{"id": "USN-348-1", "bulletinFamily": "unix", "title": "GnuTLS vulnerability", "description": "The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.", "published": "2006-09-19T00:00:00", "modified": "2006-09-19T00:00:00", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "href": "https://usn.ubuntu.com/348-1/", "reporter": "Ubuntu", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4790"], "cvelist": ["CVE-2006-4790"], "type": "ubuntu", "lastseen": "2018-08-31T00:09:27", "history": [{"bulletin": {"affectedPackage": [{"OS": "Ubuntu", "OSVersion": "5.10", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13.1ubuntu1.2", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "5.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13ubuntu0.3", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls12 - 1.2.9-2ubuntu1.1", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-14ubuntu1.1", "packageVersion": "any"}], "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "cvss": {"score": 0.0, "vector": "NONE"}, "description": "The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.", "edition": 2, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "af7ee1ee381edfd5fcd5a0c3ff3b374e6f3a3500d35a3e665dfef59d1ab0c6b9", "hashmap": [{"hash": "b451bf8cbf445700420a367c1cc92ef6", "key": "cvelist"}, {"hash": "0dee911d43a028e6a1611946986017d8", "key": "references"}, {"hash": "0ef402baca9df3aceb5c351585aaa46e", "key": "modified"}, {"hash": "39689a7011581f652e9357c2510b32f7", "key": "title"}, {"hash": "1d41c853af58d3a7ae54990ce29417d8", "key": "type"}, {"hash": "8cd4821cb504d25572038ed182587d85", "key": "cvss"}, {"hash": "00e6ac05b51c6ae9e0e9d8492ba3d437", "key": "description"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "3d945423f8e9496c429a5d8c65b4604f", "key": "reporter"}, {"hash": "0ef402baca9df3aceb5c351585aaa46e", "key": "published"}, {"hash": "1b5ae840fb6926a3df196317a214ec1a", "key": "affectedPackage"}, {"hash": "086ed6117fcf7ec7513b1fd2c1ea5a35", "key": "href"}], "history": [], "href": "https://usn.ubuntu.com/348-1/", "id": "USN-348-1", "lastseen": "2018-08-30T20:08:58", "modified": "2006-09-19T00:00:00", "objectVersion": "1.3", "published": "2006-09-19T00:00:00", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4790"], "reporter": "Ubuntu", "title": "GnuTLS vulnerability", "type": "ubuntu", "viewCount": 0}, "differentElements": ["cvss"], "edition": 2, "lastseen": "2018-08-30T20:08:58"}, {"bulletin": {"affectedPackage": [{"OS": "Ubuntu", "OSVersion": "5.10", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13.1ubuntu1.2", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "5.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13ubuntu0.3", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls12 - 1.2.9-2ubuntu1.1", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-14ubuntu1.1", "packageVersion": "any"}], "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}, "description": "The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.", "edition": 1, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}}, "hash": "3567e94af6404b10c24740791e034a1a17635d950c315e15dc009e45c59e60ac", "hashmap": [{"hash": "b451bf8cbf445700420a367c1cc92ef6", "key": "cvelist"}, {"hash": "0dee911d43a028e6a1611946986017d8", "key": "references"}, {"hash": "26769fd423968d45be7383413e2552f1", "key": "cvss"}, {"hash": "0ef402baca9df3aceb5c351585aaa46e", "key": "modified"}, {"hash": "39689a7011581f652e9357c2510b32f7", "key": "title"}, {"hash": "1d41c853af58d3a7ae54990ce29417d8", "key": "type"}, {"hash": "00e6ac05b51c6ae9e0e9d8492ba3d437", "key": "description"}, {"hash": "4913a9178621eadcdf191db17915fbcb", "key": "bulletinFamily"}, {"hash": "3d945423f8e9496c429a5d8c65b4604f", "key": "reporter"}, {"hash": "0ef402baca9df3aceb5c351585aaa46e", "key": "published"}, {"hash": "1b5ae840fb6926a3df196317a214ec1a", "key": "affectedPackage"}, {"hash": "086ed6117fcf7ec7513b1fd2c1ea5a35", "key": "href"}], "history": [], "href": "https://usn.ubuntu.com/348-1/", "id": "USN-348-1", "lastseen": "2018-03-29T18:20:08", "modified": "2006-09-19T00:00:00", "objectVersion": "1.3", "published": "2006-09-19T00:00:00", "references": ["https://people.canonical.com/~ubuntu-security/cve/CVE-2006-4790"], "reporter": "Ubuntu", "title": "GnuTLS vulnerability", "type": "ubuntu", "viewCount": 0}, "differentElements": ["cvss"], "edition": 1, "lastseen": "2018-03-29T18:20:08"}], "edition": 3, "hashmap": [{"key": "affectedPackage", "hash": "1b5ae840fb6926a3df196317a214ec1a"}, {"key": "bulletinFamily", "hash": "4913a9178621eadcdf191db17915fbcb"}, {"key": "cvelist", "hash": "b451bf8cbf445700420a367c1cc92ef6"}, {"key": "cvss", "hash": "26769fd423968d45be7383413e2552f1"}, {"key": "description", "hash": "00e6ac05b51c6ae9e0e9d8492ba3d437"}, {"key": "href", "hash": "086ed6117fcf7ec7513b1fd2c1ea5a35"}, {"key": "modified", "hash": "0ef402baca9df3aceb5c351585aaa46e"}, {"key": "published", "hash": "0ef402baca9df3aceb5c351585aaa46e"}, {"key": "references", "hash": "0dee911d43a028e6a1611946986017d8"}, {"key": "reporter", "hash": "3d945423f8e9496c429a5d8c65b4604f"}, {"key": "title", "hash": "39689a7011581f652e9357c2510b32f7"}, {"key": "type", "hash": "1d41c853af58d3a7ae54990ce29417d8"}], "hash": "3567e94af6404b10c24740791e034a1a17635d950c315e15dc009e45c59e60ac", "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE"}, "vulnersScore": 5.0}, "objectVersion": "1.3", "affectedPackage": [{"OS": "Ubuntu", "OSVersion": "5.10", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13.1ubuntu1.2", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "5.04", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-13ubuntu0.3", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls12 - 1.2.9-2ubuntu1.1", "packageVersion": "any"}, {"OS": "Ubuntu", "OSVersion": "6.06", "arch": "noarch", "operator": "lt", "packageFilename": "UNKNOWN", "packageName": "libgnutls11 - 1.0.16-14ubuntu1.1", "packageVersion": "any"}]}

{"cve": [{"lastseen": "2017-10-11T11:06:47", "references": ["http://sunsolve.sun.com/search/document.do?assetkey=1-26-102970-1", "http://sunsolve.sun.com/search/document.do?assetkey=1-26-102648-1", "http://www.vupen.com/english/advisories/2006/3899", "http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001212.html", "http://www.ubuntu.com/usn/usn-348-1", "http://www.vupen.com/english/advisories/2006/3635", "http://www.gnu.org/software/gnutls/security.html", "http://www.mandriva.com/security/advisories?name=MDKSA-2006:166", "http://www.securityfocus.com/bid/20027", "https://exchange.xforce.ibmcloud.com/vulnerabilities/28953", "http://securitytracker.com/id?1016844", "http://support.avaya.com/elmodocs2/security/ASA-2006-250.htm", "http://security.gentoo.org/glsa/glsa-200609-15.xml", "http://www.redhat.com/support/errata/RHSA-2006-0680.html", "http://www.debian.org/security/2006/dsa-1182", "http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html", "http://www.novell.com/linux/security/advisories/2007_10_ibmjava.html", "http://www.novell.com/linux/security/advisories/2006_23_sr.html", "http://www.vupen.com/english/advisories/2007/2289"], "description": "verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from correctly verifying X.509 and other certificates that use PKCS, a variant of CVE-2006-4339.", "edition": 3, "reporter": "NVD", "published": "2006-09-14T15:07:00", "title": "CVE-2006-4790", "type": "cve", "enchantments": {"score": {"modified": "2017-10-11T11:06:47", "vector": "NONE", "value": 5.0}}, "assessment": {"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:9937", "href": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9937"}, "bulletinFamily": "NVD", "cvelist": ["CVE-2006-4790"], "scanner": [{"system": "http://oval.mitre.org/XMLSchema/oval-definitions-5", "name": "oval:org.mitre.oval:def:9937", "href": "http://oval.mitre.org/repository/data/DownloadDefinition?id=oval:org.mitre.oval:def:9937"}], "modified": "2017-10-10T21:31:16", "cpe": ["cpe:/a:gnu:gnutls:1.2.11", "cpe:/a:gnu:gnutls:1.0.25", "cpe:/a:gnu:gnutls:1.2.4", "cpe:/a:gnu:gnutls:1.1.23", "cpe:/a:gnu:gnutls:1.0.17", "cpe:/a:gnu:gnutls:1.3.0", "cpe:/a:gnu:gnutls:1.0.24", "cpe:/a:gnu:gnutls:1.1.15", "cpe:/a:gnu:gnutls:1.0.20", "cpe:/a:gnu:gnutls:1.3.3", "cpe:/a:gnu:gnutls:1.2.8.1a1", "cpe:/a:gnu:gnutls:1.4.0", "cpe:/a:gnu:gnutls:1.2.7", "cpe:/a:gnu:gnutls:1.1.20", "cpe:/a:gnu:gnutls:1.2.2", "cpe:/a:gnu:gnutls:1.3.5", "cpe:/a:gnu:gnutls:1.0.23", "cpe:/a:gnu:gnutls:1.1.17", "cpe:/a:gnu:gnutls:1.2.0", "cpe:/a:gnu:gnutls:1.1.22", "cpe:/a:gnu:gnutls:1.2.6", "cpe:/a:gnu:gnutls:1.1.19", "cpe:/a:gnu:gnutls:1.0.18", "cpe:/a:gnu:gnutls:1.1.14", "cpe:/a:gnu:gnutls:1.2.8", "cpe:/a:gnu:gnutls:1.1.18", "cpe:/a:gnu:gnutls:1.2.10", "cpe:/a:gnu:gnutls:1.3.1", "cpe:/a:gnu:gnutls:1.4.1", "cpe:/a:gnu:gnutls:1.3.2", "cpe:/a:gnu:gnutls:1.2.1", "cpe:/a:gnu:gnutls:1.0.22", "cpe:/a:gnu:gnutls:1.1.21", "cpe:/a:gnu:gnutls:1.2.3", "cpe:/a:gnu:gnutls:1.1.16", "cpe:/a:gnu:gnutls:1.2.9", "cpe:/a:gnu:gnutls:1.0.19", "cpe:/a:gnu:gnutls:1.3.4", "cpe:/a:gnu:gnutls:1.0.21", "cpe:/a:gnu:gnutls:1.2.5"], "id": "CVE-2006-4790", "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2006-4790", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "openvas": [{"lastseen": "2017-07-24T12:50:03", "references": [], "pluginID": "57893", "description": "The remote host is missing updates announced in\nadvisory GLSA 200609-15.", "edition": 2, "reporter": "Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com", "published": "2008-09-24T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Gentoo Security Advisory GLSA 200609-15 (gnutls)", "type": "openvas", "naslFamily": "Gentoo Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=57893", "id": "OPENVAS:57893", "sourceData": "# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from Gentoo's XML based advisory\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"GnuTLS fails to handle excess data which could allow an attacker to forge a\nPKCS #1 v1.5 signature.\";\ntag_solution = \"All GnuTLS users should update both packages:\n\n # emerge --sync\n # emerge --update --ask --verbose '>=net-libs/gnutls-1.4.4'\n\nhttp://www.securityspace.com/smysecure/catid.html?in=GLSA%20200609-15\nhttp://bugs.gentoo.org/show_bug.cgi?id=147682\";\ntag_summary = \"The remote host is missing updates announced in\nadvisory GLSA 200609-15.\";\n\n \n\nif(description)\n{\n script_id(57893);\n script_version(\"$Revision: 6596 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 11:21:37 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-24 21:14:03 +0200 (Wed, 24 Sep 2008)\");\n script_cve_id(\"CVE-2006-4790\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"Gentoo Security Advisory GLSA 200609-15 (gnutls)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Gentoo Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/gentoo\", \"ssh/login/pkg\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-gentoo.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = ispkgvuln(pkg:\"net-libs/gnutls\", unaffected: make_list(\"ge 1.4.4\"), vulnerable: make_list(\"lt 1.4.4\"))) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-07-02T21:10:26", "references": [], "pluginID": "57467", "description": "The remote host is missing an update to the system\nas announced in the referenced advisory.", "edition": 1, "reporter": "Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com", "published": "2008-09-04T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "FreeBSD Ports: gnutls, gnutls-devel", "type": "openvas", "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2016-09-20T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=57467", "id": "OPENVAS:57467", "sourceData": "#\n#VID 64bf6234-520d-11db-8f1a-000a48049292\n# OpenVAS Vulnerability Test\n# $\n# Description: Auto generated from vuxml or freebsd advisories\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisories, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"The following packages are affected:\n gnutls gnutls-devel\";\ntag_solution = \"Update your system with the appropriate patches or\nsoftware upgrades.\n\nhttp://secunia.com/advisories/21937\nhttp://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html\nhttp://www.vuxml.org/freebsd/64bf6234-520d-11db-8f1a-000a48049292.html\";\ntag_summary = \"The remote host is missing an update to the system\nas announced in the referenced advisory.\";\n\n\nif(description)\n{\n script_id(57467);\n script_version(\"$Revision: 4118 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2016-09-20 07:32:38 +0200 (Tue, 20 Sep 2016) $\");\n script_tag(name:\"creation_date\", value:\"2008-09-04 20:41:11 +0200 (Thu, 04 Sep 2008)\");\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"FreeBSD Ports: gnutls, gnutls-devel\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"FreeBSD Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/freebsdrel\", \"login/SSH/success\");\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-bsd.inc\");\n\ntxt = \"\";\nvuln = 0;\nbver = portver(pkg:\"gnutls\");\nif(!isnull(bver) && revcomp(a:bver, b:\"1.4.4\")<0) {\n txt += 'Package gnutls version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\nbver = portver(pkg:\"gnutls-devel\");\nif(!isnull(bver) && revcomp(a:bver, b:\"1.4.4\")<0) {\n txt += 'Package gnutls-devel version ' + bver + ' is installed which is known to be vulnerable.