[Openvas-commits] r3434 - in trunk/openvas-plugins: . scripts
scm-commit@wald.intevation.org
scm-commit at wald.intevation.org
Wed May 20 00:17:18 CEST 2009
Author: reinke
Date: 2009-05-20 00:17:15 +0200 (Wed, 20 May 2009)
New Revision: 3434
Added:
trunk/openvas-plugins/scripts/RHSA_2009_0478.nasl
trunk/openvas-plugins/scripts/RHSA_2009_0479.nasl
trunk/openvas-plugins/scripts/RHSA_2009_0480.nasl
trunk/openvas-plugins/scripts/RHSA_2009_0955.nasl
trunk/openvas-plugins/scripts/RHSA_2009_0981.nasl
trunk/openvas-plugins/scripts/RHSA_2009_1024.nasl
trunk/openvas-plugins/scripts/RHSA_2009_1036.nasl
trunk/openvas-plugins/scripts/RHSA_2009_1038.nasl
trunk/openvas-plugins/scripts/RHSA_2009_1039.nasl
trunk/openvas-plugins/scripts/RHSA_2009_1040.nasl
trunk/openvas-plugins/scripts/deb_1799_1.nasl
trunk/openvas-plugins/scripts/fcore_2009_3599.nasl
trunk/openvas-plugins/scripts/fcore_2009_4291.nasl
trunk/openvas-plugins/scripts/fcore_2009_4298.nasl
trunk/openvas-plugins/scripts/fcore_2009_4394.nasl
trunk/openvas-plugins/scripts/fcore_2009_4870.nasl
trunk/openvas-plugins/scripts/fcore_2009_4875.nasl
trunk/openvas-plugins/scripts/fcore_2009_4880.nasl
trunk/openvas-plugins/scripts/fcore_2009_4997.nasl
trunk/openvas-plugins/scripts/fcore_2009_5002.nasl
trunk/openvas-plugins/scripts/fcore_2009_5118.nasl
trunk/openvas-plugins/scripts/freebsd_cyrus-sasl2.nasl
trunk/openvas-plugins/scripts/freebsd_drupal512.nasl
trunk/openvas-plugins/scripts/freebsd_ghostscript8.nasl
trunk/openvas-plugins/scripts/freebsd_libwmf.nasl
trunk/openvas-plugins/scripts/freebsd_libwmf0.nasl
trunk/openvas-plugins/scripts/freebsd_libxine11.nasl
trunk/openvas-plugins/scripts/freebsd_libxine12.nasl
trunk/openvas-plugins/scripts/freebsd_mod_perl0.nasl
trunk/openvas-plugins/scripts/freebsd_moinmoin4.nasl
trunk/openvas-plugins/scripts/freebsd_moinmoin5.nasl
trunk/openvas-plugins/scripts/freebsd_pango.nasl
trunk/openvas-plugins/scripts/freebsd_php4-dba.nasl
trunk/openvas-plugins/scripts/mdksa_2009_110.nasl
trunk/openvas-plugins/scripts/mdksa_2009_111_1.nasl
trunk/openvas-plugins/scripts/ovcesa2009_0258.nasl
trunk/openvas-plugins/scripts/ovcesa2009_0431.nasl
trunk/openvas-plugins/scripts/ovcesa2009_0457.nasl
trunk/openvas-plugins/scripts/ovcesa2009_0479.nasl
trunk/openvas-plugins/scripts/ovcesa2009_0480.nasl
trunk/openvas-plugins/scripts/ovcesa2009_1036.nasl
trunk/openvas-plugins/scripts/suse_sr_2009_010.nasl
trunk/openvas-plugins/scripts/ubuntu_776_1.nasl
Modified:
trunk/openvas-plugins/ChangeLog
trunk/openvas-plugins/scripts/ovcesa2009_0474.nasl
Log:
New scripts added
Modified: trunk/openvas-plugins/ChangeLog
===================================================================
--- trunk/openvas-plugins/ChangeLog 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/ChangeLog 2009-05-19 22:17:15 UTC (rev 3434)
@@ -1,3 +1,21 @@
+2009-05-19 Thomas Reinke <reinke at securityspace.com>
+ * deb_1799_1.nasl freebsd_cyrus-sasl2.nasl freebsd_drupal512.nasl
+ freebsd_ghostscript8.nasl freebsd_libwmf0.nasl freebsd_libwmf.nasl
+ freebsd_libxine11.nasl freebsd_libxine12.nasl freebsd_mod_perl0.nasl
+ freebsd_moinmoin4.nasl freebsd_moinmoin5.nasl freebsd_pango.nasl
+ freebsd_php4-dba.nasl suse_sr_2009_010.nasl ubuntu_776_1.nasl
+ mdksa_2009_110.nasl mdksa_2009_111_1.nasl
+ RHSA_2009_0478.nasl RHSA_2009_0479.nasl RHSA_2009_0480.nasl
+ RHSA_2009_0955.nasl RHSA_2009_0981.nasl RHSA_2009_1024.nasl
+ RHSA_2009_1036.nasl RHSA_2009_1038.nasl RHSA_2009_1039.nasl
+ RHSA_2009_1040.nasl fcore_2009_3599.nasl fcore_2009_4291.nasl
+ fcore_2009_4298.nasl fcore_2009_4394.nasl fcore_2009_4870.nasl
+ fcore_2009_4875.nasl fcore_2009_4880.nasl fcore_2009_4997.nasl
+ fcore_2009_5002.nasl fcore_2009_5118.nasl ovcesa2009_0258.nasl
+ ovcesa2009_0431.nasl ovcesa2009_0457.nasl ovcesa2009_0474.nasl
+ ovcesa2009_0479.nasl ovcesa2009_0480.nasl ovcesa2009_1036.nasl
+ New scripts
+
2009-05-19 Michael Wiegand <michael.wiegand at intevation.de>
* scripts/smb_hotfixes.inc: Removed obsolete include file. The
Added: trunk/openvas-plugins/scripts/RHSA_2009_0478.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_0478.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_0478.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,107 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:0478 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63973);
+ script_cve_id("CVE-2009-1492", "CVE-2009-1493");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:0478";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates announced in
+advisory RHSA-2009:0478.
+
+Adobe Reader allows users to view and print documents in Portable Document
+Format (PDF).
+
+Two flaws were discovered in Adobe Reader's JavaScript API. A PDF file
+containing malicious JavaScript instructions could cause Adobe Reader to
+crash or, potentially, execute arbitrary code as the user running Adobe
+Reader. (CVE-2009-1492, CVE-2009-1493)
+
+All Adobe Reader users should install these updated packages. They contain
+Adobe Reader version 8.1.5, which is not vulnerable to these issues. All
+running instances of Adobe Reader must be restarted for the update to take
+effect.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-0478.html
+http://www.adobe.com/support/security/bulletins/apsb09-06.html
+http://www.redhat.com/security/updates/classification/#critical
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:0478";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"acroread", rpm:"acroread~8.1.5~2", rls:"RHENT_3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"acroread-plugin", rpm:"acroread-plugin~8.1.5~2", rls:"RHENT_3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"acroread", rpm:"acroread~8.1.5~1.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"acroread-plugin", rpm:"acroread-plugin~8.1.5~1.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"acroread", rpm:"acroread~8.1.5~1.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"acroread-plugin", rpm:"acroread-plugin~8.1.5~1.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/RHSA_2009_0479.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_0479.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_0479.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,106 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:0479 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63974);
+ script_cve_id("CVE-2009-0663", "CVE-2009-1341");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:0479";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates announced in
+advisory RHSA-2009:0479.
+
+Perl DBI is a database access Application Programming Interface (API) for
+the Perl language. perl-DBD-Pg allows Perl applications to access
+PostgreSQL database servers.
+
+A heap-based buffer overflow flaw was discovered in the pg_getline function
+implementation. If the pg_getline or getline functions read large,
+untrusted records from a database, it could cause an application using
+these functions to crash or, possibly, execute arbitrary code.
+(CVE-2009-0663)
+
+Note: After installing this update, pg_getline may return more data than
+specified by its second argument, as this argument will be ignored. This is
+consistent with current upstream behavior. Previously, the length limit
+(the second argument) was not enforced, allowing a buffer overflow.
+
+A memory leak flaw was found in the function performing the de-quoting of
+BYTEA type values acquired from a database. An attacker able to cause an
+application using perl-DBD-Pg to perform a large number of SQL queries
+returning BYTEA records, could cause the application to use excessive
+amounts of memory or, possibly, crash. (CVE-2009-1341)
+
+All users of perl-DBD-Pg are advised to upgrade to this updated package,
+which contains backported patches to fix these issues. Applications using
+perl-DBD-Pg must be restarted for the update to take effect.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-0479.html
+http://www.redhat.com/security/updates/classification/#moderate
+
+Risk factor : Medium";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:0479";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"perl-DBD-Pg", rpm:"perl-DBD-Pg~1.49~2.el5_3.1", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"perl-DBD-Pg-debuginfo", rpm:"perl-DBD-Pg-debuginfo~1.49~2.el5_3.1", rls:"RHENT_5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/RHSA_2009_0480.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_0480.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_0480.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,123 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:0480 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63975);
+ script_cve_id("CVE-2009-0146", "CVE-2009-0147", "CVE-2009-0166", "CVE-2009-0195", "CVE-2009-0799", "CVE-2009-0800", "CVE-2009-1179", "CVE-2009-1180", "CVE-2009-1181", "CVE-2009-1182", "CVE-2009-1183", "CVE-2009-1187", "CVE-2009-1188");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:0480";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates announced in
+advisory RHSA-2009:0480.
+
+Poppler is a Portable Document Format (PDF) rendering library, used by
+applications such as Evince.
+
+Multiple integer overflow flaws were found in poppler. An attacker could
+create a malicious PDF file that would cause applications that use poppler
+(such as Evince) to crash or, potentially, execute arbitrary code when
+opened. (CVE-2009-0147, CVE-2009-1179, CVE-2009-1187, CVE-2009-1188)
+
+Multiple buffer overflow flaws were found in poppler's JBIG2 decoder. An
+attacker could create a malicious PDF file that would cause applications
+that use poppler (such as Evince) to crash or, potentially, execute
+arbitrary code when opened. (CVE-2009-0146, CVE-2009-1182)
+
+Multiple flaws were found in poppler's JBIG2 decoder that could lead to the
+freeing of arbitrary memory. An attacker could create a malicious PDF file
+that would cause applications that use poppler (such as Evince) to crash
+or, potentially, execute arbitrary code when opened. (CVE-2009-0166,
+CVE-2009-1180)
+
+Multiple input validation flaws were found in poppler's JBIG2 decoder. An
+attacker could create a malicious PDF file that would cause applications
+that use poppler (such as Evince) to crash or, potentially, execute
+arbitrary code when opened. (CVE-2009-0800)
+
+Multiple denial of service flaws were found in poppler's JBIG2 decoder. An
+attacker could create a malicious PDF file that would cause applications
+that use poppler (such as Evince) to crash when opened. (CVE-2009-0799,
+CVE-2009-1181, CVE-2009-1183)
+
+Red Hat would like to thank Braden Thomas and Drew Yao of the Apple Product
+Security team, and Will Dormann of the CERT/CC for responsibly reporting
+these flaws.
+
+Users are advised to upgrade to these updated packages, which contain
+backported patches to resolve these issues.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-0480.html
+http://www.redhat.com/security/updates/classification/#important
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:0480";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"poppler", rpm:"poppler~0.5.4~4.4.el5_3.9", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"poppler-debuginfo", rpm:"poppler-debuginfo~0.5.4~4.4.el5_3.9", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"poppler-utils", rpm:"poppler-utils~0.5.4~4.4.el5_3.9", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"poppler-devel", rpm:"poppler-devel~0.5.4~4.4.el5_3.9", rls:"RHENT_5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/RHSA_2009_0955.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_0955.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_0955.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,92 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:0955 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63976);
+ script_cve_id("CVE-2008-1376");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:0955";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates to nfs-utils announced in
+advisory RHSA-2009:0955.
