[Openvas-commits] r5948 - in trunk/openvas-plugins: . scripts
scm-commit@wald.intevation.org
scm-commit at wald.intevation.org
Mon Nov 23 20:51:55 CET 2009
Author: reinke
Date: 2009-11-23 20:51:51 +0100 (Mon, 23 Nov 2009)
New Revision: 5948
Added:
trunk/openvas-plugins/scripts/RHSA_2009_1595.nasl
trunk/openvas-plugins/scripts/deb_1935_1.nasl
trunk/openvas-plugins/scripts/deb_1936_1.nasl
trunk/openvas-plugins/scripts/deb_1937_1.nasl
trunk/openvas-plugins/scripts/deb_1938_1.nasl
trunk/openvas-plugins/scripts/fcore_2009_11649.nasl
trunk/openvas-plugins/scripts/fcore_2009_11666.nasl
trunk/openvas-plugins/scripts/fcore_2009_11687.nasl
trunk/openvas-plugins/scripts/fcore_2009_11693.nasl
trunk/openvas-plugins/scripts/fcore_2009_11710.nasl
trunk/openvas-plugins/scripts/freebsd_cacti6.nasl
trunk/openvas-plugins/scripts/glsa_200911_02.nasl
trunk/openvas-plugins/scripts/mdksa_2009_158_2.nasl
trunk/openvas-plugins/scripts/mdksa_2009_301.nasl
trunk/openvas-plugins/scripts/ovcesa2009_1584.nasl
trunk/openvas-plugins/scripts/sles10_MozillaFirefox8.nasl
trunk/openvas-plugins/scripts/sles10_expat.nasl
trunk/openvas-plugins/scripts/sles11_MozillaFirefox8.nasl
trunk/openvas-plugins/scripts/sles11_expat.nasl
trunk/openvas-plugins/scripts/sles11_kvm0.nasl
trunk/openvas-plugins/scripts/sles9p5062661.nasl
trunk/openvas-plugins/scripts/sles9p5062940.nasl
trunk/openvas-plugins/scripts/suse_sa_2009_057.nasl
trunk/openvas-plugins/scripts/suse_sa_2009_058.nasl
trunk/openvas-plugins/scripts/ubuntu_850_3.nasl
trunk/openvas-plugins/scripts/ubuntu_853_1.nasl
trunk/openvas-plugins/scripts/ubuntu_854_1.nasl
trunk/openvas-plugins/scripts/ubuntu_855_1.nasl
trunk/openvas-plugins/scripts/ubuntu_856_1.nasl
Modified:
trunk/openvas-plugins/ChangeLog
Log:
New scripts added
Modified: trunk/openvas-plugins/ChangeLog
===================================================================
--- trunk/openvas-plugins/ChangeLog 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/ChangeLog 2009-11-23 19:51:51 UTC (rev 5948)
@@ -1,3 +1,36 @@
+2009-11-23 Thomas Reinke <reinke at securityspace.com>
+
+ * scripts/deb_1935_1.nasl,
+ scripts/deb_1936_1.nasl,
+ scripts/deb_1937_1.nasl,
+ scripts/deb_1938_1.nasl,
+ scripts/freebsd_cacti6.nasl,
+ scripts/glsa_200911_02.nasl,
+ scripts/suse_sa_2009_057.nasl,
+ scripts/suse_sa_2009_058.nasl,
+ scripts/ubuntu_850_3.nasl,
+ scripts/ubuntu_853_1.nasl,
+ scripts/ubuntu_854_1.nasl,
+ scripts/ubuntu_855_1.nasl,
+ scripts/ubuntu_856_1.nasl,
+ scripts/mdksa_2009_158_2.nasl,
+ scripts/mdksa_2009_301.nasl,
+ scripts/RHSA_2009_1595.nasl,
+ scripts/fcore_2009_11649.nasl,
+ scripts/fcore_2009_11666.nasl,
+ scripts/fcore_2009_11687.nasl,
+ scripts/fcore_2009_11693.nasl,
+ scripts/fcore_2009_11710.nasl,
+ scripts/ovcesa2009_1584.nasl,
+ scripts/sles9p5062661.nasl,
+ scripts/sles9p5062940.nasl,
+ scripts/sles10_MozillaFirefox8.nasl,
+ scripts/sles10_expat.nasl,
+ scripts/sles11_MozillaFirefox8.nasl,
+ scripts/sles11_expat.nasl,
+ scripts/sles11_kvm0.nasl:
+ New scripts.
+
2009-11-23 Michael Meyer <michael.meyer at intevation.de>
* scripts/php_37079.nasl:
Added: trunk/openvas-plugins/scripts/RHSA_2009_1595.nasl
===================================================================
--- trunk/openvas-plugins/scripts/RHSA_2009_1595.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/RHSA_2009_1595.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,109 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory RHSA-2009:1595 ()
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66287);
+ script_cve_id("CVE-2009-2820", "CVE-2009-3553");
+ script_version ("$Revision$");
+ script_name("RedHat Security Advisory RHSA-2009:1595");
+
+ desc = "
+The remote host is missing updates announced in
+advisory RHSA-2009:1595.
+
+The Common UNIX Printing System (CUPS) provides a portable printing layer
+for UNIX operating systems.
+
+A use-after-free flaw was found in the way CUPS handled references in its
+file descriptors-handling interface. A remote attacker could, in a
+specially-crafted way, query for the list of current print jobs for a
+specific printer, leading to a denial of service (cupsd crash).
+(CVE-2009-3553)
+
+Several cross-site scripting (XSS) flaws were found in the way the CUPS web
+server interface processed HTML form content. If a remote attacker could
+trick a local user who is logged into the CUPS web interface into visiting
+a specially-crafted HTML page, the attacker could retrieve and potentially
+modify confidential CUPS administration data. (CVE-2009-2820)
+
+Red Hat would like to thank Aaron Sigel of Apple Product Security for
+responsibly reporting the CVE-2009-2820 issue.
+
+Users of cups are advised to upgrade to these updated packages, which
+contain backported patches to correct these issues. After installing the
+update, the cupsd daemon will be restarted automatically.
+
+Solution:
+Please note that this update is available via
+Red Hat Network. To use Red Hat Network, launch the Red
+Hat Update Agent with the following command: up2date
+
+http://rhn.redhat.com/errata/RHSA-2009-1595.html
+http://www.redhat.com/security/updates/classification/#moderate
+
+Risk factor : Medium";
+
+ script_description(desc);
+
+ script_summary("Redhat Security Advisory RHSA-2009:1595");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Red Hat Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"cups", rpm:"cups~1.3.7~11.el5_4.4", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"cups-debuginfo", rpm:"cups-debuginfo~1.3.7~11.el5_4.4", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"cups-libs", rpm:"cups-libs~1.3.7~11.el5_4.4", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"cups-lpd", rpm:"cups-lpd~1.3.7~11.el5_4.4", rls:"RHENT_5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"cups-devel", rpm:"cups-devel~1.3.7~11.el5_4.4", rls:"RHENT_5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_1935_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_1935_1.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/deb_1935_1.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,122 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 1935-1 (gnutls13 gnutls26)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66295);
+ script_cve_id("CVE-2009-2409", "CVE-2009-2730");
+ script_version ("$Revision$");
+ script_name("Debian Security Advisory DSA 1935-1 (gnutls13 gnutls26)");
+
+ desc = "
+The remote host is missing an update to gnutls13 gnutls26
+announced via advisory DSA 1935-1.
+
+Dan Kaminsky and Moxie Marlinspike discovered that gnutls, an implementation of
+the TLS/SSL protocol, does not properly handle a '\0' character in a domain name
+in the subject's Common Name or Subject Alternative Name (SAN) field of an X.509
+certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL
+servers via a crafted certificate issued by a legitimate Certification
+Authority. (CVE-2009-2730)
+
+In addition, with this update, certificates with MD2 hash signatures are no
+longer accepted since they're no longer considered cryptograhically secure. It
+only affects the oldstable distribution (etch).(CVE-2009-2409)
+
+For the oldstable distribution (etch), these problems have been fixed in version
+1.4.4-3+etch5 for gnutls13.
+
+For the stable distribution (lenny), these problems have been fixed in version
+2.4.2-6+lenny2 for gnutls26.
+
+For the testing distribution (squeeze), and the unstable distribution (sid),
+these problems have been fixed in version 2.8.3-1 for gnutls26.
+
+We recommend that you upgrade your gnutls13/gnutls26 packages.
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201935-1
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Debian Security Advisory DSA 1935-1 (gnutls13 gnutls26)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Debian Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"gnutls-doc", ver:"1.4.4-3+etch5", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgnutls-dev", ver:"1.4.4-3+etch5", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gnutls-bin", ver:"1.4.4-3+etch5", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgnutls13", ver:"1.4.4-3+etch5", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgnutls13-dbg", ver:"1.4.4-3+etch5", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gnutls-doc", ver:"2.4.2-6+lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"guile-gnutls", ver:"2.4.2-6+lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgnutls-dev", ver:"2.4.2-6+lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgnutls26", ver:"2.4.2-6+lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgnutls26-dbg", ver:"2.4.2-6+lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gnutls-bin", ver:"2.4.2-6+lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_1936_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_1936_1.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/deb_1936_1.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,127 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 1936-1 (libgd2)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66296);
+ script_cve_id("CVE-2007-0455", "CVE-2009-3546");
+ script_version ("$Revision$");
+ script_name("Debian Security Advisory DSA 1936-1 (libgd2)");
+
+ desc = "
+The remote host is missing an update to libgd2
+announced via advisory DSA 1936-1.
+
+Several vulnerabilities have been discovered in libgd2, a library for
+programmatic graphics creation and manipulation. The Common
+Vulnerabilities and Exposures project identifies the following problems:
+
+CVE-2007-0455
+
+Kees Cook discovered a buffer overflow in libgd2's font renderer. An
+attacker could cause denial of service (application crash) and
+possibly execute arbitrary code via a crafted string with a JIS
+encoded font. This issue only affects the oldstable distribution
+(etch).
+
+CVE-2009-3546
+
+Tomas Hoger discovered a boundary error in the _gdGetColors()
+function. An attacker could conduct a buffer overflow or buffer
+over-read attacks via a crafted GD file.
