Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2009 Greenbone Networks GmbHOPENVAS:830521
HistoryApr 09, 2009 - 12:00 a.m.

Mandriva Update for gcc MDVSA-2008:066 (gcc)

2009-04-0900:00:00
Copyright (C) 2009 Greenbone Networks GmbH
plugins.openvas.org
16

0.01 Low

EPSS

Percentile

81.6%

JSON

Check for the Version of gcc

###############################################################################
# OpenVAS Vulnerability Test
#
# Mandriva Update for gcc MDVSA-2008:066 (gcc)
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "Jurgen Weigert found a directory traversal vulnerability in fastjar
  versions prior to 0.93.  This vulnerability allows user-assisted
  attackers to overwrite arbitrary files via a .jar file containing
  filename with ../ sequences.

  The updated packages have been patched to correct this issue.";

tag_affected = "gcc on Mandriva Linux 2007.0,
  Mandriva Linux 2007.0/X86_64";
tag_solution = "Please Install the Updated Packages.";



if(description)
{
  script_xref(name : "URL" , value : "http://lists.mandriva.com/security-announce/2008-03/msg00013.php");
  script_id(830521);
  script_version("$Revision: 6568 $");
  script_tag(name:"last_modification", value:"$Date: 2017-07-06 15:04:21 +0200 (Thu, 06 Jul 2017) $");
  script_tag(name:"creation_date", value:"2009-04-09 14:18:58 +0200 (Thu, 09 Apr 2009)");
  script_tag(name:"cvss_base", value:"2.6");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:H/Au:N/C:N/I:P/A:N");
  script_xref(name: "MDVSA", value: "2008:066");
  script_cve_id("CVE-2006-3619");
  script_name( "Mandriva Update for gcc MDVSA-2008:066 (gcc)");

  script_summary("Check for the Version of gcc");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2009 Greenbone Networks GmbH");
  script_family("Mandrake Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/mandriva_mandrake_linux", "ssh/login/release");
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-rpm.inc");

release = get_kb_item("ssh/login/release");


res = "";
if(release == NULL){
  exit(0);
}

if(release == "MNDK_2007.0")
{

  if ((res = isrpmvuln(pkg:"gcc", rpm:"gcc~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-c++", rpm:"gcc-c++~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-colorgcc", rpm:"gcc-colorgcc~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-cpp", rpm:"gcc-cpp~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-doc", rpm:"gcc-doc~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-doc-pdf", rpm:"gcc-doc-pdf~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-gfortran", rpm:"gcc-gfortran~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-gnat", rpm:"gcc-gnat~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-java", rpm:"gcc-java~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-objc++", rpm:"gcc-objc++~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcc-objc", rpm:"gcc-objc~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"gcj-tools", rpm:"gcj-tools~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libffi4-devel", rpm:"libffi4-devel~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libgcc1", rpm:"libgcc1~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libgcj7", rpm:"libgcj7~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libgcj7-base", rpm:"libgcj7-base~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libgcj7-devel", rpm:"libgcj7-devel~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libgcj7-src", rpm:"libgcj7-src~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libgcj7-static-devel", rpm:"libgcj7-static-devel~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libgfortran1", rpm:"libgfortran1~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libgnat1", rpm:"libgnat1~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libmudflap0", rpm:"libmudflap0~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libmudflap0-devel", rpm:"libmudflap0-devel~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libobjc1", rpm:"libobjc1~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libstdc++6", rpm:"libstdc++6~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libstdc++6-devel", rpm:"libstdc++6-devel~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"libstdc++6-static-devel", rpm:"libstdc++6-static-devel~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"lib64gcj7", rpm:"lib64gcj7~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"lib64gcj7-devel", rpm:"lib64gcj7-devel~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isrpmvuln(pkg:"lib64gcj7-static-devel", rpm:"lib64gcj7-static-devel~4.1.1~3.1mdv2007.0", rls:"MNDK_2007.0")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

Related

nessus 17
openvas 7
cve 4
redhat 2
debian 1
oraclelinux 2
ubuntucve 3
centos 2
prion 2
securityvulns 3
debiancve 2
gentoo 1
vmware 1
nessus
nessus
Scientific Linux Security Update : gcc on SL4 i386/x86_64
2012-08-01 00:00:00
Oracle Linux 3 : gcc (ELSA-2007-0473)
2013-07-12 00:00:00
Debian DSA-1170-1 : gcc-3.4 - missing sanity check
2006-10-14 00:00:00
openvas
openvas
Mandriva Update for gcc MDVSA-2008:066 (gcc)
2009-04-09 00:00:00
Debian Security Advisory DSA 1170-1 (gcc-3.4)
2008-01-17 00:00:00
Debian: Security Advisory (DSA-1170)
2008-01-17 00:00:00
cve
cve
CVE-2006-3619
2006-07-25 19:17:00
CVE-2005-3990
2005-12-04 23:03:00
CVE-2010-0831
2010-06-18 18:30:00
redhat
redhat
(RHSA-2007:0473) Moderate: gcc security and bug fix update
2007-06-11 13:45:45
(RHSA-2007:0220) Moderate: gcc security and bug fix update
2007-05-01 00:00:00
debian
debian
[SECURITY] [DSA 1170-1] New fastjar packages fix directory traversal
2006-09-06 17:31:24
oraclelinux
oraclelinux
Moderate: gcc security and bug fix update
2007-06-20 00:00:00
Moderate: gcc security and bug fix update
2007-05-17 00:00:00
ubuntucve
ubuntucve
CVE-2006-3619
2006-07-25 00:00:00
CVE-2010-0831
2010-05-25 00:00:00
CVE-2010-2322
2010-06-18 00:00:00
centos
centos
cpp, gcc, libf2c, libgcc, libgcj, libgnat, libobjc, libstdc++ security update
2007-05-02 04:14:53
cpp, gcc, libf2c, libgcc, libgcj, libgnat, libobjc, libstdc++ security update
2007-06-11 20:18:35
prion
prion
Directory traversal
2010-06-18 18:30:00
Path traversal
2010-06-18 18:30:00
securityvulns
securityvulns
fastjar archiver directory traversal
2010-06-23 00:00:00
[ MDVSA-2010:122 ] fastjar
2010-06-23 00:00:00
VMSA-2007-0006 Critical security updates for all supported versions of VMware ESX Server, VMware Server, VMware Workstation, VMware ACE, and VMware Player
2007-09-21 00:00:00
debiancve
debiancve
CVE-2010-2322
2010-06-18 18:30:00
CVE-2010-0831
2010-06-18 18:30:00
gentoo
gentoo
VMware Workstation and Player: Multiple vulnerabilities
2007-11-18 00:00:00
vmware
vmware
Updated versions of all supported hosted products and all ESX 2x products and patches for ESX 30x address critical security updates. Service Console security updates for samba, bind, krb5, vixie-cron, shadow-utils, openldap, pam, gcc, and gdb packages.
2007-09-18 00:00:00

0.01 Low

EPSS

Percentile

81.6%

JSON
Related for OPENVAS:830521
nessus17openvas7cve4redhat2debian1oraclelinux2ubuntucve3centos2prion2securityvulns3debiancve2gentoo1vmware1