ID OPENVAS:1361412562310123634 Type openvas Reporter Eero Volotinen Modified 2018-09-28T00:00:00
Description
Oracle Linux Local Security Checks ELSA-2013-0769
###############################################################################
# OpenVAS Vulnerability Test
# $Id: ELSA-2013-0769.nasl 11688 2018-09-28 13:36:28Z cfischer $
#
# Oracle Linux Local Check
#
# Authors:
# Eero Volotinen <eero.volotinen@solinor.com>
#
# Copyright:
# Copyright (c) 2015 Eero Volotinen, http://solinor.com
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.123634");
script_version("$Revision: 11688 $");
script_tag(name:"creation_date", value:"2015-10-06 14:06:33 +0300 (Tue, 06 Oct 2015)");
script_tag(name:"last_modification", value:"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $");
script_name("Oracle Linux Local Check: ELSA-2013-0769");
script_tag(name:"insight", value:"ELSA-2013-0769 - glibc security and bug fix update. Please see the references for more insight.");
script_tag(name:"solution", value:"Update the affected packages to the latest available version.");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"summary", value:"Oracle Linux Local Security Checks ELSA-2013-0769");
script_xref(name:"URL", value:"http://linux.oracle.com/errata/ELSA-2013-0769.html");
script_cve_id("CVE-2013-0242", "CVE-2013-1914");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
script_tag(name:"qod_type", value:"package");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/oracle_linux", "ssh/login/release", re:"ssh/login/release=OracleLinux5");
script_category(ACT_GATHER_INFO);
script_copyright("Eero Volotinen");
script_family("Oracle Linux Local Security Checks");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release) exit(0);
res = "";
if(release == "OracleLinux5")
{
if ((res = isrpmvuln(pkg:"glibc", rpm:"glibc~2.5~107.el5_9.4", rls:"OracleLinux5")) != NULL) {
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"glibc-common", rpm:"glibc-common~2.5~107.el5_9.4", rls:"OracleLinux5")) != NULL) {
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"glibc-devel", rpm:"glibc-devel~2.5~107.el5_9.4", rls:"OracleLinux5")) != NULL) {
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"glibc-headers", rpm:"glibc-headers~2.5~107.el5_9.4", rls:"OracleLinux5")) != NULL) {
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"glibc-utils", rpm:"glibc-utils~2.5~107.el5_9.4", rls:"OracleLinux5")) != NULL) {
security_message(data:res);
exit(0);
}
if ((res = isrpmvuln(pkg:"nscd", rpm:"nscd~2.5~107.el5_9.4", rls:"OracleLinux5")) != NULL) {
security_message(data:res);
exit(0);
}
}
if (__pkg_match) exit(99);
exit(0);
{"id": "OPENVAS:1361412562310123634", "bulletinFamily": "scanner", "title": "Oracle Linux Local Check: ELSA-2013-0769", "description": "Oracle Linux Local Security Checks ELSA-2013-0769", "published": "2015-10-06T00:00:00", "modified": "2018-09-28T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123634", "reporter": "Eero Volotinen", "references": ["http://linux.oracle.com/errata/ELSA-2013-0769.html"], "cvelist": ["CVE-2013-0242", "CVE-2013-1914"], "type": "openvas", "lastseen": "2019-05-29T18:36:20", "history": [{"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2013-0242", "CVE-2013-1914"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "Oracle Linux Local Security Checks ELSA-2013-0769", "edition": 6, "enchantments": {"dependencies": {"modified": "2018-09-28T18:24:23", "references": [{"idList": ["DEBIAN:DLA-165-1:23BFE"], "type": "debian"}, {"idList": ["SOL15640", "F5:K15640"], "type": "f5"}, {"idList": ["OPENVAS:1361412562310865671", "OPENVAS:1361412562310123527", "OPENVAS:1361412562310881722", "OPENVAS:1361412562310870985", "OPENVAS:871075", "OPENVAS:1361412562310871075", "OPENVAS:1361412562310105086", "OPENVAS:881722", "OPENVAS:870985", "OPENVAS:1361412562310120295"], "type": "openvas"}, {"idList": ["ALA_ALAS-2013-270.NASL", "REDHAT-RHSA-2013-0769.NASL", "VMWARE_VMSA-2014-0008_REMOTE.NASL", "CENTOS_RHSA-2013-0769.NASL", "ORACLELINUX_ELSA-2013-1605.NASL", "VMWARE_ESXI_5_5_BUILD_2068190_REMOTE.NASL", "VMWARE_ESXI_5_1_BUILD_2323231_REMOTE.NASL", "ORACLELINUX_ELSA-2013-0769.NASL", "SL_20130424_GLIBC_ON_SL5_X.NASL", "MANDRIVA_MDVSA-2013-163.NASL"], "type": "nessus"}, {"idList": ["CVE-2013-0242", "CVE-2013-1914"], "type": "cve"}, {"idList": ["VMSA-2014-0008"], "type": "vmware"}, {"idList": ["RHSA-2013:1605", "RHSA-2013:1527", "RHSA-2013:0769"], "type": "redhat"}, {"idList": ["ALAS-2013-270"], "type": "amazon"}, {"idList": ["USN-1991-1"], "type": "ubuntu"}, {"idList": ["SECURITYVULNS:DOC:30044", "SECURITYVULNS:DOC:29383", "SECURITYVULNS:VULN:13071"], "type": "securityvulns"}, {"idList": ["GLSA-201503-04"], "type": "gentoo"}, {"idList": ["CESA-2013:0769", "CESA-2013:1605"], "type": "centos"}, {"idList": ["SUSE-SU-2014:1128-1", "SUSE-SU-2014:1122-1"], "type": "suse"}, {"idList": ["ELSA-2013-0769", "ELSA-2013-1605"], "type": "oraclelinux"}]}, "score": {"value": 7.2, "vector": "NONE"}}, "hash": "6f2906061dc7fbca0a784c61b743af37c2f34a13991e01ecc7befa33966c99e1", "hashmap": [{"hash": "8a475d0ea25a6643960fb07f2c542b7b", "key": "sourceData"}, {"hash": "e482e2536fd94b7ff9255cac64c1cc78", "key": "title"}, {"hash": "e3fe0a23059307d9f79f162426695d44", "key": "modified"}, {"hash": "39800f810e5d3eab40444e68fa75fece", "key": "pluginID"}, {"hash": "c347b979aa1ea1e110a37c1593cdb72d", "key": "references"}, {"hash": "65b3ef7986ae0d39f717a8d531c279bf", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "3cf09655bd283808953ff597e6fe0e98", "key": "description"}, {"hash": "7d0eb71ef6d81e764822b746377f5bf7", "key": "href"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123634", "id": "OPENVAS:1361412562310123634", "lastseen": "2018-09-28T18:24:23", "modified": "2018-09-28T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310123634", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2013-0769.html"], "reporter": "Eero Volotinen", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2013-0769.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123634\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:06:33 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2013-0769\");\n script_tag(name:\"insight\", value:\"ELSA-2013-0769 - glibc security and bug fix update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2013-0769\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2013-0769.html\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux5\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2013-0769", "type": "openvas", "viewCount": 1}, "differentElements": ["cvss"], "edition": 6, "lastseen": "2018-09-28T18:24:23"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2013-0242", "CVE-2013-1914"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "Oracle Linux Local Security Checks ELSA-2013-0769", "edition": 5, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "cc239c097a349ecb5dd7aa73a06ca1a6560ad03cf849bd83750909b93618ca7f", "hashmap": [{"hash": "774d0176dfa389c0c71e9e200f95a6ba", "key": "modified"}, {"hash": "e482e2536fd94b7ff9255cac64c1cc78", "key": "title"}, {"hash": "6a4b8c653a6fcdaaf9a97bfc6dcfc486", "key": "sourceData"}, {"hash": "39800f810e5d3eab40444e68fa75fece", "key": "pluginID"}, {"hash": "c347b979aa1ea1e110a37c1593cdb72d", "key": "references"}, {"hash": "65b3ef7986ae0d39f717a8d531c279bf", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "3cf09655bd283808953ff597e6fe0e98", "key": "description"}, {"hash": "7d0eb71ef6d81e764822b746377f5bf7", "key": "href"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123634", "id": "OPENVAS:1361412562310123634", "lastseen": "2018-09-01T23:50:45", "modified": "2017-07-06T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310123634", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2013-0769.html"], "reporter": "Eero Volotinen", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2013-0769.nasl 6558 2017-07-06 11:56:55Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.123634\");\nscript_version(\"$Revision: 6558 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:06:33 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:56:55 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2013-0769\");\nscript_tag(name: \"insight\", value: \"ELSA-2013-0769 - glibc security and bug fix update - [2.5-107.4]- Add missing patch to avoid use after free (#816647).[2.5-107.3]- Fix multibyte character processing crash in regexp (CVE-2013-0242, #951130) - Fix getaddrinfo stack overflow resulting in application crash (CVE-2013-1914, #951130)[2.5-107.2]- Call feraiseexcept only if exceptions are not masked (#861871).\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2013-0769\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2013-0769.html\");\nscript_cve_id(\"CVE-2013-0242\",\"CVE-2013-1914\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2013-0769", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 5, "lastseen": "2018-09-01T23:50:45"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2013-0242", "CVE-2013-1914"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Oracle Linux Local Security Checks ELSA-2013-0769", "edition": 4, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "81a7f6680b59ae97829f08b336abca379d1bc71a609572c98956db9e35925859", "hashmap": [{"hash": "774d0176dfa389c0c71e9e200f95a6ba", "key": "modified"}, {"hash": "e482e2536fd94b7ff9255cac64c1cc78", "key": "title"}, {"hash": "6a4b8c653a6fcdaaf9a97bfc6dcfc486", "key": "sourceData"}, {"hash": "39800f810e5d3eab40444e68fa75fece", "key": "pluginID"}, {"hash": "c347b979aa1ea1e110a37c1593cdb72d", "key": "references"}, {"hash": "65b3ef7986ae0d39f717a8d531c279bf", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "3cf09655bd283808953ff597e6fe0e98", "key": "description"}, {"hash": "7d0eb71ef6d81e764822b746377f5bf7", "key": "href"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123634", "id": "OPENVAS:1361412562310123634", "lastseen": "2018-08-30T19:22:16", "modified": "2017-07-06T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310123634", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2013-0769.html"], "reporter": "Eero Volotinen", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2013-0769.nasl 6558 2017-07-06 11:56:55Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.123634\");\nscript_version(\"$Revision: 6558 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:06:33 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:56:55 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2013-0769\");\nscript_tag(name: \"insight\", value: \"ELSA-2013-0769 - glibc security and bug fix update - [2.5-107.4]- Add missing patch to avoid use after free (#816647).[2.5-107.3]- Fix multibyte character processing crash in regexp (CVE-2013-0242, #951130) - Fix getaddrinfo stack overflow resulting in application crash (CVE-2013-1914, #951130)[2.5-107.2]- Call feraiseexcept only if exceptions are not masked (#861871).\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2013-0769\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2013-0769.html\");\nscript_cve_id(\"CVE-2013-0242\",\"CVE-2013-1914\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2013-0769", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2018-08-30T19:22:16"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2013-0242", "CVE-2013-1914"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "Oracle Linux Local Security Checks ELSA-2013-0769", "edition": 2, "enchantments": {}, "hash": "8ac6750645964bf655fdec12e4a4dfdb5136019afcbcd806823ed09dd0839bff", "hashmap": [{"hash": "e482e2536fd94b7ff9255cac64c1cc78", "key": "title"}, {"hash": "39800f810e5d3eab40444e68fa75fece", "key": "pluginID"}, {"hash": "c347b979aa1ea1e110a37c1593cdb72d", "key": "references"}, {"hash": "65b3ef7986ae0d39f717a8d531c279bf", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "3cf09655bd283808953ff597e6fe0e98", "key": "description"}, {"hash": "e56ec8cb5c39a87184fdd02aa7a685e8", "key": "modified"}, {"hash": "7d0eb71ef6d81e764822b746377f5bf7", "key": "href"}, {"hash": "99c726163b1965bc17aa3e7d05ff425f", "key": "sourceData"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123634", "id": "OPENVAS:1361412562310123634", "lastseen": "2017-07-07T10:51:32", "modified": "2017-06-22T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310123634", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2013-0769.html"], "reporter": "Eero Volotinen", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2013-0769.nasl 6404 2017-06-22 10:00:06Z teissa $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.123634\");\nscript_version(\"$Revision: 6404 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:06:33 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-06-22 12:00:06 +0200 (Thu, 22 Jun 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2013-0769\");\nscript_tag(name: \"insight\", value: \"ELSA-2013-0769 - glibc security and bug fix update - [2.5-107.4]- Add missing patch to avoid use after free (#816647).[2.5-107.3]- Fix multibyte character processing crash in regexp (CVE-2013-0242, #951130) - Fix getaddrinfo stack overflow resulting in application crash (CVE-2013-1914, #951130)[2.5-107.2]- Call feraiseexcept only if exceptions are not masked (#861871).\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2013-0769\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2013-0769.html\");\nscript_cve_id(\"CVE-2013-0242\",\"CVE-2013-1914\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"login/SSH/success\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2013-0769", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 2, "lastseen": "2017-07-07T10:51:32"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2013-0242", "CVE-2013-1914"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "Oracle Linux Local Security Checks ELSA-2013-0769", "edition": 3, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "hash": "cc239c097a349ecb5dd7aa73a06ca1a6560ad03cf849bd83750909b93618ca7f", "hashmap": [{"hash": "774d0176dfa389c0c71e9e200f95a6ba", "key": "modified"}, {"hash": "e482e2536fd94b7ff9255cac64c1cc78", "key": "title"}, {"hash": "6a4b8c653a6fcdaaf9a97bfc6dcfc486", "key": "sourceData"}, {"hash": "39800f810e5d3eab40444e68fa75fece", "key": "pluginID"}, {"hash": "c347b979aa1ea1e110a37c1593cdb72d", "key": "references"}, {"hash": "65b3ef7986ae0d39f717a8d531c279bf", "key": "cvelist"}, {"hash": "e31ed89ab0cbb68ce2c40f17ec1e5483", "key": "naslFamily"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "84813b1457b92d6ba1174abffbb83a2f", "key": "cvss"}, {"hash": "3cf09655bd283808953ff597e6fe0e98", "key": "description"}, {"hash": "7d0eb71ef6d81e764822b746377f5bf7", "key": "href"}, {"hash": "2996f7d445a5f86070564ef8302482c9", "key": "published"}, {"hash": "bb3dbc0ecae053747a8a163af717a25f", "key": "reporter"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123634", "id": "OPENVAS:1361412562310123634", "lastseen": "2017-07-24T12:52:47", "modified": "2017-07-06T00:00:00", "naslFamily": "Oracle Linux Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310123634", "published": "2015-10-06T00:00:00", "references": ["http://linux.oracle.com/errata/ELSA-2013-0769.html"], "reporter": "Eero Volotinen", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2013-0769.nasl 6558 2017-07-06 11:56:55Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.123634\");\nscript_version(\"$Revision: 6558 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:06:33 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:56:55 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2013-0769\");\nscript_tag(name: \"insight\", value: \"ELSA-2013-0769 - glibc security and bug fix update - [2.5-107.4]- Add missing patch to avoid use after free (#816647).[2.5-107.3]- Fix multibyte character processing crash in regexp (CVE-2013-0242, #951130) - Fix getaddrinfo stack overflow resulting in application crash (CVE-2013-1914, #951130)[2.5-107.2]- Call feraiseexcept only if exceptions are not masked (#861871).\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2013-0769\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2013-0769.html\");\nscript_cve_id(\"CVE-2013-0242\",\"CVE-2013-1914\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "title": "Oracle Linux Local Check: ELSA-2013-0769", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2017-07-24T12:52:47"}], "edition": 7, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "65b3ef7986ae0d39f717a8d531c279bf"}, {"key": "cvss", "hash": "41b62a8aa1ee5c40897717cadc30784a"}, {"key": "description", "hash": "3cf09655bd283808953ff597e6fe0e98"}, {"key": "href", "hash": "7d0eb71ef6d81e764822b746377f5bf7"}, {"key": "modified", "hash": "e3fe0a23059307d9f79f162426695d44"}, {"key": "naslFamily", "hash": "e31ed89ab0cbb68ce2c40f17ec1e5483"}, {"key": "pluginID", "hash": "39800f810e5d3eab40444e68fa75fece"}, {"key": "published", "hash": "2996f7d445a5f86070564ef8302482c9"}, {"key": "references", "hash": "c347b979aa1ea1e110a37c1593cdb72d"}, {"key": "reporter", "hash": "bb3dbc0ecae053747a8a163af717a25f"}, {"key": "sourceData", "hash": "8a475d0ea25a6643960fb07f2c542b7b"}, {"key": "title", "hash": "e482e2536fd94b7ff9255cac64c1cc78"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "hash": "7c571e54e80f9badeb3cab04af8941eb9a92ca9d48ffa342ec5c39e36b3f4c5c", "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2013-1914", "CVE-2013-0242"]}, {"type": "centos", "idList": ["CESA-2013:0769", "CESA-2013:1605"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:VULN:13071", "SECURITYVULNS:DOC:30044", "SECURITYVULNS:DOC:29383"]}, {"type": "nessus", "idList": ["SL_20130424_GLIBC_ON_SL5_X.NASL", "REDHAT-RHSA-2013-1605.NASL", "VMWARE_ESXI_5_1_BUILD_2323231_REMOTE.NASL", "VMWARE_ESXI_5_5_BUILD_2068190_REMOTE.NASL", "REDHAT-RHSA-2013-0769.NASL", "VMWARE_VMSA-2014-0008_REMOTE.NASL", "ORACLELINUX_ELSA-2013-0769.NASL", "MANDRIVA_MDVSA-2013-163.NASL", "CENTOS_RHSA-2013-0769.NASL", "ALA_ALAS-2013-270.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310120295", "OPENVAS:1361412562310123527", "OPENVAS:870985", "OPENVAS:1361412562310881722", "OPENVAS:841605", "OPENVAS:871075", "OPENVAS:881722", "OPENVAS:1361412562310870985", "OPENVAS:1361412562310105087", "OPENVAS:1361412562310871075"]}, {"type": "redhat", "idList": ["RHSA-2013:1527", "RHSA-2013:0769", "RHSA-2013:1605"]}, {"type": "oraclelinux", "idList": ["ELSA-2013-0769", "ELSA-2013-1605"]}, {"type": "amazon", "idList": ["ALAS-2013-270"]}, {"type": "ubuntu", "idList": ["USN-1991-1"]}, {"type": "vmware", "idList": ["VMSA-2014-0008"]}, {"type": "f5", "idList": ["SOL15640", "F5:K15640"]}, {"type": "debian", "idList": ["DEBIAN:DLA-165-1:23BFE"]}, {"type": "gentoo", "idList": ["GLSA-201503-04"]}, {"type": "suse", "idList": ["SUSE-SU-2014:1128-1", "SUSE-SU-2014:1122-1"]}], "modified": "2019-05-29T18:36:20", "rev": 2}, "score": {"value": 6.5, "vector": "NONE", "modified": "2019-05-29T18:36:20", "rev": 2}, "vulnersScore": 6.5}, "objectVersion": "1.3", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2013-0769.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123634\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:06:33 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2013-0769\");\n script_tag(name:\"insight\", value:\"ELSA-2013-0769 - glibc security and bug fix update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2013-0769\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2013-0769.html\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux5\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux5\")\n{\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"OracleLinux5\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "naslFamily": "Oracle Linux Local Security Checks", "pluginID": "1361412562310123634", "scheme": null}