+
+A flaw was found in the nfs-utils package provided by RHBA-2008:0742. The
+nfs-utils package was missing TCP wrappers support, which could result in
+an administrator believing they had access restrictions enabled when they
+did not. (CVE-2008-1376)
+
+For information on additional bug fixes made in this package,
+please visit the referenced security advisories.
+
+All users of nfs-utils should upgrade to this updated package, which
+resolves these issues.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-0955.html
+http://www.redhat.com/security/updates/classification/#moderate
+
+Risk factor : Medium";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:0955";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"nfs-utils", rpm:"nfs-utils~1.0.6~93.EL4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nfs-utils-debuginfo", rpm:"nfs-utils-debuginfo~1.0.6~93.EL4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/RHSA_2009_0981.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_0981.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_0981.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,92 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:0981 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63977);
+ script_cve_id("CVE-2008-1926");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:0981";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates to util-linux announced in
+advisory RHSA-2009:0981.
+
+A log injection attack was found in util-linux when logging log in attempts
+via the audit subsystem of the Linux kernel. A remote attacker could use
+this flaw to modify certain parts of logged events, possibly hiding their
+activities on a system. (CVE-2008-1926)
+
+For information on additional bug fixes made in this package,
+please visit the referenced security advisories.
+
+Util-linux users are advised to upgrade to this updated package, which
+addresses this vulnerability and resolves these issues.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-0981.html
+http://www.redhat.com/security/updates/classification/#low
+
+Risk factor : Low";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:0981";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"util-linux", rpm:"util-linux~2.12a~24.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"util-linux-debuginfo", rpm:"util-linux-debuginfo~2.12a~24.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/RHSA_2009_1024.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_1024.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_1024.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,130 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:1024 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63978);
+ script_cve_id("CVE-2009-1336", "CVE-2009-1337");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:1024";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates to the kernel announced in
+advisory RHSA-2009:1024.
+
+Security Fixes:
+
+* the exit_notify() function in the Linux kernel did not properly reset the
+exit signal if a process executed a set user ID (setuid) application before
+exiting. This could allow a local, unprivileged user to elevate their
+privileges. (CVE-2009-1337, Important)
+
+* the Linux kernel implementation of the Network File System (NFS) did not
+properly initialize the file name limit in the nfs_server data structure.
+This flaw could possibly lead to a denial of service on a client mounting
+an NFS share. (CVE-2009-1336, Moderate)
+
+For information on additional bug fixes made in this package,
+please visit the referenced security advisories.
+
+Users should install this update, which resolves these issues and adds
+these enhancements.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-1024.html
+http://www.redhat.com/security/updates/classification/#important
+http://www.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/4.8/html/Release_Notes/index.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:1024";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"kernel", rpm:"kernel~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-debuginfo", rpm:"kernel-debuginfo~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-devel", rpm:"kernel-devel~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-hugemem", rpm:"kernel-hugemem~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-hugemem-devel", rpm:"kernel-hugemem-devel~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-smp", rpm:"kernel-smp~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-smp-devel", rpm:"kernel-smp-devel~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-xenU", rpm:"kernel-xenU~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-xenU-devel", rpm:"kernel-xenU-devel~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-largesmp", rpm:"kernel-largesmp~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-largesmp-devel", rpm:"kernel-largesmp-devel~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-doc", rpm:"kernel-doc~2.6.9~89.EL", rls:"RHENT_4")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/RHSA_2009_1036.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_1036.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_1036.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,97 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:1036 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63979);
+ script_cve_id("CVE-2009-1574", "CVE-2009-1632");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:1036";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates announced in
+advisory RHSA-2009:1036.
+
+The ipsec-tools package is used in conjunction with the IPsec functionality
+in the Linux kernel and includes racoon, an IKEv1 keying daemon.
+
+A denial of service flaw was found in the ipsec-tools racoon daemon. An
+unauthenticated, remote attacker could trigger a NULL pointer dereference
+that could cause the racoon daemon to crash. (CVE-2009-1574)
+
+Multiple memory leak flaws were found in the ipsec-tools racoon daemon. If
+a remote attacker is able to make multiple connection attempts to the
+racoon daemon, it was possible to cause the racoon daemon to consume all
+available memory. (CVE-2009-1632)
+
+Users of ipsec-tools should upgrade to this updated package, which contains
+backported patches to correct these issues. Users must restart the racoon
+daemon for this update to take effect.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-1036.html
+http://www.redhat.com/security/updates/classification/#important
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:1036";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"ipsec-tools", rpm:"ipsec-tools~0.6.5~13.el5_3.1", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ipsec-tools-debuginfo", rpm:"ipsec-tools-debuginfo~0.6.5~13.el5_3.1", rls:"RHENT_5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/RHSA_2009_1038.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_1038.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_1038.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,136 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:1038 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63980);
+ script_cve_id("CVE-2009-1093", "CVE-2009-1094", "CVE-2009-1095", "CVE-2009-1096", "CVE-2009-1097", "CVE-2009-1098", "CVE-2009-1099", "CVE-2009-1100", "CVE-2009-1101", "CVE-2009-1103", "CVE-2009-1104", "CVE-2009-1105", "CVE-2009-1106", "CVE-2009-1107");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:1038";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates announced in
+advisory RHSA-2009:1038.
+
+The IBM 1.5.0 Java release includes the IBM Java 2 Runtime Environment and
+the IBM Java 2 Software Development Kit.
+
+This update fixes several vulnerabilities in the IBM Java 2 Runtime
+Environment and the IBM Java 2 Software Development Kit. These
+vulnerabilities are summarized on the IBM Security alerts page listed in
+the References section. (CVE-2009-1093, CVE-2009-1094, CVE-2009-1095,
+CVE-2009-1096, CVE-2009-1097, CVE-2009-1098, CVE-2009-1099, CVE-2009-1100,
+CVE-2009-1101, CVE-2009-1103, CVE-2009-1104, CVE-2009-1105, CVE-2009-1106,
+CVE-2009-1107)
+
+All users of java-1.5.0-ibm are advised to upgrade to these updated
+packages, containing the IBM 1.5.0 SR9-SSU Java release. All running
+instances of IBM Java must be restarted for this update to take effect.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-1038.html
+http://www.redhat.com/security/updates/classification/#critical
+http://www.ibm.com/developerworks/java/jdk/alerts/
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:1038";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"java-1.5.0-ibm", rpm:"java-1.5.0-ibm~1.5.0.9~1jpp.5.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-demo", rpm:"java-1.5.0-ibm-demo~1.5.0.9~1jpp.5.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-devel", rpm:"java-1.5.0-ibm-devel~1.5.0.9~1jpp.5.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-javacomm", rpm:"java-1.5.0-ibm-javacomm~1.5.0.9~1jpp.5.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-jdbc", rpm:"java-1.5.0-ibm-jdbc~1.5.0.9~1jpp.5.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-plugin", rpm:"java-1.5.0-ibm-plugin~1.5.0.9~1jpp.5.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-src", rpm:"java-1.5.0-ibm-src~1.5.0.9~1jpp.5.el4", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm", rpm:"java-1.5.0-ibm~1.5.0.9~1jpp.3.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-accessibility", rpm:"java-1.5.0-ibm-accessibility~1.5.0.9~1jpp.3.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-demo", rpm:"java-1.5.0-ibm-demo~1.5.0.9~1jpp.3.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-devel", rpm:"java-1.5.0-ibm-devel~1.5.0.9~1jpp.3.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-javacomm", rpm:"java-1.5.0-ibm-javacomm~1.5.0.9~1jpp.3.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-jdbc", rpm:"java-1.5.0-ibm-jdbc~1.5.0.9~1jpp.3.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-plugin", rpm:"java-1.5.0-ibm-plugin~1.5.0.9~1jpp.3.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.5.0-ibm-src", rpm:"java-1.5.0-ibm-src~1.5.0.9~1jpp.3.el5", rls:"RHENT_5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/RHSA_2009_1039.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_1039.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_1039.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,100 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:1039 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63981);
+ script_cve_id("CVE-2009-0159", "CVE-2009-1252");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:1039";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates announced in
+advisory RHSA-2009:1039.
+
+The Network Time Protocol (NTP) is used to synchronize a computer's time
+with a referenced time source.
+
+A buffer overflow flaw was discovered in the ntpd daemon's NTPv4
+authentication code. If ntpd was configured to use public key cryptography
+for NTP packet authentication, a remote attacker could use this flaw to
+send a specially-crafted request packet that could crash ntpd.
+(CVE-2009-1252)
+
+Note: NTP authentication is not enabled by default.
+
+A buffer overflow flaw was found in the ntpq diagnostic command. A
+malicious, remote server could send a specially-crafted reply to an ntpq
+request that could crash ntpq. (CVE-2009-0159)
+
+All ntp users are advised to upgrade to this updated package, which
+contains backported patches to resolve these issues. After installing the
+update, the ntpd daemon will be restarted automatically.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-1039.html
+http://www.redhat.com/security/updates/classification/#important
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:1039";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"ntp", rpm:"ntp~4.2.2p1~9.el5_3.2", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ntp-debuginfo", rpm:"ntp-debuginfo~4.2.2p1~9.el5_3.2", rls:"RHENT_5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/RHSA_2009_1040.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_1040.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/RHSA_2009_1040.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,102 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:1040 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63982);
+ script_cve_id("CVE-2009-0159", "CVE-2009-1252");
+ script_version ("$");
+ name["english"] = "RedHat Security Advisory RHSA-2009:1040";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates announced in
+advisory RHSA-2009:1040.
+
+The Network Time Protocol (NTP) is used to synchronize a computer's time
+with a referenced time source.
+
+A buffer overflow flaw was discovered in the ntpd daemon's NTPv4
+authentication code. If ntpd was configured to use public key cryptography
+for NTP packet authentication, a remote attacker could use this flaw to
+send a specially-crafted request packet that could crash ntpd or,
+potentially, execute arbitrary code with the privileges of the ntp user.
+(CVE-2009-1252)
+
+Note: NTP authentication is not enabled by default.
+
+A buffer overflow flaw was found in the ntpq diagnostic command. A
+malicious, remote server could send a specially-crafted reply to an ntpq
+request that could crash ntpq or, potentially, execute arbitrary code with
+the privileges of the user running the ntpq command. (CVE-2009-0159)
+
+All ntp users are advised to upgrade to this updated package, which
+contains backported patches to resolve these issues. After installing the
+update, the ntpd daemon will be restarted automatically.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-1040.html
+http://www.redhat.com/security/updates/classification/#critical
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Redhat Security Advisory RHSA-2009:1040";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Red Hat Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"ntp", rpm:"ntp~4.2.0.a.20040617~8.el4_7.2", rls:"RHENT_4")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ntp-debuginfo", rpm:"ntp-debuginfo~4.2.0.a.20040617~8.el4_7.2", rls:"RHENT_4")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_1799_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_1799_1.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/deb_1799_1.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,108 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 1799-1 (qemu)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63995);
+ script_cve_id("CVE-2008-0928", "CVE-2008-4539", "CVE-2008-1945");
+ script_version ("$");
+ name["english"] = "Debian Security Advisory DSA 1799-1 (qemu)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to qemu
+announced via advisory DSA 1799-1.
+
+Several vulnerabilities have been discovered in the QEMU processor
+emulator. The Common Vulnerabilities and Exposures project identifies the
+following problems:
+
+CVE-2008-0928
+
+Ian Jackson discovered that range checks of file operations on
+emulated disk devices were insufficiently enforced.
+
+CVE-2008-1945
+
+It was discovered that an error in the format auto detection of
+removable media could lead to the disclosure of files in the
+host system.
+
+CVE-2008-4539
+
+A buffer overflow has been found in the emulation of the Cirrus
+graphics adaptor.
+
+
+For the old stable distribution (etch), these problems have been fixed in
+version 0.8.2-4etch3.
+
+For the stable distribution (lenny), these problems have been fixed in
+version 0.9.1-10lenny1.
