Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-4789-1.NASL
HistoryOct 20, 2023 - 12:00 a.m.

Ubuntu 16.04 ESM : Apache ZooKeeper vulnerabilities (USN-4789-1)

2023-10-2000:00:00
Ubuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
9
JSON

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-4789-1 advisory.

  • Buffer overflow in the C cli shell in Apache Zookeeper before 3.4.9 and 3.5.x before 3.5.3, when using the cmd: batch mode syntax, allows attackers to have unspecified impact via a long command string.
    (CVE-2016-5017)

  • Two four letter word commands wchp/wchc are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client requests.
    Apache ZooKeeper thru version 3.4.9 and 3.5.2 suffer from this issue, fixed in 3.4.10, 3.5.3, and later.
    (CVE-2017-5637)

  • No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the cluster and begin propagating counterfeit changes to the leader. (CVE-2018-8012)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-4789-1. The text
# itself is copyright (C) Canonical, Inc. See
# <https://ubuntu.com/security/notices>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
##

include('compat.inc');

if (description)
{
  script_id(183528);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/10/20");

  script_cve_id("CVE-2016-5017", "CVE-2017-5637", "CVE-2018-8012");
  script_xref(name:"IAVB", value:"2018-B-0069-S");
  script_xref(name:"IAVB", value:"2019-B-0041-S");
  script_xref(name:"USN", value:"4789-1");

  script_name(english:"Ubuntu 16.04 ESM : Apache ZooKeeper vulnerabilities (USN-4789-1)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Ubuntu host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in
the USN-4789-1 advisory.

  - Buffer overflow in the C cli shell in Apache Zookeeper before 3.4.9 and 3.5.x before 3.5.3, when using the
    cmd: batch mode syntax, allows attackers to have unspecified impact via a long command string.
    (CVE-2016-5017)

  - Two four letter word commands wchp/wchc are CPU intensive and could cause spike of CPU utilization on
    Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client requests.
    Apache ZooKeeper thru version 3.4.9 and 3.5.2 suffer from this issue, fixed in 3.4.10, 3.5.3, and later.
    (CVE-2017-5637)

  - No authentication/authorization is enforced when a server attempts to join a quorum in Apache ZooKeeper
    before 3.4.10, and 3.5.0-alpha through 3.5.3-beta. As a result an arbitrary end point could join the
    cluster and begin propagating counterfeit changes to the leader. (CVE-2018-8012)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://ubuntu.com/security/notices/USN-4789-1");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:F/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-5017");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/09/20");
  script_set_attribute(attribute:"patch_publication_date", value:"2021/03/15");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/10/20");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:16.04:-:esm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libzookeeper-java");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libzookeeper-mt-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libzookeeper-mt2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libzookeeper-st-dev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libzookeeper-st2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:libzookeeper2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:python-zookeeper");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:zookeeper");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:zookeeper-bin");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:zookeeperd");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Ubuntu Local Security Checks");

  script_copyright(english:"Ubuntu Security Notice (C) 2023 Canonical, Inc. / NASL script (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}

include('debian_package.inc');

if ( ! get_kb_item('Host/local_checks_enabled') ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/Ubuntu/release');
if ( isnull(os_release) ) audit(AUDIT_OS_NOT, 'Ubuntu');
os_release = chomp(os_release);
if (! ('16.04' >< os_release)) audit(AUDIT_OS_NOT, 'Ubuntu 16.04', 'Ubuntu ' + os_release);
if ( ! get_kb_item('Host/Debian/dpkg-l') ) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Ubuntu', cpu);