\\n';\n vuln = 1;\n}\n\nif(vuln) {\n security_message(data:string(txt));\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-07-26T08:55:18", "references": [], "pluginID": "65366", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n IBMJava2-SDK\n IBMJava2-JRE\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5015753 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/", "edition": 2, "reporter": "Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com", "published": "2009-10-10T00:00:00", "title": "SLES9: Security update for IBM Java2 JRE and SDK", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2017-07-11T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=65366", "id": "OPENVAS:65366", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: sles9p5015753.nasl 6666 2017-07-11 13:13:36Z cfischer $\n# Description: Security update for IBM Java2 JRE and SDK\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_summary = \"The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n IBMJava2-SDK\n IBMJava2-JRE\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5015753 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/\";\n\ntag_solution = \"Please install the updates provided by SuSE.\";\n \nif(description)\n{\n script_id(65366);\n script_version(\"$Revision: 6666 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-11 15:13:36 +0200 (Tue, 11 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-10-10 16:11:46 +0200 (Sat, 10 Oct 2009)\");\n script_cve_id(\"CVE-2006-4790\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"SLES9: Security update for IBM Java2 JRE and SDK\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"SLES9.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-07-24T12:50:02", "references": [], "pluginID": "57406", "description": "The remote host is missing an update to gnutls11\nannounced via advisory DSA 1182-1.\n\nDaniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package\nthat could allow an attacker to generate a forged signature that GNU TLS\nwill accept as valid.", "edition": 2, "reporter": "Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com", "published": "2008-01-17T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "title": "Debian Security Advisory DSA 1182-1 (gnutls11)", "type": "openvas", "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2017-07-07T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=57406", "id": "OPENVAS:57406", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: deb_1182_1.nasl 6616 2017-07-07 12:10:49Z cfischer $\n# Description: Auto-generated from advisory DSA 1182-1\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2007 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largerly excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_solution = \"For the stable distribution (sarge) this problem has been fixed in\nversion 1.0.16-13.2sarge2.\n\nThe unstable distribution (sid) does no longer contain gnutls11, for\ngnutls13 this problem has been fixed in version 1.4.4-1.\n\nWe recommend that you upgrade your GNU TLS package.\n\n https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201182-1\";\ntag_summary = \"The remote host is missing an update to gnutls11\nannounced via advisory DSA 1182-1.\n\nDaniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package\nthat could allow an attacker to generate a forged signature that GNU TLS\nwill accept as valid.\";\n\n\nif(description)\n{\n script_id(57406);\n script_version(\"$Revision: 6616 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-07-07 14:10:49 +0200 (Fri, 07 Jul 2017) $\");\n script_tag(name:\"creation_date\", value:\"2008-01-17 23:13:11 +0100 (Thu, 17 Jan 2008)\");\n script_cve_id(\"CVE-2006-4790\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"Debian Security Advisory DSA 1182-1 (gnutls11)\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2006 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"Debian Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/debian_linux\", \"ssh/login/packages\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-deb.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isdpkgvuln(pkg:\"gnutls-bin\", ver:\"1.0.16-13.2sarge2\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgnutls11\", ver:\"1.0.16-13.2sarge2\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgnutls11-dbg\", ver:\"1.0.16-13.2sarge2\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\nif ((res = isdpkgvuln(pkg:\"libgnutls11-dev\", ver:\"1.0.16-13.2sarge2\", rls:\"DEB3.1\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-04-06T11:37:35", "references": [], "pluginID": "136141256231065366", "description": "The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n IBMJava2-SDK\n IBMJava2-JRE\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5015753 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/", "edition": 1, "reporter": "Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com", "published": "2009-10-10T00:00:00", "title": "SLES9: Security update for IBM Java2 JRE and SDK", "type": "openvas", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-04-06T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=136141256231065366", "id": "OPENVAS:136141256231065366", "sourceData": "# OpenVAS Vulnerability Test\n# $Id: sles9p5015753.nasl 9350 2018-04-06 07:03:33Z cfischer $\n# Description: Security update for IBM Java2 JRE and SDK\n#\n# Authors:\n# Thomas Reinke <reinke@securityspace.com>\n#\n# Copyright:\n# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\n# Text descriptions are largely excerpted from the referenced\n# advisory, and are Copyright (c) the respective author(s)\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2,\n# or at your option, GNU General Public License version 3,\n# as published by the Free Software Foundation\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n#\n\ninclude(\"revisions-lib.inc\");\ntag_summary = \"The remote host is missing updates to packages that affect\nthe security of your system. One or more of the following packages\nare affected:\n\n IBMJava2-SDK\n IBMJava2-JRE\n\nFor more information, please visit the referenced security\nadvisories.\n\nMore details may also be found by searching for keyword\n5015753 within the SuSE Enterprise Server 9 patch\ndatabase at http://download.novell.com/patch/finder/\";\n\ntag_solution = \"Please install the updates provided by SuSE.\";\n \nif(description)\n{\n script_oid(\"1.3.6.1.4.1.25623.1.0.65366\");\n script_version(\"$Revision: 9350 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2018-04-06 09:03:33 +0200 (Fri, 06 Apr 2018) $\");\n script_tag(name:\"creation_date\", value:\"2009-10-10 16:11:46 +0200 (Sat, 10 Oct 2009)\");\n script_cve_id(\"CVE-2006-4790\");\n script_tag(name:\"cvss_base\", value:\"5.0\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_name(\"SLES9: Security update for IBM Java2 JRE and SDK\");\n\n\n\n script_category(ACT_GATHER_INFO);\n\n script_copyright(\"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"summary\" , value : tag_summary);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n#\n# The script code starts here\n#\n\ninclude(\"pkg-lib-rpm.inc\");\n\nres = \"\";\nreport = \"\";\nif ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"SLES9.0\")) != NULL) {\n report += res;\n}\n\nif (report != \"\") {\n security_message(data:report);\n} else if (__pkg_match) {\n exit(99); # Not vulnerable.\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2017-12-12T11:21:05", "references": ["2007-010"], "pluginID": "850066", "description": "Check for the Version of IBMJava2", "edition": 3, "reporter": "Copyright (C) 2009 Greenbone Networks GmbH", "published": "2009-01-28T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 7.5}}, "title": "SuSE Update for IBMJava2 SUSE-SA:2007:010", "type": "openvas", "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790", "CVE-2006-6731", "CVE-2006-4339", "CVE-2006-6736", "CVE-2006-6737", "CVE-2006-6745"], "modified": "2017-12-08T00:00:00", "href": "http://plugins.openvas.org/nasl.php?oid=850066", "id": "OPENVAS:850066", "sourceData": "###############################################################################\n# OpenVAS Vulnerability Test\n# $Id: gb_suse_2007_010.nasl 8050 2017-12-08 09:34:29Z santu $\n#\n# SuSE Update for IBMJava2 SUSE-SA:2007:010\n#\n# Authors:\n# System Generated Check\n#\n# Copyright:\n# Copyright (c) 2009 Greenbone Networks GmbH, http://www.greenbone.net\n#\n# This program is free software; you can redistribute it and/or modify\n# it under the terms of the GNU General Public License version 2\n# (or any later version), as published by the Free Software Foundation.\n#\n# This program is distributed in the hope that it will be useful,\n# but WITHOUT ANY WARRANTY; without even the implied warranty of\n# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the\n# GNU General Public License for more details.\n#\n# You should have received a copy of the GNU General Public License\n# along with this program; if not, write to the Free Software\n# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.\n###############################################################################\n\ninclude(\"revisions-lib.inc\");\ntag_insight = \"Various security problems and bugs have been fixed in the IBMJava\n JRE and SDK.\n\n The IBM Java packages were updated to:\n - IBM Java 1.4.2 to Service Refresh 7.\n - IBM JAVA 1.3.10 to Service Refresh 10.\n\n It contains several security fixes also fixed in SUN Java including:\n\n - CVE-2006-4339: fix for the RSA exponent padding attack.\n - CVE-2006-6737: 2 unspecified vulnerabilities that\n allow untrusted applets to access data in other applets.\n - CVE-2006-6745: Multiple unspecified vulnerabilities that allow\n applets to gain privileges related to serialization bugs in the JRE.\n - CVE-2006-6731: Multiple buffer overflows in java image handling\n routines that allow attackers to potentially read/write/execute\n local files.\n\n A full overview is at:\n http://www-128.ibm.com/developerworks/java/jdk/alerts/\n\n The update also contains important timezone updates:\n - US daylight saving time update starting 2007.\n - Western Australia daylight savings time introduction in December 2006.\n - A general update to current timezone data-set.\";\n\ntag_impact = \"remote code execution\";\ntag_affected = \"IBMJava2 on SuSE Linux Enterprise Server 8, SUSE SLES 9, Open Enterprise Server, Novell Linux POS 9, SUSE SLES 10\";\ntag_solution = \"Please Install the Updated Packages.\";\n\n\n\nif(description)\n{\n script_id(850066);\n script_version(\"$Revision: 8050 $\");\n script_tag(name:\"last_modification\", value:\"$Date: 2017-12-08 10:34:29 +0100 (Fri, 08 Dec 2017) $\");\n script_tag(name:\"creation_date\", value:\"2009-01-28 13:40:10 +0100 (Wed, 28 Jan 2009)\");\n script_tag(name:\"cvss_base\", value:\"9.3\");\n script_tag(name:\"cvss_base_vector\", value:\"AV:N/AC:M/Au:N/C:C/I:C/A:C\");\n script_xref(name: \"SUSE-SA\", value: \"2007-010\");\n script_cve_id(\"CVE-2006-4339\", \"CVE-2006-4790\", \"CVE-2006-6731\", \"CVE-2006-6736\", \"CVE-2006-6737\", \"CVE-2006-6745\");\n script_name( \"SuSE Update for IBMJava2 SUSE-SA:2007:010\");\n\n script_summary(\"Check for the Version of IBMJava2\");\n script_category(ACT_GATHER_INFO);\n script_copyright(\"Copyright (C) 2009 Greenbone Networks GmbH\");\n script_family(\"SuSE Local Security Checks\");\n script_dependencies(\"gather-package-list.nasl\");\n script_mandatory_keys(\"ssh/login/suse_sles\", \"ssh/login/rpms\");\n script_tag(name : \"impact\" , value : tag_impact);\n script_tag(name : \"affected\" , value : tag_affected);\n script_tag(name : \"solution\" , value : tag_solution);\n script_tag(name : \"insight\" , value : tag_insight);\n script_tag(name:\"qod_type\", value:\"package\");\n script_tag(name:\"solution_type\", value:\"VendorFix\");\n exit(0);\n}\n\n\ninclude(\"pkg-lib-rpm.inc\");\n\nrelease = get_kb_item(\"ssh/login/release\");\n\n\nres = \"\";\nif(release == NULL){\n exit(0);\n}\n\nif(release == \"OES\")\n{\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-JRE\", rpm:\"IBMJava2-JRE~1.4.2~0.76\", rls:\"OES\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"OES\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"SLES9\")\n{\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-JRE\", rpm:\"IBMJava2-JRE~1.4.2~0.76\", rls:\"SLES9\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"SLES9\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"SLES10\")\n{\n\n if ((res = isrpmvuln(pkg:\"java-1_4_2-ibm\", rpm:\"java-1_4_2-ibm~1.4.2.s4~23.10\", rls:\"SLES10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1_4_2-ibm-devel\", rpm:\"java-1_4_2-ibm-devel~1.4.2.s4~23.10\", rls:\"SLES10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1_4_2-ibm-jdbc\", rpm:\"java-1_4_2-ibm-jdbc~1.4.2.s4~23.10\", rls:\"SLES10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"java-1_4_2-ibm-plugin\", rpm:\"java-1_4_2-ibm-plugin~1.4.2.s4~23.10\", rls:\"SLES10\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"SLESSr8\")\n{\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-JRE\", rpm:\"IBMJava2-JRE~1.3.1~237\", rls:\"SLESSr8\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.3.1~237\", rls:\"SLESSr8\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n\n\nif(release == \"NLPOS9\")\n{\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-JRE\", rpm:\"IBMJava2-JRE~1.4.2~0.76\", rls:\"NLPOS9\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if ((res = isrpmvuln(pkg:\"IBMJava2-SDK\", rpm:\"IBMJava2-SDK~1.4.2~0.76\", rls:\"NLPOS9\")) != NULL)\n {\n security_message(data:res);\n exit(0);\n }\n\n if (__pkg_match) exit(99); # Not vulnerable.