+
+For the oldstable distribution (etch), these problems have been fixed in
+version 2.0.33-5.2etch2.
+
+For the stable distribution (lenny), these problems have been fixed in
+version 2.0.36~rc1~dfsg-3+lenny1.
+
+For the upcoming stable distribution (squeeze) and the unstable
+distribution ion (sid), these problems have been fixed in version
+2.0.36~rc1~dfsg-3.1.
+
+We recommend that you upgrade your libgd2 packages.
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201936-1
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Debian Security Advisory DSA 1936-1 (libgd2)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Debian Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libgd2-noxpm", ver:"2.0.33-5.2etch2", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm", ver:"2.0.33-5.2etch2", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd-tools", ver:"2.0.33-5.2etch2", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm-dev", ver:"2.0.33-5.2etch2", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm-dev", ver:"2.0.33-5.2etch2", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm", ver:"2.0.36~rc1~dfsg-3+lenny1", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm", ver:"2.0.36~rc1~dfsg-3+lenny1", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm-dev", ver:"2.0.36~rc1~dfsg-3+lenny1", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm-dev", ver:"2.0.36~rc1~dfsg-3+lenny1", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd-tools", ver:"2.0.36~rc1~dfsg-3+lenny1", rls:"DEB5.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_1937_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_1937_1.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/deb_1937_1.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,173 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 1937-1 (gforge)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66297);
+ script_cve_id("CVE-2009-3303");
+ script_version ("$Revision$");
+ script_name("Debian Security Advisory DSA 1937-1 (gforge)");
+
+ desc = "
+The remote host is missing an update to gforge
+announced via advisory DSA 1937-1.
+
+
+It was discovered that gforge, collaborative development tool, is prone
+to a cross-site scripting attack via the helpname parameter. Beside
+fixing this issue, the update also introduces some additional input
+sanitising. However, there are no known attack vectors.
+
+
+For the stable distribution (lenny), these problem have been fixed in
+version 4.7~rc2-7lenny2.
+
+The oldstable distribution (etch), these problems have been fixed in
+version 4.5.14-22etch12.
+
+For the testing distribution (squeeze) and the unstable distribution
+(sid), these problems have been fixed in version 4.8.1-3.
+
+
+We recommend that you upgrade your gforge packages.
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201937-1
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Debian Security Advisory DSA 1937-1 (gforge)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Debian Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"gforge-web-apache", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-common", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-dns-bind9", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-shell-ldap", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-shell-postgresql", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-mta-exim", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-lists-mailman", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-ftp-proftpd", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-ldap-openldap", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-mta-postfix", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-mta-exim4", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-db-postgresql", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-mta-courier", ver:"4.5.14-22etch12", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-mta-exim4", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-plugin-scmcvs", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-common", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-plugin-mediawiki", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-mta-postfix", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-ftp-proftpd", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-shell-postgresql", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-web-apache", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-plugin-scmsvn", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-web-apache2", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-db-postgresql", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-lists-mailman", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-dns-bind9", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"gforge-mta-courier", ver:"4.7~rc2-7lenny2", rls:"DEB5.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/deb_1938_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/deb_1938_1.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/deb_1938_1.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,91 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory DSA 1938-1 (php-mail)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66298);
+ script_version ("$Revision$");
+ script_name("Debian Security Advisory DSA 1938-1 (php-mail)");
+
+ desc = "
+The remote host is missing an update to php-mail
+announced via advisory DSA 1938-1.
+
+It was discovered that php-mail, a PHP PEAR module for sending email,
+has insufficient input sanitising, which might be used to obtain
+sensitive data from the system that uses php-mail.
+
+
+For the stable distribution (lenny), this problem has been fixed in
+version 1.1.14-1+lenny1.
+
+For the oldstable distribution (etch), this problem has been fixed in
+version 1.1.6-2+etch1.
+
+For the testing distribution (squeeze), this problem will be fixed soon.
+
+For the unstable distribution (sid), this problem has been fixed in
+version 1.1.14-2.
+
+
+We recommend that you upgrade your php-mail packages.
+
+Solution:
+https://secure1.securityspace.com/smysecure/catid.html?in=DSA%201938-1
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Debian Security Advisory DSA 1938-1 (php-mail)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Debian Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"php-mail", ver:"1.1.6-2+etch1", rls:"DEB4.0")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"php-mail", ver:"1.1.14-1+lenny1", rls:"DEB5.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_11649.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_11649.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/fcore_2009_11649.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,114 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-11649 (proftpd)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66290);
+ script_cve_id("CVE-2009-3639");
+ script_version ("$Revision$");
+ script_name("Fedora Core 11 FEDORA-2009-11649 (proftpd)");
+
+ desc = "
+The remote host is missing an update to proftpd
+announced via advisory FEDORA-2009-11649.
+
+Update Information:
+
+This update fixes CVE-2009-3639, in which proftpd's mod_tls, when the
+dNSNameRequired TLS option is enabled, does not properly handle a '\0' character
+in a domain name in the Subject Alternative Name field of an X.509 client
+certificate. This allows remote attackers to bypass intended client-hostname
+restrictions via a crafted certificate issued by a legitimate Certification
+Authority.
+
+ChangeLog:
+
+* Wed Oct 21 2009 Paul Howarth 1.3.2b-1
+- Update to 1.3.2b
+- Fixed regression causing command-line define options not to work (bug 3221)
+- Fixed SSL/TLS cert subjectAltName verification (bug 3275, CVE-2009-3639)
+- Use correct cached user values with SQLNegativeCache on (bug 3282)
+- Fix slower transfers of multiple small files (bug 3284)
+- Support MaxTransfersPerHost, MaxTransfersPerUser properly (bug 3287)
+- Handle symlinks to directories with trailing slashes properly (bug 3297)
+- Drop upstreamed defines patch (bug 3221)
+
+References:
+
+[ 1 ] Bug #530719 - CVE-2009-3639 ProFTPD: Doesn't properly handle NULL character in subjectAltName
+https://bugzilla.redhat.com/show_bug.cgi?id=530719
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update proftpd' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-11649
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Fedora Core 11 FEDORA-2009-11649 (proftpd)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"proftpd", rpm:"proftpd~1.3.2b~1.fc11", rls:"FC11")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"proftpd-ldap", rpm:"proftpd-ldap~1.3.2b~1.fc11", rls:"FC11")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"proftpd-mysql", rpm:"proftpd-mysql~1.3.2b~1.fc11", rls:"FC11")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"proftpd-postgresql", rpm:"proftpd-postgresql~1.3.2b~1.fc11", rls:"FC11")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"proftpd-debuginfo", rpm:"proftpd-debuginfo~1.3.2b~1.fc11", rls:"FC11")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_11666.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_11666.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/fcore_2009_11666.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,114 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-11666 (proftpd)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66291);
+ script_cve_id("CVE-2009-3639");
+ script_version ("$Revision$");
+ script_name("Fedora Core 10 FEDORA-2009-11666 (proftpd)");
+
+ desc = "
+The remote host is missing an update to proftpd
+announced via advisory FEDORA-2009-11666.
+
+Update Information:
+
+This update fixes CVE-2009-3639, in which proftpd's mod_tls, when the
+dNSNameRequired TLS option is enabled, does not properly handle a '\0' character
+in a domain name in the Subject Alternative Name field of an X.509 client
+certificate. This allows remote attackers to bypass intended client-hostname
+restrictions via a crafted certificate issued by a legitimate Certification
+Authority.
+
+ChangeLog:
+
+* Wed Oct 21 2009 Paul Howarth 1.3.2b-1
+- Update to 1.3.2b
+- Fixed regression causing command-line define options not to work (bug 3221)
+- Fixed SSL/TLS cert subjectAltName verification (bug 3275, CVE-2009-3639)
+- Use correct cached user values with SQLNegativeCache on (bug 3282)
+- Fix slower transfers of multiple small files (bug 3284)
+- Support MaxTransfersPerHost, MaxTransfersPerUser properly (bug 3287)
+- Handle symlinks to directories with trailing slashes properly (bug 3297)
+- Drop upstreamed defines patch (bug 3221)
+
+References:
+
+[ 1 ] Bug #530719 - CVE-2009-3639 ProFTPD: Doesn't properly handle NULL character in subjectAltName
+https://bugzilla.redhat.com/show_bug.cgi?id=530719
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update proftpd' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-11666
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Fedora Core 10 FEDORA-2009-11666 (proftpd)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"proftpd", rpm:"proftpd~1.3.2b~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"proftpd-ldap", rpm:"proftpd-ldap~1.3.2b~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"proftpd-mysql", rpm:"proftpd-mysql~1.3.2b~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"proftpd-postgresql", rpm:"proftpd-postgresql~1.3.2b~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"proftpd-debuginfo", rpm:"proftpd-debuginfo~1.3.2b~1.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_11687.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_11687.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/fcore_2009_11687.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,88 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-11687 (wordpress)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66292);
+ script_version ("$Revision$");
+ script_name("Fedora Core 10 FEDORA-2009-11687 (wordpress)");
+
+ desc = "
+The remote host is missing an update to wordpress
+announced via advisory FEDORA-2009-11687.
+
+Update Information:
+
+2.8.6 fixes two security problems that can be exploited by registered,
+logged in users who have posting privileges. If you have untrusted
+authors on your blog, upgrading to 2.8.6 is recommended.
+
+ChangeLog:
+
+* Mon Nov 16 2009 Adrian Reber - 2.8.6-2
+- updated to 2.8.6 (Security Release)
+* Wed Oct 21 2009 Adrian Reber - 2.8.5-1
+- updated to 2.8.5 (Hardening Release)
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update wordpress' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-11687
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Fedora Core 10 FEDORA-2009-11687 (wordpress)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"wordpress", rpm:"wordpress~2.8.6~2.fc10", rls:"FC10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_11693.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_11693.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/fcore_2009_11693.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,88 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-11693 (wordpress)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66293);
+ script_version ("$Revision$");
+ script_name("Fedora Core 11 FEDORA-2009-11693 (wordpress)");
+
+ desc = "
+The remote host is missing an update to wordpress
+announced via advisory FEDORA-2009-11693.
+
+Update Information:
+
+2.8.6 fixes two security problems that can be exploited by registered,
+logged in users who have posting privileges. If you have untrusted
+authors on your blog, upgrading to 2.8.6 is recommended.
