[Openvas-commits] r531 - in trunk/openvas-plugins: . scripts
scm-commit@wald.intevation.org
scm-commit at wald.intevation.org
Tue Nov 6 12:55:26 CET 2007
Author: jan
Date: 2007-11-06 12:55:24 +0100 (Tue, 06 Nov 2007)
New Revision: 531
Added:
trunk/openvas-plugins/scripts/debian_DSA-1000.nasl
trunk/openvas-plugins/scripts/debian_DSA-1001.nasl
trunk/openvas-plugins/scripts/debian_DSA-1002.nasl
trunk/openvas-plugins/scripts/debian_DSA-1003.nasl
trunk/openvas-plugins/scripts/debian_DSA-1004.nasl
trunk/openvas-plugins/scripts/debian_DSA-1005.nasl
trunk/openvas-plugins/scripts/debian_DSA-1006.nasl
trunk/openvas-plugins/scripts/debian_DSA-1007.nasl
trunk/openvas-plugins/scripts/debian_DSA-1008.nasl
trunk/openvas-plugins/scripts/debian_DSA-1009.nasl
trunk/openvas-plugins/scripts/debian_DSA-1010.nasl
trunk/openvas-plugins/scripts/debian_DSA-1011.nasl
trunk/openvas-plugins/scripts/debian_DSA-1012.nasl
trunk/openvas-plugins/scripts/debian_DSA-1013.nasl
trunk/openvas-plugins/scripts/debian_DSA-1014.nasl
trunk/openvas-plugins/scripts/debian_DSA-1015.nasl
trunk/openvas-plugins/scripts/debian_DSA-1016.nasl
trunk/openvas-plugins/scripts/debian_DSA-1017.nasl
trunk/openvas-plugins/scripts/debian_DSA-1018.nasl
trunk/openvas-plugins/scripts/debian_DSA-1019.nasl
trunk/openvas-plugins/scripts/debian_DSA-1020.nasl
trunk/openvas-plugins/scripts/debian_DSA-1021.nasl
trunk/openvas-plugins/scripts/debian_DSA-1022.nasl
trunk/openvas-plugins/scripts/debian_DSA-1023.nasl
trunk/openvas-plugins/scripts/debian_DSA-1024.nasl
trunk/openvas-plugins/scripts/debian_DSA-1025.nasl
trunk/openvas-plugins/scripts/debian_DSA-1026.nasl
trunk/openvas-plugins/scripts/debian_DSA-1027.nasl
trunk/openvas-plugins/scripts/debian_DSA-1028.nasl
trunk/openvas-plugins/scripts/debian_DSA-1029.nasl
trunk/openvas-plugins/scripts/debian_DSA-1030.nasl
trunk/openvas-plugins/scripts/debian_DSA-1031.nasl
trunk/openvas-plugins/scripts/debian_DSA-1032.nasl
trunk/openvas-plugins/scripts/debian_DSA-1033.nasl
trunk/openvas-plugins/scripts/debian_DSA-1034.nasl
trunk/openvas-plugins/scripts/debian_DSA-1035.nasl
trunk/openvas-plugins/scripts/debian_DSA-1036.nasl
trunk/openvas-plugins/scripts/debian_DSA-1037.nasl
trunk/openvas-plugins/scripts/debian_DSA-1038.nasl
trunk/openvas-plugins/scripts/debian_DSA-1039.nasl
trunk/openvas-plugins/scripts/debian_DSA-1040.nasl
trunk/openvas-plugins/scripts/debian_DSA-1041.nasl
trunk/openvas-plugins/scripts/debian_DSA-1042.nasl
trunk/openvas-plugins/scripts/debian_DSA-1043.nasl
trunk/openvas-plugins/scripts/debian_DSA-1044.nasl
trunk/openvas-plugins/scripts/debian_DSA-1045.nasl
trunk/openvas-plugins/scripts/debian_DSA-1046.nasl
trunk/openvas-plugins/scripts/debian_DSA-1047.nasl
trunk/openvas-plugins/scripts/debian_DSA-1048.nasl
trunk/openvas-plugins/scripts/debian_DSA-1049.nasl
trunk/openvas-plugins/scripts/debian_DSA-1050.nasl
trunk/openvas-plugins/scripts/debian_DSA-1051.nasl
trunk/openvas-plugins/scripts/debian_DSA-1052.nasl
trunk/openvas-plugins/scripts/debian_DSA-1053.nasl
trunk/openvas-plugins/scripts/debian_DSA-1054.nasl
trunk/openvas-plugins/scripts/debian_DSA-1055.nasl
trunk/openvas-plugins/scripts/debian_DSA-1056.nasl
trunk/openvas-plugins/scripts/debian_DSA-1057.nasl
trunk/openvas-plugins/scripts/debian_DSA-1058.nasl
trunk/openvas-plugins/scripts/debian_DSA-1059.nasl
trunk/openvas-plugins/scripts/debian_DSA-1060.nasl
trunk/openvas-plugins/scripts/debian_DSA-1061.nasl
trunk/openvas-plugins/scripts/debian_DSA-1062.nasl
trunk/openvas-plugins/scripts/debian_DSA-1063.nasl
trunk/openvas-plugins/scripts/debian_DSA-1064.nasl
trunk/openvas-plugins/scripts/debian_DSA-1065.nasl
trunk/openvas-plugins/scripts/debian_DSA-1066.nasl
trunk/openvas-plugins/scripts/debian_DSA-1067.nasl
trunk/openvas-plugins/scripts/debian_DSA-1068.nasl
trunk/openvas-plugins/scripts/debian_DSA-1069.nasl
trunk/openvas-plugins/scripts/debian_DSA-1070.nasl
trunk/openvas-plugins/scripts/debian_DSA-1071.nasl
trunk/openvas-plugins/scripts/debian_DSA-1072.nasl
trunk/openvas-plugins/scripts/debian_DSA-1073.nasl
trunk/openvas-plugins/scripts/debian_DSA-1074.nasl
trunk/openvas-plugins/scripts/debian_DSA-1075.nasl
trunk/openvas-plugins/scripts/debian_DSA-1076.nasl
trunk/openvas-plugins/scripts/debian_DSA-1077.nasl
trunk/openvas-plugins/scripts/debian_DSA-1078.nasl
trunk/openvas-plugins/scripts/debian_DSA-1079.nasl
trunk/openvas-plugins/scripts/debian_DSA-1080.nasl
trunk/openvas-plugins/scripts/debian_DSA-1081.nasl
trunk/openvas-plugins/scripts/debian_DSA-1082.nasl
trunk/openvas-plugins/scripts/debian_DSA-1083.nasl
trunk/openvas-plugins/scripts/debian_DSA-1084.nasl
trunk/openvas-plugins/scripts/debian_DSA-1085.nasl
trunk/openvas-plugins/scripts/debian_DSA-1086.nasl
trunk/openvas-plugins/scripts/debian_DSA-1087.nasl
trunk/openvas-plugins/scripts/debian_DSA-1088.nasl
trunk/openvas-plugins/scripts/debian_DSA-1089.nasl
trunk/openvas-plugins/scripts/debian_DSA-1090.nasl
trunk/openvas-plugins/scripts/debian_DSA-1091.nasl
trunk/openvas-plugins/scripts/debian_DSA-1092.nasl
trunk/openvas-plugins/scripts/debian_DSA-1093.nasl
trunk/openvas-plugins/scripts/debian_DSA-1094.nasl
trunk/openvas-plugins/scripts/debian_DSA-1095.nasl
trunk/openvas-plugins/scripts/debian_DSA-1096.nasl
trunk/openvas-plugins/scripts/debian_DSA-1097.nasl
trunk/openvas-plugins/scripts/debian_DSA-1098.nasl
trunk/openvas-plugins/scripts/debian_DSA-1099.nasl
Modified:
trunk/openvas-plugins/ChangeLog
Log:
* scripts/debian_DSA-1000.nasl, scripts/debian_DSA-1001.nasl,
scripts/debian_DSA-1002.nasl, scripts/debian_DSA-1003.nasl,
scripts/debian_DSA-1004.nasl, scripts/debian_DSA-1005.nasl,
scripts/debian_DSA-1006.nasl, scripts/debian_DSA-1007.nasl,
scripts/debian_DSA-1008.nasl, scripts/debian_DSA-1009.nasl,
scripts/debian_DSA-1010.nasl, scripts/debian_DSA-1011.nasl,
scripts/debian_DSA-1012.nasl, scripts/debian_DSA-1013.nasl,
scripts/debian_DSA-1014.nasl, scripts/debian_DSA-1015.nasl,
scripts/debian_DSA-1016.nasl, scripts/debian_DSA-1017.nasl,
scripts/debian_DSA-1018.nasl, scripts/debian_DSA-1019.nasl,
scripts/debian_DSA-1020.nasl, scripts/debian_DSA-1021.nasl,
scripts/debian_DSA-1022.nasl, scripts/debian_DSA-1023.nasl,
scripts/debian_DSA-1024.nasl, scripts/debian_DSA-1025.nasl,
scripts/debian_DSA-1026.nasl, scripts/debian_DSA-1027.nasl,
scripts/debian_DSA-1028.nasl, scripts/debian_DSA-1029.nasl,
scripts/debian_DSA-1030.nasl, scripts/debian_DSA-1031.nasl,
scripts/debian_DSA-1032.nasl, scripts/debian_DSA-1033.nasl,
scripts/debian_DSA-1034.nasl, scripts/debian_DSA-1035.nasl,
scripts/debian_DSA-1036.nasl, scripts/debian_DSA-1037.nasl,
