Lucene search
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2022-14887-1.NASLHistoryFeb 19, 2022 - 12:00 a.m.
SUSE SLES11 Security Update : strongswan (SUSE-SU-2022:14887-1)
2022-02-1900:00:00
This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28
The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2022:14887-1 advisory.
-
In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication. (CVE-2018-16151)
-
In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x before 5.7.0, the RSA implementation based on GMP does not reject excess data in the digestAlgorithm.parameters field during PKCS#1 v1.5 signature verification. Consequently, a remote attacker can forge signatures when small public exponents are being used, which could lead to impersonation when only an RSA signature is used for IKEv2 authentication. This is a variant of CVE-2006-4790 and CVE-2014-1568. (CVE-2018-16152)
-
The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.
(CVE-2018-17540) -
In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without actually authenticating the client and (in the case of EAP methods with mutual authentication and EAP-only authentication for IKEv2) even without server authentication. (CVE-2021-45079)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 70300
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# SUSE update advisory SUSE-SU-2022:14887-1. The text itself
# is copyright (C) SUSE.
##
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(158172);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/07/13");
script_cve_id(
"CVE-2018-16151",
"CVE-2018-16152",
"CVE-2018-17540",
"CVE-2021-45079"
);
script_xref(name:"SuSE", value:"SUSE-SU-2022:14887-1");
script_name(english:"SUSE SLES11 Security Update : strongswan (SUSE-SU-2022:14887-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote SUSE host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote SUSE Linux SLES11 host has packages installed that are affected by multiple vulnerabilities as referenced in
the SUSE-SU-2022:14887-1 advisory.
- In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x
before 5.7.0, the RSA implementation based on GMP does not reject excess data after the encoded algorithm
OID during PKCS#1 v1.5 signature verification. Similar to the flaw in the same version of strongSwan
regarding digestAlgorithm.parameters, a remote attacker can forge signatures when small public exponents
are being used, which could lead to impersonation when only an RSA signature is used for IKEv2
authentication. (CVE-2018-16151)
- In verify_emsa_pkcs1_signature() in gmp_rsa_public_key.c in the gmp plugin in strongSwan 4.x and 5.x
before 5.7.0, the RSA implementation based on GMP does not reject excess data in the
digestAlgorithm.parameters field during PKCS#1 v1.5 signature verification. Consequently, a remote
attacker can forge signatures when small public exponents are being used, which could lead to
impersonation when only an RSA signature is used for IKEv2 authentication. This is a variant of
CVE-2006-4790 and CVE-2014-1568. (CVE-2018-16152)
- The gmp plugin in strongSwan before 5.7.1 has a Buffer Overflow via a crafted certificate.
(CVE-2018-17540)
- In strongSwan before 5.9.5, a malicious responder can send an EAP-Success message too early without
actually authenticating the client and (in the case of EAP methods with mutual authentication and EAP-only
authentication for IKEv2) even without server authentication. (CVE-2021-45079)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1107874");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1109845");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.suse.com/1194471");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-16151");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-16152");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2018-17540");
script_set_attribute(attribute:"see_also", value:"https://www.suse.com/security/cve/CVE-2021-45079");
# https://lists.suse.com/pipermail/sle-security-updates/2022-February/010262.html
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?c6df44a3");
script_set_attribute(attribute:"solution", value:
"Update the affected strongswan and / or strongswan-doc packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-45079");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/09/26");
script_set_attribute(attribute:"patch_publication_date", value:"2022/02/18");
script_set_attribute(attribute:"plugin_publication_date", value:"2022/02/19");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:strongswan");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:strongswan-doc");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"SuSE Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2022-2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item("Host/SuSE/release");
if (isnull(os_release) || os_release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
var os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'SUSE');
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES11)$", string:os_ver)) audit(AUDIT_OS_NOT, 'SUSE SLES11', 'SUSE (' + os_ver + ')');
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'SUSE (' + os_ver + ')', cpu);
var service_pack = get_kb_item("Host/SuSE/patchlevel");
