Fedora Update for perl-CGI FEDORA-2012-19282

2012-12-14T00:00:00
ID OPENVAS:1361412562310864933
Type openvas
Reporter Copyright (c) 2012 Greenbone Networks GmbH
Modified 2018-04-06T00:00:00

Description

Check for the Version of perl-CGI

                                        
                                            ###############################################################################
# OpenVAS Vulnerability Test
#
# Fedora Update for perl-CGI FEDORA-2012-19282
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "CGI.pm is a stable, complete and mature solution for processing and preparing
  HTTP requests and responses. Major features including processing form
  submissions, file uploads, reading and writing cookies, query string generation
  and manipulation, and processing and preparing HTTP headers. Some HTML
  generation utilities are included as well.

  CGI.pm performs very well in in a vanilla CGI.pm environment and also comes
  with built-in support for mod_perl and mod_perl2 as well as FastCGI.";

tag_affected = "perl-CGI on Fedora 17";
tag_solution = "Please Install the Updated Packages.";



if(description)
{
  script_xref(name : "URL" , value : "http://lists.fedoraproject.org/pipermail/package-announce/2012-December/094613.html");
  script_oid("1.3.6.1.4.1.25623.1.0.864933");
  script_version("$Revision: 9352 $");
  script_tag(name:"last_modification", value:"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $");
  script_tag(name:"creation_date", value:"2012-12-14 09:49:57 +0530 (Fri, 14 Dec 2012)");
  script_cve_id("CVE-2012-5526");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:P/A:N");
  script_xref(name: "FEDORA", value: "2012-19282");
  script_name("Fedora Update for perl-CGI FEDORA-2012-19282");

  script_tag(name: "summary" , value: "Check for the Version of perl-CGI");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2012 Greenbone Networks GmbH");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms");
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");

res = "";
if(release == NULL){
  exit(0);
}

if(release == "FC17")
{

  if ((res = isrpmvuln(pkg:"perl-CGI", rpm:"perl-CGI~3.52~218.fc17", rls:"FC17")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}