+
+ChangeLog:
+
+* Mon Nov 16 2009 Adrian Reber - 2.8.6-2
+- updated to 2.8.6 (Security Release)
+* Wed Oct 21 2009 Adrian Reber - 2.8.5-1
+- updated to 2.8.5 (Hardening Release)
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update wordpress' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-11693
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Fedora Core 11 FEDORA-2009-11693 (wordpress)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"wordpress", rpm:"wordpress~2.8.6~2.fc11", rls:"FC11")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/fcore_2009_11710.nasl
===================================================================
--- trunk/openvas-plugins/scripts/fcore_2009_11710.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/fcore_2009_11710.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,86 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory FEDORA-2009-11710 (wordpress)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66294);
+ script_version ("$Revision$");
+ script_name("Fedora Core 12 FEDORA-2009-11710 (wordpress)");
+
+ desc = "
+The remote host is missing an update to wordpress
+announced via advisory FEDORA-2009-11710.
+
+Update Information:
+
+2.8.6 fixes two security problems that can be exploited by registered,
+logged in users who have posting privileges. If you have untrusted
+authors on your blog, upgrading to 2.8.6 is recommended.
+
+ChangeLog:
+
+* Mon Nov 16 2009 Adrian Reber - 2.8.6-2
+- updated to 2.8.6 (Security Release)
+
+Solution: Apply the appropriate updates.
+
+This update can be installed with the yum update program. Use
+su -c 'yum update wordpress' at the command line.
+For more information, refer to Managing Software with yum,
+available at http://docs.fedoraproject.org/yum/.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-11710
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Fedora Core 12 FEDORA-2009-11710 (wordpress)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"wordpress", rpm:"wordpress~2.8.6~2.fc12", rls:"FC12")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/freebsd_cacti6.nasl
===================================================================
--- trunk/openvas-plugins/scripts/freebsd_cacti6.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/freebsd_cacti6.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,78 @@
+#
+#VID 04104985-d846-11de-84e4-00215af774f0
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from VID 04104985-d846-11de-84e4-00215af774f0
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66300);
+ script_version ("$Revision$");
+ script_name("FreeBSD Ports: cacti");
+
+ desc = "
+The remote host is missing an update to the system
+as announced in the referenced advisory.
+
+The following package is affected: cacti
+
+Solution:
+Update your system with the appropriate patches or
+software upgrades.
+
+http://docs.cacti.net/#cross-site_scripting_fixes
+http://www.vuxml.org/freebsd/04104985-d846-11de-84e4-00215af774f0.html
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("FreeBSD Ports: cacti");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("FreeBSD Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/freebsdrel");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-bsd.inc");
+vuln = 0;
+bver = portver(pkg:"cacti");
+if(!isnull(bver) && revcomp(a:bver, b:"0.8.7e4")<0) {
+ security_note(0, data:"Package cacti version " + bver + " is installed which is known to be vulnerable.");
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/glsa_200911_02.nasl
===================================================================
--- trunk/openvas-plugins/scripts/glsa_200911_02.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/glsa_200911_02.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,139 @@
+#
+# OpenVAS Vulnerability Test
+# $
+# Description: Auto generated from Gentoo's XML based advisory
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+
+if(description)
+{
+ script_id(66299);
+ script_cve_id("CVE-2009-3879", "CVE-2009-3880", "CVE-2009-3881", "CVE-2009-3882", "CVE-2009-3883", "CVE-2009-3884", "CVE-2009-3886");
+ script_version ("$Revision$");
+ script_name("Gentoo Security Advisory GLSA 200911-02 (sun-jre-bin sun-jdk emul-linux-x86-java blackdown-jre blackdown-jdk)");
+
+ desc = "
+The remote host is missing updates announced in
+advisory GLSA 200911-02.
+
+Multiple vulnerabilites in the Sun JDK and JRE allow for several attacks,
+ including the remote execution of arbitrary code.
+
+Solution:
+All Sun JRE 1.5.x users should upgrade to the latest version:
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose '>=dev-java/sun-jre-bin-1.5.0.22'
+
+All Sun JRE 1.6.x users should upgrade to the latest version:
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose '>=dev-java/sun-jre-bin-1.6.0.17'
+
+All Sun JDK 1.5.x users should upgrade to the latest version:
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose '>=dev-java/sun-jdk-1.5.0.22'
+
+All Sun JDK 1.6.x users should upgrade to the latest version:
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose '>=dev-java/sun-jdk-1.6.0.17'
+
+All users of the precompiled 32bit Sun JRE 1.5.x should upgrade to the
+ latest version:
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose '>=app-emulation/emul-linux-x86-java-1.5.0.22'
+
+All users of the precompiled 32bit Sun JRE 1.6.x should upgrade to the
+ latest version:
+
+ # emerge --sync
+ # emerge --ask --oneshot --verbose '>=app-emulation/emul-linux-x86-java-1.6.0.17'
+
+All Sun JRE 1.4.x, Sun JDK 1.4.x, Blackdown JRE, Blackdown JDK and
+ precompiled 32bit Sun JRE 1.4.x users are strongly advised to unmerge
+ Java 1.4:
+
+ # emerge --unmerge =app-emulation/emul-linux-x86-java-1.4*
+ # emerge --unmerge =dev-java/sun-jre-bin-1.4*
+ # emerge --unmerge =dev-java/sun-jdk-1.4*
+ # emerge --unmerge dev-java/blackdown-jdk
+ # emerge --unmerge dev-java/blackdown-jre
+
+Gentoo is ceasing support for the 1.4 generation of the Sun Java
+ Platform in accordance with upstream. All 1.4 JRE and JDK versions are
+ masked and will be removed shortly.
+
+http://www.securityspace.com/smysecure/catid.html?in=GLSA%20200911-02
+http://bugs.gentoo.org/show_bug.cgi?id=182824
+http://bugs.gentoo.org/show_bug.cgi?id=231337
+http://bugs.gentoo.org/show_bug.cgi?id=250012
+http://bugs.gentoo.org/show_bug.cgi?id=263810
+http://bugs.gentoo.org/show_bug.cgi?id=280409
+http://bugs.gentoo.org/show_bug.cgi?id=291817
+
+Risk factor : Medium";
+
+ script_description(desc);
+
+ script_summary("Gentoo Security Advisory GLSA 200911-02 (sun-jre-bin sun-jdk emul-linux-x86-java blackdown-jre blackdown-jdk)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Gentoo Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/gentoo");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-gentoo.inc");
+vuln = 0;
+if(ispkgvuln(pkg:"dev-java/sun-jre-bin", unaffected: make_list("rge 1.5.0.22", "ge 1.6.0.17"), vulnerable: make_list("lt 1.6.0.17"))) {
+ vuln=1;
+}
+if(ispkgvuln(pkg:"dev-java/sun-jdk", unaffected: make_list("rge 1.5.0.22", "ge 1.6.0.17"), vulnerable: make_list("lt 1.6.0.17"))) {
+ vuln=1;
+}
+if(ispkgvuln(pkg:"dev-java/blackdown-jre", unaffected: make_list(), vulnerable: make_list("le 1.4.2.03-r14"))) {
+ vuln=1;
+}
+if(ispkgvuln(pkg:"dev-java/blackdown-jdk", unaffected: make_list(), vulnerable: make_list("le 1.4.2.03-r16"))) {
+ vuln=1;
+}
+if(ispkgvuln(pkg:"app-emulation/emul-linux-x86-java", unaffected: make_list("rge 1.5.0.22", "ge 1.6.0.17"), vulnerable: make_list("lt 1.6.0.17"))) {
+ vuln=1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/mdksa_2009_158_2.nasl
===================================================================
--- trunk/openvas-plugins/scripts/mdksa_2009_158_2.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/mdksa_2009_158_2.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,100 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory MDVSA-2009:158-2 (pango)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66288);
+ script_cve_id("CVE-2009-1194");
+ script_version ("$Revision$");
+ script_name("Mandriva Security Advisory MDVSA-2009:158-2 (pango)");
+
+ desc = "
+The remote host is missing an update to pango
+announced via advisory MDVSA-2009:158-2.
+
+Integer overflow in the pango_glyph_string_set_size function in
+pango/glyphstring.c in Pango before 1.24 allows context-dependent
+attackers to cause a denial of service (application crash) or possibly
+execute arbitrary code via a long glyph string that triggers a
+heap-based buffer overflow.
+
+This update corrects the issue.
+
+Update:
+
+pango for CS3 broke applications like MandrivaUpdate, mcc and so
+on. This update corrects this problem.
+
+Affected: Corporate 3.0
+
+Solution:
+To upgrade automatically use MandrakeUpdate or urpmi. The verification
+of md5 checksums and GPG signatures is performed automatically for you.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:158-2
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Mandriva Security Advisory MDVSA-2009:158-2 (pango)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Mandrake Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"libpango1.0_0", rpm:"libpango1.0_0~1.2.5~3.2.C30mdk", rls:"MNDK_3.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libpango1.0_0-devel", rpm:"libpango1.0_0-devel~1.2.5~3.2.C30mdk", rls:"MNDK_3.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"pango", rpm:"pango~1.2.5~3.2.C30mdk", rls:"MNDK_3.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"lib64pango1.0_0", rpm:"lib64pango1.0_0~1.2.5~3.2.C30mdk", rls:"MNDK_3.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"lib64pango1.0_0-devel", rpm:"lib64pango1.0_0-devel~1.2.5~3.2.C30mdk", rls:"MNDK_3.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/mdksa_2009_301.nasl
===================================================================
--- trunk/openvas-plugins/scripts/mdksa_2009_301.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/mdksa_2009_301.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,372 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory MDVSA-2009:301 (kernel)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66289);
+ script_cve_id("CVE-2009-2903", "CVE-2009-3547", "CVE-2005-4881", "CVE-2009-3612", "CVE-2009-3621", "CVE-2009-3638", "CVE-2009-3726");
+ script_version ("$Revision$");
+ script_name("Mandriva Security Advisory MDVSA-2009:301 (kernel)");
+
+ desc = "
+The remote host is missing an update to kernel
+announced via advisory MDVSA-2009:301.