+
+For the unstable distribution (sid), these problems have been fixed in
+version 0.9.1+svn20081101-1.
+
+We recommend that you upgrade your qemu packages.
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201799-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Debian Security Advisory DSA 1799-1 (qemu)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Debian Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"qemu", ver:"0.8.2-4etch3", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"qemu", ver:"0.9.1-10lenny1", rls:"DEB5.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_3599.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_3599.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_3599.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,106 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-3599 (wireshark)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63990);
+ script_cve_id("CVE-2009-1210", "CVE-2009-1268", "CVE-2009-1269");
+ script_version ("$");
+ name["english"] = "Fedora Core 10 FEDORA-2009-3599 (wireshark)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to wireshark
+announced via advisory FEDORA-2009-3599.
+
+Update Information:
+
+upgrade to wireshark-1.0.7 fixes various security flaws.
+http://www.wireshark.org/security/wnpa-sec-2009-02.html
+
+ChangeLog:
+
+* Fri Apr 10 2009 Radek Vokal 1.0.7-1
+- upgrade to 1.0.7
+- Several security vulnerabilities have been fixed
+(Profinet, CPHAP and LDAP dissectors could crash)
+
+References:
+
+[ 1 ] Bug #493973 - CVE-2009-1210 wireshark: format string in PROFINET dissector
+https://bugzilla.redhat.com/show_bug.cgi?id=493973
+[ 2 ] Bug #495119 - CVE-2009-1268 Wireshark CHAP dissector crash
+https://bugzilla.redhat.com/show_bug.cgi?id=495119
+[ 3 ] Bug #495121 - CVE-2009-1269 Wireshark Tektronix .rf5 file crash
+https://bugzilla.redhat.com/show_bug.cgi?id=495121
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update wireshark' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-3599
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 10 FEDORA-2009-3599 (wireshark)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"wireshark", rpm:"wireshark~1.0.7~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"wireshark-gnome", rpm:"wireshark-gnome~1.0.7~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"wireshark-debuginfo", rpm:"wireshark-debuginfo~1.0.7~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_4291.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_4291.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_4291.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,96 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-4291 (ipsec-tools)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63991);
+ script_cve_id("CVE-2008-3652");
+ script_version ("$");
+ name["english"] = "Fedora Core 9 FEDORA-2009-4291 (ipsec-tools)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ipsec-tools
+announced via advisory FEDORA-2009-4291.
+
+Update Information:
+
+Minor version update from upstream fixing remote DoS.
+
+ChangeLog:
+
+* Tue May 5 2009 Tomas Mraz - 0.7.2-1
+- Update to a new upstream version
+
+References:
+
+[ 1 ] Bug #497990 - ipsec-tools: racoon NULL dereference in fragmentation code
+https://bugzilla.redhat.com/show_bug.cgi?id=497990
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update ipsec-tools' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-4291
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 9 FEDORA-2009-4291 (ipsec-tools)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"ipsec-tools", rpm:"ipsec-tools~0.7.2~1.fc9", rls:"FC9")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ipsec-tools-debuginfo", rpm:"ipsec-tools-debuginfo~0.7.2~1.fc9", rls:"FC9")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_4298.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_4298.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_4298.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,94 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-4298 (ipsec-tools)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63992);
+ script_version ("$");
+ name["english"] = "Fedora Core 10 FEDORA-2009-4298 (ipsec-tools)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ipsec-tools
+announced via advisory FEDORA-2009-4298.
+
+Update Information:
+
+Minor version update from upstream fixing remote DoS.
+ChangeLog:
+
+* Tue May 5 2009 Tomas Mraz - 0.7.2-1
+- Update to a new upstream version
+
+References:
+
+[ 1 ] Bug #497990 - ipsec-tools: racoon NULL dereference in fragmentation code
+https://bugzilla.redhat.com/show_bug.cgi?id=497990
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update ipsec-tools' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-4298
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 10 FEDORA-2009-4298 (ipsec-tools)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"ipsec-tools", rpm:"ipsec-tools~0.7.2~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ipsec-tools-debuginfo", rpm:"ipsec-tools-debuginfo~0.7.2~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_4394.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_4394.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_4394.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,94 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-4394 (ipsec-tools)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63994);
+ script_version ("$");
+ name["english"] = "Fedora Core 11 FEDORA-2009-4394 (ipsec-tools)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to ipsec-tools
+announced via advisory FEDORA-2009-4394.
+
+Update Information:
+
+Minor version update from upstream fixing remote DoS.
+ChangeLog:
+
+* Tue May 5 2009 Tomas Mraz - 0.7.2-1
+- Update to a new upstream version
+
+References:
+
+[ 1 ] Bug #497990 - ipsec-tools: racoon NULL dereference in fragmentation code
+https://bugzilla.redhat.com/show_bug.cgi?id=497990
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update ipsec-tools' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-4394
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 11 FEDORA-2009-4394 (ipsec-tools)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"ipsec-tools", rpm:"ipsec-tools~0.7.2~1.fc11", rls:"FC11")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ipsec-tools-debuginfo", rpm:"ipsec-tools-debuginfo~0.7.2~1.fc11", rls:"FC11")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_4870.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_4870.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_4870.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,100 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-4870 (squirrelmail)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63985);
+ script_cve_id("CVE-2009-1581", "CVE-2008-2379", "CVE-2008-3663", "CVE-2009-1579", "CVE-2009-1580", "CVE-2009-1578");
+ script_version ("$");
+ name["english"] = "Fedora Core 9 FEDORA-2009-4870 (squirrelmail)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to squirrelmail
+announced via advisory FEDORA-2009-4870.
+
+ChangeLog:
+
+* Tue May 12 2009 Michal Hlavinka - 1.4.18-1
+- update to 1.4.18 (fixes CVE-2009-1581)
+* Thu Dec 4 2008 Michal Hlavinka - 1.4.17-1
+- update to 1.4.17 (fixes CVE-2008-2379)
+* Wed Oct 1 2008 Michal Hlavinka - 1.4.16-1
+- update to 1.4.16
+- resolves: #464185: CVE-2008-3663 Squirrelmail session hijacking
+
+References:
+
+[ 1 ] Bug #500360 - CVE-2009-1579 SquirrelMail: Server-side code injection in map_yp_alias username map
+https://bugzilla.redhat.com/show_bug.cgi?id=500360
+[ 2 ] Bug #500358 - CVE-2009-1580 SquirrelMail: Session fixation vulnerability
+https://bugzilla.redhat.com/show_bug.cgi?id=500358
+[ 3 ] Bug #500356 - CVE-2009-1581 SquirrelMail: CSS positioning vulnerability
+https://bugzilla.redhat.com/show_bug.cgi?id=500356
+[ 4 ] Bug #500363 - CVE-2009-1578 SquirrelMail: Multiple cross site scripting issues
+https://bugzilla.redhat.com/show_bug.cgi?id=500363
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update squirrelmail' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-4870
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 9 FEDORA-2009-4870 (squirrelmail)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"squirrelmail", rpm:"squirrelmail~1.4.18~1.fc9", rls:"FC9")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_4875.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_4875.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_4875.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,95 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-4875 (squirrelmail)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63986);
+ script_cve_id("CVE-2009-1579", "CVE-2009-1580", "CVE-2009-1581", "CVE-2009-1578");
+ script_version ("$");
+ name["english"] = "Fedora Core 11 FEDORA-2009-4875 (squirrelmail)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to squirrelmail
+announced via advisory FEDORA-2009-4875.
+
+ChangeLog:
+
+* Tue May 12 2009 Michal Hlavinka - 1.4.18-1
+- updated to 1.4.18
+
+References:
+
+[ 1 ] Bug #500360 - CVE-2009-1579 SquirrelMail: Server-side code injection in map_yp_alias username map
+https://bugzilla.redhat.com/show_bug.cgi?id=500360
+[ 2 ] Bug #500358 - CVE-2009-1580 SquirrelMail: Session fixation vulnerability
+https://bugzilla.redhat.com/show_bug.cgi?id=500358
+[ 3 ] Bug #500356 - CVE-2009-1581 SquirrelMail: CSS positioning vulnerability
+https://bugzilla.redhat.com/show_bug.cgi?id=500356
+[ 4 ] Bug #500363 - CVE-2009-1578 SquirrelMail: Multiple cross site scripting issues
+https://bugzilla.redhat.com/show_bug.cgi?id=500363
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update squirrelmail' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-4875
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 11 FEDORA-2009-4875 (squirrelmail)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"squirrelmail", rpm:"squirrelmail~1.4.18~1.fc11", rls:"FC11")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_4880.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_4880.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_4880.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,100 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-4880 (squirrelmail)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63987);
+ script_cve_id("CVE-2008-2379", "CVE-2009-1579", "CVE-2009-1580", "CVE-2009-1581", "CVE-2009-1578");
+ script_version ("$");
+ name["english"] = "Fedora Core 10 FEDORA-2009-4880 (squirrelmail)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to squirrelmail
+announced via advisory FEDORA-2009-4880.
+
+Update Information:
+
+squirrelmail is now able to work with unsigned 32bit UID values with 32-bit
+version of php
+
+ChangeLog:
+
+* Tue May 12 2009 Michal Hlavinka - 1.4.18-1
+- updated to 1.4.18
+
+References:
+
+[ 1 ] Bug #500360 - CVE-2009-1579 SquirrelMail: Server-side code injection in map_yp_alias username map
+https://bugzilla.redhat.com/show_bug.cgi?id=500360
+[ 2 ] Bug #500358 - CVE-2009-1580 SquirrelMail: Session fixation vulnerability
+https://bugzilla.redhat.com/show_bug.cgi?id=500358
+[ 3 ] Bug #500356 - CVE-2009-1581 SquirrelMail: CSS positioning vulnerability
+https://bugzilla.redhat.com/show_bug.cgi?id=500356
+[ 4 ] Bug #500363 - CVE-2009-1578 SquirrelMail: Multiple cross site scripting issues
+https://bugzilla.redhat.com/show_bug.cgi?id=500363
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update squirrelmail' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-4880
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 10 FEDORA-2009-4880 (squirrelmail)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"squirrelmail", rpm:"squirrelmail~1.4.18~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_4997.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_4997.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_4997.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,118 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-4997 (drupal)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63988);
+ script_cve_id("CVE-2008-3661");
+ script_version ("$");
+ name["english"] = "Fedora Core 9 FEDORA-2009-4997 (drupal)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to drupal
+announced via advisory FEDORA-2009-4997.
+
+Update Information:
+
+Fixes SA-CORE-2009-006 ( http://drupal.org/node/461886 ).
+
+When outputting user-supplied data Drupal strips potentially dangerous HTML
+attributes and tags or escapes characters which have a special meaning in HTML.
+This output filtering secures the site against cross site scripting attacks via
+user input.
+
+Certain byte sequences that are valid in the UTF-8 specification
+are potentially dangerous when interpreted as UTF-7. Internet Explorer
+6 and 7 may decode these characters as UTF-7 if they appear before the
+tag that specifies the page content as UTF-8, despite the
+fact that Drupal also sends a real HTTP header specifying the content as UTF-8.
+This enables attackers to execute cross site scripting attacks with UTF-7.
+
+SA-CORE-2009-005 - Drupal core - Cross site scripting contained an
+incomplete fix for the issue. HTML exports of books are still
+vulnerable, which means that anyone with edit permissions for
+pages in outlines is able to insert arbitrary HTML and script code
+in these exports.
+
+Additionally, the taxonomy module allows users with the
+'administer taxonomy' permission to inject arbitrary HTML
+and script code in the help text of any vocabulary.
+
+ChangeLog:
+
+* Thu May 14 2009 Jon Ciesla - 6.12-1
+- Update to 6.11, SA-CORE-2009-006.
+* Thu Apr 30 2009 Jon Ciesla - 6.11-1
+- Update to 6.11, SA-CORE-2009-005.
+* Mon Apr 27 2009 Jon Ciesla - 6.10-2
+- Added SELinux/sendmail note to README, BZ 497642.
+
+Solution: Apply the appropriate updates.
