Lucene search

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-3184)

Huawei EulerOS: Security Advisory for libtiff, allows DoS via crafted TIFF file, buffer overflow in Fax3Encode functio

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 138
Tenable Nessus	EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2023-3036)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.10.0 : libtiff (EulerOS-SA-2023-3475)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.11.1 : libtiff (EulerOS-SA-2023-3361)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.10.1 : libtiff (EulerOS-SA-2023-3503)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2023-3219)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.11.0 : libtiff (EulerOS-SA-2023-3380)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP11 : libtiff (EulerOS-SA-2023-3013)	16 Jan 202400:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP10 : libtiff (EulerOS-SA-2023-3184)	16 Jan 202400:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2022-40090	5 Mar 202500:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP9 : libtiff (EulerOS-SA-2023-3307)	16 Jan 202400:00	–	nessus

Source	Link
developer	www.developer.huaweicloud.com/intl/en-us/euleros/securitydetail.html

# SPDX-FileCopyrightText: 2023 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.1.2.2023.3184");
  script_cve_id("CVE-2022-40090", "CVE-2023-3618");
  script_tag(name:"creation_date", value:"2023-11-10 04:21:14 +0000 (Fri, 10 Nov 2023)");
  script_version("2024-02-05T14:36:57+0000");
  script_tag(name:"last_modification", value:"2024-02-05 14:36:57 +0000 (Mon, 05 Feb 2024)");
  script_tag(name:"cvss_base", value:"7.8");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H");
  script_tag(name:"severity_origin", value:"NVD");
  script_tag(name:"severity_date", value:"2023-07-20 17:16:44 +0000 (Thu, 20 Jul 2023)");

  script_name("Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-3184)");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2023 Greenbone AG");
  script_family("Huawei EulerOS Local Security Checks");
  script_dependencies("gb_huawei_euleros_consolidation.nasl");
  script_mandatory_keys("ssh/login/euleros", "ssh/login/rpms", re:"ssh/login/release=EULEROS\-2\.0SP10");

  script_xref(name:"Advisory-ID", value:"EulerOS-SA-2023-3184");
  script_xref(name:"URL", value:"https://developer.huaweicloud.com/intl/en-us/euleros/securitydetail.html?secId=EulerOS-SA-2023-3184");

  script_tag(name:"summary", value:"The remote host is missing an update for the Huawei EulerOS 'libtiff' package(s) announced via the EulerOS-SA-2023-3184 advisory.");

  script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");

  script_tag(name:"insight", value:"An issue was discovered in function TIFFReadDirectory libtiff before 4.4.0 allows attackers to cause a denial of service via crafted TIFF file.(CVE-2022-40090)

A flaw was found in libtiff. A specially crafted tiff file can lead to a segmentation fault due to a buffer overflow in the Fax3Encode function in libtiff/tif_fax3.c, resulting in a denial of service.(CVE-2023-3618)");

  script_tag(name:"affected", value:"'libtiff' package(s) on Huawei EulerOS V2.0SP10.");

  script_tag(name:"solution", value:"Please install the updated package(s).");

  script_tag(name:"solution_type", value:"VendorFix");
  script_tag(name:"qod_type", value:"package");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";
report = "";

if(release == "EULEROS-2.0SP10") {

  if(!isnull(res = isrpmvuln(pkg:"libtiff", rpm:"libtiff~4.1.0~1.h30.eulerosv2r10", rls:"EULEROS-2.0SP10"))) {
    report += res;
  }

  if(report != "") {
    security_message(data:report);
  } else if(__pkg_match) {
    exit(99);
  }
  exit(0);
}

exit(0);

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Nov 2023 00:00Current

6.9Medium risk

Vulners AI Score6.9

CVSS36.5

EPSS0.00108

SSVC