scripts/debian_DSA-1038.nasl, scripts/debian_DSA-1039.nasl,
scripts/debian_DSA-1040.nasl, scripts/debian_DSA-1041.nasl,
scripts/debian_DSA-1042.nasl, scripts/debian_DSA-1043.nasl,
scripts/debian_DSA-1044.nasl, scripts/debian_DSA-1045.nasl,
scripts/debian_DSA-1046.nasl, scripts/debian_DSA-1047.nasl,
scripts/debian_DSA-1048.nasl, scripts/debian_DSA-1049.nasl,
scripts/debian_DSA-1050.nasl, scripts/debian_DSA-1051.nasl,
scripts/debian_DSA-1052.nasl, scripts/debian_DSA-1053.nasl,
scripts/debian_DSA-1054.nasl, scripts/debian_DSA-1055.nasl,
scripts/debian_DSA-1056.nasl, scripts/debian_DSA-1057.nasl,
scripts/debian_DSA-1058.nasl, scripts/debian_DSA-1059.nasl,
scripts/debian_DSA-1060.nasl, scripts/debian_DSA-1061.nasl,
scripts/debian_DSA-1062.nasl, scripts/debian_DSA-1063.nasl,
scripts/debian_DSA-1064.nasl, scripts/debian_DSA-1065.nasl,
scripts/debian_DSA-1066.nasl, scripts/debian_DSA-1067.nasl,
scripts/debian_DSA-1068.nasl, scripts/debian_DSA-1069.nasl,
scripts/debian_DSA-1070.nasl, scripts/debian_DSA-1071.nasl,
scripts/debian_DSA-1072.nasl, scripts/debian_DSA-1073.nasl,
scripts/debian_DSA-1074.nasl, scripts/debian_DSA-1075.nasl,
scripts/debian_DSA-1076.nasl, scripts/debian_DSA-1077.nasl,
scripts/debian_DSA-1078.nasl, scripts/debian_DSA-1079.nasl,
scripts/debian_DSA-1080.nasl, scripts/debian_DSA-1081.nasl,
scripts/debian_DSA-1082.nasl, scripts/debian_DSA-1083.nasl,
scripts/debian_DSA-1084.nasl, scripts/debian_DSA-1085.nasl,
scripts/debian_DSA-1086.nasl, scripts/debian_DSA-1087.nasl,
scripts/debian_DSA-1088.nasl, scripts/debian_DSA-1089.nasl,
scripts/debian_DSA-1090.nasl, scripts/debian_DSA-1091.nasl,
scripts/debian_DSA-1092.nasl, scripts/debian_DSA-1093.nasl,
scripts/debian_DSA-1094.nasl, scripts/debian_DSA-1095.nasl,
scripts/debian_DSA-1096.nasl, scripts/debian_DSA-1097.nasl,
scripts/debian_DSA-1098.nasl, scripts/debian_DSA-1099.nasl:
New. Taken from nessus-plugins-2.2.10.
Modified: trunk/openvas-plugins/ChangeLog
===================================================================
--- trunk/openvas-plugins/ChangeLog 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/ChangeLog 2007-11-06 11:55:24 UTC (rev 531)
@@ -1,5 +1,59 @@
2007-11-06 Jan-Oliver Wagner <jan-oliver.wagner at intevation.de>
+ * scripts/debian_DSA-1000.nasl, scripts/debian_DSA-1001.nasl,
+ scripts/debian_DSA-1002.nasl, scripts/debian_DSA-1003.nasl,
+ scripts/debian_DSA-1004.nasl, scripts/debian_DSA-1005.nasl,
+ scripts/debian_DSA-1006.nasl, scripts/debian_DSA-1007.nasl,
+ scripts/debian_DSA-1008.nasl, scripts/debian_DSA-1009.nasl,
+ scripts/debian_DSA-1010.nasl, scripts/debian_DSA-1011.nasl,
+ scripts/debian_DSA-1012.nasl, scripts/debian_DSA-1013.nasl,
+ scripts/debian_DSA-1014.nasl, scripts/debian_DSA-1015.nasl,
+ scripts/debian_DSA-1016.nasl, scripts/debian_DSA-1017.nasl,
+ scripts/debian_DSA-1018.nasl, scripts/debian_DSA-1019.nasl,
+ scripts/debian_DSA-1020.nasl, scripts/debian_DSA-1021.nasl,
+ scripts/debian_DSA-1022.nasl, scripts/debian_DSA-1023.nasl,
+ scripts/debian_DSA-1024.nasl, scripts/debian_DSA-1025.nasl,
+ scripts/debian_DSA-1026.nasl, scripts/debian_DSA-1027.nasl,
+ scripts/debian_DSA-1028.nasl, scripts/debian_DSA-1029.nasl,
+ scripts/debian_DSA-1030.nasl, scripts/debian_DSA-1031.nasl,
+ scripts/debian_DSA-1032.nasl, scripts/debian_DSA-1033.nasl,
+ scripts/debian_DSA-1034.nasl, scripts/debian_DSA-1035.nasl,
+ scripts/debian_DSA-1036.nasl, scripts/debian_DSA-1037.nasl,
+ scripts/debian_DSA-1038.nasl, scripts/debian_DSA-1039.nasl,
+ scripts/debian_DSA-1040.nasl, scripts/debian_DSA-1041.nasl,
+ scripts/debian_DSA-1042.nasl, scripts/debian_DSA-1043.nasl,
+ scripts/debian_DSA-1044.nasl, scripts/debian_DSA-1045.nasl,
+ scripts/debian_DSA-1046.nasl, scripts/debian_DSA-1047.nasl,
+ scripts/debian_DSA-1048.nasl, scripts/debian_DSA-1049.nasl,
+ scripts/debian_DSA-1050.nasl, scripts/debian_DSA-1051.nasl,
+ scripts/debian_DSA-1052.nasl, scripts/debian_DSA-1053.nasl,
+ scripts/debian_DSA-1054.nasl, scripts/debian_DSA-1055.nasl,
+ scripts/debian_DSA-1056.nasl, scripts/debian_DSA-1057.nasl,
+ scripts/debian_DSA-1058.nasl, scripts/debian_DSA-1059.nasl,
+ scripts/debian_DSA-1060.nasl, scripts/debian_DSA-1061.nasl,
+ scripts/debian_DSA-1062.nasl, scripts/debian_DSA-1063.nasl,
+ scripts/debian_DSA-1064.nasl, scripts/debian_DSA-1065.nasl,
+ scripts/debian_DSA-1066.nasl, scripts/debian_DSA-1067.nasl,
+ scripts/debian_DSA-1068.nasl, scripts/debian_DSA-1069.nasl,
+ scripts/debian_DSA-1070.nasl, scripts/debian_DSA-1071.nasl,
+ scripts/debian_DSA-1072.nasl, scripts/debian_DSA-1073.nasl,
+ scripts/debian_DSA-1074.nasl, scripts/debian_DSA-1075.nasl,
+ scripts/debian_DSA-1076.nasl, scripts/debian_DSA-1077.nasl,
+ scripts/debian_DSA-1078.nasl, scripts/debian_DSA-1079.nasl,
+ scripts/debian_DSA-1080.nasl, scripts/debian_DSA-1081.nasl,
+ scripts/debian_DSA-1082.nasl, scripts/debian_DSA-1083.nasl,
+ scripts/debian_DSA-1084.nasl, scripts/debian_DSA-1085.nasl,
+ scripts/debian_DSA-1086.nasl, scripts/debian_DSA-1087.nasl,
+ scripts/debian_DSA-1088.nasl, scripts/debian_DSA-1089.nasl,
+ scripts/debian_DSA-1090.nasl, scripts/debian_DSA-1091.nasl,
+ scripts/debian_DSA-1092.nasl, scripts/debian_DSA-1093.nasl,
+ scripts/debian_DSA-1094.nasl, scripts/debian_DSA-1095.nasl,
+ scripts/debian_DSA-1096.nasl, scripts/debian_DSA-1097.nasl,
+ scripts/debian_DSA-1098.nasl, scripts/debian_DSA-1099.nasl:
+ New. Taken from nessus-plugins-2.2.10.
+
+2007-11-06 Jan-Oliver Wagner <jan-oliver.wagner at intevation.de>
+
* scripts/backport.inc, scripts/default_account.inc,
scripts/http_keepalive.inc, scripts/imap_func.inc,
scripts/misc_func.inc, scripts/nfs_func.inc, scripts/pop3_func.inc,
Added: trunk/openvas-plugins/scripts/debian_DSA-1000.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1000.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1000.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,62 @@
+# This script was automatically generated from the dsa-1000
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Gunnar Wolf noticed that the correction for the following problem was
+not complete and requires an update. For completeness we\'re
+providing the original problem description:
+An algorithm weakness has been discovered in Apache2::Request, the
+generic request library for Apache2 which can be exploited remotely
+and cause a denial of service via CPU consumption.
+The old stable distribution (woody) does not contain this package.
+For the stable distribution (sarge) this problem has been fixed in
+version 2.04-dev-1sarge2.
+For the unstable distribution (sid) this problem has been fixed in
+version 2.07-1.