+
+Remember to log in to your site as the admin user before upgrading
+this package. After upgrading the package, browse to
+http://host/drupal/update.php to run the upgrade script.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update drupal' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-4997
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 9 FEDORA-2009-4997 (drupal)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"drupal", rpm:"drupal~6.12~1.fc9", rls:"FC9")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_5002.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_5002.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_5002.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,113 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-5002 (drupal)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63989);
+ script_version ("$");
+ name["english"] = "Fedora Core 10 FEDORA-2009-5002 (drupal)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to drupal
+announced via advisory FEDORA-2009-5002.
+
+Update Information:
+
+Fixes SA-CORE-2009-006 ( http://drupal.org/node/461886 ).
+
+When outputting user-supplied data Drupal strips potentially dangerous HTML
+attributes and tags or escapes characters which have a special meaning in HTML.
+This output filtering secures the site against cross site scripting attacks via
+user input.
+
+Certain byte sequences that are valid in the UTF-8 specification
+are potentially dangerous when interpreted as UTF-7. Internet Explorer
+6 and 7 may decode these characters as UTF-7 if they appear before the
+tag that specifies the page content as UTF-8, despite the
+fact that Drupal also sends a real HTTP header specifying the content as UTF-8.
+This enables attackers to execute cross site scripting attacks with UTF-7.
+
+SA-CORE-2009-005 - Drupal core - Cross site scripting contained an
+incomplete fix for the issue. HTML exports of books are still
+vulnerable, which means that anyone with edit permissions for
+pages in outlines is able to insert arbitrary HTML and script code
+in these exports.
+
+Additionally, the taxonomy module allows users with the
+'administer taxonomy' permission to inject arbitrary HTML
+and script code in the help text of any vocabulary.
+
+ChangeLog:
+
+* Thu May 14 2009 Jon Ciesla - 6.12-1
+- Update to 6.11, SA-CORE-2009-006.
+* Thu Apr 30 2009 Jon Ciesla - 6.11-1
+- Update to 6.11, SA-CORE-2009-005.
+* Mon Apr 27 2009 Jon Ciesla - 6.10-2
+- Added SELinux/sendmail note to README, BZ 497642.
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update drupal' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-5002
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 10 FEDORA-2009-5002 (drupal)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"drupal", rpm:"drupal~6.12~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_5118.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_5118.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/fcore_2009_5118.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,110 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-5118 (giflib)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63993);
+ script_cve_id("CVE-2005-2974", "CVE-2005-3350");
+ script_version ("$");
+ name["english"] = "Fedora Core 9 FEDORA-2009-5118 (giflib)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to giflib
+announced via advisory FEDORA-2009-5118.
+
+Update Information:
+
+- CVE-2005-2974: NULL pointer dereference crash (#494826)
+- CVE-2005-3350: Memory corruption via a crafted GIF (#494823)
+- Solved multilib problems with documentation (#465208, #474538)
+- Removed static library from giflib-devel package (#225796 #c1)
+
+ChangeLog:
+
+* Sat May 16 2009 Robert Scheck 4.1.3-10
+- CVE-2005-2974: NULL pointer dereference crash (#494826)
+- CVE-2005-3350: Memory corruption via a crafted GIF (#494823)
+- Solved multilib problems with documentation (#465208, #474538)
+- Removed static library from giflib-devel package (#225796 #c1)
+
+References:
+
+[ 1 ] Bug #494826 - CVE-2005-2974 giflib/libunfig: NULL pointer dereference crash
+https://bugzilla.redhat.com/show_bug.cgi?id=494826
+[ 2 ] Bug #494823 - CVE-2005-3350 giflib/libunfig: memory corruption via a crafted GIF
+https://bugzilla.redhat.com/show_bug.cgi?id=494823
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update giflib' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-5118
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Fedora Core 9 FEDORA-2009-5118 (giflib)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Fedora Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"giflib", rpm:"giflib~4.1.3~10.fc9", rls:"FC9")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"giflib-devel", rpm:"giflib-devel~4.1.3~10.fc9", rls:"FC9")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"giflib-utils", rpm:"giflib-utils~4.1.3~10.fc9", rls:"FC9")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"giflib-debuginfo", rpm:"giflib-debuginfo~4.1.3~10.fc9", rls:"FC9")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_cyrus-sasl2.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_cyrus-sasl2.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_cyrus-sasl2.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,88 @@
+#
+#VID 14ab174c-40ef-11de-9fd5-001bd3385381
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID 14ab174c-40ef-11de-9fd5-001bd3385381
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64007);
+ script_cve_id("CVE-2009-0688");
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: cyrus-sasl";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following package is affected: cyrus-sasl
+
+CVE-2009-0688
+Multiple buffer overflows in the CMU Cyrus SASL library before 2.1.23
+might allow remote attackers to execute arbitrary code or cause a
+denial of service (application crash) via strings that are used as
+input to the sasl_encode64 function in lib/saslutil.c.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://www.kb.cert.org/vuls/id/238019
+http://www.vuxml.org/freebsd/14ab174c-40ef-11de-9fd5-001bd3385381.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: cyrus-sasl";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"cyrus-sasl");
+if(!isnull(bver) && revcomp(a:bver, b:"2.1.23")<0) {
+ security_note(0, data:"Package cyrus-sasl version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_drupal512.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_drupal512.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_drupal512.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,89 @@
+#
+#VID a6605f4b-4067-11de-b444-001372fd0af2
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID a6605f4b-4067-11de-b444-001372fd0af2
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64006);
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: drupal5";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following packages are affected:
+ drupal5
+ drupal6
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://drupal.org/node/461886
+http://secunia.com/advisories/35045
+http://www.vuxml.org/freebsd/a6605f4b-4067-11de-b444-001372fd0af2.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: drupal5";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"drupal5");
+if(!isnull(bver) && revcomp(a:bver, b:"5.18")<0) {
+ security_note(0, data:"Package drupal5 version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+bver = portver(pkg:"drupal6");
+if(!isnull(bver) && revcomp(a:bver, b:"6.12")<0) {
+ security_note(0, data:"Package drupal6 version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_ghostscript8.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_ghostscript8.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_ghostscript8.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,94 @@
+#
+#VID f0f97b94-3f95-11de-a3fd-0030843d3802
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID f0f97b94-3f95-11de-a3fd-0030843d3802
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64009);
+ script_cve_id("CVE-2008-6679");
+ script_bugtraq_id(34340);
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: ghostscript8, ghostscript8-nox11";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following packages are affected:
+ ghostscript8
+ ghostscript8-nox11
+
+CVE-2008-6679
+Buffer overflow in the BaseFont writer module in Ghostscript 8.62, and
+possibly other versions, allows remote attackers to cause a denial of
+service (ps2pdf crash) and possibly execute arbitrary code via a
+crafted Postscript file.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: ghostscript8, ghostscript8-nox11";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"ghostscript8");
+if(!isnull(bver) && revcomp(a:bver, b:"8.64")<0) {
+ security_note(0, data:"Package ghostscript8 version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+bver = portver(pkg:"ghostscript8-nox11");
+if(!isnull(bver) && revcomp(a:bver, b:"8.64")<0) {
+ security_note(0, data:"Package ghostscript8-nox11 version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_libwmf.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_libwmf.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_libwmf.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,91 @@
+#
+#VID 6a245f31-4254-11de-b67a-0030843d3802
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID 6a245f31-4254-11de-b67a-0030843d3802
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64002);
+ script_cve_id("CVE-2009-1364");
+ script_bugtraq_id(34792);
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: libwmf";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following package is affected: libwmf
+
+CVE-2009-1364
+Use-after-free vulnerability in the embedded GD library in libwmf
+0.2.8.4 allows context-dependent attackers to cause a denial of
+service (application crash) or possibly execute arbitrary code via a
+crafted WMF file.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+https://bugzilla.redhat.com/show_bug.cgi?id=496864
+https://rhn.redhat.com/errata/RHSA-2009-0457.html
+http://secunia.com/advisories/34901/
+http://www.vuxml.org/freebsd/6a245f31-4254-11de-b67a-0030843d3802.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: libwmf";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"libwmf");
+if(!isnull(bver) && revcomp(a:bver, b:"0.2.8.4_3")<0) {
+ security_note(0, data:"Package libwmf version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_libwmf0.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_libwmf0.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_libwmf0.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,89 @@
+#
+#VID 48aab1d0-4252-11de-b67a-0030843d3802
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID 48aab1d0-4252-11de-b67a-0030843d3802
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64003);
+ script_cve_id("CVE-2006-3376");
+ script_bugtraq_id(18751);
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: libwmf";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following package is affected: libwmf
+
+CVE-2006-3376
+Integer overflow in player.c in libwmf 0.2.8.4, as used in multiple
+products including (1) wv, (2) abiword, (3) freetype, (4) gimp, (5)
+libgsf, and (6) imagemagick allows remote attackers to execute
+arbitrary code via the MaxRecordSize header field in a WMF file.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://secunia.com/advisories/20921/
+http://www.vuxml.org/freebsd/48aab1d0-4252-11de-b67a-0030843d3802.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: libwmf";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"libwmf");
+if(!isnull(bver) && revcomp(a:bver, b:"0.2.8.4_3")<0) {
+ security_note(0, data:"Package libwmf version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_libxine11.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_libxine11.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_libxine11.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,98 @@
+#
+#VID 48e14d86-42f1-11de-ad22-000e35248ad7
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID 48e14d86-42f1-11de-ad22-000e35248ad7
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63999);
+ script_cve_id("CVE-2009-0385", "CVE-2009-1274");
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: libxine";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following package is affected: libxine
+
+CVE-2009-0385
+Integer signedness error in the fourxm_read_header function in
+libavformat/4xm.c in FFmpeg before revision 16846 allows remote
+attackers to execute arbitrary code via a malformed 4X movie file with
+a large current_track value, which triggers a NULL pointer
+dereference.
+
+CVE-2009-1274
+Integer overflow in the qt_error parse_trak_atom function in
+demuxers/demux_qt.c in xine-lib 1.1.16.2 and earlier allows remote
+attackers to execute arbitrary code via a Quicktime movie file with a
+large count value in an STTS atom, which triggers a heap-based buffer
+overflow.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://trapkit.de/advisories/TKADV2009-004.txt
+http://trapkit.de/advisories/TKADV2009-005.txt
+http://sourceforge.net/project/shownotes.php?release_id=660071
+http://www.vuxml.org/freebsd/48e14d86-42f1-11de-ad22-000e35248ad7.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: libxine";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"libxine");
+if(!isnull(bver) && revcomp(a:bver, b:"1.1.16.3")<0) {
+ security_note(0, data:"Package libxine version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_libxine12.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_libxine12.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_libxine12.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,107 @@
+#
+#VID 51d1d428-42f0-11de-ad22-000e35248ad7
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID 51d1d428-42f0-11de-ad22-000e35248ad7
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64000);
+ script_cve_id("CVE-2009-0698", "CVE-2008-5234", "CVE-2008-5240");
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: libxine";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following package is affected: libxine
+
+CVE-2009-0698
+Integer overflow in the 4xm demuxer (demuxers/demux_4xm.c) in xine-lib
+1.1.16.1 allows remote attackers to cause a denial of service (crash)
+and possibly execute arbitrary code via a 4X movie file with a large
+current_track value, a similar issue to CVE-2009-0385.
+
+CVE-2008-5234
+Multiple heap-based buffer overflows in xine-lib 1.1.12, and other
+versions before 1.1.15, allow remote attackers to execute arbitrary
+code via vectors related to (1) a crafted metadata atom size processed
+by the parse_moov_atom function in demux_qt.c and (2) frame reading in
+the id3v23_interp_frame function in id3.c. NOTE: as of 20081122, it is
+possible that vector 1 has not been fixed in 1.1.15.
