Lucene search
This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2020-1915-1.NASLHistoryJul 16, 2020 - 12:00 a.m.
SUSE SLES15 Security Update : slirp4netns (SUSE-SU-2020:1915-1)
2020-07-1600:00:00
This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21
This update for slirp4netns fixes the following issues :
Update to 0.4.7 (bsc#1172380)
-
libslirp: update to v4.3.1 (Fix CVE-2020-10756)
-
Fix config_from_options() to correctly enable ipv6
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2020:1915-1.
# The text itself is copyright (C) SUSE.
#
include("compat.inc");
if (description)
{
script_id(138546);
script_version("1.4");
script_set_attribute(attribute:"plugin_modification_date", value:"2020/07/27");
script_cve_id("CVE-2020-10756");
script_name(english:"SUSE SLES15 Security Update : slirp4netns (SUSE-SU-2020:1915-1)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"This update for slirp4netns fixes the following issues :
Update to 0.4.7 (bsc#1172380)
- libslirp: update to v4.3.1 (Fix CVE-2020-10756)
- Fix config_from_options() to correctly enable ipv6
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1172380"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2020-10756/"
);
# https://www.suse.com/support/update/announcement/2020/suse-su-20201915-1
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?ca43b68a"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Module for Containers 15-SP2 :
zypper in -t patch SUSE-SLE-Module-Containers-15-SP2-2020-1915=1
SUSE Linux Enterprise Module for Containers 15-SP1 :
zypper in -t patch SUSE-SLE-Module-Containers-15-SP1-2020-1915=1"
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-10756");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:slirp4netns");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:slirp4netns-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:slirp4netns-debugsource");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:15");
script_set_attribute(attribute:"vuln_publication_date", value:"2020/07/09");
script_set_attribute(attribute:"patch_publication_date", value:"2020/07/15");
script_set_attribute(attribute:"plugin_publication_date", value:"2020/07/16");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES15)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES15", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES15" && (! preg(pattern:"^(1|2)$", string:sp))) audit(AUDIT_OS_NOT, "SLES15 SP1/2", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES15", sp:"1", reference:"slirp4netns-0.4.7-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"1", reference:"slirp4netns-debuginfo-0.4.7-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"1", reference:"slirp4netns-debugsource-0.4.7-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"slirp4netns-0.4.7-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"slirp4netns-debuginfo-0.4.7-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"slirp4netns-debugsource-0.4.7-3.12.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
else security_note(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "slirp4netns");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | slirp4netns | p-cpe:/a:novell:suse_linux:slirp4netns |
| novell | suse_linux | slirp4netns-debuginfo | p-cpe:/a:novell:suse_linux:slirp4netns-debuginfo |
| novell | suse_linux | slirp4netns-debugsource | p-cpe:/a:novell:suse_linux:slirp4netns-debugsource |
| novell | suse_linux | 15 | cpe:/o:novell:suse_linux:15 |
Related
suse
suse
Security update for slirp4netns (important)
2020-07-18 00:00:00
Security update for slirp4netns (important)
2020-07-18 00:00:00
Security update for qemu (moderate)
2021-07-14 00:00:00
ubuntucve
ubuntucve
CVE-2020-10756
2020-07-09 00:00:00
CVE-2021-20295
2022-04-01 00:00:00
zdi
zdi
fedora
fedora
[SECURITY] Fedora 32 Update: libslirp-4.3.1-1.fc32
2020-07-15 01:20:08
alpinelinux
alpinelinux
CVE-2020-10756
2020-07-09 16:15:00
ibm
ibm
nessus
nessus
openSUSE Security Update : slirp4netns (openSUSE-2020-994)
2020-07-20 00:00:00
openSUSE Security Update : slirp4netns (openSUSE-2020-987)
2020-07-20 00:00:00
Fedora 32 : libslirp (2020-8c0b966c16)
2020-07-15 00:00:00
redhatcve
redhatcve
CVE-2020-10756
2020-06-01 15:26:39
CVE-2021-20295
2021-03-29 09:15:46
ubuntu
ubuntu
libslirp vulnerability
2020-07-27 00:00:00
QEMU vulnerabilities
2020-08-19 00:00:00
veracode
veracode
Information Disclosure
2020-09-21 06:27:40
prion
prion
Design/Logic Flaw
2020-07-09 16:15:00
Security feature bypass
2022-04-01 23:15:00
osv
osv
CVE-2020-10756
2020-07-09 16:15:13
Important: virt:rhel security update
2020-09-29 08:09:34
Moderate: virt:rhel and virt-devel:rhel security update
2021-04-05 16:17:13
openvas
openvas
openSUSE: Security Advisory for slirp4netns (openSUSE-SU-2020:0994-1)
2020-07-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2020:1915-1)
2021-06-09 00:00:00
Ubuntu: Security Advisory (USN-4437-1)
2020-07-28 00:00:00
debiancve
debiancve
CVE-2020-10756
2020-07-09 16:15:00
CVE-2021-20295
2022-04-01 23:15:00
cve
cve
CVE-2020-10756
2020-07-09 16:15:00
CVE-2021-20295
2022-04-01 23:15:00
almalinux
almalinux
Important: virt:rhel security update
2020-09-29 08:09:34
Moderate: virt:rhel and virt-devel:rhel security update
2021-04-05 16:17:13
Moderate: container-tools:rhel8 security, bug fix, and enhancement update
2020-11-03 12:27:37
redhat
redhat
(RHSA-2021:1064) Moderate: virt:rhel and virt-devel:rhel security update
2021-04-05 16:17:13
(RHSA-2020:3586) Important: virt:8.2 and virt-devel:8.2 security and bug fix update
2020-09-01 09:21:04
(RHSA-2020:4059) Important: virt:rhel security update
2020-09-29 08:09:34
oraclelinux
oraclelinux
virt:ol security update
2020-10-01 00:00:00
virt:ol and virt-devel:rhel security update
2021-04-09 00:00:00
container-tools:ol8 security, bug fix, and enhancement update
2020-11-10 00:00:00
rocky
rocky
virt:rhel and virt-devel:rhel security update
2021-04-05 16:17:13
virt:rhel security update
2020-09-29 08:09:34
container-tools:rhel8 security, bug fix, and enhancement update
2020-11-03 12:27:37
amazon
amazon
Medium: qemu
2020-12-08 21:30:00
debian
debian
[SECURITY] [DSA 4728-1] qemu security update
2020-07-19 18:01:06
[SECURITY] [DLA 2288-1] qemu security update
2020-07-26 11:51:28
Related for SUSE_SU-2020-1915-1.NASL