\n exit(0);\n}\n", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}], "oraclelinux": [{"lastseen": "2018-08-31T01:42:30", "references": [], "affectedPackage": [{"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "ia64", "packageFilename": "gnutls-1.0.20-3.2.3.ia64.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageFilename": "gnutls-devel-1.0.20-3.2.3.i386.rpm", "packageName": "gnutls-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "src", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "src", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "src", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "src", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "x86_64", "packageFilename": "gnutls-1.0.20-3.2.3.x86_64.rpm", "packageName": "gnutls", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "ia64", "packageFilename": "gnutls-devel-1.0.20-3.2.3.ia64.rpm", "packageName": "gnutls-devel", "operator": "lt"}, {"OS": "Oracle Linux", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "x86_64", "packageFilename": "gnutls-devel-1.0.20-3.2.3.x86_64.rpm", "packageName": "gnutls-devel", "operator": "lt"}], "description": " [1.0.20-3.2.3]\n - detect forged signatures - CVE-2006-4790 (#206411), patch\n backported from upstream ", "edition": 3, "reporter": "Oracle", "published": "2006-11-30T00:00:00", "title": "Important gnutls security update ", "type": "oraclelinux", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-11-30T00:00:00", "id": "ELSA-2006-0680", "href": "http://linux.oracle.com/errata/ELSA-2006-0680.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "nessus": [{"lastseen": "2018-11-17T07:13:40", "references": ["https://access.redhat.com/security/cve/cve-2006-4790", "https://access.redhat.com/errata/RHSA-2006:0680"], "pluginID": "22360", "description": "Updated gnutls packages that fix a security issue are now available for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and protocols such as TLS. GnuTLS includes libtasn1, a library developed for ASN.1 structures management that includes DER encoding and decoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5 signatures. Where an RSA key with exponent 3 is used it may be possible for an attacker to forge a PKCS #1 v1.5 signature that would be incorrectly verified by implementations that do not check for excess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant of the Bleichenbacker attack. This issue affects applications that use GnuTLS to verify X.509 certificates as well as other uses of PKCS #1 v1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the Evolution client when connecting to an Exchange server or when publishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain a backported patch from the GnuTLS maintainers to correct this issue.", "edition": 8, "reporter": "Tenable", "published": "2006-09-15T00:00:00", "title": "RHEL 4 : gnutls (RHSA-2006:0680)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Red Hat Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-11-16T00:00:00", "cpe": ["p-cpe:/a:redhat:enterprise_linux:gnutls-devel", "cpe:/o:redhat:enterprise_linux:4", "p-cpe:/a:redhat:enterprise_linux:gnutls"], "id": "REDHAT-RHSA-2006-0680.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22360", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2006:0680. The text \n# itself is copyright (C) Red Hat, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22360);\n script_version (\"1.20\");\n script_cvs_date(\"Date: 2018/11/16 15:19:25\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"RHSA\", value:\"2006:0680\");\n\n script_name(english:\"RHEL 4 : gnutls (RHSA-2006:0680)\");\n script_summary(english:\"Checks the rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Red Hat host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gnutls packages that fix a security issue are now available\nfor Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and\nprotocols such as TLS. GnuTLS includes libtasn1, a library developed\nfor ASN.1 structures management that includes DER encoding and\ndecoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5\nsignatures. Where an RSA key with exponent 3 is used it may be\npossible for an attacker to forge a PKCS #1 v1.5 signature that would\nbe incorrectly verified by implementations that do not check for\nexcess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant\nof the Bleichenbacker attack. This issue affects applications that use\nGnuTLS to verify X.509 certificates as well as other uses of PKCS #1\nv1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the\nEvolution client when connecting to an Exchange server or when\npublishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain\na backported patch from the GnuTLS maintainers to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/security/cve/cve-2006-4790\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://access.redhat.com/errata/RHSA-2006:0680\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gnutls and / or gnutls-devel packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:redhat:enterprise_linux:gnutls-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:redhat:enterprise_linux:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/14\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/09/15\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Red Hat Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"misc_func.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || \"Red Hat\" >!< release) audit(AUDIT_OS_NOT, \"Red Hat\");\nos_ver = eregmatch(pattern: \"Red Hat Enterprise Linux.*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Red Hat\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Red Hat 4.x\", \"Red Hat \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\" && \"s390\" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Red Hat\", cpu);\n\nyum_updateinfo = get_kb_item(\"Host/RedHat/yum-updateinfo\");\nif (!empty_or_null(yum_updateinfo)) \n{\n rhsa = \"RHSA-2006:0680\";\n yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);\n if (!empty_or_null(yum_report))\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : yum_report \n );\n exit(0);\n }\n else\n {\n audit_message = \"affected by Red Hat security advisory \" + rhsa;\n audit(AUDIT_OS_NOT, audit_message);\n }\n}\nelse\n{\n flag = 0;\n if (rpm_check(release:\"RHEL4\", reference:\"gnutls-1.0.20-3.2.3\")) flag++;\n if (rpm_check(release:\"RHEL4\", reference:\"gnutls-devel-1.0.20-3.2.3\")) flag++;\n\n if (flag)\n {\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : rpm_report_get() + redhat_report_package_caveat()\n );\n exit(0);\n }\n else\n {\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gnutls / gnutls-devel\");\n }\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:44:15", "references": [], "pluginID": "24552", "description": "verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent 3, does not properly handle excess data in the digestAlgorithm.parameters field when generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents GnuTLS from correctly verifying X.509 and other certificates that use PKCS, a variant of CVE-2006-4339.\n\nThe provided packages have been patched to correct this issues.", "edition": 5, "reporter": "Tenable", "published": "2007-02-18T00:00:00", "title": "Mandrake Linux Security Advisory : gnutls (MDKSA-2006:166)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Mandriva Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:mandriva:linux:libgnutls11-devel", "cpe:/o:mandriva:linux:2006", "p-cpe:/a:mandriva:linux:gnutls", "p-cpe:/a:mandriva:linux:lib64gnutls11", "p-cpe:/a:mandriva:linux:lib64gnutls11-devel", "p-cpe:/a:mandriva:linux:libgnutls11"], "id": "MANDRAKE_MDKSA-2006-166.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=24552", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Mandrake Linux Security Advisory MDKSA-2006:166. \n# The text itself is copyright (C) Mandriva S.A.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(24552);\n script_version (\"1.15\");\n script_cvs_date(\"Date: 2018/07/19 20:59:14\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_xref(name:\"MDKSA\", value:\"2006:166\");\n\n script_name(english:\"Mandrake Linux Security Advisory : gnutls (MDKSA-2006:166)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Mandrake Linux host is missing one or more security\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"verify.c in GnuTLS before 1.4.4, when using an RSA key with exponent\n3, does not properly handle excess data in the\ndigestAlgorithm.parameters field when generating a hash, which allows\nremote attackers to forge a PKCS #1 v1.5 signature that is signed by\nthat RSA key and prevents GnuTLS from correctly verifying X.509 and\nother certificates that use PKCS, a variant of CVE-2006-4339.\n\nThe provided packages have been patched to correct this issues.\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gnutls11\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:lib64gnutls11-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgnutls11\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:mandriva:linux:libgnutls11-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:mandriva:linux:2006\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/19\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/02/18\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Mandriva Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/Mandrake/release\", \"Host/Mandrake/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Mandrake/release\")) audit(AUDIT_OS_NOT, \"Mandriva / Mandake Linux\");\nif (!get_kb_item(\"Host/Mandrake/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (cpu !~ \"^(amd64|i[3-6]86|x86_64)$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Mandriva / Mandrake Linux\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"MDK2006.0\", reference:\"gnutls-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gnutls11-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"x86_64\", reference:\"lib64gnutls11-devel-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgnutls11-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\nif (rpm_check(release:\"MDK2006.0\", cpu:\"i386\", reference:\"libgnutls11-devel-1.0.25-2.2.20060mdk\", yank:\"mdk\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:46:37", "references": ["http://support.novell.com/security/cve/CVE-2006-4790.html"], "pluginID": "41101", "description": "A security problem in the GNU TLS library has been found :\n\nIf an RSA key with exponent 3 is used, the PKCS padding gets removed before generating a hash, which allows remote attackers to forge a PKCS signature that apapears to be signed by that RSA key and prevents gnutls from correctly verifying the certificate.\n\nThis bug has been tracked by the Mitre CVE ID CVE-2006-4790.", "edition": 4, "reporter": "Tenable", "published": "2009-09-24T00:00:00", "title": "SuSE9 Security Update : gnutls (YOU Patch Number 11228)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2012-04-23T00:00:00", "cpe": ["cpe:/o:suse:suse_linux"], "id": "SUSE9_11228.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=41101", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(41101);\n script_version(\"$Revision: 1.4 $\");\n script_cvs_date(\"$Date: 2012/04/23 18:14:41 $\");\n\n script_cve_id(\"CVE-2006-4790\");\n\n script_name(english:\"SuSE9 Security Update : gnutls (YOU Patch Number 11228)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 9 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A security problem in the GNU TLS library has been found :\n\nIf an RSA key with exponent 3 is used, the PKCS padding gets removed\nbefore generating a hash, which allows remote attackers to forge a\nPKCS signature that apapears to be signed by that RSA key and prevents\ngnutls from correctly verifying the certificate.\n\nThis bug has been tracked by the Mitre CVE ID CVE-2006-4790.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2006-4790.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply YOU patch number 11228.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/15\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2009/09/24\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2009-2012 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 9 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SUSE9\", reference:\"gnutls-1.0.8-26.10\")) flag++;\nif (rpm_check(release:\"SUSE9\", reference:\"gnutls-devel-1.0.8-26.10\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:43:30", "references": ["http://www.debian.org/security/2006/dsa-1182"], "pluginID": "22724", "description": "Daniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package that could allow an attacker to generate a forged signature that GNU TLS will accept as valid.", "edition": 6, "reporter": "Tenable", "published": "2006-10-14T00:00:00", "title": "Debian DSA-1182-1 : gnutls11 - cryptographic weakness", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "Debian Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-08-09T00:00:00", "cpe": ["cpe:/o:debian:debian_linux:3.1", "p-cpe:/a:debian:debian_linux:gnutls11"], "id": "DEBIAN_DSA-1182.