ID OPENVAS:1361412562310874201 Type openvas Reporter Copyright (C) 2018 Greenbone Networks GmbH Modified 2019-03-15T00:00:00
Description
The remote host is missing an update for the
###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_fedora_2018_969328b17c_jhead_fc27.nasl 14223 2019-03-15 13:49:35Z cfischer $
#
# Fedora Update for jhead FEDORA-2018-969328b17c
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.874201");
script_version("$Revision: 14223 $");
script_tag(name:"last_modification", value:"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $");
script_tag(name:"creation_date", value:"2018-03-14 08:40:16 +0100 (Wed, 14 Mar 2018)");
script_cve_id("CVE-2018-6612");
script_tag(name:"cvss_base", value:"4.3");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:N/A:P");
script_tag(name:"qod_type", value:"package");
script_name("Fedora Update for jhead FEDORA-2018-969328b17c");
script_tag(name:"summary", value:"The remote host is missing an update for the 'jhead'
package(s) announced via the referenced advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"affected", value:"jhead on Fedora 27");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_xref(name:"FEDORA", value:"2018-969328b17c");
script_xref(name:"URL", value:"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL");
script_tag(name:"solution_type", value:"VendorFix");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2018 Greenbone Networks GmbH");
script_family("Fedora Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC27");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
if(release == "FC27")
{
if ((res = isrpmvuln(pkg:"jhead", rpm:"jhead~3.00~7.fc27", rls:"FC27")) != NULL)
{
security_message(data:res);
exit(0);
}
if (__pkg_match) exit(99);
exit(0);
}
{"id": "OPENVAS:1361412562310874201", "bulletinFamily": "scanner", "title": "Fedora Update for jhead FEDORA-2018-969328b17c", "description": "The remote host is missing an update for the ", "published": "2018-03-14T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874201", "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "references": ["https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL", "2018-969328b17c"], "cvelist": ["CVE-2018-6612"], "type": "openvas", "lastseen": "2019-05-29T18:33:00", "history": [{"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2018-6612"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "Check the version of jhead", "edition": 4, "enchantments": {"dependencies": {"modified": "2018-09-01T23:36:59", "references": [{"idList": ["OPENSUSE-2018-155.NASL"], "type": "nessus"}, {"idList": ["CVE-2018-6612"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310813052"], "type": "openvas"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "hash": "ec845b2f0b743cd94a1a8fc37fc05bc7f60cbc9ed9a119dbef82b2df5cc79752", "hashmap": [{"hash": "16bb5b00dcfb98ec0af768bce575f248", "key": "cvelist"}, {"hash": "f7071deac21cfa61f5198e5efdd8fd7e", "key": "references"}, {"hash": "73596f6647baf86185341befeddf5959", "key": "sourceData"}, {"hash": "3873c836ae45fd496c2b40bae50467ed", "key": "cvss"}, {"hash": "76e8782b29cfd39782ffd31ec97c3583", "key": "modified"}, {"hash": "bd2811809d78a66b4d39bc1fb8b08ee6", "key": "reporter"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "79dbc31be7ac13f54558da80f6885862", "key": "description"}, {"hash": "5ea7c9afd5ad3d69d16cbb1568b96484", "key": "pluginID"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "7e12daa7018fb7e735f386c93968adef", "key": "published"}, {"hash": "e2d36d82e709da4cfe9da7691c68ebe3", "key": "href"}, {"hash": "913585aa4718a93a3a1fd91a281b687e", "key": "title"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874201", "id": "OPENVAS:1361412562310874201", "lastseen": "2018-09-01T23:36:59", "modified": "2018-03-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310874201", "published": "2018-03-14T00:00:00", "references": ["https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL", "2018-969328b17c"], "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_969328b17c_jhead_fc27.nasl 9135 2018-03-19 12:37:31Z asteins $\n#\n# Fedora Update for jhead FEDORA-2018-969328b17c\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874201\");\n script_version(\"$Revision: 9135 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-03-19 13:37:31 +0100 (Mon, 19 Mar 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-03-14 08:40:16 +0100 (Wed, 14 Mar 2018)\");\n script_cve_id(\"CVE-2018-6612\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for jhead FEDORA-2018-969328b17c\");\n script_tag(name: \"summary\", value: \"Check the version of jhead\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help \nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"Jhead displays and manipulates the non-image \nportions of EXIF formatted JPEG images, such as the images produced by most digital \ncameras.