{"id": "RHSA-2011:1356", "type": "redhat", "bulletinFamily": "unix", "title": "(RHSA-2011:1356) Moderate: openswan security update", "description": "Openswan is a free implementation of Internet Protocol Security (IPsec)\nand Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\nboth authentication and encryption services. These services allow you to\nbuild secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE\ndaemon handled certain error conditions. A remote, unauthenticated attacker\ncould send a specially-crafted IKE packet that would crash the pluto\ndaemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this issue.\nUpstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated packages,\nwhich contain a backported patch to correct this issue. After installing\nthis update, the ipsec service will be restarted automatically.\n", "published": "2011-10-05T04:00:00", "modified": "2018-06-06T20:24:07", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://access.redhat.com/errata/RHSA-2011:1356", "reporter": "RedHat", "references": [], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-25T20:37:46", "viewCount": 1, "enchantments": {"score": {"value": 5.4, "vector": "NONE", "modified": "2021-08-25T20:37:46", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:5F046218F9", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352"]}, {"type": "openvas", "idList": ["OPENVAS:863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "ALA_ALAS-2011-6.NASL", "ORACLELINUX_ELSA-2011-1356.NASL"]}], "modified": "2021-08-25T20:37:46", "rev": 2}, "vulnersScore": 5.4}, "affectedPackage": [{"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-doc-2.6.32-4.el6_1.2.x86_64.rpm", "operator": "lt", "packageName": "openswan-doc"}, {"OS": "RedHat", "OSVersion": "6", "arch": "src", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-2.6.32-4.el6_1.2.src.rpm", "operator": "lt", "packageName": "openswan"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-debuginfo-2.6.32-4.el6_1.2.s390x.rpm", "operator": "lt", "packageName": "openswan-debuginfo"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-debuginfo-2.6.32-4.el6_1.2.x86_64.rpm", "operator": "lt", "packageName": "openswan-debuginfo"}, {"OS": "RedHat", "OSVersion": "6", "arch": "x86_64", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-2.6.32-4.el6_1.2.x86_64.rpm", "operator": "lt", "packageName": "openswan"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-2.6.32-4.el6_1.2.i686.rpm", "operator": "lt", "packageName": "openswan"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-doc-2.6.32-4.el6_1.2.i686.rpm", "operator": "lt", "packageName": "openswan-doc"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-doc-2.6.32-4.el6_1.2.ppc64.rpm", "operator": "lt", "packageName": "openswan-doc"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-debuginfo-2.6.32-4.el6_1.2.ppc64.rpm", "operator": "lt", "packageName": "openswan-debuginfo"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-doc-2.6.32-4.el6_1.2.s390x.rpm", "operator": "lt", "packageName": "openswan-doc"}, {"OS": "RedHat", "OSVersion": "6", "arch": "s390x", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-2.6.32-4.el6_1.2.s390x.rpm", "operator": "lt", "packageName": "openswan"}, {"OS": "RedHat", "OSVersion": "6", "arch": "ppc64", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-2.6.32-4.el6_1.2.ppc64.rpm", "operator": "lt", "packageName": "openswan"}, {"OS": "RedHat", "OSVersion": "6", "arch": "i686", "packageVersion": "2.6.32-4.el6_1.2", "packageFilename": "openswan-debuginfo-2.6.32-4.el6_1.2.i686.rpm", "operator": "lt", "packageName": "openswan-debuginfo"}], "vendorCvss": {"severity": "moderate"}}

{"cve": [{"id": "CVE-2011-3380", "bulletinFamily": "NVD", "title": "CVE-2011-3380", "description": "Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.", "published": "2011-11-17T19:55:00", "modified": "2019-07-29T13:26:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3380", "reporter": "secalert@redhat.com", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1356.html", "http://secunia.com/advisories/46306", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "type": "cve", "lastseen": "2021-04-22T23:19:41", "history": [{"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.33"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.31"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.35"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.32"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.34"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.29"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.30"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:xelerance:openswan:2.6.31", "cpe:/a:xelerance:openswan:2.6.33", "cpe:/a:xelerance:openswan:2.6.35", "cpe:/a:xelerance:openswan:2.6.30", "cpe:/a:xelerance:openswan:2.6.32", "cpe:/a:xelerance:openswan:2.6.34", "cpe:/a:xelerance:openswan:2.6.29"], "cpe23": ["cpe:2.3:a:xelerance:openswan:2.6.30:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.31:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.32:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.35:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.34:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.29:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.33:*:*:*:*:*:*:*"], "cpeConfiguration": {}, "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.\nPer: http://cwe.mitre.org/data/definitions/476.html\r\n\r\n'CWE-476: NULL Pointer Dereference'", "edition": 3, "enchantments": {"dependencies": {"modified": "2020-09-21T14:01:27", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-09-21T14:01:27", "rev": 2, "value": 5.2, "vector": "NONE"}}, "hash": "f7592a3ba503641e78fab6e54c8fa89f84a94b7c96ee6ef6380ea018de1599e3", "hashmap": [{"hash": "340dd1f8564b1f5b4bc4d3ce358eaed6", "key": "cpe23"}, {"hash": "2ff9cc55039e71989dc9e4531b28031f", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cpeConfiguration"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "fcf288f2fe73fa4392f69cf144e3b667", "key": "cpe"}, {"hash": "3ad169bae9f57a43fbd5d4ef713a7ba4", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "276368a9029c9d1f119d30efb6410a3b", "key": "href"}, {"hash": "0f71cb3d2fedc8f7a8caff6f0c1f4970", "key": "affectedSoftware"}, {"hash": "8d05252556b91fff6944e0c5291b20f1", "key": "description"}, {"hash": "85fc9715d07b57d9e72056856b007c7b", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d049d4fb4f2f9cc6b49d375a01e51331", "key": "references"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "9b4d1281dab7d90ddf9b100d29e9ebbb", "key": "modified"}, {"hash": "349e406e63a9a9a61db048bc28e3f28f", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3380", "id": "CVE-2011-3380", "lastseen": "2020-09-21T14:01:27", "modified": "2019-07-29T13:26:00", "objectVersion": "1.3", "published": "2011-11-17T19:55:00", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1356.html", "http://secunia.com/advisories/46306", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "reporter": "cve@mitre.org", "title": "CVE-2011-3380", "type": "cve", "viewCount": 4}, "differentElements": ["cpeConfiguration"], "edition": 3, "lastseen": "2020-09-21T14:01:27"}, {"bulletin": {"affectedSoftware": [{"name": "xelerance openswan", "operator": "eq", "version": "2.6.33"}, {"name": "xelerance openswan", "operator": "eq", "version": "2.6.32"}, {"name": "xelerance openswan", "operator": "eq", "version": "2.6.29"}, {"name": "xelerance openswan", "operator": "eq", "version": "2.6.35"}, {"name": "xelerance openswan", "operator": "eq", "version": "2.6.34"}, {"name": "xelerance openswan", "operator": "eq", "version": "2.6.30"}, {"name": "xelerance openswan", "operator": "eq", "version": "2.6.31"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:xelerance:openswan:2.6.31", "cpe:/a:xelerance:openswan:2.6.33", "cpe:/a:xelerance:openswan:2.6.35", "cpe:/a:xelerance:openswan:2.6.30", "cpe:/a:xelerance:openswan:2.6.32", "cpe:/a:xelerance:openswan:2.6.34", "cpe:/a:xelerance:openswan:2.6.29"], "cpe23": ["cpe:2.3:a:xelerance:openswan:2.6.30:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.31:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.32:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.35:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.34:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.29:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.33:*:*:*:*:*:*:*"], "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.\nPer: http://cwe.mitre.org/data/definitions/476.html\r\n\r\n'CWE-476: NULL Pointer Dereference'", "edition": 2, "enchantments": {"dependencies": {"modified": "2019-08-01T10:31:33", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2019-08-01T10:31:33", "rev": 2, "value": 5.2, "vector": "NONE"}}, "hash": "58f033c0833a06a9a18125d1ff10990381e1dbb9e87bd0e444b0079323a5e225", "hashmap": [{"hash": "340dd1f8564b1f5b4bc4d3ce358eaed6", "key": "cpe23"}, {"hash": "2ff9cc55039e71989dc9e4531b28031f", "key": "published"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "fcf288f2fe73fa4392f69cf144e3b667", "key": "cpe"}, {"hash": "3ad169bae9f57a43fbd5d4ef713a7ba4", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "276368a9029c9d1f119d30efb6410a3b", "key": "href"}, {"hash": "8d05252556b91fff6944e0c5291b20f1", "key": "description"}, {"hash": "85fc9715d07b57d9e72056856b007c7b", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d049d4fb4f2f9cc6b49d375a01e51331", "key": "references"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "9b4d1281dab7d90ddf9b100d29e9ebbb", "key": "modified"}, {"hash": "3fd329e3edda72ceb2cfc376eb88f4c7", "key": "affectedSoftware"}, {"hash": "349e406e63a9a9a61db048bc28e3f28f", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3380", "id": "CVE-2011-3380", "lastseen": "2019-08-01T10:31:33", "modified": "2019-07-29T13:26:00", "objectVersion": "1.3", "published": "2011-11-17T19:55:00", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1356.html", "http://secunia.com/advisories/46306", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "reporter": "cve@mitre.org", "title": "CVE-2011-3380", "type": "cve", "viewCount": 4}, "differentElements": ["affectedSoftware"], "edition": 2, "lastseen": "2019-08-01T10:31:33"}, {"bulletin": {"affectedSoftware": [{"name": "openswan openswan", "operator": "eq", "version": "2.6.29"}, {"name": "openswan openswan", "operator": "eq", "version": "2.6.31"}, {"name": "openswan openswan", "operator": "eq", "version": "2.6.32"}, {"name": "openswan openswan", "operator": "eq", "version": "2.6.33"}, {"name": "openswan openswan", "operator": "eq", "version": "2.6.34"}, {"name": "openswan openswan", "operator": "eq", "version": "2.6.35"}, {"name": "openswan openswan", "operator": "eq", "version": "2.6.30"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:openswan:openswan:2.6.29", "cpe:/a:openswan:openswan:2.6.31", "cpe:/a:openswan:openswan:2.6.35", "cpe:/a:openswan:openswan:2.6.34", "cpe:/a:openswan:openswan:2.6.30", "cpe:/a:openswan:openswan:2.6.33", "cpe:/a:openswan:openswan:2.6.32"], "cpe23": ["cpe:2.3:a:openswan:openswan:2.6.32:*:*:*:*:*:*:*", "cpe:2.3:a:openswan:openswan:2.6.34:*:*:*:*:*:*:*", "cpe:2.3:a:openswan:openswan:2.6.30:*:*:*:*:*:*:*", "cpe:2.3:a:openswan:openswan:2.6.35:*:*:*:*:*:*:*", "cpe:2.3:a:openswan:openswan:2.6.33:*:*:*:*:*:*:*", "cpe:2.3:a:openswan:openswan:2.6.31:*:*:*:*:*:*:*", "cpe:2.3:a:openswan:openswan:2.6.29:*:*:*:*:*:*:*"], "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.\nPer: http://cwe.mitre.org/data/definitions/476.html\r\n\r\n'CWE-476: NULL Pointer Dereference'", "edition": 1, "enchantments": {"dependencies": {"modified": "2019-05-29T18:11:21", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2019-05-29T18:11:21", "value": 5.2, "vector": "NONE"}}, "hash": "1a2bf004b3de50dbc84c9ec93e19c4f581288dee5342966c8cf3528ebfb735fe", "hashmap": [{"hash": "b0b8a8edde0b372a2083c97738179345", "key": "cpe"}, {"hash": "2ff9cc55039e71989dc9e4531b28031f", "key": "published"}, {"hash": "45ec8819e67c54c64ea5f17eb2766a2b", "key": "affectedSoftware"}, {"hash": "3b89ce8aa5ec8d2e6b706fb765bfc759", "key": "cpe23"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "3ad169bae9f57a43fbd5d4ef713a7ba4", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "276368a9029c9d1f119d30efb6410a3b", "key": "href"}, {"hash": "8d05252556b91fff6944e0c5291b20f1", "key": "description"}, {"hash": "85fc9715d07b57d9e72056856b007c7b", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "14b7c4dcd459fe66c919551dd7747253", "key": "modified"}, {"hash": "d049d4fb4f2f9cc6b49d375a01e51331", "key": "references"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "349e406e63a9a9a61db048bc28e3f28f", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3380", "id": "CVE-2011-3380", "lastseen": "2019-05-29T18:11:21", "modified": "2011-11-24T04:00:00", "objectVersion": "1.3", "published": "2011-11-17T19:55:00", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1356.html", "http://secunia.com/advisories/46306", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "reporter": "cve@mitre.org", "title": "CVE-2011-3380", "type": "cve", "viewCount": 1}, "differentElements": ["cpe23", "modified", "cpe", "affectedSoftware"], "edition": 1, "lastseen": "2019-05-29T18:11:21"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.33"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.31"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.35"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.32"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.34"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.29"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.30"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:xelerance:openswan:2.6.31", "cpe:/a:xelerance:openswan:2.6.33", "cpe:/a:xelerance:openswan:2.6.35", "cpe:/a:xelerance:openswan:2.6.30", "cpe:/a:xelerance:openswan:2.6.32", "cpe:/a:xelerance:openswan:2.6.34", "cpe:/a:xelerance:openswan:2.6.29"], "cpe23": ["cpe:2.3:a:xelerance:openswan:2.6.30:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.31:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.32:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.35:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.34:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.29:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.33:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.35:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.32:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.33:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.34:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.31:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.30:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.29:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.\nPer: http://cwe.mitre.org/data/definitions/476.html\r\n\r\n'CWE-476: NULL Pointer Dereference'", "edition": 4, "enchantments": {"dependencies": {"modified": "2020-10-03T11:39:31", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2020-10-03T11:39:31", "rev": 2, "value": 5.2, "vector": "NONE"}}, "extraReferences": [], "hash": "22a65cb0f4b678dacac66401ff53d99edcf87f808ed161b5f0111337a67a9701", "hashmap": [{"hash": "340dd1f8564b1f5b4bc4d3ce358eaed6", "key": "cpe23"}, {"hash": "2ff9cc55039e71989dc9e4531b28031f", "key": "published"}, {"hash": "e611e91098f5fd4a40b0a98ca473f816", "key": "cpeConfiguration"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "fcf288f2fe73fa4392f69cf144e3b667", "key": "cpe"}, {"hash": "3ad169bae9f57a43fbd5d4ef713a7ba4", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "276368a9029c9d1f119d30efb6410a3b", "key": "href"}, {"hash": "0f71cb3d2fedc8f7a8caff6f0c1f4970", "key": "affectedSoftware"}, {"hash": "8d05252556b91fff6944e0c5291b20f1", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "extraReferences"}, {"hash": "85fc9715d07b57d9e72056856b007c7b", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d049d4fb4f2f9cc6b49d375a01e51331", "key": "references"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "9b4d1281dab7d90ddf9b100d29e9ebbb", "key": "modified"}, {"hash": "349e406e63a9a9a61db048bc28e3f28f", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3380", "id": "CVE-2011-3380", "lastseen": "2020-10-03T11:39:31", "modified": "2019-07-29T13:26:00", "objectVersion": "1.3", "published": "2011-11-17T19:55:00", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1356.html", "http://secunia.com/advisories/46306", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "reporter": "cve@mitre.org", "title": "CVE-2011-3380", "type": "cve", "viewCount": 6}, "differentElements": ["extraReferences"], "edition": 4, "lastseen": "2020-10-03T11:39:31"}, {"bulletin": {"affectedConfiguration": [], "affectedSoftware": [{"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.33"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.31"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.35"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.32"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.34"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.29"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.30"}], "bulletinFamily": "NVD", "cpe": ["cpe:/a:xelerance:openswan:2.6.31", "cpe:/a:xelerance:openswan:2.6.33", "cpe:/a:xelerance:openswan:2.6.35", "cpe:/a:xelerance:openswan:2.6.30", "cpe:/a:xelerance:openswan:2.6.32", "cpe:/a:xelerance:openswan:2.6.34", "cpe:/a:xelerance:openswan:2.6.29"], "cpe23": ["cpe:2.3:a:xelerance:openswan:2.6.30:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.31:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.32:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.35:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.34:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.29:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.33:*:*:*:*:*:*:*"], "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"cpe_match": [{"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.35:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.32:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.33:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.34:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.31:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.30:*:*:*:*:*:*:*", "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.29:*:*:*:*:*:*:*", "vulnerable": true}], "operator": "OR"}]}, "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cwe": ["NVD-CWE-Other"], "description": "Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of service (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP message with an invalid KEY_LENGTH attribute, which is not properly handled by the error handling function.\nPer: http://cwe.mitre.org/data/definitions/476.html\r\n\r\n'CWE-476: NULL Pointer Dereference'", "edition": 5, "enchantments": {"dependencies": {"modified": "2021-02-02T05:51:06", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-02-02T05:51:06", "rev": 2, "value": 5.2, "vector": "NONE"}}, "extraReferences": [{"name": "RHSA-2011:1356", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2011-1356.html"}, {"name": "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt", "refsource": "CONFIRM", "tags": ["Patch"], "url": "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"}, {"name": "46306", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/46306"}], "hash": "34472bd2cd8f1bf7d56c82a9a93e1544d1b6a06f89a1902cb7a62180f62abc62", "hashmap": [{"hash": "340dd1f8564b1f5b4bc4d3ce358eaed6", "key": "cpe23"}, {"hash": "2ff9cc55039e71989dc9e4531b28031f", "key": "published"}, {"hash": "e611e91098f5fd4a40b0a98ca473f816", "key": "cpeConfiguration"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "affectedConfiguration"}, {"hash": "a3939c1e38e77c8207552e49dc3f7954", "key": "extraReferences"}, {"hash": "78a7a5cbaf09985c14389298e454e7db", "key": "cwe"}, {"hash": "fcf288f2fe73fa4392f69cf144e3b667", "key": "cpe"}, {"hash": "3ad169bae9f57a43fbd5d4ef713a7ba4", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "276368a9029c9d1f119d30efb6410a3b", "key": "href"}, {"hash": "0f71cb3d2fedc8f7a8caff6f0c1f4970", "key": "affectedSoftware"}, {"hash": "8d05252556b91fff6944e0c5291b20f1", "key": "description"}, {"hash": "85fc9715d07b57d9e72056856b007c7b", "key": "cvss2"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d049d4fb4f2f9cc6b49d375a01e51331", "key": "references"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "9b4d1281dab7d90ddf9b100d29e9ebbb", "key": "modified"}, {"hash": "349e406e63a9a9a61db048bc28e3f28f", "key": "cvelist"}, {"hash": "444c2b4dda4a55437faa8bef1a141e84", "key": "reporter"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2011-3380", "id": "CVE-2011-3380", "immutableFields": [], "lastseen": "2021-02-02T05:51:06", "modified": "2019-07-29T13:26:00", "objectVersion": "1.5", "published": "2011-11-17T19:55:00", "references": ["http://www.redhat.com/support/errata/RHSA-2011-1356.html", "http://secunia.com/advisories/46306", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "reporter": "cve@mitre.org", "title": "CVE-2011-3380", "type": "cve", "viewCount": 7}, "different_elements": ["description", "reporter", "cpeConfiguration"], "edition": 5, "lastseen": "2021-02-02T05:51:06"}], "edition": 6, "hashmap": [{"key": "affectedConfiguration", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "affectedSoftware", "hash": "0f71cb3d2fedc8f7a8caff6f0c1f4970"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "fcf288f2fe73fa4392f69cf144e3b667"}, {"key": "cpe23", "hash": "340dd1f8564b1f5b4bc4d3ce358eaed6"}, {"key": "cpeConfiguration", "hash": "f16e578ba1a9639fc1cd0b27903d12c7"}, {"key": "cvelist", "hash": "349e406e63a9a9a61db048bc28e3f28f"}, {"key": "cvss", "hash": "41b62a8aa1ee5c40897717cadc30784a"}, {"key": "cvss2", "hash": "85fc9715d07b57d9e72056856b007c7b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "cwe", "hash": "78a7a5cbaf09985c14389298e454e7db"}, {"key": "description", "hash": "c6ad41b21d13a013f42af1df2c7d847e"}, {"key": "extraReferences", "hash": "a3939c1e38e77c8207552e49dc3f7954"}, {"key": "href", "hash": "276368a9029c9d1f119d30efb6410a3b"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "9b4d1281dab7d90ddf9b100d29e9ebbb"}, {"key": "published", "hash": "2ff9cc55039e71989dc9e4531b28031f"}, {"key": "references", "hash": "d049d4fb4f2f9cc6b49d375a01e51331"}, {"key": "reporter", "hash": "0af63656781e575c5eddac3fecf2a03b"}, {"key": "title", "hash": "3ad169bae9f57a43fbd5d4ef713a7ba4"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "202eca72baf60c740700d99bd50de49ea4a806299eca4022f2f033e014f58008", "viewCount": 18, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2021-04-22T23:19:41", "rev": 2}, "score": {"value": 5.2, "vector": "NONE", "modified": "2021-04-22T23:19:41", "rev": 2}}, "objectVersion": "1.5", "cpe": ["cpe:/a:xelerance:openswan:2.6.31", "cpe:/a:xelerance:openswan:2.6.33", "cpe:/a:xelerance:openswan:2.6.35", "cpe:/a:xelerance:openswan:2.6.30", "cpe:/a:xelerance:openswan:2.6.32", "cpe:/a:xelerance:openswan:2.6.34", "cpe:/a:xelerance:openswan:2.6.29"], "affectedSoftware": [{"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.33"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.31"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.35"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.32"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.34"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.29"}, {"cpeName": "xelerance:openswan", "name": "xelerance openswan", "operator": "eq", "version": "2.6.30"}], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "cpe23": ["cpe:2.3:a:xelerance:openswan:2.6.30:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.31:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.32:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.35:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.34:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.29:*:*:*:*:*:*:*", "cpe:2.3:a:xelerance:openswan:2.6.33:*:*:*:*:*:*:*"], "cwe": ["NVD-CWE-Other"], "scheme": null, "cpeConfiguration": {"CVE_data_version": "4.0", "nodes": [{"children": [], "cpe_match": [{"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.30:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.33:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.35:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.31:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.32:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.34:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:xelerance:openswan:2.6.29:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}], "operator": "OR"}]}, "extraReferences": [{"name": "RHSA-2011:1356", "refsource": "REDHAT", "tags": [], "url": "http://www.redhat.com/support/errata/RHSA-2011-1356.html"}, {"name": "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt", "refsource": "CONFIRM", "tags": ["Patch"], "url": "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"}, {"name": "46306", "refsource": "SECUNIA", "tags": [], "url": "http://secunia.com/advisories/46306"}], "immutableFields": []}], "ubuntucve": [{"id": "UB:CVE-2011-3380", "hash": "80d03d82e902291976b59c01219ee6e1", "type": "ubuntucve", "bulletinFamily": "info", "title": "CVE-2011-3380", "description": "Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of\nservice (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP\nmessage with an invalid KEY_LENGTH attribute, which is not properly handled\nby the error handling function.\n\n#### Bugs\n\n * <https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3380>\n\n\n#### Notes\n\nAuthor| Note \n---|--- \n[mdeslaur](<https://launchpad.net/~mdeslaur>) | introduced in openswan 2.6.29\n", "published": "2011-11-17T00:00:00", "modified": "2011-11-17T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://ubuntu.com/security/CVE-2011-3380", "reporter": "ubuntu.com", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "https://nvd.nist.gov/vuln/detail/CVE-2011-3380", "https://launchpad.net/bugs/cve/CVE-2011-3380", "https://security-tracker.debian.org/tracker/CVE-2011-3380"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-07-31T01:37:20", "history": [{"bulletin": {"id": "UB:CVE-2011-3380", "hash": "69e32e8639752f74f3d36ef4491f5343", "type": "ubuntucve", "bulletinFamily": "info", "title": "CVE-2011-3380", "description": "Openswan 2.6.29 through 2.6.35 allows remote attackers to cause a denial of\nservice (NULL pointer dereference and pluto IKE daemon crash) via an ISAKMP\nmessage with an invalid KEY_LENGTH attribute, which is not properly handled\nby the error handling function.\n\n#### Bugs\n\n * <https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3380>\n\n\n#### Notes\n\nAuthor| Note \n---|--- \n[mdeslaur](<https://launchpad.net/~mdeslaur>) | introduced in openswan 2.6.29\n", "published": "2011-11-17T00:00:00", "modified": "2011-11-17T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://ubuntu.com/security/CVE-2011-3380", "reporter": "ubuntu.com", "references": ["https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "https://nvd.nist.gov/vuln/detail/CVE-2011-3380", "https://launchpad.net/bugs/cve/CVE-2011-3380", "https://security-tracker.debian.org/tracker/CVE-2011-3380"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-07-01T00:43:30", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310863930", "OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:870717", "OPENVAS:1361412562310122077"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9"]}, {"type": "nessus", "idList": ["ALA_ALAS-2011-06.