[Openvas-commits] r8863 - in trunk/openvas-plugins: . scripts
scm-commit@wald.intevation.org
scm-commit at wald.intevation.org
Fri Aug 20 14:57:28 CEST 2010
Author: veerendragg
Date: 2010-08-20 14:57:11 +0200 (Fri, 20 Aug 2010)
New Revision: 8863
Added:
trunk/openvas-plugins/scripts/gb_CESA-2010_0488_samba_centos3_i386.nasl
trunk/openvas-plugins/scripts/gb_CESA-2010_0490_cups_centos3_i386.nasl
trunk/openvas-plugins/scripts/gb_CESA-2010_0499_seamonkey_centos3_i386.nasl
trunk/openvas-plugins/scripts/gb_CESA-2010_0520_libtiff_centos3_i386.nasl
trunk/openvas-plugins/scripts/gb_CESA-2010_0534_libpng10_centos3_i386.nasl
trunk/openvas-plugins/scripts/gb_CESA-2010_0546_seamonkey_centos3_i386.nasl
trunk/openvas-plugins/scripts/gb_CESA-2010_0557_seamonkey_centos3_i386.nasl
trunk/openvas-plugins/scripts/gb_CESA-2010_0577_freetype_centos3_i386.nasl
trunk/openvas-plugins/scripts/gb_CESA-2010_0607_freetype_centos3_i386.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_11143_mipv6-daemon_fc12.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_11152_mipv6-daemon_fc13.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_11325_ghostscript_fc13.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_11376_ghostscript_fc12.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_11382_gnupg2_fc12.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_12252_iputils_fc12.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_12256_freeciv_fc13.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_12262_freeciv_fc12.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_13129_sunbird_fc13.nasl
trunk/openvas-plugins/scripts/gb_fedora_2010_13129_thunderbird_fc13.nasl
trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_151.nasl
trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_152.nasl
trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_153.nasl
trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_154.nasl
trunk/openvas-plugins/scripts/gb_ubuntu_USN_971_1.nasl
trunk/openvas-plugins/scripts/gb_ubuntu_USN_972_1.nasl
trunk/openvas-plugins/scripts/gb_ubuntu_USN_973_1.nasl
trunk/openvas-plugins/scripts/gb_ubuntu_USN_974_1.nasl
Modified:
trunk/openvas-plugins/ChangeLog
Log:
Added new LSC's.
Modified: trunk/openvas-plugins/ChangeLog
===================================================================
--- trunk/openvas-plugins/ChangeLog 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/ChangeLog 2010-08-20 12:57:11 UTC (rev 8863)
@@ -1,3 +1,34 @@
+2010-08-13 Veerendra G.G <veerendragg at secpod.com>
+
+ * scripts/gb_fedora_2010_11152_mipv6-daemon_fc13.nasl,
+ scripts/gb_fedora_2010_13129_sunbird_fc13.nasl,
+ scripts/gb_mandriva_MDVSA_2010_154.nasl,
+ scripts/gb_ubuntu_USN_973_1.nasl,
+ scripts/gb_mandriva_MDVSA_2010_151.nasl,
+ scripts/gb_CESA-2010_0488_samba_centos3_i386.nasl,
+ scripts/gb_fedora_2010_12262_freeciv_fc12.nasl,
+ scripts/gb_CESA-2010_0546_seamonkey_centos3_i386.nasl,
+ scripts/gb_fedora_2010_11325_ghostscript_fc13.nasl,
+ scripts/gb_fedora_2010_12256_freeciv_fc13.nasl,
+ scripts/gb_ubuntu_USN_972_1.nasl,
+ scripts/gb_mandriva_MDVSA_2010_152.nasl,
+ scripts/gb_fedora_2010_12252_iputils_fc12.nasl,
+ scripts/gb_CESA-2010_0607_freetype_centos3_i386.nasl,
+ scripts/gb_ubuntu_USN_974_1.nasl,
+ scripts/gb_fedora_2010_11382_gnupg2_fc12.nasl,
+ scripts/gb_ubuntu_USN_971_1.nasl,
+ scripts/gb_mandriva_MDVSA_2010_153.nasl,
+ scripts/gb_CESA-2010_0577_freetype_centos3_i386.nasl,
+ scripts/gb_CESA-2010_0520_libtiff_centos3_i386.nasl,
+ scripts/gb_CESA-2010_0499_seamonkey_centos3_i386.nasl,
+ scripts/gb_fedora_2010_13129_thunderbird_fc13.nasl,
+ scripts/gb_CESA-2010_0557_seamonkey_centos3_i386.nasl,
+ scripts/gb_CESA-2010_0490_cups_centos3_i386.nasl,
+ scripts/gb_CESA-2010_0534_libpng10_centos3_i386.nasl,
+ scripts/gb_fedora_2010_11376_ghostscript_fc12.nasl,
+ scripts/gb_fedora_2010_11143_mipv6-daemon_fc12.nasl:
+ Added new LSC's.
