Lucene search
Copyright (C) 2021 Greenbone AGOPENVAS:13614125623114201201141HistoryJun 09, 2021 - 12:00 a.m.
SUSE: Security Advisory (SUSE-SU-2012:0114-1)
2021-06-0900:00:00
Copyright (C) 2021 Greenbone AG
plugins.openvas.org
7.6 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.97 High
EPSS
Percentile
99.7%
The remote host is missing an update for the
# SPDX-FileCopyrightText: 2021 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.1.4.2012.0114.1");
script_cve_id("CVE-2011-3389", "CVE-2011-3516", "CVE-2011-3521", "CVE-2011-3544", "CVE-2011-3545", "CVE-2011-3546", "CVE-2011-3547", "CVE-2011-3548", "CVE-2011-3549", "CVE-2011-3550", "CVE-2011-3551", "CVE-2011-3552", "CVE-2011-3553", "CVE-2011-3554", "CVE-2011-3556", "CVE-2011-3557", "CVE-2011-3560", "CVE-2011-3561");
script_tag(name:"creation_date", value:"2021-06-09 14:58:29 +0000 (Wed, 09 Jun 2021)");
script_version("2024-02-02T05:06:07+0000");
script_tag(name:"last_modification", value:"2024-02-02 05:06:07 +0000 (Fri, 02 Feb 2024)");
script_tag(name:"cvss_base", value:"10.0");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:C/I:C/A:C");
script_name("SUSE: Security Advisory (SUSE-SU-2012:0114-1)");
script_category(ACT_GATHER_INFO);
script_copyright("Copyright (C) 2021 Greenbone AG");
script_family("SuSE Local Security Checks");
script_dependencies("gather-package-list.nasl");
script_mandatory_keys("ssh/login/suse_sles", "ssh/login/rpms", re:"ssh/login/release=(SLES10\.0SP4)");
script_xref(name:"Advisory-ID", value:"SUSE-SU-2012:0114-1");
script_xref(name:"URL", value:"https://www.suse.com/support/update/announcement/2012/suse-su-20120114-1/");
script_tag(name:"summary", value:"The remote host is missing an update for the 'IBM Java' package(s) announced via the SUSE-SU-2012:0114-1 advisory.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable package version is present on the target host.");
script_tag(name:"insight", value:"IBM Java 1.6.0 SR10 has been released fixing the following CVE's:
* CVE-2011-3389
>
* CVE-2011-3516
>
* CVE-2011-3521
>
* CVE-2011-3544
>
* CVE-2011-3545
>
* CVE-2011-3546
>
* CVE-2011-3547
>
* CVE-2011-3548
>
* CVE-2011-3549
>
* CVE-2011-3550
>
* CVE-2011-3551
>
* CVE-2011-3552
>
* CVE-2011-3553
>
* CVE-2011-3554
>
* CVE-2011-3556
>
* CVE-2011-3557
>
* CVE-2011-3560
>
* CVE-2011-3561
>");
script_tag(name:"affected", value:"'IBM Java' package(s) on SUSE Linux Enterprise Java 10-SP4, SUSE Linux Enterprise Server 10-SP4.");
script_tag(name:"solution", value:"Please install the updated package(s).");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"package");
exit(0);
}
include("revisions-lib.inc");
include("pkg-lib-rpm.inc");
release = rpm_get_ssh_release();
if(!release)
exit(0);
res = "";
report = "";
if(release == "SLES10.0SP4") {
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm", rpm:"java-1_6_0-ibm~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-32bit", rpm:"java-1_6_0-ibm-32bit~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-64bit", rpm:"java-1_6_0-ibm-64bit~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-alsa", rpm:"java-1_6_0-ibm-alsa~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-alsa-32bit", rpm:"java-1_6_0-ibm-alsa-32bit~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-devel", rpm:"java-1_6_0-ibm-devel~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-devel-32bit", rpm:"java-1_6_0-ibm-devel-32bit~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-fonts", rpm:"java-1_6_0-ibm-fonts~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-jdbc", rpm:"java-1_6_0-ibm-jdbc~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-plugin", rpm:"java-1_6_0-ibm-plugin~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(!isnull(res = isrpmvuln(pkg:"java-1_6_0-ibm-plugin-32bit", rpm:"java-1_6_0-ibm-plugin-32bit~1.6.0_sr10.0~0.8.1", rls:"SLES10.0SP4"))) {
report += res;
}
if(report != "") {
security_message(data:report);
} else if(__pkg_match) {
exit(99);
}
exit(0);
}
exit(0);
Related
redhat
redhat
(RHSA-2012:0034) Critical: java-1.6.0-ibm security update
2012-01-18 00:00:00
(RHSA-2011:1384) Critical: java-1.6.0-sun security update
2011-10-19 00:00:00
(RHSA-2012:0006) Critical: java-1.4.2-ibm security update
2012-01-09 00:00:00
suse
suse
Security update for IBM Java 1.6.0 (important)
2012-03-06 21:08:29
Security update for IBM Java (important)
2012-01-23 17:08:23
Security update for IBM Java 1.4.2 (important)
2012-01-26 04:08:11
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2012:0114-2)
2021-06-09 00:00:00
Java for Mac OS X 10.6 Update 6 And 10.7 Update 1
2011-11-17 00:00:00
Java for Mac OS X 10.6 Update 6 And 10.7 Update 1
2011-11-17 00:00:00
nessus
nessus
SuSE 10 Security Update : IBM Java (ZYPP Patch Number 7926) (BEAST)
2012-01-24 00:00:00
RHEL 5 / 6 : java-1.6.0-ibm (RHSA-2012:0034) (BEAST)
2012-01-19 00:00:00
SuSE 11.1 Security Update : IBM Java 1.6.0 (SAT Patch Number 5872)
2012-02-29 00:00:00
threatpost
threatpost
Apple Releases New Java Updates, Fix 17 Flaws
2011-11-09 17:09:04
osv
osv
openjdk-6 - several
2011-12-01 00:00:00
openjdk-6 - several
2011-12-05 00:00:00
securityvulns
securityvulns
Oracle Java multiple security vulnerabilities
2011-11-11 00:00:00
debian
debian
[SECURITY] [DSA 2356-1] openjdk-6 security update
2011-12-01 20:33:49
[SECURITY] [DSA 2358-1] openjdk-6 security update
2011-12-05 19:27:12
ibm
ibm
Potential Security Vulnerabilities With JavaTM SDKs
2018-06-17 14:01:55
fedora
fedora
[SECURITY] Fedora 16 Update: java-1.6.0-openjdk-1.6.0.0-60.1.10.4.fc16
2011-11-05 01:27:14
[SECURITY] Fedora 16 Update: java-1.7.0-openjdk-1.7.0.1-2.0.2.fc16
2011-11-10 17:36:54
[SECURITY] Fedora 16 Update: java-1.6.0-openjdk-1.6.0.0-68.1.11.5.fc16
2012-10-18 00:30:15
oraclelinux
oraclelinux
java-1.6.0-openjdk security update
2011-10-18 00:00:00
centos
centos
java security update
2011-10-19 21:07:19
amazon
amazon
Critical: java-1.6.0-openjdk
2011-10-31 18:22:00
ubuntu
ubuntu
OpenJDK 6 regression
2012-01-24 00:00:00
IcedTea-Web, OpenJDK 6 vulnerabilities
2011-11-16 00:00:00
seebug
seebug
IBM Rational AppScan 8.x/7.x 多个安全漏洞
2012-06-16 00:00:00
prion
prion
Design/Logic Flaw
2011-10-19 21:55:00
Design/Logic Flaw
2011-10-19 21:55:00
Design/Logic Flaw
2011-10-19 21:55:00
ubuntucve
ubuntucve
cve
cve
veracode
veracode
Authorization Bypass
2019-05-02 04:56:00
Information Disclosure
2019-05-02 04:56:00
Authorization Bypass
2019-05-02 04:55:59
cert
cert
canvas
canvas
Immunity Canvas: JAVA_RHINO
2011-10-19 21:55:00
7.6 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.97 High
EPSS
Percentile
99.7%
Related for OPENVAS:13614125623114201201141