+We recommend that you upgrade your libapreq2, libapache2-mod-apreq2
+and libapache2-request-perl packages.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1000
+Risk factor : High';
+
+if (description) {
+ script_id(22542);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1000");
+ script_cve_id("CVE-2006-0042");
+ script_bugtraq_id(16710);
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1000] DSA-1000-2 libapreq2-perl");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1000-2 libapreq2-perl");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'libapache2-request-perl', release: '3.1', reference: '2.04-dev-1sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapache2-request-perl is vulnerable in Debian 3.1.\nUpgrade to libapache2-request-perl_2.04-dev-1sarge2\n');
+}
+if (deb_check(prefix: 'libapreq2-perl', release: '4.0', reference: '2.07-1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapreq2-perl is vulnerable in Debian 4.0.\nUpgrade to libapreq2-perl_2.07-1\n');
+}
+if (deb_check(prefix: 'libapreq2-perl', release: '3.1', reference: '2.04-dev-1sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libapreq2-perl is vulnerable in Debian sarge.\nUpgrade to libapreq2-perl_2.04-dev-1sarge2\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1001.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1001.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1001.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,82 @@
+# This script was automatically generated from the dsa-1001
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+It was discovered that Crossfire, a multiplayer adventure game, performs
+insufficient bounds checking on network packets when run in "oldsocketmode",
+which may possibly lead to the execution of arbitrary code.
+For the old stable distribution (woody) this problem has been fixed in
+version 1.1.0-1woody1.
+For the stable distribution (sarge) this problem has been fixed in
+version 1.6.0.dfsg.1-4sarge1.
+For the unstable distribution (sid) this problem has been fixed in
+version 1.9.0-1.
+We recommend that you upgrade your crossfire packages.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1001
+Risk factor : High';
+
+if (description) {
+ script_id(22543);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1001");
+ script_cve_id("CVE-2006-1010");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1001] DSA-1001-1 crossfire");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1001-1 crossfire");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'crossfire-doc', release: '3.0', reference: '1.1.0-1woody1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-doc is vulnerable in Debian 3.0.\nUpgrade to crossfire-doc_1.1.0-1woody1\n');
+}
+if (deb_check(prefix: 'crossfire-edit', release: '3.0', reference: '1.1.0-1woody1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-edit is vulnerable in Debian 3.0.\nUpgrade to crossfire-edit_1.1.0-1woody1\n');
+}
+if (deb_check(prefix: 'crossfire-server', release: '3.0', reference: '1.1.0-1woody1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-server is vulnerable in Debian 3.0.\nUpgrade to crossfire-server_1.1.0-1woody1\n');
+}
+if (deb_check(prefix: 'crossfire-doc', release: '3.1', reference: '1.6.0.dfsg.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-doc is vulnerable in Debian 3.1.\nUpgrade to crossfire-doc_1.6.0.dfsg.1-4sarge1\n');
+}
+if (deb_check(prefix: 'crossfire-edit', release: '3.1', reference: '1.6.0.dfsg.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-edit is vulnerable in Debian 3.1.\nUpgrade to crossfire-edit_1.6.0.dfsg.1-4sarge1\n');
+}
+if (deb_check(prefix: 'crossfire-server', release: '3.1', reference: '1.6.0.dfsg.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-server is vulnerable in Debian 3.1.\nUpgrade to crossfire-server_1.6.0.dfsg.1-4sarge1\n');
+}
+if (deb_check(prefix: 'crossfire', release: '4.0', reference: '1.9.0-1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire is vulnerable in Debian 4.0.\nUpgrade to crossfire_1.9.0-1\n');
+}
+if (deb_check(prefix: 'crossfire', release: '3.1', reference: '1.6.0.dfsg.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire is vulnerable in Debian sarge.\nUpgrade to crossfire_1.6.0.dfsg.1-4sarge1\n');
+}
+if (deb_check(prefix: 'crossfire', release: '3.0', reference: '1.1.0-1woody1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire is vulnerable in Debian woody.\nUpgrade to crossfire_1.1.0-1woody1\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1002.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1002.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1002.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,64 @@
+# This script was automatically generated from the dsa-1002
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Several security related problems have been discovered in webcalendar,
+a PHP based multi-user calendar. The Common Vulnerabilities and
+Exposures project identifies the following vulnerabilities:
+ Multiple SQL injection vulnerabilities allow remote attackers to
+ execute arbitrary SQL commands.
+ Missing input sanitising allows an attacker to overwrite local
+ files.
+ A CRLF injection vulnerability allows remote attackers to modify
+ HTTP headers and conduct HTTP response splitting attacks.
+The old stable distribution (woody) does not contain webcalendar packages.
+For the stable distribution (sarge) these problems have been fixed in
+version 0.9.45-4sarge3.
+For the unstable distribution (sid) these problems have been fixed in
+version 1.0.2-1.
+We recommend that you upgrade your webcalendar package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1002
+Risk factor : High';
+
+if (description) {
+ script_id(22544);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1002");
+ script_cve_id("CVE-2005-3949", "CVE-2005-3961", "CVE-2005-3982");
+ script_bugtraq_id(15606, 15608, 15662, 15673);
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1002] DSA-1002-1 webcalendar");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1002-1 webcalendar");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'webcalendar', release: '3.1', reference: '0.9.45-4sarge3')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package webcalendar is vulnerable in Debian 3.1.\nUpgrade to webcalendar_0.9.45-4sarge3\n');
+}
+if (deb_check(prefix: 'webcalendar', release: '4.0', reference: '1.0.2-1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package webcalendar is vulnerable in Debian 4.0.\nUpgrade to webcalendar_1.0.2-1\n');
+}
+if (deb_check(prefix: 'webcalendar', release: '3.1', reference: '0.9.45-4sarge3')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package webcalendar is vulnerable in Debian sarge.\nUpgrade to webcalendar_0.9.45-4sarge3\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1003.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1003.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1003.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,67 @@
+# This script was automatically generated from the dsa-1003
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Eric Romang discovered that xpvm, a graphical console and monitor for
+PVM, creates a temporary file that allows local attackers to create or
+overwrite arbitrary files with the privileges of the user running
+xpvm.
+For the old stable distribution (woody) this problem has been fixed in
+version 1.2.5-7.2woody1.
+For the stable distribution (sarge) this problem has been fixed in
+version 1.2.5-7.3sarge1.
+For the unstable distribution (sid) this problem has been fixed in
+version 1.2.5-8.
+We recommend that you upgrade your xpvm package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1003
+Risk factor : High';
+
+if (description) {
+ script_id(22545);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1003");
+ script_cve_id("CVE-2005-2240");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1003] DSA-1003-1 xpvm");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1003-1 xpvm");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'xpvm', release: '3.0', reference: '1.2.5-7.2woody1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpvm is vulnerable in Debian 3.0.\nUpgrade to xpvm_1.2.5-7.2woody1\n');
+}
+if (deb_check(prefix: 'xpvm', release: '3.1', reference: '1.2.5-7.3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpvm is vulnerable in Debian 3.1.\nUpgrade to xpvm_1.2.5-7.3sarge1\n');
+}
+if (deb_check(prefix: 'xpvm', release: '4.0', reference: '1.2.5-8')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpvm is vulnerable in Debian 4.0.\nUpgrade to xpvm_1.2.5-8\n');
+}
+if (deb_check(prefix: 'xpvm', release: '3.1', reference: '1.2.5-7.3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpvm is vulnerable in Debian sarge.\nUpgrade to xpvm_1.2.5-7.3sarge1\n');
+}
+if (deb_check(prefix: 'xpvm', release: '3.0', reference: '1.2.5-7.2woody1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package xpvm is vulnerable in Debian woody.\nUpgrade to xpvm_1.2.5-7.2woody1\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1004.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1004.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1004.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,146 @@
+# This script was automatically generated from the dsa-1004
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Simon Kilvington discovered that specially crafted PNG images can trigger
+a heap overflow in libavcodec, the multimedia library of ffmpeg, which may
+lead to the execution of arbitrary code.
+The vlc media player links statically against libavcodec.
+The old stable distribution (woody) isn\'t affected by this problem.
+For the stable distribution (sarge) this problem has been fixed in
+version 0.8.1.svn20050314-1sarge1.
+For the unstable distribution (sid) this problem has been fixed in
+version 0.8.4.debian-2.