\n\");\n script_tag(name: \"affected\", value: \"jhead on Fedora 27\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n\n script_xref(name: \"FEDORA\", value: \"2018-969328b17c\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC27\")\n{\n\n if ((res = isrpmvuln(pkg:\"jhead\", rpm:\"jhead~3.00~7.fc27\", rls:\"FC27\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for jhead FEDORA-2018-969328b17c", "type": "openvas", "viewCount": 1}, "differentElements": ["description", "modified", "sourceData"], "edition": 4, "lastseen": "2018-09-01T23:36:59"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2018-6612"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "Check the version of jhead", "edition": 3, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "517589eb1d8a08f81cf1d7051fecbb18f90b89b1ce96a42a58cd04fed4d6ac28", "hashmap": [{"hash": "16bb5b00dcfb98ec0af768bce575f248", "key": "cvelist"}, {"hash": "f7071deac21cfa61f5198e5efdd8fd7e", "key": "references"}, {"hash": "73596f6647baf86185341befeddf5959", "key": "sourceData"}, {"hash": "76e8782b29cfd39782ffd31ec97c3583", "key": "modified"}, {"hash": "bd2811809d78a66b4d39bc1fb8b08ee6", "key": "reporter"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "79dbc31be7ac13f54558da80f6885862", "key": "description"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "5ea7c9afd5ad3d69d16cbb1568b96484", "key": "pluginID"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "7e12daa7018fb7e735f386c93968adef", "key": "published"}, {"hash": "e2d36d82e709da4cfe9da7691c68ebe3", "key": "href"}, {"hash": "913585aa4718a93a3a1fd91a281b687e", "key": "title"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874201", "id": "OPENVAS:1361412562310874201", "lastseen": "2018-08-30T19:17:06", "modified": "2018-03-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310874201", "published": "2018-03-14T00:00:00", "references": ["https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL", "2018-969328b17c"], "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_969328b17c_jhead_fc27.nasl 9135 2018-03-19 12:37:31Z asteins $\n#\n# Fedora Update for jhead FEDORA-2018-969328b17c\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874201\");\n script_version(\"$Revision: 9135 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-03-19 13:37:31 +0100 (Mon, 19 Mar 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-03-14 08:40:16 +0100 (Wed, 14 Mar 2018)\");\n script_cve_id(\"CVE-2018-6612\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for jhead FEDORA-2018-969328b17c\");\n script_tag(name: \"summary\", value: \"Check the version of jhead\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help \nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"Jhead displays and manipulates the non-image \nportions of EXIF formatted JPEG images, such as the images produced by most digital \ncameras.\n\");\n script_tag(name: \"affected\", value: \"jhead on Fedora 27\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n\n script_xref(name: \"FEDORA\", value: \"2018-969328b17c\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC27\")\n{\n\n if ((res = isrpmvuln(pkg:\"jhead\", rpm:\"jhead~3.00~7.fc27\", rls:\"FC27\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for jhead FEDORA-2018-969328b17c", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-30T19:17:06"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2018-6612"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "Check the version of jhead", "edition": 1, "enchantments": {}, "hash": "6555caf1e84a52f9528a65ef4e33e58ad20d94c057193a0c57a114ddca5e424b", "hashmap": [{"hash": "16bb5b00dcfb98ec0af768bce575f248", "key": "cvelist"}, {"hash": "757d99a3e46581b2a299d538d27ee834", "key": "modified"}, {"hash": "f7071deac21cfa61f5198e5efdd8fd7e", "key": "references"}, {"hash": "3873c836ae45fd496c2b40bae50467ed", "key": "cvss"}, {"hash": "bd2811809d78a66b4d39bc1fb8b08ee6", "key": "reporter"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "79dbc31be7ac13f54558da80f6885862", "key": "description"}, {"hash": "5ea7c9afd5ad3d69d16cbb1568b96484", "key": "pluginID"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "7e12daa7018fb7e735f386c93968adef", "key": "published"}, {"hash": "e2d36d82e709da4cfe9da7691c68ebe3", "key": "href"}, {"hash": "913585aa4718a93a3a1fd91a281b687e", "key": "title"}, {"hash": "33afc299c6ad9d1712af17bb8f5e4495", "key": "sourceData"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874201", "id": "OPENVAS:1361412562310874201", "lastseen": "2018-03-19T16:38:05", "modified": "2018-03-16T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310874201", "published": "2018-03-14T00:00:00", "references": ["https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL", "2018-969328b17c"], "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_969328b17c_jhead_fc27.nasl 9117 2018-03-16 13:48:01Z santu $\n#\n# Fedora Update for jhead FEDORA-2018-969328b17c\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874201\");\n script_version(\"$Revision: 9117 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-03-16 14:48:01 +0100 (Fri, 16 Mar 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-03-14 08:40:16 +0100 (Wed, 14 Mar 2018)\");\n script_cve_id(\"CVE-2018-6612\");\n script_tag(name:\"cvss_base\", value:\"10.