Lucene search
Ubuntu Security Notice (C) 2015-2020 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-2820-1.NASLHistoryNov 30, 2015 - 12:00 a.m.
Ubuntu 14.04 LTS : dpkg vulnerability (USN-2820-1)
2015-11-3000:00:00
Ubuntu Security Notice (C) 2015-2020 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
Hanno Boeck discovered that the dpkg-deb tool incorrectly handled certain old style Debian binary packages. If a user or an automated system were tricked into unpacking a specially crafted binary package, a remote attacker could possibly use this issue to execute arbitrary code.
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-2820-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(87108);
script_version("2.11");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/20");
script_cve_id("CVE-2015-0860");
script_xref(name:"USN", value:"2820-1");
script_name(english:"Ubuntu 14.04 LTS : dpkg vulnerability (USN-2820-1)");
script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing a security update.");
script_set_attribute(attribute:"description", value:
"Hanno Boeck discovered that the dpkg-deb tool incorrectly handled
certain old style Debian binary packages. If a user or an automated
system were tricked into unpacking a specially crafted binary package,
a remote attacker could possibly use this issue to execute arbitrary
code.
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-2820-1");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2015-0860");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"vuln_publication_date", value:"2015/12/03");
script_set_attribute(attribute:"patch_publication_date", value:"2015/11/26");
script_set_attribute(attribute:"plugin_publication_date", value:"2015/11/30");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dpkg");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dpkg-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:dselect");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdpkg-dev");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libdpkg-perl");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:14.04:-:lts");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Ubuntu Local Security Checks");
script_copyright(english:"Ubuntu Security Notice (C) 2015-2020 Canonical, Inc. / NASL script (C) 2015-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include('debian_package.inc');
if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('14.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 14.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);
var pkgs = [
{'osver': '14.04', 'pkgname': 'dpkg', 'pkgver': '1.17.5ubuntu5.5'},
{'osver': '14.04', 'pkgname': 'dpkg-dev', 'pkgver': '1.17.5ubuntu5.5'},
{'osver': '14.04', 'pkgname': 'dselect', 'pkgver': '1.17.5ubuntu5.5'},
{'osver': '14.04', 'pkgname': 'libdpkg-dev', 'pkgver': '1.17.5ubuntu5.5'},
{'osver': '14.04', 'pkgname': 'libdpkg-perl', 'pkgver': '1.17.5ubuntu5.5'}
];
var flag = 0;
foreach package_array ( pkgs ) {
var osver = NULL;
var pkgname = NULL;
var pkgver = NULL;
if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
if (osver && pkgname && pkgver) {
if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
var tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'dpkg / dpkg-dev / dselect / libdpkg-dev / libdpkg-perl');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | dpkg | p-cpe:/a:canonical:ubuntu_linux:dpkg |
| canonical | ubuntu_linux | dpkg-dev | p-cpe:/a:canonical:ubuntu_linux:dpkg-dev |
| canonical | ubuntu_linux | dselect | p-cpe:/a:canonical:ubuntu_linux:dselect |
| canonical | ubuntu_linux | libdpkg-dev | p-cpe:/a:canonical:ubuntu_linux:libdpkg-dev |
| canonical | ubuntu_linux | libdpkg-perl | p-cpe:/a:canonical:ubuntu_linux:libdpkg-perl |
| canonical | ubuntu_linux | 14.04 | cpe:/o:canonical:ubuntu_linux:14.04:-:lts |
Related
nessus
nessus
openSUSE Security Update : dpkg (openSUSE-2017-549)
2017-05-09 00:00:00
Fedora 23 : dpkg (2016-10ec03ed27)
2016-12-07 00:00:00
Fedora 25 : dpkg (2016-0918477a60)
2016-12-06 00:00:00
debiancve
debiancve
CVE-2015-0860
2015-12-03 20:59:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2017:1096-1)
2021-04-19 00:00:00
Fedora Update for dpkg FEDORA-2016-0918477a60
2016-12-07 00:00:00
Debian Security Advisory DSA 3407-1 (dpkg - security update)
2015-11-26 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: dpkg-1.17.27-1.fc25
2016-12-05 21:47:39
[SECURITY] Fedora 24 Update: dpkg-1.17.27-1.fc24
2016-12-06 10:29:41
[SECURITY] Fedora 23 Update: dpkg-1.17.27-1.fc23
2016-12-06 02:24:54
freebsd
freebsd
dpkg -- stack-based buffer overflow
2015-11-26 00:00:00
mageia
mageia
Updated dpkg packages fix CVE-2015-0860
2015-12-23 23:12:49
prion
prion
Stack overflow
2015-12-03 20:59:00
ubuntucve
ubuntucve
CVE-2015-0860
2015-11-26 00:00:00
debian
debian
[SECURITY] [DSA 3407-1] dpkg security update
2015-11-26 18:18:57
[SECURITY] [DSA 3407-1] dpkg security update
2015-11-26 18:18:57
cve
cve
CVE-2015-0860
2015-12-03 20:59:00
ubuntu
ubuntu
dpkg vulnerability
2015-11-26 00:00:00
gentoo
gentoo
dpkg: Arbitrary code execution
2016-12-04 00:00:00
suse
suse
Security update for SLES 12-SP1 Docker image (important)
2017-10-11 03:07:32
Related for UBUNTU_USN-2820-1.NASL