+
+Some vulnerabilities were discovered and corrected in the Linux
+2.6 kernel:
+
+Memory leak in the appletalk subsystem in the Linux kernel 2.4.x
+through 2.4.37.6 and 2.6.x through 2.6.31, when the appletalk and
+ipddp modules are loaded but the ipddpN device is not found, allows
+remote attackers to cause a denial of service (memory consumption)
+via IP-DDP datagrams. (CVE-2009-2903)
+
+Multiple race conditions in fs/pipe.c in the Linux kernel before
+2.6.32-rc6 allow local users to cause a denial of service (NULL pointer
+dereference and system crash) or gain privileges by attempting to
+open an anonymous pipe via a /proc/*/fd/ pathname. (CVE-2009-3547)
+
+The tcf_fill_node function in net/sched/cls_api.c in the netlink
+subsystem in the Linux kernel 2.6.x before 2.6.32-rc5, and 2.4.37.6
+and earlier, does not initialize a certain tcm__pad2 structure member,
+which might allow local users to obtain sensitive information from
+kernel memory via unspecified vectors. NOTE: this issue exists
+because of an incomplete fix for CVE-2005-4881. (CVE-2009-3612)
+
+net/unix/af_unix.c in the Linux kernel 2.6.31.4 and earlier allows
+local users to cause a denial of service (system hang) by creating an
+abstract-namespace AF_UNIX listening socket, performing a shutdown
+operation on this socket, and then performing a series of connect
+operations to this socket. (CVE-2009-3621)
+
+Integer overflow in the kvm_dev_ioctl_get_supported_cpuid function
+in arch/x86/kvm/x86.c in the KVM subsystem in the Linux kernel
+before 2.6.31.4 allows local users to have an unspecified impact
+via a KVM_GET_SUPPORTED_CPUID request to the kvm_arch_dev_ioctl
+function. (CVE-2009-3638)
+
+The nfs4_proc_lock function in fs/nfs/nfs4proc.c in the NFSv4 client in
+the Linux kernel before 2.6.31-rc4 allows remote NFS servers to cause
+a denial of service (NULL pointer dereference and panic) by sending a
+certain response containing incorrect file attributes, which trigger
+attempted use of an open file that lacks NFSv4 state. (CVE-2009-3726)
+
+Additionaly, it includes the fixes from the stable kernel version
+2.6.27.39. It also fixes issues with the bnx2 module in which the
+machine could become unresponsive. For details, see the package
+changelog.
+
+To update your kernel, please follow the directions located at:
+
+http://www.mandriva.com/en/security/kernelupdate
+
+Affected: Enterprise Server 5.0
+
+Solution:
+To upgrade automatically use MandrakeUpdate or urpmi. The verification
+of md5 checksums and GPG signatures is performed automatically for you.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=MDVSA-2009:301
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Mandriva Security Advisory MDVSA-2009:301 (kernel)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Mandrake Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"drm-experimental-kernel-2.6.27.39-desktop-1mnb", rpm:"drm-experimental-kernel-2.6.27.39-desktop-1mnb~2.3.0~2.20080912.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drm-experimental-kernel-2.6.27.39-desktop586-1mnb", rpm:"drm-experimental-kernel-2.6.27.39-desktop586-1mnb~2.3.0~2.20080912.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drm-experimental-kernel-2.6.27.39-server-1mnb", rpm:"drm-experimental-kernel-2.6.27.39-server-1mnb~2.3.0~2.20080912.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drm-experimental-kernel-desktop586-latest", rpm:"drm-experimental-kernel-desktop586-latest~2.3.0~1.20091119.2.20080912.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drm-experimental-kernel-desktop-latest", rpm:"drm-experimental-kernel-desktop-latest~2.3.0~1.20091119.2.20080912.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"drm-experimental-kernel-server-latest", rpm:"drm-experimental-kernel-server-latest~2.3.0~1.20091119.2.20080912.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"fglrx-kernel-2.6.27.39-desktop-1mnb", rpm:"fglrx-kernel-2.6.27.39-desktop-1mnb~8.522~3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"fglrx-kernel-2.6.27.39-desktop586-1mnb", rpm:"fglrx-kernel-2.6.27.39-desktop586-1mnb~8.522~3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"fglrx-kernel-2.6.27.39-server-1mnb", rpm:"fglrx-kernel-2.6.27.39-server-1mnb~8.522~3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"fglrx-kernel-desktop586-latest", rpm:"fglrx-kernel-desktop586-latest~8.522~1.20091119.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"fglrx-kernel-desktop-latest", rpm:"fglrx-kernel-desktop-latest~8.522~1.20091119.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"fglrx-kernel-server-latest", rpm:"fglrx-kernel-server-latest~8.522~1.20091119.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"iscsitarget-kernel-2.6.27.39-desktop-1mnb", rpm:"iscsitarget-kernel-2.6.27.39-desktop-1mnb~0.4.16~4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"iscsitarget-kernel-2.6.27.39-desktop586-1mnb", rpm:"iscsitarget-kernel-2.6.27.39-desktop586-1mnb~0.4.16~4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"iscsitarget-kernel-2.6.27.39-server-1mnb", rpm:"iscsitarget-kernel-2.6.27.39-server-1mnb~0.4.16~4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"iscsitarget-kernel-desktop586-latest", rpm:"iscsitarget-kernel-desktop586-latest~0.4.16~1.20091119.4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"iscsitarget-kernel-desktop-latest", rpm:"iscsitarget-kernel-desktop-latest~0.4.16~1.20091119.4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"iscsitarget-kernel-server-latest", rpm:"iscsitarget-kernel-server-latest~0.4.16~1.20091119.4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-2.6.27.39-1mnb", rpm:"kernel-2.6.27.39-1mnb~1~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-desktop-2.6.27.39-1mnb", rpm:"kernel-desktop-2.6.27.39-1mnb~1~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-desktop586-2.6.27.39-1mnb", rpm:"kernel-desktop586-2.6.27.39-1mnb~1~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-desktop586-devel-2.6.27.39-1mnb", rpm:"kernel-desktop586-devel-2.6.27.39-1mnb~1~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-desktop586-devel-latest", rpm:"kernel-desktop586-devel-latest~2.6.27.39~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-desktop586-latest", rpm:"kernel-desktop586-latest~2.6.27.39~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-desktop-devel-2.6.27.39-1mnb", rpm:"kernel-desktop-devel-2.6.27.39-1mnb~1~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-desktop-devel-latest", rpm:"kernel-desktop-devel-latest~2.6.27.39~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-desktop-latest", rpm:"kernel-desktop-latest~2.6.27.39~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-doc", rpm:"kernel-doc~2.6.27.39~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-server-2.6.27.39-1mnb", rpm:"kernel-server-2.6.27.39-1mnb~1~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-server-devel-2.6.27.39-1mnb", rpm:"kernel-server-devel-2.6.27.39-1mnb~1~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-server-devel-latest", rpm:"kernel-server-devel-latest~2.6.27.39~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-server-latest", rpm:"kernel-server-latest~2.6.27.39~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-source-2.6.27.39-1mnb", rpm:"kernel-source-2.6.27.39-1mnb~1~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kernel-source-latest", rpm:"kernel-source-latest~2.6.27.39~1mnb2", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kqemu-kernel-2.6.27.39-desktop-1mnb", rpm:"kqemu-kernel-2.6.27.39-desktop-1mnb~1.4.0pre1~0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kqemu-kernel-2.6.27.39-desktop586-1mnb", rpm:"kqemu-kernel-2.6.27.39-desktop586-1mnb~1.4.0pre1~0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kqemu-kernel-2.6.27.39-server-1mnb", rpm:"kqemu-kernel-2.6.27.39-server-1mnb~1.4.0pre1~0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kqemu-kernel-desktop586-latest", rpm:"kqemu-kernel-desktop586-latest~1.4.0pre1~1.20091119.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kqemu-kernel-desktop-latest", rpm:"kqemu-kernel-desktop-latest~1.4.0pre1~1.20091119.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kqemu-kernel-server-latest", rpm:"kqemu-kernel-server-latest~1.4.0pre1~1.20091119.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-2.6.27.39-desktop-1mnb", rpm:"libafs-kernel-2.6.27.39-desktop-1mnb~1.4.7~5.2mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-2.6.27.39-desktop586-1mnb", rpm:"libafs-kernel-2.6.27.39-desktop586-1mnb~1.4.7~5.2mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-2.6.27.39-server-1mnb", rpm:"libafs-kernel-2.6.27.39-server-1mnb~1.4.7~5.2mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-desktop586-latest", rpm:"libafs-kernel-desktop586-latest~1.4.7~1.20091119.5.2mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-desktop-latest", rpm:"libafs-kernel-desktop-latest~1.4.7~1.20091119.5.2mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-server-latest", rpm:"libafs-kernel-server-latest~1.4.7~1.20091119.5.2mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"madwifi-kernel-2.6.27.39-desktop-1mnb", rpm:"madwifi-kernel-2.6.27.39-desktop-1mnb~0.9.4~3.r3835mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"madwifi-kernel-2.6.27.39-desktop586-1mnb", rpm:"madwifi-kernel-2.6.27.39-desktop586-1mnb~0.9.4~3.r3835mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"madwifi-kernel-2.6.27.39-server-1mnb", rpm:"madwifi-kernel-2.6.27.39-server-1mnb~0.9.4~3.r3835mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"madwifi-kernel-desktop586-latest", rpm:"madwifi-kernel-desktop586-latest~0.9.4~1.20091119.3.r3835mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"madwifi-kernel-desktop-latest", rpm:"madwifi-kernel-desktop-latest~0.9.4~1.20091119.3.r3835mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"madwifi-kernel-server-latest", rpm:"madwifi-kernel-server-latest~0.9.4~1.20091119.3.r3835mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia173-kernel-2.6.27.39-desktop-1mnb", rpm:"nvidia173-kernel-2.6.27.39-desktop-1mnb~173.14.12~4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia173-kernel-2.6.27.39-desktop586-1mnb", rpm:"nvidia173-kernel-2.6.27.39-desktop586-1mnb~173.14.12~4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia173-kernel-desktop586-latest", rpm:"nvidia173-kernel-desktop586-latest~173.14.12~1.20091119.4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia173-kernel-desktop-latest", rpm:"nvidia173-kernel-desktop-latest~173.14.12~1.20091119.4mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia71xx-kernel-2.6.27.39-desktop-1mnb", rpm:"nvidia71xx-kernel-2.6.27.39-desktop-1mnb~71.86.06~5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia71xx-kernel-2.6.27.39-desktop586-1mnb", rpm:"nvidia71xx-kernel-2.6.27.39-desktop586-1mnb~71.86.06~5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia71xx-kernel-2.6.27.39-server-1mnb", rpm:"nvidia71xx-kernel-2.6.27.39-server-1mnb~71.86.06~5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia71xx-kernel-desktop586-latest", rpm:"nvidia71xx-kernel-desktop586-latest~71.86.06~1.20091119.5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia71xx-kernel-desktop-latest", rpm:"nvidia71xx-kernel-desktop-latest~71.86.06~1.20091119.5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia71xx-kernel-server-latest", rpm:"nvidia71xx-kernel-server-latest~71.86.06~1.20091119.5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia96xx-kernel-2.6.27.39-desktop-1mnb", rpm:"nvidia96xx-kernel-2.6.27.39-desktop-1mnb~96.43.07~5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia96xx-kernel-2.6.27.39-desktop586-1mnb", rpm:"nvidia96xx-kernel-2.6.27.39-desktop586-1mnb~96.43.07~5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia96xx-kernel-2.6.27.39-server-1mnb", rpm:"nvidia96xx-kernel-2.6.27.39-server-1mnb~96.43.07~5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia96xx-kernel-desktop586-latest", rpm:"nvidia96xx-kernel-desktop586-latest~96.43.07~1.20091119.5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia96xx-kernel-desktop-latest", rpm:"nvidia96xx-kernel-desktop-latest~96.43.07~1.20091119.5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia96xx-kernel-server-latest", rpm:"nvidia96xx-kernel-server-latest~96.43.07~1.20091119.5mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia-current-kernel-2.6.27.39-desktop-1mnb", rpm:"nvidia-current-kernel-2.6.27.39-desktop-1mnb~177.70~2.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia-current-kernel-2.6.27.39-desktop586-1mnb", rpm:"nvidia-current-kernel-2.6.27.39-desktop586-1mnb~177.70~2.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia-current-kernel-2.6.27.39-server-1mnb", rpm:"nvidia-current-kernel-2.6.27.39-server-1mnb~177.70~2.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia-current-kernel-desktop586-latest", rpm:"nvidia-current-kernel-desktop586-latest~177.70~1.20091119.2.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia-current-kernel-desktop-latest", rpm:"nvidia-current-kernel-desktop-latest~177.70~1.20091119.2.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"nvidia-current-kernel-server-latest", rpm:"nvidia-current-kernel-server-latest~177.70~1.20091119.2.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"vpnclient-kernel-2.6.27.39-desktop-1mnb", rpm:"vpnclient-kernel-2.6.27.39-desktop-1mnb~4.8.01.0640~3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"vpnclient-kernel-2.6.27.39-desktop586-1mnb", rpm:"vpnclient-kernel-2.6.27.39-desktop586-1mnb~4.8.01.0640~3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"vpnclient-kernel-2.6.27.39-server-1mnb", rpm:"vpnclient-kernel-2.6.27.39-server-1mnb~4.8.01.0640~3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"vpnclient-kernel-desktop586-latest", rpm:"vpnclient-kernel-desktop586-latest~4.8.01.0640~1.20091119.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"vpnclient-kernel-desktop-latest", rpm:"vpnclient-kernel-desktop-latest~4.8.01.0640~1.20091119.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"vpnclient-kernel-server-latest", rpm:"vpnclient-kernel-server-latest~4.8.01.0640~1.20091119.3mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-2.6.27.39-desktop-1mnb", rpm:"libafs-kernel-2.6.27.39-desktop-1mnb~1.4.7~5.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-2.6.27.39-server-1mnb", rpm:"libafs-kernel-2.6.27.39-server-1mnb~1.4.7~5.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-desktop-latest", rpm:"libafs-kernel-desktop-latest~1.4.7~1.20091119.5.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libafs-kernel-server-latest", rpm:"libafs-kernel-server-latest~1.4.7~1.20091119.5.1mdv2009.0", rls:"MNDK_mes5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ovcesa2009_1584.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ovcesa2009_1584.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/ovcesa2009_1584.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,87 @@
+#CESA-2009:1584 66301 2
+# $Id$
+# Description: Auto-generated from advisory CESA-2009:1584 (java-1.6.0-openjdk)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66301);
+ script_cve_id("CVE-2009-2409", "CVE-2009-3728", "CVE-2009-3869", "CVE-2009-3871", "CVE-2009-3873", "CVE-2009-3874", "CVE-2009-3875", "CVE-2009-3876", "CVE-2009-3877", "CVE-2009-3879", "CVE-2009-3880", "CVE-2009-3881", "CVE-2009-3882", "CVE-2009-3883", "CVE-2009-3884");
+ script_version ("$Revision$");
+ script_name("CentOS Security Advisory CESA-2009:1584 (java-1.6.0-openjdk)");
+
+ desc = "
+The remote host is missing updates to java-1.6.0-openjdk announced in
+advisory CESA-2009:1584.
+
+For details on the issues addressed in this update,
+please visit the referenced security advisories.
+
+Solution:
+Update the appropriate packages on your system.
+
+http://www.securityspace.com/smysecure/catid.html?in=CESA-2009:1584
+http://www.securityspace.com/smysecure/catid.html?in=RHSA-2009:1584
+https://rhn.redhat.com/errata/RHSA-2009-1584.html
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("CentOS Security Advisory CESA-2009:1584 (java-1.6.0-openjdk)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"java-1.6.0-openjdk", rpm:"java-1.6.0-openjdk~1.6.0.0~1.7.b09.el5", rls:"CentOS5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.6.0-openjdk-demo", rpm:"java-1.6.0-openjdk-demo~1.6.0.0~1.7.b09.el5", rls:"CentOS5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.6.0-openjdk-devel", rpm:"java-1.6.0-openjdk-devel~1.6.0.0~1.7.b09.el5", rls:"CentOS5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.6.0-openjdk-javadoc", rpm:"java-1.6.0-openjdk-javadoc~1.6.0.0~1.7.b09.el5", rls:"CentOS5")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1.6.0-openjdk-src", rpm:"java-1.6.0-openjdk-src~1.6.0.0~1.7.b09.el5", rls:"CentOS5")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/sles10_MozillaFirefox8.nasl
===================================================================
--- trunk/openvas-plugins/scripts/sles10_MozillaFirefox8.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/sles10_MozillaFirefox8.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,93 @@
+#
+#VID slesp2-MozillaFirefox-6665
+# OpenVAS Vulnerability Test
+# $
+# Description: Security update for Mozilla Firefox
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66312);
+ script_version ("$Revision$");
+ script_name("SLES10: Security update for Mozilla Firefox");
+
+ desc = "The remote host is missing updates to packages that affect
+the security of your system. One or more of the following packages
+are affected:
+
+ MozillaFirefox
+ MozillaFirefox-translations
+ mozilla-xulrunner191
+ mozilla-xulrunner191-gnomevfs
+ mozilla-xulrunner191-translations
+
+More details may also be found by searching for the SuSE
+Enterprise Server 10 patch database located at
+http://download.novell.com/patch/finder/
+
+Solution:
+
+Please install the updates provided by SuSE.
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("SLES10: Security update for Mozilla Firefox");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("SuSE Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"MozillaFirefox", rpm:"MozillaFirefox~3.5.5~1.4.1", rls:"SLES10.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"MozillaFirefox-translations", rpm:"MozillaFirefox-translations~3.5.5~1.4.1", rls:"SLES10.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner191", rpm:"mozilla-xulrunner191~1.9.1.5~1.4.1", rls:"SLES10.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner191-gnomevfs", rpm:"mozilla-xulrunner191-gnomevfs~1.9.1.5~1.4.1", rls:"SLES10.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner191-translations", rpm:"mozilla-xulrunner191-translations~1.9.1.5~1.4.1", rls:"SLES10.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/sles10_expat.nasl
===================================================================
--- trunk/openvas-plugins/scripts/sles10_expat.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/sles10_expat.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,79 @@
+#
+#VID slesp2-expat-6618
+# OpenVAS Vulnerability Test
+# $
+# Description: Security update for expat
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66311);
+ script_cve_id("CVE-2009-3720");
+ script_version ("$Revision$");
+ script_name("SLES10: Security update for expat");
+
+ desc = "The remote host is missing updates to packages that affect
+the security of your system. One or more of the following packages
+are affected:
+
+ expat
+
+
+More details may also be found by searching for the SuSE
+Enterprise Server 10 patch database located at
+http://download.novell.com/patch/finder/
+
+Solution:
+
+Please install the updates provided by SuSE.
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("SLES10: Security update for expat");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("SuSE Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"expat", rpm:"expat~2.0.0~13.7.1", rls:"SLES10.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/sles11_MozillaFirefox8.nasl
===================================================================
--- trunk/openvas-plugins/scripts/sles11_MozillaFirefox8.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/sles11_MozillaFirefox8.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,95 @@
+#
+#VID a8ef456fbe2f7e3278460baef881cddc
+# OpenVAS Vulnerability Test
+# $
+# Description: Security update for Mozilla Firefox
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66315);
+ script_version ("$Revision$");
+ script_name("SLES11: Security update for Mozilla Firefox");
+
+ desc = "The remote host is missing updates to packages that affect
+the security of your system. One or more of the following packages
+are affected:
+
+ MozillaFirefox
+ MozillaFirefox-translations
+ mozilla-xulrunner191
+ mozilla-xulrunner191-gnomevfs
+ mozilla-xulrunner191-translations
+References:
+ https://bugzilla.novell.com/show_bug.cgi?id=553172
+
+More details may also be found by searching for the SuSE
+Enterprise Server 11 patch database located at
+http://download.novell.com/patch/finder/
+
+Solution:
+
+Please install the updates provided by SuSE.