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:C/I:C/A:C\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for jhead FEDORA-2018-969328b17c\");\n script_tag(name: \"summary\", value: \"Check the version of jhead\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help \nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"Jhead displays and manipulates the non-image \nportions of EXIF formatted JPEG images, such as the images produced by most digital \ncameras.\n\");\n script_tag(name: \"affected\", value: \"jhead on Fedora 27\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n\n script_xref(name: \"FEDORA\", value: \"2018-969328b17c\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC27\")\n{\n\n if ((res = isrpmvuln(pkg:\"jhead\", rpm:\"jhead~3.00~7.fc27\", rls:\"FC27\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for jhead FEDORA-2018-969328b17c", "type": "openvas", "viewCount": 0}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2018-03-19T16:38:05"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2018-6612"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "The remote host is missing an update for the ", "edition": 5, "enchantments": {"dependencies": {"modified": "2019-03-18T14:23:24", "references": [{"idList": ["OPENSUSE-2018-155.NASL"], "type": "nessus"}, {"idList": ["CVE-2018-6612"], "type": "cve"}, {"idList": ["OPENVAS:1361412562310813052"], "type": "openvas"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "hash": "2b850a06a0de1c40801f02379a3ca5068787a83b4df955b86219ccbd1b0f0d51", "hashmap": [{"hash": "16bb5b00dcfb98ec0af768bce575f248", "key": "cvelist"}, {"hash": "1693b96dcccf4fbcd463bf8baaa2bf3f", "key": "description"}, {"hash": "f7071deac21cfa61f5198e5efdd8fd7e", "key": "references"}, {"hash": "3873c836ae45fd496c2b40bae50467ed", "key": "cvss"}, {"hash": "a453aab8914d060cf89b4bcdec025e84", "key": "sourceData"}, {"hash": "bd2811809d78a66b4d39bc1fb8b08ee6", "key": "reporter"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "5ea7c9afd5ad3d69d16cbb1568b96484", "key": "pluginID"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "4525bc09d1c4c408a417a5eb7b850972", "key": "modified"}, {"hash": "7e12daa7018fb7e735f386c93968adef", "key": "published"}, {"hash": "e2d36d82e709da4cfe9da7691c68ebe3", "key": "href"}, {"hash": "913585aa4718a93a3a1fd91a281b687e", "key": "title"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874201", "id": "OPENVAS:1361412562310874201", "lastseen": "2019-03-18T14:23:24", "modified": "2019-03-15T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310874201", "published": "2018-03-14T00:00:00", "references": ["https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL", "2018-969328b17c"], "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_969328b17c_jhead_fc27.nasl 14223 2019-03-15 13:49:35Z cfischer $\n#\n# Fedora Update for jhead FEDORA-2018-969328b17c\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874201\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2018-03-14 08:40:16 +0100 (Wed, 14 Mar 2018)\");\n script_cve_id(\"CVE-2018-6612\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for jhead FEDORA-2018-969328b17c\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'jhead'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"jhead on Fedora 27\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_xref(name:\"FEDORA\", value:\"2018-969328b17c\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC27\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC27\")\n{\n\n if ((res = isrpmvuln(pkg:\"jhead\", rpm:\"jhead~3.00~7.fc27\", rls:\"FC27\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "title": "Fedora Update for jhead FEDORA-2018-969328b17c", "type": "openvas", "viewCount": 1}, "differentElements": ["cvss"], "edition": 5, "lastseen": "2019-03-18T14:23:24"}, {"bulletin": {"bulletinFamily": "scanner", "cvelist": ["CVE-2018-6612"], "cvss": {"score": 4.