Lucene search
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2021-1280-1.NASLHistoryApr 21, 2021 - 12:00 a.m.
SUSE SLED15 / SLES15 Security Update : ruby2.5 (SUSE-SU-2021:1280-1)
2021-04-2100:00:00
This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
30
This update for ruby2.5 fixes the following issues :
Update to 2.5.9
CVE-2021-28965: XML round-trip vulnerability in REXML (bsc#1184644)
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2021:1280-1.
# The text itself is copyright (C) SUSE.
#
include("compat.inc");
if (description)
{
script_id(148875);
script_version("1.3");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/05/03");
script_cve_id("CVE-2021-28965");
script_name(english:"SUSE SLED15 / SLES15 Security Update : ruby2.5 (SUSE-SU-2021:1280-1)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"This update for ruby2.5 fixes the following issues :
Update to 2.5.9
CVE-2021-28965: XML round-trip vulnerability in REXML (bsc#1184644)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1184644"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2021-28965/"
);
# https://www.suse.com/support/update/announcement/2021/suse-su-20211280-1
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?9efc3977"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.
Alternatively you can run the command listed for your product :
SUSE MicroOS 5.0 :
zypper in -t patch SUSE-SUSE-MicroOS-5.0-2021-1280=1
SUSE Linux Enterprise Module for Basesystem 15-SP2 :
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP2-2021-1280=1"
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-28965");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libruby2_5");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libruby2_5-2_5-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ruby2.5");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ruby2.5-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ruby2.5-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ruby2.5-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ruby2.5-devel-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ruby2.5-stdlib");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ruby2.5-stdlib-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:15");
script_set_attribute(attribute:"vuln_publication_date", value:"2021/04/21");
script_set_attribute(attribute:"patch_publication_date", value:"2021/04/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/04/21");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED15|SLES15)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED15 / SLES15", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES15" && (! preg(pattern:"^(2)$", string:sp))) audit(AUDIT_OS_NOT, "SLES15 SP2", os_ver + " SP" + sp);
if (os_ver == "SLED15" && (! preg(pattern:"^(2)$", string:sp))) audit(AUDIT_OS_NOT, "SLED15 SP2", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES15", sp:"2", reference:"libruby2_5-2_5-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"libruby2_5-2_5-debuginfo-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"ruby2.5-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"ruby2.5-debuginfo-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"ruby2.5-debugsource-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"ruby2.5-devel-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"ruby2.5-devel-extra-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"ruby2.5-stdlib-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLES15", sp:"2", reference:"ruby2.5-stdlib-debuginfo-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLED15", sp:"2", reference:"libruby2_5-2_5-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLED15", sp:"2", reference:"libruby2_5-2_5-debuginfo-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLED15", sp:"2", reference:"ruby2.5-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLED15", sp:"2", reference:"ruby2.5-debuginfo-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLED15", sp:"2", reference:"ruby2.5-debugsource-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLED15", sp:"2", reference:"ruby2.5-devel-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLED15", sp:"2", reference:"ruby2.5-devel-extra-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLED15", sp:"2", reference:"ruby2.5-stdlib-2.5.9-4.17.1")) flag++;