+
+CVE-2008-5240
+xine-lib 1.1.12, and other 1.1.15 and earlier versions, relies on an
+untrusted input value to determine the memory allocation and does not
+check the result for (1) the MATROSKA_ID_TR_CODECPRIVATE track entry
+element processed by demux_matroska.c; and (2) PROP_TAG, (3) MDPR_TAG,
+and (4) CONT_TAG chunks processed by the real_parse_headers function
+in demux_real.c; which allows remote attackers to cause a denial of
+service (NULL pointer dereference and crash) or possibly execute
+arbitrary code via a crafted value.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://trapkit.de/advisories/TKADV2009-004.txt
+http://sourceforge.net/project/shownotes.php?release_id=660071
+http://www.vuxml.org/freebsd/51d1d428-42f0-11de-ad22-000e35248ad7.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: libxine";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"libxine");
+if(!isnull(bver) && revcomp(a:bver, b:"1.1.16.2")<0) {
+ security_note(0, data:"Package libxine version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_mod_perl0.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_mod_perl0.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_mod_perl0.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,95 @@
+#
+#VID 4a638895-41b7-11de-b1cc-00219b0fc4d8
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID 4a638895-41b7-11de-b1cc-00219b0fc4d8
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64005);
+ script_cve_id("CVE-2009-0796");
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: mod_perl";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following packages are affected:
+ mod_perl
+ mod_perl2
+
+CVE-2009-0796
+Cross-site scripting (XSS) vulnerability in Status.pm in
+Apache::Status and Apache2::Status in mod_perl1 and mod_perl2 for the
+Apache HTTP Server, when /perl-status is accessible, allows remote
+attackers to inject arbitrary web script or HTML via the URI.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://secunia.com/advisories/34597
+http://www.vuxml.org/freebsd/4a638895-41b7-11de-b1cc-00219b0fc4d8.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: mod_perl";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"mod_perl");
+if(!isnull(bver) && revcomp(a:bver, b:"1.31")<0) {
+ security_note(0, data:"Package mod_perl version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+bver = portver(pkg:"mod_perl2");
+if(!isnull(bver) && revcomp(a:bver, b:"2.05")<0) {
+ security_note(0, data:"Package mod_perl2 version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_moinmoin4.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_moinmoin4.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_moinmoin4.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,91 @@
+#
+#VID bfe218a5-4218-11de-b67a-0030843d3802
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID bfe218a5-4218-11de-b67a-0030843d3802
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64004);
+ script_cve_id("CVE-2009-1482");
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: moinmoin";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following package is affected: moinmoin
+
+CVE-2009-1482
+Multiple cross-site scripting (XSS) vulnerabilities in
+action/AttachFile.py in MoinMoin 1.8.2 and earlier allow remote
+attackers to inject arbitrary web script or HTML via (1) an AttachFile
+sub-action in the error_msg function or (2) multiple vectors related
+to package file errors in the upload_form function, different vectors
+than CVE-2009-0260.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://secunia.com/advisories/34821/
+http://moinmo.in/SecurityFixes
+http://www.vuxml.org/freebsd/bfe218a5-4218-11de-b67a-0030843d3802.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: moinmoin";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"moinmoin");
+if(!isnull(bver) && revcomp(a:bver, b:"1.8.3")<0) {
+ security_note(0, data:"Package moinmoin version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_moinmoin5.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_moinmoin5.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_moinmoin5.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,96 @@
+#
+#VID fc4d0ae8-3fa3-11de-a3fd-0030843d3802
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID fc4d0ae8-3fa3-11de-a3fd-0030843d3802
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64008);
+ script_cve_id("CVE-2009-0260", "CVE-2009-0312");
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: moinmoin";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following package is affected: moinmoin
+
+CVE-2009-0260
+Multiple cross-site scripting (XSS) vulnerabilities in
+action/AttachFile.py in MoinMoin before 1.8.1 allow remote attackers
+to inject arbitrary web script or HTML via an AttachFile action to the
+WikiSandBox component with (1) the rename parameter or (2) the drawing
+parameter (aka the basename variable).
+
+CVE-2009-0312
+Cross-site scripting (XSS) vulnerability in the antispam feature
+(security/antispam.py) in MoinMoin 1.7 and 1.8.1 allows remote
+attackers to inject arbitrary web script or HTML via crafted,
+disallowed content.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://moinmo.in/SecurityFixes
+http://secunia.com/advisories/33593
+http://www.vuxml.org/freebsd/fc4d0ae8-3fa3-11de-a3fd-0030843d3802.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: moinmoin";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"moinmoin");
+if(!isnull(bver) && revcomp(a:bver, b:"1.8.2")<0) {
+ security_note(0, data:"Package moinmoin version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_pango.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_pango.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_pango.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,104 @@
+#
+#VID 4b172278-3f46-11de-becb-001cc0377035
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID 4b172278-3f46-11de-becb-001cc0377035
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64010);
+ script_cve_id("CVE-2009-1194");
+ script_bugtraq_id(34870);
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: pango, linux-pango, linux-f8-pango";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following packages are affected:
+ pango
+ linux-pango
+ linux-f8-pango
+
+CVE-2009-1194
+Integer overflow in the pango_glyph_string_set_size function in
+pango/glyphstring.c in Pango before 1.24 allows context-dependent
+attackers to cause a denial of service (application crash) or possibly
+execute arbitrary code via a long glyph string that triggers a
+heap-based buffer overflow, as demonstrated by a long
+document.location value in Firefox.
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://secunia.com/advisories/35021/
+http://www.vuxml.org/freebsd/4b172278-3f46-11de-becb-001cc0377035.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: pango, linux-pango, linux-f8-pango";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"pango");
+if(!isnull(bver) && revcomp(a:bver, b:"1.24")<0) {
+ security_note(0, data:"Package pango version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+bver = portver(pkg:"linux-pango");
+if(!isnull(bver) && revcomp(a:bver, b:"1.24")<0) {
+ security_note(0, data:"Package linux-pango version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+bver = portver(pkg:"linux-f8-pango");
+if(!isnull(bver) && revcomp(a:bver, b:"1.24")<0) {
+ security_note(0, data:"Package linux-f8-pango version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_php4-dba.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_php4-dba.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/freebsd_php4-dba.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,89 @@
+#
+#VID 1e8031be-4258-11de-b67a-0030843d3802
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID 1e8031be-4258-11de-b67a-0030843d3802
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64001);
+ script_version ("$");
+ name["english"] = "FreeBSD Ports: php4-dba";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following packages are affected:
+ php4-dba
+ php5-dba
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://www.securityfocus.com/archive/1/498746/30/0/threaded
+http://securityreason.com/achievement_securityalert/58
+http://www.vuxml.org/freebsd/1e8031be-4258-11de-b67a-0030843d3802.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "FreeBSD Ports: php4-dba";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "FreeBSD Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"php4-dba");
+if(!isnull(bver) && revcomp(a:bver, b:"4.4.9_1")<0) {
+ security_note(0, data:"Package php4-dba version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+bver = portver(pkg:"php5-dba");
+if(!isnull(bver) && revcomp(a:bver, b:"5.2.7")<0) {
+ security_note(0, data:"Package php5-dba version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/mdksa_2009_110.nasl
===================================================================
--- trunk/openvas-plugins/scripts/mdksa_2009_110.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/mdksa_2009_110.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,255 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory MDVSA-2009:110 (squirrelmail)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63984);
+ script_cve_id("CVE-2009-1578", "CVE-2009-1579", "CVE-2009-1580", "CVE-2009-1581");
+ script_version ("$");
+ name["english"] = "Mandrake Security Advisory MDVSA-2009:110 (squirrelmail)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to squirrelmail
+announced via advisory MDVSA-2009:110.
+
+Multiple vulnerabilities has been identified and corrected in
+squirrelmail:
+
+Two issues were fixed that both allowed an attacker to run arbitrary
+script (XSS) on most any SquirrelMail page by getting the user to
+click on specially crafted SquirrelMail links (CVE-2009-1578).
+
+An issue was fixed wherein input to the contrib/decrypt_headers.php
+script was not sanitized and allowed arbitrary script execution upon
+submission of certain values (CVE-2009-1578).
+
+An issue was fixed that allowed arbitrary server-side code execution
+when SquirrelMail was configured to use the example map_yp_alias
+username mapping functionality (CVE-2009-1579).
+
+An issue was fixed that allowed an attacker to possibly steal user
+data by hijacking the SquirrelMail login session. (CVE-2009-1580).
+
+An issue was fixed that allowed phishing and cross-site scripting
+(XSS) attacks to be run by surreptitious placement of content in
+specially-crafted emails sent to SquirrelMail users (CVE-2009-1581).
+
+Additionally many of the bundled plugins has been upgraded. Basically
+this is a syncronization with the latest squirrelmail package found
+in Mandriva Cooker. The rpm changelog will reveal all the changes
+(rpm -q --changelog squirrelmail).
+
+The updated packages have been upgraded to the latest version of
+squirrelmail to prevent this.
+
+Affected: Corporate 4.0
+
+Solution:
+To upgrade automatically use MandrakeUpdate or urpmi. The verification
+of md5 checksums and GPG signatures is performed automatically for you.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:110
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Mandrake Security Advisory MDVSA-2009:110 (squirrelmail)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Mandrake Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"squirrelmail", rpm:"squirrelmail~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-ar", rpm:"squirrelmail-ar~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-bg", rpm:"squirrelmail-bg~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-bn", rpm:"squirrelmail-bn~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-ca", rpm:"squirrelmail-ca~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-cs", rpm:"squirrelmail-cs~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-cy", rpm:"squirrelmail-cy~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-cyrus", rpm:"squirrelmail-cyrus~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-da", rpm:"squirrelmail-da~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-de", rpm:"squirrelmail-de~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-el", rpm:"squirrelmail-el~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-en", rpm:"squirrelmail-en~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-es", rpm:"squirrelmail-es~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-et", rpm:"squirrelmail-et~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-eu", rpm:"squirrelmail-eu~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-fa", rpm:"squirrelmail-fa~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-fi", rpm:"squirrelmail-fi~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-fo", rpm:"squirrelmail-fo~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-fr", rpm:"squirrelmail-fr~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-fy", rpm:"squirrelmail-fy~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-he", rpm:"squirrelmail-he~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-hr", rpm:"squirrelmail-hr~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-hu", rpm:"squirrelmail-hu~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-id", rpm:"squirrelmail-id~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-is", rpm:"squirrelmail-is~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-it", rpm:"squirrelmail-it~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-ja", rpm:"squirrelmail-ja~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-ka", rpm:"squirrelmail-ka~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-ko", rpm:"squirrelmail-ko~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-lt", rpm:"squirrelmail-lt~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-ms", rpm:"squirrelmail-ms~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-nb", rpm:"squirrelmail-nb~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-nl", rpm:"squirrelmail-nl~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-nn", rpm:"squirrelmail-nn~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-pl", rpm:"squirrelmail-pl~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-poutils", rpm:"squirrelmail-poutils~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-pt", rpm:"squirrelmail-pt~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-ro", rpm:"squirrelmail-ro~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-ru", rpm:"squirrelmail-ru~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-sk", rpm:"squirrelmail-sk~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-sl", rpm:"squirrelmail-sl~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-sr", rpm:"squirrelmail-sr~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-sv", rpm:"squirrelmail-sv~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-th", rpm:"squirrelmail-th~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-tr", rpm:"squirrelmail-tr~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-ug", rpm:"squirrelmail-ug~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-uk", rpm:"squirrelmail-uk~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-vi", rpm:"squirrelmail-vi~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-zh_CN", rpm:"squirrelmail-zh_CN~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"squirrelmail-zh_TW", rpm:"squirrelmail-zh_TW~1.4.18~0.1.20060mlcs4", rls:"MNDK_4.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/mdksa_2009_111_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/mdksa_2009_111_1.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/mdksa_2009_111_1.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,277 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory MDVSA-2009:111-1 (firefox)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63983);
+ script_cve_id("CVE-2009-1302", "CVE-2009-1303", "CVE-2009-1304", "CVE-2009-1305", "CVE-2009-0652", "CVE-2009-1306", "CVE-2009-1307", "CVE-2009-1308", "CVE-2009-1309", "CVE-2009-1310", "CVE-2009-1311", "CVE-2009-1312", "CVE-2009-1313");
+ script_version ("$");
+ name["english"] = "Mandrake Security Advisory MDVSA-2009:111-1 (firefox)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to firefox
+announced via advisory MDVSA-2009:111-1.