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("SLES11: Security update for Mozilla Firefox");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("SuSE Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"MozillaFirefox", rpm:"MozillaFirefox~3.5.5~1.1.2", rls:"SLES11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"MozillaFirefox-translations", rpm:"MozillaFirefox-translations~3.5.5~1.1.2", rls:"SLES11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner191", rpm:"mozilla-xulrunner191~1.9.1.5~1.3.1", rls:"SLES11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner191-gnomevfs", rpm:"mozilla-xulrunner191-gnomevfs~1.9.1.5~1.3.1", rls:"SLES11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"mozilla-xulrunner191-translations", rpm:"mozilla-xulrunner191-translations~1.9.1.5~1.3.1", rls:"SLES11.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/sles11_expat.nasl
===================================================================
--- trunk/openvas-plugins/scripts/sles11_expat.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/sles11_expat.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,85 @@
+#
+#VID 9920a6312eee8fe0580ddf07cc011eb9
+# OpenVAS Vulnerability Test
+# $
+# Description: Security update for expat
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66314);
+ script_cve_id("CVE-2009-3720");
+ script_version ("$Revision$");
+ script_name("SLES11: Security update for expat");
+
+ desc = "The remote host is missing updates to packages that affect
+the security of your system. One or more of the following packages
+are affected:
+
+ expat
+ libexpat1
+
+References:
+ https://bugzilla.novell.com/show_bug.cgi?id=550664
+
+More details may also be found by searching for the SuSE
+Enterprise Server 11 patch database located at
+http://download.novell.com/patch/finder/
+
+Solution:
+
+Please install the updates provided by SuSE.
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("SLES11: Security update for expat");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("SuSE Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"expat", rpm:"expat~2.0.1~88.22.1", rls:"SLES11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libexpat1", rpm:"libexpat1~2.0.1~88.22.1", rls:"SLES11.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/sles11_kvm0.nasl
===================================================================
--- trunk/openvas-plugins/scripts/sles11_kvm0.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/sles11_kvm0.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,95 @@
+#
+#VID f4e5016874884c9afd74eae568a826e1
+# OpenVAS Vulnerability Test
+# $
+# Description: Security update for KVM
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisories, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66313);
+ script_cve_id("CVE-2009-3616", "CVE-2009-3638", "CVE-2009-3640");
+ script_version ("$Revision$");
+ script_name("SLES11: Security update for KVM");
+
+ desc = "The remote host is missing updates to packages that affect
+the security of your system. One or more of the following packages
+are affected:
+
+ kvm
+ kvm-kmp-default
+ kvm-kmp-pae
+
+References:
+ https://bugzilla.novell.com/show_bug.cgi?id=547555
+ https://bugzilla.novell.com/show_bug.cgi?id=550072
+ https://bugzilla.novell.com/show_bug.cgi?id=549487
+ https://bugzilla.novell.com/show_bug.cgi?id=540247
+ https://bugzilla.novell.com/show_bug.cgi?id=550917
+ https://bugzilla.novell.com/show_bug.cgi?id=547624
+ https://bugzilla.novell.com/show_bug.cgi?id=550732
+
+More details may also be found by searching for the SuSE
+Enterprise Server 11 patch database located at
+http://download.novell.com/patch/finder/
+
+Solution:
+
+Please install the updates provided by SuSE.
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("SLES11: Security update for KVM");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("SuSE Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"kvm", rpm:"kvm~78.0.10.6~0.3.1", rls:"SLES11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kvm-kmp-default", rpm:"kvm-kmp-default~78.2.6.30.1_2.6.27.37_0.1~0.7.1", rls:"SLES11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"kvm-kmp-pae", rpm:"kvm-kmp-pae~78.2.6.30.1_2.6.27.37_0.1~0.7.1", rls:"SLES11.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/sles9p5062661.nasl
===================================================================
--- trunk/openvas-plugins/scripts/sles9p5062661.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/sles9p5062661.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,83 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Security update for OpenSSL
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66310);
+ script_cve_id("CVE-2009-3555");
+ script_version ("$Revision$");
+ script_name("SLES9: Security update for OpenSSL");
+
+ desc = "
+The remote host is missing updates to packages that affect
+the security of your system. One or more of the following packages
+are affected:
+
+ openssl
+ openssl-devel
+ openssl-doc
+
+For more information, please visit the referenced security
+advisories.
+
+More details may also be found by searching for keyword
+5062661 within the SuSE Enterprise Server 9 patch
+database at http://download.novell.com/patch/finder/
+
+Solution:
+
+Please install the updates provided by SuSE.
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("SLES9: Security update for OpenSSL");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("SuSE Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.7d~15.41", rls:"SLES9.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/sles9p5062940.nasl
===================================================================
--- trunk/openvas-plugins/scripts/sles9p5062940.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/sles9p5062940.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,81 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Security update for expat
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66309);
+ script_cve_id("CVE-2009-3720");
+ script_version ("$Revision$");
+ script_name("SLES9: Security update for expat");
+
+ desc = "
+The remote host is missing updates to packages that affect
+the security of your system. One or more of the following packages
+are affected:
+
+ expat
+
+For more information, please visit the referenced security
+advisories.
+
+More details may also be found by searching for keyword
+5062940 within the SuSE Enterprise Server 9 patch
+database at http://download.novell.com/patch/finder/
+
+Solution:
+
+Please install the updates provided by SuSE.
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("SLES9: Security update for expat");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("SuSE Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"expat", rpm:"expat~1.95.7~37.4", rls:"SLES9.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/suse_sa_2009_057.nasl
===================================================================
--- trunk/openvas-plugins/scripts/suse_sa_2009_057.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/suse_sa_2009_057.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,219 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory SUSE-SA:2009:057 (openssl)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66302);
+ script_cve_id("CVE-2009-3555");
+ script_version ("$Revision$");
+ script_name("SuSE Security Advisory SUSE-SA:2009:057 (openssl)");
+
+ desc = "
+The remote host is missing updates announced in
+advisory SUSE-SA:2009:057.
+
+The TLS/SSLv3 protocol as implemented in openssl prior to this update
+was not able to associate already sent data to a renegotiated connection.
+This allowed man-in-the-middle attackers to inject HTTP requests in a
+HTTPS session without being noticed.
+For example Apache's mod_ssl was vulnerable to this kind of attack because
+it uses openssl.
+
+It is believed that this vulnerability is actively exploited in the wild to
+get access to HTTPS protected web-sites.
+
+Please note that renegotiation will be disabled for any application using
+openssl by this update and may cause problems in some cases.
+Additionally this attack is not limited to HTTP.
+
+Solution:
+Update your system with the packages as indicated in
+the referenced security advisory.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=SUSE-SA:2009:057
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("SuSE Security Advisory SUSE-SA:2009:057 (openssl)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("SuSE Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"compat-openssl097g-debuginfo", rpm:"compat-openssl097g-debuginfo~0.9.7g~149.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-debugsource", rpm:"compat-openssl097g-debugsource~0.9.7g~149.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8-debuginfo", rpm:"libopenssl0_9_8-debuginfo~0.9.8k~3.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-debuginfo", rpm:"openssl-debuginfo~0.9.8k~3.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-debugsource", rpm:"openssl-debugsource~0.9.8k~3.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g", rpm:"compat-openssl097g~0.9.7g~149.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl-devel", rpm:"libopenssl-devel~0.9.8k~3.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8", rpm:"libopenssl0_9_8~0.9.8k~3.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.8k~3.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-doc", rpm:"openssl-doc~0.9.8k~3.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-debuginfo", rpm:"compat-openssl097g-debuginfo~0.9.7g~146.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-debugsource", rpm:"compat-openssl097g-debugsource~0.9.7g~146.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-debuginfo", rpm:"openssl-debuginfo~0.9.8h~28.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-debugsource", rpm:"openssl-debugsource~0.9.8h~28.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g", rpm:"compat-openssl097g~0.9.7g~146.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl-devel", rpm:"libopenssl-devel~0.9.8h~28.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8", rpm:"libopenssl0_9_8~0.9.8h~28.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.8h~28.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-doc", rpm:"openssl-doc~0.9.8h~28.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-debuginfo", rpm:"compat-openssl097g-debuginfo~0.9.7g~119.7", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-debugsource", rpm:"compat-openssl097g-debugsource~0.9.7g~119.7", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-debuginfo", rpm:"openssl-debuginfo~0.9.8g~47.10", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-debugsource", rpm:"openssl-debugsource~0.9.8g~47.10", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g", rpm:"compat-openssl097g~0.9.7g~119.7", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl-devel", rpm:"libopenssl-devel~0.9.8g~47.10", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8", rpm:"libopenssl0_9_8~0.9.8g~47.10", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl", rpm:"openssl~0.9.8g~47.10", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-certs", rpm:"openssl-certs~0.9.8g~47.10", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-doc", rpm:"openssl-doc~0.9.8g~47.10", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-certs", rpm:"openssl-certs~0.9.8h~28.2.1", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"openssl-certs", rpm:"openssl-certs~0.9.8h~25.2.13", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-debuginfo-64bit", rpm:"compat-openssl097g-debuginfo-64bit~0.9.7g~146.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-64bit", rpm:"compat-openssl097g-64bit~0.9.7g~146.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8-64bit", rpm:"libopenssl0_9_8-64bit~0.9.8h~28.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-64bit", rpm:"compat-openssl097g-64bit~0.9.7g~119.7", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8-64bit", rpm:"libopenssl0_9_8-64bit~0.9.8g~47.10", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-debuginfo-32bit", rpm:"compat-openssl097g-debuginfo-32bit~0.9.7g~149.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8-debuginfo-32bit", rpm:"libopenssl0_9_8-debuginfo-32bit~0.9.8k~3.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-32bit", rpm:"compat-openssl097g-32bit~0.9.7g~149.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8-32bit", rpm:"libopenssl0_9_8-32bit~0.9.8k~3.5.3", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-debuginfo-32bit", rpm:"compat-openssl097g-debuginfo-32bit~0.9.7g~146.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-32bit", rpm:"compat-openssl097g-32bit~0.9.7g~146.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8-32bit", rpm:"libopenssl0_9_8-32bit~0.9.8h~28.11.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"compat-openssl097g-32bit", rpm:"compat-openssl097g-32bit~0.9.7g~119.7", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"libopenssl0_9_8-32bit", rpm:"libopenssl0_9_8-32bit~0.9.8g~47.10", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/suse_sa_2009_058.nasl
===================================================================
--- trunk/openvas-plugins/scripts/suse_sa_2009_058.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/suse_sa_2009_058.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,131 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory SUSE-SA:2009:058 (java-1_6_0-sun)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66303);
+ script_cve_id("CVE-2009-3864", "CVE-2009-3865", "CVE-2009-3866", "CVE-2009-3867", "CVE-2009-3868", "CVE-2009-3869", "CVE-2009-3871", "CVE-2009-3872", "CVE-2009-3873", "CVE-2009-3874", "CVE-2009-3875", "CVE-2009-3876", "CVE-2009-3877");
+ script_version ("$Revision$");
+ script_name("SuSE Security Advisory SUSE-SA:2009:058 (java-1_6_0-sun)");
+
+ desc = "
+The remote host is missing updates announced in
+advisory SUSE-SA:2009:058.
