Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (c) 2010 Greenbone Networks GmbHOPENVAS:840550
HistoryDec 23, 2010 - 12:00 a.m.

Ubuntu Update for openssl vulnerabilities USN-1029-1

2010-12-2300:00:00
Copyright (c) 2010 Greenbone Networks GmbH
plugins.openvas.org
21

0.023 Low

EPSS

Percentile

88.4%

JSON

Ubuntu Update for Linux kernel vulnerabilities USN-1029-1

###############################################################################
# OpenVAS Vulnerability Test
# $Id: gb_ubuntu_USN_1029_1.nasl 7965 2017-12-01 07:38:25Z santu $
#
# Ubuntu Update for openssl vulnerabilities USN-1029-1
#
# Authors:
# System Generated Check
#
# Copyright:
# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2
# (or any later version), as published by the Free Software Foundation.
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
###############################################################################

include("revisions-lib.inc");
tag_insight = "It was discovered that an old bug workaround in the SSL/TLS
  server code allowed an attacker to modify the stored session cache
  ciphersuite. This could possibly allow an attacker to downgrade the
  ciphersuite to a weaker one on subsequent connections. (CVE-2010-4180)

  It was discovered that an old bug workaround in the SSL/TLS server
  code allowed allowed an attacker to modify the stored session cache
  ciphersuite. An attacker could possibly take advantage of this to
  force the use of a disabled cipher. This vulnerability only affects
  the versions of OpenSSL in Ubuntu 6.06 LTS, Ubuntu 8.04 LTS, and
  Ubuntu 9.10. (CVE-2008-7270)";

tag_summary = "Ubuntu Update for Linux kernel vulnerabilities USN-1029-1";
tag_affected = "openssl vulnerabilities on Ubuntu 6.06 LTS ,
  Ubuntu 8.04 LTS ,
  Ubuntu 9.10 ,
  Ubuntu 10.04 LTS ,
  Ubuntu 10.10";
tag_solution = "Please Install the Updated Packages.";


if(description)
{
  script_xref(name: "URL" , value: "http://www.ubuntu.com/usn/usn-1029-1/");
  script_id(840550);
  script_version("$Revision: 7965 $");
  script_tag(name:"last_modification", value:"$Date: 2017-12-01 08:38:25 +0100 (Fri, 01 Dec 2017) $");
  script_tag(name:"creation_date", value:"2010-12-23 07:38:58 +0100 (Thu, 23 Dec 2010)");
  script_tag(name:"cvss_base", value:"4.3");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:P/A:N");
  script_xref(name: "USN", value: "1029-1");
  script_cve_id("CVE-2008-7270", "CVE-2010-4180");
  script_name("Ubuntu Update for openssl vulnerabilities USN-1029-1");

  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
  script_family("Ubuntu Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/ubuntu_linux", "ssh/login/packages");
  script_tag(name : "summary" , value : tag_summary);
  script_tag(name : "affected" , value : tag_affected);
  script_tag(name : "solution" , value : tag_solution);
  script_tag(name : "insight" , value : tag_insight);
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  exit(0);
}


include("pkg-lib-deb.inc");

release = get_kb_item("ssh/login/release");


res = "";
if(release == NULL){
  exit(0);
}

if(release == "UBUNTU9.10")
{

  if ((res = isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8g-16ubuntu3.5", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8g-16ubuntu3.5", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8g-16ubuntu3.5", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"openssl", ver:"0.9.8g-16ubuntu3.5", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"openssl-doc", ver:"0.9.8g-16ubuntu3.5", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libcrypto0.9.8-udeb", ver:"0.9.8g-16ubuntu3.5", rls:"UBUNTU9.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "UBUNTU6.06 LTS")
{

  if ((res = isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8a-7ubuntu0.14", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8a-7ubuntu0.14", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8a-7ubuntu0.14", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"openssl", ver:"0.9.8a-7ubuntu0.14", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libcrypto0.9.8-udeb", ver:"0.9.8a-7ubuntu0.14", rls:"UBUNTU6.06 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "UBUNTU10.04 LTS")
{