if (isnull(service_pack)) service_pack = "0";
if (os_ver == "SLES11" && (! preg(pattern:"^(4)$", string:service_pack))) audit(AUDIT_OS_NOT, "SLES11 SP4", os_ver + " SP" + service_pack);
var pkgs = [
{'reference':'strongswan-4.4.0-6.36.12.1', 'sp':'4', 'release':'SLES11', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-11.4']},
{'reference':'strongswan-doc-4.4.0-6.36.12.1', 'sp':'4', 'release':'SLES11', 'rpm_spec_vers_cmp':TRUE, 'exists_check':['sles-release-11.4']}
];
var ltss_caveat_required = FALSE;
var flag = 0;
foreach var package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var exists_check = NULL;
var rpm_spec_vers_cmp = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (reference && _release) {
if (exists_check) {
var check_flag = 0;
foreach var check (exists_check) {
if (!rpm_exists(release:_release, rpm:check)) continue;
if ('ltss' >< tolower(check)) ltss_caveat_required = TRUE;
check_flag++;
}
if (!check_flag) continue;
}
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, rpm_spec_vers_cmp:rpm_spec_vers_cmp)) flag++;
}
}
if (flag)
{
var ltss_plugin_caveat = NULL;
if(ltss_caveat_required) ltss_plugin_caveat = '\n' +
'NOTE: This vulnerability check contains fixes that apply to\n' +
'packages only available in SUSE Enterprise Linux Server LTSS\n' +
'repositories. Access to these package security updates require\n' +
'a paid SUSE LTSS subscription.\n';
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get() + ltss_plugin_caveat
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'strongswan / strongswan-doc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | strongswan | p-cpe:/a:novell:suse_linux:strongswan |
| novell | suse_linux | strongswan-doc | p-cpe:/a:novell:suse_linux:strongswan-doc |
| novell | suse_linux | 11 | cpe:/o:novell:suse_linux:11 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16151
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-16152
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-17540
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-45079
www.nessus.org/u?c6df44a3
bugzilla.suse.com/1107874
bugzilla.suse.com/1109845
bugzilla.suse.com/1194471
www.suse.com/security/cve/CVE-2018-16151
www.suse.com/security/cve/CVE-2018-16152
www.suse.com/security/cve/CVE-2018-17540
www.suse.com/security/cve/CVE-2021-45079
Related
osv
osv
CVE-2018-16152
2018-09-26 21:29:01
CVE-2018-16151
2018-09-26 21:29:01
strongswan - security update
2018-09-26 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2022:14887-1)
2022-02-19 00:00:00
Debian: Security Advisory (DSA-4309-1)
2018-09-30 00:00:00
Fedora Update for strongswan FEDORA-2018-a0d22c2a21
2019-05-07 00:00:00
alpinelinux
alpinelinux
nessus
nessus
Debian DSA-4309-1 : strongswan - security update
2018-10-03 00:00:00
Fedora 27 : strongswan (2018-9caa6528d2)
2018-10-16 00:00:00
Photon OS 1.0: Strongswan PHSA-2019-1.0-0203
2019-02-07 00:00:00
redhatcve
redhatcve
prion
prion
Design/Logic Flaw
2018-09-26 21:29:00
Code injection
2018-11-07 20:29:00
Authentication flaw
2018-09-26 21:29:00
cve
cve
ubuntucve
ubuntucve
debiancve
debiancve
debian
debian
[SECURITY] [DSA 4305-1] strongswan security update
2018-09-24 13:10:07
[SECURITY] [DSA 4309-1] strongswan security update
2018-10-02 07:36:09
[SECURITY] [DLA 1522-1] strongswan security update
2018-09-26 16:44:37
photon
photon
fedora
fedora
[SECURITY] Fedora 29 Update: strongswan-5.7.1-1.fc29
2018-10-30 17:42:39
[SECURITY] Fedora 28 Update: strongswan-5.7.1-1.fc28
2018-10-15 10:47:19
[SECURITY] Fedora 27 Update: strongswan-5.7.1-1.fc27
2018-10-15 10:37:20
archlinux
archlinux
[ASA-201809-4] strongswan: authentication bypass
2018-09-24 00:00:00
suse
suse
Security update for strongswan (important)
2019-12-01 00:00:00
Security update for strongswan (important)
2019-11-30 00:00:00
Security update for strongswan (moderate)
2020-03-29 00:00:00
gentoo
gentoo
strongSwan: Multiple vulnerabilities
2018-11-26 00:00:00
GnuTLS: RSA Signature Forgery
2006-09-26 00:00:00
ubuntu
ubuntu
strongSwan vulnerabilities
2018-09-25 00:00:00
strongSwan vulnerability
2022-01-24 00:00:00
strongSwan vulnerability
2018-10-01 00:00:00
centos
centos
gnutls security update
2006-09-14 14:44:53
nss security update
2014-09-26 11:29:24
freebsd
freebsd
gnutls -- RSA Signature Forgery Vulnerability
2006-09-08 00:00:00
strongswan - Incorrect Handling of Early EAP-Success Messages
2021-12-16 00:00:00
NSS -- RSA Signature Forgery
2014-09-23 00:00:00
securityvulns
securityvulns
[USN-348-1] GnuTLS vulnerability
2006-09-19 00:00:00
oraclelinux
oraclelinux
Important gnutls security update
2006-11-30 00:00:00
redhat
redhat
(RHSA-2006:0680) gnutls security update
2006-09-14 00:00:00
(RHSA-2014:1371) Important: nss security update
2014-10-10 00:00:00
veracode
veracode
Authentication Bypass
2022-01-26 05:09:51
cbl_mariner
cbl_mariner
CVE-2021-45079 affecting package strongswan 5.7.2-6
2022-02-25 01:45:37
CVE-2021-45079 affecting package strongswan 5.9.3-1
2022-04-26 20:17:10
cert
cert
mozilla
mozilla
RSA Signature Forgery in NSS — Mozilla
2014-09-24 00:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla Network Security Services RSA Signature Forgery (CVE-2014-1568)
2014-10-19 00:00:00
amazon
amazon
Important: nss-softokn
2014-10-01 16:32:00
Important: nss-util
2014-10-01 16:32:00
Related for SUSE_SU-2022-14887-1.NASL