+
2010-08-19 Chandrashekhar B <bchandra at secpod.com>
* scripts/gb_wireshark_dissector_dos_vuln_win.nasl,
Added: trunk/openvas-plugins/scripts/gb_CESA-2010_0488_samba_centos3_i386.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_CESA-2010_0488_samba_centos3_i386.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_CESA-2010_0488_samba_centos3_i386.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,112 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# CentOS Update for samba CESA-2010:0488 centos3 i386
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(880408);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"7.5");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "CESA", value: "2010:0488");
+ script_cve_id("CVE-2010-2063");
+ script_name("CentOS Update for samba CESA-2010:0488 centos3 i386");
+ desc = "
+
+ Vulnerability Insight:
+ Samba is a suite of programs used by machines to share files, printers, and
+ other information.
+
+ An input sanitization flaw was found in the way Samba parsed client data. A
+ malicious client could send a specially-crafted SMB packet to the Samba
+ server, resulting in arbitrary code execution with the privileges of the
+ Samba server (smbd). (CVE-2010-2063)
+
+ Red Hat would like to thank the Samba team for responsibly reporting this
+ issue. Upstream acknowledges Jun Mao as the original reporter.
+
+ Users of Samba are advised to upgrade to these updated packages, which
+ contain a backported patch to resolve this issue. After installing this
+ update, the smb service will be restarted automatically.
+
+
+ Affected Software/OS:
+ samba on CentOS 3
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.centos.org/pipermail/centos-announce/2010-August/016910.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of samba");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "CentOS3")
+{
+
+ if(isrpmvuln(pkg:"samba", rpm:"samba~3.0.9~1.3E.17", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"samba-client", rpm:"samba-client~3.0.9~1.3E.17", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"samba-common", rpm:"samba-common~3.0.9~1.3E.17", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"samba-swat", rpm:"samba-swat~3.0.9~1.3E.17", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_CESA-2010_0490_cups_centos3_i386.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_CESA-2010_0490_cups_centos3_i386.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_CESA-2010_0490_cups_centos3_i386.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,126 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# CentOS Update for cups CESA-2010:0490 centos3 i386
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(880407);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"6.8");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "CESA", value: "2010:0490");
+ script_cve_id("CVE-2010-0540", "CVE-2010-0542", "CVE-2010-1748");
+ script_name("CentOS Update for cups CESA-2010:0490 centos3 i386");
+ desc = "
+
+ Vulnerability Insight:
+ The Common UNIX Printing System (CUPS) provides a portable printing layer
+ for UNIX operating systems. The CUPS "texttops" filter converts text files
+ to PostScript.
+
+ A missing memory allocation failure check flaw, leading to a NULL pointer
+ dereference, was found in the CUPS "texttops" filter. An attacker could
+ create a malicious text file that would cause "texttops" to crash or,
+ potentially, execute arbitrary code as the "lp" user if the file was
+ printed. (CVE-2010-0542)
+
+ A Cross-Site Request Forgery (CSRF) issue was found in the CUPS web
+ interface. If a remote attacker could trick a user, who is logged into the
+ CUPS web interface as an administrator, into visiting a specially-crafted
+ website, the attacker could reconfigure and disable CUPS, and gain access
+ to print jobs and system files. (CVE-2010-0540)
+
+ Note: As a result of the fix for CVE-2010-0540, cookies must now be enabled
+ in your web browser to use the CUPS web interface.
