Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2016 Greenbone AGOPENVAS:1361412562310871631
HistoryJun 22, 2016 - 12:00 a.m.

RedHat Update for setroubleshoot and setroubleshoot-plugins RHSA-2016:1267-01

2016-06-2200:00:00
Copyright (C) 2016 Greenbone AG
plugins.openvas.org
11

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2016 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.871631");
  script_version("2024-03-21T05:06:54+0000");
  script_tag(name:"last_modification", value:"2024-03-21 05:06:54 +0000 (Thu, 21 Mar 2024)");
  script_tag(name:"creation_date", value:"2016-06-22 05:28:29 +0200 (Wed, 22 Jun 2016)");
  script_cve_id("CVE-2016-4444", "CVE-2016-4445", "CVE-2016-4446", "CVE-2016-4989");
  script_tag(name:"cvss_base", value:"6.9");
  script_tag(name:"cvss_base_vector", value:"AV:L/AC:M/Au:N/C:C/I:C/A:C");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2017-04-17 12:47:00 +0000 (Mon, 17 Apr 2017)");
  script_tag(name:"qod_type", value:"package");
  script_name("RedHat Update for setroubleshoot and setroubleshoot-plugins RHSA-2016:1267-01");
  script_tag(name:"summary", value:"The remote host is missing an update for the 'setroubleshoot and setroubleshoot-plugins'
  package(s) announced via the referenced advisory.");
  script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
  script_tag(name:"insight", value:"The setroubleshoot packages provide tools to
help diagnose SELinux problems. When Access Vector Cache (AVC) messages are
returned, an alert can be generated that provides information about the problem and
helps to track its resolution.

The setroubleshoot-plugins package provides a set of analysis plugins for
use with setroubleshoot. Each plugin has the capacity to analyze SELinux
AVC data and system data to provide user friendly reports describing how to
interpret SELinux AVC denials.

Security Fix(es):

  * Shell command injection flaws were found in the way the setroubleshoot
executed external commands. A local attacker able to trigger certain
SELinux denials could use these flaws to execute arbitrary code with root
privileges. (CVE-2016-4445, CVE-2016-4989)

  * Shell command injection flaws were found in the way the setroubleshoot
allow_execmod and allow_execstack plugins executed external commands. A
local attacker able to trigger an execmod or execstack SELinux denial could
use these flaws to execute arbitrary code with root privileges.
(CVE-2016-4444, CVE-2016-4446)

The CVE-2016-4444 and CVE-2016-4446 issues were discovered by Milos Malik
(Red Hat) and the CVE-2016-4445 and CVE-2016-4989 issues were discovered by
Red Hat Product Security.");
  script_tag(name:"affected", value:"setroubleshoot and setroubleshoot-plugins
on Red Hat Enterprise Linux Desktop (v. 6),
  Red Hat Enterprise Linux Server (v. 6),
  Red Hat Enterprise Linux Workstation (v. 6)");
  script_tag(name:"solution", value:"Please Install the Updated Packages.");

  script_xref(name:"RHSA", value:"2016:1267-01");
  script_xref(name:"URL", value:"https://www.redhat.com/archives/rhsa-announce/2016-June/msg00016.html");
  script_tag(name:"solution_type", value:"VendorFix");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2016 Greenbone AG");
  script_family("Red Hat Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/rhel", "ssh/login/rpms", re:"ssh/login/release=RHENT_6");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release) exit(0);

res = "";

if(release == "RHENT_6")
{

  if ((res = isrpmvuln(pkg:"setroubleshoot", rpm:"setroubleshoot~3.0.47~12.el6_8", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"setroubleshoot-debuginfo", rpm:"setroubleshoot-debuginfo~3.0.47~12.el6_8", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"setroubleshoot-server", rpm:"setroubleshoot-server~3.0.47~12.el6_8", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"setroubleshoot-plugins", rpm:"setroubleshoot-plugins~3.0.40~3.1.el6_8", rls:"RHENT_6")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Related