+We recommend that you upgrade your vlc package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1004
+Risk factor : High';
+
+if (description) {
+ script_id(22546);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1004");
+ script_cve_id("CVE-2005-4048");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1004] DSA-1004-1 vlc");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1004-1 vlc");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'gnome-vlc', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package gnome-vlc is vulnerable in Debian 3.1.\nUpgrade to gnome-vlc_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'gvlc', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package gvlc is vulnerable in Debian 3.1.\nUpgrade to gvlc_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'kvlc', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kvlc is vulnerable in Debian 3.1.\nUpgrade to kvlc_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'libvlc0-dev', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libvlc0-dev is vulnerable in Debian 3.1.\nUpgrade to libvlc0-dev_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'mozilla-plugin-vlc', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package mozilla-plugin-vlc is vulnerable in Debian 3.1.\nUpgrade to mozilla-plugin-vlc_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'qvlc', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package qvlc is vulnerable in Debian 3.1.\nUpgrade to qvlc_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc is vulnerable in Debian 3.1.\nUpgrade to vlc_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-alsa', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-alsa is vulnerable in Debian 3.1.\nUpgrade to vlc-alsa_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-esd', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-esd is vulnerable in Debian 3.1.\nUpgrade to vlc-esd_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-ggi', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-ggi is vulnerable in Debian 3.1.\nUpgrade to vlc-ggi_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-glide', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-glide is vulnerable in Debian 3.1.\nUpgrade to vlc-glide_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-gnome', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-gnome is vulnerable in Debian 3.1.\nUpgrade to vlc-gnome_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-gtk', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-gtk is vulnerable in Debian 3.1.\nUpgrade to vlc-gtk_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-plugin-alsa', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-plugin-alsa is vulnerable in Debian 3.1.\nUpgrade to vlc-plugin-alsa_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-plugin-arts', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-plugin-arts is vulnerable in Debian 3.1.\nUpgrade to vlc-plugin-arts_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-plugin-esd', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-plugin-esd is vulnerable in Debian 3.1.\nUpgrade to vlc-plugin-esd_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-plugin-ggi', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-plugin-ggi is vulnerable in Debian 3.1.\nUpgrade to vlc-plugin-ggi_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-plugin-glide', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-plugin-glide is vulnerable in Debian 3.1.\nUpgrade to vlc-plugin-glide_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-plugin-sdl', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-plugin-sdl is vulnerable in Debian 3.1.\nUpgrade to vlc-plugin-sdl_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-plugin-svgalib', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-plugin-svgalib is vulnerable in Debian 3.1.\nUpgrade to vlc-plugin-svgalib_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-qt', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-qt is vulnerable in Debian 3.1.\nUpgrade to vlc-qt_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc-sdl', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc-sdl is vulnerable in Debian 3.1.\nUpgrade to vlc-sdl_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'wxvlc', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package wxvlc is vulnerable in Debian 3.1.\nUpgrade to wxvlc_0.8.1.svn20050314-1sarge1\n');
+}
+if (deb_check(prefix: 'vlc', release: '4.0', reference: '0.8.4.debian-2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc is vulnerable in Debian 4.0.\nUpgrade to vlc_0.8.4.debian-2\n');
+}
+if (deb_check(prefix: 'vlc', release: '3.1', reference: '0.8.1.svn20050314-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package vlc is vulnerable in Debian sarge.\nUpgrade to vlc_0.8.1.svn20050314-1sarge1\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1005.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1005.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1005.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,62 @@
+# This script was automatically generated from the dsa-1005
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Simon Kilvington discovered that specially crafted PNG images can trigger
+a heap overflow in libavcodec, the multimedia library of ffmpeg, which may
+lead to the execution of arbitrary code.
+xine-lib includes a local copy of libavcodec.
+The old stable distribution (woody) isn\'t affected by this problem.
+For the stable distribution (sarge) this problem has been fixed in
+version 1.0.1-1sarge2.
+For the unstable distribution (sid) this problem has been fixed in
+version 1.0.1-1.5.
+We recommend that you upgrade your xine-lib package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1005
+Risk factor : High';
+
+if (description) {
+ script_id(22547);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1005");
+ script_cve_id("CVE-2005-4048");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1005] DSA-1005-1 xine-lib");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1005-1 xine-lib");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'libxine-dev', release: '3.1', reference: '1.0.1-1sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libxine-dev is vulnerable in Debian 3.1.\nUpgrade to libxine-dev_1.0.1-1sarge2\n');
+}
+if (deb_check(prefix: 'libxine1', release: '3.1', reference: '1.0.1-1sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libxine1 is vulnerable in Debian 3.1.\nUpgrade to libxine1_1.0.1-1sarge2\n');
+}
+if (deb_check(prefix: 'xine-lib', release: '4.0', reference: '1.0.1-1.5')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package xine-lib is vulnerable in Debian 4.0.\nUpgrade to xine-lib_1.0.1-1.5\n');
+}
+if (deb_check(prefix: 'xine-lib', release: '3.1', reference: '1.0.1-1sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package xine-lib is vulnerable in Debian sarge.\nUpgrade to xine-lib_1.0.1-1sarge2\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1006.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1006.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1006.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,73 @@
+# This script was automatically generated from the dsa-1006
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+"kcope" discovered that the wzdftpd FTP server lacks input sanitising
+for the SITE command, which may lead to the execution of arbitrary
+shell commands.
+The old stable distribution (woody) does not contain wzdftpd packages.
+For the stable distribution (sarge) this problem has been fixed in
+version 0.5.2-1.1sarge1.
+For the unstable distribution (sid) this problem has been fixed in
+version 0.5.5-1.
+We recommend that you upgrade your wzdftpd package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1006
+Risk factor : High';
+
+if (description) {
+ script_id(22548);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1006");
+ script_cve_id("CVE-2005-3081");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1006] DSA-1006-1 wzdftpd");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1006-1 wzdftpd");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'wzdftpd', release: '3.1', reference: '0.5.2-1.1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package wzdftpd is vulnerable in Debian 3.1.\nUpgrade to wzdftpd_0.5.2-1.1sarge1\n');
+}
+if (deb_check(prefix: 'wzdftpd-back-mysql', release: '3.1', reference: '0.5.2-1.1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package wzdftpd-back-mysql is vulnerable in Debian 3.1.\nUpgrade to wzdftpd-back-mysql_0.5.2-1.1sarge1\n');
+}
+if (deb_check(prefix: 'wzdftpd-dev', release: '3.1', reference: '0.5.2-1.1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package wzdftpd-dev is vulnerable in Debian 3.1.\nUpgrade to wzdftpd-dev_0.5.2-1.1sarge1\n');
+}
+if (deb_check(prefix: 'wzdftpd-mod-perl', release: '3.1', reference: '0.5.2-1.1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package wzdftpd-mod-perl is vulnerable in Debian 3.1.\nUpgrade to wzdftpd-mod-perl_0.5.2-1.1sarge1\n');
+}
+if (deb_check(prefix: 'wzdftpd-mod-tcl', release: '3.1', reference: '0.5.2-1.1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package wzdftpd-mod-tcl is vulnerable in Debian 3.1.\nUpgrade to wzdftpd-mod-tcl_0.5.2-1.1sarge1\n');
+}
+if (deb_check(prefix: 'wzdftpd', release: '4.0', reference: '0.5.5-1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package wzdftpd is vulnerable in Debian 4.0.\nUpgrade to wzdftpd_0.5.5-1\n');
+}
+if (deb_check(prefix: 'wzdftpd', release: '3.1', reference: '0.5.2-1.1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package wzdftpd is vulnerable in Debian sarge.\nUpgrade to wzdftpd_0.5.2-1.1sarge1\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1007.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1007.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1007.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,68 @@
+# This script was automatically generated from the dsa-1007
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+
+The Drupal Security Team discovered several vulnerabilities in Drupal,
+a fully-featured content management and discussion engine. The Common
+Vulnerabilities and Exposures project identifies the following
+problems:
+ Due to missing input sanitising a remote attacker could inject
+ headers of outgoing e-mail messages and use Drupal as a spam
+ proxy.
+ Missing input sanity checks allows attackers to inject arbitrary
+ web script or HTML.
+ Menu items created with the menu.module lacked access control,
+ which might allow remote attackers to access administrator pages.
+ Markus Petrux discovered a bug in the session fixation which may
+ allow remote attackers to gain Drupal user privileges.
+The old stable distribution (woody) does not contain Drupal packages.
+For the stable distribution (sarge) these problems have been fixed in
+version 4.5.3-6.
+For the unstable distribution (sid) these problems have been fixed in
+version 4.5.8-1.
+We recommend that you upgrade your drupal package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1007
+Risk factor : High';
+
+if (description) {
+ script_id(22549);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1007");
+ script_cve_id("CVE-2006-1225", "CVE-2006-1226", "CVE-2006-1227", "CVE-2006-1228");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1007] DSA-1007-1 drupal");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1007-1 drupal");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'drupal', release: '3.1', reference: '4.5.3-6')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package drupal is vulnerable in Debian 3.1.\nUpgrade to drupal_4.5.3-6\n');
+}
+if (deb_check(prefix: 'drupal', release: '4.0', reference: '4.5.8-1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package drupal is vulnerable in Debian 4.0.\nUpgrade to drupal_4.5.8-1\n');
+}
+if (deb_check(prefix: 'drupal', release: '3.1', reference: '4.5.3-6')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package drupal is vulnerable in Debian sarge.\nUpgrade to drupal_4.5.3-6\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1008.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1008.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1008.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,141 @@
+# This script was automatically generated from the dsa-1008
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Marcelo Ricardo Leitner noticed that the current patch in DSA 932
+(CVE-2005-3627) for kpdf, the PDF viewer for KDE, does not fix all
+buffer overflows, still allowing an attacker to execute arbitrary
+code.
+The old stable distribution (woody) does not contain kpdf packages.
+For the stable distribution (sarge) this problem has been fixed in
+version 3.3.2-2sarge4.
+The unstable distribution (sid) is not affected by this problem.