+
+The Sun Java 6 SDK/JRE was updated to u17 update fixing bugs and
+various security issues. For details, please visit the referenced
+security advisories.
+
+Solution:
+Update your system with the packages as indicated in
+the referenced security advisory.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=SUSE-SA:2009:058
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("SuSE Security Advisory SUSE-SA:2009:058 (java-1_6_0-sun)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("SuSE Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/rpms");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-rpm.inc");
+vuln = 0;
+if(isrpmvuln(pkg:"java-1_6_0-sun", rpm:"java-1_6_0-sun~1.6.0.u17~1.1.1", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-alsa", rpm:"java-1_6_0-sun-alsa~1.6.0.u17~1.1.1", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-devel", rpm:"java-1_6_0-sun-devel~1.6.0.u17~1.1.1", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-jdbc", rpm:"java-1_6_0-sun-jdbc~1.6.0.u17~1.1.1", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-plugin", rpm:"java-1_6_0-sun-plugin~1.6.0.u17~1.1.1", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-src", rpm:"java-1_6_0-sun-src~1.6.0.u17~1.1.1", rls:"openSUSE11.2")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun", rpm:"java-1_6_0-sun~1.6.0.u17~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-alsa", rpm:"java-1_6_0-sun-alsa~1.6.0.u17~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-devel", rpm:"java-1_6_0-sun-devel~1.6.0.u17~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-jdbc", rpm:"java-1_6_0-sun-jdbc~1.6.0.u17~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-plugin", rpm:"java-1_6_0-sun-plugin~1.6.0.u17~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-src", rpm:"java-1_6_0-sun-src~1.6.0.u17~1.1.1", rls:"openSUSE11.1")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun", rpm:"java-1_6_0-sun~1.6.0.u17~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-alsa", rpm:"java-1_6_0-sun-alsa~1.6.0.u17~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-demo", rpm:"java-1_6_0-sun-demo~1.6.0.u17~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-devel", rpm:"java-1_6_0-sun-devel~1.6.0.u17~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-jdbc", rpm:"java-1_6_0-sun-jdbc~1.6.0.u17~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-plugin", rpm:"java-1_6_0-sun-plugin~1.6.0.u17~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+if(isrpmvuln(pkg:"java-1_6_0-sun-src", rpm:"java-1_6_0-sun-src~1.6.0.u17~1.1", rls:"openSUSE11.0")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ubuntu_850_3.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ubuntu_850_3.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/ubuntu_850_3.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,120 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory USN-850-3 (poppler)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66308);
+ script_cve_id("CVE-2009-3603", "CVE-2009-3604", "CVE-2009-3607", "CVE-2009-3608", "CVE-2009-3609");
+ script_version ("$Revision$");
+ script_name("Ubuntu USN-850-3 (poppler)");
+
+ desc = "
+The remote host is missing an update to poppler
+announced via advisory USN-850-3.
+
+Details follow:
+
+USN-850-1 fixed vulnerabilities in poppler. This update provides the
+corresponding updates for Ubuntu 9.10.
+
+Original advisory details:
+
+ It was discovered that poppler contained multiple security issues when
+ parsing malformed PDF documents. If a user or automated system were tricked
+ into opening a crafted PDF file, an attacker could cause a denial of
+ service or execute arbitrary code with privileges of the user invoking the
+ program.
+
+Solution:
+The problem can be corrected by upgrading your system to the
+following package versions:
+
+Ubuntu 9.10:
+ libpoppler-glib4 0.12.0-0ubuntu2.1
+ libpoppler5 0.12.0-0ubuntu2.1
+
+In general, a standard system upgrade is sufficient to effect the
+necessary changes.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=USN-850-3
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Ubuntu USN-850-3 (poppler)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Ubuntu Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libpoppler-dev", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpoppler-glib-dev", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpoppler-glib4", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpoppler-qt-dev", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpoppler-qt2", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpoppler-qt4-3", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpoppler-qt4-dev", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libpoppler5", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"poppler-dbg", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"poppler-utils", ver:"0.12.0-0ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ubuntu_853_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ubuntu_853_1.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/ubuntu_853_1.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,435 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory USN-853-1 (xulrunner-1.9.1)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66304);
+ script_cve_id("CVE-2009-1563", "CVE-2009-3274", "CVE-2009-3370", "CVE-2009-3371", "CVE-2009-3372", "CVE-2009-3373", "CVE-2009-3374", "CVE-2009-3375", "CVE-2009-3376", "CVE-2009-3377", "CVE-2009-3380", "CVE-2009-3381", "CVE-2009-3382", "CVE-2009-3383");
+ script_version ("$Revision$");
+ script_name("Ubuntu USN-853-1 (xulrunner-1.9.1)");
+
+ desc = "
+The remote host is missing an update to xulrunner-1.9.1
+announced via advisory USN-853-1.
+
+A number of security issues affecting xulrunner and Firefox
+have been corrected. For details, please visit the referenced
+security advisories.
+
+Solution:
+The problem can be corrected by upgrading your system to the
+following package versions:
+
+Ubuntu 8.04 LTS:
+ firefox-3.0 3.0.15+nobinonly-0ubuntu0.8.04.1
+ xulrunner-1.9 1.9.0.15+nobinonly-0ubuntu0.8.04.1
+
+Ubuntu 8.10:
+ abrowser 3.0.15+nobinonly-0ubuntu0.8.10.1
+ firefox-3.0 3.0.15+nobinonly-0ubuntu0.8.10.1
+ xulrunner-1.9 1.9.0.15+nobinonly-0ubuntu0.8.10.1
+
+Ubuntu 9.04:
+ abrowser 3.0.15+nobinonly-0ubuntu0.9.04.1
+ firefox-3.0 3.0.15+nobinonly-0ubuntu0.9.04.1
+ xulrunner-1.9 1.9.0.15+nobinonly-0ubuntu0.9.04.1
+
+Ubuntu 9.10:
+ firefox-3.5 3.5.4+nobinonly-0ubuntu0.9.10.1
+ xulrunner-1.9.1 1.9.1.4+nobinonly-0ubuntu0.9.10.1
+
+After a standard system upgrade you need to restart Firefox and any
+applications that use xulrunner, such as Epiphany, to effect the necessary
+changes.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=USN-853-1
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Ubuntu USN-853-1 (xulrunner-1.9.1)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Ubuntu Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"firefox-dev", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso-dev", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-dev", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-venkman", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-libthai", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-venkman", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-dom-inspector", ver:"1.9.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-venkman", ver:"1.9.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-dev", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0", ver:"3.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-dev", ver:"1.9.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-gnome-support", ver:"1.9.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9", ver:"1.9.0.15+nobinonly-0ubuntu0.8.04.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-dev", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso-dev", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-dev", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-venkman", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-libthai", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-venkman", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-dom-inspector", ver:"1.9.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-venkman", ver:"1.9.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser-3.0-branding", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-branding", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-dev", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0", ver:"3.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-dev", ver:"1.9.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-gnome-support", ver:"1.9.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9", ver:"1.9.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-dev", ver:"1.9.0.15+nobinonly-0ubuntu0.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-dev", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso-dev", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-dev", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-venkman", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-granparadiso", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-libthai", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-dom-inspector", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk-venkman", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-trunk", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-dom-inspector", ver:"1.9.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-venkman", ver:"1.9.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser-3.0-branding", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-branding", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-dev", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-gnome-support", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0", ver:"3.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-dev", ver:"1.9.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9-gnome-support", ver:"1.9.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9", ver:"1.9.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-dev", ver:"1.9.0.15+nobinonly-0ubuntu0.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-dev", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.1-dbg", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.1-dev", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-gnome-support", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser-3.0-branding", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser-3.0", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser-3.1-branding", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser-3.1", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser-3.5", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-branding", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-dom-inspector", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-gnome-support", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0-venkman", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.0", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.1-branding", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.1-gnome-support", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.1", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-dom-inspector", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"abrowser-3.5-branding", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.5-branding", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.5-dbg", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.5-dev", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.5-gnome-support", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"firefox-3.5", ver:"3.5.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9.1-dbg", ver:"1.9.1.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9.1-dev", ver:"1.9.1.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9.1-gnome-support", ver:"1.9.1.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9.1-testsuite-dev", ver:"1.9.1.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9.1", ver:"1.9.1.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-dev", ver:"1.9.1.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"xulrunner-1.9.1-testsuite", ver:"1.9.1.4+nobinonly-0ubuntu0.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ubuntu_854_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ubuntu_854_1.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/ubuntu_854_1.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,199 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory USN-854-1 (libgd2)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66306);
+ script_cve_id("CVE-2007-3475", "CVE-2007-3476", "CVE-2007-3477", "CVE-2009-3293", "CVE-2009-3546");
+ script_version ("$Revision$");
+ script_name("Ubuntu USN-854-1 (libgd2)");
+
+ desc = "
+The remote host is missing an update to libgd2
+announced via advisory USN-854-1.
+
+Details follow:
+
+Tomas Hoger discovered that the GD library did not properly handle the
+number of colors in certain malformed GD images. If a user or automated
+system were tricked into processing a specially crafted GD image, an
+attacker could cause a denial of service or possibly execute arbitrary
+code. (CVE-2009-3546)
+
+It was discovered that the GD library did not properly handle incorrect
+color indexes. An attacker could send specially crafted input to
+applications linked against libgd2 and cause a denial of service or
+possibly execute arbitrary code. This issue only affected Ubuntu 6.06 LTS.