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22724", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Debian Security Advisory DSA-1182. The text \n# itself is copyright (C) Software in the Public Interest, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22724);\n script_version(\"1.11\");\n script_cvs_date(\"Date: 2018/08/09 17:06:36\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_xref(name:\"DSA\", value:\"1182\");\n\n script_name(english:\"Debian DSA-1182-1 : gnutls11 - cryptographic weakness\");\n script_summary(english:\"Checks dpkg output for the updated package\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Debian host is missing a security-related update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Daniel Bleichenbacher discovered a flaw in GNU TLS cryptographic\npackage that could allow an attacker to generate a forged signature\nthat GNU TLS will accept as valid.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.debian.org/security/2006/dsa-1182\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\n\"Upgrade the GNU TLS package.\n\nFor the stable distribution (sarge) this problem has been fixed in\nversion 1.0.16-13.2sarge2.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:debian:debian_linux:gnutls11\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:debian:debian_linux:3.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/10/14\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Debian Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/Debian/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"debian_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/Debian/release\")) audit(AUDIT_OS_NOT, \"Debian\");\nif (!get_kb_item(\"Host/Debian/dpkg-l\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\nif (deb_check(release:\"3.1\", prefix:\"gnutls-bin\", reference:\"1.0.16-13.2sarge2\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libgnutls11\", reference:\"1.0.16-13.2sarge2\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libgnutls11-dbg\", reference:\"1.0.16-13.2sarge2\")) flag++;\nif (deb_check(release:\"3.1\", prefix:\"libgnutls11-dev\", reference:\"1.0.16-13.2sarge2\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-11-22T03:10:29", "references": ["http://www.nessus.org/u?04ef6bdf", "http://www.nessus.org/u?f0321a8c"], "pluginID": "22501", "description": "Secunia reports :\n\nA vulnerability has been reported in GnuTLS, which can be exploited by malicious people to bypass certain security restrictions.\n\nThe vulnerability is caused due to an error in the verification of certain signatures. If a RSA key with exponent 3 is used, it may be possible to forge PKCS #1 v1.5 signatures signed with that key.", "edition": 6, "reporter": "Tenable", "published": "2006-10-05T00:00:00", "title": "FreeBSD : gnutls -- RSA Signature Forgery Vulnerability (64bf6234-520d-11db-8f1a-000a48049292)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "FreeBSD Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-11-21T00:00:00", "cpe": ["p-cpe:/a:freebsd:freebsd:gnutls", "cpe:/o:freebsd:freebsd", "p-cpe:/a:freebsd:freebsd:gnutls-devel"], "id": "FREEBSD_PKG_64BF6234520D11DB8F1A000A48049292.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22501", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from the FreeBSD VuXML database :\n#\n# Copyright 2003-2018 Jacques Vidrine and contributors\n#\n# Redistribution and use in source (VuXML) and 'compiled' forms (SGML,\n# HTML, PDF, PostScript, RTF and so forth) with or without modification,\n# are permitted provided that the following conditions are met:\n# 1. Redistributions of source code (VuXML) must retain the above\n# copyright notice, this list of conditions and the following\n# disclaimer as the first lines of this file unmodified.\n# 2. Redistributions in compiled form (transformed to other DTDs,\n# published online in any format, converted to PDF, PostScript,\n# RTF and other formats) must reproduce the above copyright\n# notice, this list of conditions and the following disclaimer\n# in the documentation and/or other materials provided with the\n# distribution.\n# \n# THIS DOCUMENTATION IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS \"AS IS\"\n# AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO,\n# THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR\n# PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS\n# BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,\n# OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT\n# OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR\n# BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY,\n# WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE\n# OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS DOCUMENTATION,\n# EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22501);\n script_version(\"1.15\");\n script_cvs_date(\"Date: 2018/11/21 10:46:30\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"Secunia\", value:\"21937\");\n\n script_name(english:\"FreeBSD : gnutls -- RSA Signature Forgery Vulnerability (64bf6234-520d-11db-8f1a-000a48049292)\");\n script_summary(english:\"Checks for updated packages in pkg_info output\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote FreeBSD host is missing one or more security-related\nupdates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Secunia reports :\n\nA vulnerability has been reported in GnuTLS, which can be exploited by\nmalicious people to bypass certain security restrictions.\n\nThe vulnerability is caused due to an error in the verification of\ncertain signatures. If a RSA key with exponent 3 is used, it may be\npossible to forge PKCS #1 v1.5 signatures signed with that key.\"\n );\n # http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?04ef6bdf\"\n );\n # https://vuxml.freebsd.org/freebsd/64bf6234-520d-11db-8f1a-000a48049292.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?f0321a8c\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:ND/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:freebsd:freebsd:gnutls-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:freebsd:freebsd\");\n\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/08\");\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/10/02\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/10/05\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"FreeBSD Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/FreeBSD/release\", \"Host/FreeBSD/pkg_info\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"freebsd_package.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/FreeBSD/release\")) audit(AUDIT_OS_NOT, \"FreeBSD\");\nif (!get_kb_item(\"Host/FreeBSD/pkg_info\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\nflag = 0;\n\nif (pkg_test(save_report:TRUE, pkg:\"gnutls<1.4.4\")) flag++;\nif (pkg_test(save_report:TRUE, pkg:\"gnutls-devel<1.4.4\")) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:pkg_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-12-02T15:43:24", "references": ["https://usn.ubuntu.com/348-1/"], "pluginID": "27928", "description": "The GnuTLS library did not sufficiently check the padding of PKCS #1 v1.5 signatures if the exponent of the public key is 3 (which is widely used for CAs). This could be exploited to forge signatures without the need of the secret key.\n\nNote that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.", "edition": 6, "reporter": "Tenable", "published": "2007-11-10T00:00:00", "title": "Ubuntu 5.04 / 5.10 / 6.06 LTS : gnutls11, gnutls12 vulnerability (USN-348-1)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Ubuntu Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-12-01T00:00:00", "cpe": ["p-cpe:/a:canonical:ubuntu_linux:libgnutls11-dev", "p-cpe:/a:canonical:ubuntu_linux:libgnutls11", "p-cpe:/a:canonical:ubuntu_linux:libgnutls-dev", "p-cpe:/a:canonical:ubuntu_linux:libgnutls12", "cpe:/o:canonical:ubuntu_linux:5.04", "p-cpe:/a:canonical:ubuntu_linux:gnutls-bin", "p-cpe:/a:canonical:ubuntu_linux:libgnutls12-dbg", "cpe:/o:canonical:ubuntu_linux:5.10", "p-cpe:/a:canonical:ubuntu_linux:libgnutls11-dbg", "cpe:/o:canonical:ubuntu_linux:6.06:-:lts"], "id": "UBUNTU_USN-348-1.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=27928", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Ubuntu Security Notice USN-348-1. The text \n# itself is copyright (C) Canonical, Inc. See \n# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered \n# trademark of Canonical, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(27928);\n script_version(\"1.14\");\n script_cvs_date(\"Date: 2018/12/01 15:12:38\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"USN\", value:\"348-1\");\n\n script_name(english:\"Ubuntu 5.04 / 5.10 / 6.06 LTS : gnutls11, gnutls12 vulnerability (USN-348-1)\");\n script_summary(english:\"Checks dpkg output for updated packages.\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\n\"The remote Ubuntu host is missing one or more security-related\npatches.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"The GnuTLS library did not sufficiently check the padding of PKCS #1\nv1.5 signatures if the exponent of the public key is 3 (which is\nwidely used for CAs). This could be exploited to forge signatures\nwithout the need of the secret key.\n\nNote that Tenable Network Security has extracted the preceding\ndescription block directly from the Ubuntu security advisory. Tenable\nhas attempted to automatically clean and format it as much as possible\nwithout introducing additional issues.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://usn.ubuntu.com/348-1/\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Update the affected packages.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:gnutls-bin\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls11\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls11-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls11-dev\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls12\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:canonical:ubuntu_linux:libgnutls12-dbg\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:5.04\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:5.10\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:canonical:ubuntu_linux:6.06:-:lts\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/18\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/11/10\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"Ubuntu Security Notice (C) 2007-2018 Canonical, Inc. / NASL script (C) 2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"Ubuntu Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/cpu\", \"Host/Ubuntu\", \"Host/Ubuntu/release\", \"Host/Debian/dpkg-l\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"ubuntu.inc\");\ninclude(\"misc_func.inc\");\n\nif ( ! get_kb_item(\"Host/local_checks_enabled\") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/Ubuntu/release\");\nif ( isnull(release) ) audit(AUDIT_OS_NOT, \"Ubuntu\");\nrelease = chomp(release);\nif (! ereg(pattern:\"^(5\\.04|5\\.10|6\\.06)$\", string:release)) audit(AUDIT_OS_NOT, \"Ubuntu 5.04 / 5.10 / 6.06\", \"Ubuntu \" + release);\nif ( ! get_kb_item(\"Host/Debian/dpkg-l\") ) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Ubuntu\", cpu);\n\nflag = 0;\n\nif (ubuntu_check(osver:\"5.04\", pkgname:\"gnutls-bin\", pkgver:\"1.0.16-13ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"libgnutls11\", pkgver:\"1.0.16-13ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"libgnutls11-dbg\", pkgver:\"1.0.16-13ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"5.04\", pkgname:\"libgnutls11-dev\", pkgver:\"1.0.16-13ubuntu0.3\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"gnutls-bin\", pkgver:\"1.0.16-13.1ubuntu1.2\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"libgnutls11\", pkgver:\"1.0.16-13.1ubuntu1.2\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"libgnutls11-dbg\", pkgver:\"1.0.16-13.1ubuntu1.2\")) flag++;\nif (ubuntu_check(osver:\"5.10\", pkgname:\"libgnutls11-dev\", pkgver:\"1.0.16-13.1ubuntu1.2\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"gnutls-bin\", pkgver:\"1.2.9-2ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls-dev\", pkgver:\"1.2.9-2ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls11\", pkgver:\"1.0.16-14ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls11-dbg\", pkgver:\"1.0.16-14ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls11-dev\", pkgver:\"1.0.16-14ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls12\", pkgver:\"1.2.9-2ubuntu1.1\")) flag++;\nif (ubuntu_check(osver:\"6.06\", pkgname:\"libgnutls12-dbg\", pkgver:\"1.2.9-2ubuntu1.1\")) flag++;\n\nif (flag)\n{\n security_report_v4(\n port : 0,\n severity : SECURITY_WARNING,\n extra : ubuntu_report_get()\n );\n exit(0);\n}\nelse\n{\n tested = ubuntu_pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gnutls-bin / libgnutls-dev / libgnutls11 / libgnutls11-dbg / etc\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:51:52", "references": ["https://oss.oracle.com/pipermail/el-errata/2006-November/000006.html"], "pluginID": "67410", "description": "From Red Hat Security Advisory 2006:0680 :\n\nUpdated gnutls packages that fix a security issue are now available for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and protocols such as TLS. GnuTLS includes libtasn1, a library developed for ASN.1 structures management that includes DER encoding and decoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5 signatures. Where an RSA key with exponent 3 is used it may be possible for an attacker to forge a PKCS #1 v1.5 signature that would be incorrectly verified by implementations that do not check for excess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant of the Bleichenbacker attack. This issue affects applications that use GnuTLS to verify X.509 certificates as well as other uses of PKCS #1 v1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the Evolution client when connecting to an Exchange server or when publishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain a backported patch from the GnuTLS maintainers to correct this issue.", "edition": 5, "reporter": "Tenable", "published": "2013-07-12T00:00:00", "title": "Oracle Linux 4 : gnutls (ELSA-2006-0680)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "Oracle Linux Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-07-18T00:00:00", "cpe": ["p-cpe:/a:oracle:linux:gnutls", "cpe:/o:oracle:linux:4", "p-cpe:/a:oracle:linux:gnutls-devel"], "id": "ORACLELINUX_ELSA-2006-0680.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=67410", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from Red Hat Security Advisory RHSA-2006:0680 and \n# Oracle Linux Security Advisory ELSA-2006-0680 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(67410);\n script_version(\"1.5\");\n script_cvs_date(\"Date: 2018/07/18 17:43:55\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"RHSA\", value:\"2006:0680\");\n\n script_name(english:\"Oracle Linux 4 : gnutls (ELSA-2006-0680)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote Oracle Linux host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"From Red Hat Security Advisory 2006:0680 :\n\nUpdated gnutls packages that fix a security issue are now available\nfor Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and\nprotocols such as TLS. GnuTLS includes libtasn1, a library developed\nfor ASN.1 structures management that includes DER encoding and\ndecoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5\nsignatures. Where an RSA key with exponent 3 is used it may be\npossible for an attacker to forge a PKCS #1 v1.5 signature that would\nbe incorrectly verified by implementations that do not check for\nexcess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant\nof the Bleichenbacker attack. This issue affects applications that use\nGnuTLS to verify X.509 certificates as well as other uses of PKCS #1\nv1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the\nEvolution client when connecting to an Exchange server or when\npublishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain\na backported patch from the GnuTLS maintainers to correct this issue.\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"https://oss.oracle.com/pipermail/el-errata/2006-November/000006.html\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gnutls packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:oracle:linux:gnutls-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:oracle:linux:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/11/30\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2013/07/12\");\n script_set_attribute(attribute:\"vuln_publication_date\", value:\"2006/09/08\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2013-2018 Tenable Network Security, Inc.\");\n script_family(english:\"Oracle Linux Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/OracleLinux\", \"Host/RedHat/release\", \"Host/RedHat/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/OracleLinux\")) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nrelease = get_kb_item(\"Host/RedHat/release\");\nif (isnull(release) || !eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux)\", string:release)) audit(AUDIT_OS_NOT, \"Oracle Linux\");\nos_ver = eregmatch(pattern: \"Oracle (?:Linux Server|Enterprise Linux) .*release ([0-9]+(\\.[0-9]+)?)\", string:release);\nif (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, \"Oracle Linux\");\nos_ver = os_ver[1];\nif (! ereg(pattern:\"^4([^0-9]|$)\", string:os_ver)) audit(AUDIT_OS_NOT, \"Oracle Linux 4\", \"Oracle Linux \" + os_ver);\n\nif (!get_kb_item(\"Host/RedHat/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"Oracle Linux\", cpu);\n\nflag = 0;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"gnutls-1.0.20-3.2.3\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"gnutls-1.0.20-3.2.3\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"i386\", reference:\"gnutls-devel-1.0.20-3.2.3\")) flag++;\nif (rpm_check(release:\"EL4\", cpu:\"x86_64\", reference:\"gnutls-devel-1.0.20-3.2.3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gnutls / gnutls-devel\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:32:39", "references": [], "pluginID": "27242", "description": "A security problem was fixed in the GNU TLS library, where excess data was not checked during signature checking with RSA keys with exponent 3.\n\nThis problem could be used to fake those RSA signatures.\n(CVE-2006-4790)", "edition": 5, "reporter": "Tenable", "published": "2007-10-17T00:00:00", "title": "openSUSE 10 Security Update : gnutls (gnutls-2118)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 2.1}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-07-19T00:00:00", "cpe": ["p-cpe:/a:novell:opensuse:gnutls-devel", "cpe:/o:novell:opensuse:10.1", "p-cpe:/a:novell:opensuse:gnutls", "p-cpe:/a:novell:opensuse:gnutls-devel-32bit", "p-cpe:/a:novell:opensuse:gnutls-32bit"], "id": "SUSE_GNUTLS-2118.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=27242", "sourceData": "#%NASL_MIN_LEVEL 70103\n\n#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were\n# extracted from openSUSE Security Update gnutls-2118.\n#\n# The text description of this plugin is (C) SUSE LLC.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(27242);\n script_version (\"1.9\");\n script_cvs_date(\"Date: 2018/07/19 23:54:23\");\n\n script_cve_id(\"CVE-2006-4790\");\n\n script_name(english:\"openSUSE 10 Security Update : gnutls (gnutls-2118)\");\n script_summary(english:\"Check for the gnutls-2118 patch\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote openSUSE host is missing a security update.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A security problem was fixed in the GNU TLS library, where excess data\nwas not checked during signature checking with RSA keys with exponent\n3.\n\nThis problem could be used to fake those RSA signatures.\n(CVE-2006-4790)\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gnutls packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:gnutls-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:gnutls-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:novell:opensuse:gnutls-devel-32bit\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:novell:opensuse:10.1\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/10/17\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2018 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\", \"Host/cpu\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nrelease = get_kb_item(\"Host/SuSE/release\");\nif (isnull(release) || release =~ \"^(SLED|SLES)\") audit(AUDIT_OS_NOT, \"openSUSE\");\nif (release !~ \"^(SUSE10\\.1)$\") audit(AUDIT_OS_RELEASE_NOT, \"openSUSE\", \"10.1\", release);\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\nourarch = get_kb_item(\"Host/cpu\");\nif (!ourarch) audit(AUDIT_UNKNOWN_ARCH);\nif (ourarch !~ \"^(i586|i686|x86_64)$\") audit(AUDIT_ARCH_NOT, \"i586 / i686 / x86_64\", ourarch);\n\nflag = 0;\n\nif ( rpm_check(release:\"SUSE10.1\", reference:\"gnutls-1.2.10-13.5\") ) flag++;\nif ( rpm_check(release:\"SUSE10.1\", reference:\"gnutls-devel-1.2.10-13.5\") ) flag++;\nif ( rpm_check(release:\"SUSE10.1\", cpu:\"x86_64\", reference:\"gnutls-32bit-1.2.10-13.5\") ) flag++;\nif ( rpm_check(release:\"SUSE10.1\", cpu:\"x86_64\", reference:\"gnutls-devel-32bit-1.2.10-13.5\") ) flag++;\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse\n{\n tested = pkg_tests_get();\n if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);\n else audit(AUDIT_PACKAGE_NOT_INSTALLED, \"gnutls\");\n}\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-09-01T23:52:03", "references": ["http://support.novell.com/security/cve/CVE-2006-4790.html"], "pluginID": "29447", "description": "A security problem was fixed in the GNU TLS library, where excess data was not checked during signature checking with RSA keys with exponent 3.\n\nThis problem could be used to fake those RSA signatures.\n(CVE-2006-4790)", "edition": 4, "reporter": "Tenable", "published": "2007-12-13T00:00:00", "title": "SuSE 10 Security Update : gnutls (ZYPP Patch Number 2117)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "SuSE Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2012-05-17T00:00:00", "cpe": ["cpe:/o:suse:suse_linux"], "id": "SUSE_GNUTLS-2117.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=29447", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The text description of this plugin is (C) Novell, Inc.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(29447);\n script_version (\"$Revision: 1.10 $\");\n script_cvs_date(\"$Date: 2012/05/17 11:05:46 $\");\n\n script_cve_id(\"CVE-2006-4790\");\n\n script_name(english:\"SuSE 10 Security Update : gnutls (ZYPP Patch Number 2117)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote SuSE 10 host is missing a security-related patch.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"A security problem was fixed in the GNU TLS library, where excess data\nwas not checked during signature checking with RSA keys with exponent\n3.\n\nThis problem could be used to fake those RSA signatures.\n(CVE-2006-4790)\"\n );\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://support.novell.com/security/cve/CVE-2006-4790.html\"\n );\n script_set_attribute(attribute:\"solution\", value:\"Apply ZYPP patch number 2117.\");\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:suse:suse_linux\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/22\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2007/12/13\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2007-2012 Tenable Network Security, Inc.\");\n script_family(english:\"SuSE Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/cpu\", \"Host/SuSE/release\", \"Host/SuSE/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) exit(0, \"Local checks are not enabled.\");\nif (!get_kb_item(\"Host/SuSE/release\")) exit(0, \"The host is not running SuSE.\");\nif (!get_kb_item(\"Host/SuSE/rpm-list\")) exit(1, \"Could not obtain the list of installed packages.\");\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) exit(1, \"Failed to determine the architecture type.\");\nif (cpu >!< \"x86_64\" && cpu !~ \"^i[3-6]86$\") exit(1, \"Local checks for SuSE 10 on the '\"+cpu+\"' architecture have not been implemented.\");\n\n\nflag = 0;\nif (rpm_check(release:\"SLED10\", sp:0, reference:\"gnutls-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:0, reference:\"gnutls-devel-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:0, cpu:\"x86_64\", reference:\"gnutls-32bit-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLED10\", sp:0, cpu:\"x86_64\", reference:\"gnutls-devel-32bit-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"gnutls-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, reference:\"gnutls-devel-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, cpu:\"x86_64\", reference:\"gnutls-32bit-1.2.10-13.5\")) flag++;\nif (rpm_check(release:\"SLES10\", sp:0, cpu:\"x86_64\", reference:\"gnutls-devel-32bit-1.2.10-13.5\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse exit(0, \"The host is not affected.\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}, {"lastseen": "2018-11-11T13:01:06", "references": ["http://www.nessus.org/u?ccaddffa", "http://www.nessus.org/u?e5db86aa"], "pluginID": "22427", "description": "Updated gnutls packages that fix a security issue are now available for Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the Red Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and protocols such as TLS. GnuTLS includes libtasn1, a library developed for ASN.1 structures management that includes DER encoding and decoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5 signatures. Where an RSA key with exponent 3 is used it may be possible for an attacker to forge a PKCS #1 v1.5 signature that would be incorrectly verified by implementations that do not check for excess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant of the Bleichenbacker attack. This issue affects applications that use GnuTLS to verify X.509 certificates as well as other uses of PKCS #1 v1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the Evolution client when connecting to an Exchange server or when publishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain a backported patch from the GnuTLS maintainers to correct this issue.", "edition": 7, "reporter": "Tenable", "published": "2006-09-22T00:00:00", "title": "CentOS 4 : gnutls (CESA-2006:0680)", "type": "nessus", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "naslFamily": "CentOS Local Security Checks", "bulletinFamily": "scanner", "cvelist": ["CVE-2006-4790"], "modified": "2018-11-10T00:00:00", "cpe": ["p-cpe:/a:centos:centos:gnutls-devel", "cpe:/o:centos:centos:4", "p-cpe:/a:centos:centos:gnutls"], "id": "CENTOS_RHSA-2006-0680.NASL", "href": "https://www.tenable.com/plugins/index.php?view=single&id=22427", "sourceData": "#\n# (C) Tenable Network Security, Inc.