Lucene search
Ubuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-1695-1.NASLHistoryJan 18, 2013 - 12:00 a.m.
Ubuntu 10.04 LTS / 11.10 / 12.04 LTS : rpm vulnerabilities (USN-1695-1)
2013-01-1800:00:00
Ubuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
21
It was discovered that RPM incorrectly handled certain package headers. If a user or automated system were tricked into installing a specially crafted RPM package, an attacker could cause RPM to crash, resulting in a denial of service, or possibly execute arbitrary code.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-1695-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include("compat.inc");
if (description)
{
script_id(63612);
script_version("1.8");
script_cvs_date("Date: 2019/09/19 12:54:28");
script_cve_id("CVE-2011-3378", "CVE-2012-0060", "CVE-2012-0061", "CVE-2012-0815");
script_bugtraq_id(49799, 52865);
script_xref(name:"USN", value:"1695-1");
script_name(english:"Ubuntu 10.04 LTS / 11.10 / 12.04 LTS : rpm vulnerabilities (USN-1695-1)");
script_summary(english:"Checks dpkg output for updated package.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Ubuntu host is missing a security-related patch."
);
script_set_attribute(
attribute:"description",
value:
"It was discovered that RPM incorrectly handled certain package
headers. If a user or automated system were tricked into installing a
specially crafted RPM package, an attacker could cause RPM to crash,
resulting in a denial of service, or possibly execute arbitrary code.
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://usn.ubuntu.com/1695-1/"
);
script_set_attribute(attribute:"solution", value:"Update the affected rpm package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:rpm");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:10.04:-:lts");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:11.10");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:12.04:-:lts");
script_set_attribute(attribute:"vuln_publication_date", value:"2011/12/24");
script_set_attribute(attribute:"patch_publication_date", value:"2013/01/17");
script_set_attribute(attribute:"plugin_publication_date", value:"2013/01/18");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"Ubuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Ubuntu Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("ubuntu.inc");
include("misc_func.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(10\.04|11\.10|12\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 10.04 / 11.10 / 12.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);
flag = 0;
if (ubuntu_check(osver:"10.04", pkgname:"rpm", pkgver:"4.7.2-1lubuntu0.1")) flag++;
if (ubuntu_check(osver:"11.10", pkgname:"rpm", pkgver:"4.9.0-7ubuntu0.1")) flag++;
if (ubuntu_check(osver:"12.04", pkgname:"rpm", pkgver:"4.9.1.1-1ubuntu0.1")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "rpm");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | rpm | p-cpe:/a:canonical:ubuntu_linux:rpm |
| canonical | ubuntu_linux | 10.04 | cpe:/o:canonical:ubuntu_linux:10.04:-:lts |
| canonical | ubuntu_linux | 11.10 | cpe:/o:canonical:ubuntu_linux:11.10 |
| canonical | ubuntu_linux | 12.04 | cpe:/o:canonical:ubuntu_linux:12.04:-:lts |
Related
openvas
openvas
Fedora Update for rpm FEDORA-2012-5420
2012-04-23 00:00:00
Fedora Update for rpm FEDORA-2012-5420
2012-04-23 00:00:00
Ubuntu Update for rpm USN-1695-1
2013-01-21 00:00:00
ubuntu
ubuntu
RPM vulnerabilities
2013-01-17 00:00:00
nessus
nessus
NewStart CGSL CORE 5.04 / MAIN 5.04 : rpm Multiple Vulnerabilities (NS-SA-2020-0039)
2020-09-08 00:00:00
Mandriva Linux Security Advisory : rpm (MDVSA-2012:056)
2012-04-12 00:00:00
OracleVM 3.2 : rpm (OVMSA-2016-0077)
2016-06-22 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: rpm-4.9.1.3-1.fc15
2012-04-22 03:24:37
[SECURITY] Fedora 17 Update: rpm-4.9.1.3-1.fc17
2012-04-12 03:27:10
[SECURITY] Fedora 16 Update: rpm-4.9.1.3-1.fc16
2012-04-22 03:42:55
redhat
redhat
(RHSA-2012:0451) Important: rpm security update
2012-04-03 00:00:00
(RHSA-2011:1349) Important: rpm security update
2011-10-03 00:00:00
(RHSA-2012:0531) Important: rhev-hypervisor6 security and bug fix update
2012-04-30 00:00:00
amazon
amazon
Important: rpm
2012-04-05 12:49:00
Medium: rpm
2011-10-31 18:25:00
oraclelinux
oraclelinux
rpm security update
2012-04-03 00:00:00
rpm security update
2011-10-04 00:00:00
centos
centos
popt, rpm security update
2012-04-03 17:07:58
popt, rpm security update
2011-10-03 21:56:34
gentoo
gentoo
RPM: Multiple vulnerabilities
2012-06-24 00:00:00
osv
osv
rpm - security update
2015-01-28 00:00:00
debian
debian
[SECURITY] [DLA 140-1] rpm security update
2015-01-28 18:07:09
suse
suse
Security update for popt (important)
2011-10-17 20:08:22
Security update for popt (important)
2011-11-02 23:08:26
rpm (CVE-2011-3378) (important)
2011-11-02 20:08:26
prion
prion
Memory corruption
2011-12-24 19:55:00
Hardcoded credentials
2012-06-04 20:55:00
Design/Logic Flaw
2012-06-04 20:55:00
securityvulns
securityvulns
rpm multiple security vulnerabilities
2011-10-10 00:00:00
[ MDVSA-2011:143 ] rpm
2011-10-10 00:00:00
ubuntucve
ubuntucve
veracode
veracode
Arbitrary Code Execution
2020-04-10 01:10:31
Arbitrary Code Execution
2020-04-10 01:03:00
Arbitrary Code Execution
2020-04-10 01:10:31
cve
cve
debiancve
debiancve
vmware
vmware
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00
VMware ESXi and ESX updates to third party library and ESX Service Console
2012-01-30 00:00:00
Related for UBUNTU_USN-1695-1.NASL