var pkgs = [
    {'osver': '16.04', 'pkgname': 'libzookeeper-java', 'pkgver': '3.4.8-1ubuntu0.1~esm1'},
    {'osver': '16.04', 'pkgname': 'libzookeeper-mt-dev', 'pkgver': '3.4.8-1ubuntu0.1~esm1'},
    {'osver': '16.04', 'pkgname': 'libzookeeper-mt2', 'pkgver': '3.4.8-1ubuntu0.1~esm1'},
    {'osver': '16.04', 'pkgname': 'libzookeeper-st-dev', 'pkgver': '3.4.8-1ubuntu0.1~esm1'},
    {'osver': '16.04', 'pkgname': 'libzookeeper-st2', 'pkgver': '3.4.8-1ubuntu0.1~esm1'},
    {'osver': '16.04', 'pkgname': 'libzookeeper2', 'pkgver': '3.4.8-1ubuntu0.1~esm1'},
    {'osver': '16.04', 'pkgname': 'python-zookeeper', 'pkgver': '3.4.8-1ubuntu0.1~esm1'},
    {'osver': '16.04', 'pkgname': 'zookeeper', 'pkgver': '3.4.8-1ubuntu0.1~esm1'},
    {'osver': '16.04', 'pkgname': 'zookeeper-bin', 'pkgver': '3.4.8-1ubuntu0.1~esm1'},
    {'osver': '16.04', 'pkgname': 'zookeeperd', 'pkgver': '3.4.8-1ubuntu0.1~esm1'}
];

var flag = 0;
foreach package_array ( pkgs ) {
  var osver = NULL;
  var pkgname = NULL;
  var pkgver = NULL;
  if (!empty_or_null(package_array['osver'])) osver = package_array['osver'];
  if (!empty_or_null(package_array['pkgname'])) pkgname = package_array['pkgname'];
  if (!empty_or_null(package_array['pkgver'])) pkgver = package_array['pkgver'];
  if (osver && pkgname && pkgver) {
    if (ubuntu_check(osver:osver, pkgname:pkgname, pkgver:pkgver)) flag++;
  }
}

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  var tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'libzookeeper-java / libzookeeper-mt-dev / libzookeeper-mt2 / etc');
}
VendorProductVersionCPE
canonicalubuntu_linux16.04cpe:/o:canonical:ubuntu_linux:16.04:-:esm
canonicalubuntu_linuxlibzookeeper-javap-cpe:/a:canonical:ubuntu_linux:libzookeeper-java
canonicalubuntu_linuxlibzookeeper-mt-devp-cpe:/a:canonical:ubuntu_linux:libzookeeper-mt-dev
canonicalubuntu_linuxlibzookeeper-mt2p-cpe:/a:canonical:ubuntu_linux:libzookeeper-mt2
canonicalubuntu_linuxlibzookeeper-st-devp-cpe:/a:canonical:ubuntu_linux:libzookeeper-st-dev
canonicalubuntu_linuxlibzookeeper-st2p-cpe:/a:canonical:ubuntu_linux:libzookeeper-st2
canonicalubuntu_linuxlibzookeeper2p-cpe:/a:canonical:ubuntu_linux:libzookeeper2
canonicalubuntu_linuxpython-zookeeperp-cpe:/a:canonical:ubuntu_linux:python-zookeeper
canonicalubuntu_linuxzookeeperp-cpe:/a:canonical:ubuntu_linux:zookeeper
canonicalubuntu_linuxzookeeper-binp-cpe:/a:canonical:ubuntu_linux:zookeeper-bin
Rows per page:
1-10 of 111

