Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2024 Greenbone AGOPENVAS:13614125623111220243795
HistoryApr 29, 2024 - 12:00 a.m.

Debian: Security Advisory (DLA-3795-1)

2024-04-2900:00:00
Copyright (C) 2024 Greenbone AG
plugins.openvas.org
2
debian
knot-resolver
security advisory
dla-3795-1
update
package
vulnerability
debian 10

7.2 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.9%

JSON

The remote host is missing an update for the Debian

# SPDX-FileCopyrightText: 2024 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.1.1.2.2024.3795");
  script_cve_id("CVE-2019-10190", "CVE-2019-10191", "CVE-2019-19331", "CVE-2020-12667");
  script_tag(name:"creation_date", value:"2024-04-29 04:20:47 +0000 (Mon, 29 Apr 2024)");
  script_version("2024-04-29T05:43:22+0000");
  script_tag(name:"last_modification", value:"2024-04-29 05:43:22 +0000 (Mon, 29 Apr 2024)");
  script_tag(name:"cvss_base", value:"5.0");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2020-05-21 14:41:07 +0000 (Thu, 21 May 2020)");

  script_name("Debian: Security Advisory (DLA-3795-1)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2024 Greenbone AG");
  script_family("Debian Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/debian_linux", "ssh/login/packages", re:"ssh/login/release=DEB10");

  script_xref(name:"Advisory-ID", value:"DLA-3795-1");
  script_xref(name:"URL", value:"https://www.debian.org/lts/security/2024/DLA-3795-1");

  script_tag(name:"summary", value:"The remote host is missing an update for the Debian 'knot-resolver' package(s) announced via the DLA-3795-1 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"affected", value:"'knot-resolver' package(s) on Debian 10.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-deb.inc");

release = dpkg_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "DEB10") {

  if(!isnull(res = isdpkgvuln(pkg:"knot-resolver", ver:"3.2.1-3+deb10u2", rls:"DEB10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"knot-resolver-doc", ver:"3.2.1-3+deb10u2", rls:"DEB10"))) {
    report += res;
  }

  if(!isnull(res = isdpkgvuln(pkg:"knot-resolver-module-http", ver:"3.2.1-3+deb10u2", rls:"DEB10"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Related

debian 1
nessus 7
osv 5
debiancve 4
ubuntucve 4
fedora 6
openvas 9
alpinelinux 4
prion 4
redhatcve 2
cve 4
cvelist 4
symantec 1
veracode 1
thn 1
debian
debian
[SECURITY] [DLA 3795-1] knot-resolver security update
2024-04-26 05:50:56
nessus
nessus
Debian dla-3795 : knot-resolver - security update
2024-04-26 00:00:00
Fedora 30 : knot-resolver (2019-fdb50c675d)
2019-07-19 00:00:00
Fedora 29 : knot-resolver (2019-20f95b0b39)
2019-07-19 00:00:00
osv
osv
knot-resolver - security update
2024-04-26 00:00:00
CVE-2019-10190
2019-07-16 18:15:12
CVE-2019-19331
2019-12-16 16:15:11
debiancve
debiancve
CVE-2019-10190
2019-07-16 18:15:00
CVE-2019-19331
2019-12-16 16:15:00
CVE-2019-10191
2019-07-16 18:15:00
ubuntucve
ubuntucve
CVE-2019-10190
2019-07-10 00:00:00
CVE-2019-19331
2019-12-16 00:00:00
CVE-2020-12667
2020-05-19 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: knot-resolver-4.1.0-1.fc29
2019-07-19 03:07:18
[SECURITY] Fedora 30 Update: knot-resolver-4.1.0-1.fc30
2019-07-19 01:11:17
[SECURITY] Fedora 30 Update: knot-resolver-4.3.0-1.fc30
2019-12-13 01:04:59
openvas
openvas
Fedora Update for knot-resolver FEDORA-2019-20f95b0b39
2019-07-20 00:00:00
Knot Resolver < 4.1.0 Multiple Vulnerabilities
2019-07-22 00:00:00
Fedora Update for knot-resolver FEDORA-2019-fdb50c675d
2019-07-20 00:00:00
alpinelinux
alpinelinux
CVE-2019-10190
2019-07-16 18:15:00
CVE-2019-19331
2019-12-16 16:15:00
CVE-2020-12667
2020-05-19 13:15:00
prion
prion
Input validation
2019-07-16 18:15:00
Design/Logic Flaw
2019-12-16 16:15:00
Code injection
2020-05-19 13:15:00
redhatcve
redhatcve
CVE-2019-10190
2022-05-21 00:17:46
CVE-2019-19331
2022-05-20 23:48:56
cve
cve
CVE-2019-10190
2019-07-16 18:15:00
CVE-2019-19331
2019-12-16 16:15:00
CVE-2020-12667
2020-05-19 13:15:00
cvelist
cvelist
CVE-2019-10190
2019-07-16 17:50:05
CVE-2019-19331
2019-12-16 00:00:00
CVE-2020-12667
2020-05-19 00:00:00
symantec
symantec
CZ.NIC Knot Resolver CVE-2019-19331 Denial of Service Vulnerability
2019-12-04 00:00:00
veracode
veracode
NXNSAttack
2020-08-06 21:39:28
thn
thn
New DNS Vulnerability Lets Attackers Launch Large-Scale DDoS Attacks
2020-05-20 11:16:00

7.2 High

AI Score

Confidence

Low

0.008 Low

EPSS

Percentile

81.9%

JSON
Related for OPENVAS:13614125623111220243795
debian1nessus7osv5debiancve4ubuntucve4fedora6openvas9alpinelinux4prion4redhatcve2cve4cvelist4symantec1veracode1thn1