Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2019-1733-1.NASL
HistoryJul 05, 2019 - 12:00 a.m.

SUSE SLED12 / SLES12 Security Update : elfutils (SUSE-SU-2019:1733-1)

2019-07-0500:00:00
This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

This update for elfutils fixes the following issues :

Security issues fixed :

CVE-2018-16403: Fixed a heap-based buffer over-read that could have led to Denial of Service (bsc#1107067).

CVE-2016-10254: Fixed a memory allocation failure in alloxate_elf (bsc#1030472).

CVE-2019-7665: NT_PLATFORM core file note should be a zero terminated string (bsc#1125007).

CVE-2016-10255: Fixed a memory allocation failure in libelf_set_rawdata_wrlock (bsc#1030476).

CVE-2019-7150: Added a missing check in dwfl_segment_report_module which could have allowed truncated files to be read (bsc#1123685).

CVE-2018-16062: Fixed a heap-buffer-overflow (bsc#1106390).

CVE-2017-7611: Fixed a heap-based buffer over-read that could have led to Denial of Service (bsc#1033088).

CVE-2017-7613: Fixed denial of service caused by the missing validation of the number of sections and the number of segments in a crafted ELF file (bsc#1033090).

CVE-2017-7607: Fixed a heap-based buffer overflow in handle_gnu_hash (bsc#1033084).

CVE-2017-7608: Fixed a heap-based buffer overflow in ebl_object_note_type_name() (bsc#1033085).

CVE-2017-7610: Fixed a heap-based buffer overflow in check_group (bsc#1033087).

CVE-2018-18521: Fixed multiple divide-by-zero vulnerabilities in function arlib_add_symbols() (bsc#1112723).

CVE-2017-7612: Fixed a denial of service in check_sysv_hash() via a crafted ELF file (bsc#1033089).

CVE-2018-18310: Fixed an invalid address read in dwfl_segment_report_module.c (bsc#1111973).

CVE-2018-18520: Fixed bad handling of ar files inside are files (bsc#1112726).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2019:1733-1.
# The text itself is copyright (C) SUSE.
#

include('compat.inc');

if (description)
{
  script_id(126498);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/05/19");

  script_cve_id(
    "CVE-2016-10254",
    "CVE-2016-10255",
    "CVE-2017-7607",
    "CVE-2017-7608",
    "CVE-2017-7610",
    "CVE-2017-7611",
    "CVE-2017-7612",
    "CVE-2017-7613",
    "CVE-2018-16062",
    "CVE-2018-16403",
    "CVE-2018-18310",
    "CVE-2018-18520",
    "CVE-2018-18521",
    "CVE-2019-7150",
    "CVE-2019-7665"
  );

  script_name(english:"SUSE SLED12 / SLES12 Security Update : elfutils (SUSE-SU-2019:1733-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"This update for elfutils fixes the following issues :

Security issues fixed :

CVE-2018-16403: Fixed a heap-based buffer over-read that could have
led to Denial of Service (bsc#1107067).

CVE-2016-10254: Fixed a memory allocation failure in alloxate_elf
(bsc#1030472).

CVE-2019-7665: NT_PLATFORM core file note should be a zero terminated
string (bsc#1125007).

CVE-2016-10255: Fixed a memory allocation failure in
libelf_set_rawdata_wrlock (bsc#1030476).

CVE-2019-7150: Added a missing check in dwfl_segment_report_module
which could have allowed truncated files to be read (bsc#1123685).

CVE-2018-16062: Fixed a heap-buffer-overflow (bsc#1106390).

CVE-2017-7611: Fixed a heap-based buffer over-read that could have led
to Denial of Service (bsc#1033088).

CVE-2017-7613: Fixed denial of service caused by the missing
validation of the number of sections and the number of segments in a
crafted ELF file (bsc#1033090).

CVE-2017-7607: Fixed a heap-based buffer overflow in handle_gnu_hash
(bsc#1033084).

CVE-2017-7608: Fixed a heap-based buffer overflow in
ebl_object_note_type_name() (bsc#1033085).

CVE-2017-7610: Fixed a heap-based buffer overflow in check_group
(bsc#1033087).

CVE-2018-18521: Fixed multiple divide-by-zero vulnerabilities in
function arlib_add_symbols() (bsc#1112723).

CVE-2017-7612: Fixed a denial of service in check_sysv_hash() via a
crafted ELF file (bsc#1033089).

CVE-2018-18310: Fixed an invalid address read in
dwfl_segment_report_module.c (bsc#1111973).

CVE-2018-18520: Fixed bad handling of ar files inside are files
(bsc#1112726).

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1030472");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1030476");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1033084");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1033085");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1033087");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1033088");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1033089");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1033090");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1106390");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1107067");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1111973");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1112723");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1112726");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1123685");
  script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/show_bug.cgi?id=1125007");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2016-10254/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2016-10255/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7607/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7608/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7610/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7611/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7612/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2017-7613/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-16062/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-16403/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-18310/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-18520/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-18521/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2019-7150/");
  script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2019-7665/");
  # https://www.suse.com/support/update/announcement/2019/suse-su-20191733-1/
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?6af2aca8");
  script_set_attribute(attribute:"solution", value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.