\n#\n# The descriptive text and package checks in this plugin were \n# extracted from Red Hat Security Advisory RHSA-2006:0680 and \n# CentOS Errata and Security Advisory 2006:0680 respectively.\n#\n\ninclude(\"compat.inc\");\n\nif (description)\n{\n script_id(22427);\n script_version(\"1.12\");\n script_cvs_date(\"Date: 2018/11/10 11:49:27\");\n\n script_cve_id(\"CVE-2006-4790\");\n script_bugtraq_id(20027);\n script_xref(name:\"RHSA\", value:\"2006:0680\");\n\n script_name(english:\"CentOS 4 : gnutls (CESA-2006:0680)\");\n script_summary(english:\"Checks rpm output for the updated packages\");\n\n script_set_attribute(\n attribute:\"synopsis\", \n value:\"The remote CentOS host is missing one or more security updates.\"\n );\n script_set_attribute(\n attribute:\"description\", \n value:\n\"Updated gnutls packages that fix a security issue are now available\nfor Red Hat Enterprise Linux 4.\n\nThis update has been rated as having important security impact by the\nRed Hat Security Response Team.\n\nThe GnuTLS Library provides support for cryptographic algorithms and\nprotocols such as TLS. GnuTLS includes libtasn1, a library developed\nfor ASN.1 structures management that includes DER encoding and\ndecoding.\n\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5\nsignatures. Where an RSA key with exponent 3 is used it may be\npossible for an attacker to forge a PKCS #1 v1.5 signature that would\nbe incorrectly verified by implementations that do not check for\nexcess data in the RSA exponentiation result of the signature.\n\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant\nof the Bleichenbacker attack. This issue affects applications that use\nGnuTLS to verify X.509 certificates as well as other uses of PKCS #1\nv1.5. (CVE-2006-4790)\n\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the\nEvolution client when connecting to an Exchange server or when\npublishing calendar information to a WebDAV server.\n\nUsers are advised to upgrade to these updated packages, which contain\na backported patch from the GnuTLS maintainers to correct this issue.\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2006-September/013275.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?e5db86aa\"\n );\n # https://lists.centos.org/pipermail/centos-announce/2006-September/013276.html\n script_set_attribute(\n attribute:\"see_also\",\n value:\"http://www.nessus.org/u?ccaddffa\"\n );\n script_set_attribute(\n attribute:\"solution\", \n value:\"Update the affected gnutls packages.\"\n );\n script_set_cvss_base_vector(\"CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N\");\n script_set_cvss_temporal_vector(\"CVSS2#E:U/RL:OF/RC:C\");\n script_set_attribute(attribute:\"exploitability_ease\", value:\"No known exploits are available\");\n script_set_attribute(attribute:\"exploit_available\", value:\"false\");\n\n script_set_attribute(attribute:\"plugin_type\", value:\"local\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:gnutls\");\n script_set_attribute(attribute:\"cpe\", value:\"p-cpe:/a:centos:centos:gnutls-devel\");\n script_set_attribute(attribute:\"cpe\", value:\"cpe:/o:centos:centos:4\");\n\n script_set_attribute(attribute:\"patch_publication_date\", value:\"2006/09/20\");\n script_set_attribute(attribute:\"plugin_publication_date\", value:\"2006/09/22\");\n script_end_attributes();\n\n script_category(ACT_GATHER_INFO);\n script_copyright(english:\"This script is Copyright (C) 2006-2018 and is owned by Tenable, Inc. or an Affiliate thereof.\");\n script_family(english:\"CentOS Local Security Checks\");\n\n script_dependencies(\"ssh_get_info.nasl\");\n script_require_keys(\"Host/local_checks_enabled\", \"Host/CentOS/release\", \"Host/CentOS/rpm-list\");\n\n exit(0);\n}\n\n\ninclude(\"audit.inc\");\ninclude(\"global_settings.inc\");\ninclude(\"rpm.inc\");\n\n\nif (!get_kb_item(\"Host/local_checks_enabled\")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);\nif (!get_kb_item(\"Host/CentOS/release\")) audit(AUDIT_OS_NOT, \"CentOS\");\nif (!get_kb_item(\"Host/CentOS/rpm-list\")) audit(AUDIT_PACKAGE_LIST_MISSING);\n\n\ncpu = get_kb_item(\"Host/cpu\");\nif (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);\nif (\"x86_64\" >!< cpu && \"ia64\" >!< cpu && cpu !~ \"^i[3-6]86$\") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, \"CentOS\", cpu);\n\n\nflag = 0;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"gnutls-1.0.20-3.2.3\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"gnutls-1.0.20-3.2.3\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"i386\", reference:\"gnutls-devel-1.0.20-3.2.3\")) flag++;\nif (rpm_check(release:\"CentOS-4\", cpu:\"x86_64\", reference:\"gnutls-devel-1.0.20-3.2.3\")) flag++;\n\n\nif (flag)\n{\n if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());\n else security_warning(0);\n exit(0);\n}\nelse audit(AUDIT_HOST_NOT, \"affected\");\n", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "gentoo": [{"lastseen": "2016-09-06T19:47:00", "references": ["https://bugs.gentoo.org/show_bug.cgi?id=147682", "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4790"], "affectedPackage": [{"OS": "Gentoo", "OSVersion": "any", "packageVersion": "1.4.4", "packageName": "net-libs/gnutls", "packageFilename": "UNKNOWN", "arch": "all", "operator": "lt"}], "description": "### Background\n\nGnuTLS is an implementation of SSL 3.0 and TLS 1.0. \n\n### Description\n\nverify.c fails to properly handle excess data in digestAlgorithm.parameters field while generating a hash when using an RSA key with exponent 3. RSA keys that use exponent 3 are commonplace. \n\n### Impact\n\nRemote attackers could forge PKCS #1 v1.5 signatures that are signed with an RSA key, preventing GnuTLS from correctly verifying X.509 and other certificates that use PKCS. \n\n### Workaround\n\nThere is no known workaround at this time. \n\n### Resolution\n\nAll GnuTLS users should update both packages: \n \n \n # emerge --sync\n # emerge --update --ask --verbose \">=net-libs/gnutls-1.4.4\"", "edition": 1, "reporter": "Gentoo Foundation", "published": "2006-09-26T00:00:00", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "type": "gentoo", "title": "GnuTLS: RSA Signature Forgery", "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-09-26T00:00:00", "id": "GLSA-200609-15", "href": "https://security.gentoo.org/glsa/200609-15", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "securityvulns": [{"lastseen": "2018-08-31T11:10:19", "references": [], "description": "=========================================================== \r\nUbuntu Security Notice USN-348-1 September 18, 2006\r\ngnutls11, gnutls12 vulnerability\r\nCVE-2006-4790\r\n===========================================================\r\n\r\nA security issue affects the following Ubuntu releases:\r\n\r\nUbuntu 5.04\r\nUbuntu 5.10\r\nUbuntu 6.06 LTS\r\n\r\nThis advisory also applies to the corresponding versions of\r\nKubuntu, Edubuntu, and Xubuntu.\r\n\r\nThe problem can be corrected by upgrading your system to the\r\nfollowing package versions:\r\n\r\nUbuntu 5.04:\r\n libgnutls11 1.0.16-13ubuntu0.3\r\n\r\nUbuntu 5.10:\r\n libgnutls11 1.0.16-13.1ubuntu1.2\r\n\r\nUbuntu 6.06 LTS:\r\n libgnutls11 1.0.16-14ubuntu1.1\r\n libgnutls12 1.2.9-2ubuntu1.1\r\n\r\nAfter a standard system upgrade you need to reboot your computer to\r\neffect the necessary changes.\r\n\r\nDetails follow:\r\n\r\nThe GnuTLS library did not sufficiently check the padding of PKCS #1\r\nv1.5 signatures if the exponent of the public key is 3 &#40;which is\r\nwidely used for CAs&#41;. This could be exploited to forge signatures\r\nwithout the need of the secret key.\r\n\r\n\r\nUpdated packages for Ubuntu 5.04:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16-13ubuntu0.3.diff.gz\r\n Size/MD5: 339767 c5bff2326fcb68ed0336e25449012068\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16-13ubuntu0.3.dsc\r\n Size/MD5: 830 c0793d93e9c5b93567099347fa446c72\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16.orig.tar.gz\r\n Size/MD5: 1504638 7b410fa3c563c7988e434a8c8671b3cd\r\n\r\n amd64 architecture &#40;Athlon64, Opteron, EM64T Xeon&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13ubuntu0.3_amd64.deb\r\n Size/MD5: 217660 bba5c5e0d5f59354f6b3336367be937f\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13ubuntu0.3_amd64.deb\r\n Size/MD5: 575482 a62525c690862f1b4927cc7f55173d3b\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13ubuntu0.3_amd64.deb\r\n Size/MD5: 392664 c78b8dbf6725d02e19da5707d3335124\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13ubuntu0.3_amd64.deb\r\n Size/MD5: 327142 bb345c39bf9e7879432b566bf5e1a235\r\n\r\n i386 architecture &#40;x86 compatible Intel/AMD&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13ubuntu0.3_i386.deb\r\n Size/MD5: 203632 a467a4155ed992414884c86fc8120e5f\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13ubuntu0.3_i386.deb\r\n Size/MD5: 555946 1ffdced169899150a35b540c373b1a0c\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13ubuntu0.3_i386.deb\r\n Size/MD5: 357486 1bbbbc936c849e2ec1b2f6432506a86a\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13ubuntu0.3_i386.deb\r\n Size/MD5: 293636 02023e0e58310001f3ed4d4b31dacb27\r\n\r\n powerpc architecture &#40;Apple Macintosh G3/G4/G5&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13ubuntu0.3_powerpc.deb\r\n Size/MD5: 218566 3dfdc586e1df5663ab8edbb3735ec48c\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13ubuntu0.3_powerpc.deb\r\n Size/MD5: 1416126 f51c3ede362394ec62ca07e345d2c4b7\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13ubuntu0.3_powerpc.deb\r\n Size/MD5: 389076 9904c61c7aae79e2d1700b33c92a371a\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13ubuntu0.3_powerpc.deb\r\n Size/MD5: 299668 fac8cd974bcca326209e4c78eff25eac\r\n\r\nUpdated packages for Ubuntu 5.10:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16-13.1ubuntu1.2.diff.gz\r\n Size/MD5: 340309 49a5050c08af0f81729b45f5f3c8d22d\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16-13.1ubuntu1.2.dsc\r\n Size/MD5: 829 cbd5adc73119254f416328c52203502b\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/gnutls11_1.0.16.orig.tar.gz\r\n Size/MD5: 1504638 7b410fa3c563c7988e434a8c8671b3cd\r\n\r\n amd64 architecture &#40;Athlon64, Opteron, EM64T Xeon&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13.1ubuntu1.2_amd64.deb\r\n Size/MD5: 217668 1ed174a692537d419a0cfe8d126aee7e\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13.1ubuntu1.2_amd64.deb\r\n Size/MD5: 501184 076e79bc654983d5980bd5ad1556db6a\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.1ubuntu1.2_amd64.deb\r\n Size/MD5: 398968 d60fddde214fe3a9ba132f5aa31421f6\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13.1ubuntu1.2_amd64.deb\r\n Size/MD5: 332338 bfdb04fcbc4cc1b35466309e6d1ebe68\r\n\r\n i386 architecture &#40;x86 compatible Intel/AMD&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13.1ubuntu1.2_i386.deb\r\n Size/MD5: 201838 7e5322c9a0549be64847db789e478f69\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13.1ubuntu1.2_i386.deb\r\n Size/MD5: 443744 4e484450ea0c30d50b77878158021c56\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.1ubuntu1.2_i386.deb\r\n Size/MD5: 353510 34cedb7560cf2bc326dc608a73fef028\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13.1ubuntu1.2_i386.deb\r\n Size/MD5: 287262 2a22bf7ef42370d27799e9992b183c17\r\n\r\n powerpc architecture &#40;Apple Macintosh G3/G4/G5&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13.1ubuntu1.2_powerpc.deb\r\n Size/MD5: 218960 6ce6df1a4a741c8c12b57ca41ef71d1f\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13.1ubuntu1.2_powerpc.deb\r\n Size/MD5: 498738 abffd68ab815093d0fa33a0ddf09d62b\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.1ubuntu1.2_powerpc.deb\r\n Size/MD5: 395476 715c6b951b76d873024a80816545df6f\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13.1ubuntu1.2_powerpc.deb\r\n Size/MD5: 304944 66adb0761c8004b85c841fc78eaecd9c\r\n\r\n sparc architecture &#40;Sun SPARC/UltraSPARC&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls-bin_1.0.16-13.1ubuntu1.2_sparc.deb\r\n Size/MD5: 205296 10c9919c827341235884044b98c9b9ed\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-13.1ubuntu1.2_sparc.deb\r\n Size/MD5: 438502 747e41cb86f57b80094a3b9624faaa79\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11-dev_1.0.16-13.1ubuntu1.2_sparc.deb\r\n Size/MD5: 395448 a73794337f96dd436969f1ce1e1b2ed2\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls11/libgnutls11_1.0.16-13.1ubuntu1.2_sparc.deb\r\n Size/MD5: 293108 59e5c1dbc23d906229efdc5fd8b43acb\r\n\r\nUpdated packages for Ubuntu 6.06 LTS:\r\n\r\n Source archives:\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls11_1.0.16-14ubuntu1.1.diff.gz\r\n Size/MD5: 340592 3d897a1f6c852961a51e1ed2abd57700\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls11_1.0.16-14ubuntu1.1.dsc\r\n Size/MD5: 782 ed4ea38a746c3a5c01df97efc1f56684\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/gnutls11_1.0.16.orig.tar.gz\r\n Size/MD5: 1504638 7b410fa3c563c7988e434a8c8671b3cd\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/gnutls12_1.2.9-2ubuntu1.1.diff.gz\r\n Size/MD5: 547210 43343fb58d09ef0157163d61e4b856ac\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/gnutls12_1.2.9-2ubuntu1.1.dsc\r\n Size/MD5: 846 de642e0252450068d262032caa108ab3\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/gnutls12_1.2.9.orig.tar.gz\r\n Size/MD5: 3305475 