Lucene search
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2021-2163-1.NASLHistoryJun 28, 2021 - 12:00 a.m.
SUSE SLED15 / SLES15 Security Update : bouncycastle (SUSE-SU-2021:2163-1)
2021-06-2800:00:00
This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
8
The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2021:2163-1 advisory.
- Bouncy Castle BC Java before 1.66, BC C# .NET before 1.8.7, BC-FJA before 1.0.1.2, 1.0.2.1, and BC-FNA before 1.0.1.1 have a timing issue within the EC math library that can expose information about the private key when an attacker is able to observe timing information for the generation of multiple deterministic ECDSA signatures. (CVE-2020-15522)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# SUSE update advisory SUSE-SU-2021:2163-1. The text itself
# is copyright (C) SUSE.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(151100);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/07/13");
script_cve_id("CVE-2020-15522");
script_xref(name:"SuSE", value:"SUSE-SU-2021:2163-1");
script_name(english:"SUSE SLED15 / SLES15 Security Update : bouncycastle (SUSE-SU-2021:2163-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing a security update.");
script_set_attribute(attribute:"description", value:
"The remote SUSE Linux SLED15 / SLES15 host has packages installed that are affected by a vulnerability as referenced in
the SUSE-SU-2021:2163-1 advisory.
- Bouncy Castle BC Java before 1.66, BC C# .NET before 1.8.7, BC-FJA before 1.0.1.2, 1.0.2.1, and BC-FNA
before 1.0.1.1 have a timing issue within the EC math library that can expose information about the
private key when an attacker is able to observe timing information for the generation of multiple
deterministic ECDSA signatures. (CVE-2020-15522)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1186328");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2020-15522");
# https://lists.suse.com/pipermail/sle-security-updates/2021-June/009091.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?5e0c530e");
script_set_attribute(attribute:"solution", value:
"Update the affected bouncycastle and / or bouncycastle-pg packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-15522");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2021/05/20");
script_set_attribute(attribute:"patch_publication_date", value:"2021/06/25");
script_set_attribute(attribute:"plugin_publication_date", value:"2021/06/28");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bouncycastle");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:bouncycastle-pg");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:15");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2021-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item("Host/SuSE/release");
if (isnull(os_release) || os_release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
var os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED15|SLES15)$", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLED15 / SLES15', 'SUSE (' + os_ver + ')');
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE (' + os_ver + ')', cpu);
var service_pack = get_kb_item("Host/SuSE/patchlevel");
if (isnull(service_pack)) service_pack = "0";
if (os_ver == "SLED15" && (! preg(pattern:"^(2|3)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLED15 SP2/3", os_ver + " SP" + service_pack);
if (os_ver == "SLES15" && (! preg(pattern:"^(2|3)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES15 SP2/3", os_ver + " SP" + service_pack);
var pkgs = [
{'reference':'bouncycastle-1.64-3.3.1', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-module-development-tools-release-15.2']},
{'reference':'bouncycastle-1.64-3.3.1', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-module-development-tools-release-15.2']},
{'reference':'bouncycastle-pg-1.64-3.3.1', 'sp':'2', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-module-development-tools-release-15.2']},
{'reference':'bouncycastle-pg-1.64-3.3.1', 'sp':'2', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-module-development-tools-release-15.2']},
{'reference':'bouncycastle-1.64-3.3.1', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-module-development-tools-release-15.3']},
{'reference':'bouncycastle-1.64-3.3.1', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-module-development-tools-release-15.3']},
{'reference':'bouncycastle-pg-1.64-3.3.1', 'sp':'3', 'release':'SLED15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-module-development-tools-release-15.3']},
{'reference':'bouncycastle-pg-1.64-3.3.1', 'sp':'3', 'release':'SLES15', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sle-module-development-tools-release-15.3']}
];
var ltss_caveat_required = FALSE;
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var exists_check = NULL;
var rpm_spec_vers_cmp = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (reference && _release) {
if (exists_check) {
var check_flag = 0;
foreach var check (exists_check) {
if (!rpm_exists(release:_release, rpm:check)) continue;
check_flag++;
}
if (!check_flag) continue;
}
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bouncycastle / bouncycastle-pg');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | bouncycastle | p-cpe:/a:novell:suse_linux:bouncycastle |
| novell | suse_linux | bouncycastle-pg | p-cpe:/a:novell:suse_linux:bouncycastle-pg |
| novell | suse_linux | 15 | cpe:/o:novell:suse_linux:15 |
Related
nessus
nessus
openSUSE 15 Security Update : bouncycastle (openSUSE-SU-2021:0940-1)
2021-07-01 00:00:00
FreeBSD : bouncycastle15 -- EC math vulnerability (89d5bca6-0150-11ec-bf0c-080027eedc6a)
2021-08-23 00:00:00
openSUSE 15 Security Update : bouncycastle (openSUSE-SU-2021:2163-1)
2021-07-16 00:00:00
github
github
Timing based private key exposure in Bouncy Castle
2021-08-13 15:22:31
prion
prion
Information disclosure
2021-05-20 12:15:00
cve
cve
CVE-2020-15522
2021-05-20 12:15:00
veracode
veracode
Information Disclosure
2021-05-24 02:29:03
ubuntucve
ubuntucve
CVE-2020-15522
2021-05-20 00:00:00
debiancve
debiancve
CVE-2020-15522
2021-05-20 12:15:00
redhatcve
redhatcve
CVE-2020-15522
2021-05-20 17:45:56
ibm
ibm
osv
osv
Timing based private key exposure in Bouncy Castle
2021-08-13 15:22:31
CVE-2020-15522
2021-05-20 12:15:08
cgr
cgr
CVE-2020-15522 vulnerabilities
2024-04-19 09:08:06
suse
suse
Security update for bouncycastle (moderate)
2021-06-29 00:00:00
Security update for bouncycastle (moderate)
2021-07-11 00:00:00
gitlab
gitlab
freebsd
freebsd
The Bouncy Castle Crypto APIs -- EC math vulnerability
2020-07-04 00:00:00
redhat
redhat
hp
hp
HP Security Manager - Multiple vulnerabilities
2022-12-12 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2023
2023-04-18 00:00:00
Related for SUSE_SU-2021-2163-1.NASL