{"cve": [{"lastseen": "2019-05-29T18:12:59", "bulletinFamily": "NVD", "description": "Buffer overflow in the extend_buffers function in the regular expression matcher (posix/regexec.c) in glibc, possibly 2.17 and earlier, allows context-dependent attackers to cause a denial of service (memory corruption and crash) via crafted multibyte characters.", "modified": "2017-08-29T01:33:00", "id": "CVE-2013-0242", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-0242", "published": "2013-02-08T20:55:00", "title": "CVE-2013-0242", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:13:02", "bulletinFamily": "NVD", "description": "Stack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.17 and earlier allows remote attackers to cause a denial of service (crash) via a (1) hostname or (2) IP address that triggers a large number of domain conversion results.", "modified": "2017-07-01T01:29:00", "id": "CVE-2013-1914", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-1914", "published": "2013-04-29T22:55:00", "title": "CVE-2013-1914", "type": "cve", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "centos": [{"lastseen": "2019-12-20T18:29:22", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2013:0769\n\n\nThe glibc packages provide the standard C libraries (libc), POSIX thread\nlibraries (libpthread), standard math libraries (libm), and the Name Server\nCaching Daemon (nscd) used by multiple programs on the system. Without\nthese libraries, the Linux system cannot function correctly.\n\nIt was found that getaddrinfo() did not limit the amount of stack memory\nused during name resolution. An attacker able to make an application\nresolve an attacker-controlled hostname or IP address could possibly cause\nthe application to exhaust all stack memory and crash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that process\nmultibyte character input. If an application utilized the glibc regular\nexpression matching mechanism, an attacker could provide specially-crafted\ninput that, when processed, would cause the application to crash.\n(CVE-2013-0242)\n\nThis update also fixes the following bugs:\n\n* The improvements RHSA-2012:1207 made to the accuracy of floating point\nfunctions in the math library caused performance regressions for those\nfunctions. The performance regressions were analyzed and a fix was applied\nthat retains the current accuracy but reduces the performance penalty to\nacceptable levels. Refer to Red Hat Knowledge solution 229993, linked\nto in the References, for further information. (BZ#950535)\n\n* It was possible that a memory location freed by the localization code\ncould be accessed immediately after, resulting in a crash. The fix ensures\nthat the application does not crash by avoiding the invalid memory access.\n(BZ#951493)\n\nUsers of glibc are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2013-April/031744.html\n\n**Affected packages:**\nglibc\nglibc-common\nglibc-devel\nglibc-headers\nglibc-utils\nnscd\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-0769.html", "modified": "2013-04-24T21:58:40", "published": "2013-04-24T21:58:40", "href": "http://lists.centos.org/pipermail/centos-announce/2013-April/031744.html", "id": "CESA-2013:0769", "title": "glibc, nscd security update", "type": "centos", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-12-20T18:29:16", "bulletinFamily": "unix", "description": "**CentOS Errata and Security Advisory** CESA-2013:1605\n\n\nThe glibc packages provide the standard C libraries (libc), POSIX thread\nlibraries (libpthread), standard math libraries (libm), and the Name Server\nCaching Daemon (nscd) used by multiple programs on the system. Without\nthese libraries, the Linux system cannot function correctly.\n\nMultiple integer overflow flaws, leading to heap-based buffer overflows,\nwere found in glibc's memory allocator functions (pvalloc, valloc, and\nmemalign). If an application used such a function, it could cause the\napplication to crash or, potentially, execute arbitrary code with the\nprivileges of the user running the application. (CVE-2013-4332)\n\nA flaw was found in the regular expression matching routines that process\nmultibyte character input. If an application utilized the glibc regular\nexpression matching mechanism, an attacker could provide specially-crafted\ninput that, when processed, would cause the application to crash.\n(CVE-2013-0242)\n\nIt was found that getaddrinfo() did not limit the amount of stack memory\nused during name resolution. An attacker able to make an application\nresolve an attacker-controlled hostname or IP address could possibly cause\nthe application to exhaust all stack memory and crash. (CVE-2013-1914)\n\nAmong other changes, this update includes an important fix for the following\nbug:\n\n* Due to a defect in the initial release of the getaddrinfo() system call in Red\nHat enterprise Linux 6.0, AF_INET and AF_INET6 queries resolved from the\n/etc/hosts file returned queried names as canonical names. This incorrect\nbehavior is, however, still considered to be the expected behavior. As a result\nof a recent change in getaddrinfo(), AF_INET6 queries started resolving the\ncanonical names correctly. However, this behavior was unexpected by applications\nthat relied on queries resolved from the /etc/hosts file, and these applications\ncould thus fail to operate properly. This update applies a fix ensuring that\nAF_INET6 queries resolved from /etc/hosts always return the queried name as\ncanonical. Note that DNS lookups are resolved properly and always return the\ncorrect canonical names. A proper fix to AF_INET6 queries resolution from\n/etc/hosts may be applied in future releases; for now, due to a lack of\nstandard, Red Hat suggests the first entry in the /etc/hosts file, that applies\nfor the IP address being resolved, to be considered the canonical entry.\n(BZ#1022022)\n\nThese updated glibc packages also include additional bug fixes and \nvarious enhancements. Space precludes documenting all of these changes \nin this advisory. Users are directed to the Red Hat Enterprise Linux 6.5 \nTechnical Notes, linked to in the References, for information on the \nmost significant of these changes.\n\nAll glibc users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues and add these\nenhancements.\n\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-cr-announce/2013-November/007147.html\n\n**Affected packages:**\nglibc\nglibc-common\nglibc-devel\nglibc-headers\nglibc-static\nglibc-utils\nnscd\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2013-1605.html", "modified": "2013-11-26T13:31:38", "published": "2013-11-26T13:31:38", "href": "http://lists.centos.org/pipermail/centos-cr-announce/2013-November/007147.html", "id": "CESA-2013:1605", "title": "glibc, nscd security update", "type": "centos", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "securityvulns": [{"lastseen": "2018-08-31T11:09:51", "bulletinFamily": "software", "description": "Buffer overflow in regexec, buffer overflow in getaddrinfo.", "modified": "2013-05-09T00:00:00", "published": "2013-05-09T00:00:00", "id": "SECURITYVULNS:VULN:13071", "href": "https://vulners.com/securityvulns/SECURITYVULNS:VULN:13071", "title": "GNU glibc security vulnerabilities", "type": "securityvulns", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:47", "bulletinFamily": "software", "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n _______________________________________________________________________\r\n\r\n Mandriva Linux Security Advisory MDVSA-2013:163\r\n http://www.mandriva.com/en/support/security/\r\n _______________________________________________________________________\r\n\r\n Package : glibc\r\n Date : May 7, 2013\r\n Affected: Business Server 1.0\r\n _______________________________________________________________________\r\n\r\n Problem Description:\r\n\r\n Multiple vulnerabilities has been discovered and corrected in glibc:\r\n \r\n Buffer overflow in the extend_buffers function in the regular\r\n expression matcher (posix/regexec.c) in glibc, possibly 2.17 and\r\n earlier, allows context-dependent attackers to cause a denial of\r\n service (memory corruption and crash) via crafted multibyte characters\r\n (CVE-2013-0242).\r\n \r\n Stack-based buffer overflow in the getaddrinfo function in\r\n sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6)\r\n 2.17 and earlier allows remote attackers to cause a denial of service\r\n (crash) via a (1) hostname or (2) IP address that triggers a large\r\n number of domain conversion results (CVE-2013-1914).\r\n \r\n The updated packages have been patched to correct these issues.\r\n _______________________________________________________________________\r\n\r\n References:\r\n\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0242\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1914\r\n _______________________________________________________________________\r\n\r\n Updated Packages:\r\n\r\n Mandriva Business Server 1/X86_64:\r\n ec721ecac69f6bace0fec908ed45cf6d mbs1/x86_64/glibc-2.14.1-12.1.mbs1.x86_64.rpm\r\n 8d9c7b66f9b61da0c0e70141861529f8 mbs1/x86_64/glibc-devel-2.14.1-12.1.mbs1.x86_64.rpm\r\n 5a442d51c573ea1cc3593bf5b68c7e07 mbs1/x86_64/glibc-doc-2.14.1-12.1.mbs1.noarch.rpm\r\n 67ca31e66b41d88a169599fddcc628c3 mbs1/x86_64/glibc-doc-pdf-2.14.1-12.1.mbs1.noarch.rpm\r\n 8e2b8f84441470a05b513420641b0505 mbs1/x86_64/glibc-i18ndata-2.14.1-12.1.mbs1.x86_64.rpm\r\n 59226b1addf578c14a0c53e0731c37a3 mbs1/x86_64/glibc-profile-2.14.1-12.1.mbs1.x86_64.rpm\r\n 291cc63f1cd9a45ddf89455b133d06b4 mbs1/x86_64/glibc-static-devel-2.14.1-12.1.mbs1.x86_64.rpm\r\n 143e405ead8fa9a2f9184547ef6c75fc mbs1/x86_64/glibc-utils-2.14.1-12.1.mbs1.x86_64.rpm\r\n fecc2dd312e4513a89360927c579bccd mbs1/x86_64/nscd-2.14.1-12.1.mbs1.x86_64.rpm \r\n 180d09be78ca8fdfa5ca6ec1c514026a mbs1/SRPMS/glibc-2.14.1-12.1.mbs1.src.rpm\r\n _______________________________________________________________________\r\n\r\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\r\n of md5 checksums and GPG signatures is performed automatically for you.\r\n\r\n All packages are signed by Mandriva for security. You can obtain the\r\n GPG public key of the Mandriva Security Team by executing:\r\n\r\n gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\r\n\r\n You can view other update advisories for Mandriva Linux at:\r\n\r\n http://www.mandriva.com/en/support/security/advisories/\r\n\r\n If you want to report vulnerabilities, please contact\r\n\r\n security_(at)_mandriva.com\r\n _______________________________________________________________________\r\n\r\n Type Bits/KeyID Date User ID\r\n pub 1024D/22458A98 2000-07-10 Mandriva Security Team\r\n <security*mandriva.com>\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.12 (GNU/Linux)\r\n\r\niD8DBQFRiQeOmqjQ0CJFipgRAgI5AKCdFyI/q4cEL7h8jQyu7m/6KMmzQQCfRt/X\r\nyvN2sdb9PK31dXX/cWwckNA=\r\n=hmEZ\r\n-----END PGP SIGNATURE-----\r\n", "modified": "2013-05-09T00:00:00", "published": "2013-05-09T00:00:00", "id": "SECURITYVULNS:DOC:29383", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:29383", "title": "[ MDVSA-2013:163 ] glibc", "type": "securityvulns", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-08-31T11:10:49", "bulletinFamily": "software", "description": "\r\n\r\n-----BEGIN PGP SIGNED MESSAGE-----\r\nHash: SHA1\r\n\r\n _______________________________________________________________________\r\n\r\n Mandriva Linux Security Advisory MDVSA-2013:284\r\n http://www.mandriva.com/en/support/security/\r\n _______________________________________________________________________\r\n\r\n Package : glibc\r\n Date : November 25, 2013\r\n Affected: Enterprise Server 5.0\r\n _______________________________________________________________________\r\n\r\n Problem Description:\r\n\r\n Multiple vulnerabilities was found and corrected in glibc:\r\n \r\n Integer overflow in string/strcoll_l.c in the GNU C Library (aka\r\n glibc or libc6) 2.17 and earlier allows context-dependent attackers\r\n to cause a denial of service (crash) or possibly execute arbitrary\r\n code via a long string, which triggers a heap-based buffer overflow\r\n (CVE-2012-4412).\r\n \r\n Stack-based buffer overflow in string/strcoll_l.c in the GNU C Library\r\n (aka glibc or libc6) 2.17 and earlier allows context-dependent\r\n attackers to cause a denial of service (crash) or possibly execute\r\n arbitrary code via a long string that triggers a malloc failure and\r\n use of the alloca function (CVE-2012-4424).\r\n \r\n Multiple integer overflows in malloc/malloc.c in the GNU C Library (aka\r\n glibc or libc6) 2.18 and earlier allow context-dependent attackers to\r\n cause a denial of service (heap corruption) via a large value to the\r\n (1) pvalloc, (2) valloc, (3) posix_memalign, (4) memalign, or (5)\r\n aligned_alloc functions (CVE-2013-4332).\r\n \r\n A stack (frame) overflow flaw, which led to a denial of service\r\n (application crash), was found in the way glibc's getaddrinfo()\r\n function processed certain requests when called with AF_INET6. A\r\n similar flaw to CVE-2013-1914, this affects AF_INET6 rather than\r\n AF_UNSPEC (CVE-2013-4458).\r\n \r\n The PTR_MANGLE implementation in the GNU C Library (aka glibc or\r\n libc6) 2.4, 2.17, and earlier, and Embedded GLIBC (EGLIBC) does not\r\n initialize the random value for the pointer guard, which makes it\r\n easier for context- dependent attackers to control execution flow by\r\n leveraging a buffer-overflow vulnerability in an application and using\r\n the known zero value pointer guard to calculate a pointer address\r\n (CVE-2013-4788).\r\n \r\n The updated packages have been patched to correct these issues.\r\n _______________________________________________________________________\r\n\r\n References:\r\n\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4412\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4424\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4332\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4458\r\n http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4788\r\n _______________________________________________________________________\r\n\r\n Updated Packages:\r\n\r\n Mandriva Enterprise Server 5:\r\n ca2e58ecf7a2d62e523b1395175896b5 mes5/i586/glibc-2.8-1.20080520.5.10mnb2.i586.rpm\r\n 917ad59055eaebd5e68e5c2e73bb1839 mes5/i586/glibc-devel-2.8-1.20080520.5.10mnb2.i586.rpm\r\n 38faa00ce7b79dc37a7494b90c0b4f6c mes5/i586/glibc-doc-2.8-1.20080520.5.10mnb2.i586.rpm\r\n 8510201c6ee5f9b9ff4e5a62ea6082d8 mes5/i586/glibc-doc-pdf-2.8-1.20080520.5.10mnb2.i586.rpm\r\n a2f9bfe66d75446bd5e963673cb99184 mes5/i586/glibc-i18ndata-2.8-1.20080520.5.10mnb2.i586.rpm\r\n b4513eff5fef362f619f6ae0ea35ce5f mes5/i586/glibc-profile-2.8-1.20080520.5.10mnb2.i586.rpm\r\n a82b76207b1aca73c057c486a5e07636 mes5/i586/glibc-static-devel-2.8-1.20080520.5.10mnb2.i586.rpm\r\n df8b74ecfd447b107364e217da29f5d9 mes5/i586/glibc-utils-2.8-1.20080520.5.10mnb2.i586.rpm\r\n 3e9ce8665a7e61176c3b11cd266172b0 mes5/i586/nscd-2.8-1.20080520.5.10mnb2.i586.rpm \r\n 8e2ebc125c5a6e7dcf17d4535f7f911c mes5/SRPMS/glibc-2.8-1.20080520.5.10mnb2.src.rpm\r\n\r\n Mandriva Enterprise Server 5/X86_64:\r\n 7c1b3450ba04c65d1a911e44c1554b67 mes5/x86_64/glibc-2.8-1.20080520.5.10mnb2.x86_64.rpm\r\n f5fe7d527fc92c69118e8c492e88de4f mes5/x86_64/glibc-devel-2.8-1.20080520.5.10mnb2.x86_64.rpm\r\n cc8afd4f3f5d54455d008d24412edc3d mes5/x86_64/glibc-doc-2.8-1.20080520.5.10mnb2.x86_64.rpm\r\n 0a946db4c66a3ae2985b983870d9b3fb mes5/x86_64/glibc-doc-pdf-2.8-1.20080520.5.10mnb2.x86_64.rpm\r\n 35f418e46f2739e07666b2b80a968c55 mes5/x86_64/glibc-i18ndata-2.8-1.20080520.5.10mnb2.x86_64.rpm\r\n c750b3334f6bb43d62370fbf1fc30a74 mes5/x86_64/glibc-profile-2.8-1.20080520.5.10mnb2.x86_64.rpm\r\n c6795a180161f94eb06074fdf588a5ed mes5/x86_64/glibc-static-devel-2.8-1.20080520.5.10mnb2.x86_64.rpm\r\n 01dd2eaae2dd444ed7b1e80411478a03 mes5/x86_64/glibc-utils-2.8-1.20080520.5.10mnb2.x86_64.rpm\r\n 0e29e9d7d90d5a92b19b53cda9642d6c mes5/x86_64/nscd-2.8-1.20080520.5.10mnb2.x86_64.rpm \r\n 8e2ebc125c5a6e7dcf17d4535f7f911c mes5/SRPMS/glibc-2.8-1.20080520.5.10mnb2.src.rpm\r\n _______________________________________________________________________\r\n\r\n To upgrade automatically use MandrivaUpdate or urpmi. The verification\r\n of md5 checksums and GPG signatures is performed automatically for you.\r\n\r\n All packages are signed by Mandriva for security. You can obtain the\r\n GPG public key of the Mandriva Security Team by executing:\r\n\r\n gpg --recv-keys --keyserver pgp.mit.edu 0x22458A98\r\n\r\n You can view other update advisories for Mandriva Linux at:\r\n\r\n http://www.mandriva.com/en/support/security/advisories/\r\n\r\n If you want to report vulnerabilities, please contact\r\n\r\n security_(at)_mandriva.com\r\n _______________________________________________________________________\r\n\r\n Type Bits/KeyID Date User ID\r\n pub 1024D/22458A98 2000-07-10 Mandriva Security Team\r\n <security*mandriva.com>\r\n-----BEGIN PGP SIGNATURE-----\r\nVersion: GnuPG v1.4.12 (GNU/Linux)\r\n\r\niD8DBQFSk2cxmqjQ0CJFipgRAgZUAJ0Ti6e3q9uo0KLoiFTieDkfU0L1ugCbBMKE\r\nyC/Gyf3HMq9+fahwCRMG/PM=\r\n=tgyp\r\n-----END PGP SIGNATURE-----\r\n", "modified": "2013-12-01T00:00:00", "published": "2013-12-01T00:00:00", "id": "SECURITYVULNS:DOC:30044", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:30044", "title": "[ MDVSA-2013:284 ] glibc", "type": "securityvulns", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "nessus": [{"lastseen": "2020-05-03T01:52:04", "bulletinFamily": "scanner", "description": "Updated glibc packages that fix two security issues and two bugs are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nThe glibc packages provide the standard C libraries (libc), POSIX\nthread libraries (libpthread), standard math libraries (libm), and the\nName Server Caching Daemon (nscd) used by multiple programs on the\nsystem. Without these libraries, the Linux system cannot function\ncorrectly.