if (rpm_check(release:"SLED15", sp:"2", reference:"ruby2.5-stdlib-debuginfo-2.5.9-4.17.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ruby2.5");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | libruby2_5 | p-cpe:/a:novell:suse_linux:libruby2_5 |
| novell | suse_linux | libruby2_5-2_5-debuginfo | p-cpe:/a:novell:suse_linux:libruby2_5-2_5-debuginfo |
| novell | suse_linux | ruby2.5 | p-cpe:/a:novell:suse_linux:ruby2.5 |
| novell | suse_linux | ruby2.5-debuginfo | p-cpe:/a:novell:suse_linux:ruby2.5-debuginfo |
| novell | suse_linux | ruby2.5-debugsource | p-cpe:/a:novell:suse_linux:ruby2.5-debugsource |
| novell | suse_linux | ruby2.5-devel | p-cpe:/a:novell:suse_linux:ruby2.5-devel |
| novell | suse_linux | ruby2.5-devel-extra | p-cpe:/a:novell:suse_linux:ruby2.5-devel-extra |
| novell | suse_linux | ruby2.5-stdlib | p-cpe:/a:novell:suse_linux:ruby2.5-stdlib |
| novell | suse_linux | ruby2.5-stdlib-debuginfo | p-cpe:/a:novell:suse_linux:ruby2.5-stdlib-debuginfo |
| novell | suse_linux | 15 | cpe:/o:novell:suse_linux:15 |
Related
nessus
nessus
EulerOS 2.0 SP8 : ruby (EulerOS-SA-2021-1987)
2021-06-28 00:00:00
EulerOS Virtualization for ARM 64 3.0.6.0 : ruby (EulerOS-SA-2021-2012)
2021-06-30 00:00:00
osv
osv
CVE-2021-28965
2021-04-21 07:15:07
ruby2.3, ruby2.5, ruby2.7 vulnerability
2021-04-20 17:01:53
BIT-ruby-2021-28965
2024-03-06 11:05:40
openvas
openvas
Ubuntu: Security Advisory (USN-4922-1)
2021-04-21 00:00:00
Fedora: Security Advisory for ruby (FEDORA-2021-6385a09efc)
2021-04-23 00:00:00
Fedora: Security Advisory for rubygem-railties (FEDORA-2021-7b8b65bc7a)
2021-04-25 00:00:00
fedora
fedora
[SECURITY] Fedora 33 Update: ruby-2.7.3-136.fc33
2021-04-17 14:06:37
[SECURITY] Fedora 32 Update: ruby-2.7.3-136.fc32
2021-04-17 14:21:01
[SECURITY] Fedora 34 Update: rubygem-railties-6.1.2.1-2.fc34
2021-04-24 20:20:14
redhatcve
redhatcve
CVE-2021-28965
2021-04-08 17:16:00
cloudfoundry
cloudfoundry
USN-4922-1: Ruby vulnerability | Cloud Foundry
2021-04-29 00:00:00
cbl_mariner
cbl_mariner
CVE-2021-28965 affecting package ruby 2.6.6-4
2021-06-09 03:50:37
CVE-2021-28965 affecting package ruby 2.7.2-4
2022-04-09 06:51:53
ubuntu
ubuntu
Ruby vulnerability
2021-04-26 00:00:00
Ruby vulnerability
2021-04-20 00:00:00
hackerone
hackerone
Ruby: Round-trip instability in REXML
2021-02-16 08:10:08
veracode
veracode
XML Injection
2021-04-17 02:47:08
freebsd
freebsd
Gitlab -- Vulnerabilities
2021-04-14 00:00:00
ruby -- XML round-trip vulnerability in REXML
2021-04-05 00:00:00
debiancve
debiancve
CVE-2021-28965
2021-04-21 07:15:00
suse
suse
Security update for ruby2.5 (moderate)
2021-04-24 00:00:00
cve
cve
CVE-2021-28965
2021-04-21 07:15:00
alpinelinux
alpinelinux
CVE-2021-28965
2021-04-21 07:15:00
amazon
amazon
Medium: ruby24
2021-05-14 16:58:00
github
github
REXML round-trip instability
2021-04-30 17:30:37
prion
prion
Code injection
2021-04-21 07:15:00
ubuntucve
ubuntucve
CVE-2021-28965
2021-04-12 00:00:00
rocky
rocky
ruby:2.7 security, bug fix, and enhancement update
2021-06-29 13:57:50
ruby:2.5 security, bug fix, and enhancement update
2021-06-29 13:58:20
ruby:2.6 security, bug fix, and enhancement update
2021-06-29 13:58:40
archlinux
archlinux
[ASA-202104-1] gitlab: multiple issues
2021-04-29 00:00:00
redhat
redhat
oraclelinux
oraclelinux
ruby:2.7 security, bug fix, and enhancement update
2021-07-07 00:00:00
ruby:2.5 security, bug fix, and enhancement update
2021-07-02 00:00:00
ruby:2.6 security, bug fix, and enhancement update
2021-07-07 00:00:00
almalinux
almalinux
Moderate: ruby:2.7 security, bug fix, and enhancement update
2021-06-29 13:57:50
Moderate: ruby:2.5 security, bug fix, and enhancement update
2021-06-29 13:58:20
Moderate: ruby:2.6 security, bug fix, and enhancement update
2021-06-29 13:58:40
debian
debian
[SECURITY] [DSA 5066-1] ruby2.5 security update
2022-02-03 19:26:40
mageia
mageia
Updated ruby packages fix security vulnerability
2021-12-24 00:01:45
ibm
ibm
rosalinux
rosalinux
Advisory ROSA-SA-2021-1966
2021-07-02 18:06:34
Related for SUSE_SU-2021-1280-1.NASL