4e1a2e9c22c7d6459d5eb5e6484a19c4\r\n\r\n amd64 architecture &#40;Athlon64, Opteron, EM64T Xeon&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/gnutls-bin_1.2.9-2ubuntu1.1_amd64.deb\r\n Size/MD5: 288060 ab7b29cc7797add5c945fee37ea08e13\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls-dev_1.2.9-2ubuntu1.1_amd64.deb\r\n Size/MD5: 490866 8f8f9b54a0a351df5cfeabceb90337bd\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-14ubuntu1.1_amd64.deb\r\n Size/MD5: 492192 14d5105bfb4f1346dc24cdb02282a989\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dev_1.0.16-14ubuntu1.1_amd64.deb\r\n Size/MD5: 398922 167aca29f3fb079e0ae59b171d3f80f6\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11_1.0.16-14ubuntu1.1_amd64.deb\r\n Size/MD5: 332602 5c80ebe2410af742c3f1e5ebf3f061c4\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/libgnutls12-dbg_1.2.9-2ubuntu1.1_amd64.deb\r\n Size/MD5: 642186 2d6e15d7f57c64dc6a08de1a837f882f\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls12_1.2.9-2ubuntu1.1_amd64.deb\r\n Size/MD5: 419956 77892c1022bdb4e422bb84654bf81275\r\n\r\n i386 architecture &#40;x86 compatible Intel/AMD&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/gnutls-bin_1.2.9-2ubuntu1.1_i386.deb\r\n Size/MD5: 271890 52a8d52f5db1ee7d81573fe3ef8909d0\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls-dev_1.2.9-2ubuntu1.1_i386.deb\r\n Size/MD5: 444560 e62ca7e54d740dae765cff30e2877fea\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-14ubuntu1.1_i386.deb\r\n Size/MD5: 434914 66cd4ae0e53bac620537befa71b71471\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dev_1.0.16-14ubuntu1.1_i386.deb\r\n Size/MD5: 353266 b7882d6444d9946074df3ccda4609548\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11_1.0.16-14ubuntu1.1_i386.deb\r\n Size/MD5: 287556 60a01efc8102af04b9418dfdd053d60d\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/libgnutls12-dbg_1.2.9-2ubuntu1.1_i386.deb\r\n Size/MD5: 578054 1b0af9f8bbfdca6ab65781d1a761d1f8\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls12_1.2.9-2ubuntu1.1_i386.deb\r\n Size/MD5: 372796 931456f16edb71bc2f3724597b7d25a5\r\n\r\n powerpc architecture &#40;Apple Macintosh G3/G4/G5&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/gnutls-bin_1.2.9-2ubuntu1.1_powerpc.deb\r\n Size/MD5: 288282 da78d3aa3f6dc6f55819a7a7b87a8ef9\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls-dev_1.2.9-2ubuntu1.1_powerpc.deb\r\n Size/MD5: 483764 4b9bc5d06ecef2ccfd1bf78cb3a38be3\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-14ubuntu1.1_powerpc.deb\r\n Size/MD5: 488222 8809195502f4beb96deb7fa5c5db1971\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dev_1.0.16-14ubuntu1.1_powerpc.deb\r\n Size/MD5: 395568 c1a26fe60afbdafdb944ff41dab4b8c1\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11_1.0.16-14ubuntu1.1_powerpc.deb\r\n Size/MD5: 304804 c33b1d0470d894ea91d9cabbe921d35e\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/libgnutls12-dbg_1.2.9-2ubuntu1.1_powerpc.deb\r\n Size/MD5: 635046 71b63e9a190676debea5a40423da233a\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls12_1.2.9-2ubuntu1.1_powerpc.deb\r\n Size/MD5: 390354 e132049e6323d5d71824379f6bfe57bf\r\n\r\n sparc architecture &#40;Sun SPARC/UltraSPARC&#41;\r\n\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/gnutls-bin_1.2.9-2ubuntu1.1_sparc.deb\r\n Size/MD5: 273020 8ccad45ebceb81375ac915a14edc73e5\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls-dev_1.2.9-2ubuntu1.1_sparc.deb\r\n Size/MD5: 480026 9f53727b59d626a0a2cc15ab9bb37331\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dbg_1.0.16-14ubuntu1.1_sparc.deb\r\n Size/MD5: 427638 f38fb7a6a633baf4b7100ec839372eab\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11-dev_1.0.16-14ubuntu1.1_sparc.deb\r\n Size/MD5: 393658 10ceb83747c49a19b98c51c1d72fdc06\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls11/libgnutls11_1.0.16-14ubuntu1.1_sparc.deb\r\n Size/MD5: 292130 3a032b8476527064933fea01882e912d\r\n http://security.ubuntu.com/ubuntu/pool/universe/g/gnutls12/libgnutls12-dbg_1.2.9-2ubuntu1.1_sparc.deb\r\n Size/MD5: 570060 22615e4739a2f71f9977b2c683283e28\r\n http://security.ubuntu.com/ubuntu/pool/main/g/gnutls12/libgnutls12_1.2.9-2ubuntu1.1_sparc.deb\r\n Size/MD5: 375898 016adf7e48efcbaa949392a352324d2b\r\n", "edition": 1, "reporter": "Securityvulns", "published": "2006-09-19T00:00:00", "title": "[USN-348-1] GnuTLS vulnerability", "type": "securityvulns", "enchantments": {"score": {"modified": "2018-08-31T11:10:19", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4790"], "modified": "2006-09-19T00:00:00", "id": "SECURITYVULNS:DOC:14313", "href": "https://vulners.com/securityvulns/SECURITYVULNS:DOC:14313", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "freebsd": [{"lastseen": "2018-08-31T01:15:45", "references": ["http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html", "http://secunia.com/advisories/21937"], "affectedPackage": [{"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "gnutls-devel", "operator": "lt"}, {"OS": "FreeBSD", "OSVersion": "any", "packageVersion": "1.4.4", "arch": "noarch", "packageFilename": "UNKNOWN", "packageName": "gnutls", "operator": "lt"}], "description": "\nSecunia reports:\n\nA vulnerability has been reported in GnuTLS, which can be\n\t exploited by malicious people to bypass certain security\n\t restrictions.\nThe vulnerability is caused due to an error in the\n\t verification of certain signatures. If a RSA key with\n\t exponent 3 is used, it may be possible to forge PKCS #1\n\t v1.5 signatures signed with that key.\n\n", "edition": 3, "reporter": "FreeBSD", "published": "2006-09-08T00:00:00", "title": "gnutls -- RSA Signature Forgery Vulnerability", "type": "freebsd", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-09-08T00:00:00", "id": "64BF6234-520D-11DB-8F1A-000A48049292", "href": "https://vuxml.freebsd.org/freebsd/64bf6234-520d-11db-8f1a-000a48049292.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "centos": [{"lastseen": "2017-10-12T14:45:00", "references": ["http://pasi.pirhonen.eu/", "https://rhn.redhat.com/errata/RHSA-2006-0680.html"], "affectedPackage": [{"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "ia64", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "x86_64", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.x86_64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "any", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "any", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "ia64", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.ia64.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "s390", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "s390x", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "s390", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.s390.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "s390x", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.s390x.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "i386", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.i386.rpm", "operator": "lt"}, {"OS": "CentOS", "OSVersion": "4", "packageVersion": "1.0.20-3.2.3", "arch": "x86_64", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.x86_64.rpm", "operator": "lt"}], "description": "**CentOS Errata and Security Advisory** CESA-2006:0680\n\n\nThe GnuTLS Library provides support for cryptographic algorithms and\r\nprotocols such as TLS. GnuTLS includes libtasn1, a library developed for\r\nASN.1 structures management that includes DER encoding and decoding.\r\n\r\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5\r\nsignatures. Where an RSA key with exponent 3 is used it may be possible for\r\nan attacker to forge a PKCS #1 v1.5 signature that would be incorrectly\r\nverified by implementations that do not check for excess data in the RSA\r\nexponentiation result of the signature.\r\n\r\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant of\r\nthe Bleichenbacker attack. This issue affects applications that use GnuTLS\r\nto verify X.509 certificates as well as other uses of PKCS #1 v1.5.\r\n(CVE-2006-4790)\r\n\r\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the\r\nEvolution client when connecting to an Exchange server or when publishing\r\ncalendar information to a WebDAV server.\r\n\r\nUsers are advised to upgrade to these updated packages, which contain a\r\nbackported patch from the GnuTLS maintainers to correct this issue.\n\n**Merged security bulletin from advisories:**\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013239.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013240.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013275.html\nhttp://lists.centos.org/pipermail/centos-announce/2006-September/013276.html\n\n**Affected packages:**\ngnutls\ngnutls-devel\n\n**Upstream details at:**\nhttps://rhn.redhat.com/errata/RHSA-2006-0680.html", "edition": 2, "reporter": "CentOS Project", "published": "2006-09-14T14:44:53", "title": "gnutls security update", "type": "centos", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-09-20T19:22:00", "href": "http://lists.centos.org/pipermail/centos-announce/2006-September/013239.html", "id": "CESA-2006:0680", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "osvdb": [{"lastseen": "2017-04-28T13:20:25", "references": [], "edition": 1, "description": "# No description provided by the source\n\n## References:\nVendor Specific News/Changelog Entry: http://www.gnu.org/software/gnutls/security.html\n[Vendor Specific Advisory URL](http://www.us.debian.org/security/2006/dsa-1182)\n[Vendor Specific Advisory URL](http://lists.suse.com/archive/suse-security-announce/2006-Sep/0011.html)\n[Vendor Specific Advisory URL](http://www.mandriva.com/security/advisories?name=MDKSA-2006:166)\n[Vendor Specific Advisory URL](http://www.gentoo.org/security/en/glsa/glsa-200609-15.xml)\n[Secunia Advisory ID:21942](https://secuniaresearch.flexerasoftware.com/advisories/21942/)\n[Secunia Advisory ID:22097](https://secuniaresearch.flexerasoftware.com/advisories/22097/)\n[Secunia Advisory ID:21973](https://secuniaresearch.flexerasoftware.com/advisories/21973/)\n[Secunia Advisory ID:23803](https://secuniaresearch.flexerasoftware.com/advisories/23803/)\n[Secunia Advisory ID:21937](https://secuniaresearch.flexerasoftware.com/advisories/21937/)\n[Secunia Advisory ID:22049](https://secuniaresearch.flexerasoftware.com/advisories/22049/)\n[Secunia Advisory ID:22084](https://secuniaresearch.flexerasoftware.com/advisories/22084/)\n[Secunia Advisory ID:22080](https://secuniaresearch.flexerasoftware.com/advisories/22080/)\n[Secunia Advisory ID:25762](https://secuniaresearch.flexerasoftware.com/advisories/25762/)\nRedHat RHSA: RHSA-2006:0680\nOther Advisory URL: http://sunsolve.sun.com/search/document.do?assetkey=1-26-102970-1\nOther Advisory URL: http://www.ubuntu.com/usn/usn-348-1\nOther Advisory URL: http://lists.suse.com/archive/suse-security-announce/2007-Jan/0010.html\nMail List Post: http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001212.html\nMail List Post: http://lists.gnupg.org/pipermail/gnutls-dev/2006-September/001205.html\n[CVE-2006-4790](https://vulners.com/cve/CVE-2006-4790)\n", "reporter": "OSVDB", "published": "2006-09-08T06:49:08", "type": "osvdb", "title": "GnuTLS RSA Key PKCS #1 v1.5 Signature Forgery", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "software", "affectedSoftware": [], "cvelist": ["CVE-2006-4790"], "modified": "2006-09-08T06:49:08", "href": "https://vulners.com/osvdb/OSVDB:28778", "id": "OSVDB:28778", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "debian": [{"lastseen": "2018-10-16T22:13:46", "references": [], "affectedPackage": [{"OS": "Debian", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "arch": "all", "packageFilename": "gnutls11_1.0.16-13.2sarge2_all.deb", "packageName": "gnutls11", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "arch": "all", "packageFilename": "libgnutls11_1.0.16-13.2sarge2_all.deb", "packageName": "libgnutls11", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "arch": "all", "packageFilename": "libgnutls11-dev_1.0.16-13.2sarge2_all.deb", "packageName": "libgnutls11-dev", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "arch": "all", "packageFilename": "gnutls-bin_1.0.16-13.2sarge2_all.deb", "packageName": "gnutls-bin", "operator": "lt"}, {"OS": "Debian", "OSVersion": "3.1", "packageVersion": "1.0.16-13.2sarge2", "arch": "all", "packageFilename": "libgnutls11-dbg_1.0.16-13.2sarge2_all.deb", "packageName": "libgnutls11-dbg", "operator": "lt"}], "description": "- --------------------------------------------------------------------------\nDebian Security Advisory DSA 1182-1 security@debian.org\nhttp://www.debian.org/security/ Moritz Muehlenhoff\nSeptember 22nd, 2006 http://www.debian.org/security/faq\n- --------------------------------------------------------------------------\n\nPackage : gnutls11\nVulnerability : cryptographic weakness\nProblem-Type : local\nDebian-specific: no\nCVE ID : CVE-2006-4790\n\nDaniel Bleichenbacher discovered a flaw in GNU TLS cryptographic package\nthat could allow an attacker to generate a forged signature that GNU TLS\nwill accept as valid.\n\nFor the stable distribution (sarge) this problem has been fixed in\nversion 1.0.16-13.2sarge2.\n\nThe unstable distribution (sid) does no longer contain gnutls11, for\ngnutls13 this problem has been fixed in version 1.4.4-1.\n\nWe recommend that you upgrade your GNU TLS package.