\n\nIt was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nThis update also fixes the following bugs :\n\n* The improvements RHSA-2012:1207 made to the accuracy of floating\npoint functions in the math library caused performance regressions for\nthose functions. The performance regressions were analyzed and a fix\nwas applied that retains the current accuracy but reduces the\nperformance penalty to acceptable levels. Refer to Red Hat Knowledge\nsolution 229993, linked to in the References, for further information.\n(BZ#950535)\n\n* It was possible that a memory location freed by the localization\ncode could be accessed immediately after, resulting in a crash. The\nfix ensures that the application does not crash by avoiding the\ninvalid memory access. (BZ#951493)\n\nUsers of glibc are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.", "modified": "2020-05-02T00:00:00", "id": "CENTOS_RHSA-2013-0769.NASL", "href": "https://www.tenable.com/plugins/nessus/66217", "published": "2013-04-26T00:00:00", "title": "CentOS 5 : glibc (CESA-2013:0769)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:0769 and \n# CentOS Errata and Security Advisory 2013:0769 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(66217);\n script_version(\"1.10\");\n script_cvs_date(\"Date: 2020/01/06\");\n\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_bugtraq_id(57638, 58839);\n script_xref(name:\"RHSA\", value:\"2013:0769\");\n\n script_name(english:\"CentOS 5 : glibc (CESA-2013:0769)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated glibc packages that fix two security issues and two bugs are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nThe glibc packages provide the standard C libraries (libc), POSIX\nthread libraries (libpthread), standard math libraries (libm), and the\nName Server Caching Daemon (nscd) used by multiple programs on the\nsystem. Without these libraries, the Linux system cannot function\ncorrectly.\n\nIt was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nThis update also fixes the following bugs :\n\n* The improvements RHSA-2012:1207 made to the accuracy of floating\npoint functions in the math library caused performance regressions for\nthose functions. The performance regressions were analyzed and a fix\nwas applied that retains the current accuracy but reduces the\nperformance penalty to acceptable levels. Refer to Red Hat Knowledge\nsolution 229993, linked to in the References, for further information.\n(BZ#950535)\n\n* It was possible that a memory location freed by the localization\ncode could be accessed immediately after, resulting in a crash. The\nfix ensures that the application does not crash by avoiding the\ninvalid memory access. (BZ#951493)\n\nUsers of glibc are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2013-April/019706.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?017c7356\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected glibc packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2013-0242\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:nscd\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:5\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/02/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/26\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/CentOS/release\");\nif (isnull(release) || \"CentOS\" >!< release) audit(AUDIT_OS_NOT, \"CentOS\");\nos_ver = pregmatch(pattern: \"CentOS(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"CentOS\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"CentOS 5.x\", \"CentOS \" + os_ver);\n\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-5\", reference:\"glibc-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"glibc-common-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"glibc-devel-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"glibc-headers-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"glibc-utils-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"CentOS-5\", reference:\"nscd-2.5-107.el5_9.4\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"glibc / glibc-common / glibc-devel / glibc-headers / glibc-utils / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-03-18T02:47:13", "bulletinFamily": "scanner", "description": "It was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nThis update also fixes the following bugs :\n\n - The improvements made in a previous update to the\n accuracy of floating point functions in the math library\n caused performance regressions for those functions. The\n performance regressions were analyzed and a fix was\n applied that retains the current accuracy but reduces\n the performance penalty to acceptable levels.\n\n - It was possible that a memory location freed by the\n localization code could be accessed immediately after,\n resulting in a crash. The fix ensures that the\n application does not crash by avoiding the invalid\n memory access.", "modified": "2013-04-26T00:00:00", "id": "SL_20130424_GLIBC_ON_SL5_X.NASL", "href": "https://www.tenable.com/plugins/nessus/66227", "published": "2013-04-26T00:00:00", "title": "Scientific Linux Security Update : glibc on SL5.x i386/x86_64 (20130424)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(66227);\n script_version(\"1.5\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2020/03/12\");\n\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n\n script_name(english:\"Scientific Linux Security Update : glibc on SL5.x i386/x86_64 (20130424)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"It was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nThis update also fixes the following bugs :\n\n - The improvements made in a previous update to the\n accuracy of floating point functions in the math library\n caused performance regressions for those functions. The\n performance regressions were analyzed and a fix was\n applied that retains the current accuracy but reduces\n the performance penalty to acceptable levels.\n\n - It was possible that a memory location freed by the\n localization code could be accessed immediately after,\n resulting in a crash. The fix ensures that the\n application does not crash by avoiding the invalid\n memory access.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1304&L=scientific-linux-errata&T=0&P=2612\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?369f093d\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:glibc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:glibc-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:glibc-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:glibc-debuginfo-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:glibc-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:glibc-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:glibc-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:fermilab:scientific_linux:nscd\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/02/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/26\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nos_ver = pregmatch(pattern: \"Scientific Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Scientific Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Scientific Linux 5.x\", \"Scientific Linux \" + os_ver);\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL5\", reference:\"glibc-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"glibc-common-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"glibc-debuginfo-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"glibc-debuginfo-common-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"glibc-devel-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"glibc-headers-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"glibc-utils-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"SL5\", reference:\"nscd-2.5-107.el5_9.4\")) flag++;\n\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"glibc / glibc-common / glibc-debuginfo / glibc-debuginfo-common / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-05-01T01:16:19", "bulletinFamily": "scanner", "description": "Multiple vulnerabilities has been discovered and corrected in glibc :\n\nBuffer overflow in the extend_buffers function in the regular\nexpression matcher (posix/regexec.c) in glibc, possibly 2.17 and\nearlier, allows context-dependent attackers to cause a denial of\nservice (memory corruption and crash) via crafted multibyte characters\n(CVE-2013-0242).\n\nStack-based buffer overflow in the getaddrinfo function in\nsysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.17\nand earlier allows remote attackers to cause a denial of service\n(crash) via a (1) hostname or (2) IP address that triggers a large\nnumber of domain conversion results (CVE-2013-1914).\n\nThe updated packages have been patched to correct these issues.", "modified": "2020-05-02T00:00:00", "id": "MANDRIVA_MDVSA-2013-163.NASL", "href": "https://www.tenable.com/plugins/nessus/66342", "published": "2013-05-08T00:00:00", "title": "Mandriva Linux Security Advisory : glibc (MDVSA-2013:163)", "type": "nessus", "sourceData": "#%NASL_MIN_LEVEL 80502\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandriva Linux Security Advisory MDVSA-2013:163. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(66342);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2019/08/02 13:32:55\");\n\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_bugtraq_id(57638, 58839);\n script_xref(name:\"MDVSA\", value:\"2013:163\");\n\n script_name(english:\"Mandriva Linux Security Advisory : glibc (MDVSA-2013:163)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandriva Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple vulnerabilities has been discovered and corrected in glibc :\n\nBuffer overflow in the extend_buffers function in the regular\nexpression matcher (posix/regexec.c) in glibc, possibly 2.17 and\nearlier, allows context-dependent attackers to cause a denial of\nservice (memory corruption and crash) via crafted multibyte characters\n(CVE-2013-0242).\n\nStack-based buffer overflow in the getaddrinfo function in\nsysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.17\nand earlier allows remote attackers to cause a denial of service\n(crash) via a (1) hostname or (2) IP address that triggers a large\nnumber of domain conversion results (CVE-2013-1914).\n\nThe updated packages have been patched to correct these issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:glibc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:glibc-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:glibc-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:glibc-doc-pdf\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:glibc-i18ndata\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:glibc-profile\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:glibc-static-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:glibc-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:nscd\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:business_server:1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/05/07\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/05/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"glibc-2.14.1-12.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"glibc-devel-2.14.1-12.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", reference:\"glibc-doc-2.14.1-12.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", reference:\"glibc-doc-pdf-2.14.1-12.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"glibc-i18ndata-2.14.1-12.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"glibc-profile-2.14.1-12.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"glibc-static-devel-2.14.1-12.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"glibc-utils-2.14.1-12.1.mbs1\")) flag++;\nif (rpm_check(release:\"MDK-MBS1\", cpu:\"x86_64\", reference:\"nscd-2.14.1-12.1.mbs1\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-05-01T01:58:44", "bulletinFamily": "scanner", "description": "From Red Hat Security Advisory 2013:0769 :\n\nUpdated glibc packages that fix two security issues and two bugs are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nThe glibc packages provide the standard C libraries (libc), POSIX\nthread libraries (libpthread), standard math libraries (libm), and the\nName Server Caching Daemon (nscd) used by multiple programs on the\nsystem. Without these libraries, the Linux system cannot function\ncorrectly.\n\nIt was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nThis update also fixes the following bugs :\n\n* The improvements RHSA-2012:1207 made to the accuracy of floating\npoint functions in the math library caused performance regressions for\nthose functions. The performance regressions were analyzed and a fix\nwas applied that retains the current accuracy but reduces the\nperformance penalty to acceptable levels. Refer to Red Hat Knowledge\nsolution 229993, linked to in the References, for further information.\n(BZ#950535)\n\n* It was possible that a memory location freed by the localization\ncode could be accessed immediately after, resulting in a crash. The\nfix ensures that the application does not crash by avoiding the\ninvalid memory access. (BZ#951493)\n\nUsers of glibc are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.", "modified": "2020-05-02T00:00:00", "id": "ORACLELINUX_ELSA-2013-0769.NASL", "href": "https://www.tenable.com/plugins/nessus/68814", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 5 : glibc (ELSA-2013-0769)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2013:0769 and \n# Oracle Linux Security Advisory ELSA-2013-0769 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68814);\n script_version(\"1.9\");\n script_cvs_date(\"Date: 2019/09/30 10:58:18\");\n\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_bugtraq_id(57638, 58839);\n script_xref(name:\"RHSA\", value:\"2013:0769\");\n\n script_name(english:\"Oracle Linux 5 : glibc (ELSA-2013-0769)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2013:0769 :\n\nUpdated glibc packages that fix two security issues and two bugs are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nThe glibc packages provide the standard C libraries (libc), POSIX\nthread libraries (libpthread), standard math libraries (libm), and the\nName Server Caching Daemon (nscd) used by multiple programs on the\nsystem. Without these libraries, the Linux system cannot function\ncorrectly.\n\nIt was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nThis update also fixes the following bugs :\n\n* The improvements RHSA-2012:1207 made to the accuracy of floating\npoint functions in the math library caused performance regressions for\nthose functions. The performance regressions were analyzed and a fix\nwas applied that retains the current accuracy but reduces the\nperformance penalty to acceptable levels. Refer to Red Hat Knowledge\nsolution 229993, linked to in the References, for further information.\n(BZ#950535)\n\n* It was possible that a memory location freed by the localization\ncode could be accessed immediately after, resulting in a crash. The\nfix ensures that the application does not crash by avoiding the\ninvalid memory access. (BZ#951493)\n\nUsers of glibc are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2013-April/003438.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected glibc packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:glibc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:glibc-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:glibc-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:glibc-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:glibc-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:nscd\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:5\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/02/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/25\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 5\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL5\", reference:\"glibc-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"glibc-common-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"glibc-devel-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"glibc-headers-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"glibc-utils-2.5-107.el5_9.4\")) flag++;\nif (rpm_check(release:\"EL5\", reference:\"nscd-2.5-107.el5_9.4\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"glibc / glibc-common / glibc-devel / glibc-headers / glibc-utils / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-05-01T03:13:10", "bulletinFamily": "scanner", "description": "The remote VMware ESXi host is version 5.1 prior to build 2323231. It\nis, therefore, affected by the following vulnerabilities in the glibc\nlibrary :\n\n - A buffer overflow flaw exists in the ", "modified": "2020-05-02T00:00:00", "id": "VMWARE_ESXI_5_1_BUILD_2323231_REMOTE.NASL", "href": "https://www.tenable.com/plugins/nessus/80037", "published": "2014-12-15T00:00:00", "title": "ESXi 5.1 < Build 2323231 glibc Library Multiple Vulnerabilities (remote check)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(80037);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/11/15 20:50:24\");\n\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_bugtraq_id(57638, 58839);\n script_xref(name:\"VMSA\", value:\"2014-0008\");\n\n script_name(english:\"ESXi 5.1 < Build 2323231 glibc Library Multiple Vulnerabilities (remote check)\");\n script_summary(english:\"Checks the ESXi version and build number.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote VMware ESXi 5.1 host is affected by multiple\nvulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote VMware ESXi host is version 5.1 prior to build 2323231. It\nis, therefore, affected by the following vulnerabilities in the glibc\nlibrary :\n\n - A buffer overflow flaw exists in the 'extend_buffers'\n function of the 'posix/regexec.c' file due to improper\n validation of user input. Using a specially crafted\n expression, a remote attacker can cause a denial of\n service. (CVE-2013-0242)\n\n - A buffer overflow flaw exists in the 'getaddrinfo'\n function of the '/sysdeps/posix/getaddrinfo.c' file\n due to improper validation of user input. A remote\n attacker can cause a denial of service by triggering\n a large number of domain conversions. (CVE-2013-1914)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.vmware.com/security/advisories/VMSA-2014-0008.html\");\n script_set_attribute(attribute:\"solution\", value:\"Apply patch ESXi510-201412101-SG for ESXi 5.1.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esxi\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/01/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/12/15\");\n\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Misc.\");\n\n script_dependencies(\"vmware_vsphere_detect.nbin\");\n script_require_keys(\"Host/VMware/version\", \"Host/VMware/release\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nver = get_kb_item_or_exit(\"Host/VMware/version\");\nrel = get_kb_item_or_exit(\"Host/VMware/release\");\n\nif (\"ESXi\" >!