Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2018-0859-1.NASL
HistoryApr 04, 2018 - 12:00 a.m.

SUSE SLES11 Security Update : krb5 (SUSE-SU-2018:0859-1)

2018-04-0400:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18
JSON

This update for krb5 fixes several issues. This security issue was fixed :

  • CVE-2017-11462: Prevent automatic security context deletion to prevent double-free (bsc#1056995).

  • CVE-2018-5729: NULL pointer dereference in kadmind or DN container check bypass by supplying special crafted data (bsc#1083926).

  • CVE-2018-5730: DN container check bypass by supplying special crafted data (bsc#1083927).

The update package also includes non-security fixes. See advisory for details.

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2018:0859-1.
# The text itself is copyright (C) SUSE.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(108826);
  script_version("1.7");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2017-11462", "CVE-2018-5729", "CVE-2018-5730");

  script_name(english:"SUSE SLES11 Security Update : krb5 (SUSE-SU-2018:0859-1)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SUSE host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update for krb5 fixes several issues. This security issue was
fixed :

  - CVE-2017-11462: Prevent automatic security context
    deletion to prevent double-free (bsc#1056995).

  - CVE-2018-5729: NULL pointer dereference in kadmind or DN
    container check bypass by supplying special crafted data
    (bsc#1083926).

  - CVE-2018-5730: DN container check bypass by supplying
    special crafted data (bsc#1083927).

The update package also includes non-security fixes. See advisory for
details.

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1056995"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1083926"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1083927"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=970696"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2017-11462/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-5729/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-5730/"
  );
  # https://www.suse.com/support/update/announcement/2018/suse-su-20180859-1/
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?45f0c37f"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.

Alternatively you can run the command listed for your product :

SUSE Linux Enterprise Software Development Kit 11-SP4:zypper in -t
patch sdksp4-krb5-13541=1

SUSE Linux Enterprise Server 11-SP4:zypper in -t patch
slessp4-krb5-13541=1

SUSE Linux Enterprise Debuginfo 11-SP4:zypper in -t patch
dbgsp4-krb5-13541=1"
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:krb5");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:krb5-apps-clients");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:krb5-apps-servers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:krb5-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:krb5-server");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/09/13");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/04/03");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/04/04");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES11)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES11", "SUSE " + os_ver);

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);

sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES11" && (! preg(pattern:"^(4)$", string:sp))) audit(AUDIT_OS_NOT, "SLES11 SP4", os_ver + " SP" + sp);


flag = 0;
if (rpm_check(release:"SLES11", sp:"4", cpu:"x86_64", reference:"krb5-32bit-1.6.3-133.49.113.7.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", cpu:"s390x", reference:"krb5-32bit-1.6.3-133.49.113.7.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", reference:"krb5-1.6.3-133.49.113.7.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", reference:"krb5-apps-clients-1.6.3-133.49.113.7.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", reference:"krb5-apps-servers-1.6.3-133.49.113.7.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", reference:"krb5-client-1.6.3-133.49.113.7.1")) flag++;
if (rpm_check(release:"SLES11", sp:"4", reference:"krb5-server-1.6.3-133.49.113.7.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "krb5");
}
VendorProductVersionCPE
novellsuse_linuxkrb5p-cpe:/a:novell:suse_linux:krb5
novellsuse_linuxkrb5-apps-clientsp-cpe:/a:novell:suse_linux:krb5-apps-clients
novellsuse_linuxkrb5-apps-serversp-cpe:/a:novell:suse_linux:krb5-apps-servers
novellsuse_linuxkrb5-clientp-cpe:/a:novell:suse_linux:krb5-client
novellsuse_linuxkrb5-serverp-cpe:/a:novell:suse_linux:krb5-server
novellsuse_linux11cpe:/o:novell:suse_linux:11