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "Check the version of jhead", "edition": 2, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "hash": "ec845b2f0b743cd94a1a8fc37fc05bc7f60cbc9ed9a119dbef82b2df5cc79752", "hashmap": [{"hash": "16bb5b00dcfb98ec0af768bce575f248", "key": "cvelist"}, {"hash": "f7071deac21cfa61f5198e5efdd8fd7e", "key": "references"}, {"hash": "73596f6647baf86185341befeddf5959", "key": "sourceData"}, {"hash": "3873c836ae45fd496c2b40bae50467ed", "key": "cvss"}, {"hash": "76e8782b29cfd39782ffd31ec97c3583", "key": "modified"}, {"hash": "bd2811809d78a66b4d39bc1fb8b08ee6", "key": "reporter"}, {"hash": "47c1f692ea47a21f716dad07043ade01", "key": "type"}, {"hash": "79dbc31be7ac13f54558da80f6885862", "key": "description"}, {"hash": "5ea7c9afd5ad3d69d16cbb1568b96484", "key": "pluginID"}, {"hash": "bbdaea376f500d25f6b0c1050311dd07", "key": "bulletinFamily"}, {"hash": "be931514784f88df80712740ad2723e7", "key": "naslFamily"}, {"hash": "7e12daa7018fb7e735f386c93968adef", "key": "published"}, {"hash": "e2d36d82e709da4cfe9da7691c68ebe3", "key": "href"}, {"hash": "913585aa4718a93a3a1fd91a281b687e", "key": "title"}], "history": [], "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310874201", "id": "OPENVAS:1361412562310874201", "lastseen": "2018-03-20T16:37:59", "modified": "2018-03-19T00:00:00", "naslFamily": "Fedora Local Security Checks", "objectVersion": "1.3", "pluginID": "1361412562310874201", "published": "2018-03-14T00:00:00", "references": ["https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL", "2018-969328b17c"], "reporter": "Copyright (C) 2018 Greenbone Networks GmbH", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_969328b17c_jhead_fc27.nasl 9135 2018-03-19 12:37:31Z asteins $\n#\n# Fedora Update for jhead FEDORA-2018-969328b17c\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874201\");\n script_version(\"$Revision: 9135 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-03-19 13:37:31 +0100 (Mon, 19 Mar 2018) $\");\n script_tag(name:\"creation_date\", value:\"2018-03-14 08:40:16 +0100 (Wed, 14 Mar 2018)\");\n script_cve_id(\"CVE-2018-6612\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for jhead FEDORA-2018-969328b17c\");\n script_tag(name: \"summary\", value: \"Check the version of jhead\");\n script_tag(name: \"vuldetect\", value: \"Get the installed version with the help \nof detect NVT and check if the version is vulnerable or not.\");\n script_tag(name: \"insight\", value: \"Jhead displays and manipulates the non-image \nportions of EXIF formatted JPEG images, such as the images produced by most digital \ncameras.\n\");\n script_tag(name: \"affected\", value: \"jhead on Fedora 27\");\n script_tag(name: \"solution\", value: \"Please Install the Updated Packages.\");\n\n script_xref(name: \"FEDORA\", value: \"2018-969328b17c\");\n script_xref(name: \"URL\" , value: \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC27\")\n{\n\n if ((res = isrpmvuln(pkg:\"jhead\", rpm:\"jhead~3.00~7.fc27\", rls:\"FC27\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "title": "Fedora Update for jhead FEDORA-2018-969328b17c", "type": "openvas", "viewCount": 0}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-03-20T16:37:59"}], "edition": 6, "hashmap": [{"key": "bulletinFamily", "hash": "bbdaea376f500d25f6b0c1050311dd07"}, {"key": "cvelist", "hash": "16bb5b00dcfb98ec0af768bce575f248"}, {"key": "cvss", "hash": "741b18e744e3f37108cd8c3f4a1c6ef7"}, {"key": "description", "hash": "1693b96dcccf4fbcd463bf8baaa2bf3f"}, {"key": "href", "hash": "e2d36d82e709da4cfe9da7691c68ebe3"}, {"key": "modified", "hash": "4525bc09d1c4c408a417a5eb7b850972"}, {"key": "naslFamily", "hash": "be931514784f88df80712740ad2723e7"}, {"key": "pluginID", "hash": "5ea7c9afd5ad3d69d16cbb1568b96484"}, {"key": "published", "hash": "7e12daa7018fb7e735f386c93968adef"}, {"key": "references", "hash": "f7071deac21cfa61f5198e5efdd8fd7e"}, {"key": "reporter", "hash": "bd2811809d78a66b4d39bc1fb8b08ee6"}, {"key": "sourceData", "hash": "a453aab8914d060cf89b4bcdec025e84"}, {"key": "title", "hash": "913585aa4718a93a3a1fd91a281b687e"}, {"key": "type", "hash": "47c1f692ea47a21f716dad07043ade01"}], "hash": "821c06e878f24c50306e37ac126f64cb6d46007c6a1d2de765946e26e38491f9", "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2018-6612"]}, {"type": "nessus", "idList": ["OPENSUSE-2018-155.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310813052"]}], "modified": "2019-05-29T18:33:00"}, "score": {"value": 6.5, "vector": "NONE", "modified": "2019-05-29T18:33:00"}, "vulnersScore": 6.5}, "objectVersion": "1.3", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_969328b17c_jhead_fc27.nasl 14223 2019-03-15 13:49:35Z cfischer $\n#\n# Fedora Update for jhead FEDORA-2018-969328b17c\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.874201\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2018-03-14 08:40:16 +0100 (Wed, 14 Mar 2018)\");\n script_cve_id(\"CVE-2018-6612\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for jhead FEDORA-2018-969328b17c\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'jhead'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"jhead on Fedora 27\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_xref(name:\"FEDORA\", value:\"2018-969328b17c\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ZU6UOHXJTBODDBR2KO2K6BGQU5ZTULCL\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC27\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC27\")\n{\n\n if ((res = isrpmvuln(pkg:\"jhead\", rpm:\"jhead~3.00~7.fc27\", rls:\"FC27\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "pluginID": "1361412562310874201", "scheme": null}
