Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2018-3920-1.NASL
HistoryNov 29, 2018 - 12:00 a.m.

SUSE SLES11 Security Update : java-1_7_0-ibm (SUSE-SU-2018:3920-1)

2018-11-2900:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
94
JSON

java-1_7_0-ibm is updated to Java 7.0 Service Refresh 10 Fix Pack 35 (bsc#1116574) :

Class Libraries

  • IJ10934 CVE-2018-13785

  • IJ10935 CVE-2018-3136

  • IJ10895 CVE-2018-3139

  • IJ10932 CVE-2018-3149

  • IJ10894 CVE-2018-3180

  • IJ10933 CVE-2018-3214

  • IJ09315 FLOATING POINT EXCEPTION FROM JAVA.TEXT.DECIMALFORMAT. FORMAT

  • IJ09088 INTRODUCING A NEW PROPERTY FOR TURKEY TIMEZONE FOR PRODUCTS NOT IDENTIFYING TRT

  • IJ10800 REMOVE EXPIRING ROOT CERTIFICATES IN IBM JDKâÂ�Â�S CACERTS Java Virtual Machine

  • IJ10931 CVE-2018-3169 JIT Compiler

  • IJ08205 CRASH WHILE COMPILING Security

  • IJ10492 'EC KEYSIZE

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2018:3920-1.
# The text itself is copyright (C) SUSE.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(119281);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2018-13785", "CVE-2018-3136", "CVE-2018-3139", "CVE-2018-3149", "CVE-2018-3169", "CVE-2018-3180", "CVE-2018-3214");

  script_name(english:"SUSE SLES11 Security Update : java-1_7_0-ibm (SUSE-SU-2018:3920-1)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote SUSE host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description",
    value:
"java-1_7_0-ibm is updated to Java 7.0 Service Refresh 10 Fix Pack 35
(bsc#1116574) :

Class Libraries

  - IJ10934 CVE-2018-13785

  - IJ10935 CVE-2018-3136

  - IJ10895 CVE-2018-3139

  - IJ10932 CVE-2018-3149

  - IJ10894 CVE-2018-3180

  - IJ10933 CVE-2018-3214

  - IJ09315 FLOATING POINT EXCEPTION FROM
    JAVA.TEXT.DECIMALFORMAT. FORMAT

  - IJ09088 INTRODUCING A NEW PROPERTY FOR TURKEY TIMEZONE
    FOR PRODUCTS NOT IDENTIFYING TRT

  - IJ10800 REMOVE EXPIRING ROOT CERTIFICATES IN IBM
    JDK’S CACERTS
    Java Virtual Machine

  - IJ10931 CVE-2018-3169 JIT Compiler

  - IJ08205 CRASH WHILE COMPILING Security

  - IJ10492 'EC KEYSIZE

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1116574"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-13785/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-3136/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-3139/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-3149/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-3169/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-3180/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-3214/"
  );
  # https://www.suse.com/support/update/announcement/2018/suse-su-20183920-1/
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?db1fb79c"
  );
  script_set_attribute(
    attribute:"solution",
    value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.

Alternatively you can run the command listed for your product :

SUSE Linux Enterprise Server 11-SP3-LTSS:zypper in -t patch
slessp3-java-1_7_0-ibm-13882=1

SUSE Linux Enterprise Point of Sale 11-SP3:zypper in -t patch
sleposp3-java-1_7_0-ibm-13882=1"
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-3180");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:java-1_7_0-ibm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:java-1_7_0-ibm-alsa");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:java-1_7_0-ibm-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:java-1_7_0-ibm-jdbc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:java-1_7_0-ibm-plugin");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/07/09");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/11/27");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/11/29");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES11)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES11", "SUSE " + os_ver);

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);

sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES11" && (! preg(pattern:"^(3)$", string:sp))) audit(AUDIT_OS_NOT, "SLES11 SP3", os_ver + " SP" + sp);


