Debian LTS: Security Advisory for mono (DLA-1564-1)

2018-11-05T00:00:00
ID OPENVAS:1361412562310891564
Type openvas
Reporter Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net
Modified 2020-01-29T00:00:00

Description

It was found that Mono

                                        
                                            # Copyright (C) 2018 Greenbone Networks GmbH
# Text descriptions are largely excerpted from the referenced
# advisory, and are Copyright (C) of the respective author(s)
#
# SPDX-License-Identifier: GPL-2.0-or-later
#
# This program is free software; you can redistribute it and/or
# modify it under the terms of the GNU General Public License
# as published by the Free Software Foundation; either version 2
# of the License, or (at your option) any later version.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.891564");
  script_version("2020-01-29T08:22:52+0000");
  script_cve_id("CVE-2009-0689", "CVE-2018-1002208");
  script_name("Debian LTS: Security Advisory for mono (DLA-1564-1)");
  script_tag(name:"last_modification", value:"2020-01-29 08:22:52 +0000 (Wed, 29 Jan 2020)");
  script_tag(name:"creation_date", value:"2018-11-05 00:00:00 +0100 (Mon, 05 Nov 2018)");
  script_tag(name:"cvss_base", value:"6.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  script_xref(name:"URL", value:"https://lists.debian.org/debian-lts-announce/2018/11/msg00001.html");

  script_category(ACT_GATHER_INFO);

  script_copyright("Copyright (C) 2018 Greenbone Networks GmbH http://greenbone.net");
  script_family("Debian Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages", re:"ssh/login/release=DEB8");

  script_tag(name:"affected", value:"mono on Debian Linux");

  script_tag(name:"solution", value:"For Debian 8 'Jessie', this problem has been fixed in version
3.2.8+dfsg-10+deb8u1.

We recommend that you upgrade your mono packages.");

  script_tag(name:"summary", value:"It was found that Mono's string-to-double parser may crash, on
specially crafted input. This could lead to arbitrary code execution.

CVE-2018-1002208: Mono embeds the sharplibzip library which is
vulnerable to directory traversal, allowing attackers to write to
arbitrary files via a ../ (dot dot slash) in a Zip archive entry that
is mishandled during extraction. This vulnerability is also known as
'Zip-Slip'.

The Mono developers intend to entirely remove sharplibzip from the
sources and do not plan to fix this issue. It is therefore recommended
to fetch the latest sharplibzip version by using the nuget package
manager instead. The embedded version should not be used with
untrusted zip files.");

  script_tag(name:"vuldetect", value:"This check tests the installed software version using the apt package manager.");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-deb.inc");

res = "";
report = "";
if(!isnull(res = isdpkgvuln(pkg:"libmono-2.0-1", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-2.0-dev", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-accessibility2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-accessibility4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-c5-1.1-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-cairo2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-cairo4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-cecil-private-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-cil-dev", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-codecontracts4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-compilerservices-symbolwriter4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-corlib2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-corlib4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-corlib4.5-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-cscompmgd8.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-csharp4.0c-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-custommarshalers4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-data-tds2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-data-tds4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-db2-1.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-debugger-soft2.0a-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-debugger-soft4.0a-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-entityframework-sqlserver6.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-entityframework6.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-http4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-i18n-cjk4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-i18n-mideast4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-i18n-other4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-i18n-rare4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-i18n-west2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-i18n-west4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-i18n2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-i18n4.0-all", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-i18n4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-ldap2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-ldap4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-management2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-management4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-messaging-rabbitmq2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-messaging-rabbitmq4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-messaging2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-messaging4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft-build-engine4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft-build-framework4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft-build-tasks-v4.0-4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft-build-utilities-v4.0-4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft-build2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft-build4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft-csharp4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft-visualc10.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft-web-infrastructure1.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-microsoft8.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-npgsql2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-npgsql4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-opensystem-c4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-oracle2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-oracle4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-parallel4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-peapi2.0a-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-peapi4.0a-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-posix2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-posix4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-profiler", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-rabbitmq2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-rabbitmq4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-relaxng2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-relaxng4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-security2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-security4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-sharpzip2.6-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-sharpzip2.84-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-sharpzip4.84-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-simd2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-simd4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-sqlite2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-sqlite4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-componentmodel-composition4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-componentmodel-dataannotations4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-configuration-install4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-configuration4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-core4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-data-datasetextensions4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-data-linq2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-data-linq4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-data-services-client4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-data-services2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-data-services4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-data2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-data4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-design4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-drawing-design4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-drawing4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-dynamic4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-enterpriseservices4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-identitymodel-selectors4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-identitymodel4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-io-compression-filesystem4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-io-compression4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-json-microsoft4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-json2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-json4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-ldap-protocols4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-ldap2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-ldap4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-management4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-messaging2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-messaging4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-net-http-formatting4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-net-http-webrequest4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-net-http4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-net2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-net4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-numerics4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-core2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-debugger2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-experimental2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-interfaces2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-linq2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-observable-aliases0.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-platformservices2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-providers2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-runtime-remoting2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-windows-forms2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-reactive-windows-threading2.2-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-runtime-caching4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-runtime-durableinstancing4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-runtime-serialization-formatters-soap4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-runtime-serialization4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-runtime2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-runtime4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-security4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-servicemodel-activation4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-servicemodel-discovery4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-servicemodel-routing4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-servicemodel-web4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-servicemodel4.0a-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-serviceprocess4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-threading-tasks-dataflow4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-transactions4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-abstractions4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-applicationservices4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-dynamicdata4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-extensions-design4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-extensions4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-http-selfhost4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-http-webhost4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-http4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-mvc1.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-mvc2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-mvc3.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-razor2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-routing4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-services4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-webpages-deployment2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-webpages-razor2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web-webpages2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-web4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-windows-forms-datavisualization4.0a-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-windows-forms4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-windows4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-xaml4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-xml-linq4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-xml-serialization4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system-xml4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-system4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-tasklets2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-tasklets4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-wcf3.0a-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-web4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-webbrowser2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-webbrowser4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-webmatrix-data4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-windowsbase3.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-windowsbase4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-winforms2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-xbuild-tasks2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono-xbuild-tasks4.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmono2.0-cil", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmonoboehm-2.0-1", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmonoboehm-2.0-1-dbg", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmonoboehm-2.0-dev", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmonosgen-2.0-1", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmonosgen-2.0-1-dbg", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"libmonosgen-2.0-dev", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-2.0-gac", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-2.0-service", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-4.0-gac", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-4.0-service", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-complete", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-csharp-shell", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-dbg", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-devel", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-dmcs", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-gac", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-gmcs", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-jay", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-mcs", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-runtime", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-runtime-boehm", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-runtime-common", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-runtime-dbg", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-runtime-sgen", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-utils", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"mono-xbuild", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"monodoc-base", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}
if(!isnull(res = isdpkgvuln(pkg:"monodoc-manual", ver:"3.2.8+dfsg-10+deb8u1", rls:"DEB8"))) {
  report += res;
}

if(report != "") {
  security_message(data:report);
} else if(__pkg_match) {
  exit(99);
}