< rel) audit(AUDIT_OS_NOT, \"ESXi\");\nif (\"VMware ESXi 5.1\" >!< rel) audit(AUDIT_OS_NOT, \"ESXi 5.1\");\n\nmatch = eregmatch(pattern:'^VMware ESXi.*build-([0-9]+)$', string:rel);\nif (isnull(match)) exit(1, 'Failed to extract the ESXi build number.');\n\nbuild = int(match[1]);\nfixed_build = 2323231;\n\nif (build < fixed_build)\n{\n if (report_verbosity > 0)\n {\n report = '\\n ESXi version : ' + ver +\n '\\n Installed build : ' + build +\n '\\n Fixed build : ' + fixed_build +\n '\\n';\n security_warning(port:0, extra:report);\n }\n else security_warning(0);\n}\nelse audit(AUDIT_INST_VER_NOT_VULN, \"VMware ESXi\", ver - \"ESXi \" + \" build \" + build);\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-05-01T02:08:27", "bulletinFamily": "scanner", "description": "Updated glibc packages that fix two security issues and two bugs are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nThe glibc packages provide the standard C libraries (libc), POSIX\nthread libraries (libpthread), standard math libraries (libm), and the\nName Server Caching Daemon (nscd) used by multiple programs on the\nsystem. Without these libraries, the Linux system cannot function\ncorrectly.\n\nIt was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nThis update also fixes the following bugs :\n\n* The improvements RHSA-2012:1207 made to the accuracy of floating\npoint functions in the math library caused performance regressions for\nthose functions. The performance regressions were analyzed and a fix\nwas applied that retains the current accuracy but reduces the\nperformance penalty to acceptable levels. Refer to Red Hat Knowledge\nsolution 229993, linked to in the References, for further information.\n(BZ#950535)\n\n* It was possible that a memory location freed by the localization\ncode could be accessed immediately after, resulting in a crash. The\nfix ensures that the application does not crash by avoiding the\ninvalid memory access. (BZ#951493)\n\nUsers of glibc are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.", "modified": "2020-05-02T00:00:00", "id": "REDHAT-RHSA-2013-0769.NASL", "href": "https://www.tenable.com/plugins/nessus/66211", "published": "2013-04-25T00:00:00", "title": "RHEL 5 : glibc (RHSA-2013:0769)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:0769. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(66211);\n script_version(\"1.14\");\n script_cvs_date(\"Date: 2019/10/24 15:35:37\");\n\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_bugtraq_id(57638, 58839);\n script_xref(name:\"RHSA\", value:\"2013:0769\");\n\n script_name(english:\"RHEL 5 : glibc (RHSA-2013:0769)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated glibc packages that fix two security issues and two bugs are\nnow available for Red Hat Enterprise Linux 5.\n\nThe Red Hat Security Response Team has rated this update as having low\nsecurity impact. Common Vulnerability Scoring System (CVSS) base\nscores, which give detailed severity ratings, are available for each\nvulnerability from the CVE links in the References section.\n\nThe glibc packages provide the standard C libraries (libc), POSIX\nthread libraries (libpthread), standard math libraries (libm), and the\nName Server Caching Daemon (nscd) used by multiple programs on the\nsystem. Without these libraries, the Linux system cannot function\ncorrectly.\n\nIt was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nThis update also fixes the following bugs :\n\n* The improvements RHSA-2012:1207 made to the accuracy of floating\npoint functions in the math library caused performance regressions for\nthose functions. The performance regressions were analyzed and a fix\nwas applied that retains the current accuracy but reduces the\nperformance penalty to acceptable levels. Refer to Red Hat Knowledge\nsolution 229993, linked to in the References, for further information.\n(BZ#950535)\n\n* It was possible that a memory location freed by the localization\ncode could be accessed immediately after, resulting in a crash. The\nfix ensures that the application does not crash by avoiding the\ninvalid memory access. (BZ#951493)\n\nUsers of glibc are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://rhn.redhat.com/errata/RHSA-2012-1207.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/site/solutions/229993\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2013:0769\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-0242\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2013-1914\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:glibc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:glibc-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:glibc-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:glibc-debuginfo-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:glibc-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:glibc-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:glibc-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:nscd\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:5.9\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/04/24\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/04/25\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^5([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 5.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2013:0769\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL5\", reference:\"glibc-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"glibc-common-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"glibc-common-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"glibc-common-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"glibc-debuginfo-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"glibc-debuginfo-common-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", reference:\"glibc-devel-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"glibc-headers-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"glibc-headers-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"glibc-headers-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"glibc-utils-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"glibc-utils-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"glibc-utils-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"i386\", reference:\"nscd-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"s390x\", reference:\"nscd-2.5-107.el5_9.4\")) flag++;\n\n if (rpm_check(release:\"RHEL5\", cpu:\"x86_64\", reference:\"nscd-2.5-107.el5_9.4\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"glibc / glibc-common / glibc-debuginfo / glibc-debuginfo-common / etc\");\n }\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-05-01T03:13:10", "bulletinFamily": "scanner", "description": "The remote VMware ESXi host is version 5.5 prior to build 1980513. It\nis, therefore, affected by the following vulnerabilities in the glibc\nlibrary :\n\n - A buffer overflow flaw exists in the ", "modified": "2020-05-02T00:00:00", "id": "VMWARE_ESXI_5_5_BUILD_2068190_REMOTE.NASL", "href": "https://www.tenable.com/plugins/nessus/78108", "published": "2014-10-09T00:00:00", "title": "ESXi 5.5 < Build 1980513 glibc Library Multiple Vulnerabilities (remote check)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78108);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/08/06 14:03:15\");\n\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_bugtraq_id(57638, 58839);\n script_xref(name:\"VMSA\", value:\"2014-0008\");\n\n script_name(english:\"ESXi 5.5 < Build 1980513 glibc Library Multiple Vulnerabilities (remote check)\");\n script_summary(english:\"Checks the ESXi version and build number.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote VMware ESXi 5.5 host is affected by multiple\nvulnerabilities.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote VMware ESXi host is version 5.5 prior to build 1980513. It\nis, therefore, affected by the following vulnerabilities in the glibc\nlibrary :\n\n - A buffer overflow flaw exists in the 'extend_buffers'\n function of the 'posix/regexec.c' file, due to not\n properly validating user input. Using a specially\n crafted expression, a remote attacker can cause a\n denial of service. (CVE-2013-0242)\n\n - A buffer overflow flaw exists in the 'getaddrinfo'\n function of the '/sysdeps/posix/getaddrinfo.c' file,\n due to not properly validating user input. A remote\n attacker can cause a denial of service by triggering\n a large number of domain conversions. (CVE-2013-1914)\");\n script_set_attribute(attribute:\"see_also\", value:\"http://lists.vmware.com/pipermail/security-announce/2014/000260.html\");\n script_set_attribute(attribute:\"solution\", value:\"Apply patch ESXi550-201409101-SG for ESXi 5.5.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esxi\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/01/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/09/09\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/09\");\n\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Misc.\");\n\n script_dependencies(\"vmware_vsphere_detect.nbin\");\n script_require_keys(\"Host/VMware/version\", \"Host/VMware/release\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nver = get_kb_item_or_exit(\"Host/VMware/version\");\nrel = get_kb_item_or_exit(\"Host/VMware/release\");\n\nif (\"ESXi\" >!< rel) audit(AUDIT_OS_NOT, \"ESXi\");\nif (\"VMware ESXi 5.5\" >!< rel) audit(AUDIT_OS_NOT, \"ESXi 5.5\");\n\nmatch = eregmatch(pattern:'^VMware ESXi.*build-([0-9]+)$', string:rel);\nif (isnull(match)) exit(1, 'Failed to extract the ESXi build number.');\n\nbuild = int(match[1]);\nfixed_build = 1980513;\n\nif (build < fixed_build)\n{\n if (report_verbosity > 0)\n {\n report = '\\n ESXi version : ' + ver +\n '\\n Installed build : ' + build +\n '\\n Fixed build : ' + fixed_build +\n '\\n';\n security_warning(port:0, extra:report);\n }\n else security_warning(0);\n}\nelse audit(AUDIT_INST_VER_NOT_VULN, \"VMware ESXi\", ver - \"ESXi \" + \" build \" + build);\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-05-01T03:13:07", "bulletinFamily": "scanner", "description": "The remote ESXi host is affected by multiple denial of service\nvulnerabilities in the glibc library :\n\n - A buffer overflow condition exists in the\n extend_buffers() function in file posix/regexec.c due to\n improper validation of user-supplied input when handling\n multibyte characters in a regular expression. An\n unauthenticated, remote attacker can exploit this, via\n a crafted regular expression, to corrupt the memory,\n resulting in a denial of service. (CVE-2013-0242)\n\n - A stack-based buffer overflow condition exists in the\n getaddrinfo() function in file posix/getaddrinfo.c due\n to improper validation of user-supplied input during the\n handling of domain conversion results. An\n unauthenticated, remote attacker can exploit this to\n cause a denial of service by using a crafted host name\n or IP address that triggers a large number of domain\n conversion results. (CVE-2013-1914)", "modified": "2020-05-02T00:00:00", "id": "VMWARE_VMSA-2014-0008_REMOTE.NASL", "href": "https://www.tenable.com/plugins/nessus/87679", "published": "2015-12-30T00:00:00", "title": "VMware ESXi Multiple DoS (VMSA-2014-0008)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(87679);\n script_version(\"1.6\");\n script_cvs_date(\"Date: 2018/08/06 14:03:16\");\n\n script_cve_id(\n \"CVE-2013-0242\",\n \"CVE-2013-1914\"\n );\n script_bugtraq_id(\n 57638,\n 58839\n );\n script_xref(name:\"VMSA\", value:\"2014-0008\");\n\n script_name(english:\"VMware ESXi Multiple DoS (VMSA-2014-0008)\");\n script_summary(english:\"Checks the version and build numbers of the remote host.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote VMware ESXi host is missing a security-related patch.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote ESXi host is affected by multiple denial of service\nvulnerabilities in the glibc library :\n\n - A buffer overflow condition exists in the\n extend_buffers() function in file posix/regexec.c due to\n improper validation of user-supplied input when handling\n multibyte characters in a regular expression. An\n unauthenticated, remote attacker can exploit this, via\n a crafted regular expression, to corrupt the memory,\n resulting in a denial of service. (CVE-2013-0242)\n\n - A stack-based buffer overflow condition exists in the\n getaddrinfo() function in file posix/getaddrinfo.c due\n to improper validation of user-supplied input during the\n handling of domain conversion results. An\n unauthenticated, remote attacker can exploit this to\n cause a denial of service by using a crafted host name\n or IP address that triggers a large number of domain\n conversion results. (CVE-2013-1914)\");\n script_set_attribute(attribute:\"see_also\", value:\"https://www.vmware.com/security/advisories/VMSA-2014-0008\");\n script_set_attribute(attribute:\"see_also\", value:\"http://lists.vmware.com/pipermail/security-announce/2014/000282.html\");\n script_set_attribute(attribute:\"solution\", value:\n\"Apply the appropriate patch according to the vendor advisory that\npertains to ESXi version 5.0 / 5.1 / 5.5.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/01/29\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2014/12/04\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/12/30\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esxi:5.0\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esxi:5.1\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:vmware:esxi:5.5\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_family(english:\"Misc.\");\n\n script_copyright(english:\"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.\");\n\n script_dependencies(\"vmware_vsphere_detect.nbin\");\n script_require_keys(\"Host/VMware/version\", \"Host/VMware/release\");\n script_require_ports(\"Host/VMware/vsphere\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nver = get_kb_item_or_exit(\"Host/VMware/version\");\nrel = get_kb_item_or_exit(\"Host/VMware/release\");\nport = get_kb_item_or_exit(\"Host/VMware/vsphere\");\n\npci = FALSE;\npci = get_kb_item(\"Settings/PCI_DSS\");\n\nif (\"ESXi\" >!< rel)\n audit(AUDIT_OS_NOT, \"VMware ESXi\");\n\nesx = \"ESXi\";\n\nextract = eregmatch(pattern:\"^ESXi (\\d\\.\\d).*$\", string:ver);\nif (isnull(extract))\n audit(AUDIT_UNKNOWN_APP_VER, \"VMware ESXi\");\nelse\n ver = extract[1];\n\nfixes = make_array(\n \"5.0\", \"See vendor\",\n \"5.1\", \"2323236\",\n \"5.5\", \"2068190\"\n );\n\nfix = FALSE;\nfix = fixes[ver];\n\n# get the build before checking the fix for the most complete audit trail\nextract = eregmatch(pattern:'^VMware ESXi.* build-([0-9]+)$', string:rel);\nif (isnull(extract))\n audit(AUDIT_UNKNOWN_BUILD, \"VMware ESXi\", ver);\n\nbuild = int(extract[1]);\n\n# if there is no fix in the array, fix is FALSE\nif(!fix)\n audit(AUDIT_INST_VER_NOT_VULN, \"VMware ESXi\", ver, build);\n\nif (!pci && fix == \"See vendor\")\n audit(AUDIT_PCI);\n\nvuln = FALSE;\n\n# This is for PCI reporting\nif (pci && fix == \"See vendor\")\n vuln = TRUE;\nelse if (build < fix )\n vuln = TRUE;\n\nif (vuln)\n{\n if (report_verbosity > 0)\n {\n report = '\\n Version : ESXi ' + ver +\n '\\n Installed build : ' + build +\n '\\n Fixed build : ' + fix +\n '\\n';\n security_warning(port:port, extra:report);\n }\n else\n security_warning(port:port);\n\n exit(0);\n}\nelse\n audit(AUDIT_INST_VER_NOT_VULN, \"VMware ESXi\", ver, build);\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-05-03T01:49:53", "bulletinFamily": "scanner", "description": "Multiple integer overflow flaws, leading to heap-based buffer\noverflows, were found in glibc", "modified": "2020-05-02T00:00:00", "id": "ALA_ALAS-2013-270.NASL", "href": "https://www.tenable.com/plugins/nessus/71582", "published": "2013-12-23T00:00:00", "title": "Amazon Linux AMI : glibc (ALAS-2013-270)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2013-270.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(71582);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/04/18 15:09:35\");\n\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\", \"CVE-2013-4332\");\n script_xref(name:\"ALAS\", value:\"2013-270\");\n script_xref(name:\"RHSA\", value:\"2013:1605\");\n\n script_name(english:\"Amazon Linux AMI : glibc (ALAS-2013-270)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Multiple integer overflow flaws, leading to heap-based buffer\noverflows, were found in glibc's memory allocator functions (pvalloc,\nvalloc, and memalign). If an application used such a function, it\ncould cause the application to crash or, potentially, execute\narbitrary code with the privileges of the user running the\napplication. (CVE-2013-4332)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nIt was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2013-270.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update glibc' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:glibc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:glibc-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:glibc-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:glibc-debuginfo-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:glibc-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:glibc-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:glibc-static\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:glibc-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:nscd\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/12/17\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/12/23\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"glibc-2.12-1.132.45.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"glibc-common-2.12-1.132.45.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"glibc-debuginfo-2.12-1.132.45.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"glibc-debuginfo-common-2.12-1.132.45.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"glibc-devel-2.12-1.132.45.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"glibc-headers-2.12-1.132.45.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"glibc-static-2.12-1.132.45.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"glibc-utils-2.12-1.132.45.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"nscd-2.12-1.132.45.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"glibc / glibc-common / glibc-debuginfo / glibc-debuginfo-common / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-05-03T01:52:05", "bulletinFamily": "scanner", "description": "Updated glibc packages that fix three security issues, several bugs,\nand add various enhancements are now available for Red Hat Enterprise\nLinux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe glibc packages provide the standard C libraries (libc), POSIX\nthread libraries (libpthread), standard math libraries (libm), and the\nName Server Caching Daemon (nscd) used by multiple programs on the\nsystem. Without these libraries, the Linux system cannot function\ncorrectly.