+(CVE-2009-3293)
+
+It was discovered that the GD library did not properly handle certain
+malformed GIF images. If a user or automated system were tricked into
+processing a specially crafted GIF image, an attacker could cause a denial
+of service. This issue only affected Ubuntu 6.06 LTS. (CVE-2007-3475,
+CVE-2007-3476)
+
+It was discovered that the GD library did not properly handle large angle
+degree values. An attacker could send specially crafted input to
+applications linked against libgd2 and cause a denial of service. This
+issue only affected Ubuntu 6.06 LTS. (CVE-2007-3477)
+
+Solution:
+The problem can be corrected by upgrading your system to the
+following package versions:
+
+Ubuntu 6.06 LTS:
+ libgd2-noxpm 2.0.33-2ubuntu5.4
+ libgd2-xpm 2.0.33-2ubuntu5.4
+
+Ubuntu 8.04 LTS:
+ libgd2-noxpm 2.0.35.dfsg-3ubuntu2.1
+ libgd2-xpm 2.0.35.dfsg-3ubuntu2.1
+
+Ubuntu 8.10:
+ libgd2-noxpm 2.0.36~rc1~dfsg-3ubuntu1.8.10.1
+ libgd2-xpm 2.0.36~rc1~dfsg-3ubuntu1.8.10.1
+
+Ubuntu 9.04:
+ libgd2-noxpm 2.0.36~rc1~dfsg-3ubuntu1.9.04.1
+ libgd2-xpm 2.0.36~rc1~dfsg-3ubuntu1.9.04.1
+
+Ubuntu 9.10:
+ libgd2-noxpm 2.0.36~rc1~dfsg-3ubuntu1.9.10.1
+ libgd2-xpm 2.0.36~rc1~dfsg-3ubuntu1.9.10.1
+
+In general, a standard system upgrade is sufficient to effect the
+necessary changes.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=USN-854-1
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Ubuntu USN-854-1 (libgd2)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Ubuntu Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libgd2-dev", ver:"2.0.33-2ubuntu5.4", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2", ver:"2.0.33-2ubuntu5.4", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm-dev", ver:"2.0.33-2ubuntu5.4", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm", ver:"2.0.33-2ubuntu5.4", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm-dev", ver:"2.0.33-2ubuntu5.4", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm", ver:"2.0.33-2ubuntu5.4", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd-tools", ver:"2.0.33-2ubuntu5.4", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm-dev", ver:"2.0.35.dfsg-3ubuntu2.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm", ver:"2.0.35.dfsg-3ubuntu2.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm-dev", ver:"2.0.35.dfsg-3ubuntu2.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm", ver:"2.0.35.dfsg-3ubuntu2.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd-tools", ver:"2.0.35.dfsg-3ubuntu2.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm-dev", ver:"2.0.36~rc1~dfsg-3ubuntu1.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm", ver:"2.0.36~rc1~dfsg-3ubuntu1.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm-dev", ver:"2.0.36~rc1~dfsg-3ubuntu1.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm", ver:"2.0.36~rc1~dfsg-3ubuntu1.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd-tools", ver:"2.0.36~rc1~dfsg-3ubuntu1.8.10.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm-dev", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm-dev", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd-tools", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.04.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm-dev", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-noxpm", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm-dev", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd2-xpm", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libgd-tools", ver:"2.0.36~rc1~dfsg-3ubuntu1.9.10.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ubuntu_855_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ubuntu_855_1.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/ubuntu_855_1.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,109 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory USN-855-1 (libhtml-parser-perl)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66305);
+ script_cve_id("CVE-2009-3627");
+ script_version ("$Revision$");
+ script_name("Ubuntu USN-855-1 (libhtml-parser-perl)");
+
+ desc = "
+The remote host is missing an update to libhtml-parser-perl
+announced via advisory USN-855-1.
+
+Details follow:
+
+Mark Martinec discovered that HTML::Parser incorrectly handled strings
+with incomplete entities. An attacker could send specially crafted input to
+applications that use HTML::Parser and cause a denial of service.
+
+Solution:
+The problem can be corrected by upgrading your system to the
+following package versions:
+
+Ubuntu 6.06 LTS:
+ libhtml-parser-perl 3.48-1ubuntu0.1
+
+Ubuntu 8.04 LTS:
+ libhtml-parser-perl 3.56-1ubuntu0.1
+
+Ubuntu 8.10:
+ libhtml-parser-perl 3.56-1ubuntu2.1
+
+Ubuntu 9.04:
+ libhtml-parser-perl 3.59-1ubuntu1.1
+
+Ubuntu 9.10:
+ libhtml-parser-perl 3.61-1ubuntu0.1
+
+In general, a standard system upgrade is sufficient to effect the
+necessary changes.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=USN-855-1
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Ubuntu USN-855-1 (libhtml-parser-perl)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Ubuntu Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libhtml-parser-perl", ver:"3.48-1ubuntu0.1", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libhtml-parser-perl", ver:"3.56-1ubuntu0.1", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libhtml-parser-perl", ver:"3.56-1ubuntu2.1", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libhtml-parser-perl", ver:"3.59-1ubuntu1.1", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libhtml-parser-perl", ver:"3.61-1ubuntu0.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
Added: trunk/openvas-plugins/scripts/ubuntu_856_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/ubuntu_856_1.nasl 2009-11-23 17:01:08 UTC (rev 5947)
+++ trunk/openvas-plugins/scripts/ubuntu_856_1.nasl 2009-11-23 19:51:51 UTC (rev 5948)
@@ -0,0 +1,312 @@
+# OpenVAS Vulnerability Test
+# $Id$
+# Description: Auto-generated from advisory USN-856-1 (cupsys)
+#
+# Authors:
+# Thomas Reinke <reinke at securityspace.com>
+#
+# Copyright:
+# Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com
+# Text descriptions are largely excerpted from the referenced
+# advisory, and are Copyright (c) the respective author(s)
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2,
+# or at your option, GNU General Public License version 3,
+# as published by the Free Software Foundation
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+#
+
+if(description)
+{
+ script_id(66307);
+ script_cve_id("CVE-2009-2820");
+ script_version ("$Revision$");
+ script_name("Ubuntu USN-856-1 (cupsys)");
+
+ desc = "
+The remote host is missing an update to cupsys
+announced via advisory USN-856-1.
+
+Details follow:
+
+Aaron Sigel discovered that the CUPS web interface incorrectly protected
+against cross-site scripting (XSS) and cross-site request forgery (CSRF)
+attacks. If an authenticated user were tricked into visiting a malicious
+website while logged into CUPS, a remote attacker could modify the CUPS
+configuration and possibly steal confidential data.
+
+Solution:
+The problem can be corrected by upgrading your system to the
+following package versions:
+
+Ubuntu 6.06 LTS:
+ cupsys 1.2.2-0ubuntu0.6.06.15
+
+Ubuntu 8.04 LTS:
+ cupsys 1.3.7-1ubuntu3.6
+
+Ubuntu 8.10:
+ cups 1.3.9-2ubuntu9.3
+
+Ubuntu 9.04:
+ cups 1.3.9-17ubuntu3.4
+
+Ubuntu 9.10:
+ cups 1.4.1-5ubuntu2.1
+
+In general, a standard system upgrade is sufficient to effect the
+necessary changes.
+
+https://secure1.securityspace.com/smysecure/catid.html?in=USN-856-1
+
+Risk factor : High";
+
+ script_description(desc);
+
+ script_summary("Ubuntu USN-856-1 (cupsys)");
+
+ script_category(ACT_GATHER_INFO);
+
+ script_copyright("Copyright (c) 2009 E-Soft Inc. http://www.securityspace.com");
+ script_family("Ubuntu Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/packages");
+ exit(0);
+}
+
+#
+# The script code starts here
+#
+
+include("revisions-lib.inc");
+include("pkg-lib-deb.inc");
+vuln = 0;
+if(isdpkgvuln(pkg:"libcupsys2-gnutls10", ver:"1.2.2-0ubuntu0.6.06.15", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-bsd", ver:"1.2.2-0ubuntu0.6.06.15", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-client", ver:"1.2.2-0ubuntu0.6.06.15", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys", ver:"1.2.2-0ubuntu0.6.06.15", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2-dev", ver:"1.2.2-0ubuntu0.6.06.15", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2", ver:"1.2.2-0ubuntu0.6.06.15", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2-dev", ver:"1.2.2-0ubuntu0.6.06.15", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2", ver:"1.2.2-0ubuntu0.6.06.15", rls:"UBUNTU6.06 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-common", ver:"1.3.7-1ubuntu3.6", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-bsd", ver:"1.3.7-1ubuntu3.6", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-client", ver:"1.3.7-1ubuntu3.6", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys", ver:"1.3.7-1ubuntu3.6", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2-dev", ver:"1.3.7-1ubuntu3.6", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2", ver:"1.3.7-1ubuntu3.6", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2-dev", ver:"1.3.7-1ubuntu3.6", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2", ver:"1.3.7-1ubuntu3.6", rls:"UBUNTU8.04 LTS")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-common", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-bsd", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-client", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-dbg", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2-dev", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-common", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-bsd", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-client", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-dbg", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcups2-dev", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcups2", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2-dev", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2", ver:"1.3.9-2ubuntu9.3", rls:"UBUNTU8.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-common", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-dbg", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2-dev", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-bsd", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-client", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-common", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsys2", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-bsd", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-client", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-dbg", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcups2-dev", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcups2", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2-dev", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2", ver:"1.3.9-17ubuntu3.4", rls:"UBUNTU9.04")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-common", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-dbg", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsddk", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-bsd", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-client", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys-common", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cupsys", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-bsd", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-client", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-dbg", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcups2-dev", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcups2", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupscgi1-dev", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupscgi1", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsdriver1-dev", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsdriver1", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2-dev", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsimage2", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsmime1-dev", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsmime1", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsppdc1-dev", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"libcupsppdc1", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+if(isdpkgvuln(pkg:"cups-ppdc", ver:"1.4.1-5ubuntu2.1", rls:"UBUNTU9.10")) {
+ vuln = 1;
+}
+
+if(vuln) {
+ security_hole(0);
+}
More information about the Openvas-commits
mailing list