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "REDHAT-RHSA-2011-1356.NASL", "FEDORA_2011-13862.NASL", "FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}], "modified": "2021-07-01T00:43:30", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-07-01T00:43:30", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "openswan"}], "bugs": ["https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3380"]}, "lastseen": "2021-07-01T00:43:30", "differentElements": ["cvss2"], "edition": 1}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}], "modified": "2021-07-31T01:37:20", "rev": 2}, "score": {"value": 6.1, "vector": "NONE", "modified": "2021-07-31T01:37:20", "rev": 2}}, "objectVersion": "1.6", "affectedPackage": [{"OS": "ubuntu", "OSVersion": "Upstream", "arch": "noarch", "packageVersion": "any", "packageFilename": "UNKNOWN", "operator": "lt", "packageName": "openswan"}], "bugs": ["https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2011-3380"], "_object_type": "robots.models.ubuntucve.UbuntuCVEBulletin", "_object_types": ["robots.models.ubuntucve.UbuntuCVEBulletin", "robots.models.base.Bulletin"]}], "oraclelinux": [{"id": "ELSA-2011-1356", "hash": "f891212e8cd2f707d200197c803ba5b7", "type": "oraclelinux", "bulletinFamily": "unix", "title": "openswan security update", "description": "[2.6.32-4.2]\nResolves: #742069 CVE-2011-3380", "published": "2011-10-05T00:00:00", "modified": "2011-10-05T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "http://linux.oracle.com/errata/ELSA-2011-1356.html", "reporter": "Oracle", "references": [], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2019-05-29T18:35:10", "history": [{"bulletin": {"id": "ELSA-2011-1356", "hash": "7b4f68b831b48a4746e147953ba5d42e87a15bdf6e52e79e148993471ed479fb", "type": "oraclelinux", "bulletinFamily": "unix", "title": "openswan security update", "description": "[2.6.32-4.2]\nResolves: #742069 CVE-2011-3380", "published": "2011-10-05T00:00:00", "modified": "2011-10-05T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://linux.oracle.com/errata/ELSA-2011-1356.html", "reporter": "Oracle", "references": [], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2018-08-30T19:42:15", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.3", "affectedSoftware": [], "_object_types": ["robots.models.oraclelinux.OracleLinuxBulletin", "robots.models.base.Bulletin"]}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-08-30T19:42:15"}, {"bulletin": {"id": "ELSA-2011-1356", "hash": "9005cdd4bb6e55f10298daca6aa12c843bc75942bfd4831d5501dbf6836d388c", "type": "oraclelinux", "bulletinFamily": "unix", "title": "openswan security update", "description": "[2.6.32-4.2]\nResolves: #742069 CVE-2011-3380", "published": "2011-10-05T00:00:00", "modified": "2011-10-05T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://linux.oracle.com/errata/ELSA-2011-1356.html", "reporter": "Oracle", "references": [], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2016-09-04T11:16:01", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.2", "affectedSoftware": [], "_object_types": ["robots.models.oraclelinux.OracleLinuxBulletin", "robots.models.base.Bulletin"]}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2016-09-04T11:16:01"}, {"bulletin": {"id": "ELSA-2011-1356", "hash": "9005cdd4bb6e55f10298daca6aa12c843bc75942bfd4831d5501dbf6836d388c", "type": "oraclelinux", "bulletinFamily": "unix", "title": "openswan security update", "description": "[2.6.32-4.2]\nResolves: #742069 CVE-2011-3380", "published": "2011-10-05T00:00:00", "modified": "2011-10-05T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://linux.oracle.com/errata/ELSA-2011-1356.html", "reporter": "Oracle", "references": [], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2018-08-31T01:47:23", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2018-08-31T01:47:23", "references": [{"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.3", "affectedSoftware": [], "_object_types": ["robots.models.oraclelinux.OracleLinuxBulletin", "robots.models.base.Bulletin"]}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-31T01:47:23"}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}], "modified": "2019-05-29T18:35:10", "rev": 2}, "score": {"value": 6.0, "vector": "NONE", "modified": "2019-05-29T18:35:10", "rev": 2}}, "objectVersion": "1.5", "affectedSoftware": [], "_object_type": "robots.models.oraclelinux.OracleLinuxBulletin", "_object_types": ["robots.models.oraclelinux.OracleLinuxBulletin", "robots.models.base.Bulletin"], "cvss2": {}, "cvss3": {}}], "amazon": [{"id": "ALAS-2011-006", "hash": "4e1b7f879c823816f685bbb6d01d171c5300b3272583a2efef7164d0e11dc591", "type": "amazon", "bulletinFamily": "unix", "title": "Medium: openswan", "description": "**Issue Overview:**\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\n\n \n**Affected Packages:** \n\n\nopenswan\n\n \n**Issue Correction:** \nRun _yum update openswan_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n \u00a0\u00a0\u00a0 openswan-debuginfo-2.6.36-1.12.amzn1.i686 \n \u00a0\u00a0\u00a0 openswan-2.6.36-1.12.amzn1.i686 \n \u00a0\u00a0\u00a0 openswan-doc-2.6.36-1.12.amzn1.i686 \n \n src: \n \u00a0\u00a0\u00a0 openswan-2.6.36-1.12.amzn1.src \n \n x86_64: \n \u00a0\u00a0\u00a0 openswan-2.6.36-1.12.amzn1.x86_64 \n \u00a0\u00a0\u00a0 openswan-debuginfo-2.6.36-1.12.amzn1.x86_64 \n \u00a0\u00a0\u00a0 openswan-doc-2.6.36-1.12.amzn1.x86_64 \n \n \n", "published": "2011-10-10T23:54:00", "modified": "2014-09-14T14:25:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "https://alas.aws.amazon.com/ALAS-2011-6.html", "reporter": "Amazon", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1356.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-07-25T19:34:30", "history": [{"bulletin": {"bulletinFamily": "unix", "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "description": "**Issue Overview:**\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\n\n \n**Affected Packages:** \n\n\nopenswan\n\n \n**Issue Correction:** \nRun _yum update openswan_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n \u00a0\u00a0\u00a0 openswan-debuginfo-2.6.36-1.12.amzn1.i686 \n \u00a0\u00a0\u00a0 openswan-2.6.36-1.12.amzn1.i686 \n \u00a0\u00a0\u00a0 openswan-doc-2.6.36-1.12.amzn1.i686 \n \n src: \n \u00a0\u00a0\u00a0 openswan-2.6.36-1.12.amzn1.src \n \n x86_64: \n \u00a0\u00a0\u00a0 openswan-2.6.36-1.12.amzn1.x86_64 \n \u00a0\u00a0\u00a0 openswan-debuginfo-2.6.36-1.12.amzn1.x86_64 \n \u00a0\u00a0\u00a0 openswan-doc-2.6.36-1.12.amzn1.x86_64 \n \n \n", "edition": 1, "enchantments": {"dependencies": {"modified": "2021-07-25T19:34:30", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-07-25T19:34:30", "rev": 2, "value": 6.3, "vector": "NONE"}}, "hash": "1b9f90fbf830c5dba093efc1adaf4887d0169be35df810fe45e7d82e29741b8f", "hashmap": [{"hash": "527509346c89abcdf4aed42a364e98a9", "key": "description"}, {"hash": "d2a848a6d70e20500f9c094deb13c55f", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "2d0d4809e6bdb6f4db3e547f27b1873c", "key": "type"}, {"hash": "30187de4ebbea0aa0a6621da9068040f", "key": "modified"}, {"hash": "584ba68d47dbc9fb227f271b0c665af2", "key": "title"}, {"hash": "b3b3a6ac74ecbd56bcdbefa4799fb9df", "key": "reporter"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "b760a92e6ffad09bef1904cd49efa8e3", "key": "href"}, {"hash": "f79b10f3169fc644322467e10e26c46f", "key": "references"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "349e406e63a9a9a61db048bc28e3f28f", "key": "cvelist"}], "history": [], "href": "https://alas.aws.amazon.com/ALAS-2011-6.html", "id": "ALAS-2011-006", "immutableFields": [], "lastseen": "2021-07-25T19:34:30", "modified": "2014-09-14T14:25:00", "objectVersion": "1.5", "published": "2011-10-10T23:54:00", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1356.html"], "reporter": "Amazon", "title": "Medium: openswan", "type": "amazon", "viewCount": 5}, "different_elements": ["cvss2"], "edition": 1, "lastseen": "2021-07-25T19:34:30"}, {"bulletin": {"affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "1", "arch": "i686", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "1", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan-doc", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "1", "arch": "i686", "operator": "lt", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan-doc", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "1", "arch": "i686", "operator": "lt", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan-debuginfo", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "1", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "1", "arch": "src", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.src.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "1", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan-debuginfo", "packageVersion": "2.6.36-1.12.amzn1"}], "bulletinFamily": "unix", "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "description": "**Issue Overview:**\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\n\n \n**Affected Packages:** \n\n\nopenswan\n\n \n**Issue Correction:** \nRun _yum update openswan_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n openswan-debuginfo-2.6.36-1.12.amzn1.i686 \n openswan-2.6.36-1.12.amzn1.i686 \n openswan-doc-2.6.36-1.12.amzn1.i686 \n \n src: \n openswan-2.6.36-1.12.amzn1.src \n \n x86_64: \n openswan-2.6.36-1.12.amzn1.x86_64 \n openswan-debuginfo-2.6.36-1.12.amzn1.x86_64 \n openswan-doc-2.6.36-1.12.amzn1.x86_64 \n \n \n", "enchantments": {"dependencies": {"modified": "2020-11-10T12:35:39", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2020-11-10T12:35:39", "rev": 2, "value": 6.3, "vector": "NONE"}}, "hash": "3ee2e8d8349e27476b65b22d8406ebcd", "history": [], "href": "https://alas.aws.amazon.com/ALAS-2011-6.html", "id": "ALAS-2011-006", "immutableFields": [], "lastseen": "2020-11-10T12:35:39", "modified": "2011-10-10T23:54:00", "objectVersion": "1.5", "published": "2011-10-10T23:54:00", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1356.html"], "reporter": "Amazon", "title": "Medium: openswan", "type": "amazon", "viewCount": 5}, "differentElements": ["description", "modified"], "edition": 4, "lastseen": "2020-11-10T12:35:39"}, {"bulletin": {"affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "i686", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "i686", "operator": "lt", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan-debuginfo", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan-debuginfo", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan-doc", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "i686", "operator": "lt", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan-doc", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "src", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.src.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}], "bulletinFamily": "unix", "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "description": "**Issue Overview:**\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\n\n \n**Affected Packages:** \n\n\nopenswan\n\n \n**Issue Correction:** \nRun _yum update openswan_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n openswan-debuginfo-2.6.36-1.12.amzn1.i686 \n openswan-2.6.36-1.12.amzn1.i686 \n openswan-doc-2.6.36-1.12.amzn1.i686 \n \n src: \n openswan-2.6.36-1.12.amzn1.src \n \n x86_64: \n openswan-2.6.36-1.12.amzn1.x86_64 \n openswan-debuginfo-2.6.36-1.12.amzn1.x86_64 \n openswan-doc-2.6.36-1.12.amzn1.x86_64 \n \n \n", "enchantments": {"dependencies": {"modified": "2019-05-29T17:22:41", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2019-05-29T17:22:41", "rev": 2, "value": 6.3, "vector": "NONE"}}, "hash": "a903f50993e848e655d6be869352b4d9b4400328564f7dd0be1b454de8886ffb", "history": [], "href": "https://alas.aws.amazon.com/ALAS-2011-6.html", "id": "ALAS-2011-006", "immutableFields": [], "lastseen": "2019-05-29T17:22:41", "modified": "2014-09-14T14:25:00", "objectVersion": "1.5", "published": "2014-09-14T14:25:00", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1356.html"], "reporter": "Amazon", "title": "Medium: openswan", "type": "amazon", "viewCount": 5}, "differentElements": ["published", "modified"], "edition": 2, "lastseen": "2019-05-29T17:22:41"}, {"bulletin": {"affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "i686", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "i686", "operator": "lt", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan-debuginfo", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan-debuginfo", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan-doc", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "i686", "operator": "lt", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan-doc", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "src", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.src.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}], "bulletinFamily": "unix", "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "description": "**Issue Overview:**\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\n\n \n**Affected Packages:** \n\n\nopenswan\n\n \n**Issue Correction:** \nRun _yum update openswan_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n openswan-debuginfo-2.6.36-1.12.amzn1.i686 \n openswan-2.6.36-1.12.amzn1.i686 \n openswan-doc-2.6.36-1.12.amzn1.i686 \n \n src: \n openswan-2.6.36-1.12.amzn1.src \n \n x86_64: \n openswan-2.6.36-1.12.amzn1.x86_64 \n openswan-debuginfo-2.6.36-1.12.amzn1.x86_64 \n openswan-doc-2.6.36-1.12.amzn1.x86_64 \n \n \n", "enchantments": {"dependencies": {"modified": "2020-08-25T05:38:23", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-08-25T05:38:23", "rev": 2, "value": 6.3, "vector": "NONE"}}, "hash": "d204b241bd7fa2633ea30f6e0250a1a4fef5aaabddaf58be61ee8fdaa5c978a3", "history": [], "href": "https://alas.aws.amazon.com/ALAS-2011-6.html", "id": "ALAS-2011-006", "immutableFields": [], "lastseen": "2020-08-25T05:38:23", "modified": "2011-10-10T23:54:00", "objectVersion": "1.5", "published": "2011-10-10T23:54:00", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1356.html"], "reporter": "Amazon", "title": "Medium: openswan", "type": "amazon", "viewCount": 5}, "differentElements": ["affectedPackage"], "edition": 3, "lastseen": "2020-08-25T05:38:23"}, {"bulletin": {"affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "any", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "i686", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "i686", "operator": "lt", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan-debuginfo", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan-debuginfo", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "x86_64", "operator": "lt", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.x86_64.rpm", "packageName": "openswan-doc", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "i686", "operator": "lt", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.i686.rpm", "packageName": "openswan-doc", "packageVersion": "2.6.36-1.12.amzn1"}, {"OS": "Amazon Linux", "OSVersion": "any", "arch": "src", "operator": "lt", "packageFilename": "openswan-2.6.36-1.12.amzn1.src.rpm", "packageName": "openswan", "packageVersion": "2.6.36-1.12.amzn1"}], "bulletinFamily": "unix", "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "description": "**Issue Overview:**\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\n\n \n**Affected Packages:** \n\n\nopenswan\n\n \n**Issue Correction:** \nRun _yum update openswan_ to update your system.\n\n \n\n\n**New Packages:**\n \n \n i686: \n openswan-debuginfo-2.6.36-1.12.amzn1.i686 \n openswan-2.6.36-1.12.amzn1.i686 \n openswan-doc-2.6.36-1.12.amzn1.i686 \n \n src: \n openswan-2.6.36-1.12.amzn1.src \n \n x86_64: \n openswan-2.6.36-1.12.amzn1.x86_64 \n openswan-debuginfo-2.6.36-1.12.amzn1.x86_64 \n openswan-doc-2.6.36-1.12.amzn1.x86_64 \n \n \n", "enchantments": {"dependencies": {"modified": "2018-10-02T16:55:07", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2018-10-02T16:55:07", "value": 5.0, "vector": "NONE"}}, "hash": "1637e9296db92b0803e7d12bb63aee3714502fcf2b41c7e19e5acd36c1148e60", "history": [], "href": "https://alas.aws.amazon.com/ALAS-2011-6.html", "id": "ALAS-2011-006", "immutableFields": [], "lastseen": "2018-10-02T16:55:07", "modified": "2014-09-14T14:25:00", "objectVersion": "1.5", "published": "2014-09-14T14:25:00", "references": ["https://rhn.redhat.com/errata/RHSA-2011-1356.html"], "reporter": "Amazon", "title": "Medium: openswan", "type": "amazon", "viewCount": 3}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2018-10-02T16:55:07"}], "viewCount": 5, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}], "modified": "2021-07-25T19:34:30", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2021-07-25T19:34:30", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Amazon Linux", "OSVersion": "1", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.i686.rpm", "arch": "i686", "packageVersion": "2.6.36-1.12.amzn1", "operator": "lt", "packageName": "openswan-debuginfo"}, {"OS": "Amazon Linux", "OSVersion": "1", "packageFilename": "openswan-2.6.36-1.12.amzn1.i686.rpm", "arch": "i686", "packageVersion": "2.6.36-1.12.amzn1", "operator": "lt", "packageName": "openswan"}, {"OS": "Amazon Linux", "OSVersion": "1", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.i686.rpm", "arch": "i686", "packageVersion": "2.6.36-1.12.amzn1", "operator": "lt", "packageName": "openswan-doc"}, {"OS": "Amazon Linux", "OSVersion": "1", "packageFilename": "openswan-2.6.36-1.12.amzn1.src.rpm", "arch": "src", "packageVersion": "2.6.36-1.12.amzn1", "operator": "lt", "packageName": "openswan"}, {"OS": "Amazon Linux", "OSVersion": "1", "packageFilename": "openswan-2.6.36-1.12.amzn1.x86_64.rpm", "arch": "x86_64", "packageVersion": "2.6.36-1.12.amzn1", "operator": "lt", "packageName": "openswan"}, {"OS": "Amazon Linux", "OSVersion": "1", "packageFilename": "openswan-debuginfo-2.6.36-1.12.amzn1.x86_64.rpm", "arch": "x86_64", "packageVersion": "2.6.36-1.12.amzn1", "operator": "lt", "packageName": "openswan-debuginfo"}, {"OS": "Amazon Linux", "OSVersion": "1", "packageFilename": "openswan-doc-2.6.36-1.12.amzn1.x86_64.rpm", "arch": "x86_64", "packageVersion": "2.6.36-1.12.amzn1", "operator": "lt", "packageName": "openswan-doc"}], "_object_type": "robots.models.amazon.AmazonBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.amazon.AmazonBulletin"], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "349e406e63a9a9a61db048bc28e3f28f"}, {"key": "cvss", "hash": "41b62a8aa1ee5c40897717cadc30784a"}, {"key": "cvss2", "hash": "85fc9715d07b57d9e72056856b007c7b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "527509346c89abcdf4aed42a364e98a9"}, {"key": "href", "hash": "b760a92e6ffad09bef1904cd49efa8e3"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "30187de4ebbea0aa0a6621da9068040f"}, {"key": "published", "hash": "d2a848a6d70e20500f9c094deb13c55f"}, {"key": "references", "hash": "f79b10f3169fc644322467e10e26c46f"}, {"key": "reporter", "hash": "b3b3a6ac74ecbd56bcdbefa4799fb9df"}, {"key": "title", "hash": "584ba68d47dbc9fb227f271b0c665af2"}, {"key": "type", "hash": "2d0d4809e6bdb6f4db3e547f27b1873c"}], "scheme": null}], "fedora": [{"id": "FEDORA:339592194E", "hash": "3ee2cc843ef459bc79b8c567e14a5af543fad4a006e63f8264961679594824a3", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 15 Update: openswan-2.6.36-1.fc15", "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "published": "2011-10-13T23:50:56", "modified": "2011-10-13T23:50:56", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2011-3380"], "lastseen": "2020-12-21T08:17:50", "history": [{"bulletin": {"bulletinFamily": "unix", "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "edition": 1, "enchantments": {"dependencies": {"modified": "2020-12-21T08:17:50", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-12-21T08:17:50", "rev": 2, "value": 4.9, "vector": "NONE"}}, "hash": "60892e7375776e866923f0588d7be4491393e9a41bbf46bc97f7b7f619334785", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "2f785cc14dab86b892209032d55c332d", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "b92dfad45bda7ccbf93b35c7e094f653", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "d434beaf394a865d049fb9e199177d55", "key": "title"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "b92dfad45bda7ccbf93b35c7e094f653", "key": "modified"}, {"hash": "349e406e63a9a9a61db048bc28e3f28f", "key": "cvelist"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "history": [], "href": "", "id": "FEDORA:339592194E", "immutableFields": [], "lastseen": "2020-12-21T08:17:50", "modified": "2011-10-13T23:50:56", "objectVersion": "1.5", "published": "2011-10-13T23:50:56", "references": [], "reporter": "Fedora", "title": "[SECURITY] Fedora 15 Update: openswan-2.6.36-1.fc15", "type": "fedora", "viewCount": 0}, "different_elements": ["cvss2"], "edition": 1, "lastseen": "2020-12-21T08:17:50"}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:5F046218F9", "FEDORA:87910214F4", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}], "modified": "2020-12-21T08:17:50", "rev": 2}, "score": {"value": 4.9, "vector": "NONE", "modified": "2020-12-21T08:17:50", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "15", "arch": "any", "packageName": "openswan", "packageVersion": "2.6.36", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "349e406e63a9a9a61db048bc28e3f28f"}, {"key": "cvss", "hash": "41b62a8aa1ee5c40897717cadc30784a"}, {"key": "cvss2", "hash": "85fc9715d07b57d9e72056856b007c7b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "2f785cc14dab86b892209032d55c332d"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "b92dfad45bda7ccbf93b35c7e094f653"}, {"key": "published", "hash": "b92dfad45bda7ccbf93b35c7e094f653"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "d434beaf394a865d049fb9e199177d55"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}], "scheme": null}, {"id": "FEDORA:5F046218F9", "hash": "65dc1b5a2743061bdf0fb29854df00a9bba9cb1fa8484a1ccd75af259bdeccc1", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 16 Update: openswan-2.6.36-1.fc16", "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "published": "2011-10-16T00:57:50", "modified": "2011-10-16T00:57:50", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2011-3380"], "lastseen": "2020-12-21T08:17:50", "history": [{"bulletin": {"bulletinFamily": "unix", "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "edition": 1, "enchantments": {"dependencies": {"modified": "2020-12-21T08:17:50", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:87910214F4"], "type": "fedora"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-12-21T08:17:50", "rev": 2, "value": 4.9, "vector": "NONE"}}, "hash": "8087813e334f92bb4646f6fa6512e9b76c5f716b24237e428d2704bb03f338e1", "hashmap": [{"hash": "6c9d1775162721fc2edc195d0d3ee1b1", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "2f785cc14dab86b892209032d55c332d", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "d6437a7812fe568d738e2139cc0345e6", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "d6437a7812fe568d738e2139cc0345e6", "key": "modified"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "349e406e63a9a9a61db048bc28e3f28f", "key": "cvelist"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "history": [], "href": "", "id": "FEDORA:5F046218F9", "immutableFields": [], "lastseen": "2020-12-21T08:17:50", "modified": "2011-10-16T00:57:50", "objectVersion": "1.5", "published": "2011-10-16T00:57:50", "references": [], "reporter": "Fedora", "title": "[SECURITY] Fedora 16 Update: openswan-2.6.36-1.fc16", "type": "fedora", "viewCount": 0}, "different_elements": ["cvss2"], "edition": 1, "lastseen": "2020-12-21T08:17:50"}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "fedora", "idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}], "modified": "2020-12-21T08:17:50", "rev": 2}, "score": {"value": 4.9, "vector": "NONE", "modified": "2020-12-21T08:17:50", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "16", "arch": "any", "packageName": "openswan", "packageVersion": "2.6.36", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "349e406e63a9a9a61db048bc28e3f28f"}, {"key": "cvss", "hash": "41b62a8aa1ee5c40897717cadc30784a"}, {"key": "cvss2", "hash": "85fc9715d07b57d9e72056856b007c7b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "2f785cc14dab86b892209032d55c332d"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "d6437a7812fe568d738e2139cc0345e6"}, {"key": "published", "hash": "d6437a7812fe568d738e2139cc0345e6"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "6c9d1775162721fc2edc195d0d3ee1b1"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}], "scheme": null}, {"id": "FEDORA:715F922352", "hash": "efee62461063b07a2d6dd45a36205a414429126c77cc9f1b5b65b9c4f645c171", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 14 Update: openswan-2.6.33-2.fc14", "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "published": "2011-10-13T23:55:31", "modified": "2011-10-13T23:55:31", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2011-3380"], "lastseen": "2020-12-21T08:17:50", "history": [{"bulletin": {"bulletinFamily": "unix", "cvelist": ["CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "edition": 1, "enchantments": {"dependencies": {"modified": "2020-12-21T08:17:50", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2020-12-21T08:17:50", "rev": 2, "value": 4.9, "vector": "NONE"}}, "hash": "dc7dad18cb6832347a4d0fb65063c7fc5fdcd480796de3bb500e1d4a2188db28", "hashmap": [{"hash": "646406fa6b79e70bf0ea470c20f62a37", "key": "title"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "2f785cc14dab86b892209032d55c332d", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "5badb1fac2fac87e0c05bdb9617981a8", "key": "published"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "5badb1fac2fac87e0c05bdb9617981a8", "key": "modified"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "349e406e63a9a9a61db048bc28e3f28f", "key": "cvelist"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "history": [], "href": "", "id": "FEDORA:715F922352", "immutableFields": [], "lastseen": "2020-12-21T08:17:50", "modified": "2011-10-13T23:55:31", "objectVersion": "1.5", "published": "2011-10-13T23:55:31", "references": [], "reporter": "Fedora", "title": "[SECURITY] Fedora 14 Update: openswan-2.6.33-2.fc14", "type": "fedora", "viewCount": 0}, "different_elements": ["cvss2"], "edition": 1, "lastseen": "2020-12-21T08:17:50"}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:5F046218F9", "FEDORA:87910214F4"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2020-12-21T08:17:50", "rev": 2}, "score": {"value": 4.9, "vector": "NONE", "modified": "2020-12-21T08:17:50", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "14", "arch": "any", "packageName": "openswan", "packageVersion": "2.6.33", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "349e406e63a9a9a61db048bc28e3f28f"}, {"key": "cvss", "hash": "41b62a8aa1ee5c40897717cadc30784a"}, {"key": "cvss2", "hash": "85fc9715d07b57d9e72056856b007c7b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "2f785cc14dab86b892209032d55c332d"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "5badb1fac2fac87e0c05bdb9617981a8"}, {"key": "published", "hash": "5badb1fac2fac87e0c05bdb9617981a8"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "646406fa6b79e70bf0ea470c20f62a37"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}], "scheme": null}, {"id": "FEDORA:B01DF20F64", "hash": "6dd2a02573117e295b3f72462d41514256b986160cded325300aee431f2e6215", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 14 Update: openswan-2.6.33-3.fc14", "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "published": "2011-12-10T19:50:44", "modified": "2011-12-10T19:50:44", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2011-3380", "CVE-2011-4073"], "lastseen": "2020-12-21T08:17:50", "history": [{"bulletin": {"bulletinFamily": "unix", "cvelist": ["CVE-2011-4073", "CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "edition": 1, "enchantments": {"dependencies": {"modified": "2020-12-21T08:17:50", "references": [{"idList": ["DEBIAN:BSA-061:52277", "DEBIAN:DSA-2374-1:0C20B"], "type": "debian"}, {"idList": ["FEDORA:339592194E", "FEDORA:38CF820908", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}, {"idList": ["RHSA-2011:1422", "RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA_2011-13825.NASL", "ORACLELINUX_ELSA-2011-1422.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["UB:CVE-2011-3380", "UB:CVE-2011-4073"], "type": "ubuntucve"}, {"idList": ["ALAS-2011-018", "ALAS-2011-006"], "type": "amazon"}, {"idList": ["CVE-2011-4073", "CVE-2011-3380"], "type": "cve"}, {"idList": ["GLSA-201203-13"], "type": "gentoo"}, {"idList": ["SECURITYVULNS:VULN:12136", "SECURITYVULNS:DOC:27543"], "type": "securityvulns"}, {"idList": ["CESA-2011:1422"], "type": "centos"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:870509", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:1361412562310881379", "OPENVAS:1361412562310863659", "OPENVAS:870717", "OPENVAS:1361412562310120564"], "type": "openvas"}, {"idList": ["ELSA-2011-1422", "ELSA-2011-1356"], "type": "oraclelinux"}], "rev": 2}, "score": {"modified": "2020-12-21T08:17:50", "rev": 2, "value": 5.4, "vector": "NONE"}}, "hash": "5c5f93394269483a61f95c2bab1d51fe57767b669b4415dd3894649c2ece2404", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "2f785cc14dab86b892209032d55c332d", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "d5c09fcf57a4e2ecd639eb4fb4888b5b", "key": "published"}, {"hash": "22e059f16afed57439bcb84c53a2d79f", "key": "cvelist"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "34a2210482ba87fd71945cf81201c145", "key": "title"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "d5c09fcf57a4e2ecd639eb4fb4888b5b", "key": "modified"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "history": [], "href": "", "id": "FEDORA:B01DF20F64", "immutableFields": [], "lastseen": "2020-12-21T08:17:50", "modified": "2011-12-10T19:50:44", "objectVersion": "1.5", "published": "2011-12-10T19:50:44", "references": [], "reporter": "Fedora", "title": "[SECURITY] Fedora 14 Update: openswan-2.6.33-3.fc14", "type": "fedora", "viewCount": 2}, "different_elements": ["cvss2"], "edition": 1, "lastseen": "2020-12-21T08:17:50"}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-4073", "CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380", "UB:CVE-2011-4073"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:27543", "SECURITYVULNS:VULN:12136"]}, {"type": "fedora", "idList": ["FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:38CF820908", "FEDORA:715F922352"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310881379", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:881029", "OPENVAS:863930", "OPENVAS:1361412562310863659", "OPENVAS:136141256231070692"]}, {"type": "redhat", "idList": ["RHSA-2011:1356", "RHSA-2011:1422"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "FEDORA_2011-15196.NASL", "SUSE_OPENSWAN-7836.NASL", "OPENSWAN_IKE_50440.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "CENTOS_RHSA-2011-1422.