\n\nMultiple integer overflow flaws, leading to heap-based buffer\noverflows, were found in glibc", "modified": "2020-05-02T00:00:00", "id": "CENTOS_RHSA-2013-1605.NASL", "href": "https://www.tenable.com/plugins/nessus/79166", "published": "2014-11-12T00:00:00", "title": "CentOS 6 : glibc (CESA-2013:1605)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2013:1605 and \n# CentOS Errata and Security Advisory 2013:1605 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(79166);\n script_version(\"1.8\");\n script_cvs_date(\"Date: 2020/01/06\");\n\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\", \"CVE-2013-4332\");\n script_bugtraq_id(57638, 58839, 62324);\n script_xref(name:\"RHSA\", value:\"2013:1605\");\n\n script_name(english:\"CentOS 6 : glibc (CESA-2013:1605)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated glibc packages that fix three security issues, several bugs,\nand add various enhancements are now available for Red Hat Enterprise\nLinux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. Common Vulnerability Scoring System (CVSS)\nbase scores, which give detailed severity ratings, are available for\neach vulnerability from the CVE links in the References section.\n\nThe glibc packages provide the standard C libraries (libc), POSIX\nthread libraries (libpthread), standard math libraries (libm), and the\nName Server Caching Daemon (nscd) used by multiple programs on the\nsystem. Without these libraries, the Linux system cannot function\ncorrectly.\n\nMultiple integer overflow flaws, leading to heap-based buffer\noverflows, were found in glibc's memory allocator functions (pvalloc,\nvalloc, and memalign). If an application used such a function, it\ncould cause the application to crash or, potentially, execute\narbitrary code with the privileges of the user running the\napplication. (CVE-2013-4332)\n\nA flaw was found in the regular expression matching routines that\nprocess multibyte character input. If an application utilized the\nglibc regular expression matching mechanism, an attacker could provide\nspecially crafted input that, when processed, would cause the\napplication to crash. (CVE-2013-0242)\n\nIt was found that getaddrinfo() did not limit the amount of stack\nmemory used during name resolution. An attacker able to make an\napplication resolve an attacker-controlled hostname or IP address\ncould possibly cause the application to exhaust all stack memory and\ncrash. (CVE-2013-1914)\n\nAmong other changes, this update includes an important fix for the\nfollowing bug :\n\n* Due to a defect in the initial release of the getaddrinfo() system\ncall in Red Hat enterprise Linux 6.0, AF_INET and AF_INET6 queries\nresolved from the /etc/hosts file returned queried names as canonical\nnames. This incorrect behavior is, however, still considered to be the\nexpected behavior. As a result of a recent change in getaddrinfo(),\nAF_INET6 queries started resolving the canonical names correctly.\nHowever, this behavior was unexpected by applications that relied on\nqueries resolved from the /etc/hosts file, and these applications\ncould thus fail to operate properly. This update applies a fix\nensuring that AF_INET6 queries resolved from /etc/hosts always return\nthe queried name as canonical. Note that DNS lookups are resolved\nproperly and always return the correct canonical names. A proper fix\nto AF_INET6 queries resolution from /etc/hosts may be applied in\nfuture releases; for now, due to a lack of standard, Red Hat suggests\nthe first entry in the /etc/hosts file, that applies for the IP\naddress being resolved, to be considered the canonical entry.\n(BZ#1022022)\n\nThese updated glibc packages also include additional bug fixes and\nvarious enhancements. Space precludes documenting all of these changes\nin this advisory. Users are directed to the Red Hat Enterprise Linux\n6.5 Technical Notes, linked to in the References, for information on\nthe most significant of these changes.\n\nAll glibc users are advised to upgrade to these updated packages,\nwhich contain backported patches to correct these issues and add these\nenhancements.\"\n );\n # https://lists.centos.org/pipermail/centos-cr-announce/2013-November/000947.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?f77df32f\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected glibc packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"cvss_score_source\", value:\"CVE-2013-0242\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc-common\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc-headers\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc-static\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:glibc-utils\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:nscd\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2013/02/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2013/11/26\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/11/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2020 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/CentOS/release\");\nif (isnull(release) || \"CentOS\" >!< release) audit(AUDIT_OS_NOT, \"CentOS\");\nos_ver = pregmatch(pattern: \"CentOS(?: Linux)? release ([0-9]+)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"CentOS\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"CentOS 6.x\", \"CentOS \" + os_ver);\n\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-6\", reference:\"glibc-2.12-1.132.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"glibc-common-2.12-1.132.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"glibc-devel-2.12-1.132.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"glibc-headers-2.12-1.132.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"glibc-static-2.12-1.132.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"glibc-utils-2.12-1.132.el6\")) flag++;\nif (rpm_check(release:\"CentOS-6\", reference:\"nscd-2.12-1.132.el6\")) flag++;\n\n\nif (flag)\n{\n cr_plugin_caveat = '\\n' +\n 'NOTE: The security advisory associated with this vulnerability has a\\n' +\n 'fixed package version that may only be available in the continuous\\n' +\n 'release (CR) repository for CentOS, until it is present in the next\\n' +\n 'point release of CentOS.\\n\\n' +\n\n 'If an equal or higher package level does not exist in the baseline\\n' +\n 'repository for your major version of CentOS, then updates from the CR\\n' +\n 'repository will need to be applied in order to address the\\n' +\n 'vulnerability.\\n';\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + cr_plugin_caveat\n );\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"glibc / glibc-common / glibc-devel / glibc-headers / glibc-static / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "openvas": [{"lastseen": "2017-07-27T10:51:41", "bulletinFamily": "scanner", "description": "Check for the Version of glibc", "modified": "2017-07-12T00:00:00", "published": "2013-04-25T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=870985", "id": "OPENVAS:870985", "title": "RedHat Update for glibc RHSA-2013:0769-01", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for glibc RHSA-2013:0769-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The glibc packages provide the standard C libraries (libc), POSIX thread\n libraries (libpthread), standard math libraries (libm), and the Name Server\n Caching Daemon (nscd) used by multiple programs on the system. Without\n these libraries, the Linux system cannot function correctly.\n\n It was found that getaddrinfo() did not limit the amount of stack memory\n used during name resolution. An attacker able to make an application\n resolve an attacker-controlled hostname or IP address could possibly cause\n the application to exhaust all stack memory and crash. (CVE-2013-1914)\n\n A flaw was found in the regular expression matching routines that process\n multibyte character input. If an application utilized the glibc regular\n expression matching mechanism, an attacker could provide specially-crafted\n input that, when processed, would cause the application to crash.\n (CVE-2013-0242)\n\n This update also fixes the following bugs:\n\n * The improvements RHSA-2012:1207 made to the accuracy of floating point\n functions in the math library caused performance regressions for those\n functions. The performance regressions were analyzed and a fix was applied\n that retains the current accuracy but reduces the performance penalty to\n acceptable levels. Refer to Red Hat Knowledge solution 229993, linked\n to in the References, for further information. (BZ#950535)\n\n * It was possible that a memory location freed by the localization code\n could be accessed immediately after, resulting in a crash. The fix ensures\n that the application does not crash by avoiding the invalid memory access.\n (BZ#951493)\n\n Users of glibc are advised to upgrade to these updated packages, which\n contain backported patches to correct these issues.\n\n 4. Solution:\n\n Before applying this update, make sure all previously-released errata\n relevant to your system have been applied.\n\n This update is available via the Red Hat Network. Details on how to\n use the Red Hat Network to apply this update are available at\n https://access.redhat.com/knowledge/articles/11258\n\n 5. Bugs fixed (http://bugzilla.redhat.com):\n\n 905874 - CVE-2013-0242 glibc: Buffer overrun (DoS) in regexp matcher by\n processing multibyte characters\n 947882 - CVE-2013-1914 glibc: Stack (frame) overflow in getaddrinfo()\n when processing entry mapping to long list of address structures\n\n 6. Package List:\n\n Red Hat Enterprise Linux Deskt ...\n\n Description truncated, for more information please check the Reference URL\";\n\n\ntag_affected = \"glibc on Red Hat Enterprise Linux (v. 5 server)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\nif(description)\n{\n script_id(870985);\n script_version(\"$Revision: 6687 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:46:43 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-25 10:17:44 +0530 (Thu, 25 Apr 2013)\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_name(\"RedHat Update for glibc RHSA-2013:0769-01\");\n\n script_xref(name: \"RHSA\", value: \"2013:0769-01\");\n script_xref(name: \"URL\" , value: \"https://www.redhat.com/archives/rhsa-announce/2013-April/msg00034.html\");\n script_summary(\"Check for the Version of glibc\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-debuginfo\", rpm:\"glibc-debuginfo~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-debuginfo-common\", rpm:\"glibc-debuginfo-common~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2018-01-22T13:09:49", "bulletinFamily": "scanner", "description": "Check for the Version of glibc", "modified": "2018-01-22T00:00:00", "published": "2013-04-25T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=881722", "id": "OPENVAS:881722", "title": "CentOS Update for glibc CESA-2013:0769 centos5 ", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for glibc CESA-2013:0769 centos5\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The glibc packages provide the standard C libraries (libc), POSIX thread\n libraries (libpthread), standard math libraries (libm), and the Name Server\n Caching Daemon (nscd) used by multiple programs on the system. Without\n these libraries, the Linux system cannot function correctly.\n\n It was found that getaddrinfo() did not limit the amount of stack memory\n used during name resolution. An attacker able to make an application\n resolve an attacker-controlled hostname or IP address could possibly cause\n the application to exhaust all stack memory and crash. (CVE-2013-1914)\n\n A flaw was found in the regular expression matching routines that process\n multibyte character input. If an application utilized the glibc regular\n expression matching mechanism, an attacker could provide specially-crafted\n input that, when processed, would cause the application to crash.\n (CVE-2013-0242)\n\n This update also fixes the following bugs:\n\n * The improvements RHSA-2012:1207 made to the accuracy of floating point\n functions in the math library caused performance regressions for those\n functions. The performance regressions were analyzed and a fix was applied\n that retains the current accuracy but reduces the performance penalty to\n acceptable levels. Refer to Red Hat Knowledge solution 229993, linked\n to in the References, for further information. (BZ#950535)\n\n * It was possible that a memory location freed by the localization code\n could be accessed immediately after, resulting in a crash. The fix ensures\n that the application does not crash by avoiding the invalid memory access.\n (BZ#951493)\n\n Users of glibc are advised to upgrade to these updated packages, which\n contain backported patches to correct these issues.\n\n 4. Solution:\n\n Before applying this update, make sure all previously-released errata\n relevant to your system have been applied.\n\n This update is available via the Red Hat Network. Details on how to\n use the Red Hat Network to apply this update are available at\n https://access.redhat.com/knowledge/articles/11258\n\n 5. Bugs fixed (http://bugzilla.redhat.com):\n\n 905874 - CVE-2013-0242 glibc: Buffer overrun (DoS) in regexp matcher\n by processing multibyte characters\n 947882 - CVE-2013-1914 glibc: Stack (frame) overflow in getaddrinfo()\n when processing entry mapping to long list of address structures\n\n 6. Package List:\n\n Red Hat Enterprise Linux Desktop (v. 5 client):\n\n Source: ...\n\n Description truncated, for more information please check the Reference URL\";\n\n\ntag_solution = \"Please Install the Updated Packages.\";\ntag_affected = \"glibc on CentOS 5\";\n\n\nif(description)\n{\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_id(881722);\n script_version(\"$Revision: 8483 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-22 07:58:04 +0100 (Mon, 22 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-25 10:23:03 +0530 (Thu, 25 Apr 2013)\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_name(\"CentOS Update for glibc CESA-2013:0769 centos5 \");\n\n script_xref(name: \"CESA\", value: \"2013:0769\");\n script_xref(name: \"URL\" , value: \"http://lists.centos.org/pipermail/centos-announce/2013-April/019706.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of glibc\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:38:21", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2013-04-25T00:00:00", "id": "OPENVAS:1361412562310881722", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310881722", "title": "CentOS Update for glibc CESA-2013:0769 centos5", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# CentOS Update for glibc CESA-2013:0769 centos5\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_tag(name:\"affected\", value:\"glibc on CentOS 5\");\n script_tag(name:\"solution\", value:\"Please install the updated packages.\");\n script_tag(name:\"insight\", value:\"The glibc packages provide the standard C libraries (libc), POSIX thread\n libraries (libpthread), standard math libraries (libm), and the Name Server\n Caching Daemon (nscd) used by multiple programs on the system. Without\n these libraries, the Linux system cannot function correctly.\n\n It was found that getaddrinfo() did not limit the amount of stack memory\n used during name resolution. An attacker able to make an application\n resolve an attacker-controlled hostname or IP address could possibly cause\n the application to exhaust all stack memory and crash. (CVE-2013-1914)\n\n A flaw was found in the regular expression matching routines that process\n multibyte character input. If an application utilized the glibc regular\n expression matching mechanism, an attacker could provide specially-crafted\n input that, when processed, would cause the application to crash.\n (CVE-2013-0242)\n\n This update also fixes the following bugs:\n\n * The improvements RHSA-2012:1207 made to the accuracy of floating point\n functions in the math library caused performance regressions for those\n functions. The performance regressions were analyzed and a fix was applied\n that retains the current accuracy but reduces the performance penalty to\n acceptable levels. Refer to Red Hat Knowledge solution 229993, linked\n to in the References, for further information. (BZ#950535)\n\n * It was possible that a memory location freed by the localization code\n could be accessed immediately after, resulting in a crash. The fix ensures\n that the application does not crash by avoiding the invalid memory access.\n (BZ#951493)\n\n Users of glibc are advised to upgrade to these updated packages, which\n contain backported patches to correct these issues.\n\n 4. Solution:\n\n Before applying this update, make sure all previously-released errata\n relevant to your system have been applied.\n\n This update is available via the Red Hat Network. Details on how to\n use the Red Hat Network to apply this update are available at\n the linked references.\n\n 5. Bugs fixed:\n\n 905874 - CVE-2013-0242 glibc: Buffer overrun (DoS) in regexp matcher\n by processing multibyte characters\n 947882 - CVE-2013-1914 glibc: Stack (frame) overflow in getaddrinfo()\n when processing entry mapping to long list of address structures\n\n 6. Package List:\n\n Red Hat Enterprise Linux Desktop (v. 5 client):\n\n Source: ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.881722\");\n script_version(\"$Revision: 14222 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 13:50:48 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-25 10:23:03 +0530 (Thu, 25 Apr 2013)\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_name(\"CentOS Update for glibc CESA-2013:0769 centos5\");\n\n script_xref(name:\"CESA\", value:\"2013:0769\");\n script_xref(name:\"URL\", value:\"http://lists.centos.org/pipermail/centos-announce/2013-April/019706.html\");\n script_xref(name:\"URL\", value:\"https://access.redhat.com/knowledge/articles/11258\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'glibc'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"CentOS Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/centos\", \"ssh/login/rpms\", re:\"ssh/login/release=CentOS5\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"CentOS5\")\n{\n\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"CentOS5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:38:00", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2018-11-16T00:00:00", "published": "2013-04-25T00:00:00", "id": "OPENVAS:1361412562310870985", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870985", "title": "RedHat Update for glibc RHSA-2013:0769-01", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for glibc RHSA-2013:0769-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.870985\");\n script_version(\"$Revision: 12380 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-16 12:03:48 +0100 (Fri, 16 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-04-25 10:17:44 +0530 (Thu, 25 Apr 2013)\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_name(\"RedHat Update for glibc RHSA-2013:0769-01\");\n\n script_xref(name:\"RHSA\", value:\"2013:0769-01\");\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2013-April/msg00034.