  if ((res = isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8k-7ubuntu8.5", rls:"UBUNTU10.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8k-7ubuntu8.5", rls:"UBUNTU10.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8k-7ubuntu8.5", rls:"UBUNTU10.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"openssl", ver:"0.9.8k-7ubuntu8.5", rls:"UBUNTU10.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"openssl-doc", ver:"0.9.8k-7ubuntu8.5", rls:"UBUNTU10.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libcrypto0.9.8-udeb", ver:"0.9.8k-7ubuntu8.5", rls:"UBUNTU10.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8-udeb", ver:"0.9.8k-7ubuntu8.5", rls:"UBUNTU10.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "UBUNTU8.04 LTS")
{

  if ((res = isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8g-4ubuntu3.13", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8g-4ubuntu3.13", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8g-4ubuntu3.13", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"openssl", ver:"0.9.8g-4ubuntu3.13", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"openssl-doc", ver:"0.9.8g-4ubuntu3.13", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libcrypto0.9.8-udeb", ver:"0.9.8g-4ubuntu3.13", rls:"UBUNTU8.04 LTS")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}


if(release == "UBUNTU10.10")
{

  if ((res = isdpkgvuln(pkg:"libssl-dev", ver:"0.9.8o-1ubuntu4.3", rls:"UBUNTU10.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8-dbg", ver:"0.9.8o-1ubuntu4.3", rls:"UBUNTU10.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8", ver:"0.9.8o-1ubuntu4.3", rls:"UBUNTU10.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"openssl", ver:"0.9.8o-1ubuntu4.3", rls:"UBUNTU10.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"openssl-doc", ver:"0.9.8o-1ubuntu4.3", rls:"UBUNTU10.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libcrypto0.9.8-udeb", ver:"0.9.8o-1ubuntu4.3", rls:"UBUNTU10.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if ((res = isdpkgvuln(pkg:"libssl0.9.8-udeb", ver:"0.9.8o-1ubuntu4.3", rls:"UBUNTU10.10")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99); # Not vulnerable.
  exit(0);
}