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1422", "ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006", "ALAS-2011-018"]}, {"type": "debian", "idList": ["DEBIAN:BSA-061:52277", "DEBIAN:DSA-2374-1:0C20B"]}, {"type": "centos", "idList": ["CESA-2011:1422"]}, {"type": "gentoo", "idList": ["GLSA-201203-13"]}], "modified": "2020-12-21T08:17:50", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2020-12-21T08:17:50", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "14", "arch": "any", "packageName": "openswan", "packageVersion": "2.6.33", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "22e059f16afed57439bcb84c53a2d79f"}, {"key": "cvss", "hash": "41b62a8aa1ee5c40897717cadc30784a"}, {"key": "cvss2", "hash": "85fc9715d07b57d9e72056856b007c7b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "2f785cc14dab86b892209032d55c332d"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "d5c09fcf57a4e2ecd639eb4fb4888b5b"}, {"key": "published", "hash": "d5c09fcf57a4e2ecd639eb4fb4888b5b"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "34a2210482ba87fd71945cf81201c145"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}], "scheme": null}, {"id": "FEDORA:87910214F4", "hash": "1303a63bb548b861b132fb19032fb659f4814d480d5407efec4d7adabaf69423", "type": "fedora", "bulletinFamily": "unix", "title": "[SECURITY] Fedora 15 Update: openswan-2.6.37-1.fc15", "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "published": "2011-12-10T19:56:46", "modified": "2011-12-10T19:56:46", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "", "reporter": "Fedora", "references": [], "cvelist": ["CVE-2011-3380", "CVE-2011-4073"], "lastseen": "2020-12-21T08:17:50", "history": [{"bulletin": {"bulletinFamily": "unix", "cvelist": ["CVE-2011-4073", "CVE-2011-3380"], "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "description": "Openswan is a free implementation of IPsec & IKE for Linux. IPsec is the Internet Protocol Security and uses strong cryptography to provide both authentication and encryption services. These services allow you to build secure tunnels through untrusted networks. Everything passing through the untrusted net is encrypted by the ipsec gateway machine and decrypted by the gateway at the other end of the tunnel. The resulting tunnel is a virtual private network or VPN. This package contains the daemons and userland tools for setting up Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists in the default Linux kernel. Openswan 2.6.x also supports IKEv2 (RFC4306) ", "edition": 1, "enchantments": {"dependencies": {"modified": "2020-12-21T08:17:50", "references": [{"idList": ["DEBIAN:BSA-061:52277", "DEBIAN:DSA-2374-1:0C20B"], "type": "debian"}, {"idList": ["RHSA-2011:1422", "RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA_2011-13825.NASL", "ORACLELINUX_ELSA-2011-1422.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["UB:CVE-2011-3380", "UB:CVE-2011-4073"], "type": "ubuntucve"}, {"idList": ["ALAS-2011-018", "ALAS-2011-006"], "type": "amazon"}, {"idList": ["CVE-2011-4073", "CVE-2011-3380"], "type": "cve"}, {"idList": ["FEDORA:339592194E", "FEDORA:38CF820908", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9"], "type": "fedora"}, {"idList": ["GLSA-201203-13"], "type": "gentoo"}, {"idList": ["SECURITYVULNS:VULN:12136", "SECURITYVULNS:DOC:27543"], "type": "securityvulns"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:863659", "OPENVAS:870509", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:1361412562310881379", "OPENVAS:870717", "OPENVAS:1361412562310120564"], "type": "openvas"}, {"idList": ["CESA-2011:1422"], "type": "centos"}, {"idList": ["ELSA-2011-1422", "ELSA-2011-1356"], "type": "oraclelinux"}], "rev": 2}, "score": {"modified": "2020-12-21T08:17:50", "rev": 2, "value": 5.4, "vector": "NONE"}}, "hash": "7034a05784c44a6ad1d6035be6bccaa9b84238acafb2026975dc37af4d9c6109", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "immutableFields"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "href"}, {"hash": "2f785cc14dab86b892209032d55c332d", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "references"}, {"hash": "702afe8ebcd85484186779ff95c82cac", "key": "published"}, {"hash": "27eda3d88cabc98b195c64e623bb783a", "key": "title"}, {"hash": "22e059f16afed57439bcb84c53a2d79f", "key": "cvelist"}, {"hash": "702afe8ebcd85484186779ff95c82cac", "key": "modified"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss3"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "cvss2"}, {"hash": "f12528995e5edd96b95dd904444dea04", "key": "reporter"}, {"hash": "41b62a8aa1ee5c40897717cadc30784a", "key": "cvss"}, {"hash": "e11c718b99e26b1ca8b45f2df455c70b", "key": "type"}], "history": [], "href": "", "id": "FEDORA:87910214F4", "immutableFields": [], "lastseen": "2020-12-21T08:17:50", "modified": "2011-12-10T19:56:46", "objectVersion": "1.5", "published": "2011-12-10T19:56:46", "references": [], "reporter": "Fedora", "title": "[SECURITY] Fedora 15 Update: openswan-2.6.37-1.fc15", "type": "fedora", "viewCount": 0}, "different_elements": ["cvss2"], "edition": 1, "lastseen": "2020-12-21T08:17:50"}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2011-3380", "UB:CVE-2011-4073"]}, {"type": "cve", "idList": ["CVE-2011-4073", "CVE-2011-3380"]}, {"type": "securityvulns", "idList": ["SECURITYVULNS:DOC:27543", "SECURITYVULNS:VULN:12136"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:38CF820908", "FEDORA:715F922352"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120564", "OPENVAS:70692", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930", "OPENVAS:1361412562310863659", "OPENVAS:863657"]}, {"type": "redhat", "idList": ["RHSA-2011:1356", "RHSA-2011:1422"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "SL_20111102_OPENSWAN_ON_SL5_X.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-18.NASL", "FEDORA_2011-15077.NASL", "SUSE_OPENSWAN-7836.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1422", "ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006", "ALAS-2011-018"]}, {"type": "debian", "idList": ["DEBIAN:BSA-061:52277", "DEBIAN:DSA-2374-1:0C20B"]}, {"type": "centos", "idList": ["CESA-2011:1422"]}, {"type": "gentoo", "idList": ["GLSA-201203-13"]}], "modified": "2020-12-21T08:17:50", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2020-12-21T08:17:50", "rev": 2}}, "objectVersion": "1.5", "affectedPackage": [{"OS": "Fedora", "OSVersion": "15", "arch": "any", "packageName": "openswan", "packageVersion": "2.6.37", "packageFilename": "UNKNOWN", "operator": "lt"}], "_object_type": "robots.models.fedora.FedoraBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.fedora.FedoraBulletin"], "immutableFields": [], "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "edition": 2, "hashmap": [{"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "22e059f16afed57439bcb84c53a2d79f"}, {"key": "cvss", "hash": "41b62a8aa1ee5c40897717cadc30784a"}, {"key": "cvss2", "hash": "85fc9715d07b57d9e72056856b007c7b"}, {"key": "cvss3", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "description", "hash": "2f785cc14dab86b892209032d55c332d"}, {"key": "href", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "immutableFields", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "modified", "hash": "702afe8ebcd85484186779ff95c82cac"}, {"key": "published", "hash": "702afe8ebcd85484186779ff95c82cac"}, {"key": "references", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "reporter", "hash": "f12528995e5edd96b95dd904444dea04"}, {"key": "title", "hash": "27eda3d88cabc98b195c64e623bb783a"}, {"key": "type", "hash": "e11c718b99e26b1ca8b45f2df455c70b"}], "scheme": null}], "openvas": [{"id": "OPENVAS:1361412562310863930", "hash": "ea74a2a229f722c13e1b469c9f2ffcdd", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for openswan FEDORA-2011-13825", "description": "The remote host is missing an update for the ", "published": "2012-04-02T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310863930", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html", "2011-13825"], "cvelist": ["CVE-2011-3380"], "lastseen": "2019-05-29T18:39:14", "history": [{"bulletin": {"id": "OPENVAS:1361412562310863930", "hash": "f62a61b4b0c866225b45a4c9fd5c97429baa006edde2b3c34aea72c43dcf1c93", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for openswan FEDORA-2011-13825", "description": "Check for the Version of openswan", "published": "2012-04-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310863930", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html", "2011-13825"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-09-02T00:01:42", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2018-09-02T00:01:42", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310863930", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for openswan FEDORA-2011-13825\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of IPsec &amp; IKE for Linux. IPsec is\n the Internet Protocol Security and uses strong cryptography to provide\n both authentication and encryption services. These services allow you\n to build secure tunnels through untrusted networks. Everything passing\n through the untrusted net is encrypted by the ipsec gateway machine and\n decrypted by the gateway at the other end of the tunnel. The resulting\n tunnel is a virtual private network or VPN.\n\n This package contains the daemons and userland tools for setting up\n Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists\n in the default Linux kernel.\n\n Openswan 2.6.x also supports IKEv2 (RFC4306)\";\n\ntag_affected = \"openswan on Fedora 16\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.863930\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:37:03 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-13825\");\n script_name(\"Fedora Update for openswan FEDORA-2011-13825\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["description", "modified", "sourceData"], "edition": 3, "lastseen": "2018-09-02T00:01:42"}, {"bulletin": {"id": "OPENVAS:1361412562310863930", "hash": "863acece1eb5f9b7aec66a6e00abf6e72f8725c6750a461b88dc658064060395", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for openswan FEDORA-2011-13825", "description": "The remote host is missing an update for the ", "published": "2012-04-02T00:00:00", "modified": "2019-03-15T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310863930", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html", "2011-13825"], "cvelist": ["CVE-2011-3380"], "lastseen": "2019-03-18T14:42:11", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2019-03-18T14:42:11", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310863930", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for openswan FEDORA-2011-13825\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.863930\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:37:03 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name:\"FEDORA\", value:\"2011-13825\");\n script_name(\"Fedora Update for openswan FEDORA-2011-13825\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'openswan'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC16\");\n script_tag(name:\"affected\", value:\"openswan on Fedora 16\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 4, "lastseen": "2019-03-18T14:42:11"}, {"bulletin": {"id": "OPENVAS:1361412562310863930", "hash": "ea9e0a922327a54f7ce03dcad7a2c375f0ecfa0ea9df9388a6d349f0b213cf17", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for openswan FEDORA-2011-13825", "description": "Check for the Version of openswan", "published": "2012-04-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310863930", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html", "2011-13825"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-08-30T19:26:46", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310863930", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for openswan FEDORA-2011-13825\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of IPsec &amp; IKE for Linux. IPsec is\n the Internet Protocol Security and uses strong cryptography to provide\n both authentication and encryption services. These services allow you\n to build secure tunnels through untrusted networks. Everything passing\n through the untrusted net is encrypted by the ipsec gateway machine and\n decrypted by the gateway at the other end of the tunnel. The resulting\n tunnel is a virtual private network or VPN.\n\n This package contains the daemons and userland tools for setting up\n Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists\n in the default Linux kernel.\n\n Openswan 2.6.x also supports IKEv2 (RFC4306)\";\n\ntag_affected = \"openswan on Fedora 16\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.863930\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:37:03 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-13825\");\n script_name(\"Fedora Update for openswan FEDORA-2011-13825\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-08-30T19:26:46"}, {"bulletin": {"id": "OPENVAS:1361412562310863930", "hash": "f62a61b4b0c866225b45a4c9fd5c97429baa006edde2b3c34aea72c43dcf1c93", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for openswan FEDORA-2011-13825", "description": "Check for the Version of openswan", "published": "2012-04-02T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310863930", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html", "2011-13825"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-04-06T11:17:35", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310863930", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for openswan FEDORA-2011-13825\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of IPsec &amp; IKE for Linux. IPsec is\n the Internet Protocol Security and uses strong cryptography to provide\n both authentication and encryption services. These services allow you\n to build secure tunnels through untrusted networks. Everything passing\n through the untrusted net is encrypted by the ipsec gateway machine and\n decrypted by the gateway at the other end of the tunnel. The resulting\n tunnel is a virtual private network or VPN.\n\n This package contains the daemons and userland tools for setting up\n Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists\n in the default Linux kernel.\n\n Openswan 2.6.x also supports IKEv2 (RFC4306)\";\n\ntag_affected = \"openswan on Fedora 16\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.863930\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:37:03 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-13825\");\n script_name(\"Fedora Update for openswan FEDORA-2011-13825\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2018-04-06T11:17:35"}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2019-05-29T18:39:14", "rev": 2}, "score": {"value": 5.3, "vector": "NONE", "modified": "2019-05-29T18:39:14", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310863930", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for openswan FEDORA-2011-13825\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.863930\");\n script_version(\"$Revision: 14223 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2019-03-15 14:49:35 +0100 (Fri, 15 Mar 2019) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:37:03 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name:\"FEDORA\", value:\"2011-13825\");\n script_name(\"Fedora Update for openswan FEDORA-2011-13825\");\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'openswan'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\", re:\"ssh/login/release=FC16\");\n script_tag(name:\"affected\", value:\"openswan on Fedora 16\");\n script_tag(name:\"solution\", value:\"Please install the updated package(s).\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "OPENVAS:1361412562310122077", "hash": "a901eaa5de8c0b0a597e9a8421b2d276", "type": "openvas", "bulletinFamily": "scanner", "title": "Oracle Linux Local Check: ELSA-2011-1356", "description": "Oracle Linux Local Security Checks ELSA-2011-1356", "published": "2015-10-06T00:00:00", "modified": "2018-09-28T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122077", "reporter": "Eero Volotinen", "references": ["http://linux.oracle.com/errata/ELSA-2011-1356.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2019-05-29T18:37:00", "history": [{"bulletin": {"id": "OPENVAS:1361412562310122077", "hash": "d9c4b91e5a034d81b34e17242b9ca5ab0407c7a4570b28e8d99d6ee618912d6f", "type": "openvas", "bulletinFamily": "scanner", "title": "Oracle Linux Local Check: ELSA-2011-1356", "description": "Oracle Linux Local Security Checks ELSA-2011-1356", "published": "2015-10-06T00:00:00", "modified": "2017-07-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122077", "reporter": "Eero Volotinen", "references": ["http://linux.oracle.com/errata/ELSA-2011-1356.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-08-30T19:23:04", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310122077", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2011-1356.nasl 6556 2017-07-06 11:54:54Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122077\");\nscript_version(\"$Revision: 6556 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:12:41 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:54:54 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2011-1356\");\nscript_tag(name: \"insight\", value: \"ELSA-2011-1356 - openswan security update - [2.6.32-4.2]Resolves: #742069 CVE-2011-3380\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2011-1356\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2011-1356.html\");\nscript_cve_id(\"CVE-2011-3380\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "naslFamily": "Oracle Linux Local Security Checks"}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-30T19:23:04"}, {"bulletin": {"id": "OPENVAS:1361412562310122077", "hash": "9b78f196b723222e2e7ad57befdd19ab855e358a37e59c19e1de12d58bd3af20", "type": "openvas", "bulletinFamily": "scanner", "title": "Oracle Linux Local Check: ELSA-2011-1356", "description": "Oracle Linux Local Security Checks ELSA-2011-1356", "published": "2015-10-06T00:00:00", "modified": "2018-09-28T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122077", "reporter": "Eero Volotinen", "references": ["http://linux.oracle.com/errata/ELSA-2011-1356.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-09-28T18:25:43", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2018-09-28T18:25:43", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}]}, "score": {"value": 7.2, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310122077", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2011-1356.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122077\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:12:41 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2011-1356\");\n script_tag(name:\"insight\", value:\"ELSA-2011-1356 - openswan security update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2011-1356\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2011-1356.html\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux6\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "naslFamily": "Oracle Linux Local Security Checks"}, "differentElements": ["cvss"], "edition": 5, "lastseen": "2018-09-28T18:25:43"}, {"bulletin": {"id": "OPENVAS:1361412562310122077", "hash": "a952d67fe82a55f810bb15c0913df3dbc34844958f0b37d930fa2719dfc2207f", "type": "openvas", "bulletinFamily": "scanner", "title": "Oracle Linux Local Check: ELSA-2011-1356", "description": "Oracle Linux Local Security Checks ELSA-2011-1356", "published": "2015-10-06T00:00:00", "modified": "2017-05-18T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122077", "reporter": "Eero Volotinen", "references": ["http://linux.oracle.com/errata/ELSA-2011-1356.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2017-07-02T21:12:25", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "1361412562310122077", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2011-1356.nasl 6159 2017-05-18 09:03:44Z teissa $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122077\");\nscript_version(\"$Revision: 6159 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:12:41 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-05-18 11:03:44 +0200 (Thu, 18 May 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2011-1356\");\nscript_tag(name: \"insight\", value: \"ELSA-2011-1356 - openswan security update - [2.6.32-4.2]Resolves: #742069 CVE-2011-3380\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2011-1356\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2011-1356.html\");\nscript_cve_id(\"CVE-2011-3380\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"login/SSH/success\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "naslFamily": "Oracle Linux Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1, "lastseen": "2017-07-02T21:12:25"}, {"bulletin": {"id": "OPENVAS:1361412562310122077", "hash": "86318795a7c3e0492ca310aeb5babfd6d2d75f936519328c5cfeb80105a66a36", "type": "openvas", "bulletinFamily": "scanner", "title": "Oracle Linux Local Check: ELSA-2011-1356", "description": "Oracle Linux Local Security Checks ELSA-2011-1356", "published": "2015-10-06T00:00:00", "modified": "2017-07-06T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122077", "reporter": "Eero Volotinen", "references": ["http://linux.oracle.com/errata/ELSA-2011-1356.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2017-07-24T12:53:42", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310122077", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2011-1356.nasl 6556 2017-07-06 11:54:54Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122077\");\nscript_version(\"$Revision: 6556 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:12:41 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:54:54 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2011-1356\");\nscript_tag(name: \"insight\", value: \"ELSA-2011-1356 - openswan security update - [2.6.32-4.2]Resolves: #742069 CVE-2011-3380\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2011-1356\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2011-1356.html\");\nscript_cve_id(\"CVE-2011-3380\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "naslFamily": "Oracle Linux Local Security Checks"}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2017-07-24T12:53:42"}, {"bulletin": {"id": "OPENVAS:1361412562310122077", "hash": "86318795a7c3e0492ca310aeb5babfd6d2d75f936519328c5cfeb80105a66a36", "type": "openvas", "bulletinFamily": "scanner", "title": "Oracle Linux Local Check: ELSA-2011-1356", "description": "Oracle Linux Local Security Checks ELSA-2011-1356", "published": "2015-10-06T00:00:00", "modified": "2017-07-06T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310122077", "reporter": "Eero Volotinen", "references": ["http://linux.oracle.com/errata/ELSA-2011-1356.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-09-01T23:52:45", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.2, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310122077", "sourceData": "# OpenVAS Vulnerability Test \n# Description: Oracle Linux Local Check \n# $Id: ELSA-2011-1356.nasl 6556 2017-07-06 11:54:54Z cfischer $\n \n# Authors: \n# Eero Volotinen <eero.volotinen@solinor.com> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.122077\");\nscript_version(\"$Revision: 6556 $\");\nscript_tag(name:\"creation_date\", value:\"2015-10-06 14:12:41 +0300 (Tue, 06 Oct 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 13:54:54 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Oracle Linux Local Check: ELSA-2011-1356\");\nscript_tag(name: \"insight\", value: \"ELSA-2011-1356 - openswan security update - [2.6.32-4.2]Resolves: #742069 CVE-2011-3380\"); \nscript_tag(name : \"solution\", value : \"update software\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_tag(name : \"summary\", value : \"Oracle Linux Local Security Checks ELSA-2011-1356\");\nscript_xref(name : \"URL\" , value : \"http://linux.oracle.com/errata/ELSA-2011-1356.html\");\nscript_cve_id(\"CVE-2011-3380\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Oracle Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n if ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0); \n }\n\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n\n", "naslFamily": "Oracle Linux Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 4, "lastseen": "2018-09-01T23:52:45"}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2019-05-29T18:37:00", "rev": 2}, "score": {"value": 5.4, "vector": "NONE", "modified": "2019-05-29T18:37:00", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310122077", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: ELSA-2011-1356.nasl 11688 2018-09-28 13:36:28Z cfischer $\n#\n# Oracle Linux Local Check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@solinor.com>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://solinor.com\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.122077\");\n script_version(\"$Revision: 11688 $\");\n script_tag(name:\"creation_date\", value:\"2015-10-06 14:12:41 +0300 (Tue, 06 Oct 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-09-28 15:36:28 +0200 (Fri, 28 Sep 2018) $\");\n script_name(\"Oracle Linux Local Check: ELSA-2011-1356\");\n script_tag(name:\"insight\", value:\"ELSA-2011-1356 - openswan security update. Please see the references for more insight.\");\n script_tag(name:\"solution\", value:\"Update the affected packages to the latest available version.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_tag(name:\"summary\", value:\"Oracle Linux Local Security Checks ELSA-2011-1356\");\n script_xref(name:\"URL\", value:\"http://linux.oracle.com/errata/ELSA-2011-1356.html\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/oracle_linux\", \"ssh/login/release\", re:\"ssh/login/release=OracleLinux6\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Eero Volotinen\");\n script_family(\"Oracle Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"OracleLinux6\")\n{\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n if ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.32~4.el6_1.2\", rls:\"OracleLinux6\")) != NULL) {\n security_message(data:res);\n exit(0);\n }\n\n}\nif (__pkg_match) exit(99);\n exit(0);\n\n", "naslFamily": "Oracle Linux Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "OPENVAS:1361412562310120516", "hash": "27c52a7a95640672ae8e7f2f415087f1", "type": "openvas", "bulletinFamily": "scanner", "title": "Amazon Linux: Security Advisory (ALAS-2011-6)", "description": "The remote host is missing an update announced via the referenced Security Advisory.", "published": "2015-09-08T00:00:00", "modified": "2020-03-13T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120516", "reporter": "Copyright (C) 2015 Eero Volotinen", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2020-03-17T23:04:01", "history": [{"bulletin": {"id": "OPENVAS:1361412562310120516", "hash": "d57713b57783ba12310068f990586534a7d316c562255bc04d1f7adccb35d9a0", "type": "openvas", "bulletinFamily": "scanner", "title": "Amazon Linux Local Check: ALAS-2011-6", "description": "Amazon Linux Local Security Checks", "published": "2015-09-08T00:00:00", "modified": "2017-07-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120516", "reporter": "Eero Volotinen", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-08-30T19:27:16", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310120516", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: alas-2011-6.nasl 6579 2017-07-06 13:45:14Z cfischer $\n \n# Description: Amazon Linux security check \n# \n# Authors: \n# Eero Volotinen <eero.volotinen@iki.fi> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://ping-viini.org \n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.120516\");\nscript_version(\"$Revision: 6579 $\");\nscript_tag(name:\"creation_date\", value:\"2015-09-08 11:27:39 +0200 (Tue, 08 Sep 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 15:45:14 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Amazon Linux Local Check: ALAS-2011-6\");\nscript_tag(name: \"insight\", value: \"A NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\"); \nscript_tag(name : \"solution\", value : \"Run yum update openswan to update your system.\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_xref(name : \"URL\" , value : \"https://alas.aws.amazon.com/ALAS-2011-6.html\");\nscript_cve_id(\"CVE-2011-3380\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/amazon_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_tag(name:\"summary\", value:\"Amazon Linux Local Security Checks\");\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Amazon Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"AMAZON\")\n{\nif ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n}\n", "naslFamily": "Amazon Linux Local Security Checks"}, "differentElements": ["cvss"], "edition": 3, "lastseen": "2018-08-30T19:27:16"}, {"bulletin": {"id": "OPENVAS:1361412562310120516", "hash": "5871c80253d720482e2007c061c3f7075b92fc8840e6f6ce2d7f40d6c5a24556", "type": "openvas", "bulletinFamily": "scanner", "title": "Amazon Linux Local Check: ALAS-2011-6", "description": "Amazon Linux Local Security Checks", "published": "2015-09-08T00:00:00", "modified": "2017-07-06T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120516", "reporter": "Eero Volotinen", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2017-07-24T12:55:34", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 2.1, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310120516", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: alas-2011-6.nasl 6579 2017-07-06 13:45:14Z cfischer $\n \n# Description: Amazon Linux security check \n# \n# Authors: \n# Eero Volotinen <eero.volotinen@iki.fi> \n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://ping-viini.org \n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\nif(description)\n {\nscript_oid(\"1.3.6.1.4.1.25623.1.0.120516\");\nscript_version(\"$Revision: 6579 $\");\nscript_tag(name:\"creation_date\", value:\"2015-09-08 11:27:39 +0200 (Tue, 08 Sep 2015)\");\nscript_tag(name:\"last_modification\", value:\"$Date: 2017-07-06 15:45:14 +0200 (Thu, 06 Jul 2017) $\");\nscript_name(\"Amazon Linux Local Check: ALAS-2011-6\");\nscript_tag(name: \"insight\", value: \"A NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\"); \nscript_tag(name : \"solution\", value : \"Run yum update openswan to update your system.