\n\n\nUpgrade Instructions\n- --------------------\n\nwget url\n will fetch the file for you\ndpkg -i file.deb\n will install the referenced file.\n\nIf you are using the apt-get package manager, use the line for\nsources.list as given below:\n\napt-get update\n will update the internal database\napt-get upgrade\n will install corrected packages\n\nYou may use an automated update by adding the resources from the\nfooter to the proper configuration.\n\n\nDebian GNU/Linux 3.1 alias sarge\n- --------------------------------\n\n Source archives:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls11_1.0.16-13.2sarge2.dsc\n Size/MD5 checksum: 820 72116e13ca8af0d4c0420a6a5fba01fb\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls11_1.0.16-13.2sarge2.diff.gz\n Size/MD5 checksum: 346146 46c4495ad9c32f53a362669432b548d0\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls11_1.0.16.orig.tar.gz\n Size/MD5 checksum: 1504638 7b410fa3c563c7988e434a8c8671b3cd\n\n Alpha architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_alpha.deb\n Size/MD5 checksum: 229836 759bb1fb11af8022228651e5ee996c2a\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_alpha.deb\n Size/MD5 checksum: 335034 e25273a2f6a338e0a864759723f7927f\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_alpha.deb\n Size/MD5 checksum: 589736 7318e2d5e9e5c1706e4e3baeadbe5e95\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_alpha.deb\n Size/MD5 checksum: 512202 25396b24bd00c6c2d0c52f744072b972\n\n AMD64 architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_amd64.deb\n Size/MD5 checksum: 217586 8c925e3b730e6b72d776e7b132c15a04\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_amd64.deb\n Size/MD5 checksum: 327012 14301cbecc28ec34e998decbabf3ce58\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_amd64.deb\n Size/MD5 checksum: 575502 bb6e0f0d2312a49ea9466a0261c667a0\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_amd64.deb\n Size/MD5 checksum: 392470 01728ddd9d1a2493f95f7b88fd77063d\n\n ARM architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_arm.deb\n Size/MD5 checksum: 204892 4979873690a1bdd10b87de313f50e823\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_arm.deb\n Size/MD5 checksum: 294784 a1f084e60a11242ea2d0d8aa6b9e0a92\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_arm.deb\n Size/MD5 checksum: 585114 e7a6b7471fc1696936c7b1a2d842dd0a\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_arm.deb\n Size/MD5 checksum: 400060 b385b5cbca545e9c3956c0c43d0946e0\n\n HP Precision architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_hppa.deb\n Size/MD5 checksum: 217594 5597e912c19fb5f3cea5350fc4867948\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_hppa.deb\n Size/MD5 checksum: 329544 fb715f8fb54a6fb9e430edb1774ada8e\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_hppa.deb\n Size/MD5 checksum: 584956 6c488c7997328cecda7afd7497d85ff5\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_hppa.deb\n Size/MD5 checksum: 434780 7560c9da720dad66554a0459af06d0f8\n\n Intel IA-32 architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_i386.deb\n Size/MD5 checksum: 206826 3a6b6996db3db6bd92947fb552b61599\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_i386.deb\n Size/MD5 checksum: 301988 7af47286dd7a1fca42f80b1dfd87bb7d\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_i386.deb\n Size/MD5 checksum: 558658 c5e07873a863d46892921effa3423038\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_i386.deb\n Size/MD5 checksum: 370390 e649a2f476791e825c923003b152484c\n\n Intel IA-64 architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_ia64.deb\n Size/MD5 checksum: 259060 252fafaf93df717cc09bfe1c33b2d382\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_ia64.deb\n Size/MD5 checksum: 384930 9b16fbd9b504907db1d1c4f08669989e\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_ia64.deb\n Size/MD5 checksum: 585920 64245f68bb5c1c795b4143462bbb25f5\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_ia64.deb\n Size/MD5 checksum: 521916 d8eb2fec68f52dbd52c351402ab99b6f\n\n Motorola 680x0 architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_m68k.deb\n Size/MD5 checksum: 198834 a12fd077c07b171dc6e99feb78375b08\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_m68k.deb\n Size/MD5 checksum: 282984 577f5774ba0f2c274b8c62071f7202cf\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_m68k.deb\n Size/MD5 checksum: 561098 a08a318581f5db996d9c382bd495c709\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_m68k.deb\n Size/MD5 checksum: 341710 4bc318fbbfc2046fe4dd47d12ba88425\n\n Big endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_mips.deb\n Size/MD5 checksum: 211728 c3c1695268e1201ac2e9081b94c17366\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_mips.deb\n Size/MD5 checksum: 291666 f8fbf909070719d38243643d5dc7bf1d\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_mips.deb\n Size/MD5 checksum: 595774 f9ee1f7ceb3db2d93f9fcc758ccecab5\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_mips.deb\n Size/MD5 checksum: 408540 c1c1dcad15359180555a6256818c0686\n\n Little endian MIPS architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_mipsel.deb\n Size/MD5 checksum: 211476 f28cc4f345ae11897ae12ec1ac324719\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_mipsel.deb\n Size/MD5 checksum: 290328 fd27ef5dd5e20763912f5384b920360d\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_mipsel.deb\n Size/MD5 checksum: 591336 9c704e57721d0cf7a12bf844731a9fd7\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_mipsel.deb\n Size/MD5 checksum: 404628 b1201dea3f671b1e651f86e45803d7c7\n\n PowerPC architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_powerpc.deb\n Size/MD5 checksum: 218500 e6b92e1d34fa41b18c9aac4765e52191\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_powerpc.deb\n Size/MD5 checksum: 299502 9377a3aa261f852a8666934bb0825f04\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_powerpc.deb\n Size/MD5 checksum: 1415916 e27b0176c54741aff5b45d0466438ee1\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_powerpc.deb\n Size/MD5 checksum: 388910 1a2997848bc55fc28730370891797297\n\n IBM S/390 architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_s390.deb\n Size/MD5 checksum: 215448 9b20f31f10b2b91524453c7a768402a0\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_s390.deb\n Size/MD5 checksum: 318674 6ace59100c9131a1cea01c7d635d633a\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_s390.deb\n Size/MD5 checksum: 632292 60c0acb0ba3046ed4462627ed74db531\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_s390.deb\n Size/MD5 checksum: 376622 c11864c64293723e02f07bbeb59c36a7\n\n Sun Sparc architecture:\n\n http://security.debian.org/pool/updates/main/g/gnutls11/gnutls-bin_1.0.16-13.2sarge2_sparc.deb\n Size/MD5 checksum: 204564 a826236438bfe0fbbffe6841fc0380be\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11_1.0.16-13.2sarge2_sparc.deb\n Size/MD5 checksum: 295780 b68bb873076fad0a20082e8f1601a43d\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dbg_1.0.16-13.2sarge2_sparc.deb\n Size/MD5 checksum: 577540 4bdfb6604d142bf8665846ef235724a0\n http://security.debian.org/pool/updates/main/g/gnutls11/libgnutls11-dev_1.0.16-13.2sarge2_sparc.deb\n Size/MD5 checksum: 399936 10103cd5f9f40c434b9c6412cad4edb2\n\n\n These files will probably be moved into the stable distribution on\n its next update.\n\n- ---------------------------------------------------------------------------------\nFor apt-get: deb http://security.debian.org/ stable/updates main\nFor dpkg-ftp: ftp://security.debian.org/debian-security dists/stable/updates/main\nMailing list: debian-security-announce@lists.debian.org\nPackage info: `apt-cache show &lt;pkg&gt;&#x27; and http://packages.debian.org/&lt;pkg&gt;\n", "edition": 1, "reporter": "Debian", "published": "2006-09-22T00:00:00", "title": "[SECURITY] [DSA 1182-1] New gnutls11 packages fix RSA signature forgery cryptographic weakness", "type": "debian", "enchantments": {"score": {"modified": "2018-10-16T22:13:46", "vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "modified": "2006-09-22T00:00:00", "id": "DEBIAN:DSA-1182-1:A8918", "href": "https://lists.debian.org/debian-security-announce/debian-security-announce-2006/msg00275.html", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "redhat": [{"lastseen": "2017-09-08T13:20:24", "_object_types": ["robots.models.base.Bulletin", "robots.models.redhat.RedHatBulletin"], "references": [], "affectedPackage": [{"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.x86_64.rpm", "arch": "x86_64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.src.rpm", "arch": "src", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.ia64.rpm", "arch": "ia64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.i386.rpm", "arch": "i386", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.ppc64.rpm", "arch": "ppc64", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.ppc.rpm", "arch": "ppc", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.s390.rpm", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.s390.rpm", "arch": "s390", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls", "packageFilename": "gnutls-1.0.20-3.2.3.s390x.rpm", "arch": "s390x", "operator": "lt"}, {"OS": "RedHat", "OSVersion": "any", "packageVersion": "1.0.20-3.2.3", "packageName": "gnutls-devel", "packageFilename": "gnutls-devel-1.0.20-3.2.3.s390x.rpm", "arch": "s390x", "operator": "lt"}], "description": "The GnuTLS Library provides support for cryptographic algorithms and\r\nprotocols such as TLS. GnuTLS includes libtasn1, a library developed for\r\nASN.1 structures management that includes DER encoding and decoding.\r\n\r\nDaniel Bleichenbacher recently described an attack on PKCS #1 v1.5\r\nsignatures. Where an RSA key with exponent 3 is used it may be possible for\r\nan attacker to forge a PKCS #1 v1.5 signature that would be incorrectly\r\nverified by implementations that do not check for excess data in the RSA\r\nexponentiation result of the signature.\r\n\r\nThe core GnuTLS team discovered that GnuTLS is vulnerable to a variant of\r\nthe Bleichenbacker attack. This issue affects applications that use GnuTLS\r\nto verify X.509 certificates as well as other uses of PKCS #1 v1.5.\r\n(CVE-2006-4790)\r\n\r\nIn Red Hat Enterprise Linux 4, the GnuTLS library is only used by the\r\nEvolution client when connecting to an Exchange server or when publishing\r\ncalendar information to a WebDAV server.\r\n\r\nUsers are advised to upgrade to these updated packages, which contain a\r\nbackported patch from the GnuTLS maintainers to correct this issue.", "reporter": "RedHat", "published": "2006-09-14T04:00:00", "type": "redhat", "title": "(RHSA-2006:0680) gnutls security update", "enchantments": {"score": {"vector": "NONE", "value": 5.0}}, "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790"], "_object_type": "robots.models.redhat.RedHatBulletin", "modified": "2017-09-08T11:49:52", "id": "RHSA-2006:0680", "href": "https://access.redhat.com/errata/RHSA-2006:0680", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:NONE/I:PARTIAL/A:NONE/"}}], "suse": [{"lastseen": "2016-09-04T11:46:49", "references": [], "affectedPackage": [{"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.s390x.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-plugin-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.ia64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.x86_64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.ia64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.s390x.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.ia64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.s390x.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ia64", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.ia64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-plugin-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-plugin", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "ppc", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2.s4-23.10.ppc.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "i586", "packageFilename": "java-1_4_2-ibm-jdbc-1.4.2.s4-23.10.i586.rpm", "packageName": "java-1_4_2-ibm-jdbc", "operator": "lt"}, {"OS": "SUSE Linux Enterprise SDK", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.x86_64.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "s390x", "packageFilename": "java-1_4_2-ibm-1.4.2.s4-23.10.s390x.rpm", "packageName": "java-1_4_2-ibm", "operator": "lt"}, {"OS": "SUSE Linux Enterprise Server", "OSVersion": "10", "packageVersion": "1.4.2.s4-23.10", "arch": "x86_64", "packageFilename": "java-1_4_2-ibm-devel-1.4.2.s4-23.10.x86_64.rpm", "packageName": "java-1_4_2-ibm-devel", "operator": "lt"}], "description": "Various security problems and bugs have been fixed in the IBMJava JRE and SDK.\n#### Solution\nThere is no known workaround, please install the update packages.", "edition": 1, "reporter": "Suse", "published": "2007-01-18T16:13:31", "title": "remote code execution in IBMJava2", "enchantments": {"score": {"vector": "NONE", "value": 9.3}}, "type": "suse", "bulletinFamily": "unix", "cvelist": ["CVE-2006-4790", "CVE-2006-6731", "CVE-2006-4339", "CVE-2006-6736", "CVE-2006-6737", "CVE-2006-6745"], "modified": "2007-01-18T16:13:31", "id": "SUSE-SA:2007:010", "href": "http://lists.opensuse.org/opensuse-security-announce/2007-01/msg00025.html", "cvss": {"score": 9.3, "vector": "AV:NETWORK/AC:MEDIUM/Au:NONE/C:COMPLETE/I:COMPLETE/A:COMPLETE/"}}]}