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'glibc'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_5\");\n script_tag(name:\"affected\", value:\"glibc on Red Hat Enterprise Linux (v. 5 server)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"The glibc packages provide the standard C libraries (libc), POSIX thread\n libraries (libpthread), standard math libraries (libm), and the Name Server\n Caching Daemon (nscd) used by multiple programs on the system. Without\n these libraries, the Linux system cannot function correctly.\n\n It was found that getaddrinfo() did not limit the amount of stack memory\n used during name resolution. An attacker able to make an application\n resolve an attacker-controlled hostname or IP address could possibly cause\n the application to exhaust all stack memory and crash. (CVE-2013-1914)\n\n A flaw was found in the regular expression matching routines that process\n multibyte character input. If an application utilized the glibc regular\n expression matching mechanism, an attacker could provide specially-crafted\n input that, when processed, would cause the application to crash.\n (CVE-2013-0242)\n\n This update also fixes the following bugs:\n\n * The improvements RHSA-2012:1207 made to the accuracy of floating point\n functions in the math library caused performance regressions for those\n functions. The performance regressions were analyzed and a fix was applied\n that retains the current accuracy but reduces the performance penalty to\n acceptable levels. Refer to Red Hat Knowledge solution 229993, linked\n to in the References, for further information. (BZ#950535)\n\n * It was possible that a memory location freed by the localization code\n could be accessed immediately after, resulting in a crash. The fix ensures\n that the application does not crash by avoiding the invalid memory access.\n (BZ#951493)\n\n Users of glibc are advised to upgrade to these updated packages, which\n contain backported patches to correct these issues.\n\n 4. Solution:\n\n Before applying this update, make sure all previously-released errata\n relevant to your system have been applied.\n\n This update is available via the Red Hat Network. Details on how to\n use the Red Hat Network to apply this update are available at the references.\n\n 5. Bugs fixed:\n\n 905874 - CVE-2013-0242 glibc: Buffer overrun (DoS) in regexp matcher by\n processing multibyte characters\n 947882 - CVE-2013-1914 glibc: Stack (frame) overflow in getaddrinfo()\n when processing entry mapping to long list of address structures\n\n 6. Package List:\n\n Red Hat Enterprise Linux Deskt ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n script_xref(name:\"URL\", value:\"https://access.redhat.com/knowledge/articles/11258\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_5\")\n{\n\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-debuginfo\", rpm:\"glibc-debuginfo~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-debuginfo-common\", rpm:\"glibc-debuginfo-common~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.5~107.el5_9.4\", rls:\"RHENT_5\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:36:18", "bulletinFamily": "scanner", "description": "Oracle Linux Local Security Checks ELSA-2013-1605", "modified": "2018-09-28T00:00:00", "published": "2015-10-06T00:00:00", "id": "OPENVAS:1361412562310123527", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310123527", "title": "Oracle Linux Local Check: ELSA-2013-1605", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2013-1605.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.123527\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:05:05 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2013-1605\");\n script_tag(name:\"insight\", value:\"ELSA-2013-1605 - glibc security, bug fix, and enhancement update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2013-1605\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2013-1605.html\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\", \"CVE-2013-4332\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux6\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.12~1.132.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.12~1.132.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.12~1.132.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.12~1.132.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-static\", rpm:\"glibc-static~2.12~1.132.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.12~1.132.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.12~1.132.el6\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:38:01", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2018-11-23T00:00:00", "published": "2013-11-21T00:00:00", "id": "OPENVAS:1361412562310871075", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310871075", "title": "RedHat Update for glibc RHSA-2013:1605-02", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for glibc RHSA-2013:1605-02\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.871075\");\n script_version(\"$Revision: 12497 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-23 09:28:21 +0100 (Fri, 23 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-21 10:43:57 +0530 (Thu, 21 Nov 2013)\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\", \"CVE-2013-4332\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_name(\"RedHat Update for glibc RHSA-2013:1605-02\");\n\n\n script_tag(name:\"affected\", value:\"glibc on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\");\n script_tag(name:\"insight\", value:\"The glibc packages provide the standard C libraries (libc), POSIX thread\nlibraries (libpthread), standard math libraries (libm), and the Name Server\nCaching Daemon (nscd) used by multiple programs on the system. Without\nthese libraries, the Linux system cannot function correctly.\n\nMultiple integer overflow flaws, leading to heap-based buffer overflows,\nwere found in glibc's memory allocator functions (pvalloc, valloc, and\nmemalign). If an application used such a function, it could cause the\napplication to crash or, potentially, execute arbitrary code with the\nprivileges of the user running the application. (CVE-2013-4332)\n\nA flaw was found in the regular expression matching routines that process\nmultibyte character input. If an application utilized the glibc regular\nexpression matching mechanism, an attacker could provide specially-crafted\ninput that, when processed, would cause the application to crash.\n(CVE-2013-0242)\n\nIt was found that getaddrinfo() did not limit the amount of stack memory\nused during name resolution. An attacker able to make an application\nresolve an attacker-controlled hostname or IP address could possibly cause\nthe application to exhaust all stack memory and crash. (CVE-2013-1914)\n\nAmong other changes, this update includes an important fix for the\nfollowing bug:\n\n * Due to a defect in the initial release of the getaddrinfo() system call\nin Red Hat enterprise Linux 6.0, AF_INET and AF_INET6 queries resolved from\nthe /etc/hosts file returned queried names as canonical names. This\nincorrect behavior is, however, still considered to be the expected\nbehavior. As a result of a recent change in getaddrinfo(), AF_INET6 queries\nstarted resolving the canonical names correctly. However, this behavior was\nunexpected by applications that relied on queries resolved from the\n/etc/hosts file, and these applications could thus fail to operate\nproperly. This update applies a fix ensuring that AF_INET6 queries resolved\nfrom /etc/hosts always return the queried name as canonical. Note that DNS\nlookups are resolved properly and always return the correct canonical\nnames. A proper fix to AF_INET6 queries resolution from /etc/hosts may be\napplied in future releases for now, due to a lack of standard, Red Hat\nsuggests the first entry in the /etc/hosts file, that applies for the IP\naddress being resolved, to be considered the canonical entry. (BZ#1022022)\n\nThese updated glibc packages also include additional bug fixes and\nvarious enhancements. Space precludes documenting all of these ...\n\n Description truncated, please see the referenced URL(s) for more information.\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"RHSA\", value:\"2013:1605-02\");\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2013-November/msg00026.html\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'glibc'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_6\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-debuginfo\", rpm:\"glibc-debuginfo~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-debuginfo-common\", rpm:\"glibc-debuginfo-common~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2020-03-17T23:01:25", "bulletinFamily": "scanner", "description": "The remote host is missing an update announced via the referenced Security Advisory.", "modified": "2020-03-13T00:00:00", "published": "2015-09-08T00:00:00", "id": "OPENVAS:1361412562310120295", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120295", "title": "Amazon Linux: Security Advisory (ALAS-2013-270)", "type": "openvas", "sourceData": "# Copyright (C) 2015 Eero Volotinen\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) of their respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.120295\");\n script_version(\"2020-03-13T13:19:50+0000\");\n script_tag(name:\"creation_date\", value:\"2015-09-08 13:23:02 +0200 (Tue, 08 Sep 2015)\");\n script_tag(name:\"last_modification\", value:\"2020-03-13 13:19:50 +0000 (Fri, 13 Mar 2020)\");\n script_name(\"Amazon Linux: Security Advisory (ALAS-2013-270)\");\n script_tag(name:\"insight\", value:\"Multiple integer overflow flaws, leading to heap-based buffer overflows, were found in glibc's memory allocator functions (pvalloc, valloc, and memalign). If an application used such a function, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. (CVE-2013-4332 )A flaw was found in the regular expression matching routines that process multibyte character input. If an application utilized the glibc regular expression matching mechanism, an attacker could provide specially-crafted input that, when processed, would cause the application to crash. (CVE-2013-0242 )It was found that getaddrinfo() did not limit the amount of stack memory used during name resolution. An attacker able to make an application resolve an attacker-controlled hostname or IP address could possibly cause the application to exhaust all stack memory and crash. (CVE-2013-1914 )\");\n script_tag(name:\"solution\", value:\"Run yum update glibc to update your system.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"URL\", value:\"https://alas.aws.amazon.com/ALAS-2013-270.html\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\", \"CVE-2013-4332\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/amazon_linux\", \"ssh/login/release\");\n script_category(ACT_GATHER_INFO);\n script_tag(name:\"summary\", value:\"The remote host is missing an update announced via the referenced Security Advisory.\");\n script_copyright(\"Copyright (C) 2015 Eero Volotinen\");\n script_family(\"Amazon Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"AMAZON\") {\n if(!isnull(res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.12~1.132.45.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.12~1.132.45.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"glibc-debuginfo-common\", rpm:\"glibc-debuginfo-common~2.12~1.132.45.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.12~1.132.45.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.12~1.132.45.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"glibc-static\", rpm:\"glibc-static~2.12~1.132.45.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"glibc-debuginfo\", rpm:\"glibc-debuginfo~2.12~1.132.45.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.12~1.132.45.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.12~1.132.45.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);\n", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2018-02-06T13:10:42", "bulletinFamily": "scanner", "description": "Check for the Version of glibc", "modified": "2018-02-05T00:00:00", "published": "2013-11-21T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=871075", "id": "OPENVAS:871075", "title": "RedHat Update for glibc RHSA-2013:1605-02", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for glibc RHSA-2013:1605-02\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(871075);\n script_version(\"$Revision: 8672 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-02-05 17:39:18 +0100 (Mon, 05 Feb 2018) $\");\n script_tag(name:\"creation_date\", value:\"2013-11-21 10:43:57 +0530 (Thu, 21 Nov 2013)\");\n script_cve_id(\"CVE-2013-0242\", \"CVE-2013-1914\", \"CVE-2013-4332\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_name(\"RedHat Update for glibc RHSA-2013:1605-02\");\n\n tag_insight = \"The glibc packages provide the standard C libraries (libc), POSIX thread\nlibraries (libpthread), standard math libraries (libm), and the Name Server\nCaching Daemon (nscd) used by multiple programs on the system. Without\nthese libraries, the Linux system cannot function correctly.\n\nMultiple integer overflow flaws, leading to heap-based buffer overflows,\nwere found in glibc's memory allocator functions (pvalloc, valloc, and\nmemalign). If an application used such a function, it could cause the\napplication to crash or, potentially, execute arbitrary code with the\nprivileges of the user running the application. (CVE-2013-4332)\n\nA flaw was found in the regular expression matching routines that process\nmultibyte character input. If an application utilized the glibc regular\nexpression matching mechanism, an attacker could provide specially-crafted\ninput that, when processed, would cause the application to crash.\n(CVE-2013-0242)\n\nIt was found that getaddrinfo() did not limit the amount of stack memory\nused during name resolution. An attacker able to make an application\nresolve an attacker-controlled hostname or IP address could possibly cause\nthe application to exhaust all stack memory and crash. (CVE-2013-1914)\n\nAmong other changes, this update includes an important fix for the\nfollowing bug:\n\n* Due to a defect in the initial release of the getaddrinfo() system call\nin Red Hat enterprise Linux 6.0, AF_INET and AF_INET6 queries resolved from\nthe /etc/hosts file returned queried names as canonical names. This\nincorrect behavior is, however, still considered to be the expected\nbehavior. As a result of a recent change in getaddrinfo(), AF_INET6 queries\nstarted resolving the canonical names correctly. However, this behavior was\nunexpected by applications that relied on queries resolved from the\n/etc/hosts file, and these applications could thus fail to operate\nproperly. This update applies a fix ensuring that AF_INET6 queries resolved\nfrom /etc/hosts always return the queried name as canonical. Note that DNS\nlookups are resolved properly and always return the correct canonical\nnames. A proper fix to AF_INET6 queries resolution from /etc/hosts may be\napplied in future releases for now, due to a lack of standard, Red Hat\nsuggests the first entry in the /etc/hosts file, that applies for the IP\naddress being resolved, to be considered the canonical entry. (BZ#1022022)\n\nThese updated glibc packages also include additional bug fixes and\nvarious enhancements. Space precludes documenting all of thes ...\n\n Description truncated, for more information please check the Reference URL\";\n\n tag_affected = \"glibc on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"RHSA\", value: \"2013:1605-02\");\n script_xref(name: \"URL\" , value: \"https://www.redhat.com/archives/rhsa-announce/2013-November/msg00026.html\");\n script_tag(name: \"summary\" , value: \"Check for the Version of glibc\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2013 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"glibc\", rpm:\"glibc~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-common\", rpm:\"glibc-common~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-debuginfo\", rpm:\"glibc-debuginfo~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-debuginfo-common\", rpm:\"glibc-debuginfo-common~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-devel\", rpm:\"glibc-devel~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-headers\", rpm:\"glibc-headers~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"glibc-utils\", rpm:\"glibc-utils~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"nscd\", rpm:\"nscd~2.12~1.132.el6\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}}, {"lastseen": "2017-12-04T11:22:18", "bulletinFamily": "scanner", "description": "Check for the Version of eglibc", "modified": "2017-12-01T00:00:00", "published": "2013-10-29T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=841605", "id": "OPENVAS:841605", "title": "Ubuntu Update for eglibc USN-1991-1", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_ubuntu_USN_1991_1.nasl 7958 2017-12-01 06:47:47Z santu $\n#\n# Ubuntu Update for eglibc USN-1991-1\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2013 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\n\nif(description)\n{\n script_id(841605);\n script_version(\"$Revision: 7958 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-01 07:47:47 +0100 (Fri, 01 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2013-10-29 16:50:28 +0530 (Tue, 29 Oct 2013)\");\n script_cve_id(\"CVE-2012-4412\", \"CVE-2012-4424\", \"CVE-2013-0242\", \"CVE-2013-1914\", \"CVE-2013-4237\", \"CVE-2013-4332\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_name(\"Ubuntu Update for eglibc USN-1991-1\");\n\n tag_insight = \"It was discovered that the GNU C Library incorrectly handled the strcoll()\nfunction. An attacker could use this issue to cause a denial of service, or\npossibly execute arbitrary code. (CVE-2012-4412, CVE-2012-4424)\n\nIt was discovered that the GNU C Library incorrectly handled multibyte\ncharacters in the regular expression matcher. An attacker could use this\nissue to cause a denial of service. (CVE-2013-0242)\n\nIt was discovered that the GNU C Library incorrectly handled large numbers\nof domain conversion results in the getaddrinfo() function. An attacker\ncould use this issue to cause a denial of service. (CVE-2013-1914)\n\nIt was discovered that the GNU C Library readdir_r() function incorrectly\nhandled crafted NTFS or CIFS images. An attacker could use this issue to\ncause a denial of service, or possibly execute arbitrary code.