Lucene search
Copyright (C) 2015 Eero VolotinenOPENVAS:1361412562310121297HistorySep 29, 2015 - 12:00 a.m.
Gentoo Security Advisory GLSA 201412-11
2015-09-2900:00:00
Copyright (C) 2015 Eero Volotinen
plugins.openvas.org
14
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.1 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.975 High
EPSS
Percentile
100.0%
Gentoo Linux Local Security Checks GLSA 201412-11
# SPDX-FileCopyrightText: 2015 Eero Volotinen
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-or-later
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.121297");
script_version("2023-11-02T05:05:26+0000");
script_tag(name:"creation_date", value:"2015-09-29 11:28:08 +0300 (Tue, 29 Sep 2015)");
script_tag(name:"last_modification", value:"2023-11-02 05:05:26 +0000 (Thu, 02 Nov 2023)");
script_name("Gentoo Security Advisory GLSA 201412-11");
script_tag(name:"insight", value:"Multiple vulnerabilities have been discovered in AMD64 x86 emulation base libraries. Please review the CVE identifiers referenced below for details.");
script_tag(name:"solution", value:"Update the affected packages to the latest available version.");
script_tag(name:"solution_type", value:"VendorFix");
script_xref(name:"URL", value:"https://security.gentoo.org/glsa/201412-11");
script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
script_cve_id("CVE-2007-0720", "CVE-2007-1536", "CVE-2007-2026", "CVE-2007-2445", "CVE-2007-2741", "CVE-2007-3108", "CVE-2007-4995", "CVE-2007-5116", "CVE-2007-5135", "CVE-2007-5266", "CVE-2007-5268", "CVE-2007-5269", "CVE-2007-5849", "CVE-2010-1205", "CVE-2013-0338", "CVE-2013-0339", "CVE-2013-1664", "CVE-2013-1969", "CVE-2013-2877", "CVE-2014-0160");
script_tag(name:"cvss_base", value:"9.3");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:C/I:C/A:C");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2020-08-14 15:50:00 +0000 (Fri, 14 Aug 2020)");
script_tag(name:"qod_type", value:"package");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/gentoo", "ssh/login/pkg");
script_category(ACT_GATHER_INFO);
script_tag(name:"summary", value:"Gentoo Linux Local Security Checks GLSA 201412-11");
script_copyright("Copyright (C) 2015 Eero Volotinen");
script_family("Gentoo Local Security Checks");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-gentoo.inc");
res = "";
report = "";
if((res=ispkgvuln(pkg:"app-emulation/emul-linux-x86-baselibs", unaffected: make_list("ge 20140406-r1"), vulnerable: make_list("lt 20140406-r1"))) != NULL) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if (__pkg_match) {
exit(99);
}
Related
nessus
nessus
GLSA-201412-11 : AMD64 x86 emulation base libraries: Multiple vulnerabilities (Heartbleed)
2014-12-15 00:00:00
GLSA-200711-08 : libpng: Multiple Denials of Service
2007-11-08 00:00:00
Mandrake Linux Security Advisory : libpng (MDKSA-2007:217)
2007-11-14 00:00:00
gentoo
gentoo
AMD64 x86 emulation base libraries: Multiple vulnerabilities
2014-12-12 00:00:00
libpng: Multiple Denials of Service
2007-11-07 00:00:00
libxml2: Multiple vulnerabilities
2013-11-10 00:00:00
openvas
openvas
Mandriva Update for libpng MDKSA-2007:217 (libpng)
2009-04-09 00:00:00
Mandriva Update for libpng MDKSA-2007:217 (libpng)
2009-04-09 00:00:00
Gentoo Security Advisory GLSA 200711-08 (libpng)
2008-09-24 00:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: openssl-0.9.8b-15.fc7
2007-10-18 02:26:18
[SECURITY] Fedora Core 6 Update: openssl-0.9.8b-15.fc6
2007-10-15 20:05:56
[SECURITY] Fedora 7 Update: libpng-1.2.22-1.fc7
2007-10-24 07:18:17
redhat
redhat
(RHSA-2007:0964) Important: openssl security update
2007-10-12 00:00:00
(RHSA-2007:0813) Moderate: openssl security update
2007-10-22 00:00:00
(RHSA-2007:1003) Moderate: openssl security and bug fix update
2007-11-15 00:00:00
oraclelinux
oraclelinux
Important: openssl security update
2007-10-12 00:00:00
openssl security and bug fix update
2007-11-27 00:00:00
Moderate: openssl security update
2007-10-22 00:00:00
centos
centos
openssl security update
2007-10-18 00:46:44
openssl security update
2007-11-15 15:53:13
openssl security update
2007-10-23 23:23:09
slackware
slackware
[slackware-security] libpng
2007-11-21 08:14:31
[slackware-security] libpng for Slackware 10.1 and 10.2
2007-11-21 21:16:25
[slackware-security] file [and bin package]
2007-04-03 23:22:39
freebsd
freebsd
png -- multiple vulnerabilities
2007-10-08 00:00:00
libxml2 -- cpu consumption Dos
2013-02-21 00:00:00
securityvulns
securityvulns
libpng multiple security vulnerabilities
2007-10-20 00:00:00
[SECURITY] [DSA 2652-1] libxml2 security update
2013-04-08 00:00:00
ubuntu
ubuntu
libpng vulnerabilities
2007-10-25 00:00:00
libxml2 regression
2013-07-17 00:00:00
openssl vulnerabilities
2007-09-28 00:00:00
debian
debian
[SECURITY] [DSA 2652-1] libxml2 security update
2013-03-26 05:40:13
packetstorm
packetstorm
Core Security Technologies Advisory 2008.0124
2008-03-04 00:00:00
coresecurity
coresecurity
Multiple Vulnerabilities in Google's Android
2008-03-04 00:00:00
osv
osv
openssl - predictable random number generator
2008-05-13 00:00:00
vmware
vmware
Updated service console patches.
2008-01-07 00:00:00
Updated service console patches.
2008-01-07 00:00:00
cve
cve
prion
prion
Design/Logic Flaw
2015-01-21 18:59:00
Code injection
2007-10-13 01:17:00
Buffer overflow
2013-04-25 23:55:00
suse
suse
Security update for libxml2 (important)
2013-11-04 18:04:12
Security update for libxml2 (important)
2013-11-04 17:04:12
debiancve
debiancve
CVE-2007-4995
2007-10-13 01:17:00
CVE-2007-2026
2007-04-13 18:19:00
ubuntucve
ubuntucve
seebug
seebug
OpenSSL DTLS远程堆溢出漏洞
2007-10-15 00:00:00
f5
f5
SOL8837 - OpenSSL DTLS off-by-one error - CVE-2007-4995
2008-06-17 00:00:00
K8837 : OpenSSL DTLS off-by-one error - CVE-2007-4995
2013-03-18 00:00:00
redhatcve
redhatcve
CVE-2007-2026
2015-10-30 10:13:18
openssl
openssl
Vulnerability in OpenSSL CVE-2007-4995
2007-10-12 00:00:00
cert
cert
file integer overflow vulnerability
2007-03-26 00:00:00
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
9.1 High
AI Score
Confidence
High
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.975 High
EPSS
Percentile
100.0%
Related for OPENVAS:1361412562310121297