flag = 0;
if (rpm_check(release:"SLES11", sp:"3", cpu:"x86_64", reference:"java-1_7_0-ibm-alsa-1.7.0_sr10.35-65.31.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", cpu:"x86_64", reference:"java-1_7_0-ibm-plugin-1.7.0_sr10.35-65.31.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"java-1_7_0-ibm-1.7.0_sr10.35-65.31.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"java-1_7_0-ibm-devel-1.7.0_sr10.35-65.31.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", reference:"java-1_7_0-ibm-jdbc-1.7.0_sr10.35-65.31.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", cpu:"i586", reference:"java-1_7_0-ibm-alsa-1.7.0_sr10.35-65.31.1")) flag++;
if (rpm_check(release:"SLES11", sp:"3", cpu:"i586", reference:"java-1_7_0-ibm-plugin-1.7.0_sr10.35-65.31.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "java-1_7_0-ibm");
}
VendorProductVersionCPE
novellsuse_linuxjava-1_7_0-ibmp-cpe:/a:novell:suse_linux:java-1_7_0-ibm
novellsuse_linuxjava-1_7_0-ibm-alsap-cpe:/a:novell:suse_linux:java-1_7_0-ibm-alsa
novellsuse_linuxjava-1_7_0-ibm-develp-cpe:/a:novell:suse_linux:java-1_7_0-ibm-devel
novellsuse_linuxjava-1_7_0-ibm-jdbcp-cpe:/a:novell:suse_linux:java-1_7_0-ibm-jdbc
novellsuse_linuxjava-1_7_0-ibm-pluginp-cpe:/a:novell:suse_linux:java-1_7_0-ibm-plugin
novellsuse_linux11cpe:/o:novell:suse_linux:11

Related

nessus 70
redhat 17
openvas 28
ibm 56
centos 5
amazon 4
oraclelinux 5
aix 1
ubuntu 2
debian 2
osv 2
mageia 1
suse 3
kaspersky 1
cloudfoundry 1
photon 1
nessus
nessus
RHEL 7 : java-1.7.0-oracle (RHSA-2018:3001)
2018-10-25 00:00:00
RHEL 7 : java-1.7.1-ibm (RHSA-2018:3672)
2018-11-27 00:00:00
RHEL 6 : java-1.7.0-oracle (RHSA-2018:3000)
2018-10-25 00:00:00
redhat
redhat
(RHSA-2018:3001) Critical: java-1.7.0-oracle security update
2018-10-24 20:52:25
(RHSA-2018:3000) Critical: java-1.7.0-oracle security update
2018-10-24 20:52:18
(RHSA-2018:3779) Moderate: java-1.7.1-ibm security update
2018-12-05 15:43:39
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:3933-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:3921-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:3920-1)
2021-06-09 00:00:00
ibm
ibm
Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect IBM Tivoli Monitoring
2019-02-07 20:15:01
Security Bulletin: Multiple vulnerabilities in the IBM SDK, Java Technology Edition affect IBM Performance Management products
2019-04-12 07:10:01
Security Bulletin: Multiple vulnerabilities in IBM Java Runtime affect IBM Spectrum LSF Analytics
2018-11-30 05:15:01
centos
centos
java security update
2018-11-20 23:42:18
java security update
2018-11-20 15:18:46
java security update
2018-10-22 14:45:40
amazon
amazon
Critical: java-1.7.0-openjdk
2018-12-06 20:23:00
Critical: java-1.7.0-openjdk
2018-12-06 00:28:00
Critical: java-1.8.0-openjdk
2018-11-05 19:33:00
oraclelinux
oraclelinux
java-1.7.0-openjdk security update
2018-11-07 00:00:00
java-1.7.0-openjdk security update
2018-10-30 00:00:00
java-1.8.0-openjdk security update
2018-10-17 00:00:00
aix
aix
Multiple vulnerabilities in IBM Java SDK affect AIX
2018-12-14 12:06:34
ubuntu
ubuntu
OpenJDK 7 vulnerabilities
2018-11-16 00:00:00
OpenJDK vulnerabilities
2018-10-30 00:00:00
debian
debian
[SECURITY] [DSA 4326-1] openjdk-8
2018-10-25 21:22:38
[SECURITY] [DLA 1590-1] openjdk-7 security update
2018-11-22 22:14:25
osv
osv
openjdk-7 - security update
2018-11-22 00:00:00
openjdk-8 - security update
2018-10-25 00:00:00
mageia
mageia
Updated java-1.8.0-openjdk packages fix security vulnerabilities
2018-11-03 14:55:18
suse
suse
Security update for java-1_8_0-openjdk (important)
2019-01-12 00:00:00
Security update for java-1_7_0-openjdk (important)
2019-01-12 00:00:00
Security update for java-11-openjdk (moderate)
2018-10-19 00:10:37
kaspersky
kaspersky
KLA11340 Multiple vulnerabilities in Oracle Java SE
2018-10-16 00:00:00
cloudfoundry
cloudfoundry
Cloud Foundry products uses vulnerable versions of Java | Cloud Foundry
2019-02-06 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-1.0-0192
2018-10-25 00:00:00
JSON
Related for SUSE_SU-2018-3920-1.NASL
nessus70redhat17openvas28ibm56centos5amazon4oraclelinux5aix1ubuntu2debian2osv2mageia1suse3kaspersky1cloudfoundry1photon1