Alternatively you can run the command listed for your product :

SUSE Linux Enterprise Software Development Kit 12-SP4:zypper in -t
patch SUSE-SLE-SDK-12-SP4-2019-1733=1

SUSE Linux Enterprise Software Development Kit 12-SP3:zypper in -t
patch SUSE-SLE-SDK-12-SP3-2019-1733=1

SUSE Linux Enterprise Server 12-SP4:zypper in -t patch
SUSE-SLE-SERVER-12-SP4-2019-1733=1

SUSE Linux Enterprise Server 12-SP3:zypper in -t patch
SUSE-SLE-SERVER-12-SP3-2019-1733=1

SUSE Linux Enterprise Desktop 12-SP4:zypper in -t patch
SUSE-SLE-DESKTOP-12-SP4-2019-1733=1

SUSE Linux Enterprise Desktop 12-SP3:zypper in -t patch
SUSE-SLE-DESKTOP-12-SP3-2019-1733=1

SUSE CaaS Platform 3.0 :

To install this update, use the SUSE CaaS Platform Velum dashboard. It
will inform you if it detects new updates and let you then trigger
updating of the complete cluster in a controlled way.

OpenStack Cloud Magnum Orchestration 7:zypper in -t patch
SUSE-OpenStack-Cloud-Magnum-Orchestration-7-2019-1733=1");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2019-7665");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2018-18520");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/03/23");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/07/03");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/07/05");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:elfutils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:elfutils-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:elfutils-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libasm1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libasm1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libdw1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libdw1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libebl1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libebl1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libelf-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libelf1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libelf1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"SuSE Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2019-2022 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED12|SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED12 / SLES12", "SUSE " + os_ver);

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);

sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(3|4)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP3/4", os_ver + " SP" + sp);
if (os_ver == "SLED12" && (! preg(pattern:"^(3|4)$", string:sp))) audit(AUDIT_OS_NOT, "SLED12 SP3/4", os_ver + " SP" + sp);


flag = 0;
if (rpm_check(release:"SLES12", sp:"4", reference:"elfutils-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"elfutils-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"elfutils-debugsource-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libasm1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libasm1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libasm1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libasm1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libdw1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libdw1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libdw1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libdw1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libebl1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libebl1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libebl1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libebl1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libelf-devel-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libelf1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libelf1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libelf1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"4", reference:"libelf1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"elfutils-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"elfutils-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"elfutils-debugsource-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libasm1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libasm1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libasm1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libasm1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libdw1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libdw1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libdw1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libdw1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libebl1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libebl1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libebl1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libebl1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libelf1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libelf1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libelf1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libelf1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"elfutils-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"elfutils-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"elfutils-debugsource-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libasm1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libasm1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libdw1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libdw1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libdw1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libdw1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libebl1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libebl1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libebl1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libebl1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libelf-devel-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libelf1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libelf1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libelf1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"4", cpu:"x86_64", reference:"libelf1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"elfutils-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"elfutils-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"elfutils-debugsource-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libasm1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libasm1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libdw1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libdw1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libdw1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libdw1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libebl1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libebl1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libebl1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libebl1-debuginfo-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libelf1-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libelf1-32bit-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libelf1-debuginfo-0.158-7.7.2")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libelf1-debuginfo-32bit-0.158-7.7.2")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "elfutils");
}
VendorProductVersionCPE
novellsuse_linuxelfutilsp-cpe:/a:novell:suse_linux:elfutils
novellsuse_linuxelfutils-debuginfop-cpe:/a:novell:suse_linux:elfutils-debuginfo
novellsuse_linuxelfutils-debugsourcep-cpe:/a:novell:suse_linux:elfutils-debugsource
novellsuse_linuxlibasm1p-cpe:/a:novell:suse_linux:libasm1
novellsuse_linuxlibasm1-debuginfop-cpe:/a:novell:suse_linux:libasm1-debuginfo
novellsuse_linuxlibdw1p-cpe:/a:novell:suse_linux:libdw1
novellsuse_linuxlibdw1-debuginfop-cpe:/a:novell:suse_linux:libdw1-debuginfo
novellsuse_linuxlibebl1p-cpe:/a:novell:suse_linux:libebl1
novellsuse_linuxlibebl1-debuginfop-cpe:/a:novell:suse_linux:libebl1-debuginfo
novellsuse_linuxlibelf-develp-cpe:/a:novell:suse_linux:libelf-devel
Rows per page:
1-10 of 131