{"cve": [{"lastseen": "2020-03-12T12:52:51", "bulletinFamily": "NVD", "description": "An integer underflow bug in the process_EXIF function of the exif.c file of jhead 3.00 raises a heap-based buffer over-read when processing a malicious JPEG file, which may allow a remote attacker to cause a denial-of-service attack or unspecified other impact.", "modified": "2020-03-11T14:26:00", "id": "CVE-2018-6612", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2018-6612", "published": "2018-02-04T15:29:00", "title": "CVE-2018-6612", "type": "cve", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P"}}], "nessus": [{"lastseen": "2020-04-01T01:28:09", "bulletinFamily": "scanner", "description": "This update for jhead fixes the following issues :\n\n - CVE-2018-6612: Fixed a heap-based buffer over-read\n (boo#1079349 CVE-2018-6612)", "modified": "2020-04-02T00:00:00", "id": "OPENSUSE-2018-155.NASL", "href": "https://www.tenable.com/plugins/nessus/106742", "published": "2018-02-12T00:00:00", "title": "openSUSE Security Update : jhead (openSUSE-2018-155)", "type": "nessus", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update openSUSE-2018-155.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(106742);\n script_version(\"$Revision: 3.3 $\");\n script_cvs_date(\"$Date: 2018/02/26 14:45:58 $\");\n\n script_cve_id(\"CVE-2018-6612\");\n\n script_name(english:\"openSUSE Security Update : jhead (openSUSE-2018-155)\");\n script_summary(english:\"Check for the openSUSE-2018-155 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"This update for jhead fixes the following issues :\n\n - CVE-2018-6612: Fixed a heap-based buffer over-read\n (boo#1079349 CVE-2018-6612)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://bugzilla.opensuse.org/show_bug.cgi?id=1079349\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected jhead packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:jhead\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:jhead-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:jhead-debugsource\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:42.3\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2018/02/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2018/02/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE42\\.3)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"42.3\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE42.3\", reference:\"jhead-3.00-8.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"jhead-debuginfo-3.00-8.1\") ) flag++;\nif ( rpm_check(release:\"SUSE42.3\", reference:\"jhead-debugsource-3.00-8.1\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"jhead / jhead-debuginfo / jhead-debugsource\");\n}\n", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P"}}], "openvas": [{"lastseen": "2019-05-29T18:33:05", "bulletinFamily": "scanner", "description": "The remote host is missing an update for the ", "modified": "2019-03-15T00:00:00", "published": "2018-03-21T00:00:00", "id": "OPENVAS:1361412562310813052", "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310813052", "title": "Fedora Update for jhead FEDORA-2018-fff755ee8e", "type": "openvas", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_fedora_2018_fff755ee8e_jhead_fc26.nasl 14223 2019-03-15 13:49:35Z cfischer $\n#\n# Fedora Update for jhead FEDORA-2018-fff755ee8e\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (C) 2018 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.813052\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2018-03-21 11:35:32 +0100 (Wed, 21 Mar 2018)\");\n script_cve_id(\"CVE-2018-6612\");\n script_tag(name:\"cvss_base\", value:\"4.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_name(\"Fedora Update for jhead FEDORA-2018-fff755ee8e\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'jhead'\n package(s) announced via the referenced advisory.\");\n script_tag(name:\"vuldetect\", value:\"Checks if a vulnerable version is present on the target host.\");\n script_tag(name:\"affected\", value:\"jhead on Fedora 26\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n\n script_xref(name:\"FEDORA\", value:\"2018-fff755ee8e\");\n script_xref(name:\"URL\", value:\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/SDQ2BMV6MY6LW3JYVFEEVNW5GHKKDM3E\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2018 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC26\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC26\")\n{\n\n if ((res = isrpmvuln(pkg:\"jhead\", rpm:\"jhead~3.00~7.fc26\", rls:\"FC26\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "cvss": {"score": 4.3, "vector": "AV:N/AC:M/Au:N/C:N/I:N/A:P"}}]}