+
+Security vulnerabilities have been discovered in previous
+versions, and corrected in the latest Mozilla Firefox 3.x, version
+3.0.10. (CVE-2009-1302, CVE-2009-1303, CVE-2009-1304, CVE-2009-1305,
+CVE-2009-0652, CVE-2009-1306, CVE-2009-1307, CVE-2009-1308,
+CVE-2009-1309, CVE-2009-1310, CVE-2009-1311, CVE-2009-1312,
+CVE-2009-1313)
+
+This update provides the latest Mozilla Firefox 3.x to correct
+these issues.
+
+Additionally, some packages which require so, have been rebuilt and
+are being provided as updates.
+
+Update:
+
+The recent Mozilla Firefox update missed the Firefox language packs
+for Mandriva Linux 2009. This update provides them, fixing the issue.
+
+Affected: 2009.0
+
+Solution:
+To upgrade automatically use MandrakeUpdate or urpmi. The verification
+of md5 checksums and GPG signatures is performed automatically for you.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:111-1
+http://www.mozilla.org/security/known-vulnerabilities/firefox30.html#firefox3.0.10
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Mandrake Security Advisory MDVSA-2009:111-1 (firefox)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Mandrake Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"firefox-af", rpm:"firefox-af~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-ar", rpm:"firefox-ar~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-be", rpm:"firefox-be~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-bg", rpm:"firefox-bg~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-bn", rpm:"firefox-bn~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-ca", rpm:"firefox-ca~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-cs", rpm:"firefox-cs~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-cy", rpm:"firefox-cy~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-da", rpm:"firefox-da~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-de", rpm:"firefox-de~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-el", rpm:"firefox-el~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-en_GB", rpm:"firefox-en_GB~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-eo", rpm:"firefox-eo~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-es_AR", rpm:"firefox-es_AR~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-es_ES", rpm:"firefox-es_ES~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-et", rpm:"firefox-et~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-eu", rpm:"firefox-eu~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-fi", rpm:"firefox-fi~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-fr", rpm:"firefox-fr~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-fy", rpm:"firefox-fy~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-ga_IE", rpm:"firefox-ga_IE~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-gl", rpm:"firefox-gl~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-gu_IN", rpm:"firefox-gu_IN~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-he", rpm:"firefox-he~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-hi", rpm:"firefox-hi~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-hu", rpm:"firefox-hu~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-id", rpm:"firefox-id~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-is", rpm:"firefox-is~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-it", rpm:"firefox-it~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-ja", rpm:"firefox-ja~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-ka", rpm:"firefox-ka~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-kn", rpm:"firefox-kn~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-ko", rpm:"firefox-ko~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-ku", rpm:"firefox-ku~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-lt", rpm:"firefox-lt~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-lv", rpm:"firefox-lv~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-mk", rpm:"firefox-mk~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-mn", rpm:"firefox-mn~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-mr", rpm:"firefox-mr~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-nb_NO", rpm:"firefox-nb_NO~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-nl", rpm:"firefox-nl~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-nn_NO", rpm:"firefox-nn_NO~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-oc", rpm:"firefox-oc~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-pa_IN", rpm:"firefox-pa_IN~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-pl", rpm:"firefox-pl~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-pt_BR", rpm:"firefox-pt_BR~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-pt_PT", rpm:"firefox-pt_PT~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-ro", rpm:"firefox-ro~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-ru", rpm:"firefox-ru~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-si", rpm:"firefox-si~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-sk", rpm:"firefox-sk~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-sl", rpm:"firefox-sl~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-sq", rpm:"firefox-sq~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-sr", rpm:"firefox-sr~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-sv_SE", rpm:"firefox-sv_SE~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-te", rpm:"firefox-te~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-th", rpm:"firefox-th~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-tr", rpm:"firefox-tr~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-uk", rpm:"firefox-uk~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-zh_CN", rpm:"firefox-zh_CN~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"firefox-zh_TW", rpm:"firefox-zh_TW~3.0.10~0.1mdv2009.0", rls:"MNDK_2009.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ovcesa2009_0258.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ovcesa2009_0258.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/ovcesa2009_0258.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,78 @@
+#CESA-2009:0258 64013 2
+# $Id$
+# Description: Auto-generated from advisory CESA-2009:0258 (thunderbird)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64013);
+ script_cve_id("CVE-2009-0352", "CVE-2009-0353", "CVE-2009-0355", "CVE-2009-0772", "CVE-2009-0774", "CVE-2009-0775", "CVE-2009-0776");
+ script_version ("$");
+ name["english"] = "CentOS Security Advisory CESA-2009:0258 (thunderbird)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates to thunderbird announced in
+advisory CESA-2009:0258.
+
+For details on the issues addressed in this update,
+please visit the referenced security advisories.
+
+Solution:
+Update the appropriate packages on your system.
+
+http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:0258
+http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:0258
+https://rhn.redhat.com/errata/RHSA-2009-0258.html
+
+Risk factor : Medium";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "CentOS Security Advisory CESA-2009:0258 (thunderbird)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "CentOS Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"thunderbird", rpm:"thunderbird~2.0.0.21~1.el5.centos", rls:"CentOS5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ovcesa2009_0431.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ovcesa2009_0431.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/ovcesa2009_0431.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,81 @@
+#CESA-2009:0431 64012 2
+# $Id$
+# Description: Auto-generated from advisory CESA-2009:0431 (kdegraphics)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64012);
+ script_cve_id("CVE-2009-0146", "CVE-2009-0147", "CVE-2009-0166", "CVE-2009-0799", "CVE-2009-0800", "CVE-2009-1179", "CVE-2009-1180", "CVE-2009-1181", "CVE-2009-1182", "CVE-2009-1183");
+ script_version ("$");
+ name["english"] = "CentOS Security Advisory CESA-2009:0431 (kdegraphics)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates to kdegraphics announced in
+advisory CESA-2009:0431.
+
+For details on the issues addressed in this update,
+please visit the referenced security advisories.
+
+Solution:
+Update the appropriate packages on your system.
+
+http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:0431
+http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:0431
+https://rhn.redhat.com/errata/RHSA-2009-0431.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "CentOS Security Advisory CESA-2009:0431 (kdegraphics)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "CentOS Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"kdegraphics", rpm:"kdegraphics~3.5.4~12.el5_3", rls:"CentOS5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics-devel", rpm:"kdegraphics-devel~3.5.4~12.el5_3", rls:"CentOS5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ovcesa2009_0457.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ovcesa2009_0457.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/ovcesa2009_0457.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,81 @@
+#CESA-2009:0457 64014 4
+# $Id$
+# Description: Auto-generated from advisory CESA-2009:0457 (libwmf)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64014);
+ script_cve_id("CVE-2009-1364");
+ script_version ("$");
+ name["english"] = "CentOS Security Advisory CESA-2009:0457 (libwmf)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates to libwmf announced in
+advisory CESA-2009:0457.
+
+For details on the issues addressed in this update,
+please visit the referenced security advisories.
+
+Solution:
+Update the appropriate packages on your system.
+
+http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:0457
+http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:0457
+https://rhn.redhat.com/errata/RHSA-2009-0457.html
+
+Risk factor : Medium";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "CentOS Security Advisory CESA-2009:0457 (libwmf)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "CentOS Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"libwmf", rpm:"libwmf~0.2.8.4~10.2", rls:"CentOS5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf-devel", rpm:"libwmf-devel~0.2.8.4~10.2", rls:"CentOS5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Modified: trunk/openvas-plugins/scripts/ovcesa2009_0474.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ovcesa2009_0474.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/ovcesa2009_0474.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -1,4 +1,4 @@
-#CESA-2009:0474 63972 3
+#CESA-2009:0474 63972 5
# $Id$
# Description: Auto-generated from advisory CESA-2009:0474 (acpid)
#
@@ -72,6 +72,9 @@
if(isrpmvuln(pkg:"acpid", rpm:"acpid~1.0.2~4", rls:"CentOS3")) {
vuln = 1;
}
+if(isrpmvuln(pkg:"acpid", rpm:"acpid~1.0.4~7.el5_3.1", rls:"CentOS5")) {
+ vuln = 1;
+}
if(vuln) {
security_hole(0);
Added: trunk/openvas-plugins/scripts/ovcesa2009_0479.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ovcesa2009_0479.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/ovcesa2009_0479.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,78 @@
+#CESA-2009:0479 64015 2
+# $Id$
+# Description: Auto-generated from advisory CESA-2009:0479 (perl-DBD-Pg)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64015);
+ script_cve_id("CVE-2009-0663", "CVE-2009-1341");
+ script_version ("$");
+ name["english"] = "CentOS Security Advisory CESA-2009:0479 (perl-DBD-Pg)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates to perl-DBD-Pg announced in
+advisory CESA-2009:0479.
+
+For details on the issues addressed in this update,
+please visit the referenced security advisories.
+
+Solution:
+Update the appropriate packages on your system.
+
+http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:0479
+http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:0479
+https://rhn.redhat.com/errata/RHSA-2009-0479.html
+
+Risk factor : Medium";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "CentOS Security Advisory CESA-2009:0479 (perl-DBD-Pg)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "CentOS Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"perl-DBD-Pg", rpm:"perl-DBD-Pg~1.49~2.el5_3.1", rls:"CentOS5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ovcesa2009_0480.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ovcesa2009_0480.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/ovcesa2009_0480.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,84 @@
+#CESA-2009:0480 64011 2
+# $Id$
+# Description: Auto-generated from advisory CESA-2009:0480 (poppler)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64011);
+ script_cve_id("CVE-2009-0146", "CVE-2009-0147", "CVE-2009-0166", "CVE-2009-0195", "CVE-2009-0799", "CVE-2009-0800", "CVE-2009-1179", "CVE-2009-1180", "CVE-2009-1181", "CVE-2009-1182", "CVE-2009-1183", "CVE-2009-1187", "CVE-2009-1188");
+ script_version ("$");
+ name["english"] = "CentOS Security Advisory CESA-2009:0480 (poppler)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates to poppler announced in
+advisory CESA-2009:0480.
+
+For details on the issues addressed in this update,
+please visit the referenced security advisories.
+
+Solution:
+Update the appropriate packages on your system.
+
+http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:0480
+http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:0480
+https://rhn.redhat.com/errata/RHSA-2009-0480.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "CentOS Security Advisory CESA-2009:0480 (poppler)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "CentOS Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"poppler", rpm:"poppler~0.5.4~4.4.el5_3.9", rls:"CentOS5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"poppler-devel", rpm:"poppler-devel~0.5.4~4.4.el5_3.9", rls:"CentOS5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"poppler-utils", rpm:"poppler-utils~0.5.4~4.4.el5_3.9", rls:"CentOS5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ovcesa2009_1036.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ovcesa2009_1036.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/ovcesa2009_1036.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,78 @@
+#CESA-2009:1036 64016 1
+# $Id$
+# Description: Auto-generated from advisory CESA-2009:1036 (ipsec-tools)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(64016);
+ script_cve_id("CVE-2009-1574", "CVE-2009-1632");
+ script_version ("$");
+ name["english"] = "CentOS Security Advisory CESA-2009:1036 (ipsec-tools)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates to ipsec-tools announced in
+advisory CESA-2009:1036.
+
+For details on the issues addressed in this update,
+please visit the referenced security advisories.
+
+Solution:
+Update the appropriate packages on your system.