\");\nscript_tag(name : \"solution_type\", value : \"VendorFix\");\nscript_xref(name : \"URL\" , value : \"https://alas.aws.amazon.com/ALAS-2011-6.html\");\nscript_cve_id(\"CVE-2011-3380\");\nscript_tag(name:\"cvss_base\", value:\"5.0\");\nscript_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\nscript_tag(name:\"qod_type\", value:\"package\");\nscript_dependencies(\"gather-package-list.nasl\");\nscript_mandatory_keys(\"ssh/login/amazon_linux\", \"ssh/login/release\");\nscript_category(ACT_GATHER_INFO);\nscript_tag(name:\"summary\", value:\"Amazon Linux Local Security Checks\");\nscript_copyright(\"Eero Volotinen\");\nscript_family(\"Amazon Linux Local Security Checks\");\nexit(0);\n}\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\nrelease = get_kb_item(\"ssh/login/release\");\nres = \"\";\nif(release == NULL)\n{\n exit(0);\n}\nif(release == \"AMAZON\")\n{\nif ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif (__pkg_match) exit(99); #Not vulnerable\n exit(0);\n}\n", "naslFamily": "Amazon Linux Local Security Checks"}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2017-07-24T12:55:34"}, {"bulletin": {"id": "OPENVAS:1361412562310120516", "hash": "abd12e3d1bc2139d761a743b5abbff1d74f9d33b046898059cf72fd764ae11f9", "type": "openvas", "bulletinFamily": "scanner", "title": "Amazon Linux Local Check: ALAS-2011-6", "description": "Amazon Linux Local Security Checks", "published": "2015-09-08T00:00:00", "modified": "2018-10-01T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120516", "reporter": "Eero Volotinen", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-10-02T14:36:10", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2018-10-02T14:36:10", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"value": 2.1, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310120516", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: alas-2011-6.nasl 11703 2018-10-01 08:05:31Z cfischer $\n#\n# Amazon Linux security check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@iki.fi>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://ping-viini.org\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.120516\");\n script_version(\"$Revision: 11703 $\");\n script_tag(name:\"creation_date\", value:\"2015-09-08 11:27:39 +0200 (Tue, 08 Sep 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-01 10:05:31 +0200 (Mon, 01 Oct 2018) $\");\n script_name(\"Amazon Linux Local Check: ALAS-2011-6\");\n script_tag(name:\"insight\", value:\"A NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\");\n script_tag(name:\"solution\", value:\"Run yum update openswan to update your system.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"URL\", value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/amazon_linux\", \"ssh/login/release\");\n script_category(ACT_GATHER_INFO);\n script_tag(name:\"summary\", value:\"Amazon Linux Local Security Checks\");\n script_copyright(\"Eero Volotinen\");\n script_family(\"Amazon Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"AMAZON\")\n{\nif ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Amazon Linux Local Security Checks"}, "differentElements": ["cvss"], "edition": 5, "lastseen": "2018-10-02T14:36:10"}, {"bulletin": {"id": "OPENVAS:1361412562310120516", "hash": "f01faad0bbc1a6b4590ea88fb00ad90379f6d71e5f96eb911b00beef89cdf2dc", "type": "openvas", "bulletinFamily": "scanner", "title": "Amazon Linux: Security Advisory (ALAS-2011-6)", "description": "The remote host is missing an update announced via the referenced Security Advisory.", "published": "2015-09-08T00:00:00", "modified": "2020-03-14T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120516", "reporter": "Copyright (C) 2015 Eero Volotinen", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2020-03-14T19:04:52", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-03-14T19:04:52", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2020-03-14T19:04:52", "value": 6.3, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310120516", "sourceData": "# Copyright (C) 2015 Eero Volotinen\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) of their respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.120516\");\n script_version(\"2020-03-13T13:19:50+0000\");\n script_tag(name:\"creation_date\", value:\"2015-09-08 11:27:39 +0200 (Tue, 08 Sep 2015)\");\n script_tag(name:\"last_modification\", value:\"2020-03-14 11:59:40 +0000 (Sat, 14 Mar 2020)\");\n script_name(\"Amazon Linux: Security Advisory (ALAS-2011-6)\");\n script_tag(name:\"insight\", value:\"A NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\");\n script_tag(name:\"solution\", value:\"Run yum update openswan to update your system.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"URL\", value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/amazon_linux\", \"ssh/login/release\");\n script_category(ACT_GATHER_INFO);\n script_tag(name:\"summary\", value:\"The remote host is missing an update announced via the referenced Security Advisory.\");\n script_copyright(\"Copyright (C) 2015 Eero Volotinen\");\n script_family(\"Amazon Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"AMAZON\") {\n if(!isnull(res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.36~1.12.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.12.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.36~1.12.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);\n", "naslFamily": "Amazon Linux Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 7, "lastseen": "2020-03-14T19:04:52"}, {"bulletin": {"id": "OPENVAS:1361412562310120516", "hash": "174ee601161254f46cfd497832b83954d733dbe8936ae12a5fceac28b69028a8", "type": "openvas", "bulletinFamily": "scanner", "title": "Amazon Linux Local Check: ALAS-2011-6", "description": "Amazon Linux Local Security Checks", "published": "2015-09-08T00:00:00", "modified": "2018-10-01T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310120516", "reporter": "Eero Volotinen", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "lastseen": "2019-05-29T18:39:33", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-05-29T18:39:33", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2019-05-29T18:39:33", "value": 5.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310120516", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: alas-2011-6.nasl 11703 2018-10-01 08:05:31Z cfischer $\n#\n# Amazon Linux security check\n#\n# Authors:\n# Eero Volotinen <eero.volotinen@iki.fi>\n#\n# Copyright:\n# Copyright (c) 2015 Eero Volotinen, http://ping-viini.org\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.120516\");\n script_version(\"$Revision: 11703 $\");\n script_tag(name:\"creation_date\", value:\"2015-09-08 11:27:39 +0200 (Tue, 08 Sep 2015)\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-10-01 10:05:31 +0200 (Mon, 01 Oct 2018) $\");\n script_name(\"Amazon Linux Local Check: ALAS-2011-6\");\n script_tag(name:\"insight\", value:\"A NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\");\n script_tag(name:\"solution\", value:\"Run yum update openswan to update your system.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"URL\", value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/amazon_linux\", \"ssh/login/release\");\n script_category(ACT_GATHER_INFO);\n script_tag(name:\"summary\", value:\"Amazon Linux Local Security Checks\");\n script_copyright(\"Eero Volotinen\");\n script_family(\"Amazon Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"AMAZON\")\n{\nif ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif ((res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.36~1.12.amzn1\", rls:\"AMAZON\")) != NULL) {\n security_message(data:res);\n exit(0);\n}\nif (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Amazon Linux Local Security Checks"}, "differentElements": ["description", "reporter", "modified", "sourceData", "title"], "edition": 6, "lastseen": "2019-05-29T18:39:33"}], "viewCount": 4, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}], "modified": "2020-03-17T23:04:01", "rev": 2}, "score": {"value": 6.3, "vector": "NONE", "modified": "2020-03-17T23:04:01", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310120516", "sourceData": "# Copyright (C) 2015 Eero Volotinen\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (C) of their respective author(s)\n#\n# SPDX-License-Identifier: GPL-2.0-or-later\n#\n# This program is free software; you can redistribute it and/or\n# modify it under the terms of the GNU General Public License\n# as published by the Free Software Foundation; either version 2\n# of the License, or (at your option) any later version.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n\nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.120516\");\n script_version(\"2020-03-13T13:19:50+0000\");\n script_tag(name:\"creation_date\", value:\"2015-09-08 11:27:39 +0200 (Tue, 08 Sep 2015)\");\n script_tag(name:\"last_modification\", value:\"2020-03-13 13:19:50 +0000 (Fri, 13 Mar 2020)\");\n script_name(\"Amazon Linux: Security Advisory (ALAS-2011-6)\");\n script_tag(name:\"insight\", value:\"A NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially-crafted IKE packet that would crash the pluto daemon.\");\n script_tag(name:\"solution\", value:\"Run yum update openswan to update your system.\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n script_xref(name:\"URL\", value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/amazon_linux\", \"ssh/login/release\");\n script_category(ACT_GATHER_INFO);\n script_tag(name:\"summary\", value:\"The remote host is missing an update announced via the referenced Security Advisory.\");\n script_copyright(\"Copyright (C) 2015 Eero Volotinen\");\n script_family(\"Amazon Linux Local Security Checks\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release)\n exit(0);\n\nres = \"\";\nreport = \"\";\n\nif(release == \"AMAZON\") {\n if(!isnull(res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.36~1.12.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.12.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(!isnull(res = isrpmvuln(pkg:\"openswan-doc\", rpm:\"openswan-doc~2.6.36~1.12.amzn1\", rls:\"AMAZON\"))) {\n report += res;\n }\n\n if(report != \"\") {\n security_message(data:report);\n } else if(__pkg_match) {\n exit(99);\n }\n exit(0);\n}\n\nexit(0);\n", "naslFamily": "Amazon Linux Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "OPENVAS:870717", "hash": "8fd0769e371063a057b04972269ffc0d", "type": "openvas", "bulletinFamily": "scanner", "title": "RedHat Update for openswan RHSA-2011:1356-01", "description": "Check for the Version of openswan", "published": "2012-07-09T00:00:00", "modified": "2018-01-10T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=870717", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html", "2011:1356-01"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-01-11T11:07:51", "history": [{"lastseen": "2017-07-27T10:51:10", "bulletin": {"id": "OPENVAS:870717", "hash": "6025d2714b88ebeecaf407dac4896b40ec9b33f0969b211f649d44de212c4b67", "type": "openvas", "bulletinFamily": "scanner", "title": "RedHat Update for openswan RHSA-2011:1356-01", "description": "Check for the Version of openswan", "published": "2012-07-09T00:00:00", "modified": "2017-07-12T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=870717", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html", "2011:1356-01"], "cvelist": ["CVE-2011-3380"], "lastseen": "2017-07-27T10:51:10", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.0, "modified": "2017-07-27T10:51:10"}}, "objectVersion": "1.4", "pluginID": "870717", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for openswan RHSA-2011:1356-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of Internet Protocol Security (IPsec)\n and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\n both authentication and encryption services. These services allow you to\n build secure tunnels through untrusted networks.\n\n A NULL pointer dereference flaw was found in the way Openswan's pluto IKE\n daemon handled certain error conditions. A remote, unauthenticated attacker\n could send a specially-crafted IKE packet that would crash the pluto\n daemon. (CVE-2011-3380)\n\n Red Hat would like to thank the Openswan project for reporting this issue.\n Upstream acknowledges Paul Wouters as the original reporter.\n\n All users of openswan are advised to upgrade to these updated packages,\n which contain a backported patch to correct this issue. After installing\n this update, the ipsec service will be restarted automatically.\";\n\ntag_affected = \"openswan on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html\");\n script_id(870717);\n script_version(\"$Revision: 6686 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-12 11:46:01 +0200 (Wed, 12 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-09 10:52:49 +0530 (Mon, 09 Jul 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"RHSA\", value: \"2011:1356-01\");\n script_name(\"RedHat Update for openswan RHSA-2011:1356-01\");\n\n script_summary(\"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Red Hat Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 2}, {"lastseen": "2017-07-02T21:10:56", "bulletin": {"id": "OPENVAS:870717", "hash": "5bb7cd6b004f08b109e827e867281956b97c3fc20d38051d862da3a17b28ede8", "type": "openvas", "bulletinFamily": "scanner", "title": "RedHat Update for openswan RHSA-2011:1356-01", "description": "Check for the Version of openswan", "published": "2012-07-09T00:00:00", "modified": "2016-04-08T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=870717", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html", "2011:1356-01"], "cvelist": ["CVE-2011-3380"], "lastseen": "2017-07-02T21:10:56", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "870717", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for openswan RHSA-2011:1356-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of Internet Protocol Security (IPsec)\n and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\n both authentication and encryption services. These services allow you to\n build secure tunnels through untrusted networks.\n\n A NULL pointer dereference flaw was found in the way Openswan's pluto IKE\n daemon handled certain error conditions. A remote, unauthenticated attacker\n could send a specially-crafted IKE packet that would crash the pluto\n daemon. (CVE-2011-3380)\n\n Red Hat would like to thank the Openswan project for reporting this issue.\n Upstream acknowledges Paul Wouters as the original reporter.\n\n All users of openswan are advised to upgrade to these updated packages,\n which contain a backported patch to correct this issue. After installing\n this update, the ipsec service will be restarted automatically.\";\n\ntag_affected = \"openswan on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html\");\n script_id(870717);\n script_version(\"$Revision: 3012 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-04-08 11:57:16 +0200 (Fri, 08 Apr 2016) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-09 10:52:49 +0530 (Mon, 09 Jul 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"RHSA\", value: \"2011:1356-01\");\n script_name(\"RedHat Update for openswan RHSA-2011:1356-01\");\n\n script_summary(\"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:redhat:enterprise_linux\", \"login/SSH/success\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Red Hat Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1}], "viewCount": 2, "enchantments": {"score": {"value": 5.2, "vector": "NONE", "modified": "2018-01-11T11:07:51", "rev": 2}, "dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:863930"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2018-01-11T11:07:51", "rev": 2}}, "objectVersion": "1.5", "pluginID": "870717", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for openswan RHSA-2011:1356-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of Internet Protocol Security (IPsec)\n and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\n both authentication and encryption services. These services allow you to\n build secure tunnels through untrusted networks.\n\n A NULL pointer dereference flaw was found in the way Openswan's pluto IKE\n daemon handled certain error conditions. A remote, unauthenticated attacker\n could send a specially-crafted IKE packet that would crash the pluto\n daemon. (CVE-2011-3380)\n\n Red Hat would like to thank the Openswan project for reporting this issue.\n Upstream acknowledges Paul Wouters as the original reporter.\n\n All users of openswan are advised to upgrade to these updated packages,\n which contain a backported patch to correct this issue. After installing\n this update, the ipsec service will be restarted automatically.\";\n\ntag_affected = \"openswan on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html\");\n script_id(870717);\n script_version(\"$Revision: 8352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-01-10 08:01:57 +0100 (Wed, 10 Jan 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-09 10:52:49 +0530 (Mon, 09 Jul 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"RHSA\", value: \"2011:1356-01\");\n script_name(\"RedHat Update for openswan RHSA-2011:1356-01\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Red Hat Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "OPENVAS:863930", "hash": "54e4fe3748137c7cc9e69b855271243e", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for openswan FEDORA-2011-13825", "description": "Check for the Version of openswan", "published": "2012-04-02T00:00:00", "modified": "2017-12-28T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=863930", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html", "2011-13825"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-01-02T10:56:55", "history": [{"lastseen": "2017-07-25T10:50:44", "bulletin": {"id": "OPENVAS:863930", "hash": "c06d347fbdf3cf046ce2136086b596a6cab7ce44ed1826eadf9472e8e6911fb3", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for openswan FEDORA-2011-13825", "description": "Check for the Version of openswan", "published": "2012-04-02T00:00:00", "modified": "2017-07-10T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=863930", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html", "2011-13825"], "cvelist": ["CVE-2011-3380"], "lastseen": "2017-07-25T10:50:44", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.0, "modified": "2017-07-25T10:50:44"}}, "objectVersion": "1.4", "pluginID": "863930", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for openswan FEDORA-2011-13825\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of IPsec &amp; IKE for Linux. IPsec is\n the Internet Protocol Security and uses strong cryptography to provide\n both authentication and encryption services. These services allow you\n to build secure tunnels through untrusted networks. Everything passing\n through the untrusted net is encrypted by the ipsec gateway machine and\n decrypted by the gateway at the other end of the tunnel. The resulting\n tunnel is a virtual private network or VPN.\n\n This package contains the daemons and userland tools for setting up\n Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists\n in the default Linux kernel.\n\n Openswan 2.6.x also supports IKEv2 (RFC4306)\";\n\ntag_affected = \"openswan on Fedora 16\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html\");\n script_id(863930);\n script_version(\"$Revision: 6627 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-10 08:31:14 +0200 (Mon, 10 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:37:03 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-13825\");\n script_name(\"Fedora Update for openswan FEDORA-2011-13825\");\n\n script_summary(\"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 2}, {"lastseen": "2017-07-02T21:10:36", "bulletin": {"id": "OPENVAS:863930", "hash": "b0075a77513dd494b7cb1fe85966b88392fb8b0b4f1eff6b250b95480c369593", "type": "openvas", "bulletinFamily": "scanner", "title": "Fedora Update for openswan FEDORA-2011-13825", "description": "Check for the Version of openswan", "published": "2012-04-02T00:00:00", "modified": "2016-04-08T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=863930", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html", "2011-13825"], "cvelist": ["CVE-2011-3380"], "lastseen": "2017-07-02T21:10:36", "history": [], "viewCount": 0, "enchantments": {}, "objectVersion": "1.4", "pluginID": "863930", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for openswan FEDORA-2011-13825\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of IPsec &amp; IKE for Linux. IPsec is\n the Internet Protocol Security and uses strong cryptography to provide\n both authentication and encryption services. These services allow you\n to build secure tunnels through untrusted networks. Everything passing\n through the untrusted net is encrypted by the ipsec gateway machine and\n decrypted by the gateway at the other end of the tunnel. The resulting\n tunnel is a virtual private network or VPN.\n\n This package contains the daemons and userland tools for setting up\n Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists\n in the default Linux kernel.\n\n Openswan 2.6.x also supports IKEv2 (RFC4306)\";\n\ntag_affected = \"openswan on Fedora 16\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html\");\n script_id(863930);\n script_version(\"$Revision: 3015 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-04-08 12:17:13 +0200 (Fri, 08 Apr 2016) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:37:03 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-13825\");\n script_name(\"Fedora Update for openswan FEDORA-2011-13825\");\n\n script_summary(\"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"HostDetails/OS/cpe:/o:fedoraproject:fedora\", \"login/SSH/success\", \"ssh/login/release\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 1}], "viewCount": 0, "enchantments": {"score": {"value": 5.1, "vector": "NONE", "modified": "2018-01-02T10:56:55", "rev": 2}, "dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}], "modified": "2018-01-02T10:56:55", "rev": 2}}, "objectVersion": "1.5", "pluginID": "863930", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# Fedora Update for openswan FEDORA-2011-13825\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of IPsec &amp; IKE for Linux. IPsec is\n the Internet Protocol Security and uses strong cryptography to provide\n both authentication and encryption services. These services allow you\n to build secure tunnels through untrusted networks. Everything passing\n through the untrusted net is encrypted by the ipsec gateway machine and\n decrypted by the gateway at the other end of the tunnel. The resulting\n tunnel is a virtual private network or VPN.\n\n This package contains the daemons and userland tools for setting up\n Openswan. It supports the NETKEY/XFRM IPsec kernel stack that exists\n in the default Linux kernel.\n\n Openswan 2.6.x also supports IKEv2 (RFC4306)\";\n\ntag_affected = \"openswan on Fedora 16\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"http://lists.fedoraproject.org/pipermail/package-announce/2011-October/068085.html\");\n script_id(863930);\n script_version(\"$Revision: 8253 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-28 07:29:51 +0100 (Thu, 28 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2012-04-02 12:37:03 +0530 (Mon, 02 Apr 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"FEDORA\", value: \"2011-13825\");\n script_name(\"Fedora Update for openswan FEDORA-2011-13825\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Fedora Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/fedora\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"FC16\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.36~1.fc16\", rls:\"FC16\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Fedora Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}, {"id": "OPENVAS:1361412562310870717", "hash": "b2ee02465e99231b03877435afd89925", "type": "openvas", "bulletinFamily": "scanner", "title": "RedHat Update for openswan RHSA-2011:1356-01", "description": "The remote host is missing an update for the ", "published": "2012-07-09T00:00:00", "modified": "2018-11-23T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870717", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html", "2011:1356-01"], "cvelist": ["CVE-2011-3380"], "lastseen": "2019-05-29T18:38:32", "history": [{"bulletin": {"id": "OPENVAS:1361412562310870717", "hash": "82d3e25f7bcb3bfa494c34490c0613b32e575b82a7c25c144693e012441de03f", "type": "openvas", "bulletinFamily": "scanner", "title": "RedHat Update for openswan RHSA-2011:1356-01", "description": "Check for the Version of openswan", "published": "2012-07-09T00:00:00", "modified": "2018-11-16T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870717", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html", "2011:1356-01"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-11-16T13:01:31", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310870717", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for openswan RHSA-2011:1356-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ntag_insight = \"Openswan is a free implementation of Internet Protocol Security (IPsec)\n and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\n both authentication and encryption services. These services allow you to\n build secure tunnels through untrusted networks.\n\n A NULL pointer dereference flaw was found in the way Openswan's pluto IKE\n daemon handled certain error conditions. A remote, unauthenticated attacker\n could send a specially-crafted IKE packet that would crash the pluto\n daemon. (CVE-2011-3380)\n\n Red Hat would like to thank the Openswan project for reporting this issue.\n Upstream acknowledges Paul Wouters as the original reporter.\n\n All users of openswan are advised to upgrade to these updated packages,\n which contain a backported patch to correct this issue. After installing\n this update, the ipsec service will be restarted automatically.\";\n\ntag_affected = \"openswan on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870717\");\n script_version(\"$Revision: 12370 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-16 08:56:29 +0100 (Fri, 16 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-09 10:52:49 +0530 (Mon, 09 Jul 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"RHSA\", value: \"2011:1356-01\");\n script_name(\"RedHat Update for openswan RHSA-2011:1356-01\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_6\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Red Hat Local Security Checks"}, "differentElements": ["description", "sourceData"], "edition": 4, "lastseen": "2018-11-16T13:01:31"}, {"bulletin": {"id": "OPENVAS:1361412562310870717", "hash": "759e76dac757a460cc08bc501b5132e22eef8f963a9cebce6180442bab021745", "type": "openvas", "bulletinFamily": "scanner", "title": "RedHat Update for openswan RHSA-2011:1356-01", "description": "Check for the Version of openswan", "published": "2012-07-09T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870717", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html", "2011:1356-01"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-09-01T23:58:13", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310870717", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for openswan RHSA-2011:1356-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of Internet Protocol Security (IPsec)\n and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\n both authentication and encryption services. These services allow you to\n build secure tunnels through untrusted networks.\n\n A NULL pointer dereference flaw was found in the way Openswan's pluto IKE\n daemon handled certain error conditions. A remote, unauthenticated attacker\n could send a specially-crafted IKE packet that would crash the pluto\n daemon. (CVE-2011-3380)\n\n Red Hat would like to thank the Openswan project for reporting this issue.\n Upstream acknowledges Paul Wouters as the original reporter.\n\n All users of openswan are advised to upgrade to these updated packages,\n which contain a backported patch to correct this issue. After installing\n this update, the ipsec service will be restarted automatically.\";\n\ntag_affected = \"openswan on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870717\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-09 10:52:49 +0530 (Mon, 09 Jul 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"RHSA\", value: \"2011:1356-01\");\n script_name(\"RedHat Update for openswan RHSA-2011:1356-01\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Red Hat Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 3, "lastseen": "2018-09-01T23:58:13"}, {"bulletin": {"id": "OPENVAS:1361412562310870717", "hash": "252da4b28e2018ff9337b17dfd4d2b15e4f13079f15b26dd4c1b5b1adc35b3b9", "type": "openvas", "bulletinFamily": "scanner", "title": "RedHat Update for openswan RHSA-2011:1356-01", "description": "Check for the Version of openswan", "published": "2012-07-09T00:00:00", "modified": "2018-04-06T00:00:00", "cvss": {"score": 0.0, "vector": "NONE"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870717", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html", "2011:1356-01"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-08-30T19:25:22", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310870717", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for openswan RHSA-2011:1356-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Openswan is a free implementation of Internet Protocol Security (IPsec)\n and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\n both authentication and encryption services. These services allow you to\n build secure tunnels through untrusted networks.