Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:1361412562310833060HistoryMar 04, 2024 - 12:00 a.m.
openSUSE: Security Advisory for openssl (SUSE-SU-2024:0518-1)
2024-03-0400:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
5
opensuse
openssl package
suse-su-2024:0518-1
advisory
cve-2023-6129
cve-2023-6237
cve-2024-0727
package(s)
opensuse leap 15.4
opensuse leap micro 5.3
opensuse leap micro 5.4
vulnerability
update
vendor fix
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
6.5 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
61.0%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.833060");
script_version("2024-05-16T05:05:35+0000");
script_cve_id("CVE-2023-6129", "CVE-2023-6237", "CVE-2024-0727");
script_tag(name:"cvss_base", value:"6.1");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:N/I:P/A:C");
script_tag(name:"last_modification", value:"2024-05-16 05:05:35 +0000 (Thu, 16 May 2024)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2024-01-23 21:32:01 +0000 (Tue, 23 Jan 2024)");
script_tag(name:"creation_date", value:"2024-03-04 12:50:24 +0000 (Mon, 04 Mar 2024)");
script_name("openSUSE: Security Advisory for openssl (SUSE-SU-2024:0518-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse", "ssh/login/rpms", re:"ssh/login/release=(openSUSELeap15\.4|openSUSELeapMicro5\.3|openSUSELeapMicro5\.4)");
script_xref(name:"Advisory-ID", value:"SUSE-SU-2024:0518-1");
script_xref(name:"URL", value:"https://lists.opensuse.org/archives/list/[email protected]/thread/NFCDU4G6TPF67NSSLYFXJKOWIGWU36LP");
script_tag(name:"summary", value:"The remote host is missing an update for the 'openssl'
package(s) announced via the SUSE-SU-2024:0518-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update for openssl-3 fixes the following issues:
* CVE-2023-6129: Fixed vector register clobbering on PowerPC. (bsc#1218690)
* CVE-2023-6237: Fixed excessive time spent checking invalid RSA public keys.
(bsc#1218810)
* CVE-2024-0727: Denial of service when processing a maliciously formatted
PKCS12 file (bsc#1219243).
##");
script_tag(name:"affected", value:"'openssl' package(s) on openSUSE Leap 15.4, openSUSE Leap Micro 5.3, openSUSE Leap Micro 5.4.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "openSUSELeap15.4") {
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debuginfo", rpm:"openssl-3-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel", rpm:"libopenssl-3-devel~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-debuginfo", rpm:"libopenssl3-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debugsource", rpm:"openssl-3-debugsource~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3", rpm:"openssl-3~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3", rpm:"libopenssl3~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel-32bit", rpm:"libopenssl-3-devel-32bit~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-32bit", rpm:"libopenssl3-32bit~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-32bit-debuginfo", rpm:"libopenssl3-32bit-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-doc", rpm:"openssl-3-doc~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-64bit-debuginfo", rpm:"libopenssl3-64bit-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel-64bit", rpm:"libopenssl-3-devel-64bit~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-64bit", rpm:"libopenssl3-64bit~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debuginfo", rpm:"openssl-3-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel", rpm:"libopenssl-3-devel~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-debuginfo", rpm:"libopenssl3-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debugsource", rpm:"openssl-3-debugsource~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3", rpm:"openssl-3~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3", rpm:"libopenssl3~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel-32bit", rpm:"libopenssl-3-devel-32bit~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-32bit", rpm:"libopenssl3-32bit~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-32bit-debuginfo", rpm:"libopenssl3-32bit-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-doc", rpm:"openssl-3-doc~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-64bit-debuginfo", rpm:"libopenssl3-64bit-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel-64bit", rpm:"libopenssl-3-devel-64bit~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-64bit", rpm:"libopenssl3-64bit~3.0.8~150400.4.49.1", rls:"openSUSELeap15.4"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "openSUSELeapMicro5.3") {