Related

nessus 49
prion 2
openvas 38
debiancve 2
centos 2
f5 4
redhat 3
oraclelinux 4
ubuntu 1
securityvulns 8
cve 2
ubuntucve 2
veracode 2
openssl 1
altlinux 5
slackware 1
osv 2
fedora 5
debian 2
suse 2
cert 1
gentoo 1
ibm 1
lenovo 2
vmware 4
nessus
nessus
RHEL 5 : openssl (RHSA-2010:0978)
2010-12-14 00:00:00
CentOS 5 : openssl (CESA-2010:0978)
2010-12-14 00:00:00
Oracle Linux 5 : openssl (ELSA-2010-0978)
2013-07-12 00:00:00
prion
prion
Session fixation
2010-12-06 22:30:00
Session fixation
2010-12-06 21:05:00
openvas
openvas
RedHat Update for openssl RHSA-2010:0978-01
2010-12-28 00:00:00
CentOS Update for openssl CESA-2010:0978 centos5 i386
2011-08-09 00:00:00
Ubuntu Update for openssl vulnerabilities USN-1029-1
2010-12-23 00:00:00
debiancve
debiancve
CVE-2008-7270
2010-12-06 22:30:00
CVE-2010-4180
2010-12-06 21:05:00
centos
centos
openssl security update
2010-12-14 01:19:08
openssl security update
2011-01-27 09:11:13
f5
f5
K12853 : OpenSSL vulnerability CVE-2008-7270
2013-09-04 00:00:00
SOL12853 - OpenSSL vulnerability CVE-2008-7270
2011-05-24 00:00:00
SOL12543 - OpenSSL vulnerability CVE-2010-4180
2011-01-26 00:00:00
redhat
redhat
(RHSA-2010:0978) Moderate: openssl security update
2010-12-13 00:00:00
(RHSA-2010:0977) Moderate: openssl security update
2010-12-13 00:00:00
(RHSA-2010:0979) Moderate: openssl security update
2010-12-13 00:00:00
oraclelinux
oraclelinux
openssl security update
2010-12-13 00:00:00
openssl security update
2010-12-13 00:00:00
openssl security update
2011-02-10 00:00:00
ubuntu
ubuntu
OpenSSL vulnerabilities
2010-12-08 00:00:00
securityvulns
securityvulns
[USN-1029-1] OpenSSL vulnerabilities
2010-12-09 00:00:00
OpenSSL protection level downgrade
2010-12-09 00:00:00
[security bulletin] HPSBPV02891 rev.1 - HP ProCurve Switches, Remote Unauthorized Information Disclosure
2013-07-16 00:00:00
cve
cve
CVE-2008-7270
2010-12-06 22:30:00
CVE-2010-4180
2010-12-06 21:05:00
ubuntucve
ubuntucve
CVE-2008-7270
2010-12-06 00:00:00
CVE-2010-4180
2010-12-06 00:00:00
veracode
veracode
Insecure TLS Configuration
2020-04-10 00:56:25
Insecure TLS Configuration
2020-04-10 00:56:26
openssl
openssl
Vulnerability in OpenSSL CVE-2010-4180
2010-12-02 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 9 package openssl10 version 1.0.0c-alt1
2011-02-01 00:00:00
Security fix for the ALT Linux 8 package openssl10 version 1.0.0c-alt1
2011-02-01 00:00:00
Security fix for the ALT Linux 9 package openssl1.1 version 1.0.0c-alt1
2011-02-01 00:00:00
slackware
slackware
[slackware-security] openssl
2010-12-07 07:14:58
osv
osv
openssl - protocol design flaw
2011-01-06 00:00:00
nss - protocol design flaw
2011-01-06 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: openssl-1.0.0c-1.fc14
2010-12-10 20:26:33
[SECURITY] Fedora 14 Update: openssl-1.0.0d-1.fc14
2011-02-14 20:28:21
[SECURITY] Fedora 13 Update: openssl-1.0.0c-1.fc13
2010-12-17 08:35:37
debian
debian
[SECURITY] [DSA-2141-1] New openssl packages fix protocol design flaw
2011-01-05 23:18:09
[SECURITY] [DSA-2141-1] New openssl packages fix protocol design flaw
2011-01-05 23:18:09
suse
suse
compat-openssl097g (important)
2011-07-27 16:08:25
Security update for compat-openssl097g (important)
2011-07-27 17:08:16
cert
cert
Fiery Network Controllers for Xerox DocuColor 242/252/260 Printer/Copier use a vulnerable version of OpenSSL
2013-03-18 00:00:00
gentoo
gentoo
OpenSSL: Multiple vulnerabilities
2011-10-09 00:00:00
ibm
ibm
Security Bulletin: IBM Smart Analytics System 7600, 7700, and 7710 are affected by vulnerabilities in OpenSSL
2022-09-25 20:45:36
lenovo
lenovo
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - Lenovo Support US
2018-11-13 17:10:51
Intelยฎ PROSet/Wireless WiFi Software Vulnerabilities - US
2018-11-13 17:10:51
vmware
vmware
VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
2011-10-27 00:00:00
VMware third party component updates for VMware vCenter Server, vCenter Update Manager, ESXi and ESX
2011-10-27 00:00:00
VMware vSphere and vCOps updates to third party libraries
2012-08-30 00:00:00

0.023 Low

EPSS

Percentile

88.4%

JSON
Related for OPENVAS:840550
nessus49prion2openvas38debiancve2centos2f54redhat3oraclelinux4ubuntu1securityvulns8cve2ubuntucve2veracode2openssl1altlinux5slackware1osv2fedora5debian2suse2cert1gentoo1ibm1lenovo2vmware4