oraclelinux 2
f5 2
nessus 14
openvas 11
redhat 2
centos 2
cve 4
prion 4
cvelist 4
osv 4
fedora 5
redhatcve 4
veracode 4
oraclelinux
oraclelinux
setroubleshoot and setroubleshoot-plugins security update
2016-06-21 00:00:00
setroubleshoot and setroubleshoot-plugins security update
2016-06-23 00:00:00
f5
f5
SOL94110161 - Red Hat shell command injection flaw vulnerabilities CVE-2016-4444, CVE-2016-4445, CVE-2016-4446, and CVE-2016-4989
2016-07-13 00:00:00
K94110161 : Red Hat shell command injection flaw vulnerabilities CVE-2016-4444, CVE-2016-4445, CVE-2016-4446, and CVE-2016-4989
2016-07-13 00:00:00
nessus
nessus
Oracle Linux 6 : setroubleshoot / setroubleshoot-plugins (ELSA-2016-1267)
2016-06-22 00:00:00
CentOS 6 : setroubleshoot / setroubleshoot-plugins (CESA-2016:1267)
2016-06-22 00:00:00
Scientific Linux Security Update : setroubleshoot and setroubleshoot-plugins on SL6.x i386/x86_64 (20160621)
2016-06-24 00:00:00
openvas
openvas
CentOS Update for setroubleshoot-plugins CESA-2016:1267 centos6
2016-06-22 00:00:00
CentOS Update for setroubleshoot CESA-2016:1267 centos6
2016-06-22 00:00:00
RedHat Update for setroubleshoot and setroubleshoot-plugins RHSA-2016:1293-01
2016-06-24 00:00:00
redhat
redhat
(RHSA-2016:1267) Important: setroubleshoot and setroubleshoot-plugins security update
2016-06-21 18:14:05
(RHSA-2016:1293) Important: setroubleshoot and setroubleshoot-plugins security update
2016-06-23 08:21:29
centos
centos
setroubleshoot security update
2016-06-21 19:07:23
setroubleshoot security update
2016-06-23 23:41:47
cve
cve
CVE-2016-4989
2017-04-11 18:59:00
CVE-2016-4446
2017-04-11 18:59:00
CVE-2016-4444
2017-04-11 18:59:00
prion
prion
Design/Logic Flaw
2017-04-11 18:59:00
Design/Logic Flaw
2017-04-11 18:59:00
Design/Logic Flaw
2017-04-11 18:59:00
cvelist
cvelist
CVE-2016-4989
2017-04-11 18:00:00
CVE-2016-4446
2017-04-11 18:00:00
CVE-2016-4445
2017-04-11 18:00:00
osv
osv
CVE-2016-4989
2017-04-11 18:59:00
CVE-2016-4446
2017-04-11 18:59:00
CVE-2016-4445
2017-04-11 18:59:00
fedora
fedora
[SECURITY] Fedora 24 Update: setroubleshoot-plugins-3.3.5.1-1.fc24
2016-06-23 17:55:41
[SECURITY] Fedora 23 Update: setroubleshoot-plugins-3.3.5.1-1.fc23
2016-07-02 19:35:19
[SECURITY] Fedora 23 Update: setroubleshoot-3.3.9.1-1.fc23
2016-06-29 17:24:32
redhatcve
redhatcve
CVE-2016-4989
2016-06-21 11:48:28
CVE-2016-4446
2016-06-21 11:48:35
CVE-2016-4445
2016-06-21 11:48:46
veracode
veracode
Arbitrary Command Execution
2019-05-02 05:34:44
Arbitrary Command Execution
2019-05-02 05:34:44
Arbitrary Command Execution
2019-05-02 05:34:44

6.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.2%

JSON
Related for OPENVAS:1361412562310871631
oraclelinux2f52nessus14openvas11redhat2centos2cve4prion4cvelist4osv4fedora5redhatcve4veracode4