+
+http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:1036
+http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:1036
+https://rhn.redhat.com/errata/RHSA-2009-1036.html
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "CentOS Security Advisory CESA-2009:1036 (ipsec-tools)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "CentOS Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"ipsec-tools", rpm:"ipsec-tools~0.6.5~13.el5_3.1", rls:"CentOS5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/suse_sr_2009_010.nasl
===================================================================
--- trunk/openvas-plugins/scripts/suse_sr_2009_010.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/suse_sr_2009_010.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,852 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory SUSE-SR:2009:010
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63996);
+ script_cve_id("CVE-2008-2086", "CVE-2008-3104", "CVE-2008-3112", "CVE-2008-3113", "CVE-2008-3114", "CVE-2008-5339", "CVE-2008-5340", "CVE-2008-5342", "CVE-2008-5343", "CVE-2008-5344", "CVE-2008-5345", "CVE-2008-5346", "CVE-2008-5348", "CVE-2008-5350", "CVE-2008-5351", "CVE-2008-5353", "CVE-2008-5354", "CVE-2008-5356", "CVE-2008-5357", "CVE-2008-5359", "CVE-2008-5360", "CVE-2009-0146", "CVE-2009-0147", "CVE-2009-0165", "CVE-2009-0166", "CVE-2009-0368", "CVE-2009-0544", "CVE-2009-0582", "CVE-2009-0585", "CVE-2009-0590", "CVE-2009-0591", "CVE-2009-0652", "CVE-2009-0789", "CVE-2009-0799", "CVE-2009-0800", "CVE-2009-0946", "CVE-2009-1086", "CVE-2009-1179", "CVE-2009-1180", "CVE-2009-1181", "CVE-2009-1182", "CVE-2009-1183", "CVE-2009-1295", "CVE-2009-1302", "CVE-2009-1303", "CVE-2009-1304", "CVE-2009-1305", "CVE-2009-1306", "CVE-2009-1307", "CVE-2009-1308", "CVE-2009-1309", "CVE-2009-1310", "CVE-2009-1311", "CVE-2009-1312");
+ script_version ("$");
+ name["english"] = "SuSE Security Summary SUSE-SR:2009:010";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing updates announced in
+advisory SUSE-SR:2009:010. SuSE Security Summaries are short
+on detail when it comes to the names of packages affected by
+a particular bug. Because of this, while this test will detect
+out of date packages, it cannot tell you what bugs impact
+which packages, or vice versa.
+
+Solution:
+
+Update all out of date packages.
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "SuSE Security Advisory SUSE-SR:2009:010";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "SuSE Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"MozillaFirefox", rpm:"MozillaFirefox~3.0.10~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"MozillaFirefox-branding-upstream", rpm:"MozillaFirefox-branding-upstream~3.0.10~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"MozillaFirefox-translations", rpm:"MozillaFirefox-translations~3.0.10~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"PackageKit", rpm:"PackageKit~0.3.11~1.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"PackageKit-devel", rpm:"PackageKit-devel~0.3.11~1.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"PackageKit-lang", rpm:"PackageKit-lang~0.3.11~1.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"apport", rpm:"apport~0.114~8.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"apport-crashdb-opensuse", rpm:"apport-crashdb-opensuse~0.114~8.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"apport-gtk", rpm:"apport-gtk~0.114~8.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"apport-qt", rpm:"apport-qt~0.114~8.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"apport-retrace", rpm:"apport-retrace~0.114~8.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"banshee-1", rpm:"banshee-1~1.4.3~1.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"banshee-1-backend-engine-gstreamer", rpm:"banshee-1-backend-engine-gstreamer~1.4.3~1.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"banshee-1-backend-platform-gnome", rpm:"banshee-1-backend-platform-gnome~1.4.3~1.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"banshee-1-backend-platform-unix", rpm:"banshee-1-backend-platform-unix~1.4.3~1.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"banshee-1-devel", rpm:"banshee-1-devel~1.4.3~1.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"banshee-1-extensions-default", rpm:"banshee-1-extensions-default~1.4.3~1.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"banshee-1-lang", rpm:"banshee-1-lang~1.4.3~1.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"beagle", rpm:"beagle~0.3.8~46.34.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"beagle-devel", rpm:"beagle-devel~0.3.8~46.34.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"beagle-epiphany", rpm:"beagle-epiphany~0.3.8~46.34.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"beagle-evolution", rpm:"beagle-evolution~0.3.8~46.34.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"beagle-firefox", rpm:"beagle-firefox~0.3.8~46.34.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"beagle-google", rpm:"beagle-google~0.3.8~46.34.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"beagle-gui", rpm:"beagle-gui~0.3.8~46.34.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"beagle-lang", rpm:"beagle-lang~0.3.8~46.34.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"beagle-thunderbird", rpm:"beagle-thunderbird~0.3.8~46.34.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bind", rpm:"bind~9.5.0P2~18.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bind-chrootenv", rpm:"bind-chrootenv~9.5.0P2~18.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bind-devel", rpm:"bind-devel~9.5.0P2~18.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bind-doc", rpm:"bind-doc~9.5.0P2~18.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bind-libs", rpm:"bind-libs~9.5.0P2~18.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bind-utils", rpm:"bind-utils~9.5.0P2~18.6.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bluez", rpm:"bluez~4.22~6.1.10", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bluez-alsa", rpm:"bluez-alsa~4.22~6.1.10", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bluez-compat", rpm:"bluez-compat~4.22~6.1.10", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bluez-cups", rpm:"bluez-cups~4.22~6.1.10", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bluez-devel", rpm:"bluez-devel~4.22~6.1.10", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bluez-gstreamer", rpm:"bluez-gstreamer~4.22~6.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"bluez-test", rpm:"bluez-test~4.22~6.1.10", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g", rpm:"compat-openssl097g~0.9.7g~146.10.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drbd", rpm:"drbd~8.2.7~1.19.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drbd-kmp-debug", rpm:"drbd-kmp-debug~8.2.7_2.6.27.21_0.1~1.19.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drbd-kmp-default", rpm:"drbd-kmp-default~8.2.7_2.6.27.21_0.1~1.19.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drbd-kmp-pae", rpm:"drbd-kmp-pae~8.2.7_2.6.27.21_0.1~1.19.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drbd-kmp-trace", rpm:"drbd-kmp-trace~8.2.7_2.6.27.21_0.1~1.19.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drbd-kmp-xen", rpm:"drbd-kmp-xen~8.2.7_2.6.27.21_0.1~1.19.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"enscript", rpm:"enscript~1.6.4~152.13.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution", rpm:"evolution~2.24.1.1~4.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server", rpm:"evolution-data-server~2.24.1.1~5.12.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server-devel", rpm:"evolution-data-server-devel~2.24.1.1~5.12.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server-doc", rpm:"evolution-data-server-doc~2.24.1.1~5.12.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server-lang", rpm:"evolution-data-server-lang~2.24.1.1~5.12.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-devel", rpm:"evolution-devel~2.24.1.1~4.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-lang", rpm:"evolution-lang~2.24.1.1~4.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-mono-providers", rpm:"evolution-mono-providers~0.1.1~2.18.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-pilot", rpm:"evolution-pilot~2.24.1.1~4.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"foomatic-filters", rpm:"foomatic-filters~3.0.2~269.47.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"freetype2", rpm:"freetype2~2.3.7~24.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"freetype2-devel", rpm:"freetype2-devel~2.3.7~24.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-devel", rpm:"ghostscript-devel~8.62~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-fonts-other", rpm:"ghostscript-fonts-other~8.62~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-fonts-rus", rpm:"ghostscript-fonts-rus~8.62~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-fonts-std", rpm:"ghostscript-fonts-std~8.62~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-ijs-devel", rpm:"ghostscript-ijs-devel~8.62~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-library", rpm:"ghostscript-library~8.62~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-omni", rpm:"ghostscript-omni~8.62~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-x11", rpm:"ghostscript-x11~8.62~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gnome-packagekit", rpm:"gnome-packagekit~0.3.11~2.3.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gnome-packagekit-lang", rpm:"gnome-packagekit-lang~0.3.11~2.3.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gnome-session", rpm:"gnome-session~2.24.1~6.3.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gnome-session-branding-upstream", rpm:"gnome-session-branding-upstream~2.24.1~6.3.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gnome-session-lang", rpm:"gnome-session-lang~2.24.1~6.3.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtk2", rpm:"gtk2~2.14.4~8.7.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtk2-branding-upstream", rpm:"gtk2-branding-upstream~2.14.4~8.7.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtk2-devel", rpm:"gtk2-devel~2.14.4~8.7.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtk2-doc", rpm:"gtk2-doc~2.14.4~8.7.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtk2-lang", rpm:"gtk2-lang~2.14.4~8.7.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtkhtml2", rpm:"gtkhtml2~3.24.1.1~1.17.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtkhtml2-devel", rpm:"gtkhtml2-devel~3.24.1.1~1.17.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtkhtml2-lang", rpm:"gtkhtml2-lang~3.24.1.1~1.17.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk", rpm:"java-1_6_0-openjdk~1.4_b14~24.5.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-demo", rpm:"java-1_6_0-openjdk-demo~1.4_b14~24.5.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-devel", rpm:"java-1_6_0-openjdk-devel~1.4_b14~24.5.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-javadoc", rpm:"java-1_6_0-openjdk-javadoc~1.4_b14~24.5.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-plugin", rpm:"java-1_6_0-openjdk-plugin~1.4_b14~24.5.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-src", rpm:"java-1_6_0-openjdk-src~1.4_b14~24.5.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3", rpm:"kdegraphics3~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-3D", rpm:"kdegraphics3-3D~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-devel", rpm:"kdegraphics3-devel~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-extra", rpm:"kdegraphics3-extra~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-fax", rpm:"kdegraphics3-fax~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-imaging", rpm:"kdegraphics3-imaging~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-kamera", rpm:"kdegraphics3-kamera~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-pdf", rpm:"kdegraphics3-pdf~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-postscript", rpm:"kdegraphics3-postscript~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-scan", rpm:"kdegraphics3-scan~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-tex", rpm:"kdegraphics3-tex~3.5.10~1.63.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libbluetooth3", rpm:"libbluetooth3~4.22~6.1.10", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libfprint-devel", rpm:"libfprint-devel~0.0.6~10.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libfprint0", rpm:"libfprint0~0.0.6~10.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgimpprint", rpm:"libgimpprint~4.2.7~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgimpprint-devel", rpm:"libgimpprint-devel~4.2.7~31.43.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgnomeui", rpm:"libgnomeui~2.24.0~1.36.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgnomeui-devel", rpm:"libgnomeui-devel~2.24.0~1.36.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgnomeui-doc", rpm:"libgnomeui-doc~2.24.0~1.36.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgnomeui-lang", rpm:"libgnomeui-lang~2.24.0~1.36.2", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopensc2", rpm:"libopensc2~0.11.6~5.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl-devel", rpm:"libopenssl-devel~0.9.8h~28.8.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8", rpm:"libopenssl0_9_8~0.9.8h~28.8.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libpackagekit-glib10", rpm:"libpackagekit-glib10~0.3.11~1.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libpackagekit-glib10-devel", rpm:"libpackagekit-glib10-devel~0.3.11~1.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libpackagekit-qt10", rpm:"libpackagekit-qt10~0.3.11~1.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libpackagekit-qt10-devel", rpm:"libpackagekit-qt10-devel~0.3.11~1.14.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libqdialogsolver1", rpm:"libqdialogsolver1~1.2.9~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libqdialogsolver1-devel", rpm:"libqdialogsolver1-devel~1.2.9~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libsatsolver-devel", rpm:"libsatsolver-devel~0.13.6~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf", rpm:"libwmf~0.2.8.4~206.24.4", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf-devel", rpm:"libwmf-devel~0.2.8.4~206.24.4", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf-gnome", rpm:"libwmf-gnome~0.2.8.4~206.24.4", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libxine1", rpm:"libxine1~1.1.15~23.4.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libzypp", rpm:"libzypp~5.29.6~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libzypp-devel", rpm:"libzypp-devel~5.29.6~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner190", rpm:"mozilla-xulrunner190~1.9.0.10~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner190-devel", rpm:"mozilla-xulrunner190-devel~1.9.0.10~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner190-gnomevfs", rpm:"mozilla-xulrunner190-gnomevfs~1.9.0.10~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner190-translations", rpm:"mozilla-xulrunner190-translations~1.9.0.10~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ntp", rpm:"ntp~4.2.4p6~2.