\n\n A NULL pointer dereference flaw was found in the way Openswan's pluto IKE\n daemon handled certain error conditions. A remote, unauthenticated attacker\n could send a specially-crafted IKE packet that would crash the pluto\n daemon. (CVE-2011-3380)\n\n Red Hat would like to thank the Openswan project for reporting this issue.\n Upstream acknowledges Paul Wouters as the original reporter.\n\n All users of openswan are advised to upgrade to these updated packages,\n which contain a backported patch to correct this issue. After installing\n this update, the ipsec service will be restarted automatically.\";\n\ntag_affected = \"openswan on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_xref(name : \"URL\" , value : \"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870717\");\n script_version(\"$Revision: 9352 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:13:02 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-09 10:52:49 +0530 (Mon, 09 Jul 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name: \"RHSA\", value: \"2011:1356-01\");\n script_name(\"RedHat Update for openswan RHSA-2011:1356-01\");\n\n script_tag(name: \"summary\" , value: \"Check for the Version of openswan\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\");\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "naslFamily": "Red Hat Local Security Checks"}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-08-30T19:25:22"}, {"bulletin": {"id": "OPENVAS:1361412562310870717", "hash": "899aeedfc03b6c596edafa57aa1682d79039bd479e22e704fddbd54b3433590f", "type": "openvas", "bulletinFamily": "scanner", "title": "RedHat Update for openswan RHSA-2011:1356-01", "description": "The remote host is missing an update for the ", "published": "2012-07-09T00:00:00", "modified": "2018-11-16T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870717", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html", "2011:1356-01"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-11-19T13:04:54", "history": [], "viewCount": 1, "enchantments": {"score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310870717", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for openswan RHSA-2011:1356-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\" , value:\"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870717\");\n script_version(\"$Revision: 12382 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-16 12:51:56 +0100 (Fri, 16 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-09 10:52:49 +0530 (Mon, 09 Jul 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name:\"RHSA\", value:\"2011:1356-01\");\n script_name(\"RedHat Update for openswan RHSA-2011:1356-01\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'openswan'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_6\");\n script_tag(name:\"affected\", value:\"openswan on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Openswan is a free implementation of Internet Protocol Security (IPsec)\n and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\n both authentication and encryption services. These services allow you to\n build secure tunnels through untrusted networks.\n\n A NULL pointer dereference flaw was found in the way Openswan's pluto IKE\n daemon handled certain error conditions. A remote, unauthenticated attacker\n could send a specially-crafted IKE packet that would crash the pluto\n daemon. (CVE-2011-3380)\n\n Red Hat would like to thank the Openswan project for reporting this issue.\n Upstream acknowledges Paul Wouters as the original reporter.\n\n All users of openswan are advised to upgrade to these updated packages,\n which contain a backported patch to correct this issue. After installing\n this update, the ipsec service will be restarted automatically.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Red Hat Local Security Checks"}, "differentElements": ["modified", "sourceData"], "edition": 5, "lastseen": "2018-11-19T13:04:54"}, {"bulletin": {"id": "OPENVAS:1361412562310870717", "hash": "7fca6527dbb0e24f829d7419bd863a1fd492dde80fffc2e02eae139c1811df78", "type": "openvas", "bulletinFamily": "scanner", "title": "RedHat Update for openswan RHSA-2011:1356-01", "description": "The remote host is missing an update for the ", "published": "2012-07-09T00:00:00", "modified": "2018-11-23T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "href": "http://plugins.openvas.org/nasl.php?oid=1361412562310870717", "reporter": "Copyright (c) 2012 Greenbone Networks GmbH", "references": ["https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html", "2011:1356-01"], "cvelist": ["CVE-2011-3380"], "lastseen": "2018-11-23T15:15:51", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2018-11-23T15:15:51", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"value": 7.5, "vector": "NONE"}}, "objectVersion": "1.4", "pluginID": "1361412562310870717", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for openswan RHSA-2011:1356-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870717\");\n script_version(\"$Revision: 12497 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-23 09:28:21 +0100 (Fri, 23 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-09 10:52:49 +0530 (Mon, 09 Jul 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name:\"RHSA\", value:\"2011:1356-01\");\n script_name(\"RedHat Update for openswan RHSA-2011:1356-01\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'openswan'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_6\");\n script_tag(name:\"affected\", value:\"openswan on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Openswan is a free implementation of Internet Protocol Security (IPsec)\n and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\n both authentication and encryption services. These services allow you to\n build secure tunnels through untrusted networks.\n\n A NULL pointer dereference flaw was found in the way Openswan's pluto IKE\n daemon handled certain error conditions. A remote, unauthenticated attacker\n could send a specially-crafted IKE packet that would crash the pluto\n daemon. (CVE-2011-3380)\n\n Red Hat would like to thank the Openswan project for reporting this issue.\n Upstream acknowledges Paul Wouters as the original reporter.\n\n All users of openswan are advised to upgrade to these updated packages,\n which contain a backported patch to correct this issue. After installing\n this update, the ipsec service will be restarted automatically.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Red Hat Local Security Checks"}, "differentElements": ["cvss"], "edition": 6, "lastseen": "2018-11-23T15:15:51"}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}], "modified": "2019-05-29T18:38:32", "rev": 2}, "score": {"value": 5.7, "vector": "NONE", "modified": "2019-05-29T18:38:32", "rev": 2}}, "objectVersion": "1.5", "pluginID": "1361412562310870717", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n#\n# RedHat Update for openswan RHSA-2011:1356-01\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2012 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\nif(description)\n{\n script_xref(name:\"URL\", value:\"https://www.redhat.com/archives/rhsa-announce/2011-October/msg00002.html\");\n script_oid(\"1.3.6.1.4.1.25623.1.0.870717\");\n script_version(\"$Revision: 12497 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-11-23 09:28:21 +0100 (Fri, 23 Nov 2018) $\");\n script_tag(name:\"creation_date\", value:\"2012-07-09 10:52:49 +0530 (Mon, 09 Jul 2012)\");\n script_cve_id(\"CVE-2011-3380\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_xref(name:\"RHSA\", value:\"2011:1356-01\");\n script_name(\"RedHat Update for openswan RHSA-2011:1356-01\");\n\n script_tag(name:\"summary\", value:\"The remote host is missing an update for the 'openswan'\n package(s) announced via the referenced advisory.\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (c) 2012 Greenbone Networks GmbH\");\n script_family(\"Red Hat Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/rhel\", \"ssh/login/rpms\", re:\"ssh/login/release=RHENT_6\");\n script_tag(name:\"affected\", value:\"openswan on Red Hat Enterprise Linux Desktop (v. 6),\n Red Hat Enterprise Linux Server (v. 6),\n Red Hat Enterprise Linux Workstation (v. 6)\");\n script_tag(name:\"solution\", value:\"Please Install the Updated Packages.\");\n script_tag(name:\"insight\", value:\"Openswan is a free implementation of Internet Protocol Security (IPsec)\n and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide\n both authentication and encryption services. These services allow you to\n build secure tunnels through untrusted networks.\n\n A NULL pointer dereference flaw was found in the way Openswan's pluto IKE\n daemon handled certain error conditions. A remote, unauthenticated attacker\n could send a specially-crafted IKE packet that would crash the pluto\n daemon. (CVE-2011-3380)\n\n Red Hat would like to thank the Openswan project for reporting this issue.\n Upstream acknowledges Paul Wouters as the original reporter.\n\n All users of openswan are advised to upgrade to these updated packages,\n which contain a backported patch to correct this issue. After installing\n this update, the ipsec service will be restarted automatically.\");\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n\n exit(0);\n}\n\ninclude(\"revisions-lib.inc\");\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = rpm_get_ssh_release();\nif(!release) exit(0);\n\nres = \"\";\n\nif(release == \"RHENT_6\")\n{\n\n if ((res = isrpmvuln(pkg:\"openswan\", rpm:\"openswan~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"openswan-debuginfo\", rpm:\"openswan-debuginfo~2.6.32~4.el6_1.2\", rls:\"RHENT_6\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99);\n exit(0);\n}\n", "naslFamily": "Red Hat Local Security Checks", "_object_type": "robots.models.openvas.OpenVASBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.openvas.OpenVASBulletin"], "immutableFields": [], "cvss2": {}, "cvss3": {}}], "nessus": [{"id": "ALA_ALAS-2011-06.NASL", "hash": "adb101c2b5e5c5b90bc9c3d012c9cf4d", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-06)", "description": "When an ISAKMP message with an invalid KEY_LENGTH attribute is received, the error handling function crashes on a NULL pointer dereference. Openswan automatically restarts the pluto IKE daemon but all ISAKMP state is lost. This vulnerability does NOT allow an attacker access to the system. This can be used to launch a denial of service attack by sending repeated IKE packets with the invalid key length attribute.", "published": "2013-09-04T00:00:00", "modified": "2015-01-30T00:00:00", "cvss": {"score": 5, "vector": "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/69565", "reporter": "This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-19T12:53:03", "history": [{"bulletin": {"id": "ALA_ALAS-2011-06.NASL", "hash": "e82fb76f690fb560beb26049ce9093a972a47d27e92346a7795f77a1d4a6f494", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-06)", "description": "When an ISAKMP message with an invalid KEY_LENGTH attribute is received, the error handling function crashes on a NULL pointer dereference. Openswan automatically restarts the pluto IKE daemon but all ISAKMP state is lost. This vulnerability does NOT allow an attacker access to the system. This can be used to launch a denial of service attack by sending repeated IKE packets with the invalid key length attribute.", "published": "2013-09-04T00:00:00", "modified": "2015-01-30T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=69565", "reporter": "Tenable", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2017-10-29T13:35:55", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "69565", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-06.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69565);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/01/30 14:43:52 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-06\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-06)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum upgrade openswan' to upgrade your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/AmazonLinux/release\")) audit(AUDIT_OS_NOT, \"Amazon Linux AMI\");\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2017-10-29T13:35:55", "differentElements": ["cvss", "description", "href", "modified", "reporter"], "edition": 1}, {"bulletin": {"id": "ALA_ALAS-2011-06.NASL", "hash": "b3449e5d6447b28ef6718daf21e88a1a9716cc9843463b2b4a28b16567a9f853", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-06)", "description": "When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.", "published": "2013-09-04T00:00:00", "modified": "2020-02-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/69565", "reporter": "This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-02-01T06:41:53", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"modified": "2020-02-01T06:41:53", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2020-02-01T06:41:53", "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "69565", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-06.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69565);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/01/30 14:43:52 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-06\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-06)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum upgrade openswan' to upgrade your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/AmazonLinux/release\")) audit(AUDIT_OS_NOT, \"Amazon Linux AMI\");\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-02-01T06:41:53", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "ALA_ALAS-2011-06.NASL", "hash": "79d8b70a079cce6f7fe7ab2c14e6a92414160d5ae6617931b7e8339d0d4d6181", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-06)", "description": "When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.", "published": "2013-09-04T00:00:00", "modified": "2020-10-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/69565", "reporter": "This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-10-01T05:11:26", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2020-10-01T05:11:26", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-10-01T05:11:26", "rev": 2, "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "69565", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-06.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69565);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/01/30 14:43:52 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-06\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-06)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum upgrade openswan' to upgrade your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/AmazonLinux/release\")) audit(AUDIT_OS_NOT, \"Amazon Linux AMI\");\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-10-01T05:11:26", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "ALA_ALAS-2011-06.NASL", "hash": "82bdb8b9a48a70b70f81298efd9d60a6a14dbc0eac783c60289e489668363549", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-06)", "description": "When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.", "published": "2013-09-04T00:00:00", "modified": "2021-02-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/69565", "reporter": "This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-02-01T01:19:47", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-02-01T01:19:47", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-02-01T01:19:47", "rev": 2, "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "69565", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-06.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69565);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/01/30 14:43:52 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-06\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-06)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum upgrade openswan' to upgrade your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/AmazonLinux/release\")) audit(AUDIT_OS_NOT, \"Amazon Linux AMI\");\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-02-01T01:19:47", "differentElements": ["cvss2", "modified"], "edition": 4}, {"bulletin": {"id": "ALA_ALAS-2011-06.NASL", "hash": "16f0a8159012c1aebe6c6997c9683e6438dff37b4fc972b7aa9727a78d8176c6", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-06)", "description": "When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.", "published": "2013-09-04T00:00:00", "modified": "2021-07-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/69565", "reporter": "This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-07-28T22:30:59", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-07-28T22:30:59", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-07-28T22:30:59", "rev": 2, "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "69565", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-06.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69565);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/01/30 14:43:52 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-06\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-06)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum upgrade openswan' to upgrade your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/AmazonLinux/release\")) audit(AUDIT_OS_NOT, \"Amazon Linux AMI\");\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T22:30:59", "differentElements": ["modified"], "edition": 5}, {"bulletin": {"id": "ALA_ALAS-2011-06.NASL", "hash": "0fe404e47751a9e53c45e9e1a2337d9e", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-06)", "description": "When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.", "published": "2013-09-04T00:00:00", "modified": "2021-08-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/69565", "reporter": "This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-01T06:32:36", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13864.NASL", "REDHAT-RHSA-2011-1356.NASL", "FEDORA_2011-13825.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "FEDORA_2011-13862.NASL"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310120516", "OPENVAS:1361412562310870717", "OPENVAS:863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310863930", "OPENVAS:870717"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:339592194E", "FEDORA:87910214F4", "FEDORA:5F046218F9"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}], "modified": "2021-08-01T06:32:36", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-08-01T06:32:36", "rev": 2}}, "objectVersion": "1.6", "pluginID": "69565", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-06.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69565);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/01/30 14:43:52 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-06\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-06)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum upgrade openswan' to upgrade your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/AmazonLinux/release\")) audit(AUDIT_OS_NOT, \"Amazon Linux AMI\");\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-01T06:32:36", "differentElements": ["cpe", "cvss", "cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "ALA_ALAS-2011-06.NASL", "hash": "2d52e0194c99503786bb50c052ac97df", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-06)", "description": "When an ISAKMP message with an invalid KEY_LENGTH attribute is received, the error handling function crashes on a NULL pointer dereference. Openswan automatically restarts the pluto IKE daemon but all ISAKMP state is lost. This vulnerability does NOT allow an attacker access to the system. This can be used to launch a denial of service attack by sending repeated IKE packets with the invalid key length attribute.", "published": "2013-09-04T00:00:00", "modified": "2015-01-30T00:00:00", "cvss": {"score": 5, "vector": "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/69565", "reporter": "This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt", "https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-11T14:18:40", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2021-08-11T14:18:40", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-08-11T14:18:40", "rev": 2}}, "objectVersion": "1.6", "pluginID": "69565", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-06.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69565);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/01/30 14:43:52 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-06\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-06)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum upgrade openswan' to upgrade your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/AmazonLinux/release\")) audit(AUDIT_OS_NOT, \"Amazon Linux AMI\");\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["cpe:2.3:o:amazon:linux:*:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan-debuginfo:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan-doc:*:*:*:*:*:*:*"], "solution": "Run 'yum upgrade openswan' to upgrade your system.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-10T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-11T14:18:40", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:715F922352", "FEDORA:5F046218F9"]}, {"type": "openvas", "idList": ["OPENVAS:870717", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310870717", "OPENVAS:863930"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "nessus", "idList": ["SL_20111005_OPENSWAN_ON_SL6_X.NASL", "ALA_ALAS-2011-6.NASL", "OPENSWAN_IKE_49984.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL"]}], "modified": "2021-08-19T12:53:03", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-08-19T12:53:03", "rev": 2}}, "objectVersion": "1.6", "pluginID": "69565", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-06.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(69565);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2015/01/30 14:43:52 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-06\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-06)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"When an ISAKMP message with an invalid KEY_LENGTH attribute is\nreceived, the error handling function crashes on a NULL pointer\ndereference. Openswan automatically restarts the pluto IKE daemon but\nall ISAKMP state is lost. This vulnerability does NOT allow an\nattacker access to the system. This can be used to launch a denial of\nservice attack by sending repeated IKE packets with the invalid key\nlength attribute.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.openswan.org/download/CVE-2011-3380/CVE-2011-3380.txt\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum upgrade openswan' to upgrade your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/09/04\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2015 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/AmazonLinux/release\")) audit(AUDIT_OS_NOT, \"Amazon Linux AMI\");\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["cpe:2.3:o:amazon:linux:*:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan-debuginfo:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan-doc:*:*:*:*:*:*:*"], "solution": "Run 'yum upgrade openswan' to upgrade your system.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-10T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "ALA_ALAS-2011-6.NASL", "hash": "8fa025de239dd446d650dc34c07b4b9e", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-6)", "description": "A NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon.", "published": "2014-10-12T00:00:00", "modified": "2018-04-18T00:00:00", "cvss": {"score": 5, "vector": "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/78267", "reporter": "This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-19T12:48:15", "history": [{"bulletin": {"id": "ALA_ALAS-2011-6.NASL", "hash": "3560784516ae38ee0303d665318f29245e96024f26d844dbd9ed03dd9ede70e7", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-6)", "description": "A NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon.", "published": "2014-10-12T00:00:00", "modified": "2018-04-18T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=78267", "reporter": "Tenable", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2018-09-01T23:58:54", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78267", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-6.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78267);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/04/18 15:09:34\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-6\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-6)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update openswan' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-09-01T23:58:54", "differentElements": ["cvss", "description", "href", "modified", "reporter"], "edition": 1}, {"bulletin": {"id": "ALA_ALAS-2011-6.NASL", "hash": "875678c3f6c9a75051da57d556888c9f769f25a75ef876a5e31d3cf242a5560c", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-6)", "description": "A NULL pointer dereference flaw was found in the way Openswan", "published": "2014-10-12T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78267", "reporter": "This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2019-12-13T06:38:53", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-12-13T06:38:53", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2019-12-13T06:38:53", "value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78267", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-6.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78267);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/04/18 15:09:34\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-6\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-6)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update openswan' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T06:38:53", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "ALA_ALAS-2011-6.NASL", "hash": "93981f333f5f09aa3cddcd3b53783350269c7914ce10789b070cf5cc65fbb827", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-6)", "description": "A NULL pointer dereference flaw was found in the way Openswan", "published": "2014-10-12T00:00:00", "modified": "2020-06-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78267", "reporter": "This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-06-01T01:01:07", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-06-01T01:01:07", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-06-01T01:01:07", "rev": 2, "value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78267", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-6.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78267);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/04/18 15:09:34\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-6\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-6)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update openswan' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-06-01T01:01:07", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "ALA_ALAS-2011-6.NASL", "hash": "74fd627f39b9b63a93582317550aedcd2625ed70cda1884cba496c2ca74ccffb", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-6)", "description": "A NULL pointer dereference flaw was found in the way Openswan", "published": "2014-10-12T00:00:00", "modified": "2020-09-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78267", "reporter": "This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-09-04T01:09:28", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-09-04T01:09:28", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-09-04T01:09:28", "rev": 2, "value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78267", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-6.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78267);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/04/18 15:09:34\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-6\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-6)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update openswan' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-09-04T01:09:28", "differentElements": ["cvss2", "description", "modified"], "edition": 4}, {"bulletin": {"id": "ALA_ALAS-2011-6.NASL", "hash": "9f0738f4e5823bc6bd132eb4996ea13a4a8435e2b0cc286ed4869fa407d48d86", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-6)", "description": "A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.", "published": "2014-10-12T00:00:00", "modified": "2021-07-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78267", "reporter": "This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-07-28T22:31:05", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2021-07-28T22:31:05", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-07-28T22:31:05", "rev": 2, "value": 5.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "78267", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-6.