Lucene search
Ubuntu Security Notice (C) 2015-2020 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-2593-1.NASLHistoryMay 05, 2015 - 12:00 a.m.
Ubuntu 14.04 LTS : Dnsmasq vulnerability (USN-2593-1)
2015-05-0500:00:00
Ubuntu Security Notice (C) 2015-2020 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
19
Nick Sampanis discovered that Dnsmasq incorrectly handled certain malformed DNS requests. A remote attacker could use this issue to cause Dnsmasq to crash, resulting in a denial of service, or possibly obtain sensitive information.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2593-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(83252);
script_version("2.11");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/20");
script_cve_id("CVE-2015-3294");
script_xref(name:"USN", value:"2593-1");
script_name(english:"Ubuntu 14.04 LTS : Dnsmasq vulnerability (USN-2593-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing a security update.");
script_set_attribute(attribute:"description", value:
"Nick Sampanis discovered that Dnsmasq incorrectly handled certain
malformed DNS requests. A remote attacker could use this issue to
cause Dnsmasq to crash, resulting in a denial of service, or possibly
obtain sensitive information.
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-2593-1");
script_set_attribute(attribute:"solution", value:
"Update the affected dnsmasq, dnsmasq-base and / or dnsmasq-utils packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-3294");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/05/08");
script_set_attribute(attribute:"patch_publication_date", value:"2015/05/04");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/05/05");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dnsmasq");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dnsmasq-base");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dnsmasq-utils");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Ubuntu Local Security Checks");
script_copyright(english:"Ubuntu Security Notice (C) 2015-2020 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include('debian_package.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('14.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 14.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
var pkgs = [
{'osver': '14.04', 'pkgname': 'dnsmasq', 'pkgver': '2.68-1ubuntu0.1'},
{'osver': '14.04', 'pkgname': 'dnsmasq-base', 'pkgver': '2.68-1ubuntu0.1'},
{'osver': '14.04', 'pkgname': 'dnsmasq-utils', 'pkgver': '2.68-1ubuntu0.1'}
];
var flag = 0;
foreach package_array ( pkgs ) {
var osver = NULL;
var pkgname = NULL;
var pkgver = NULL;
if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
if (osver && pkgname && pkgver) {
if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
var tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'dnsmasq / dnsmasq-base / dnsmasq-utils');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | dnsmasq | p-cpe:/a:canonical:ubuntu_linux:dnsmasq |
| canonical | ubuntu_linux | dnsmasq-base | p-cpe:/a:canonical:ubuntu_linux:dnsmasq-base |
| canonical | ubuntu_linux | dnsmasq-utils | p-cpe:/a:canonical:ubuntu_linux:dnsmasq-utils |
| canonical | ubuntu_linux | 14.04 | cpe:/o:canonical:ubuntu_linux:14.04:-:lts |
Related
nessus
nessus
openSUSE Security Update : dnsmasq (openSUSE-2015-359)
2015-05-13 00:00:00
EulerOS 2.0 SP1 : dnsmasq (EulerOS-SA-2016-1044)
2017-05-01 00:00:00
Debian DLA-225-1 : dnsmasq security update
2015-05-21 00:00:00
osv
osv
dnsmasq - security update
2015-05-05 00:00:00
dnsmasq - security update
2015-05-20 00:00:00
openvas
openvas
Debian Security Advisory DSA 3251-1 (dnsmasq - security update)
2015-05-05 00:00:00
Mageia: Security Advisory (MGASA-2015-0214)
2022-01-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:0979-1)
2021-04-19 00:00:00
ubuntucve
ubuntucve
CVE-2015-3294
2015-04-27 00:00:00
cve
cve
CVE-2015-3294
2015-05-08 14:59:00
debiancve
debiancve
CVE-2015-3294
2015-05-08 14:59:00
mageia
mageia
Updated dnsmasq packages fix CVE-2015-3294
2015-05-12 22:37:48
debian
debian
[SECURITY] [DSA 3251-1] dnsmasq security update
2015-05-05 15:39:55
[SECURITY] [DLA 225-1] dnsmasq security update
2015-05-20 20:44:16
[SECURITY] [DSA 3251-1] dnsmasq security update
2015-05-05 15:39:33
securityvulns
securityvulns
dnsmasq uninitialized memory dereference
2015-05-05 00:00:00
[USN-2593-1] Dnsmasq vulnerability
2015-05-04 00:00:00
Dnsmasq 2.72 Unchecked returned value
2015-05-05 00:00:00
ubuntu
ubuntu
Dnsmasq vulnerability
2015-05-04 00:00:00
prion
prion
Out-of-bounds
2015-05-08 14:59:00
cvelist
cvelist
CVE-2015-3294
2015-05-08 14:00:00
freebsd
freebsd
dnsmasq -- data exposure and denial of service
2015-04-07 00:00:00
gentoo
gentoo
Dnsmasq: Denial of service
2015-12-17 00:00:00
suse
suse
Security update for dnsmasq (important)
2017-10-02 21:11:28
Security update for dnsmasq (important)
2017-10-02 21:09:17
Security update for dnsmasq (important)
2017-10-02 21:07:18
Related for UBUNTU_USN-2593-1.NASL