Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2021-0724-1.NASL
HistoryMar 10, 2021 - 12:00 a.m.

SUSE SLES15 Security Update : 389-ds (SUSE-SU-2021:0724-1)

2021-03-1000:00:00
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
11
JSON

This update for 389-ds fixes the following issues :

389-ds was updated to version 1.4.3.19

  • CVE-2020-35518: Fixed an information disclosure during the binding of a DN (bsc#1181159).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2021:0724-1.
# The text itself is copyright (C) SUSE.
#

include("compat.inc");

if (description)
{
  script_id(147463);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/04/05");

  script_cve_id("CVE-2020-35518");

  script_name(english:"SUSE SLES15 Security Update : 389-ds (SUSE-SU-2021:0724-1)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote SUSE host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description",
    value:
"This update for 389-ds fixes the following issues :

389-ds was updated to version 1.4.3.19

  - CVE-2020-35518: Fixed an information disclosure during
    the binding of a DN (bsc#1181159).

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1181159"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2020-35518/"
  );
  # https://www.suse.com/support/update/announcement/2021/suse-su-20210724-1
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?4112882e"
  );
  script_set_attribute(
    attribute:"solution",
    value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.

Alternatively you can run the command listed for your product :

SUSE Linux Enterprise Module for Server Applications 15-SP2 :

zypper in -t patch
SUSE-SLE-Module-Server-Applications-15-SP2-2021-724=1"
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-35518");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:389-ds");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:389-ds-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:389-ds-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:389-ds-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:lib389");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libsvrcore0");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libsvrcore0-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:15");

  script_set_attribute(attribute:"vuln_publication_date", value:"2021/03/26");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/03/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2021/03/10");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES15)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES15", "SUSE " + os_ver);

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);

sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES15" && (! preg(pattern:"^(2)$", string:sp))) audit(AUDIT_OS_NOT, "SLES15 SP2", os_ver + " SP" + sp);


flag = 0;
if (rpm_check(release:"SLES15", sp:"2", reference:"389-ds-1.4.3.19~git0.bef0b5bed-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"389-ds-debuginfo-1.4.3.19~git0.bef0b5bed-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"389-ds-debugsource-1.4.3.19~git0.bef0b5bed-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"389-ds-devel-1.4.3.19~git0.bef0b5bed-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"lib389-1.4.3.19~git0.bef0b5bed-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"libsvrcore0-1.4.3.19~git0.bef0b5bed-3.12.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"libsvrcore0-debuginfo-1.4.3.19~git0.bef0b5bed-3.12.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "389-ds");
}
VendorProductVersionCPE
novellsuse_linux389-dsp-cpe:/a:novell:suse_linux:389-ds
novellsuse_linux389-ds-debuginfop-cpe:/a:novell:suse_linux:389-ds-debuginfo
novellsuse_linux389-ds-debugsourcep-cpe:/a:novell:suse_linux:389-ds-debugsource
novellsuse_linux389-ds-develp-cpe:/a:novell:suse_linux:389-ds-devel
novellsuse_linuxlib389p-cpe:/a:novell:suse_linux:lib389
novellsuse_linuxlibsvrcore0p-cpe:/a:novell:suse_linux:libsvrcore0
novellsuse_linuxlibsvrcore0-debuginfop-cpe:/a:novell:suse_linux:libsvrcore0-debuginfo
novellsuse_linux15cpe:/o:novell:suse_linux:15

Related

nessus 15
fedora 12
prion 1
suse 1
redhat 5
openvas 15
oraclelinux 2
centos 1
redhatcve 1
osv 2
veracode 1
debiancve 1
ubuntucve 1
cve 1
amazon 1
ubuntu 1
nessus
nessus
CentOS 8 : 389-ds:1.4 (CESA-2021:1086)
2021-04-09 00:00:00
Amazon Linux 2 : 389-ds-base (ALAS-2021-1650)
2023-01-04 00:00:00
Scientific Linux Security Update : 389-ds-base on SL7.x x86_64 (2021:2323)
2021-06-11 00:00:00
fedora
fedora
[SECURITY] Fedora 32 Update: dogtag-pki-10.10.5-1.fc32
2021-03-04 19:56:27
[SECURITY] Fedora 33 Update: dogtag-pki-10.10.5-1.fc33
2021-03-03 23:15:57
[SECURITY] Fedora 32 Update: freeipa-4.9.2-4.fc32
2021-03-04 19:56:27
prion
prion
Authentication flaw
2021-03-26 17:15:00
suse
suse
Security update for 389-ds (moderate)
2021-03-16 00:00:00
redhat
redhat
(RHSA-2021:1243) Moderate: redhat-ds:11 security and bug fix update
2021-04-19 09:44:26
(RHSA-2021:1258) Moderate: 389-ds:1.4 security and bug fix update
2021-04-19 14:46:41
(RHSA-2021:0599) Moderate: redhat-ds:11 security and bug fix update
2021-02-16 18:20:06
openvas
openvas
openSUSE: Security Advisory for 389-ds (openSUSE-SU-2021:0418-1)
2021-04-16 00:00:00
Fedora: Security Advisory for 389-ds-base (FEDORA-2021-7458e2d835)
2021-03-04 00:00:00
Fedora: Security Advisory for pki-core (FEDORA-2021-263244c071)
2021-03-04 00:00:00
oraclelinux
oraclelinux
389-ds:1.4 security and bug fix update
2021-04-09 00:00:00
389-ds-base security and bug fix update
2021-06-09 00:00:00
centos
centos
389 security update
2021-06-14 18:42:56
redhatcve
redhatcve
CVE-2020-35518
2021-01-19 18:20:39
osv
osv
CVE-2020-35518
2021-03-26 17:15:12
389-ds-base vulnerabilities
2022-07-18 10:09:50
veracode
veracode
Information Disclosure
2021-01-23 02:17:33
debiancve
debiancve
CVE-2020-35518
2021-03-26 17:15:00
ubuntucve
ubuntucve
CVE-2020-35518
2021-03-26 00:00:00
cve
cve
CVE-2020-35518
2021-03-26 17:15:00
amazon
amazon
Medium: 389-ds-base
2021-06-16 20:37:00
ubuntu
ubuntu
389 Directory Server vulnerabilities
2022-07-18 00:00:00
JSON
Related for SUSE_SU-2021-0724-1.NASL
nessus15fedora12prion1suse1redhat5openvas15oraclelinux2centos1redhatcve1osv2veracode1debiancve1ubuntucve1cve1amazon1ubuntu1