Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:1361412562310833039HistoryMar 04, 2024 - 12:00 a.m.
openSUSE: Security Advisory for suse (SUSE-SU-2023:4672-1)
2024-03-0400:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
3
suse-su-2023:4672-1
opensuseleap15.4
opensuseleap15.5
opensuseleapmicro5.3
suse-build-key
security advisory
package update
7.5 High
AI Score
Confidence
Low
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.833039");
script_version("2024-05-16T05:05:35+0000");
# TODO: No CVE assigned yet.
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_tag(name:"last_modification", value:"2024-05-16 05:05:35 +0000 (Thu, 16 May 2024)");
script_tag(name:"creation_date", value:"2024-03-04 07:48:27 +0000 (Mon, 04 Mar 2024)");
script_name("openSUSE: Security Advisory for suse (SUSE-SU-2023:4672-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse", "ssh/login/rpms", re:"ssh/login/release=(openSUSELeap15\.4|openSUSELeap15\.5|openSUSELeapMicro5\.3|openSUSELeapMicro5\.4)");
script_xref(name:"Advisory-ID", value:"SUSE-SU-2023:4672-1");
script_xref(name:"URL", value:"https://lists.opensuse.org/archives/list/[email protected]/thread/IPII6AQFO5BNZIB2F2DGLPPZZWOFG4V7");
script_tag(name:"summary", value:"The remote host is missing an update for the 'suse'
package(s) announced via the SUSE-SU-2023:4672-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update for suse-build-key fixes the following issues:
This update runs a import-suse-build-key script.
The previous libzypp-post-script based installation is replaced with a systemd
timer and service (bsc#1217215 bsc#1216410 jsc#PED-2777). - suse-build-key-
import.service - suse-build-key-import.timer
It imports the future SUSE Linux Enterprise 15 4096 bit RSA key primary and
reserve keys. After successful import the timer is disabled.
To manually import them you can also run:
# rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-3fa1d6ce-63c9481c.asc
# rpm --import /usr/lib/rpm/gnupg/keys/gpg-pubkey-d588dc46-63c939db.asc
##");
script_tag(name:"affected", value:"'suse' package(s) on openSUSE Leap 15.4, openSUSE Leap 15.5, openSUSE Leap Micro 5.3, openSUSE Leap Micro 5.4.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "openSUSELeap15.4") {
if(!isnull(res = isrpmvuln(pkg:"suse-build-key", rpm:"suse-build-key~12.0~150000.8.37.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"suse-build-key", rpm:"suse-build-key~12.0~150000.8.37.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "openSUSELeap15.5") {
if(!isnull(res = isrpmvuln(pkg:"suse-build-key", rpm:"suse-build-key~12.0~150000.8.37.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"suse-build-key", rpm:"suse-build-key~12.0~150000.8.37.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "openSUSELeapMicro5.3") {
if(!isnull(res = isrpmvuln(pkg:"suse-build-key", rpm:"suse-build-key~12.0~150000.8.37.1", rls:"openSUSELeapMicro5.3"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "openSUSELeapMicro5.4") {
if(!isnull(res = isrpmvuln(pkg:"suse-build-key", rpm:"suse-build-key~12.0~150000.8.37.1", rls:"openSUSELeapMicro5.4"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);7.5 High
AI Score
Confidence
Low