Related

ibm 11
openvas 22
nessus 41
suse 1
redhat 1
fedora 5
oraclelinux 1
altlinux 2
amazon 2
centos 1
archlinux 3
debian 2
mageia 2
redhatcve 4
ubuntucve 4
osv 5
debiancve 3
prion 3
cvelist 3
cve 3
veracode 2
photon 11
freebsd 1
avleonov 1
ibm
ibm
Security Bulletin: Vulnerabilities in krb5 affect IBM BladeCenter Advanced Management Module (AMM)
2018-10-11 15:40:01
Security Bulletin: IBM MQ Appliance is affected by krb5 vulnerabilities (CVE-2018-5730 and CVE-2018-5729)
2019-02-20 16:35:01
Security Bulletin: Vulnerability in Kerberos affects Power Hardware Management Console ( CVE-2018-5730 CVE-2018-5729)
2021-09-22 23:05:38
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:0859-1)
2021-06-09 00:00:00
Fedora Update for krb5 FEDORA-2018-f97cb1c9b0
2018-03-02 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:0175-1)
2021-06-09 00:00:00
nessus
nessus
RHEL 5 : krb5 (Unpatched Vulnerability)
2024-05-11 00:00:00
Oracle Linux 7 : krb5 (ELSA-2018-3071)
2018-11-07 00:00:00
RHEL 7 : krb5 (RHSA-2018:3071)
2018-10-31 00:00:00
suse
suse
Security update for krb5 (important)
2019-02-05 00:00:00
redhat
redhat
(RHSA-2018:3071) Low: krb5 security, bug fix, and enhancement update
2018-10-30 04:15:51
fedora
fedora
[SECURITY] Fedora 27 Update: krb5-1.15.2-7.fc27
2018-02-20 17:20:51
[SECURITY] Fedora 26 Update: krb5-1.15.2-7.fc26
2018-03-01 15:58:24
[SECURITY] Fedora 27 Update: krb5-1.15.1-28.fc27
2017-09-30 07:26:52
oraclelinux
oraclelinux
krb5 security, bug fix, and enhancement update
2018-11-05 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package krb5 version 1.16.1-alt1.S1
2018-08-27 00:00:00
Security fix for the ALT Linux 8 package krb5 version 1.14.6-alt1.M80P.1
2018-05-03 00:00:00
amazon
amazon
Low: krb5
2018-12-13 20:20:00
Low: krb5
2019-01-23 18:58:00
centos
centos
krb5, libkadm5 security update
2018-11-15 18:48:14
archlinux
archlinux
[ASA-201806-3] krb5: insufficient validation
2018-06-05 00:00:00
[ASA-201710-9] lib32-krb5: arbitrary code execution
2017-10-05 00:00:00
[ASA-201710-8] krb5: multiple issues
2017-10-05 00:00:00
debian
debian
[SECURITY] [DLA 1643-1] krb5 security update
2019-01-25 22:50:28
[SECURITY] [DLA 2771-1] krb5 security update
2021-09-30 20:09:16
mageia
mageia
Updated krb5 packages fix security vulnerabilities
2018-03-02 00:27:52
Updated krb5 packages fix security vulnerabilities
2017-11-21 00:18:02
redhatcve
redhatcve
CVE-2017-11462
2017-09-06 11:48:38
CVE-2018-5729
2018-03-02 17:18:59
CVE-2018-5730
2018-03-02 17:19:15
ubuntucve
ubuntucve
CVE-2017-11462
2017-09-13 00:00:00
CVE-2018-5729
2018-03-06 00:00:00
CVE-2018-5730
2018-03-06 00:00:00
osv
osv
krb5 - security update
2019-01-25 00:00:00
CVE-2017-11462
2017-09-13 16:29:00
CVE-2018-5729
2018-03-06 20:29:00
debiancve
debiancve
CVE-2017-11462
2017-09-13 16:29:00
CVE-2018-5729
2018-03-06 20:29:00
CVE-2018-5730
2018-03-06 20:29:00
prion
prion
Double free
2017-09-13 16:29:00
Null pointer dereference
2018-03-06 20:29:00
Code injection
2018-03-06 20:29:00
cvelist
cvelist
CVE-2017-11462
2017-09-13 16:00:00
CVE-2018-5729
2018-03-06 20:00:00
CVE-2018-5730
2018-03-06 20:00:00
cve
cve
CVE-2017-11462
2017-09-13 16:29:00
CVE-2018-5729
2018-03-06 20:29:00
CVE-2018-5730
2018-03-06 20:29:00
veracode
veracode
Denial Of Service (DoS) Through Null Pointer Dereference
2018-04-27 08:03:30
Container Check Bypass
2018-05-17 07:29:23
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0177
2018-08-17 00:00:00
Moderate Photon OS Security Update - PHSA-2018-0177
2018-08-17 00:00:00
Moderate Photon OS Security Update - PHSA-2019-0020
2019-06-17 00:00:00
freebsd
freebsd
krb5 -- Multiple vulnerabilities
2017-07-14 00:00:00
avleonov
avleonov
Scanvus now supports Vulners and Vulns.io VM Linux vulnerability detection APIs
2022-12-30 18:03:13
JSON
Related for SUSE_SU-2018-0859-1.NASL
ibm11openvas22nessus41suse1redhat1fedora5oraclelinux1altlinux2amazon2centos1archlinux3debian2mageia2redhatcve4ubuntucve4osv5debiancve3prion3cvelist3cve3veracode2photon11freebsd1avleonov1