Lucene search
Copyright (C) 2024 Greenbone AGOPENVAS:1361412562310856176HistoryJun 05, 2024 - 12:00 a.m.
openSUSE: Security Advisory for openssl (SUSE-SU-2024:1789-1)
2024-06-0500:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
7
opensuse
openssl
security advisory
cve-2024-4603
package update
dsa parameter checks
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
10.3%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.856176");
script_version("2024-06-07T15:38:39+0000");
script_cve_id("CVE-2024-4603");
script_tag(name:"cvss_base", value:"5.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:N/A:N");
script_tag(name:"last_modification", value:"2024-06-07 15:38:39 +0000 (Fri, 07 Jun 2024)");
script_tag(name:"creation_date", value:"2024-06-05 01:00:43 +0000 (Wed, 05 Jun 2024)");
script_name("openSUSE: Security Advisory for openssl (SUSE-SU-2024:1789-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2024 Greenbone AG");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse", "ssh/login/rpms", re:"ssh/login/release=openSUSELeap15\.5");
script_xref(name:"Advisory-ID", value:"SUSE-SU-2024:1789-1");
script_xref(name:"URL", value:"https://lists.opensuse.org/archives/list/[email protected]/thread/QTFB4N7EAJDPVH6NTVMHQJJWMDV2YUXM");
script_tag(name:"summary", value:"The remote host is missing an update for the 'openssl'
package(s) announced via the SUSE-SU-2024:1789-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"This update for openssl-3 fixes the following issues:
* CVE-2024-4603: Fixed DSA parameter checks for excessive sizes before
validating (bsc#1224388).
##");
script_tag(name:"affected", value:"'openssl' package(s) on openSUSE Leap 15.5.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "openSUSELeap15.5") {
if(!isnull(res = isrpmvuln(pkg:"libopenssl3", rpm:"libopenssl3~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debugsource", rpm:"openssl-3-debugsource~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel", rpm:"libopenssl-3-devel~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3", rpm:"openssl-3~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-debuginfo", rpm:"libopenssl3-debuginfo~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debuginfo", rpm:"openssl-3-debuginfo~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel-32bit", rpm:"libopenssl-3-devel-32bit~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-32bit", rpm:"libopenssl3-32bit~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-32bit-debuginfo", rpm:"libopenssl3-32bit-debuginfo~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-doc", rpm:"openssl-3-doc~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel-64bit", rpm:"libopenssl-3-devel-64bit~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-64bit", rpm:"libopenssl3-64bit~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-64bit-debuginfo", rpm:"libopenssl3-64bit-debuginfo~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3", rpm:"libopenssl3~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debugsource", rpm:"openssl-3-debugsource~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel", rpm:"libopenssl-3-devel~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3", rpm:"openssl-3~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-debuginfo", rpm:"libopenssl3-debuginfo~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-debuginfo", rpm:"openssl-3-debuginfo~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel-32bit", rpm:"libopenssl-3-devel-32bit~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-32bit", rpm:"libopenssl3-32bit~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-32bit-debuginfo", rpm:"libopenssl3-32bit-debuginfo~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"openssl-3-doc", rpm:"openssl-3-doc~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl-3-devel-64bit", rpm:"libopenssl-3-devel-64bit~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-64bit", rpm:"libopenssl3-64bit~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"libopenssl3-64bit-debuginfo", rpm:"libopenssl3-64bit-debuginfo~3.0.8~150500.5.33.1", rls:"openSUSELeap15.5"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);Related
cbl_mariner
cbl_mariner
osv
osv
CVE-2024-4603
2024-05-16 16:15:10
CGA-9c28-ww88-6g95
2024-06-06 12:25:25
libopenssl-3-devel-3.1.4-8.1 on GA media
2024-06-15 00:00:00
alpinelinux
alpinelinux
CVE-2024-4603
2024-05-16 16:15:10
ubuntucve
ubuntucve
CVE-2024-4603
2024-05-16 00:00:00
nvd
nvd
CVE-2024-4603
2024-05-16 16:15:10
nessus
nessus
cve
cve
CVE-2024-4603
2024-05-16 16:15:10
openvas
openvas
OpenSSL DoS Vulnerability (20240516) - Windows
2024-05-17 00:00:00
OpenSSL DoS Vulnerability (20240516) - Linux
2024-05-17 00:00:00
SUSE: Security Advisory (SUSE-SU-2024:1947-1)
2024-06-10 00:00:00
openssl
openssl
Vulnerability in OpenSSL CVE-2024-4603
2024-05-16 00:00:00
freebsd
freebsd
OpenSSL -- Denial of Service vulnerability
2024-05-16 00:00:00
redos
redos
ROS-20240606-10
2024-06-06 00:00:00
vulnrichment
vulnrichment
CVE-2024-4603 Excessive time spent checking DSA keys and parameters
2024-05-16 15:21:20
cvelist
cvelist
CVE-2024-4603 Excessive time spent checking DSA keys and parameters
2024-05-16 15:21:20
debiancve
debiancve
CVE-2024-4603
2024-05-16 16:15:10
redhatcve
redhatcve
CVE-2024-4603
2024-05-17 20:36:02
wolfi
wolfi
CVE-2024-4603 vulnerabilities
2024-09-23 21:11:55
ibm
ibm
Security Bulletin: IBM MaaS360 Cloud Extender VPN Module affected by vulnerabilities (CVE-2024-4603, CVE-2024--2511)
2024-08-05 20:56:28
mageia
mageia
Updated openssl packages fix security vulnerabilities
2024-05-31 18:15:28
Updated quictls packages fix security vulnerabilities
2024-08-19 22:12:14
aix
aix
ubuntu
ubuntu
OpenSSL vulnerabilities
2024-07-31 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - July 2024
2024-07-16 00:00:00
CVSS3
5.3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
AI Score
6.6
Confidence
Low
EPSS
0
Percentile
10.3%
Related for OPENVAS:1361412562310856176