Related

ubuntu 1
openvas 10
osv 9
nessus 10
prion 3
cve 3
ubuntucve 3
debian 4
github 2
freebsd 1
ibm 11
veracode 2
redhatcve 3
debiancve 3
fedora 2
mageia 1
redhat 3
photon 2
oracle 2
ubuntu
ubuntu
Apache ZooKeeper vulnerabilities
2021-03-15 00:00:00
openvas
openvas
Ubuntu: Security Advisory (USN-4789-1)
2023-01-27 00:00:00
Debian: Security Advisory (DSA-4214-1)
2018-05-31 00:00:00
Debian Security Advisory DSA 3871-1 (zookeeper - security update)
2017-06-01 00:00:00
osv
osv
zookeeper vulnerabilities
2021-03-15 21:08:52
CVE-2017-5637
2017-10-10 01:30:22
zookeeper - security update
2017-06-15 00:00:00
nessus
nessus
Apache ZooKeeper 3.4.0 < 3.4.10 / 3.5.x < 3.5.3 Multiple Vulnerabilities
2019-05-31 00:00:00
Apache Zookeeper x < 3.4.10 / 3.5.x < 3.5.4 Missing Authentication Remote Quorum Joining Vulnerability
2018-05-31 00:00:00
Debian DSA-3871-1 : zookeeper - security update
2017-06-02 00:00:00
prion
prion
Design/Logic Flaw
2017-10-10 01:30:00
Authentication flaw
2018-05-21 19:29:00
Buffer overflow
2016-09-21 14:25:00
cve
cve
CVE-2017-5637
2017-10-10 01:30:00
CVE-2018-8012
2018-05-21 19:29:00
CVE-2016-5017
2016-09-21 14:25:00
ubuntucve
ubuntucve
CVE-2017-5637
2017-10-10 00:00:00
CVE-2018-8012
2018-05-21 00:00:00
CVE-2016-5017
2016-09-21 00:00:00
debian
debian
[SECURITY] [DSA 3871-1] zookeeper security update
2017-06-01 21:01:44
[SECURITY] [DLA 986-1] zookeeper security update
2017-06-15 20:15:41
[SECURITY] [DSA 4214-1] zookeeper security update
2018-06-01 21:23:10
github
github
Uncontrolled Resource Consumption in Apache ZooKeeper
2022-05-13 01:08:23
Missing Authorization in Apache ZooKeeper
2022-05-13 01:05:57
freebsd
freebsd
zookeeper -- Denial Of Service
2017-10-09 00:00:00
ibm
ibm
Security Bulletin: InfoSphere Data Replication is affected by an Apache ZooKeeper open source library vulnerability
2019-02-11 16:15:01
Security Bulletin: A Security Vulnerability affects IBM® Cloud Private (‪CVE-2018-8012)‬‬‬
2018-07-20 18:55:04
Security Bulletin: IBM Security Guardium is affected by a public disclosed vulnerability from Apache ZooKeeper
2018-12-13 20:35:01
veracode
veracode
Authentication Bypass
2018-05-22 04:44:01
Denial Of Service (DoS)
2017-02-15 06:56:48
redhatcve
redhatcve
CVE-2017-5637
2019-10-07 09:35:16
CVE-2018-8012
2018-05-23 04:21:40
CVE-2016-5017
2016-09-19 11:48:34
debiancve
debiancve
CVE-2017-5637
2017-10-10 01:30:00
CVE-2018-8012
2018-05-21 19:29:00
CVE-2016-5017
2016-09-21 14:25:00
fedora
fedora
[SECURITY] Fedora 25 Update: zookeeper-3.4.9-1.fc25
2016-12-31 06:51:27
[SECURITY] Fedora 24 Update: zookeeper-3.4.9-1.fc24
2016-12-31 08:24:39
mageia
mageia
Updated zookeeper packages fix security vulnerability
2016-09-28 08:59:24
redhat
redhat
(RHSA-2017:3355) Moderate: Red Hat JBoss BPM Suite 6.4.7 security update
2017-11-30 16:30:18
(RHSA-2017:3354) Moderate: Red Hat JBoss BRMS 6.4.7 security update
2017-11-30 16:29:58
(RHSA-2017:2477) Important: Red Hat JBoss Data Virtualization 6.3 Update 7 security update
2017-08-15 15:01:06
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2016-0012
2016-12-06 00:00:00
Critical Photon OS Security Update - PHSA-2017-0091
2017-12-08 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2020
2020-07-14 00:00:00
Oracle Critical Patch Update Advisory - July 2021
2021-07-20 00:00:00
JSON
Related for UBUNTU_USN-4789-1.NASL
ubuntu1openvas10osv9nessus10prion3cve3ubuntucve3debian4github2freebsd1ibm11veracode2redhatcve3debiancve3fedora2mageia1redhat3photon2oracle2