\n(CVE-2013-4237)\n\nIt was discovered that the GNU C Library incorrectly handled memory\nallocation. An attacker could use this issue to cause a denial of service.\n(CVE-2013-4332)\";\n\n tag_affected = \"eglibc on Ubuntu 13.04 ,\n Ubuntu 12.10 ,\n Ubuntu 12.04 LTS ,\n Ubuntu 10.04 LTS\";\n\n tag_solution = \"Please Install the Updated Packages.\";\n\n\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name: \"USN\", value: \"1991-1\");\n script_xref(name: \"URL\" , value: \"http://www.ubuntu.com/usn/usn-1991-1/\");\n script_summary(\"Check for the Version of eglibc\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2013 Greenbone Networks GmbH\");\n script_family(\"Ubuntu Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/ubuntu_linux\", \"ssh/login/packages\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-deb.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"UBUNTU12.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libc6\", ver:\"2.15-0ubuntu10.5\", rls:\"UBUNTU12.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU10.04 LTS\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libc6\", ver:\"2.11.1-0ubuntu7.13\", rls:\"UBUNTU10.04 LTS\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU12.10\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libc6\", ver:\"2.15-0ubuntu20.2\", rls:\"UBUNTU12.10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"UBUNTU13.04\")\n{\n\n if ((res = isdpkgvuln(pkg:\"libc6\", ver:\"2.17-0ubuntu5.1\", rls:\"UBUNTU13.04\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2019-05-29T18:37:29", "bulletinFamily": "scanner", "description": "VMware has updated vSphere third party libraries", "modified": "2018-10-12T00:00:00", "published": "2014-09-11T00:00:00", "id": "OPENVAS:1361412562310105087", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310105087", "title": "VMSA-2014-0008: VMware vSphere product updates to third party libraries (remote check)", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_VMSA-2014-0008_remote.nasl 11867 2018-10-12 10:48:11Z cfischer $\n#\n# VMSA-2014-0008: VMware vSphere product updates to third party libraries ((remote check))\n#\n# Authors:\n# Michael Meyer <michael.meyer@greenbone.net>\n#\n# Copyright:\n# Copyright (c) 2014 Greenbone Networks GmbH\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif (description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.105087\");\n script_cve_id(\"CVE-2014-0114\", \"CVE-2013-4590\", \"CVE-2013-4322\", \"CVE-2014-0050\", \"CVE-2013-0242\", \"CVE-2013-1914\");\n script_tag(name:\"cvss_base\", value:\"7.5\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:P/I:P/A:P\");\n script_version(\"$Revision: 11867 $\");\n script_name(\"VMSA-2014-0008: VMware vSphere product updates to third party libraries (remote check)\");\n\n script_xref(name:\"URL\", value:\"http://www.vmware.com/security/advisories/VMSA-2014-0008.html\");\n script_tag(name:\"vuldetect\", value:\"Check the build number\");\n script_tag(name:\"insight\", value:\"a. vCenter Server Apache Struts Update\n\nThe Apache Struts library is updated to address a security issue.\nThis issue may lead to remote code execution after authentication.\n\nb. vCenter Server tc-server 2.9.5 / Apache Tomcat 7.0.52 updates\n\ntc-server has been updated to version 2.9.5 to address multiple security issues.\nThis version of tc-server includes Apache Tomcat 7.0.52.\n\nc. Update to ESXi glibc package\n\nglibc is updated to address multiple security issues.\n\nd. vCenter and Update Manager, Oracle JRE 1.7 Update 55\n\nOracle has documented the CVE identifiers that are addressed in JRE 1.7.0\nupdate 55 in the Oracle Java SE Critical Patch Update Advisory of April 2014\");\n\n script_tag(name:\"solution\", value:\"Apply the missing patch(es).\");\n script_tag(name:\"summary\", value:\"VMware has updated vSphere third party libraries\");\n\n script_tag(name:\"affected\", value:\"VMware vCenter Server 5.5 prior to Update 2\nVMware vCenter Update Manager 5.5 prior to Update 2\nVMware ESXi 5.5 without patch ESXi550-201409101-SG\");\n\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-12 12:48:11 +0200 (Fri, 12 Oct 2018) $\");\n script_tag(name:\"creation_date\", value:\"2014-09-11 11:04:01 +0100 (Thu, 11 Sep 2014)\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_family(\"General\");\n script_copyright(\"This script is Copyright (C) 2014 Greenbone Networks GmbH\");\n script_dependencies(\"gb_vmware_esx_web_detect.nasl\");\n script_mandatory_keys(\"VMware/ESX/build\", \"VMware/ESX/version\");\n\nexit(0);\n\n}\n\ninclude(\"vmware_esx.inc\");\n\nif( ! esxVersion = get_kb_item( \"VMware/ESX/version\" ) ) exit( 0 );\nif( ! esxBuild = get_kb_item( \"VMware/ESX/build\" ) ) exit( 0 );\n\nfixed_builds = make_array( \"5.5.0\",\"2068190\",\n \"5.1.0\", \"2323231\");\n\nif( ! fixed_builds[esxVersion] ) exit( 0 );\n\nif( int( esxBuild ) < int( fixed_builds[esxVersion] ) )\n{\n security_message(port:0, data: esxi_remote_report( ver:esxVersion, build: esxBuild, fixed_build: fixed_builds[esxVersion] ) );\n exit(0);\n}\n\nexit( 99 );\n\n", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "redhat": [{"lastseen": "2019-08-13T18:45:57", "bulletinFamily": "unix", "description": "The glibc packages provide the standard C libraries (libc), POSIX thread\nlibraries (libpthread), standard math libraries (libm), and the Name Server\nCaching Daemon (nscd) used by multiple programs on the system. Without\nthese libraries, the Linux system cannot function correctly.\n\nIt was found that getaddrinfo() did not limit the amount of stack memory\nused during name resolution. An attacker able to make an application\nresolve an attacker-controlled hostname or IP address could possibly cause\nthe application to exhaust all stack memory and crash. (CVE-2013-1914)\n\nA flaw was found in the regular expression matching routines that process\nmultibyte character input. If an application utilized the glibc regular\nexpression matching mechanism, an attacker could provide specially-crafted\ninput that, when processed, would cause the application to crash.\n(CVE-2013-0242)\n\nThis update also fixes the following bugs:\n\n* The improvements RHSA-2012:1207 made to the accuracy of floating point\nfunctions in the math library caused performance regressions for those\nfunctions. The performance regressions were analyzed and a fix was applied\nthat retains the current accuracy but reduces the performance penalty to\nacceptable levels. Refer to Red Hat Knowledge solution 229993, linked\nto in the References, for further information. (BZ#950535)\n\n* It was possible that a memory location freed by the localization code\ncould be accessed immediately after, resulting in a crash. The fix ensures\nthat the application does not crash by avoiding the invalid memory access.\n(BZ#951493)\n\nUsers of glibc are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues.\n", "modified": "2017-09-08T11:56:29", "published": "2013-04-24T04:00:00", "id": "RHSA-2013:0769", "href": "https://access.redhat.com/errata/RHSA-2013:0769", "type": "redhat", "title": "(RHSA-2013:0769) Low: glibc security and bug fix update", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-08-13T18:45:35", "bulletinFamily": "unix", "description": "The glibc packages provide the standard C libraries (libc), POSIX thread\nlibraries (libpthread), standard math libraries (libm), and the Name Server\nCaching Daemon (nscd) used by multiple programs on the system. Without\nthese libraries, the Linux system cannot function correctly.\n\nMultiple integer overflow flaws, leading to heap-based buffer overflows,\nwere found in glibc's memory allocator functions (pvalloc, valloc, and\nmemalign). If an application used such a function, it could cause the\napplication to crash or, potentially, execute arbitrary code with the\nprivileges of the user running the application. (CVE-2013-4332)\n\nA flaw was found in the regular expression matching routines that process\nmultibyte character input. If an application utilized the glibc regular\nexpression matching mechanism, an attacker could provide specially-crafted\ninput that, when processed, would cause the application to crash.\n(CVE-2013-0242)\n\nIt was found that getaddrinfo() did not limit the amount of stack memory\nused during name resolution. An attacker able to make an application\nresolve an attacker-controlled hostname or IP address could possibly cause\nthe application to exhaust all stack memory and crash. (CVE-2013-1914)\n\nAmong other changes, this update includes an important fix for the following\nbug:\n\n* Due to a defect in the initial release of the getaddrinfo() system call in Red\nHat enterprise Linux 6.0, AF_INET and AF_INET6 queries resolved from the\n/etc/hosts file returned queried names as canonical names. This incorrect\nbehavior is, however, still considered to be the expected behavior. As a result\nof a recent change in getaddrinfo(), AF_INET6 queries started resolving the\ncanonical names correctly. However, this behavior was unexpected by applications\nthat relied on queries resolved from the /etc/hosts file, and these applications\ncould thus fail to operate properly. This update applies a fix ensuring that\nAF_INET6 queries resolved from /etc/hosts always return the queried name as\ncanonical. Note that DNS lookups are resolved properly and always return the\ncorrect canonical names. A proper fix to AF_INET6 queries resolution from\n/etc/hosts may be applied in future releases; for now, due to a lack of\nstandard, Red Hat suggests the first entry in the /etc/hosts file, that applies\nfor the IP address being resolved, to be considered the canonical entry.\n(BZ#1022022)\n\nThese updated glibc packages also include additional bug fixes and \nvarious enhancements. Space precludes documenting all of these changes \nin this advisory. Users are directed to the Red Hat Enterprise Linux 6.5 \nTechnical Notes, linked to in the References, for information on the \nmost significant of these changes.\n\nAll glibc users are advised to upgrade to these updated packages, which\ncontain backported patches to correct these issues and add these\nenhancements.\n", "modified": "2018-06-06T20:24:12", "published": "2013-11-21T05:00:00", "id": "RHSA-2013:1605", "href": "https://access.redhat.com/errata/RHSA-2013:1605", "type": "redhat", "title": "(RHSA-2013:1605) Moderate: glibc security, bug fix, and enhancement update", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-08-13T18:47:10", "bulletinFamily": "unix", "description": "The rhev-hypervisor6 package provides a Red Hat Enterprise Virtualization\nHypervisor ISO disk image. The Red Hat Enterprise Virtualization Hypervisor\nis a dedicated Kernel-based Virtual Machine (KVM) hypervisor. It includes\neverything necessary to run and manage virtual machines: a subset of the\nRed Hat Enterprise Linux operating environment and the Red Hat Enterprise\nVirtualization Agent.\n\nNote: Red Hat Enterprise Virtualization Hypervisor is only available for\nthe Intel 64 and AMD64 architectures with virtualization extensions.\n\nUpgrade Note: If you upgrade the Red Hat Enterprise Virtualization\nHypervisor through the 3.2 Manager administration portal, the Host may\nappear with the status of \"Install Failed\". If this happens, place the host\ninto maintenance mode, then activate it again to get the host back to an\n\"Up\" state.\n\nA buffer overflow flaw was found in the way QEMU processed the SCSI \"REPORT\nLUNS\" command when more than 256 LUNs were specified for a single SCSI\ntarget. A privileged guest user could use this flaw to corrupt QEMU process\nmemory on the host, which could potentially result in arbitrary code\nexecution on the host with the privileges of the QEMU process.\n(CVE-2013-4344)\n\nMultiple flaws were found in the way Linux kernel handled HID (Human\nInterface Device) reports. An attacker with physical access to the system\ncould use this flaw to crash the system or, potentially, escalate their\nprivileges on the system. (CVE-2013-2888, CVE-2013-2889, CVE-2013-2892)\n\nA flaw was found in the way the Python SSL module handled X.509 certificate\nfields that contain a NULL byte. An attacker could potentially exploit this\nflaw to conduct man-in-the-middle attacks to spoof SSL servers. Note that\nto exploit this issue, an attacker would need to obtain a carefully crafted\ncertificate signed by an authority that the client trusts. (CVE-2013-4238)\n\nThe default OpenSSH configuration made it easy for remote attackers to\nexhaust unauthorized connection slots and prevent other users from being\nable to log in to a system. This flaw has been addressed by enabling random\nearly connection drops by setting MaxStartups to 10:30:100 by default.\nFor more information, refer to the sshd_config(5) man page. (CVE-2010-5107)\n\nThe CVE-2013-4344 issue was discovered by Asias He of Red Hat.\n\nThis updated package provides updated components that include fixes for\nvarious security issues. These issues have no security impact on Red Hat\nEnterprise Virtualization Hypervisor itself, however. The security fixes\nincluded in this update address the following CVE numbers:\n\nCVE-2012-0786 and CVE-2012-0787 (augeas issues)\n\nCVE-2013-1813 (busybox issue)\n\nCVE-2013-0221, CVE-2013-0222, and CVE-2013-0223 (coreutils issues)\n\nCVE-2012-4453 (dracut issue)\n\nCVE-2013-4332, CVE-2013-0242, and CVE-2013-1914 (glibc issues)\n\nCVE-2013-4387, CVE-2013-0343, CVE-2013-4345, CVE-2013-4591, CVE-2013-4592,\nCVE-2012-6542, CVE-2013-3231, CVE-2013-1929, CVE-2012-6545, CVE-2013-1928,\nCVE-2013-2164, CVE-2013-2234, and CVE-2013-2851 (kernel issues)\n\nCVE-2013-4242 (libgcrypt issue)\n\nCVE-2013-4419 (libguestfs issue)\n\nCVE-2013-1775, CVE-2013-2776, and CVE-2013-2777 (sudo issues)\n\nThis update also fixes the following bug:\n\n* A previous version of the rhev-hypervisor6 package did not contain the\nlatest vhostmd package, which provides a \"metrics communication channel\"\nbetween a host and its hosted virtual machines, allowing limited\nintrospection of host resource usage from within virtual machines. This has\nbeen fixed, and rhev-hypervisor6 now includes the latest vhostmd package.\n(BZ#1026703)\n\nThis update also contains the fixes from the following errata:\n\n* ovirt-node: https://rhn.redhat.com/errata/RHBA-2013-1528.html\n\nUsers of the Red Hat Enterprise Virtualization Hypervisor are advised to\nupgrade to this updated package, which corrects these issues.\n", "modified": "2018-06-07T08:59:39", "published": "2013-11-21T05:00:00", "id": "RHSA-2013:1527", "href": "https://access.redhat.com/errata/RHSA-2013:1527", "type": "redhat", "title": "(RHSA-2013:1527) Important: rhev-hypervisor6 security and bug fix update", "cvss": {"score": 7.2, "vector": "AV:L/AC:L/Au:N/C:C/I:C/A:C"}}], "oraclelinux": [{"lastseen": "2019-05-29T18:36:29", "bulletinFamily": "unix", "description": "[2.5-107.4]\n- Add missing patch to avoid use after free (#816647).\n[2.5-107.3]\n- Fix multibyte character processing crash in regexp (CVE-2013-0242, #951130)\n - Fix getaddrinfo stack overflow resulting in application crash (CVE-2013-1914, #951130)\n[2.5-107.2]\n- Call feraiseexcept only if exceptions are not masked (#861871).", "modified": "2013-04-24T00:00:00", "published": "2013-04-24T00:00:00", "id": "ELSA-2013-0769", "href": "http://linux.oracle.com/errata/ELSA-2013-0769.html", "title": "glibc security and bug fix update", "type": "oraclelinux", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}, {"lastseen": "2019-05-29T18:38:21", "bulletinFamily": "unix", "description": "[2.12-1.132] \r\n- Revert the addition of gettimeofday vDSO function for ppc and ppc64 until \r\nOPD VDSO function call issues are resolved (#1026533). \r\n \n[2.12-1.131] \r\n- Call gethostbyname4_r only for PF_UNSPEC (#1022022). \r\n \n[2.12-1.130] \r\n- Fix integer overflows in *valloc and memalign. (#1008310). \r\n \n[2.12-1.129] \r\n- Initialize res_hconf in nscd (#970090). \r\n \n[2.12-1.128] \r\n- Update previous patch for dcigettext.c and loadmsgcat.c (#834386). \r\n \n[2.12-1.127] \r\n- Save search paths before performing relro protection (#988931). \r\n \n[2.12-1.126] \r\n- Correctly name the 240-bit slow path sytemtap probe slowpow_p10 for slowpow (#905575). \r\n \n[2.12-1.125] \r\n- Align value of stacksize in nptl-init (#663641). \r\n \n[2.12-1.124] \r\n- Renamed release engineering directory from 'fedora' to `releng' (#903754). \r\n \n[2.12-1.123] \r\n- Backport GLIBC sched_getcpu and gettimeofday vDSO functions for ppc (#929302). \r\n- Fall back to local DNS if resolv.conf does not define nameservers (#928318). \r\n- Add systemtap probes to slowexp and slowpow (#905575). \r\n \n[2.12-1.122] \r\n- Fix getaddrinfo stack overflow resulting in application crash (CVE-2013-1914, #951213). \r\n- Fix multibyte character processing crash in regexp (CVE-2013-0242, #951213). \r\n \n[2.12-1.121] \r\n- Add netgroup cache support for nscd (#629823). \r\n \n[2.12-1.120] \r\n- Fix multiple nss_compat initgroups() bugs (#966778). \r\n- Don't use simple lookup for AF_INET when AI_CANONNAME is set (#863384). \r\n \n[2.12-1.119] \r\n- Add MAP_HUGETLB and MAP_STACK support (#916986). \r\n- Update translation for stale file handle error (#970776). \r\n \n[2.12-1.118] \r\n- Improve performance of _SC_NPROCESSORS_ONLN (#rh952422). \r\n- Fix up _init in pt-initfini to accept arguments (#663641). \r\n \n[2.12-1.117] \r\n- Set reasonable limits on xdr requests to prevent memory leaks (#848748). \r\n \n[2.12-1.116] \r\n- Fix mutex locking for PI mutexes on spurious wake-ups on pthread condvars \r\n(#552960). \r\n- New environment variable GLIBC_PTHREAD_STACKSIZE to set thread stack size \r\n(#663641). \r\n \n[2.12-1.115] \r\n- Improved handling of recursive calls in backtrace (#868808). \r\n \n[2.12-1.114] \r\n- The ttyname and ttyname_r functions on Linux now fall back to searching for \r\nthe tty file descriptor in /dev/pts or /dev if /proc is not available. This \r\nallows creation of chroots without the procfs mounted on /proc. (#851470) \r\n \n[2.12-1.113] \r\n- Don't free rpath strings allocated during startup until after \r\nld.so is re-relocated. (#862094) \r\n \n[2.12-1.112] \r\n- Consistantly MANGLE/DEMANGLE function pointers. \r\nFix use after free in dcigettext.c (#834386). \r\n \n[2.12-1.111] \r\n- Change rounding mode only when necessary (#966775). \r\n \n[2.12-1.110] \r\n- Backport of code to allow incremental loading of library list (#886968). \r\n \n[2.12-1.109] \r\n- Fix loading of audit libraries when TLS is in use (#919562) \r\n \n[2.12-1.108] \r\n- Fix application of SIMD FP exception mask (#929388). ", "modified": "2013-11-25T00:00:00", "published": "2013-11-25T00:00:00", "id": "ELSA-2013-1605", "href": "http://linux.oracle.com/errata/ELSA-2013-1605.html", "title": "glibc security, bug fix, and enhancement