+We recommend that you upgrade your kpdf package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1008
+Risk factor : High';
+
+if (description) {
+ script_id(22550);
+ script_version("$Revision: 1.1 $");
+ script_xref(name: "DSA", value: "1008");
+ script_cve_id("CVE-2006-0746");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2006 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1008] DSA-1008-1 kdegraphics");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1008-1 kdegraphics");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'kamera', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kamera is vulnerable in Debian 3.1.\nUpgrade to kamera_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kcoloredit', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kcoloredit is vulnerable in Debian 3.1.\nUpgrade to kcoloredit_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kdegraphics', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kdegraphics is vulnerable in Debian 3.1.\nUpgrade to kdegraphics_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kdegraphics-dev', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kdegraphics-dev is vulnerable in Debian 3.1.\nUpgrade to kdegraphics-dev_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kdegraphics-kfile-plugins', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kdegraphics-kfile-plugins is vulnerable in Debian 3.1.\nUpgrade to kdegraphics-kfile-plugins_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kdvi', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kdvi is vulnerable in Debian 3.1.\nUpgrade to kdvi_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kfax', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kfax is vulnerable in Debian 3.1.\nUpgrade to kfax_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kgamma', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kgamma is vulnerable in Debian 3.1.\nUpgrade to kgamma_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kghostview', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kghostview is vulnerable in Debian 3.1.\nUpgrade to kghostview_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kiconedit', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kiconedit is vulnerable in Debian 3.1.\nUpgrade to kiconedit_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kmrml', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kmrml is vulnerable in Debian 3.1.\nUpgrade to kmrml_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kolourpaint', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kolourpaint is vulnerable in Debian 3.1.\nUpgrade to kolourpaint_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kooka', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kooka is vulnerable in Debian 3.1.\nUpgrade to kooka_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kpdf', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kpdf is vulnerable in Debian 3.1.\nUpgrade to kpdf_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kpovmodeler', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kpovmodeler is vulnerable in Debian 3.1.\nUpgrade to kpovmodeler_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kruler', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kruler is vulnerable in Debian 3.1.\nUpgrade to kruler_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'ksnapshot', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package ksnapshot is vulnerable in Debian 3.1.\nUpgrade to ksnapshot_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'ksvg', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package ksvg is vulnerable in Debian 3.1.\nUpgrade to ksvg_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kuickshow', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kuickshow is vulnerable in Debian 3.1.\nUpgrade to kuickshow_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kview', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kview is vulnerable in Debian 3.1.\nUpgrade to kview_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kviewshell', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kviewshell is vulnerable in Debian 3.1.\nUpgrade to kviewshell_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'libkscan-dev', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libkscan-dev is vulnerable in Debian 3.1.\nUpgrade to libkscan-dev_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'libkscan1', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libkscan1 is vulnerable in Debian 3.1.\nUpgrade to libkscan1_3.3.2-2sarge4\n');
+}
+if (deb_check(prefix: 'kdegraphics', release: '3.1', reference: '3.3.2-2sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kdegraphics is vulnerable in Debian sarge.\nUpgrade to kdegraphics_3.3.2-2sarge4\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1009.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1009.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1009.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,81 @@
+# This script was automatically generated from the dsa-1009
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+A buffer overflow has been discovered in the crossfire game which
+allows remote attackers to execute arbitrary code.
+For the old stable distribution (woody) this problem has been fixed in
+version 1.1.0-1woody2.
+For the stable distribution (sarge) this problem has been fixed in
+version 1.6.0.dfsg.1-4sarge2.
+For the unstable distribution (sid) this problem has been fixed in
+version 1.9.0-2.
+We recommend that you upgrade your crossfire package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1009
+Risk factor : High';
+
+if (description) {
+ script_id(22551);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1009");
+ script_cve_id("CVE-2006-1236");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1009] DSA-1009-1 crossfire");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1009-1 crossfire");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'crossfire-doc', release: '3.0', reference: '1.1.0-1woody2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-doc is vulnerable in Debian 3.0.\nUpgrade to crossfire-doc_1.1.0-1woody2\n');
+}
+if (deb_check(prefix: 'crossfire-edit', release: '3.0', reference: '1.1.0-1woody2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-edit is vulnerable in Debian 3.0.\nUpgrade to crossfire-edit_1.1.0-1woody2\n');
+}
+if (deb_check(prefix: 'crossfire-server', release: '3.0', reference: '1.1.0-1woody2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-server is vulnerable in Debian 3.0.\nUpgrade to crossfire-server_1.1.0-1woody2\n');
+}
+if (deb_check(prefix: 'crossfire-doc', release: '3.1', reference: '1.6.0.dfsg.1-4sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-doc is vulnerable in Debian 3.1.\nUpgrade to crossfire-doc_1.6.0.dfsg.1-4sarge2\n');
+}
+if (deb_check(prefix: 'crossfire-edit', release: '3.1', reference: '1.6.0.dfsg.1-4sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-edit is vulnerable in Debian 3.1.\nUpgrade to crossfire-edit_1.6.0.dfsg.1-4sarge2\n');
+}
+if (deb_check(prefix: 'crossfire-server', release: '3.1', reference: '1.6.0.dfsg.1-4sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire-server is vulnerable in Debian 3.1.\nUpgrade to crossfire-server_1.6.0.dfsg.1-4sarge2\n');
+}
+if (deb_check(prefix: 'crossfire', release: '4.0', reference: '1.9.0-2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire is vulnerable in Debian 4.0.\nUpgrade to crossfire_1.9.0-2\n');
+}
+if (deb_check(prefix: 'crossfire', release: '3.1', reference: '1.6.0.dfsg.1-4sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire is vulnerable in Debian sarge.\nUpgrade to crossfire_1.6.0.dfsg.1-4sarge2\n');
+}
+if (deb_check(prefix: 'crossfire', release: '3.0', reference: '1.1.0-1woody2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package crossfire is vulnerable in Debian woody.\nUpgrade to crossfire_1.1.0-1woody2\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1010.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1010.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1010.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,59 @@
+# This script was automatically generated from the dsa-1010
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Ulf Härnhammar from the Debian Security Audit Project discovered that
+ilohamail, a lightweight multilingual web-based IMAP/POP3 client, does
+not always sanitise input provided by users which allows remote
+attackers to inject arbitrary web script or HTML.
+The old stable distribution (woody) does not contain an ilohamail
+package.
+For the stable distribution (sarge) these problems have been fixed in
+version 0.8.14-0rc3sarge1.
+For the unstable distribution (sid) these problems have been fixed in
+version 0.8.14-0rc3sarge1.
+We recommend that you upgrade your ilohamail package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1010
+Risk factor : High';
+
+if (description) {
+ script_id(22552);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1010");
+ script_bugtraq_id(13175);
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1010] DSA-1010-1 ilohamail");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1010-1 ilohamail");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'ilohamail', release: '3.1', reference: '0.8.14-0rc3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package ilohamail is vulnerable in Debian 3.1.\nUpgrade to ilohamail_0.8.14-0rc3sarge1\n');
+}
+if (deb_check(prefix: 'ilohamail', release: '4.0', reference: '0.8.14-0rc3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package ilohamail is vulnerable in Debian 4.0.\nUpgrade to ilohamail_0.8.14-0rc3sarge1\n');
+}
+if (deb_check(prefix: 'ilohamail', release: '3.1', reference: '0.8.14-0rc3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package ilohamail is vulnerable in Debian sarge.\nUpgrade to ilohamail_0.8.14-0rc3sarge1\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1011.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1011.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1011.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,74 @@
+# This script was automatically generated from the dsa-1011
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Several vulnerabilities have been discovered in the Debian vserver
+support for Linux. The Common Vulnerabilities and Exposures project
+identifies the following problems:
+ Bjørn Steinbrink discovered that the chroot barrier is not set
+ correctly with util-vserver which may result in unauthorised
+ escapes from a vserver to the host system.
+ This vulnerability is limited to the 2.4 kernel patch included in
+ kernel-patch-vserver. The correction to this problem requires
+ updating the util-vserver package as well and installing a new
+ kernel built from the updated kernel-patch-vserver package.
+ The default policy of util-vserver is set to trust all unknown
+ capabilities instead of considering them as insecure.
+The old stable distribution (woody) does not contain a
+kernel-patch-vserver package.
+For the stable distribution (sarge) this problem has been fixed in
+version 1.9.5.5 of kernel-patch-vserver and in version
+0.30.204-5sarge3 of util-vserver.
+For the unstable distribution (sid) this problem has been fixed in
+version 2.3 of kernel-patch-vserver and in version 0.30.208-1 of
+util-vserver.
+We recommend that you upgrade your util-vserver and
+kernel-patch-vserver packages and build a new kernel immediately.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1011
+Risk factor : High';
+
+if (description) {
+ script_id(22553);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1011");
+ script_cve_id("CVE-2005-4347", "CVE-2005-4418");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1011] DSA-1011-1 kernel-patch-vserver");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1011-1 kernel-patch-vserver");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'kernel-patch-vserver', release: '3.1', reference: '1.9.5.5')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-patch-vserver is vulnerable in Debian 3.1.\nUpgrade to kernel-patch-vserver_1.9.5.5\n');
+}
+if (deb_check(prefix: 'util-vserver', release: '3.1', reference: '0.30.204-5sarge3')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package util-vserver is vulnerable in Debian 3.1.\nUpgrade to util-vserver_0.30.204-5sarge3\n');
+}
+if (deb_check(prefix: 'kernel-patch-vserver,', release: '4.0', reference: '2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-patch-vserver, is vulnerable in Debian 4.0.\nUpgrade to kernel-patch-vserver,_2\n');
+}
+if (deb_check(prefix: 'kernel-patch-vserver,', release: '3.1', reference: '1.9.5')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-patch-vserver, is vulnerable in Debian sarge.\nUpgrade to kernel-patch-vserver,_1.9.5\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1012.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1012.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1012.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,67 @@
+# This script was automatically generated from the dsa-1012
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+A buffer overflow in the command line argument parsing has been
+discovered in unzip, the de-archiver for ZIP files, that could lead to
+the execution of arbitrary code.
+For the old stable distribution (woody) this problem has been fixed in
+version 5.50-1woody6.
+For the stable distribution (sarge) this problem has been fixed in
+version 5.52-1sarge4.
+For the unstable distribution (sid) this problem has been fixed in
+version 5.52-7.
