Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (c) 2010 Greenbone Networks GmbHOPENVAS:840410
HistoryApr 09, 2010 - 12:00 a.m.

Ubuntu Update for erlang vulnerability USN-624-2

2010-04-0900:00:00
Copyright (c) 2010 Greenbone Networks GmbH
plugins.openvas.org
6

0.003 Low

EPSS

Percentile

64.8%

JSON

Ubuntu Update for Linux kernel vulnerabilities USN-624-2

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_ubuntu_USN_624_2.nasl 7965 2017-12-01 07:38:25Z santu $
#
# Ubuntu Update for erlang vulnerability USN-624-2
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "USN-624-1 fixed a vulnerability in PCRE. This update provides the
  corresponding update for Erlang.

  Original advisory details:
  
  Tavis Ormandy discovered that the PCRE library did not correctly handle
  certain in-pattern options.  An attacker could cause applications linked
  against pcre3 to crash, leading to a denial of service.";

tag_summary = "Ubuntu Update for Linux kernel vulnerabilities USN-624-2";
tag_affected = "erlang vulnerability on Ubuntu 9.10";
tag_solution = "Please Install the Updated Packages.";


if(description)
{
  script_xref(name: "URL" , value: "http://www.ubuntu.com/usn/usn-624-2/");
  script_id(840410);
  script_version("$Revision: 7965 $");
  script_tag(name:"last_modification", value:"$Date: 2017-12-01 08:38:25 +0100 (Fri, 01 Dec 2017) $");
  script_tag(name:"creation_date", value:"2010-04-09 11:11:25 +0200 (Fri, 09 Apr 2010)");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_xref(name: "USN", value: "624-2");
  script_cve_id("CVE-2008-2371");
  script_name("Ubuntu Update for erlang vulnerability USN-624-2");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
  script_family("Ubuntu Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages");
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-deb.inc");

release = get_kb_item("ssh/login/release");


res = "";
if(release == NULL){
  exit(0);
}

if(release == "UBUNTU9.10")
{

  if ((res = isdpkgvuln(pkg:"erlang-base", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-crypto", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-dev", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-inets", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-mnesia", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-os-mon", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-public-key", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-runtime-tools", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-snmp", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-ssl", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-syntax-tools", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-xmerl", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-appmon", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-asn1", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-base-hipe", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-common-test", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-corba", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-debugger", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-dialyzer", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-docbuilder", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-edoc", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-et", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-eunit", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-gs", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-ic", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-inviso", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-megaco", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-nox", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-observer", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-odbc", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-parsetools", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-percept", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-pman", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-reltool", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-ssh", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-test-server", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-toolbar", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-tools", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-tv", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-typer", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-webtool", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-x11", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-examples", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-mode", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang-src", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"erlang", ver:"13.b.1-dfsg-2ubuntu1.1", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

Related

fedora 4
nessus 19
osv 1
gentoo 2
openvas 37
seebug 2
securityvulns 5
slackware 1
debian 1
prion 1
ubuntu 3
debiancve 1
ubuntucve 1
cve 1
freebsd 1
fedora
fedora
[SECURITY] Fedora 9 Update: glib2-2.16.4-1.fc9
2008-07-03 03:16:40
[SECURITY] Fedora 8 Update: glib2-2.14.6-2.fc8
2008-07-03 03:14:39
[SECURITY] Fedora 9 Update: pcre-7.3-4.fc9
2008-07-06 06:11:43
nessus
nessus
Fedora 8 : glib2-2.14.6-2.fc8 (2008-6025)
2008-07-08 00:00:00
Slackware 12.0 / 12.1 / current : pcre (SSA:2008-210-09)
2008-07-29 00:00:00
Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : pcre3 vulnerability (USN-624-1)
2008-07-15 00:00:00
osv
osv
pcre3 - arbitrary code execution
2008-07-05 00:00:00
gentoo
gentoo
PCRE: Buffer overflow
2008-07-07 00:00:00
PHP: Multiple vulnerabilities
2008-11-16 00:00:00
openvas
openvas
Fedora Update for glib2 FEDORA-2008-6025
2009-02-17 00:00:00
Ubuntu: Security Advisory (USN-624-1)
2009-03-23 00:00:00
Slackware Advisory SSA:2008-210-09 pcre
2012-09-11 00:00:00
seebug
seebug
PCRE θ§„εˆ™θ‘¨θΎΎεΌε †ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2008-07-08 00:00:00
PCRE pcre_compile.cζ–‡δ»Άε †ζΊ’ε‡ΊζΌζ΄ž
2008-07-07 00:00:00
securityvulns
securityvulns
PCRE library buffer overflow
2008-07-07 00:00:00
PCRE buffer overflow
2008-07-18 00:00:00
[SECURITY] [DSA 1602-1] New pcre3 packages fix arbitrary code execution
2008-07-07 00:00:00
slackware
slackware
[slackware-security] pcre
2008-07-29 05:34:14
debian
debian
[SECURITY] [DSA 1602-1] New pcre3 packages fix arbitrary code execution
2008-07-05 12:37:12
prion
prion
Heap overflow
2008-07-07 23:41:00
ubuntu
ubuntu
PCRE vulnerability
2008-07-15 00:00:00
Erlang vulnerability
2010-04-09 00:00:00
PHP vulnerabilities
2008-07-23 00:00:00
debiancve
debiancve
CVE-2008-2371
2008-07-07 23:41:00
ubuntucve
ubuntucve
CVE-2008-2371
2008-07-07 00:00:00
cve
cve
CVE-2008-2371
2008-07-07 23:41:00
freebsd
freebsd
php -- multiple vulnerabilities
2008-12-04 00:00:00

0.003 Low

EPSS

Percentile

64.8%

JSON
Related for OPENVAS:840410
fedora4nessus19osv1gentoo2openvas37seebug2securityvulns5slackware1debian1prion1ubuntu3debiancve1ubuntucve1cve1freebsd1