Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2020 Greenbone AGOPENVAS:1361412562311220202416
HistoryNov 04, 2020 - 12:00 a.m.

Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2020-2416)

2020-11-0400:00:00
Copyright (C) 2020 Greenbone AG
plugins.openvas.org
1

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.6 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

58.8%

JSON

The remote host is missing an update for the Huawei EulerOS

# SPDX-FileCopyrightText: 2020 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.1.2.2020.2416");
  script_cve_id("CVE-2018-1000667", "CVE-2018-10016", "CVE-2018-10316", "CVE-2018-19214", "CVE-2018-19215", "CVE-2018-19216", "CVE-2018-19755", "CVE-2018-8882");
  script_tag(name:"creation_date", value:"2020-11-04 08:56:26 +0000 (Wed, 04 Nov 2020)");
  script_version("2024-02-05T14:36:56+0000");
  script_tag(name:"last_modification", value:"2024-02-05 14:36:56 +0000 (Mon, 05 Feb 2024)");
  script_tag(name:"cvss_base", value:"6.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_tag(name:"severity_vector", value:"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2018-12-13 13:11:24 +0000 (Thu, 13 Dec 2018)");

  script_name("Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2020-2416)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2020 Greenbone AG");
  script_family("Huawei EulerOS Local Security Checks");
  script_dependencies("gb_huawei_euleros_consolidation.nasl");
  script_mandatory_keys("ssh/login/euleros", "ssh/login/rpms", re:"ssh/login/release=EULEROS\-2\.0SP9");

  script_xref(name:"Advisory-ID", value:"EulerOS-SA-2020-2416");
  script_xref(name:"URL", value:"https://developer.huaweicloud.com/intl/en-us/euleros/securitydetail.html?secId=EulerOS-SA-2020-2416");

  script_tag(name:"summary", value:"The remote host is missing an update for the Huawei EulerOS 'nasm' package(s) announced via the EulerOS-SA-2020-2416 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"Netwide Assembler (NASM) 2.14rc16 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for the special cases of the % and $ and ! characters.(CVE-2018-19216)

Netwide Assembler (NASM) 2.14rc16 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for the special cases of the % and $ and ! characters.(CVE-2018-19215)

Netwide Assembler (NASM) 2.14rc15 has a heap-based buffer over-read in expand_mmac_params in asm/preproc.c for insufficient input.(CVE-2018-19214)

Netwide Assembler (NASM) 2.13.02rc2 has a stack-based buffer under-read in the function ieee_shr in asm/float.c via a large shift value.(CVE-2018-8882)

Netwide Assembler (NASM) 2.14rc0 has a division-by-zero vulnerability in the expr5 function in asm/eval.c via a malformed input file.(CVE-2018-10016)

Netwide Assembler (NASM) 2.14rc0 has an endless while loop in the assemble_file function of asm/nasm.c because of a globallineno integer overflow.(CVE-2018-10316)

NASM nasm-2.13.03 nasm- 2.14rc15 version 2.14rc15 and earlier contains a memory corruption (crashed) of nasm when handling a crafted file due to function assemble_file(inname, depend_ptr) at asm/nasm.c:482. vulnerability in function assemble_file(inname, depend_ptr) at asm/nasm.c:482. that can result in aborting/crash nasm program. This attack appear to be exploitable via a specially crafted asm file..(CVE-2018-1000667)

There is an illegal address access at asm/preproc.c (function: is_mmacro) in Netwide Assembler (NASM) 2.14rc16 that will cause a denial of service (out-of-bounds array access) because a certain conversion can result in a negative integer.(CVE-2018-19755)");

  script_tag(name:"affected", value:"'nasm' package(s) on Huawei EulerOS V2.0SP9.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "EULEROS-2.0SP9") {

  if(!isnull(res = isrpmvuln(pkg:"nasm", rpm:"nasm~2.13.03~5.h4.eulerosv2r9", rls:"EULEROS-2.0SP9"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Related

nessus 14
openvas 11
suse 2
mageia 1
ubuntucve 8
rosalinux 1
redhatcve 8
prion 8
debiancve 8
cve 8
osv 4
photon 1
nessus
nessus
EulerOS 2.0 SP9 : nasm (EulerOS-SA-2020-2416)
2020-11-03 00:00:00
EulerOS 2.0 SP9 : nasm (EulerOS-SA-2020-2434)
2020-11-03 00:00:00
EulerOS 2.0 SP8 : nasm (EulerOS-SA-2020-2521)
2020-12-14 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2020-2434)
2020-11-04 00:00:00
Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2020-2521)
2020-12-15 00:00:00
Huawei EulerOS: Security Advisory for nasm (EulerOS-SA-2020-2556)
2020-12-15 00:00:00
suse
suse
Security update for nasm (moderate)
2020-07-13 00:00:00
Security update for nasm (moderate)
2020-07-13 00:00:00
mageia
mageia
Updated nasm packages fix security vulnerability
2020-08-01 02:25:42
ubuntucve
ubuntucve
CVE-2018-19215
2018-11-12 00:00:00
CVE-2018-19755
2018-11-30 00:00:00
CVE-2018-1000667
2018-09-06 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1926
2021-07-02 17:32:08
redhatcve
redhatcve
CVE-2018-10316
2018-04-30 19:29:51
CVE-2018-1000667
2018-09-06 21:48:58
CVE-2018-19755
2018-12-04 23:19:13
prion
prion
Design/Logic Flaw
2018-11-30 03:29:00
Heap overflow
2018-11-12 19:29:00
Memory corruption
2018-09-06 17:29:00
debiancve
debiancve
CVE-2018-19755
2018-11-30 03:29:00
CVE-2018-19215
2018-11-12 19:29:00
CVE-2018-10316
2018-04-24 02:29:00
cve
cve
CVE-2018-19214
2018-11-12 19:29:00
CVE-2018-10316
2018-04-24 02:29:00
CVE-2018-19216
2018-11-12 19:29:00
osv
osv
CVE-2018-19216
2018-11-12 19:29:00
CVE-2018-8882
2018-03-20 23:29:00
CVE-2018-10016
2018-04-11 05:29:00
photon
photon
Critical Photon OS Security Update - PHSA-2023-3.0-0568
2023-04-19 00:00:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

7.6 High

AI Score

Confidence

High

6.8 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

0.002 Low

EPSS

Percentile

58.8%

JSON
Related for OPENVAS:1361412562311220202416
nessus14openvas11suse2mageia1ubuntucve8rosalinux1redhatcve8prion8debiancve8cve8osv4photon1