2017/suse-su-20171608-1/
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?7633ecb0"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use YaST online_update.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Software Development Kit 12-SP2:zypper in -t
patch SUSE-SLE-SDK-12-SP2-2017-985=1
SUSE Linux Enterprise Server for Raspberry Pi 12-SP2:zypper in -t
patch SUSE-SLE-RPI-12-SP2-2017-985=1
SUSE Linux Enterprise Server 12-SP2:zypper in -t patch
SUSE-SLE-SERVER-12-SP2-2017-985=1
SUSE Linux Enterprise Desktop 12-SP2:zypper in -t patch
SUSE-SLE-DESKTOP-12-SP2-2017-985=1
OpenStack Cloud Magnum Orchestration 7:zypper in -t patch
SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2017-985=1
To bring your system up-to-date, use 'zypper patch'."
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt20");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt20-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libgcrypt20-hmac");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
script_set_attribute(attribute:"vuln_publication_date", value:"2017/06/11");
script_set_attribute(attribute:"patch_publication_date", value:"2017/06/19");
script_set_attribute(attribute:"plugin_publication_date", value:"2017/06/20");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED12|SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED12 / SLES12", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
if (cpu >!< "x86_64") audit(AUDIT_ARCH_NOT, "x86_64", cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(2)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP2", os_ver + " SP" + sp);
if (os_ver == "SLED12" && (! preg(pattern:"^(2)$", string:sp))) audit(AUDIT_OS_NOT, "SLED12 SP2", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES12", sp:"2", cpu:"x86_64", reference:"libgcrypt-debugsource-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-debuginfo-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-hmac-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-32bit-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-debuginfo-32bit-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLES12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-hmac-32bit-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLED12", sp:"2", cpu:"x86_64", reference:"libgcrypt-debugsource-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLED12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLED12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-32bit-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLED12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-debuginfo-1.6.1-16.39.1")) flag++;
if (rpm_check(release:"SLED12", sp:"2", cpu:"x86_64", reference:"libgcrypt20-debuginfo-32bit-1.6.1-16.39.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "libgcrypt");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | libgcrypt-debugsource | p-cpe:/a:novell:suse_linux:libgcrypt-debugsource |
| novell | suse_linux | libgcrypt20 | p-cpe:/a:novell:suse_linux:libgcrypt20 |
| novell | suse_linux | libgcrypt20-debuginfo | p-cpe:/a:novell:suse_linux:libgcrypt20-debuginfo |
| novell | suse_linux | libgcrypt20-hmac | p-cpe:/a:novell:suse_linux:libgcrypt20-hmac |
| novell | suse_linux | 12 | cpe:/o:novell:suse_linux:12 |
Related
redhatcve
redhatcve
CVE-2017-9526
2017-06-13 15:48:06
veracode
veracode
Information Disclosure
2020-12-06 03:37:57
osv
osv
CVE-2017-9526
2017-06-11 02:29:00
libgcrypt20 - security update
2017-06-14 00:00:00
cve
cve
CVE-2017-9526
2017-06-11 02:29:00
prion
prion
Code injection
2017-06-11 02:29:00
nessus
nessus
Photon OS 1.0: Libgcrypt PHSA-2017-0040
2019-02-07 00:00:00
Debian DSA-3880-1 : libgcrypt20 - security update
2017-06-14 00:00:00
openSUSE Security Update : libgcrypt (openSUSE-2017-743)
2017-06-30 00:00:00
debian
debian
[SECURITY] [DSA 3880-1] libgcrypt20 security update
2017-06-14 04:58:26
[SECURITY] [DSA 3880-1] libgcrypt20 security update
2017-06-14 04:58:26
openvas
openvas
Debian Security Advisory DSA 3880-1 (libgcrypt20 - security update)
2017-06-14 00:00:00
Debian Security Advisory DSA 3880-1 (libgcrypt20 - security update)
2017-06-14 00:00:00
Ubuntu Update for libgcrypt20 USN-3347-1
2017-07-14 00:00:00
ubuntucve
ubuntucve
CVE-2017-9526
2017-06-10 00:00:00
debiancve
debiancve
CVE-2017-9526
2017-06-11 02:29:00
ubuntu
ubuntu
Libgcrypt vulnerabilities
2017-07-03 00:00:00
cloudfoundry
cloudfoundry
USN-3347-1: Libgcrypt vulnerabilities | Cloud Foundry
2017-08-04 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1870
2021-07-02 17:14:28
photon
photon
Critical Photon OS Security Update - PHSA-2017-0080
2017-10-24 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2019
2019-01-15 00:00:00
CPU July 2018
2018-07-17 00:00:00
Related for SUSE_SU-2017-1608-1.NASL