References

Related

openvas 33
suse 3
nessus 44
osv 16
debian 2
mageia 2
gentoo 1
ubuntu 3
fedora 7
cloudfoundry 1
amazon 1
centos 1
redhat 2
f5 1
archlinux 2
oraclelinux 1
photon 2
veracode 11
debiancve 12
ubuntucve 12
cve 11
prion 13
redhatcve 12
alpinelinux 6
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2019:1733-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for elfutils (openSUSE-SU-2019:1590-1)
2019-06-20 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:1486-1)
2021-06-09 00:00:00
suse
suse
Security update for elfutils (moderate)
2019-06-20 00:00:00
Security update for dwarves and elfutils (moderate)
2022-08-01 00:00:00
Security update for dwarves and elfutils (moderate)
2022-09-01 00:00:00
nessus
nessus
openSUSE Security Update : elfutils (openSUSE-2019-1590)
2019-06-20 00:00:00
Debian DLA-1689-1 : elfutils security update
2019-02-26 00:00:00
SUSE SLED15 / SLES15 Security Update : elfutils (SUSE-SU-2019:1486-1)
2019-06-14 00:00:00
osv
osv
elfutils - security update
2019-02-25 00:00:00
elfutils - security update
2021-10-30 00:00:00
elfutils vulnerabilities
2023-08-30 16:29:23
debian
debian
[SECURITY] [DLA 1689-1] elfutils security update
2019-02-25 21:40:32
[SECURITY] [DLA 2802-1] elfutils security update
2021-10-30 21:53:42
mageia
mageia
Updated elfutils packages fix security vulnerabilities
2018-01-03 13:32:10
Updated elfutils packages fix security vulnerabilities
2019-08-18 15:39:41
gentoo
gentoo
elfutils: Multiple vulnerabilities
2017-10-13 00:00:00
ubuntu
ubuntu
elfutils vulnerabilities
2018-06-05 00:00:00
elfutils vulnerabilities
2019-06-10 00:00:00
elfutils vulnerabilities
2023-08-30 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: elfutils-0.169-1.fc26
2017-05-08 14:27:00
[SECURITY] Fedora 25 Update: elfutils-0.169-1.fc25
2017-05-12 12:06:55
[SECURITY] Fedora 28 Update: elfutils-0.174-5.fc28
2018-11-21 03:14:18
cloudfoundry
cloudfoundry
USN-4012-1: elfutils vulnerabilities | Cloud Foundry
2019-06-18 00:00:00
amazon
amazon
Low: elfutils
2019-10-21 18:01:00
centos
centos
elfutils security update
2019-08-30 02:43:56
redhat
redhat
(RHSA-2019:2197) Low: elfutils security, bug fix, and enhancement update
2019-08-06 08:12:18
(RHSA-2019:3575) Low: elfutils security, bug fix, and enhancement update
2019-11-05 18:02:56
f5
f5
K21426934 : Multiple elfutils vulnerabilities
2022-04-25 00:00:00
archlinux
archlinux
[ASA-201901-3] elfutils: denial of service
2019-01-08 00:00:00
[ASA-201903-9] libelf: denial of service
2019-03-18 00:00:00
oraclelinux
oraclelinux
elfutils security, bug fix, and enhancement update
2019-08-13 00:00:00
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-1.0-0226
2019-04-22 00:00:00
Important Photon OS Security Update - PHSA-2019-0226
2019-04-22 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-09-21 06:39:53
Denial Of Service (DoS)
2020-09-21 06:34:53
Denial Of Service (DoS)
2020-09-21 06:35:15
debiancve
debiancve
CVE-2016-10254
2017-03-23 16:59:00
CVE-2016-10255
2017-03-23 16:59:00
CVE-2018-16062
2018-08-29 03:29:00
ubuntucve
ubuntucve
CVE-2016-10254
2017-03-23 00:00:00
CVE-2016-10255
2017-03-23 00:00:00
CVE-2018-18520
2018-10-19 00:00:00
cve
cve
CVE-2016-10254
2017-03-23 16:59:00
CVE-2016-10255
2017-03-23 16:59:00
CVE-2018-16062
2018-08-29 03:29:00
prion
prion
Input validation
2018-10-19 17:29:00
Design/Logic Flaw
2017-03-23 16:59:00
Design/Logic Flaw
2017-03-23 16:59:00
redhatcve
redhatcve
CVE-2016-10254
2017-08-02 20:50:02
CVE-2016-10255
2017-08-02 20:49:48
CVE-2017-7607
2017-04-12 11:18:10
alpinelinux
alpinelinux
CVE-2018-18520
2018-10-19 17:29:00
CVE-2018-18310
2018-10-15 02:29:00
CVE-2017-7607
2017-04-09 14:59:00
JSON
Related for SUSE_SU-2019-1733-1.NASL
openvas33suse3nessus44osv16debian2mageia2gentoo1ubuntu3fedora7cloudfoundry1amazon1centos1redhat2f51archlinux2oraclelinux1photon2veracode11debiancve12ubuntucve12cve11prion13redhatcve12alpinelinux6