+We recommend that you upgrade your unzip package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1012
+Risk factor : High';
+
+if (description) {
+ script_id(22554);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1012");
+ script_cve_id("CVE-2005-4667");
+ script_bugtraq_id(15968);
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1012] DSA-1012-1 unzip");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1012-1 unzip");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'unzip', release: '3.0', reference: '5.50-1woody6')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package unzip is vulnerable in Debian 3.0.\nUpgrade to unzip_5.50-1woody6\n');
+}
+if (deb_check(prefix: 'unzip', release: '3.1', reference: '5.52-1sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package unzip is vulnerable in Debian 3.1.\nUpgrade to unzip_5.52-1sarge4\n');
+}
+if (deb_check(prefix: 'unzip', release: '4.0', reference: '5.52-7')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package unzip is vulnerable in Debian 4.0.\nUpgrade to unzip_5.52-7\n');
+}
+if (deb_check(prefix: 'unzip', release: '3.1', reference: '5.52-1sarge4')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package unzip is vulnerable in Debian sarge.\nUpgrade to unzip_5.52-1sarge4\n');
+}
+if (deb_check(prefix: 'unzip', release: '3.0', reference: '5.50-1woody6')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package unzip is vulnerable in Debian woody.\nUpgrade to unzip_5.50-1woody6\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1013.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1013.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1013.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,66 @@
+# This script was automatically generated from the dsa-1013
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Will Aoki discovered that snmptrapfmt, a configurable snmp trap
+handler daemon for snmpd, does not prevent overwriting existing files
+when writing to a temporary log file.
+For the old stable distribution (woody) this problem has been fixed in
+version 1.03woody1.
+For the stable distribution (sarge) this problem has been fixed in
+version 1.08sarge1.
+For the unstable distribution (sid) this problem has been fixed in
+version 1.10-1.
+We recommend that you upgrade your snmptrapfmt package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1013
+Risk factor : High';
+
+if (description) {
+ script_id(22555);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1013");
+ script_cve_id("CVE-2006-0050");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1013] DSA-1013-1 snmptrapfmt");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1013-1 snmptrapfmt");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'snmptrapfmt', release: '3.0', reference: '1.03woody1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package snmptrapfmt is vulnerable in Debian 3.0.\nUpgrade to snmptrapfmt_1.03woody1\n');
+}
+if (deb_check(prefix: 'snmptrapfmt', release: '3.1', reference: '1.08sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package snmptrapfmt is vulnerable in Debian 3.1.\nUpgrade to snmptrapfmt_1.08sarge1\n');
+}
+if (deb_check(prefix: 'snmptrapfmt', release: '4.0', reference: '1.10-1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package snmptrapfmt is vulnerable in Debian 4.0.\nUpgrade to snmptrapfmt_1.10-1\n');
+}
+if (deb_check(prefix: 'snmptrapfmt', release: '3.1', reference: '1.08sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package snmptrapfmt is vulnerable in Debian sarge.\nUpgrade to snmptrapfmt_1.08sarge1\n');
+}
+if (deb_check(prefix: 'snmptrapfmt', release: '3.0', reference: '1.03woody1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package snmptrapfmt is vulnerable in Debian woody.\nUpgrade to snmptrapfmt_1.03woody1\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1014.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1014.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1014.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,90 @@
+# This script was automatically generated from the dsa-1014
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Aviram Jenik and Damyan Ivanov discovered a buffer overflow in
+firebird2, an RDBMS based on InterBase 6.0 code, that allows remote
+attackers to crash.
+The old stable distribution (woody) does not contain firebird2 packages.
+For the stable distribution (sarge) this problem has been fixed in
+version 1.5.1-4sarge1.
+For the unstable distribution (sid) this problem has been fixed in
+version 1.5.3.4870-3
+We recommend that you upgrade your firebird2 packages.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1014
+Risk factor : High';
+
+if (description) {
+ script_id(22556);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1014");
+ script_cve_id("CVE-2004-2043");
+ script_bugtraq_id(10446);
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1014] DSA-1014-1 firebird2");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1014-1 firebird2");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'firebird2-classic-server', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package firebird2-classic-server is vulnerable in Debian 3.1.\nUpgrade to firebird2-classic-server_1.5.1-4sarge1\n');
+}
+if (deb_check(prefix: 'firebird2-dev', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package firebird2-dev is vulnerable in Debian 3.1.\nUpgrade to firebird2-dev_1.5.1-4sarge1\n');
+}
+if (deb_check(prefix: 'firebird2-examples', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package firebird2-examples is vulnerable in Debian 3.1.\nUpgrade to firebird2-examples_1.5.1-4sarge1\n');
+}
+if (deb_check(prefix: 'firebird2-server-common', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package firebird2-server-common is vulnerable in Debian 3.1.\nUpgrade to firebird2-server-common_1.5.1-4sarge1\n');
+}
+if (deb_check(prefix: 'firebird2-super-server', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package firebird2-super-server is vulnerable in Debian 3.1.\nUpgrade to firebird2-super-server_1.5.1-4sarge1\n');
+}
+if (deb_check(prefix: 'firebird2-utils-classic', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package firebird2-utils-classic is vulnerable in Debian 3.1.\nUpgrade to firebird2-utils-classic_1.5.1-4sarge1\n');
+}
+if (deb_check(prefix: 'firebird2-utils-super', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package firebird2-utils-super is vulnerable in Debian 3.1.\nUpgrade to firebird2-utils-super_1.5.1-4sarge1\n');
+}
+if (deb_check(prefix: 'libfirebird2-classic', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libfirebird2-classic is vulnerable in Debian 3.1.\nUpgrade to libfirebird2-classic_1.5.1-4sarge1\n');
+}
+if (deb_check(prefix: 'libfirebird2-super', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libfirebird2-super is vulnerable in Debian 3.1.\nUpgrade to libfirebird2-super_1.5.1-4sarge1\n');
+}
+if (deb_check(prefix: 'firebird2', release: '4.0', reference: '1.5.3')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package firebird2 is vulnerable in Debian 4.0.\nUpgrade to firebird2_1.5.3\n');
+}
+if (deb_check(prefix: 'firebird2', release: '3.1', reference: '1.5.1-4sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package firebird2 is vulnerable in Debian sarge.\nUpgrade to firebird2_1.5.1-4sarge1\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1015.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1015.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1015.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,108 @@
+# This script was automatically generated from the dsa-1015
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Mark Dowd discovered a flaw in the handling of asynchronous signals in
+sendmail, a powerful, efficient, and scalable mail transport agent.
+This allows a remote attacker to exploit a race condition to
+execute arbitrary code as root.
+For the old stable distribution (woody) this problem has been fixed in
+version 8.12.3-7.2.
+For the stable distribution (sarge) this problem has been fixed in
+version 8.13.4-3sarge1.
+For the unstable distribution (sid) this problem has been fixed in
+version 8.13.6-1.
+We recommend that you upgrade your sendmail package immediately.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1015
+Risk factor : High';
+
+if (description) {
+ script_id(22557);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1015");
+ script_cve_id("CVE-2006-0058");
+ script_xref(name: "CERT", value: "834865");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1015] DSA-1015-1 sendmail");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1015-1 sendmail");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'libmilter-dev', release: '3.0', reference: '8.12.3-7.2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmilter-dev is vulnerable in Debian 3.0.\nUpgrade to libmilter-dev_8.12.3-7.2\n');
+}
+if (deb_check(prefix: 'sendmail', release: '3.0', reference: '8.12.3-7.2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 3.0.\nUpgrade to sendmail_8.12.3-7.2\n');
+}
+if (deb_check(prefix: 'sendmail-doc', release: '3.0', reference: '8.12.3-7.2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-doc is vulnerable in Debian 3.0.\nUpgrade to sendmail-doc_8.12.3-7.2\n');
+}
+if (deb_check(prefix: 'libmilter-dev', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmilter-dev is vulnerable in Debian 3.1.\nUpgrade to libmilter-dev_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'libmilter0', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libmilter0 is vulnerable in Debian 3.1.\nUpgrade to libmilter0_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'rmail', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package rmail is vulnerable in Debian 3.1.\nUpgrade to rmail_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'sendmail', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 3.1.\nUpgrade to sendmail_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'sendmail-base', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-base is vulnerable in Debian 3.1.\nUpgrade to sendmail-base_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'sendmail-bin', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-bin is vulnerable in Debian 3.1.\nUpgrade to sendmail-bin_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'sendmail-cf', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-cf is vulnerable in Debian 3.1.\nUpgrade to sendmail-cf_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'sendmail-doc', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail-doc is vulnerable in Debian 3.1.\nUpgrade to sendmail-doc_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'sensible-mda', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sensible-mda is vulnerable in Debian 3.1.\nUpgrade to sensible-mda_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'sendmail', release: '4.0', reference: '8.13.6-1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian 4.0.\nUpgrade to sendmail_8.13.6-1\n');
+}
+if (deb_check(prefix: 'sendmail', release: '3.1', reference: '8.13.4-3sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian sarge.\nUpgrade to sendmail_8.13.4-3sarge1\n');
+}
+if (deb_check(prefix: 'sendmail', release: '3.0', reference: '8.12.3-7.2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package sendmail is vulnerable in Debian woody.\nUpgrade to sendmail_8.12.3-7.2\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1016.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1016.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1016.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,79 @@
+# This script was automatically generated from the dsa-1016
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Ulf Härnhammar discovered several format string vulnerabilities in
+Evolution, a free groupware suite, that could lead to crashes of the
+application or the execution of arbitrary code.