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debugsource", rpm:"openssl-3-debugsource~3.0.8~150400.4.49.1", rls:"openSUSELeapMicro5.3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-debuginfo", rpm:"libopenssl3-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeapMicro5.3"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3", rpm:"libopenssl3~3.0.8~150400.4.49.1", rls:"openSUSELeapMicro5.3"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
if(release == "openSUSELeapMicro5.4") {
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debugsource", rpm:"openssl-3-debugsource~3.0.8~150400.4.49.1", rls:"openSUSELeapMicro5.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-debuginfo", rpm:"libopenssl3-debuginfo~3.0.8~150400.4.49.1", rls:"openSUSELeapMicro5.4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3", rpm:"libopenssl3~3.0.8~150400.4.49.1", rls:"openSUSELeapMicro5.4"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);Related
nessus
nessus
OpenSSL 3.2.0 < 3.2.1 Multiple Vulnerabilities
2024-01-09 00:00:00
SUSE SLED15 / SLES15 Security Update : openssl-3 (SUSE-SU-2024:0518-1)
2024-02-17 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2024:0518-1)
2024-02-16 00:00:00
Mageia: Security Advisory (MGASA-2024-0020)
2024-02-05 00:00:00
Ubuntu: Security Advisory (USN-6622-1)
2024-02-06 00:00:00
ibm
ibm
cloudfoundry
cloudfoundry
USN-6622-1: OpenSSL vulnerabilities | Cloud Foundry
2024-02-29 00:00:00
mageia
mageia
Updated openssl packages fix security vulnerabilities
2024-02-04 05:49:27
Updated quictls packages fix security vulnerabilities
2024-02-15 02:02:34
ubuntu
ubuntu
OpenSSL vulnerabilities
2024-02-05 00:00:00
OpenSSL vulnerabilities
2024-02-13 00:00:00
OpenSSL vulnerabilities
2024-03-21 00:00:00
osv
osv
openssl vulnerabilities
2024-02-05 12:18:56
Low: openssl and openssl-fips-provider security update
2024-04-30 00:00:00
CVE-2023-6237
2024-04-25 07:15:45
freebsd
freebsd
OpenSSL -- Multiple vulnerabilities
2024-01-30 00:00:00
OpenSSL -- Vector register corruption on PowerPC
2024-01-09 00:00:00
almalinux
almalinux
Low: openssl and openssl-fips-provider security update
2024-04-30 00:00:00
oraclelinux
oraclelinux
openssl and openssl-fips-provider security update
2024-05-03 00:00:00
aix
aix
redhat
redhat
(RHSA-2024:2447) Low: openssl and openssl-fips-provider security update
2024-04-30 06:15:44
(RHSA-2024:2933) Important: logging for Red Hat OpenShift security update
2024-05-23 06:15:17
cbl_mariner
cbl_mariner
CVE-2023-6237 affecting package nodejs18 for versions less than 18.20.2-1
2024-05-06 17:48:02
CVE-2024-0727 affecting package kata-containers for versions less than 3.2.0.azl1-1
2024-05-17 21:38:35
CVE-2024-0727 affecting package nodejs for versions less than 16.20.2-2
2024-06-10 03:08:00
redhatcve
redhatcve
alpinelinux
alpinelinux
cvelist
cvelist
CVE-2023-6237 Excessive time spent checking invalid RSA public keys
2024-04-25 06:27:26
CVE-2024-0727 PKCS12 Decoding crashes
2024-01-26 08:57:19
openssl
openssl
Vulnerability in OpenSSL CVE-2023-6237
2024-01-15 00:00:00
Vulnerability in OpenSSL CVE-2024-0727
2024-01-25 00:00:00
Vulnerability in OpenSSL CVE-2023-6129
2024-01-09 00:00:00
cgr
cgr
CVE-2023-6237 vulnerabilities
2024-05-19 03:07:16
CVE-2024-0727 vulnerabilities
2024-05-19 03:07:16
cve
cve
nvd
nvd
wolfi
wolfi
CVE-2024-0727 vulnerabilities
2024-06-10 03:07:57
CVE-2023-6237 vulnerabilities
2024-06-10 03:07:57
amazon
amazon
debiancve
debiancve
ubuntucve
ubuntucve
veracode
veracode
Denial Of Service
2024-01-30 20:23:38
Denial Of Service (DOS)
2024-01-30 19:46:06
Out-of-bounds Write
2024-01-30 19:15:17
redos
redos
ROS-20240503-11
2024-05-03 00:00:00
f5
f5
K000138198 : OpenSSL vulnerability CVE-2023-6129
2024-01-11 00:00:00
K000138695 : OpenSSL vulnerability CVE-2024-0727
2024-02-23 00:00:00
K000138668 : OpenSSL vulnerability CVE-2023-6237
2024-02-21 00:00:00
prion
prion
Null pointer dereference
2024-01-26 09:15:00
Design/Logic Flaw
2024-01-09 17:15:00
github
github
Null pointer dereference in PKCS12 parsing
2024-01-26 09:30:23
photon
photon
Moderate Photon OS Security Update - PHSA-2024-3.0-0721
2024-02-05 00:00:00
Important Photon OS Security Update - PHSA-2024-4.0-0559
2024-01-31 00:00:00
Important Photon OS Security Update - PHSA-2024-5.0-0198
2024-02-06 00:00:00
ics
ics
Siemens SIMATIC S7-1500
2024-04-11 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - April 2024
2024-04-16 00:00:00
6.5 Medium
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:H
6.5 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
61.0%
Related for OPENVAS:1361412562310833060