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78267);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/04/18 15:09:34\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-6\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-6)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update openswan' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-28T22:31:05", "differentElements": ["modified"], "edition": 5}, {"bulletin": {"id": "ALA_ALAS-2011-6.NASL", "hash": "74d45aa44e097ecb8b1430646e8bb30c", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-6)", "description": "A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.", "published": "2014-10-12T00:00:00", "modified": "2021-08-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/78267", "reporter": "This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.", "references": ["https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-01T06:32:44", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310120516", "OPENVAS:1361412562310870717", "OPENVAS:863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310863930", "OPENVAS:870717"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "FEDORA_2011-13864.NASL", "REDHAT-RHSA-2011-1356.NASL", "FEDORA_2011-13825.NASL", "ALA_ALAS-2011-06.NASL", "FEDORA_2011-13862.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "ORACLELINUX_ELSA-2011-1356.NASL"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:339592194E", "FEDORA:87910214F4", "FEDORA:5F046218F9"]}], "modified": "2021-08-01T06:32:44", "rev": 2}, "score": {"value": 5.2, "vector": "NONE", "modified": "2021-08-01T06:32:44", "rev": 2}}, "objectVersion": "1.6", "pluginID": "78267", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-6.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78267);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/04/18 15:09:34\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-6\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-6)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update openswan' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["p-cpe:/a:amazon:linux:openswan-doc", "p-cpe:/a:amazon:linux:openswan", "p-cpe:/a:amazon:linux:openswan-debuginfo", "cpe:/o:amazon:linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-01T06:32:44", "differentElements": ["cpe", "cvss", "cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "ALA_ALAS-2011-6.NASL", "hash": "e88db7eb69cbad4c416cd75c601375e5", "type": "nessus", "bulletinFamily": "scanner", "title": "Amazon Linux AMI : openswan (ALAS-2011-6)", "description": "A NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon.", "published": "2014-10-12T00:00:00", "modified": "2018-04-18T00:00:00", "cvss": {"score": 5, "vector": "CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/78267", "reporter": "This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "https://alas.aws.amazon.com/ALAS-2011-6.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-11T14:12:31", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2021-08-11T14:12:31", "rev": 2}, "score": {"value": 5.2, "vector": "NONE", "modified": "2021-08-11T14:12:31", "rev": 2}}, "objectVersion": "1.6", "pluginID": "78267", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-6.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78267);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/04/18 15:09:34\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-6\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-6)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update openswan' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["cpe:2.3:o:amazon:linux:*:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan-debuginfo:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan-doc:*:*:*:*:*:*:*"], "solution": "Run 'yum update openswan' to update your system.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-10T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-11T14:12:31", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 0, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:715F922352", "FEDORA:5F046218F9"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310120516", "OPENVAS:1361412562310122077", "OPENVAS:863930", "OPENVAS:1361412562310870717", "OPENVAS:1361412562310863930", "OPENVAS:870717"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "nessus", "idList": ["ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}], "modified": "2021-08-19T12:48:15", "rev": 2}, "score": {"value": 5.2, "vector": "NONE", "modified": "2021-08-19T12:48:15", "rev": 2}}, "objectVersion": "1.6", "pluginID": "78267", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Amazon Linux AMI Security Advisory ALAS-2011-6.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(78267);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/04/18 15:09:34\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"ALAS\", value:\"2011-6\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Amazon Linux AMI : openswan (ALAS-2011-6)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Amazon Linux AMI host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://alas.aws.amazon.com/ALAS-2011-6.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Run 'yum update openswan' to update your system.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:amazon:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:amazon:linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/10\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2014/10/12\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2014-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Amazon Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/AmazonLinux/release\", \"Host/AmazonLinux/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\n\nrelease = get_kb_item(\"Host/AmazonLinux/release\");\nif (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, \"Amazon Linux\");\nos_ver = pregmatch(pattern: \"^AL(A|\\d)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Amazon Linux\");\nos_ver = os_ver[1];\nif (os_ver != \"A\")\n{\n if (os_ver == 'A') os_ver = 'AMI';\n audit(AUDIT_OS_NOT, \"Amazon Linux AMI\", \"Amazon Linux \" + os_ver);\n}\n\nif (!get_kb_item(\"Host/AmazonLinux/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (rpm_check(release:\"ALA\", reference:\"openswan-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-debuginfo-2.6.36-1.12.amzn1\")) flag++;\nif (rpm_check(release:\"ALA\", reference:\"openswan-doc-2.6.36-1.12.amzn1\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n}\n", "naslFamily": "Amazon Linux Local Security Checks", "cpe": ["cpe:2.3:o:amazon:linux:*:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan-debuginfo:*:*:*:*:*:*:*", "p-cpe:2.3:a:amazon:linux:openswan-doc:*:*:*:*:*:*:*"], "solution": "Run 'yum update openswan' to update your system.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-10T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "ORACLELINUX_ELSA-2011-1356.NASL", "hash": "68a50ed04069646ae57085076bf0982c", "type": "nessus", "bulletinFamily": "scanner", "title": "Oracle Linux 6 : openswan (ELSA-2011-1356)", "description": "From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this issue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted automatically.", "published": "2013-07-12T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/68365", "reporter": "This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-19T12:54:31", "history": [{"bulletin": {"id": "ORACLELINUX_ELSA-2011-1356.NASL", "hash": "f066c4b7c45ae386433ee5031fdf78fd486a41b0721aad6509cc4007e40fc258", "type": "nessus", "bulletinFamily": "scanner", "title": "Oracle Linux 6 : openswan (ELSA-2011-1356)", "description": "From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan", "published": "2013-07-12T00:00:00", "modified": "2020-02-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/68365", "reporter": "This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-02-01T01:31:13", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-02-01T01:31:13", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2020-02-01T01:31:13", "value": 4.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "68365", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1356 and \n# Oracle Linux Security Advisory ELSA-2011-1356 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68365);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2019/10/25 13:36:09\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Oracle Linux 6 : openswan (ELSA-2011-1356)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected openswan packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-doc\");\n}\n", "naslFamily": "Oracle Linux Local Security Checks", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:openswan", "p-cpe:/a:oracle:linux:openswan-doc"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-02-01T01:31:13", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "ORACLELINUX_ELSA-2011-1356.NASL", "hash": "08e702a41a8431a95686c3cbd45ea9cf53bcad110608d152920e4710b2b77f20", "type": "nessus", "bulletinFamily": "scanner", "title": "Oracle Linux 6 : openswan (ELSA-2011-1356)", "description": "From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan", "published": "2013-07-12T00:00:00", "modified": "2020-03-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/68365", "reporter": "This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-03-18T02:11:28", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-03-18T02:11:28", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2020-03-18T02:11:28", "value": 4.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "68365", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1356 and \n# Oracle Linux Security Advisory ELSA-2011-1356 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68365);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2019/10/25 13:36:09\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Oracle Linux 6 : openswan (ELSA-2011-1356)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected openswan packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-doc\");\n}\n", "naslFamily": "Oracle Linux Local Security Checks", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:openswan", "p-cpe:/a:oracle:linux:openswan-doc"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-03-18T02:11:28", "differentElements": ["modified"], "edition": 2}, {"bulletin": {"id": "ORACLELINUX_ELSA-2011-1356.NASL", "hash": "4fb8efb4f37516f785acec5a22d9d684ddf12fb90c5ca4a48ae2e4f822354f60", "type": "nessus", "bulletinFamily": "scanner", "title": "Oracle Linux 6 : openswan (ELSA-2011-1356)", "description": "From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan", "published": "2013-07-12T00:00:00", "modified": "2020-06-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/68365", "reporter": "This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-06-01T03:37:26", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-06-01T03:37:26", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-06-01T03:37:26", "rev": 2, "value": 4.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "68365", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1356 and \n# Oracle Linux Security Advisory ELSA-2011-1356 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68365);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2019/10/25 13:36:09\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Oracle Linux 6 : openswan (ELSA-2011-1356)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected openswan packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-doc\");\n}\n", "naslFamily": "Oracle Linux Local Security Checks", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:openswan", "p-cpe:/a:oracle:linux:openswan-doc"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-06-01T03:37:26", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "ORACLELINUX_ELSA-2011-1356.NASL", "hash": "1b8833b394e6636db99f9b9f35a645d4a176eb222d81f0a15c5b10296794d557", "type": "nessus", "bulletinFamily": "scanner", "title": "Oracle Linux 6 : openswan (ELSA-2011-1356)", "description": "From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan", "published": "2013-07-12T00:00:00", "modified": "2020-09-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/68365", "reporter": "This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-09-04T04:37:37", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-09-04T04:37:37", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-09-04T04:37:37", "rev": 2, "value": 4.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "68365", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1356 and \n# Oracle Linux Security Advisory ELSA-2011-1356 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(68365);\n script_version(\"1.7\");\n script_cvs_date(\"Date: 2019/10/25 13:36:09\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Oracle Linux 6 : openswan (ELSA-2011-1356)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected openswan packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-doc\");\n}\n", "naslFamily": "Oracle Linux Local Security Checks", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:openswan", "p-cpe:/a:oracle:linux:openswan-doc"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-09-04T04:37:37", "differentElements": ["description", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "ORACLELINUX_ELSA-2011-1356.NASL", "hash": "315aeacfb5ed6affb57e8715271fe53f02eabacc05c8e895013cecc2acd99c86", "type": "nessus", "bulletinFamily": "scanner", "title": "Oracle Linux 6 : openswan (ELSA-2011-1356)", "description": "From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.", "published": "2013-07-12T00:00:00", "modified": "2013-07-12T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/68365", "reporter": "This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-01-17T12:46:16", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2021-01-17T12:46:16", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-01-17T12:46:16", "rev": 2, "value": 4.9, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "68365", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1356 and \n# Oracle Linux Security Advisory ELSA-2011-1356 respectively.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(68365);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Oracle Linux 6 : openswan (ELSA-2011-1356)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected openswan packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-doc\");\n}\n", "naslFamily": "Oracle Linux Local Security Checks", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:openswan", "p-cpe:/a:oracle:linux:openswan-doc"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-17T12:46:16", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "ORACLELINUX_ELSA-2011-1356.NASL", "hash": "b4d293aa9001b95f08c9d9cd0e2135b7", "type": "nessus", "bulletinFamily": "scanner", "title": "Oracle Linux 6 : openswan (ELSA-2011-1356)", "description": "From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.", "published": "2013-07-12T00:00:00", "modified": "2013-07-12T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/68365", "reporter": "This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-07-29T02:24:09", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930", "OPENVAS:1361412562310870717", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310120516"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:5F046218F9", "FEDORA:B01DF20F64", "FEDORA:339592194E", "FEDORA:715F922352", "FEDORA:87910214F4"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "nessus", "idList": ["ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "FEDORA_2011-13864.NASL", "ALA_ALAS-2011-06.NASL", "OPENSWAN_IKE_49984.NASL", "FEDORA_2011-13825.NASL", "REDHAT-RHSA-2011-1356.NASL"]}], "modified": "2021-07-29T02:24:09", "rev": 2}, "score": {"value": 4.9, "vector": "NONE", "modified": "2021-07-29T02:24:09", "rev": 2}}, "objectVersion": "1.6", "pluginID": "68365", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1356 and \n# Oracle Linux Security Advisory ELSA-2011-1356 respectively.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(68365);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Oracle Linux 6 : openswan (ELSA-2011-1356)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected openswan packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-doc\");\n}\n", "naslFamily": "Oracle Linux Local Security Checks", "cpe": ["cpe:/o:oracle:linux:6", "p-cpe:/a:oracle:linux:openswan", "p-cpe:/a:oracle:linux:openswan-doc"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T02:24:09", "differentElements": ["cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "ORACLELINUX_ELSA-2011-1356.NASL", "hash": "13c723ba6a520008a53226e9db19cb63", "type": "nessus", "bulletinFamily": "scanner", "title": "Oracle Linux 6 : openswan (ELSA-2011-1356)", "description": "From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this issue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted automatically.", "published": "2013-07-12T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/68365", "reporter": "This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-11T13:33:54", "history": [], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2021-08-11T13:33:54", "rev": 2}, "score": {"value": 4.9, "vector": "NONE", "modified": "2021-08-11T13:33:54", "rev": 2}}, "objectVersion": "1.6", "pluginID": "68365", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1356 and \n# Oracle Linux Security Advisory ELSA-2011-1356 respectively.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(68365);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Oracle Linux 6 : openswan (ELSA-2011-1356)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected openswan packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-doc\");\n}\n", "naslFamily": "Oracle Linux Local Security Checks", "cpe": ["p-cpe:/a:oracle:linux:openswan", "p-cpe:/a:oracle:linux:openswan-doc", "cpe:/o:oracle:linux:6"], "solution": "Update the affected openswan packages.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-05T00:00:00", "vulnerabilityPublicationDate": "2011-11-17T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-11T13:33:54", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 1, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:715F922352", "FEDORA:5F046218F9"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310120516", "OPENVAS:1361412562310122077", "OPENVAS:863930", "OPENVAS:1361412562310870717", "OPENVAS:1361412562310863930", "OPENVAS:870717"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "nessus", "idList": ["ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "OPENSWAN_IKE_49984.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}], "modified": "2021-08-19T12:54:31", "rev": 2}, "score": {"value": 4.9, "vector": "NONE", "modified": "2021-08-19T12:54:31", "rev": 2}}, "objectVersion": "1.6", "pluginID": "68365", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2011:1356 and \n# Oracle Linux Security Advisory ELSA-2011-1356 respectively.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(68365);\n script_version(\"1.8\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"Oracle Linux 6 : openswan (ELSA-2011-1356)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2011:1356 :\n\nUpdated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2011-October/002389.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected openswan packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:6\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = pregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 6\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"EL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-doc\");\n}\n", "naslFamily": "Oracle Linux Local Security Checks", "cpe": ["p-cpe:/a:oracle:linux:openswan", "p-cpe:/a:oracle:linux:openswan-doc", "cpe:/o:oracle:linux:6"], "solution": "Update the affected openswan packages.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-05T00:00:00", "vulnerabilityPublicationDate": "2011-11-17T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "REDHAT-RHSA-2011-1356.NASL", "hash": "43d562c23b7c849251e2bbf604ebec7f", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 6 : openswan (RHSA-2011:1356)", "description": "Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this issue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted automatically.", "published": "2011-10-06T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/56405", "reporter": "This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/errata/RHSA-2011:1356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "https://access.redhat.com/security/cve/cve-2011-3380"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-19T12:59:45", "history": [{"bulletin": {"id": "REDHAT-RHSA-2011-1356.NASL", "hash": "18a23fd5d5bf8a316110c68bf4bda3bd145f42a3836a8e94fbc3d48ef2d04188", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 6 : openswan (RHSA-2011:1356)", "description": "Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this issue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted automatically.", "published": "2011-10-06T00:00:00", "modified": "2017-01-04T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=56405", "reporter": "Tenable", "references": ["https://www.redhat.com/security/data/cve/CVE-2011-3380.html", "http://rhn.redhat.com/errata/RHSA-2011-1356.html"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2018-09-01T23:56:19", "history": [], "viewCount": 3, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "56405", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1356. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56405);\n script_version (\"$Revision: 1.10 $\");\n script_cvs_date(\"$Date: 2017/01/04 16:12:16 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"RHEL 6 : openswan (RHSA-2011:1356)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://www.redhat.com/security/data/cve/CVE-2011-3380.html\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://rhn.redhat.com/errata/RHSA-2011-1356.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/06\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2017 Tenable Network Security, Inc.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1356\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:6.1", "p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo", "p-cpe:/a:redhat:enterprise_linux:openswan", "p-cpe:/a:redhat:enterprise_linux:openswan-doc", "cpe:/o:redhat:enterprise_linux:6"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-09-01T23:56:19", "differentElements": ["modified", "references", "sourceData"], "edition": 1}, {"bulletin": {"id": "REDHAT-RHSA-2011-1356.NASL", "hash": "7a868bb869f382b3c6b083a4d21144a12abb4fae4480dc1301d57c79cb967cb1", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 6 : openswan (RHSA-2011:1356)", "description": "Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this issue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted automatically.", "published": "2011-10-06T00:00:00", "modified": "2018-11-26T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=56405", "reporter": "Tenable", "references": ["https://access.redhat.com/security/cve/cve-2011-3380", "https://access.redhat.com/errata/RHSA-2011:1356"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2019-02-21T01:15:26", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2019-02-21T01:15:26", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2019-02-21T01:15:26", "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "56405", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1356. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56405);\n script_version (\"1.12\");\n script_cvs_date(\"Date: 2018/11/26 11:02:15\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"RHEL 6 : openswan (RHSA-2011:1356)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3380\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1356\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/06\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1356\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:6.1", "p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo", "p-cpe:/a:redhat:enterprise_linux:openswan", "p-cpe:/a:redhat:enterprise_linux:openswan-doc", "cpe:/o:redhat:enterprise_linux:6"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-02-21T01:15:26", "differentElements": ["cvss", "description", "href", "modified", "reporter", "sourceData"], "edition": 2}, {"bulletin": {"id": "REDHAT-RHSA-2011-1356.NASL", "hash": "08138f0c37cbb96113cc7792e1f8d1d7b7a98865891b55c342198010f2785b2f", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 6 : openswan (RHSA-2011:1356)", "description": "Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan", "published": "2011-10-06T00:00:00", "modified": "2020-06-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/56405", "reporter": "This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/security/cve/cve-2011-3380", "https://access.redhat.com/errata/RHSA-2011:1356"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-06-01T03:48:09", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2020-06-01T03:48:09", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-06-01T03:48:09", "rev": 2, "value": 5.2, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "56405", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1356. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56405);\n script_version (\"1.15\");\n script_cvs_date(\"Date: 2019/10/25 13:36:16\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"RHEL 6 : openswan (RHSA-2011:1356)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3380\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1356\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1356\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:6.1", "p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo", "p-cpe:/a:redhat:enterprise_linux:openswan", "p-cpe:/a:redhat:enterprise_linux:openswan-doc", "cpe:/o:redhat:enterprise_linux:6"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-06-01T03:48:09", "differentElements": ["description", "modified"], "edition": 3}, {"bulletin": {"id": "REDHAT-RHSA-2011-1356.NASL", "hash": "b6f9d8d0363a855dc10ec00d273929deb36f00c2f8fc0ff5839c725a37760a03", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 6 : openswan (RHSA-2011:1356)", "description": "Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.", "published": "2011-10-06T00:00:00", "modified": "2021-01-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/56405", "reporter": "This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/security/cve/cve-2011-3380", "https://access.redhat.com/errata/RHSA-2011:1356"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-01-01T04:59:49", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2021-01-01T04:59:49", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-01-01T04:59:49", "rev": 2, "value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "56405", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1356. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(56405);\n script_version (\"1.15\");\n script_cvs_date(\"Date: 2019/10/25 13:36:16\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"RHEL 6 : openswan (RHSA-2011:1356)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3380\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1356\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1356\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:6.1", "p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo", "p-cpe:/a:redhat:enterprise_linux:openswan", "p-cpe:/a:redhat:enterprise_linux:openswan-doc", "cpe:/o:redhat:enterprise_linux:6"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-01T04:59:49", "differentElements": ["modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "REDHAT-RHSA-2011-1356.NASL", "hash": "c89dce6b2694dfc76742d8b2a07b76a647c0d42c58b93ce6c56aaf12fde619aa", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 6 : openswan (RHSA-2011:1356)", "description": "Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.", "published": "2011-10-06T00:00:00", "modified": "2011-10-06T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/56405", "reporter": "This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/security/cve/cve-2011-3380", "https://access.redhat.com/errata/RHSA-2011:1356"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-01-17T13:09:50", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"modified": "2021-01-17T13:09:50", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-01-17T13:09:50", "rev": 2, "value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "56405", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1356. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(56405);\n script_version(\"1.16\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"RHEL 6 : openswan (RHSA-2011:1356)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3380\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1356\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1356\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:6.1", "p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo", "p-cpe:/a:redhat:enterprise_linux:openswan", "p-cpe:/a:redhat:enterprise_linux:openswan-doc", "cpe:/o:redhat:enterprise_linux:6"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-17T13:09:50", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "REDHAT-RHSA-2011-1356.NASL", "hash": "3afd2e85495fbb5eee9dd409d8a0c1ff", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 6 : openswan (RHSA-2011:1356)", "description": "Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.", "published": "2011-10-06T00:00:00", "modified": "2011-10-06T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/56405", "reporter": "This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/security/cve/cve-2011-3380", "https://access.redhat.com/errata/RHSA-2011:1356"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-07-29T02:53:45", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310863930", "OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:863930", "OPENVAS:1361412562310122077", "OPENVAS:870717"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "nessus", "idList": ["FEDORA_2011-13825.NASL", "ALA_ALAS-2011-06.