+For the old stable distribution (woody) these problems have been fixed
+in version 1.0.5-1woody3.
+For the stable distribution (sarge) these problems have been fixed in
+version 2.0.4-2sarge1.
+For the unstable distribution (sid) these problems have been fixed in
+version 2.2.3-3.
+We recommend that you upgrade your evolution package.
+
+
+Solution : http://www.debian.org/security/2006/dsa-1016
+Risk factor : High';
+
+if (description) {
+ script_id(22558);
+ script_version("$Revision: 1.2 $");
+ script_xref(name: "DSA", value: "1016");
+ script_cve_id("CVE-2005-2549", "CVE-2005-2550");
+ script_bugtraq_id(14532);
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2007 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1016] DSA-1016-1 evolution");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1016-1 evolution");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'evolution', release: '3.0', reference: '1.0.5-1woody3')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package evolution is vulnerable in Debian 3.0.\nUpgrade to evolution_1.0.5-1woody3\n');
+}
+if (deb_check(prefix: 'libcamel-dev', release: '3.0', reference: '1.0.5-1woody3')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libcamel-dev is vulnerable in Debian 3.0.\nUpgrade to libcamel-dev_1.0.5-1woody3\n');
+}
+if (deb_check(prefix: 'libcamel0', release: '3.0', reference: '1.0.5-1woody3')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package libcamel0 is vulnerable in Debian 3.0.\nUpgrade to libcamel0_1.0.5-1woody3\n');
+}
+if (deb_check(prefix: 'evolution', release: '3.1', reference: '2.0.4-2sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package evolution is vulnerable in Debian 3.1.\nUpgrade to evolution_2.0.4-2sarge1\n');
+}
+if (deb_check(prefix: 'evolution-dev', release: '3.1', reference: '2.0.4-2sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package evolution-dev is vulnerable in Debian 3.1.\nUpgrade to evolution-dev_2.0.4-2sarge1\n');
+}
+if (deb_check(prefix: 'evolution', release: '4.0', reference: '2.2.3-3')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package evolution is vulnerable in Debian 4.0.\nUpgrade to evolution_2.2.3-3\n');
+}
+if (deb_check(prefix: 'evolution', release: '3.1', reference: '2.0.4-2sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package evolution is vulnerable in Debian sarge.\nUpgrade to evolution_2.0.4-2sarge1\n');
+}
+if (deb_check(prefix: 'evolution', release: '3.0', reference: '1.0.5-1woody3')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package evolution is vulnerable in Debian woody.\nUpgrade to evolution_1.0.5-1woody3\n');
+}
+if (w) { security_hole(port: 0, data: desc); }
Added: trunk/openvas-plugins/scripts/debian_DSA-1017.nasl
===================================================================
--- trunk/openvas-plugins/scripts/debian_DSA-1017.nasl 2007-11-06 11:38:12 UTC (rev 530)
+++ trunk/openvas-plugins/scripts/debian_DSA-1017.nasl 2007-11-06 11:55:24 UTC (rev 531)
@@ -0,0 +1,988 @@
+# This script was automatically generated from the dsa-1017
+# Debian Security Advisory
+# It is released under the Nessus Script Licence.
+# Advisory is copyright 1997-2004 Software in the Public Interest, Inc.
+# See http://www.debian.org/license
+# DSA2nasl Convertor is copyright 2004 Michel Arboi
+
+if (! defined_func('bn_random')) exit(0);
+
+desc = '
+Several local and remote vulnerabilities have been discovered in the Linux
+kernel that may lead to a denial of service or the execution of arbitrary
+code. The Common Vulnerabilities and Exposures project identifies the
+following problems:
+ Multiple overflows exist in the io_edgeport driver which might be usable
+ as a denial of service attack vector.
+ Bryan Fulton reported a bounds checking bug in the coda_pioctl function
+ which may allow local users to execute arbitrary code or trigger a denial
+ of service attack.
+ An error in the skb_checksum_help() function from the netfilter framework
+ has been discovered that allows the bypass of packet filter rules or
+ a denial of service attack.
+ Tim Yamin discovered that insufficient input validation in the zisofs driver
+ for compressed ISO file systems allows a denial of service attack through
+ maliciously crafted ISO images.
+ A buffer overflow in the sendmsg() function allows local users to execute
+ arbitrary code.
+ Herbert Xu discovered that the setsockopt() function was not restricted to
+ users/processes with the CAP_NET_ADMIN capability. This allows attackers to
+ manipulate IPSEC policies or initiate a denial of service attack.
+ Al Viro discovered a race condition in the /proc handling of network devices.
+ A (local) attacker could exploit the stale reference after interface shutdown
+ to cause a denial of service or possibly execute code in kernel mode.
+ Jan Blunck discovered that repeated failed reads of /proc/scsi/sg/devices
+ leak memory, which allows a denial of service attack.
+ Tetsuo Handa discovered that the udp_v6_get_port() function from the IPv6 code
+ can be forced into an endless loop, which allows a denial of service attack.
+ Vasiliy Averin discovered that the reference counters from sockfd_put() and
+ fput() can be forced into overlapping, which allows a denial of service attack
+ through a null pointer dereference.
+ Eric Dumazet discovered that the set_mempolicy() system call accepts a negative
+ value for its first argument, which triggers a BUG() assert. This allows a
+ denial of service attack.
+ Harald Welte discovered that if a process issues a USB Request Block (URB)
+ to a device and terminates before the URB completes, a stale pointer
+ would be dereferenced. This could be used to trigger a denial of service
+ attack.
+ Pavel Roskin discovered that the driver for Orinoco wireless cards clears
+ its buffers insufficiently. This could leak sensitive information into
+ user space.
+ Robert Derr discovered that the audit subsystem uses an incorrect function to
+ free memory, which allows a denial of service attack.
+ Rudolf Polzer discovered that the kernel improperly restricts access to the
+ KDSKBSENT ioctl, which can possibly lead to privilege escalation.
+ Doug Chapman discovered that the mq_open syscall can be tricked into
+ decrementing an internal counter twice, which allows a denial of service attack
+ through a kernel panic.
+ Doug Chapman discovered that pass
+[...]
+
+Solution : http://www.debian.org/security/2006/dsa-1017
+Risk factor : High';
+
+if (description) {
+ script_id(22559);
+ script_version("$Revision: 1.1 $");
+ script_xref(name: "DSA", value: "1017");
+ script_cve_id("CVE-2004-1017", "CVE-2005-0124", "CVE-2005-0449", "CVE-2005-2457", "CVE-2005-2490", "CVE-2005-2555", "CVE-2005-2709");
+
+ script_description(english: desc);
+ script_copyright(english: "This script is (C) 2006 Michel Arboi <mikhail at nessus.org>");
+ script_name(english: "[DSA1017] DSA-1017-1 kernel-source-2.6.8");
+ script_category(ACT_GATHER_INFO);
+ script_family(english: "Debian Local Security Checks");
+ script_dependencies("ssh_get_info.nasl");
+ script_require_keys("Host/Debian/dpkg-l");
+ script_summary(english: "DSA-1017-1 kernel-source-2.6.8");
+ exit(0);
+}
+
+include("debian_package.inc");
+
+w = 0;
+if (deb_check(prefix: 'fai-kernels', release: '3.1', reference: '1.9.1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package fai-kernels is vulnerable in Debian 3.1.\nUpgrade to fai-kernels_1.9.1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.4.27-3-386', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.4.27-3-386 is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.4.27-3-386_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.4.27-3-586tsc', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.4.27-3-586tsc is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.4.27-3-586tsc_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.4.27-3-686', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.4.27-3-686 is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.4.27-3-686_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.4.27-3-686-smp', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.4.27-3-686-smp is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.4.27-3-686-smp_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.4.27-3-k6', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.4.27-3-k6 is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.4.27-3-k6_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.4.27-3-k7', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.4.27-3-k7 is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.4.27-3-k7_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.4.27-3-k7-smp', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.4.27-3-k7-smp is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.4.27-3-k7-smp_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.6.8-3-386', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.6.8-3-386 is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.6.8-3-386_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.6.8-3-686', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.6.8-3-686 is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.6.8-3-686_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.6.8-3-686-smp', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.6.8-3-686-smp is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.6.8-3-686-smp_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.6.8-3-k7', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.6.8-3-k7 is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.6.8-3-k7_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'hostap-modules-2.6.8-3-k7-smp', release: '3.1', reference: '0.3.7-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package hostap-modules-2.6.8-3-k7-smp is vulnerable in Debian 3.1.\nUpgrade to hostap-modules-2.6.8-3-k7-smp_0.3.7-1sarge1\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-2', release: '3.1', reference: '2.6.8-15sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-2 is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-2_2.6.8-15sarge1\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-3', release: '3.1', reference: '2.6.8-15sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-3 is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-3_2.6.8-15sarge2\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-3-power3', release: '3.1', reference: '2.6.8-12sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-3-power3 is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-3-power3_2.6.8-12sarge2\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-3-power3-smp', release: '3.1', reference: '2.6.8-12sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-3-power3-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-3-power3-smp_2.6.8-12sarge2\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-3-power4', release: '3.1', reference: '2.6.8-12sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-3-power4 is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-3-power4_2.6.8-12sarge2\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-3-power4-smp', release: '3.1', reference: '2.6.8-12sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-3-power4-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-3-power4-smp_2.6.8-12sarge2\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-3-powerpc', release: '3.1', reference: '2.6.8-12sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-3-powerpc is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-3-powerpc_2.6.8-12sarge2\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-3-powerpc-smp', release: '3.1', reference: '2.6.8-12sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-3-powerpc-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-3-powerpc-smp_2.6.8-12sarge2\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-power3', release: '3.1', reference: '2.6.8-12sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-power3 is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-power3_2.6.8-12sarge1\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-power3-smp', release: '3.1', reference: '2.6.8-12sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-power3-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-power3-smp_2.6.8-12sarge1\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-power4', release: '3.1', reference: '2.6.8-12sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-power4 is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-power4_2.6.8-12sarge1\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-power4-smp', release: '3.1', reference: '2.6.8-12sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-power4-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-power4-smp_2.6.8-12sarge1\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-powerpc', release: '3.1', reference: '2.6.8-12sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-powerpc is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-powerpc_2.6.8-12sarge1\n');
+}
+if (deb_check(prefix: 'kernel-build-2.6.8-powerpc-smp', release: '3.1', reference: '2.6.8-12sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-build-2.6.8-powerpc-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-build-2.6.8-powerpc-smp_2.6.8-12sarge1\n');
+}
+if (deb_check(prefix: 'kernel-doc-2.6.8', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-doc-2.6.8 is vulnerable in Debian 3.1.\nUpgrade to kernel-doc-2.6.8_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers', release: '3.1', reference: '102sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers is vulnerable in Debian 3.1.\nUpgrade to kernel-headers_102sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.4', release: '3.1', reference: '102sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.4 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.4_102sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6', release: '3.1', reference: '102sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6_102sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-32', release: '3.1', reference: '2.6.8-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-32 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-32_2.6.8-1sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-32-smp', release: '3.1', reference: '2.6.8-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-32-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-32-smp_2.6.8-1sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-386', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-386 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-386_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-64', release: '3.1', reference: '2.6.8-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-64 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-64_2.6.8-1sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-64-smp', release: '3.1', reference: '2.6.8-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-64-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-64-smp_2.6.8-1sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-686', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-686 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-686_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-686-smp', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-686-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-686-smp_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-amd64-generic', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-amd64-generic is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-amd64-generic_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-amd64-k8', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-amd64-k8 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-amd64-k8_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-amd64-k8-smp', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-amd64-k8-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-amd64-k8-smp_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-em64t-p4', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-em64t-p4 