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ntp-doc", rpm:"ntp-doc~4.2.4p6~2.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openmotif22-libs", rpm:"openmotif22-libs~2.2.4~137.73.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"opensc", rpm:"opensc~0.11.6~5.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"opensc-devel", rpm:"opensc-devel~0.11.6~5.2.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.8h~28.8.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-doc", rpm:"openssl-doc~0.9.8h~28.8.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"pam_fp", rpm:"pam_fp~0.1~11.7.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"perl-satsolver", rpm:"perl-satsolver~0.13.6~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"python-crypto", rpm:"python-crypto~2.0.1~28.115.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"python-satsolver", rpm:"python-satsolver~0.13.6~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"python-xpcom190", rpm:"python-xpcom190~1.9.0.10~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ruby-satsolver", rpm:"ruby-satsolver~0.13.6~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"satsolver-tools", rpm:"satsolver-tools~0.13.6~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"unbound", rpm:"unbound~1.0.0~2.21.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"unbound-devel", rpm:"unbound-devel~1.0.0~2.21.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"yast2-bootloader", rpm:"yast2-bootloader~2.17.59~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"yast2-network", rpm:"yast2-network~2.17.77~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"yast2-network-devel-doc", rpm:"yast2-network-devel-doc~2.17.77~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"yast2-pkg-bindings", rpm:"yast2-pkg-bindings~2.17.38~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"yast2-qt-pkg", rpm:"yast2-qt-pkg~2.17.27~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"zypper", rpm:"zypper~1.0.9~0.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"MozillaFirefox", rpm:"MozillaFirefox~3.0.10~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"MozillaFirefox-translations", rpm:"MozillaFirefox-translations~3.0.10~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g", rpm:"compat-openssl097g~0.9.7g~119.5", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server", rpm:"evolution-data-server~2.22.1.1~11.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server-devel", rpm:"evolution-data-server-devel~2.22.1.1~11.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server-doc", rpm:"evolution-data-server-doc~2.22.1.1~11.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"freetype2", rpm:"freetype2~2.3.5~62.5", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"freetype2-devel", rpm:"freetype2-devel~2.3.5~62.5", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-devel", rpm:"ghostscript-devel~8.62~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-fonts-other", rpm:"ghostscript-fonts-other~8.62~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-fonts-rus", rpm:"ghostscript-fonts-rus~8.62~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-fonts-std", rpm:"ghostscript-fonts-std~8.62~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-ijs-devel", rpm:"ghostscript-ijs-devel~8.62~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-library", rpm:"ghostscript-library~8.62~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-omni", rpm:"ghostscript-omni~8.62~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-x11", rpm:"ghostscript-x11~8.62~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gnutls", rpm:"gnutls~2.2.2~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtk2", rpm:"gtk2~2.12.9~37.5", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtk2-branding-upstream", rpm:"gtk2-branding-upstream~2.12.9~37.5", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtk2-devel", rpm:"gtk2-devel~2.12.9~37.5", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"gtk2-doc", rpm:"gtk2-doc~2.12.9~37.5", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk", rpm:"java-1_6_0-openjdk~1.4_b14~24.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-demo", rpm:"java-1_6_0-openjdk-demo~1.4_b14~24.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-devel", rpm:"java-1_6_0-openjdk-devel~1.4_b14~24.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-javadoc", rpm:"java-1_6_0-openjdk-javadoc~1.4_b14~24.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-plugin", rpm:"java-1_6_0-openjdk-plugin~1.4_b14~24.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-openjdk-src", rpm:"java-1_6_0-openjdk-src~1.4_b14~24.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3", rpm:"kdegraphics3~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-3D", rpm:"kdegraphics3-3D~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-devel", rpm:"kdegraphics3-devel~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-extra", rpm:"kdegraphics3-extra~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-fax", rpm:"kdegraphics3-fax~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-imaging", rpm:"kdegraphics3-imaging~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-kamera", rpm:"kdegraphics3-kamera~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-pdf", rpm:"kdegraphics3-pdf~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-postscript", rpm:"kdegraphics3-postscript~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-scan", rpm:"kdegraphics3-scan~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-tex", rpm:"kdegraphics3-tex~3.5.9~53.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgimpprint", rpm:"libgimpprint~4.2.7~258.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgimpprint-devel", rpm:"libgimpprint-devel~4.2.7~258.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgnutls-devel", rpm:"libgnutls-devel~2.2.2~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgnutls-extra-devel", rpm:"libgnutls-extra-devel~2.2.2~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgnutls-extra26", rpm:"libgnutls-extra26~2.2.2~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgnutls26", rpm:"libgnutls26~2.2.2~17.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopensc2", rpm:"libopensc2~0.11.4~37.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl-devel", rpm:"libopenssl-devel~0.9.8g~47.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8", rpm:"libopenssl0_9_8~0.9.8g~47.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf", rpm:"libwmf~0.2.8.4~164.2", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf-devel", rpm:"libwmf-devel~0.2.8.4~164.2", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf-gnome", rpm:"libwmf-gnome~0.2.8.4~164.2", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner190", rpm:"mozilla-xulrunner190~1.9.0.10~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner190-devel", rpm:"mozilla-xulrunner190-devel~1.9.0.10~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner190-gnomevfs", rpm:"mozilla-xulrunner190-gnomevfs~1.9.0.10~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner190-translations", rpm:"mozilla-xulrunner190-translations~1.9.0.10~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ntp", rpm:"ntp~4.2.4p4~44.5", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ntp-doc", rpm:"ntp-doc~4.2.4p4~44.5", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openmotif22-libs", rpm:"openmotif22-libs~2.2.4~149.3", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"opensc", rpm:"opensc~0.11.4~37.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"opensc-devel", rpm:"opensc-devel~0.11.4~37.6", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.8g~47.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-certs", rpm:"openssl-certs~0.9.8g~47.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-doc", rpm:"openssl-doc~0.9.8g~47.4", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"python-crypto", rpm:"python-crypto~2.0.1~164.2", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"xine-devel", rpm:"xine-devel~1.1.12~8.7", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"xine-extra", rpm:"xine-extra~1.1.12~8.7", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"xine-lib", rpm:"xine-lib~1.1.12~8.7", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g", rpm:"compat-openssl097g~0.9.7g~75.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server", rpm:"evolution-data-server~1.12.0~5.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server-devel", rpm:"evolution-data-server-devel~1.12.0~5.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"evolution-data-server-doc", rpm:"evolution-data-server-doc~1.12.0~5.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"freetype2", rpm:"freetype2~2.3.5~18.4", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"freetype2-devel", rpm:"freetype2-devel~2.3.5~18.4", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-fonts-other", rpm:"ghostscript-fonts-other~8.15.4~3.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-fonts-rus", rpm:"ghostscript-fonts-rus~8.15.4~3.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-fonts-std", rpm:"ghostscript-fonts-std~8.15.4~3.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-ijs-devel", rpm:"ghostscript-ijs-devel~8.15.4~3.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-library", rpm:"ghostscript-library~8.15.4~3.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-omni", rpm:"ghostscript-omni~8.15.4~3.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"ghostscript-x11", rpm:"ghostscript-x11~8.15.4~3.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3", rpm:"kdegraphics3~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-3D", rpm:"kdegraphics3-3D~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-devel", rpm:"kdegraphics3-devel~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-extra", rpm:"kdegraphics3-extra~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-fax", rpm:"kdegraphics3-fax~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-imaging", rpm:"kdegraphics3-imaging~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-kamera", rpm:"kdegraphics3-kamera~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-pdf", rpm:"kdegraphics3-pdf~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-postscript", rpm:"kdegraphics3-postscript~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-scan", rpm:"kdegraphics3-scan~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kdegraphics3-tex", rpm:"kdegraphics3-tex~3.5.7~60.7", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgimpprint", rpm:"libgimpprint~4.2.7~178.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libgimpprint-devel", rpm:"libgimpprint-devel~4.2.7~178.8", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopensc2", rpm:"libopensc2~0.11.3~21.6", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl-devel", rpm:"libopenssl-devel~0.9.8e~45.9", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8", rpm:"libopenssl0_9_8~0.9.8e~45.9", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf", rpm:"libwmf~0.2.8.4~92.2", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf-devel", rpm:"libwmf-devel~0.2.8.4~92.2", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libwmf-gnome", rpm:"libwmf-gnome~0.2.8.4~92.2", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openmotif22-libs", rpm:"openmotif22-libs~2.2.4~84.3", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"opensc", rpm:"opensc~0.11.3~21.6", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"opensc-devel", rpm:"opensc-devel~0.11.3~21.6", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.8e~45.9", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-certs", rpm:"openssl-certs~0.9.8e~45.9", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-doc", rpm:"openssl-doc~0.9.8e~45.9", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"python-crypto", rpm:"python-crypto~2.0.1~103.2", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"xine-devel", rpm:"xine-devel~1.1.8~14.16", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"xine-extra", rpm:"xine-extra~1.1.8~14.16", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"xine-lib", rpm:"xine-lib~1.1.8~14.16", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"xntp", rpm:"xntp~4.2.4p3~25.5", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"xntp-doc", rpm:"xntp-doc~4.2.4p3~25.5", rls:"openSUSE10.3")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ubuntu_776_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ubuntu_776_1.nasl 2009-05-19 18:49:20 UTC (rev 3433)
+++ trunk/openvas-plugins/scripts/ubuntu_776_1.nasl 2009-05-19 22:17:15 UTC (rev 3434)
@@ -0,0 +1,115 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory USN-776-1 (kvm)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(63998);
+ script_cve_id("CVE-2008-1945", "CVE-2008-2004", "CVE-2008-2382", "CVE-2008-4539", "CVE-2008-5714");
+ script_version ("$");
+ name["english"] = "Ubuntu USN-776-1 (kvm)";
+ script_name(english:name["english"]);
+
+ desc["english"] = "
+The remote host is missing an update to kvm
+announced via advisory USN-776-1.
+
+Details follow:
+
+Avi Kivity discovered that KVM did not correctly handle certain disk
+formats. A local attacker could attach a malicious partition that
+would allow the guest VM to read files on the VM host. (CVE-2008-1945,
+CVE-2008-2004)
+
+Alfredo Ortega discovered that KVM's VNC protocol handler did not
+correctly validate certain messages. A remote attacker could send
+specially crafted VNC messages that would cause KVM to consume CPU
+resources, leading to a denial of service. (CVE-2008-2382)
+
+Jan Niehusmann discovered that KVM's Cirrus VGA implementation over VNC
+did not correctly handle certain bitblt operations. A local attacker
+could exploit this flaw to potentially execute arbitrary code on the VM
+host or crash KVM, leading to a denial of service. (CVE-2008-4539)
+
+It was discovered that KVM's VNC password checks did not use the correct
+length. A remote attacker could exploit this flaw to cause KVM to crash,
+leading to a denial of service. (CVE-2008-5714)
+
+Solution:
+The problem can be corrected by upgrading your system to the
+following package versions:
+
+Ubuntu 8.04 LTS:
+ kvm 1:62+dfsg-0ubuntu8.1
+
+Ubuntu 8.10:
+ kvm 1:72+dfsg-1ubuntu6.1
+
+After a standard system upgrade you need to restart all KVM VMs to effect
+the necessary changes.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=USN-776-1
+
+Risk factor : High";
+
+ script_description(english:desc["english"]);
+
+ summary["english"] = "Ubuntu USN-776-1 (kvm)";
+ script_summary(english:summary["english"]);
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright(english:"Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ family["english"] = "Ubuntu Local Security Checks";
+ script_family(english:family["english"]);
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"kvm-source", ver:"62+dfsg-0ubuntu8.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kvm", ver:"62+dfsg-0ubuntu8.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kvm-source", ver:"72+dfsg-1ubuntu6.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"kvm", ver:"72+dfsg-1ubuntu6.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
More information about the Openvas-commits
mailing list