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "FEDORA_2011-13862.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13864.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:5F046218F9", "FEDORA:339592194E", "FEDORA:87910214F4", "FEDORA:715F922352", "FEDORA:B01DF20F64"]}], "modified": "2021-07-29T02:53:45", "rev": 2}, "score": {"value": 5.0, "vector": "NONE", "modified": "2021-07-29T02:53:45", "rev": 2}}, "objectVersion": "1.6", "pluginID": "56405", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1356. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(56405);\n script_version(\"1.16\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"RHEL 6 : openswan (RHSA-2011:1356)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3380\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1356\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1356\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["cpe:/o:redhat:enterprise_linux:6.1", "p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo", "p-cpe:/a:redhat:enterprise_linux:openswan", "p-cpe:/a:redhat:enterprise_linux:openswan-doc", "cpe:/o:redhat:enterprise_linux:6"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T02:53:45", "differentElements": ["cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "REDHAT-RHSA-2011-1356.NASL", "hash": "04b392321ed52536964555731105b483", "type": "nessus", "bulletinFamily": "scanner", "title": "RHEL 6 : openswan (RHSA-2011:1356)", "description": "Updated openswan packages that fix one security issue are now available for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this issue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted automatically.", "published": "2011-10-06T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/56405", "reporter": "This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://access.redhat.com/errata/RHSA-2011:1356", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "https://access.redhat.com/security/cve/cve-2011-3380"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-11T14:27:31", "history": [], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2021-08-11T14:27:31", "rev": 2}, "score": {"value": 5.0, "vector": "NONE", "modified": "2021-08-11T14:27:31", "rev": 2}}, "objectVersion": "1.6", "pluginID": "56405", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1356. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(56405);\n script_version(\"1.16\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"RHEL 6 : openswan (RHSA-2011:1356)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3380\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1356\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1356\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["p-cpe:/a:redhat:enterprise_linux:openswan", "p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo", "p-cpe:/a:redhat:enterprise_linux:openswan-doc", "cpe:/o:redhat:enterprise_linux:6", "cpe:/o:redhat:enterprise_linux:6.1"], "solution": "Update the affected openswan, openswan-debuginfo and / or openswan-doc packages.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-05T00:00:00", "vulnerabilityPublicationDate": "2011-11-17T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-11T14:27:31", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 3, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:339592194E", "FEDORA:87910214F4", "FEDORA:5F046218F9", "FEDORA:B01DF20F64", "FEDORA:715F922352"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:1361412562310870717", "OPENVAS:863930"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "nessus", "idList": ["ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "ORACLELINUX_ELSA-2011-1356.NASL"]}], "modified": "2021-08-19T12:59:45", "rev": 2}, "score": {"value": 5.0, "vector": "NONE", "modified": "2021-08-19T12:59:45", "rev": 2}}, "objectVersion": "1.6", "pluginID": "56405", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2011:1356. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(56405);\n script_version(\"1.16\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_xref(name:\"RHSA\", value:\"2011:1356\");\n\n script_name(english:\"RHEL 6 : openswan (RHSA-2011:1356)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated openswan packages that fix one security issue are now\navailable for Red Hat Enterprise Linux 6.\n\nThe Red Hat Security Response Team has rated this update as having\nmoderate security impact. A Common Vulnerability Scoring System (CVSS)\nbase score, which gives a detailed severity rating, is available from\nthe CVE link in the References section.\n\nOpenswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nRed Hat would like to thank the Openswan project for reporting this\nissue. Upstream acknowledges Paul Wouters as the original reporter.\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2011-3380\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2011:1356\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:openswan-doc\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:6.1\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/11/17\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2011/10/06\");\n script_set_attribute(attribute:\"generated_plugin\", value:\"current\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = pregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! preg(pattern:\"^6([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 6.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2011:1356\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"i686\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"s390x\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n if (rpm_check(release:\"RHEL6\", cpu:\"x86_64\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"openswan / openswan-debuginfo / openswan-doc\");\n }\n}\n", "naslFamily": "Red Hat Local Security Checks", "cpe": ["p-cpe:/a:redhat:enterprise_linux:openswan", "p-cpe:/a:redhat:enterprise_linux:openswan-debuginfo", "p-cpe:/a:redhat:enterprise_linux:openswan-doc", "cpe:/o:redhat:enterprise_linux:6", "cpe:/o:redhat:enterprise_linux:6.1"], "solution": "Update the affected openswan, openswan-debuginfo and / or openswan-doc packages.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-05T00:00:00", "vulnerabilityPublicationDate": "2011-11-17T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "hash": "c629657c41f0d2677881b92fced47329", "type": "nessus", "bulletinFamily": "scanner", "title": "Scientific Linux Security Update : openswan on SL6.x i386/x86_64", "description": "Openswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted automatically.", "published": "2012-08-01T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/61149", "reporter": "This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "http://www.nessus.org/u?5d6b1f6d"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-19T12:57:25", "history": [{"bulletin": {"id": "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "hash": "232debdb7c8dc42b96bd3b3b65e32828924a7730ccb03c7b737046ddfc857f15", "type": "nessus", "bulletinFamily": "scanner", "title": "Scientific Linux Security Update : openswan on SL6.x i386/x86_64", "description": "Openswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted automatically.", "published": "2012-08-01T00:00:00", "modified": "2014-08-16T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61149", "reporter": "Tenable", "references": ["http://www.nessus.org/u?9d45a9f0"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2018-09-02T00:08:02", "history": [], "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "61149", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61149);\n script_version(\"$Revision: 1.2 $\");\n script_cvs_date(\"$Date: 2014/08/16 19:47:27 $\");\n\n script_cve_id(\"CVE-2011-3380\");\n\n script_name(english:\"Scientific Linux Security Update : openswan on SL6.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n # http://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=569\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?9d45a9f0\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2014 Tenable Network Security, Inc.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Scientific Linux Local Security Checks", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2018-09-02T00:08:02", "differentElements": ["description", "modified", "references", "sourceData"], "edition": 1}, {"bulletin": {"id": "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "hash": "db60d6c3adbb4033bd0caf8e1ac216ab3d918aea974052fe1ea9f8d7572cd81b", "type": "nessus", "bulletinFamily": "scanner", "title": "Scientific Linux Security Update : openswan on SL6.x i386/x86_64", "description": "Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.", "published": "2012-08-01T00:00:00", "modified": "2018-12-31T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:NONE/A:PARTIAL/"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/index.php?view=single&id=61149", "reporter": "Tenable", "references": ["http://www.nessus.org/u?5d6b1f6d"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2019-01-16T20:14:27", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-01-16T20:14:27", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL"], "type": "nessus"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"value": 5.0, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "61149", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61149);\n script_version(\"1.3\");\n script_cvs_date(\"Date: 2018/12/31 11:35:00\");\n\n script_cve_id(\"CVE-2011-3380\");\n\n script_name(english:\"Scientific Linux Security Update : openswan on SL6.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=569\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5d6b1f6d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Scientific Linux Local Security Checks", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-01-16T20:14:27", "differentElements": ["cvss", "description", "href", "modified", "reporter", "sourceData"], "edition": 2}, {"bulletin": {"id": "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "hash": "f04c093f12b43d7dc3cbdd394b63ec151f76e97fed30819c153a19f381991216", "type": "nessus", "bulletinFamily": "scanner", "title": "Scientific Linux Security Update : openswan on SL6.x i386/x86_64", "description": "Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan", "published": "2012-08-01T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/61149", "reporter": "This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?5d6b1f6d"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2019-12-13T09:13:10", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2019-12-13T09:13:10", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2019-12-13T09:13:10", "value": 4.8, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "61149", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61149);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2019/10/25 13:36:20\");\n\n script_cve_id(\"CVE-2011-3380\");\n\n script_name(english:\"Scientific Linux Security Update : openswan on SL6.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=569\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5d6b1f6d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Scientific Linux Local Security Checks", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T09:13:10", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "hash": "575afec6025068551ebdffa0107f740ec97aa09736551044bfb3cfe601f7888b", "type": "nessus", "bulletinFamily": "scanner", "title": "Scientific Linux Security Update : openswan on SL6.x i386/x86_64", "description": "Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan", "published": "2012-08-01T00:00:00", "modified": "2020-08-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/61149", "reporter": "This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?5d6b1f6d"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-08-01T04:51:41", "history": [], "viewCount": 0, "enchantments": {"dependencies": {"modified": "2020-08-01T04:51:41", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-08-01T04:51:41", "rev": 2, "value": 4.8, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "61149", "sourceData": "#%NASL_MIN_LEVEL 80502\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(61149);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2019/10/25 13:36:20\");\n\n script_cve_id(\"CVE-2011-3380\");\n\n script_name(english:\"Scientific Linux Security Update : openswan on SL6.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=569\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5d6b1f6d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Scientific Linux Local Security Checks", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-08-01T04:51:41", "differentElements": ["description", "modified", "reporter", "sourceData"], "edition": 4}, {"bulletin": {"id": "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "hash": "32b6211913fa4385b24a8b6ecb01ff4a83b93e4ab1cdb2c215df9b718cf02be1", "type": "nessus", "bulletinFamily": "scanner", "title": "Scientific Linux Security Update : openswan on SL6.x i386/x86_64", "description": "Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.", "published": "2012-08-01T00:00:00", "modified": "2012-08-01T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/61149", "reporter": "This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?5d6b1f6d"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-01-17T13:46:04", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"modified": "2021-01-17T13:46:04", "references": [{"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL"], "type": "nessus"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-01-17T13:46:04", "rev": 2, "value": 4.8, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "61149", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(61149);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n\n script_name(english:\"Scientific Linux Security Update : openswan on SL6.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=569\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5d6b1f6d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Scientific Linux Local Security Checks", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-01-17T13:46:04", "differentElements": ["cvss2"], "edition": 5}, {"bulletin": {"id": "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "hash": "dd474c0892303b141cb4c4480863e6e8", "type": "nessus", "bulletinFamily": "scanner", "title": "Scientific Linux Security Update : openswan on SL6.x i386/x86_64", "description": "Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.", "published": "2012-08-01T00:00:00", "modified": "2012-08-01T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/61149", "reporter": "This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?5d6b1f6d"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-07-29T03:35:41", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310863930", "OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:863930", "OPENVAS:1361412562310122077", "OPENVAS:870717"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "nessus", "idList": ["FEDORA_2011-13825.NASL", "ALA_ALAS-2011-06.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "FEDORA_2011-13862.NASL", "OPENSWAN_IKE_49984.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13864.NASL", "REDHAT-RHSA-2011-1356.NASL"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:5F046218F9", "FEDORA:339592194E", "FEDORA:87910214F4", "FEDORA:715F922352", "FEDORA:B01DF20F64"]}], "modified": "2021-07-29T03:35:41", "rev": 2}, "score": {"value": 4.8, "vector": "NONE", "modified": "2021-07-29T03:35:41", "rev": 2}}, "objectVersion": "1.6", "pluginID": "61149", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(61149);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n\n script_name(english:\"Scientific Linux Security Update : openswan on SL6.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=569\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5d6b1f6d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Scientific Linux Local Security Checks", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T03:35:41", "differentElements": ["cvss2", "cvss3", "description", "modified", "patchPublicationDate", "references", "solution", "vpr"], "edition": 6}, {"bulletin": {"id": "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "hash": "edf7c59b695ea1c129dc0ba2be82ea28", "type": "nessus", "bulletinFamily": "scanner", "title": "Scientific Linux Security Update : openswan on SL6.x i386/x86_64", "description": "Openswan is a free implementation of Internet Protocol Security (IPsec) and Internet Key Exchange (IKE). IPsec uses strong cryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted networks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto IKE daemon handled certain error conditions. A remote, unauthenticated attacker could send a specially crafted IKE packet that would crash the pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated packages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted automatically.", "published": "2012-08-01T00:00:00", "modified": "2021-01-14T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": null, "vector": null}, "href": "https://www.tenable.com/plugins/nessus/61149", "reporter": "This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://www.nessus.org/u?5d6b1f6d", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-11T14:24:24", "history": [], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL"]}], "modified": "2021-08-11T14:24:24", "rev": 2}, "score": {"value": 4.8, "vector": "NONE", "modified": "2021-08-11T14:24:24", "rev": 2}}, "objectVersion": "1.6", "pluginID": "61149", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(61149);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n\n script_name(english:\"Scientific Linux Security Update : openswan on SL6.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=569\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5d6b1f6d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Scientific Linux Local Security Checks", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "solution": "Update the affected openswan, openswan-debuginfo and / or openswan-doc packages.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-05T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-11T14:24:24", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 2, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:715F922352", "FEDORA:5F046218F9"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310122077", "OPENVAS:1361412562310863930", "OPENVAS:870717", "OPENVAS:1361412562310120516", "OPENVAS:863930", "OPENVAS:1361412562310870717"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "nessus", "idList": ["OPENSWAN_IKE_49984.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL"]}], "modified": "2021-08-19T12:57:25", "rev": 2}, "score": {"value": 4.8, "vector": "NONE", "modified": "2021-08-19T12:57:25", "rev": 2}}, "objectVersion": "1.6", "pluginID": "61149", "sourceData": "#%NASL_MIN_LEVEL 70300\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text is (C) Scientific Linux.\n#\n\ninclude('deprecated_nasl_level.inc');\ninclude('compat.inc');\n\nif (description)\n{\n script_id(61149);\n script_version(\"1.6\");\n script_set_attribute(attribute:\"plugin_modification_date\", value:\"2021/01/14\");\n\n script_cve_id(\"CVE-2011-3380\");\n\n script_name(english:\"Scientific Linux Security Update : openswan on SL6.x i386/x86_64\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Scientific Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Openswan is a free implementation of Internet Protocol Security\n(IPsec) and Internet Key Exchange (IKE). IPsec uses strong\ncryptography to provide both authentication and encryption services.\nThese services allow you to build secure tunnels through untrusted\nnetworks.\n\nA NULL pointer dereference flaw was found in the way Openswan's pluto\nIKE daemon handled certain error conditions. A remote, unauthenticated\nattacker could send a specially crafted IKE packet that would crash\nthe pluto daemon. (CVE-2011-3380)\n\nAll users of openswan are advised to upgrade to these updated\npackages, which contain a backported patch to correct this issue.\nAfter installing this update, the ipsec service will be restarted\nautomatically.\"\n );\n # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1110&L=scientific-linux-errata&T=0&P=569\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?5d6b1f6d\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Update the affected openswan, openswan-debuginfo and / or openswan-doc\npackages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"x-cpe:/o:fermilab:scientific_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2012/08/01\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Scientific Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Scientific Linux \" >!< release) audit(AUDIT_HOST_NOT, \"running Scientific Linux\");\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Scientific Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"SL6\", reference:\"openswan-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-debuginfo-2.6.32-4.el6_1.2\")) flag++;\nif (rpm_check(release:\"SL6\", reference:\"openswan-doc-2.6.32-4.el6_1.2\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Scientific Linux Local Security Checks", "cpe": ["x-cpe:/o:fermilab:scientific_linux"], "solution": "Update the affected openswan, openswan-debuginfo and / or openswan-doc packages.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": "2011-10-05T00:00:00", "vulnerabilityPublicationDate": null, "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}, {"id": "OPENSWAN_IKE_49984.NASL", "hash": "3de8555089a08d0e0b3c77dc8fb0a196", "type": "nessus", "bulletinFamily": "scanner", "title": "Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS", "description": "The remote host is running a version of Openswan prior to version 2.6.36. It is, therefore, affected by a remote denial of service vulnerability due to a NULL pointer dereference flaw. A remote attacker, using a specially crafted ISAKMP message with an invalid KEY_LENGTH attribute, can cause a denial of service.", "published": "2015-01-28T00:00:00", "modified": "2018-07-16T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": 5.3, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}, "href": "https://www.tenable.com/plugins/nessus/81052", "reporter": "This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-19T12:47:13", "history": [{"bulletin": {"id": "OPENSWAN_IKE_49984.NASL", "hash": "9de276bdd9001f7a152275263dbd292dae8fedf4b001e65b5b389762684311c3", "type": "nessus", "bulletinFamily": "scanner", "title": "Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS", "description": "The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.", "published": "2015-01-28T00:00:00", "modified": "2019-12-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/81052", "reporter": "This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2019-12-13T08:39:45", "history": [], "viewCount": 71, "enchantments": {"dependencies": {"modified": "2019-12-13T08:39:45", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2019-12-13T08:39:45", "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "81052", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81052);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/16 14:09:13\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_bugtraq_id(49984);\n\n script_name(english:\"Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS\");\n script_summary(english:\"Checks IKE Device ID for a vulnerable Openswan version.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is affected by a remote denial of service\nvulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Openswan 2.6.36 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/01/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:openswan:openswan\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Misc.\");\n\n script_require_ports(\"Services/udp/ike\", 500);\n script_dependencies(\"ike2_detect.nasl\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nvuln_start = \"2.6.29\";\nvuln_end = \"2.6.35\";\nfixed = \"2.6.36\";\n\nport = get_kb_item(\"Services/udp/ike\");\nif (empty_or_null(port)) audit(AUDIT_NOT_DETECT,\"IKE\");\n\nkb_list = get_kb_list(\"Services/ike1/*\");\nkb2_list = get_kb_list(\"Services/ike2/*\");\n\n# Combine both IKE and IKEv2 results into one list\nlist = \"\";\nif (! isnull(kb2_list))\n{\n if (! isnull(kb_list))\n {\n list = keys(kb_list);\n list = make_list(list, keys(kb2_list));\n }\n else\n {\n list = keys(kb2_list);\n }\n}\nelse\n{\n if (! isnull(kb_list)) list = keys(kb_list);\n else\n {\n audit(AUDIT_KB_MISSING, \"Services/ike/* and Services/ike2/*\");\n }\n}\n\n# Check if it was Openswan and which version found.\nsoftware = \"\";\nversion = \"\";\n\nforeach item (list)\n{\n if (preg(pattern:\"Openswan [0-9.]+\",string:item,icase:TRUE))\n {\n foreach ike_name_ver_kb (split(item,sep:' '))\n {\n if (preg(pattern:\"\\/Openswan\",string:ike_name_ver_kb,icase:TRUE))\n {\n path = split(ike_name_ver_kb,sep:'/');\n software = path[2];\n }\n else if (preg(pattern:\"[0-9.]+\",string:ike_name_ver_kb))\n version = ike_name_ver_kb;\n }\n }\n}\n\n# Check if we have the software name\nif (empty_or_null(software))\n audit(AUDIT_NOT_INST, \"Openswan\");\n\n# Check if the version was found.\nif (empty_or_null(version))\n audit(AUDIT_UNKNOWN_APP_VER, \"Openswan\");\n\nvuln = TRUE;\n# Software vuln if between 2.6.29 - 2.6.35\nif (ver_compare(ver:version, fix:fixed, strict:FALSE) >= 0)\n{\n vuln = FALSE;\n}\nelse if (ver_compare(ver:version, fix:vuln_start, strict:FALSE) < 0)\n{\n vuln = FALSE;\n}\nelse vuln = TRUE;\n\nreport = \"\";\nif (vuln)\n{\n report += software + \" is vulnerable to a denial of service attack.\" + '\\n';\n report += \"Version found was \"+version+'\\n';\n report += '\\n';\n report += \"Update to \"+software+\" version \" + fixed + \" or later.\"+'\\n';\n}\n\nif (report)\n{\n register_service(port:port, ipproto:\"udp\", proto:\"openswan\");\n if (report_verbosity > 0) security_warning(port:port, proto:'udp', extra:report);\n else security_warning(port:port, proto:'udp');\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:openswan:openswan"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2019-12-13T08:39:45", "differentElements": ["modified"], "edition": 1}, {"bulletin": {"id": "OPENSWAN_IKE_49984.NASL", "hash": "50b21dd21957bd37bfaa991f9fc49e41a9e8f54058c4fa376b54402a5c9f7bf3", "type": "nessus", "bulletinFamily": "scanner", "title": "Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS", "description": "The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.", "published": "2015-01-28T00:00:00", "modified": "2020-01-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/81052", "reporter": "This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-01-01T00:59:56", "history": [], "viewCount": 72, "enchantments": {"dependencies": {"modified": "2020-01-01T00:59:56", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}]}, "score": {"modified": "2020-01-01T00:59:56", "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "81052", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81052);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/16 14:09:13\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_bugtraq_id(49984);\n\n script_name(english:\"Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS\");\n script_summary(english:\"Checks IKE Device ID for a vulnerable Openswan version.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is affected by a remote denial of service\nvulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Openswan 2.6.36 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/01/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:openswan:openswan\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Misc.\");\n\n script_require_ports(\"Services/udp/ike\", 500);\n script_dependencies(\"ike2_detect.nasl\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nvuln_start = \"2.6.29\";\nvuln_end = \"2.6.35\";\nfixed = \"2.6.36\";\n\nport = get_kb_item(\"Services/udp/ike\");\nif (empty_or_null(port)) audit(AUDIT_NOT_DETECT,\"IKE\");\n\nkb_list = get_kb_list(\"Services/ike1/*\");\nkb2_list = get_kb_list(\"Services/ike2/*\");\n\n# Combine both IKE and IKEv2 results into one list\nlist = \"\";\nif (! isnull(kb2_list))\n{\n if (! isnull(kb_list))\n {\n list = keys(kb_list);\n list = make_list(list, keys(kb2_list));\n }\n else\n {\n list = keys(kb2_list);\n }\n}\nelse\n{\n if (! isnull(kb_list)) list = keys(kb_list);\n else\n {\n audit(AUDIT_KB_MISSING, \"Services/ike/* and Services/ike2/*\");\n }\n}\n\n# Check if it was Openswan and which version found.\nsoftware = \"\";\nversion = \"\";\n\nforeach item (list)\n{\n if (preg(pattern:\"Openswan [0-9.]+\",string:item,icase:TRUE))\n {\n foreach ike_name_ver_kb (split(item,sep:' '))\n {\n if (preg(pattern:\"\\/Openswan\",string:ike_name_ver_kb,icase:TRUE))\n {\n path = split(ike_name_ver_kb,sep:'/');\n software = path[2];\n }\n else if (preg(pattern:\"[0-9.]