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-em64t-p4_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-em64t-p4-smp', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-em64t-p4-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-em64t-p4-smp_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-generic', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-generic is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-generic_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-itanium', release: '3.1', reference: '2.6.8-14sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-itanium is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-itanium_2.6.8-14sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-itanium-smp', release: '3.1', reference: '2.6.8-14sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-itanium-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-itanium-smp_2.6.8-14sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-k7', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-k7 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-k7_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-k7-smp', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-k7-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-k7-smp_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-mckinley', release: '3.1', reference: '2.6.8-14sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-mckinley is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-mckinley_2.6.8-14sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-mckinley-smp', release: '3.1', reference: '2.6.8-14sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-mckinley-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-mckinley-smp_2.6.8-14sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-smp', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-smp_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-sparc32', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-sparc32 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-sparc32_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-sparc64', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-sparc64 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-sparc64_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6-sparc64-smp', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6-sparc64-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6-sparc64-smp_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8', release: '3.1', reference: '2.6.8-12sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8_2.6.8-12sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-11', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-11 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-11_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-11-amd64-generic', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-11-amd64-generic is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-11-amd64-generic_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-11-amd64-k8', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-11-amd64-k8 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-11-amd64-k8_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-11-amd64-k8-smp', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-11-amd64-k8-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-11-amd64-k8-smp_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-11-em64t-p4', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-11-em64t-p4 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-11-em64t-p4_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-11-em64t-p4-smp', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-11-em64t-p4-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-11-em64t-p4-smp_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-12', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-12 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-12_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-12-amd64-generic', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-12-amd64-generic is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-12-amd64-generic_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-12-amd64-k8', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-12-amd64-k8 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-12-amd64-k8_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-12-amd64-k8-smp', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-12-amd64-k8-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-12-amd64-k8-smp_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-12-em64t-p4', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-12-em64t-p4 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-12-em64t-p4_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-12-em64t-p4-smp', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-12-em64t-p4-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-12-em64t-p4-smp_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2', release: '3.1', reference: '2.6.8-15sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2_2.6.8-15sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-32', release: '3.1', reference: '2.6.8-6sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-32 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-32_2.6.8-6sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-32-smp', release: '3.1', reference: '2.6.8-6sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-32-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-32-smp_2.6.8-6sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-386', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-386 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-386_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-64', release: '3.1', reference: '2.6.8-6sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-64 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-64_2.6.8-6sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-64-smp', release: '3.1', reference: '2.6.8-6sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-64-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-64-smp_2.6.8-6sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-686', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-686 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-686_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-686-smp', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-686-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-686-smp_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-generic', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-generic is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-generic_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-itanium', release: '3.1', reference: '2.6.8-14sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-itanium is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-itanium_2.6.8-14sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-itanium-smp', release: '3.1', reference: '2.6.8-14sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-itanium-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-itanium-smp_2.6.8-14sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-k7', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-k7 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-k7_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-k7-smp', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-k7-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-k7-smp_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-mckinley', release: '3.1', reference: '2.6.8-14sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-mckinley is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-mckinley_2.6.8-14sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-mckinley-smp', release: '3.1', reference: '2.6.8-14sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-mckinley-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-mckinley-smp_2.6.8-14sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-smp', release: '3.1', reference: '2.6.8-16sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-smp_2.6.8-16sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-sparc32', release: '3.1', reference: '2.6.8-15sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-sparc32 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-sparc32_2.6.8-15sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-sparc64', release: '3.1', reference: '2.6.8-15sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-sparc64 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-sparc64_2.6.8-15sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-2-sparc64-smp', release: '3.1', reference: '2.6.8-15sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-2-sparc64-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-2-sparc64-smp_2.6.8-15sarge1\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3', release: '3.1', reference: '2.6.8-15sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3_2.6.8-15sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-32', release: '3.1', reference: '2.6.8-6sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-32 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-32_2.6.8-6sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-32-smp', release: '3.1', reference: '2.6.8-6sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-32-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-32-smp_2.6.8-6sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-386', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-386 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-386_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-64', release: '3.1', reference: '2.6.8-6sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-64 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-64_2.6.8-6sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-64-smp', release: '3.1', reference: '2.6.8-6sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-64-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-64-smp_2.6.8-6sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-686', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-686 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-686_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-686-smp', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-686-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-686-smp_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-generic', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-generic is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-generic_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-itanium', release: '3.1', reference: '2.6.8-14sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-itanium is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-itanium_2.6.8-14sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-itanium-smp', release: '3.1', reference: '2.6.8-14sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-itanium-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-itanium-smp_2.6.8-14sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-k7', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-k7 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-k7_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-k7-smp', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-k7-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-k7-smp_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-mckinley', release: '3.1', reference: '2.6.8-14sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-mckinley is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-mckinley_2.6.8-14sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-mckinley-smp', release: '3.1', reference: '2.6.8-14sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-mckinley-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-mckinley-smp_2.6.8-14sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-smp', release: '3.1', reference: '2.6.8-16sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-smp_2.6.8-16sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-sparc32', release: '3.1', reference: '2.6.8-15sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-sparc32 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-sparc32_2.6.8-15sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-sparc64', release: '3.1', reference: '2.6.8-15sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-sparc64 is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-sparc64_2.6.8-15sarge2\n');
+}
+if (deb_check(prefix: 'kernel-headers-2.6.8-3-sparc64-smp', release: '3.1', reference: '2.6.8-15sarge2')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-headers-2.6.8-3-sparc64-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-headers-2.6.8-3-sparc64-smp_2.6.8-15sarge2\n');
+}
+if (deb_check(prefix: 'kernel-image-2.4-powerpc', release: '3.1', reference: '102sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.4-powerpc is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.4-powerpc_102sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.4-powerpc-smp', release: '3.1', reference: '102sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.4-powerpc-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.4-powerpc-smp_102sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-32', release: '3.1', reference: '2.6.8-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-32 is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-32_2.6.8-1sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-32-smp', release: '3.1', reference: '2.6.8-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-32-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-32-smp_2.6.8-1sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-386', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-386 is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-386_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-64', release: '3.1', reference: '2.6.8-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-64 is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-64_2.6.8-1sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-64-smp', release: '3.1', reference: '2.6.8-1sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-64-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-64-smp_2.6.8-1sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-686', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-686 is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-686_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-686-smp', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-686-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-686-smp_101sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-amd64-generic', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-amd64-generic is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-amd64-generic_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-amd64-k8', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-amd64-k8 is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-amd64-k8_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-amd64-k8-smp', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-amd64-k8-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-amd64-k8-smp_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-em64t-p4', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-em64t-p4 is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-em64t-p4_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-em64t-p4-smp', release: '3.1', reference: '103sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-em64t-p4-smp is vulnerable in Debian 3.1.\nUpgrade to kernel-image-2.6-em64t-p4-smp_103sarge1\n');
+}
+if (deb_check(prefix: 'kernel-image-2.6-generic', release: '3.1', reference: '101sarge1')) {
+ w ++;
+ if (report_verbosity > 0) desc = strcat(desc, '\nThe package kernel-image-2.6-generic is vulnerable in Debian 3.1.\nUpgrade to kernel