update", "type": "oraclelinux", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "amazon": [{"lastseen": "2019-05-29T17:22:35", "bulletinFamily": "unix", "description": "**Issue Overview:**\n\nMultiple integer overflow flaws, leading to heap-based buffer overflows, were found in glibc's memory allocator functions (pvalloc, valloc, and memalign). If an application used such a function, it could cause the application to crash or, potentially, execute arbitrary code with the privileges of the user running the application. ([CVE-2013-4332 __](<https://access.redhat.com/security/cve/CVE-2013-4332>))\n\nA flaw was found in the regular expression matching routines that process multibyte character input. If an application utilized the glibc regular expression matching mechanism, an attacker could provide specially-crafted input that, when processed, would cause the application to crash. ([CVE-2013-0242 __](<https://access.redhat.com/security/cve/CVE-2013-0242>))\n\nIt was found that getaddrinfo() did not limit the amount of stack memory used during name resolution. An attacker able to make an application resolve an attacker-controlled hostname or IP address could possibly cause the application to exhaust all stack memory and crash. ([CVE-2013-1914 __](<https://access.redhat.com/security/cve/CVE-2013-1914>))\n\n \n**Affected Packages:** \n\n\nglibc\n\n \n**Issue Correction:** \nRun _yum update glibc_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n glibc-2.12-1.132.45.amzn1.i686 \n glibc-utils-2.12-1.132.45.amzn1.i686 \n glibc-debuginfo-common-2.12-1.132.45.amzn1.i686 \n glibc-common-2.12-1.132.45.amzn1.i686 \n glibc-headers-2.12-1.132.45.amzn1.i686 \n glibc-static-2.12-1.132.45.amzn1.i686 \n glibc-debuginfo-2.12-1.132.45.amzn1.i686 \n nscd-2.12-1.132.45.amzn1.i686 \n glibc-devel-2.12-1.132.45.amzn1.i686 \n \n src: \n glibc-2.12-1.132.45.amzn1.src \n \n x86_64: \n glibc-2.12-1.132.45.amzn1.x86_64 \n nscd-2.12-1.132.45.amzn1.x86_64 \n glibc-devel-2.12-1.132.45.amzn1.x86_64 \n glibc-common-2.12-1.132.45.amzn1.x86_64 \n glibc-debuginfo-2.12-1.132.45.amzn1.x86_64 \n glibc-headers-2.12-1.132.45.amzn1.x86_64 \n glibc-static-2.12-1.132.45.amzn1.x86_64 \n glibc-debuginfo-common-2.12-1.132.45.amzn1.x86_64 \n glibc-utils-2.12-1.132.45.amzn1.x86_64 \n \n \n", "modified": "2014-09-16T22:16:00", "published": "2014-09-16T22:16:00", "id": "ALAS-2013-270", "href": "https://alas.aws.amazon.com/ALAS-2013-270.html", "title": "Medium: glibc", "type": "amazon", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}}], "ubuntu": [{"lastseen": "2019-05-29T17:22:35", "bulletinFamily": "unix", "description": "It was discovered that the GNU C Library incorrectly handled the strcoll() function. An attacker could use this issue to cause a denial of service, or possibly execute arbitrary code. (CVE-2012-4412, CVE-2012-4424)\n\nIt was discovered that the GNU C Library incorrectly handled multibyte characters in the regular expression matcher. An attacker could use this issue to cause a denial of service. (CVE-2013-0242)\n\nIt was discovered that the GNU C Library incorrectly handled large numbers of domain conversion results in the getaddrinfo() function. An attacker could use this issue to cause a denial of service. (CVE-2013-1914)\n\nIt was discovered that the GNU C Library readdir_r() function incorrectly handled crafted NTFS or CIFS images. An attacker could use this issue to cause a denial of service, or possibly execute arbitrary code. (CVE-2013-4237)\n\nIt was discovered that the GNU C Library incorrectly handled memory allocation. An attacker could use this issue to cause a denial of service. (CVE-2013-4332)", "modified": "2013-10-21T00:00:00", "published": "2013-10-21T00:00:00", "id": "USN-1991-1", "href": "https://usn.ubuntu.com/1991-1/", "title": "GNU C Library vulnerabilities", "type": "ubuntu", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "vmware": [{"lastseen": "2019-11-06T16:05:33", "bulletinFamily": "unix", "description": "a. vCenter Server Apache Struts Update \n\n\nThe Apache Struts library is updated to address a security issue. \n \nThis issue may lead to remote code execution after authentication. \n \nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the identifier CVE-2014-0114 to this issue. \n \nColumn 4 of the following table lists the action required to remediate the vulnerability in each release, if a solution is available.\n", "modified": "2014-12-04T00:00:00", "published": "2014-09-09T00:00:00", "id": "VMSA-2014-0008", "href": "https://www.vmware.com/security/advisories/VMSA-2014-0008.html", "title": "VMware vSphere product updates to third party libraries", "type": "vmware", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "f5": [{"lastseen": "2017-10-12T02:11:09", "bulletinFamily": "software", "description": " \n\n\n[CVE-2014-0475](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0475>)\n\nMultiple directory traversal vulnerabilities in GNU C Library (aka glibc or libc6) before 2.20 allow context-dependent attackers to bypass ForceCommand restrictions and possibly have other unspecified impact via a .. (dot dot) in a (1) LC_*, (2) LANG, or other locale environment variable.\n\n[CVE-2014-5119](<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119>) \n\n\nOff-by-one error in the __gconv_translit_find function in gconv_trans.c in GNU C Library (aka glibc) allows context-dependent attackers to cause a denial of service (crash) or execute arbitrary code via vectors related to the CHARSET environment variable and gconv transliteration modules.\n\n[CVE-2013-4458](<https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4458>)\n\nStack-based buffer overflow in the getaddrinfo function in sysdeps/posix/getaddrinfo.c in GNU C Library (aka glibc or libc6) 2.18 and earlier allows remote attackers to cause a denial of service (crash) via a (1) hostname or (2) IP address that triggers a large number of AF_INET6 address results. NOTE: this vulnerability exists because of an incomplete fix for CVE-2013-1914.\n\nImpact \n\n\nThis vulnerability may allow remote attackers to bypass restrictions and execute arbitrary code or cause a denial-of-service (DoS). \n\n\nIf the previous table lists a version in the **Versions known to be not vulnerable** column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists.\n\n * [K9970: Subscribing to email notifications regarding F5 products](<https://support.f5.com/csp/article/K9970>)\n * [K9957: Creating a custom RSS feed to view new and updated documents.](<https://support.f5.com/csp/article/K9957>)\n * [K4602: Overview of the F5 security vulnerability response policy](<https://support.f5.com/csp/article/K4602>)\n * [K4918: Overview of the F5 critical issue hotfix policy](<https://support.f5.com/csp/article/K4918>)\n * [K167: Downloading software and firmware from F5](<https://support.f5.com/csp/article/K167>)\n", "modified": "2016-01-09T02:19:00", "published": "2014-10-02T23:35:00", "id": "F5:K15640", "href": "https://support.f5.com/csp/article/K15640", "title": "GNU C Library (glibc) vulnerabilities CVE-2014-0475, CVE-2014-5119, CVE-2013-4458", "type": "f5", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-11-09T00:09:49", "bulletinFamily": "software", "description": "*Most ARX components are based on GNU C library code. \n\n\nRecommended action\n\nIf the previous table lists a version in the **Versions known to be not vulnerable** column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists.\n\nSupplemental Information\n\n * SOL9970: Subscribing to email notifications regarding F5 products\n * SOL9957: Creating a custom RSS feed to view new and updated documents.\n * SOL4602: Overview of the F5 security vulnerability response policy\n * SOL4918: Overview of the F5 critical issue hotfix policy\n * SOL167: Downloading software and firmware from F5\n", "modified": "2014-10-02T00:00:00", "published": "2014-10-02T00:00:00", "href": "http://support.f5.com/kb/en-us/solutions/public/15000/600/sol15640.html", "id": "SOL15640", "title": "SOL15640 - GNU C Library (glibc) vulnerabilities CVE-2014-0475, CVE-2014-5119, CVE-2013-4458", "type": "f5", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}], "gentoo": [{"lastseen": "2016-09-06T19:46:22", "bulletinFamily": "unix", "description": "### Background\n\nThe GNU C library is the standard C library used by Gentoo Linux systems. \n\n### Description\n\nMultiple vulnerabilities have been discovered in the GNU C Library. Please review the CVE identifiers referenced below for details. \n\n### Impact\n\nA local attacker may be able to execute arbitrary code or cause a Denial of Service condition,. \n\n### Workaround\n\nThere is no known workaround at this time.\n\n### Resolution\n\nAll glibc users should upgrade to the latest version:\n \n \n # emerge --sync\n # emerge --ask --oneshot --verbose \">=sys-libs/glibc-2.19-r1\"", "modified": "2015-03-08T00:00:00", "published": "2015-03-08T00:00:00", "id": "GLSA-201503-04", "href": "https://security.gentoo.org/glsa/201503-04", "type": "gentoo", "title": "GNU C Library: Multiple vulnerabilities", "cvss": {"score": 10.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "debian": [{"lastseen": "2019-05-30T02:23:05", "bulletinFamily": "unix", "description": "Package : eglibc\nVersion : 2.11.3-4+deb6u5\nCVE ID : CVE-2012-3405 CVE-2012-3406 CVE-2012-3480 CVE-2012-4412 \n CVE-2012-4424 CVE-2013-0242 CVE-2013-1914 CVE-2013-4237\n\t\t CVE-2013-4332 CVE-2013-4357 CVE-2013-4458 CVE-2013-4788\n\t\t CVE-2013-7423 CVE-2013-7424 CVE-2014-4043 CVE-2015-1472\n\t\t CVE-2015-1473\nDebian Bug : 553206 681473 681888 684889 687530 689423 699399 704623\n\t\t 717178 719558 722536 751774 765506 765526 765562\n\nSeveral vulnerabilities have been fixed in eglibc, Debian's version of\nthe GNU C library.\n\n#553206\nCVE-2015-1472\nCVE-2015-1473\n\n The scanf family of functions do not properly limit stack\n allocation, which allows context-dependent attackers to cause a\n denial of service (crash) or possibly execute arbitrary code.\n\nCVE-2012-3405\n\n The printf family of functions do not properly calculate a buffer\n length, which allows context-dependent attackers to bypass the\n FORTIFY_SOURCE format-string protection mechanism and cause a\n denial of service.\n\nCVE-2012-3406\n\n The printf family of functions do not properly limit stack\n allocation, which allows context-dependent attackers to bypass the\n FORTIFY_SOURCE format-string protection mechanism and cause a\n denial of service (crash) or possibly execute arbitrary code via a\n crafted format string.\n\nCVE-2012-3480\n\n Multiple integer overflows in the strtod, strtof, strtold,\n strtod_l, and other related functions allow local users to cause a\n denial of service (application crash) and possibly execute\n arbitrary code via a long string, which triggers a stack-based\n buffer overflow.\n\nCVE-2012-4412\n\n Integer overflow in the strcoll and wcscoll functions allows\n context-dependent attackers to cause a denial of service (crash)\n or possibly execute arbitrary code via a long string, which\n triggers a heap-based buffer overflow.\n\nCVE-2012-4424\n\n Stack-based buffer overflow in the strcoll and wcscoll functions\n allows context-dependent attackers to cause a denial of service\n (crash) or possibly execute arbitrary code via a long string that\n triggers a malloc failure and use of the alloca function.\n\nCVE-2013-0242\n\n Buffer overflow in the extend_buffers function in the regular\n expression matcher allows context-dependent attackers to cause a\n denial of service (memory corruption and crash) via crafted\n multibyte characters.\n\nCVE-2013-1914\nCVE-2013-4458\n\n Stack-based buffer overflow in the getaddrinfo function allows\n remote attackers to cause a denial of service (crash) via a\n hostname or IP address that triggers a large number of domain\n conversion results.\n\nCVE-2013-4237\n\n readdir_r allows context-dependent attackers to cause a denial of\n service (out-of-bounds write and crash) or possibly execute\n arbitrary code via a malicious NTFS image or CIFS service.\n\nCVE-2013-4332\n\n Multiple integer overflows in malloc/malloc.c allow\n context-dependent attackers to cause a denial of service (heap\n corruption) via a large value to the pvalloc, valloc,\n posix_memalign, memalign, or aligned_alloc functions.\n\nCVE-2013-4357\n\n The getaliasbyname, getaliasbyname_r, getaddrinfo, getservbyname,\n getservbyname_r, getservbyport, getservbyport_r, and glob\n functions do not properly limit stack allocation, which allows\n context-dependent attackers to cause a denial of service (crash)\n or possibly execute arbitrary code.\n\nCVE-2013-4788\n\n When the GNU C library is statically linked into an executable,\n the PTR_MANGLE implementation does not initialize the random value\n for the pointer guard, so that various hardening mechanisms are not\n effective.\n\nCVE-2013-7423\n\n The send_dg function in resolv/res_send.c does not properly reuse\n file descriptors, which allows remote attackers to send DNS\n queries to unintended locations via a large number of requests that\n trigger a call to the getaddrinfo function.\n\nCVE-2013-7424\n\n The getaddrinfo function may attempt to free an invalid pointer\n when handling IDNs (Internationalised Domain Names), which allows\n remote attackers to cause a denial of service (crash) or possibly\n execute arbitrary code.\n\nCVE-2014-4043\n\n The posix_spawn_file_actions_addopen function does not copy its\n path argument in accordance with the POSIX specification, which\n allows context-dependent attackers to trigger use-after-free\n vulnerabilities.\n\nFor the oldstable distribution (squeeze), these problems have been fixed\nin version 2.11.3-4+deb6u5.\n\nFor the stable distribution (wheezy), these problems were fixed in\nversion 2.13-38+deb7u8 or earlier.\n\n-- \nBen Hutchings - Debian developer, member of Linux kernel and LTS teams\n\n", "modified": "2015-03-06T15:40:37", "published": "2015-03-06T15:40:37", "id": "DEBIAN:DLA-165-1:23BFE", "href": "https://lists.debian.org/debian-lts-announce/2015/debian-lts-announce-201503/msg00002.html", "title": "[SECURITY] [DLA 165-1] eglibc security update", "type": "debian", "cvss": {"score": 7.5, "vector": "AV:N/AC:L/Au:N/C:P/I:P/A:P"}}], "suse": [{"lastseen": "2016-09-04T11:57:20", "bulletinFamily": "unix", "description": "This glibc update fixes a critical privilege escalation problem and the\n following security and non-security issues:\n\n * bnc#892073: An off-by-one error leading to a heap-based buffer\n overflow was found in __gconv_translit_find(). An exploit that\n targets the problem is publicly available. (CVE-2014-5119)\n * bnc#882600: Copy filename argument in\n posix_spawn_file_actions_addopen. (CVE-2014-4043)\n * bnc#860501: Use O_LARGEFILE for utmp file.\n * bnc#842291: Fix typo in glibc-2.5-dlopen-lookup-race.diff.\n * bnc#839870: Fix integer overflows in malloc. (CVE-2013-4332)\n * bnc#834594: Fix readdir_r with long file names. (CVE-2013-4237)\n * bnc#824639: Drop lock before calling malloc_printerr.\n * bnc#801246: Fix buffer overrun in regexp matcher. (CVE-2013-0242)\n * bnc#779320: Fix buffer overflow in strcoll. (CVE-2012-4412)\n * bnc#894556 / bnc#894553: Fix crashes on invalid input in IBM gconv\n modules. (CVE-2014-6040, CVE-2012-6656, bnc#894553, bnc#894556,\n BZ#17325, BZ#14134)\n\n Security Issues:\n\n * CVE-2014-5119\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119</a>>\n * CVE-2014-4043\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4043\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4043</a>>\n * CVE-2013-4332\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4332\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4332</a>>\n * CVE-2013-4237\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4237\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4237</a>>\n * CVE-2013-0242\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0242\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0242</a>>\n * CVE-2012-4412\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4412\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4412</a>>\n\n\n", "modified": "2014-09-15T19:04:18", "published": "2014-09-15T19:04:18", "id": "SUSE-SU-2014:1128-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00019.html", "title": "Security update for glibc (important)", "type": "suse", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}, {"lastseen": "2016-09-04T12:35:28", "bulletinFamily": "unix", "description": "This glibc update fixes a critical privilege escalation vulnerability and\n the following security and non-security issues:\n\n * bnc#892073: An off-by-one error leading to a heap-based buffer\n overflow was found in __gconv_translit_find(). An exploit that\n targets the problem is publicly available. (CVE-2014-5119)\n * bnc#886416: Avoid redundant shift character in iconv output at block\n boundary.\n * bnc#883022: Initialize errcode in sysdeps/unix/opendir.c.\n * bnc#882600: Copy filename argument in\n posix_spawn_file_actions_addopen. (CVE-2014-4043)\n * bnc#864081: Take lock in pthread_cond_wait cleanup handler only when\n needed.\n * bnc#843735: Don't crash on unresolved weak symbol reference.\n * bnc#839870: Fix integer overflows in malloc. (CVE-2013-4332)\n * bnc#836746: Avoid race between {,__de}allocate_stack and\n __reclaim_stacks during fork.\n * bnc#834594: Fix readdir_r with long file names. (CVE-2013-4237)\n * bnc#830268: Initialize pointer guard also in static executables.\n (CVE-2013-4788)\n * bnc#801246: Fix buffer overrun in regexp matcher. (CVE-2013-0242)\n * bnc#779320: Fix buffer overflow in strcoll. (CVE-2012-4412)\n * bnc#750741: Use absolute timeout in x86 pthread_cond_timedwait.\n\n Security Issues:\n\n * CVE-2014-5119\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-5119</a>>\n * CVE-2014-4043\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4043\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4043</a>>\n * CVE-2012-4412\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4412\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-4412</a>>\n * CVE-2013-0242\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0242\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-0242</a>>\n * CVE-2013-4788\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4788\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4788</a>>\n * CVE-2013-4237\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4237\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4237</a>>\n * CVE-2013-4332\n <<a rel=\"nofollow\" href=\"http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4332\">http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4332</a>>\n\n", "modified": "2014-09-12T06:04:16", "published": "2014-09-12T06:04:16", "id": "SUSE-SU-2014:1122-1", "href": "http://lists.opensuse.org/opensuse-security-announce/2014-09/msg00013.html", "type": "suse", "title": "Security update for glibc (important)", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}}]}