+\",string:ike_name_ver_kb))\n version = ike_name_ver_kb;\n }\n }\n}\n\n# Check if we have the software name\nif (empty_or_null(software))\n audit(AUDIT_NOT_INST, \"Openswan\");\n\n# Check if the version was found.\nif (empty_or_null(version))\n audit(AUDIT_UNKNOWN_APP_VER, \"Openswan\");\n\nvuln = TRUE;\n# Software vuln if between 2.6.29 - 2.6.35\nif (ver_compare(ver:version, fix:fixed, strict:FALSE) >= 0)\n{\n vuln = FALSE;\n}\nelse if (ver_compare(ver:version, fix:vuln_start, strict:FALSE) < 0)\n{\n vuln = FALSE;\n}\nelse vuln = TRUE;\n\nreport = \"\";\nif (vuln)\n{\n report += software + \" is vulnerable to a denial of service attack.\" + '\\n';\n report += \"Version found was \"+version+'\\n';\n report += '\\n';\n report += \"Update to \"+software+\" version \" + fixed + \" or later.\"+'\\n';\n}\n\nif (report)\n{\n register_service(port:port, ipproto:\"udp\", proto:\"openswan\");\n if (report_verbosity > 0) security_warning(port:port, proto:'udp', extra:report);\n else security_warning(port:port, proto:'udp');\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:openswan:openswan"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-01-01T00:59:56", "differentElements": ["cvss3", "modified"], "edition": 2}, {"bulletin": {"id": "OPENSWAN_IKE_49984.NASL", "hash": "6a0352002116dbd435b81ff3817d36f01dcd6415acb0206164879ac4427bcda3", "type": "nessus", "bulletinFamily": "scanner", "title": "Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS", "description": "The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.", "published": "2015-01-28T00:00:00", "modified": "2020-11-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": 5.3, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}, "href": "https://www.tenable.com/plugins/nessus/81052", "reporter": "This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2020-11-01T00:25:18", "history": [], "viewCount": 86, "enchantments": {"dependencies": {"modified": "2020-11-01T00:25:18", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}], "rev": 2}, "score": {"modified": "2020-11-01T00:25:18", "rev": 2, "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "81052", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81052);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/16 14:09:13\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_bugtraq_id(49984);\n\n script_name(english:\"Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS\");\n script_summary(english:\"Checks IKE Device ID for a vulnerable Openswan version.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is affected by a remote denial of service\nvulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Openswan 2.6.36 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/01/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:openswan:openswan\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Misc.\");\n\n script_require_ports(\"Services/udp/ike\", 500);\n script_dependencies(\"ike2_detect.nasl\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nvuln_start = \"2.6.29\";\nvuln_end = \"2.6.35\";\nfixed = \"2.6.36\";\n\nport = get_kb_item(\"Services/udp/ike\");\nif (empty_or_null(port)) audit(AUDIT_NOT_DETECT,\"IKE\");\n\nkb_list = get_kb_list(\"Services/ike1/*\");\nkb2_list = get_kb_list(\"Services/ike2/*\");\n\n# Combine both IKE and IKEv2 results into one list\nlist = \"\";\nif (! isnull(kb2_list))\n{\n if (! isnull(kb_list))\n {\n list = keys(kb_list);\n list = make_list(list, keys(kb2_list));\n }\n else\n {\n list = keys(kb2_list);\n }\n}\nelse\n{\n if (! isnull(kb_list)) list = keys(kb_list);\n else\n {\n audit(AUDIT_KB_MISSING, \"Services/ike/* and Services/ike2/*\");\n }\n}\n\n# Check if it was Openswan and which version found.\nsoftware = \"\";\nversion = \"\";\n\nforeach item (list)\n{\n if (preg(pattern:\"Openswan [0-9.]+\",string:item,icase:TRUE))\n {\n foreach ike_name_ver_kb (split(item,sep:' '))\n {\n if (preg(pattern:\"\\/Openswan\",string:ike_name_ver_kb,icase:TRUE))\n {\n path = split(ike_name_ver_kb,sep:'/');\n software = path[2];\n }\n else if (preg(pattern:\"[0-9.]+\",string:ike_name_ver_kb))\n version = ike_name_ver_kb;\n }\n }\n}\n\n# Check if we have the software name\nif (empty_or_null(software))\n audit(AUDIT_NOT_INST, \"Openswan\");\n\n# Check if the version was found.\nif (empty_or_null(version))\n audit(AUDIT_UNKNOWN_APP_VER, \"Openswan\");\n\nvuln = TRUE;\n# Software vuln if between 2.6.29 - 2.6.35\nif (ver_compare(ver:version, fix:fixed, strict:FALSE) >= 0)\n{\n vuln = FALSE;\n}\nelse if (ver_compare(ver:version, fix:vuln_start, strict:FALSE) < 0)\n{\n vuln = FALSE;\n}\nelse vuln = TRUE;\n\nreport = \"\";\nif (vuln)\n{\n report += software + \" is vulnerable to a denial of service attack.\" + '\\n';\n report += \"Version found was \"+version+'\\n';\n report += '\\n';\n report += \"Update to \"+software+\" version \" + fixed + \" or later.\"+'\\n';\n}\n\nif (report)\n{\n register_service(port:port, ipproto:\"udp\", proto:\"openswan\");\n if (report_verbosity > 0) security_warning(port:port, proto:'udp', extra:report);\n else security_warning(port:port, proto:'udp');\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:openswan:openswan"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2020-11-01T00:25:18", "differentElements": ["modified"], "edition": 3}, {"bulletin": {"id": "OPENSWAN_IKE_49984.NASL", "hash": "f23b1cdf8232dfb9aa63ea1a2a509e5de447c1d8ba783cffdd05608845491481", "type": "nessus", "bulletinFamily": "scanner", "title": "Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS", "description": "The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.", "published": "2015-01-28T00:00:00", "modified": "2021-02-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": 5.3, "vector": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}, "href": "https://www.tenable.com/plugins/nessus/81052", "reporter": "This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-02-01T04:56:01", "history": [], "viewCount": 87, "enchantments": {"dependencies": {"modified": "2021-02-01T04:56:01", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-02-01T04:56:01", "rev": 2, "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "81052", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81052);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/16 14:09:13\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_bugtraq_id(49984);\n\n script_name(english:\"Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS\");\n script_summary(english:\"Checks IKE Device ID for a vulnerable Openswan version.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is affected by a remote denial of service\nvulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Openswan 2.6.36 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/01/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:openswan:openswan\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Misc.\");\n\n script_require_ports(\"Services/udp/ike\", 500);\n script_dependencies(\"ike2_detect.nasl\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nvuln_start = \"2.6.29\";\nvuln_end = \"2.6.35\";\nfixed = \"2.6.36\";\n\nport = get_kb_item(\"Services/udp/ike\");\nif (empty_or_null(port)) audit(AUDIT_NOT_DETECT,\"IKE\");\n\nkb_list = get_kb_list(\"Services/ike1/*\");\nkb2_list = get_kb_list(\"Services/ike2/*\");\n\n# Combine both IKE and IKEv2 results into one list\nlist = \"\";\nif (! isnull(kb2_list))\n{\n if (! isnull(kb_list))\n {\n list = keys(kb_list);\n list = make_list(list, keys(kb2_list));\n }\n else\n {\n list = keys(kb2_list);\n }\n}\nelse\n{\n if (! isnull(kb_list)) list = keys(kb_list);\n else\n {\n audit(AUDIT_KB_MISSING, \"Services/ike/* and Services/ike2/*\");\n }\n}\n\n# Check if it was Openswan and which version found.\nsoftware = \"\";\nversion = \"\";\n\nforeach item (list)\n{\n if (preg(pattern:\"Openswan [0-9.]+\",string:item,icase:TRUE))\n {\n foreach ike_name_ver_kb (split(item,sep:' '))\n {\n if (preg(pattern:\"\\/Openswan\",string:ike_name_ver_kb,icase:TRUE))\n {\n path = split(ike_name_ver_kb,sep:'/');\n software = path[2];\n }\n else if (preg(pattern:\"[0-9.]+\",string:ike_name_ver_kb))\n version = ike_name_ver_kb;\n }\n }\n}\n\n# Check if we have the software name\nif (empty_or_null(software))\n audit(AUDIT_NOT_INST, \"Openswan\");\n\n# Check if the version was found.\nif (empty_or_null(version))\n audit(AUDIT_UNKNOWN_APP_VER, \"Openswan\");\n\nvuln = TRUE;\n# Software vuln if between 2.6.29 - 2.6.35\nif (ver_compare(ver:version, fix:fixed, strict:FALSE) >= 0)\n{\n vuln = FALSE;\n}\nelse if (ver_compare(ver:version, fix:vuln_start, strict:FALSE) < 0)\n{\n vuln = FALSE;\n}\nelse vuln = TRUE;\n\nreport = \"\";\nif (vuln)\n{\n report += software + \" is vulnerable to a denial of service attack.\" + '\\n';\n report += \"Version found was \"+version+'\\n';\n report += '\\n';\n report += \"Update to \"+software+\" version \" + fixed + \" or later.\"+'\\n';\n}\n\nif (report)\n{\n register_service(port:port, ipproto:\"udp\", proto:\"openswan\");\n if (report_verbosity > 0) security_warning(port:port, proto:'udp', extra:report);\n else security_warning(port:port, proto:'udp');\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:openswan:openswan"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-02-01T04:56:01", "differentElements": ["cvss2", "cvss3", "modified"], "edition": 4}, {"bulletin": {"id": "OPENSWAN_IKE_49984.NASL", "hash": "582a34e9df9b4ae83d7948372a53ba56e194bdd9aa3cad314e03603a03e29858", "type": "nessus", "bulletinFamily": "scanner", "title": "Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS", "description": "The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.", "published": "2015-01-28T00:00:00", "modified": "2021-07-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/81052", "reporter": "This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-07-29T02:17:41", "history": [], "viewCount": 90, "enchantments": {"dependencies": {"modified": "2021-07-29T02:17:41", "references": [{"idList": ["FEDORA_2011-13825.NASL", "FEDORA_2011-13864.NASL", "ALA_ALAS-2011-6.NASL", "FEDORA_2011-13862.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"], "type": "nessus"}, {"idList": ["ELSA-2011-1356"], "type": "oraclelinux"}, {"idList": ["CVE-2011-3380"], "type": "cve"}, {"idList": ["OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310870717", "OPENVAS:870717"], "type": "openvas"}, {"idList": ["ALAS-2011-006"], "type": "amazon"}, {"idList": ["UB:CVE-2011-3380"], "type": "ubuntucve"}, {"idList": ["RHSA-2011:1356"], "type": "redhat"}, {"idList": ["FEDORA:339592194E", "FEDORA:B01DF20F64", "FEDORA:715F922352", "FEDORA:5F046218F9", "FEDORA:87910214F4"], "type": "fedora"}], "rev": 2}, "score": {"modified": "2021-07-29T02:17:41", "rev": 2, "value": 5.1, "vector": "NONE"}}, "objectVersion": "1.6", "pluginID": "81052", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81052);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/16 14:09:13\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_bugtraq_id(49984);\n\n script_name(english:\"Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS\");\n script_summary(english:\"Checks IKE Device ID for a vulnerable Openswan version.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is affected by a remote denial of service\nvulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Openswan 2.6.36 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/01/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:openswan:openswan\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Misc.\");\n\n script_require_ports(\"Services/udp/ike\", 500);\n script_dependencies(\"ike2_detect.nasl\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nvuln_start = \"2.6.29\";\nvuln_end = \"2.6.35\";\nfixed = \"2.6.36\";\n\nport = get_kb_item(\"Services/udp/ike\");\nif (empty_or_null(port)) audit(AUDIT_NOT_DETECT,\"IKE\");\n\nkb_list = get_kb_list(\"Services/ike1/*\");\nkb2_list = get_kb_list(\"Services/ike2/*\");\n\n# Combine both IKE and IKEv2 results into one list\nlist = \"\";\nif (! isnull(kb2_list))\n{\n if (! isnull(kb_list))\n {\n list = keys(kb_list);\n list = make_list(list, keys(kb2_list));\n }\n else\n {\n list = keys(kb2_list);\n }\n}\nelse\n{\n if (! isnull(kb_list)) list = keys(kb_list);\n else\n {\n audit(AUDIT_KB_MISSING, \"Services/ike/* and Services/ike2/*\");\n }\n}\n\n# Check if it was Openswan and which version found.\nsoftware = \"\";\nversion = \"\";\n\nforeach item (list)\n{\n if (preg(pattern:\"Openswan [0-9.]+\",string:item,icase:TRUE))\n {\n foreach ike_name_ver_kb (split(item,sep:' '))\n {\n if (preg(pattern:\"\\/Openswan\",string:ike_name_ver_kb,icase:TRUE))\n {\n path = split(ike_name_ver_kb,sep:'/');\n software = path[2];\n }\n else if (preg(pattern:\"[0-9.]+\",string:ike_name_ver_kb))\n version = ike_name_ver_kb;\n }\n }\n}\n\n# Check if we have the software name\nif (empty_or_null(software))\n audit(AUDIT_NOT_INST, \"Openswan\");\n\n# Check if the version was found.\nif (empty_or_null(version))\n audit(AUDIT_UNKNOWN_APP_VER, \"Openswan\");\n\nvuln = TRUE;\n# Software vuln if between 2.6.29 - 2.6.35\nif (ver_compare(ver:version, fix:fixed, strict:FALSE) >= 0)\n{\n vuln = FALSE;\n}\nelse if (ver_compare(ver:version, fix:vuln_start, strict:FALSE) < 0)\n{\n vuln = FALSE;\n}\nelse vuln = TRUE;\n\nreport = \"\";\nif (vuln)\n{\n report += software + \" is vulnerable to a denial of service attack.\" + '\\n';\n report += \"Version found was \"+version+'\\n';\n report += '\\n';\n report += \"Update to \"+software+\" version \" + fixed + \" or later.\"+'\\n';\n}\n\nif (report)\n{\n register_service(port:port, ipproto:\"udp\", proto:\"openswan\");\n if (report_verbosity > 0) security_warning(port:port, proto:'udp', extra:report);\n else security_warning(port:port, proto:'udp');\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:openswan:openswan"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-07-29T02:17:41", "differentElements": ["modified"], "edition": 5}, {"bulletin": {"id": "OPENSWAN_IKE_49984.NASL", "hash": "81b098b4c2bd32a10eb31fa24238898c", "type": "nessus", "bulletinFamily": "scanner", "title": "Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS", "description": "The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.", "published": "2015-01-28T00:00:00", "modified": "2021-08-02T00:00:00", "cvss": {"score": 5.0, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {"cvssV2": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "severity": "MEDIUM", "userInteractionRequired": false}, "cvss3": {}, "href": "https://www.tenable.com/plugins/nessus/81052", "reporter": "This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-01T10:32:02", "history": [], "viewCount": 90, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310863930", "OPENVAS:863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310870717", "OPENVAS:870717", "OPENVAS:1361412562310122077"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "nessus", "idList": ["ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "FEDORA_2011-13825.NASL", "REDHAT-RHSA-2011-1356.NASL", "FEDORA_2011-13864.NASL", "ALA_ALAS-2011-06.NASL", "FEDORA_2011-13862.NASL"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:87910214F4", "FEDORA:715F922352"]}], "modified": "2021-08-01T10:32:02", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-08-01T10:32:02", "rev": 2}}, "objectVersion": "1.6", "pluginID": "81052", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81052);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/16 14:09:13\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_bugtraq_id(49984);\n\n script_name(english:\"Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS\");\n script_summary(english:\"Checks IKE Device ID for a vulnerable Openswan version.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is affected by a remote denial of service\nvulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Openswan 2.6.36 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/01/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:openswan:openswan\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Misc.\");\n\n script_require_ports(\"Services/udp/ike\", 500);\n script_dependencies(\"ike2_detect.nasl\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nvuln_start = \"2.6.29\";\nvuln_end = \"2.6.35\";\nfixed = \"2.6.36\";\n\nport = get_kb_item(\"Services/udp/ike\");\nif (empty_or_null(port)) audit(AUDIT_NOT_DETECT,\"IKE\");\n\nkb_list = get_kb_list(\"Services/ike1/*\");\nkb2_list = get_kb_list(\"Services/ike2/*\");\n\n# Combine both IKE and IKEv2 results into one list\nlist = \"\";\nif (! isnull(kb2_list))\n{\n if (! isnull(kb_list))\n {\n list = keys(kb_list);\n list = make_list(list, keys(kb2_list));\n }\n else\n {\n list = keys(kb2_list);\n }\n}\nelse\n{\n if (! isnull(kb_list)) list = keys(kb_list);\n else\n {\n audit(AUDIT_KB_MISSING, \"Services/ike/* and Services/ike2/*\");\n }\n}\n\n# Check if it was Openswan and which version found.\nsoftware = \"\";\nversion = \"\";\n\nforeach item (list)\n{\n if (preg(pattern:\"Openswan [0-9.]+\",string:item,icase:TRUE))\n {\n foreach ike_name_ver_kb (split(item,sep:' '))\n {\n if (preg(pattern:\"\\/Openswan\",string:ike_name_ver_kb,icase:TRUE))\n {\n path = split(ike_name_ver_kb,sep:'/');\n software = path[2];\n }\n else if (preg(pattern:\"[0-9.]+\",string:ike_name_ver_kb))\n version = ike_name_ver_kb;\n }\n }\n}\n\n# Check if we have the software name\nif (empty_or_null(software))\n audit(AUDIT_NOT_INST, \"Openswan\");\n\n# Check if the version was found.\nif (empty_or_null(version))\n audit(AUDIT_UNKNOWN_APP_VER, \"Openswan\");\n\nvuln = TRUE;\n# Software vuln if between 2.6.29 - 2.6.35\nif (ver_compare(ver:version, fix:fixed, strict:FALSE) >= 0)\n{\n vuln = FALSE;\n}\nelse if (ver_compare(ver:version, fix:vuln_start, strict:FALSE) < 0)\n{\n vuln = FALSE;\n}\nelse vuln = TRUE;\n\nreport = \"\";\nif (vuln)\n{\n report += software + \" is vulnerable to a denial of service attack.\" + '\\n';\n report += \"Version found was \"+version+'\\n';\n report += '\\n';\n report += \"Update to \"+software+\" version \" + fixed + \" or later.\"+'\\n';\n}\n\nif (report)\n{\n register_service(port:port, ipproto:\"udp\", proto:\"openswan\");\n if (report_verbosity > 0) security_warning(port:port, proto:'udp', extra:report);\n else security_warning(port:port, proto:'udp');\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:openswan:openswan"], "solution": "", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {}, "exploitAvailable": false, "exploitEase": "", "patchPublicationDate": null, "vulnerabilityPublicationDate": null, "exploitableWith": []}, "lastseen": "2021-08-01T10:32:02", "differentElements": ["cvss2", "cvss3", "description", "exploitEase", "modified", "patchPublicationDate", "references", "solution", "vpr", "vulnerabilityPublicationDate"], "edition": 6}, {"bulletin": {"id": "OPENSWAN_IKE_49984.NASL", "hash": "025689b1577679dc9a4fee5a467de2a4", "type": "nessus", "bulletinFamily": "scanner", "title": "Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS", "description": "The remote host is running a version of Openswan prior to version 2.6.36. It is, therefore, affected by a remote denial of service vulnerability due to a NULL pointer dereference flaw. A remote attacker, using a specially crafted ISAKMP message with an invalid KEY_LENGTH attribute, can cause a denial of service.", "published": "2015-01-28T00:00:00", "modified": "2018-07-16T00:00:00", "cvss": {"score": 5, "vector": "AV:N/AC:L/Au:N/C:N/I:N/A:P"}, "cvss2": {}, "cvss3": {"score": 5.3, "vector": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L"}, "href": "https://www.tenable.com/plugins/nessus/81052", "reporter": "This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.", "references": ["http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-3380", "https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt"], "cvelist": ["CVE-2011-3380"], "immutableFields": [], "lastseen": "2021-08-11T14:11:05", "history": [], "viewCount": 90, "enchantments": {"dependencies": {"references": [{"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "openvas", "idList": ["OPENVAS:1361412562310870717", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310122077", "OPENVAS:870717", "OPENVAS:863930"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:5F046218F9", "FEDORA:715F922352"]}, {"type": "nessus", "idList": ["ORACLELINUX_ELSA-2011-1356.NASL", "ALA_ALAS-2011-06.NASL", "REDHAT-RHSA-2011-1356.NASL", "ALA_ALAS-2011-6.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}], "modified": "2021-08-11T14:11:05", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-08-11T14:11:05", "rev": 2}}, "objectVersion": "1.6", "pluginID": "81052", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81052);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/16 14:09:13\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_bugtraq_id(49984);\n\n script_name(english:\"Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS\");\n script_summary(english:\"Checks IKE Device ID for a vulnerable Openswan version.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is affected by a remote denial of service\nvulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Openswan 2.6.36 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/01/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:openswan:openswan\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Misc.\");\n\n script_require_ports(\"Services/udp/ike\", 500);\n script_dependencies(\"ike2_detect.nasl\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nvuln_start = \"2.6.29\";\nvuln_end = \"2.6.35\";\nfixed = \"2.6.36\";\n\nport = get_kb_item(\"Services/udp/ike\");\nif (empty_or_null(port)) audit(AUDIT_NOT_DETECT,\"IKE\");\n\nkb_list = get_kb_list(\"Services/ike1/*\");\nkb2_list = get_kb_list(\"Services/ike2/*\");\n\n# Combine both IKE and IKEv2 results into one list\nlist = \"\";\nif (! isnull(kb2_list))\n{\n if (! isnull(kb_list))\n {\n list = keys(kb_list);\n list = make_list(list, keys(kb2_list));\n }\n else\n {\n list = keys(kb2_list);\n }\n}\nelse\n{\n if (! isnull(kb_list)) list = keys(kb_list);\n else\n {\n audit(AUDIT_KB_MISSING, \"Services/ike/* and Services/ike2/*\");\n }\n}\n\n# Check if it was Openswan and which version found.\nsoftware = \"\";\nversion = \"\";\n\nforeach item (list)\n{\n if (preg(pattern:\"Openswan [0-9.]+\",string:item,icase:TRUE))\n {\n foreach ike_name_ver_kb (split(item,sep:' '))\n {\n if (preg(pattern:\"\\/Openswan\",string:ike_name_ver_kb,icase:TRUE))\n {\n path = split(ike_name_ver_kb,sep:'/');\n software = path[2];\n }\n else if (preg(pattern:\"[0-9.]+\",string:ike_name_ver_kb))\n version = ike_name_ver_kb;\n }\n }\n}\n\n# Check if we have the software name\nif (empty_or_null(software))\n audit(AUDIT_NOT_INST, \"Openswan\");\n\n# Check if the version was found.\nif (empty_or_null(version))\n audit(AUDIT_UNKNOWN_APP_VER, \"Openswan\");\n\nvuln = TRUE;\n# Software vuln if between 2.6.29 - 2.6.35\nif (ver_compare(ver:version, fix:fixed, strict:FALSE) >= 0)\n{\n vuln = FALSE;\n}\nelse if (ver_compare(ver:version, fix:vuln_start, strict:FALSE) < 0)\n{\n vuln = FALSE;\n}\nelse vuln = TRUE;\n\nreport = \"\";\nif (vuln)\n{\n report += software + \" is vulnerable to a denial of service attack.\" + '\\n';\n report += \"Version found was \"+version+'\\n';\n report += '\\n';\n report += \"Update to \"+software+\" version \" + fixed + \" or later.\"+'\\n';\n}\n\nif (report)\n{\n register_service(port:port, ipproto:\"udp\", proto:\"openswan\");\n if (report_verbosity > 0) security_warning(port:port, proto:'udp', extra:report);\n else security_warning(port:port, proto:'udp');\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:openswan:openswan"], "solution": "Upgrade to Openswan 2.6.36 or later.", "nessusSeverity": "", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2011-10-05T00:00:00", "vulnerabilityPublicationDate": "2011-10-05T00:00:00", "exploitableWith": []}, "lastseen": "2021-08-11T14:11:05", "differentElements": ["nessusSeverity"], "edition": 7}], "viewCount": 91, "enchantments": {"dependencies": {"references": [{"type": "cve", "idList": ["CVE-2011-3380"]}, {"type": "ubuntucve", "idList": ["UB:CVE-2011-3380"]}, {"type": "oraclelinux", "idList": ["ELSA-2011-1356"]}, {"type": "amazon", "idList": ["ALAS-2011-006"]}, {"type": "fedora", "idList": ["FEDORA:B01DF20F64", "FEDORA:87910214F4", "FEDORA:339592194E", "FEDORA:715F922352", "FEDORA:5F046218F9"]}, {"type": "openvas", "idList": ["OPENVAS:870717", "OPENVAS:1361412562310122077", "OPENVAS:1361412562310863930", "OPENVAS:1361412562310120516", "OPENVAS:1361412562310870717", "OPENVAS:863930"]}, {"type": "redhat", "idList": ["RHSA-2011:1356"]}, {"type": "nessus", "idList": ["ALA_ALAS-2011-06.NASL", "SL_20111005_OPENSWAN_ON_SL6_X.NASL", "ALA_ALAS-2011-6.NASL", "REDHAT-RHSA-2011-1356.NASL", "ORACLELINUX_ELSA-2011-1356.NASL"]}], "modified": "2021-08-19T12:47:13", "rev": 2}, "score": {"value": 5.1, "vector": "NONE", "modified": "2021-08-19T12:47:13", "rev": 2}}, "objectVersion": "1.6", "pluginID": "81052", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(81052);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/16 14:09:13\");\n\n script_cve_id(\"CVE-2011-3380\");\n script_bugtraq_id(49984);\n\n script_name(english:\"Openswan < 2.6.36 IKE Packet NULL Pointer Dereference Remote DoS\");\n script_summary(english:\"Checks IKE Device ID for a vulnerable Openswan version.\");\n\n script_set_attribute(attribute:\"synopsis\", value:\n\"The remote host is affected by a remote denial of service\nvulnerability.\");\n script_set_attribute(attribute:\"description\", value:\n\"The remote host is running a version of Openswan prior to version\n2.6.36. It is, therefore, affected by a remote denial of service\nvulnerability due to a NULL pointer dereference flaw. A remote\nattacker, using a specially crafted ISAKMP message with an invalid\nKEY_LENGTH attribute, can cause a denial of service.\");\n script_set_attribute(attribute:\"see_also\", value:\"https://download.openswan.org/openswan/CVE-2011-3380/CVE-2011-3380.txt\");\n script_set_attribute(attribute:\"solution\", value:\"Upgrade to Openswan 2.6.36 or later.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_cvss3_base_vector(\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L\");\n script_set_cvss3_temporal_vector(\"CVSS:3.0/E:U/RL:O/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2011/10/05\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2015/01/28\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"remote\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/a:openswan:openswan\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2015-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Misc.\");\n\n script_require_ports(\"Services/udp/ike\", 500);\n script_dependencies(\"ike2_detect.nasl\");\n\n exit(0);\n}\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\n\nvuln_start = \"2.6.29\";\nvuln_end = \"2.6.35\";\nfixed = \"2.6.36\";\n\nport = get_kb_item(\"Services/udp/ike\");\nif (empty_or_null(port)) audit(AUDIT_NOT_DETECT,\"IKE\");\n\nkb_list = get_kb_list(\"Services/ike1/*\");\nkb2_list = get_kb_list(\"Services/ike2/*\");\n\n# Combine both IKE and IKEv2 results into one list\nlist = \"\";\nif (! isnull(kb2_list))\n{\n if (! isnull(kb_list))\n {\n list = keys(kb_list);\n list = make_list(list, keys(kb2_list));\n }\n else\n {\n list = keys(kb2_list);\n }\n}\nelse\n{\n if (! isnull(kb_list)) list = keys(kb_list);\n else\n {\n audit(AUDIT_KB_MISSING, \"Services/ike/* and Services/ike2/*\");\n }\n}\n\n# Check if it was Openswan and which version found.\nsoftware = \"\";\nversion = \"\";\n\nforeach item (list)\n{\n if (preg(pattern:\"Openswan [0-9.]+\",string:item,icase:TRUE))\n {\n foreach ike_name_ver_kb (split(item,sep:' '))\n {\n if (preg(pattern:\"\\/Openswan\",string:ike_name_ver_kb,icase:TRUE))\n {\n path = split(ike_name_ver_kb,sep:'/');\n software = path[2];\n }\n else if (preg(pattern:\"[0-9.]+\",string:ike_name_ver_kb))\n version = ike_name_ver_kb;\n }\n }\n}\n\n# Check if we have the software name\nif (empty_or_null(software))\n audit(AUDIT_NOT_INST, \"Openswan\");\n\n# Check if the version was found.\nif (empty_or_null(version))\n audit(AUDIT_UNKNOWN_APP_VER, \"Openswan\");\n\nvuln = TRUE;\n# Software vuln if between 2.6.29 - 2.6.35\nif (ver_compare(ver:version, fix:fixed, strict:FALSE) >= 0)\n{\n vuln = FALSE;\n}\nelse if (ver_compare(ver:version, fix:vuln_start, strict:FALSE) < 0)\n{\n vuln = FALSE;\n}\nelse vuln = TRUE;\n\nreport = \"\";\nif (vuln)\n{\n report += software + \" is vulnerable to a denial of service attack.\" + '\\n';\n report += \"Version found was \"+version+'\\n';\n report += '\\n';\n report += \"Update to \"+software+\" version \" + fixed + \" or later.\"+'\\n';\n}\n\nif (report)\n{\n register_service(port:port, ipproto:\"udp\", proto:\"openswan\");\n if (report_verbosity > 0) security_warning(port:port, proto:'udp', extra:report);\n else security_warning(port:port, proto:'udp');\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "naslFamily": "Misc.", "cpe": ["cpe:/a:openswan:openswan"], "solution": "Upgrade to Openswan 2.6.36 or later.", "nessusSeverity": "Medium", "cvssScoreSource": "", "vpr": {"risk factor": "Low", "score": "1.4"}, "exploitAvailable": false, "exploitEase": "No known exploits are available", "patchPublicationDate": "2011-10-05T00:00:00", "vulnerabilityPublicationDate": "2011-10-05T00:00:00", "exploitableWith": [], "_object_type": "robots.models.nessus.NessusBulletin", "_object_types": ["robots.models.base.Bulletin", "robots.models.nessus.NessusBulletin"]}]}