+
+ An uninitialized memory read issue was found in the CUPS web interface. If
+ an attacker had access to the CUPS web interface, they could use a
+ specially-crafted URL to leverage this flaw to read a limited amount of
+ memory from the cupsd process, possibly obtaining sensitive information.
+ (CVE-2010-1748)
+
+ Red Hat would like to thank the Apple Product Security team for responsibly
+ reporting these issues. Upstream acknowledges regenrecht as the original
+ reporter of CVE-2010-0542; Adrian 'pagvac' Pastor of GNUCITIZEN and Tim
+ Starling as the original reporters of CVE-2010-0540; and Luca Carettoni as
+ the original reporter of CVE-2010-1748.
+
+ Users of cups are advised to upgrade to these updated packages, which
+ contain backported patches to correct these issues. After installing this
+ update, the cupsd daemon will be restarted automatically.
+
+
+ Affected Software/OS:
+ cups on CentOS 3
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.centos.org/pipermail/centos-announce/2010-August/016914.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of cups");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "CentOS3")
+{
+
+ if(isrpmvuln(pkg:"cups", rpm:"cups~1.1.17~13.3.65", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"cups-devel", rpm:"cups-devel~1.1.17~13.3.65", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"cups-libs", rpm:"cups-libs~1.1.17~13.3.65", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_CESA-2010_0499_seamonkey_centos3_i386.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_CESA-2010_0499_seamonkey_centos3_i386.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_CESA-2010_0499_seamonkey_centos3_i386.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,166 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# CentOS Update for seamonkey CESA-2010:0499 centos3 i386
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(880404);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"9.3");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "CESA", value: "2010:0499");
+ script_cve_id("CVE-2010-0163", "CVE-2010-1197", "CVE-2010-1198", "CVE-2010-1199", "CVE-2010-1200");
+ script_name("CentOS Update for seamonkey CESA-2010:0499 centos3 i386");
+ desc = "
+
+ Vulnerability Insight:
+ SeaMonkey is an open source web browser, email and newsgroup client, IRC
+ chat client, and HTML editor.
+
+ Several flaws were found in the processing of malformed web content. A web
+ page containing malicious content could cause SeaMonkey to crash or,
+ potentially, execute arbitrary code with the privileges of the user running
+ SeaMonkey. (CVE-2010-1200)
+
+ A flaw was found in the way browser plug-ins interact. It was possible for
+ a plug-in to reference the freed memory from a different plug-in, resulting
+ in the execution of arbitrary code with the privileges of the user running
+ SeaMonkey. (CVE-2010-1198)
+
+ An integer overflow flaw was found in the processing of malformed web
+ content. A web page containing malicious content could cause SeaMonkey to
+ crash or, potentially, execute arbitrary code with the privileges of the
+ user running SeaMonkey. (CVE-2010-1199)
+
+ A flaw was found in the way SeaMonkey processed mail attachments. A
+ specially-crafted mail message could cause SeaMonkey to crash.
+ (CVE-2010-0163)
+
+ A flaw was found in the way SeaMonkey handled the "Content-Disposition:
+ attachment" HTTP header when the "Content-Type: multipart" HTTP header was
+ also present. A website that allows arbitrary uploads and relies on the
+ "Content-Disposition: attachment" HTTP header to prevent content from being
+ displayed inline, could be used by an attacker to serve malicious content
+ to users. (CVE-2010-1197)
+
+ All SeaMonkey users should upgrade to these updated packages, which correct
+ these issues. After installing the update, SeaMonkey must be restarted for
+ the changes to take effect.
+
+
+ Affected Software/OS:
+ seamonkey on CentOS 3
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.centos.org/pipermail/centos-announce/2010-August/016912.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of seamonkey");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "CentOS3")
+{
+
+ if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-chat", rpm:"seamonkey-chat~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-devel", rpm:"seamonkey-devel~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-dom-inspector", rpm:"seamonkey-dom-inspector~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-js-debugger", rpm:"seamonkey-js-debugger~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-mail", rpm:"seamonkey-mail~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nspr", rpm:"seamonkey-nspr~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nspr-devel", rpm:"seamonkey-nspr-devel~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nss", rpm:"seamonkey-nss~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nss-devel", rpm:"seamonkey-nss-devel~1.0.9~0.55.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_CESA-2010_0520_libtiff_centos3_i386.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_CESA-2010_0520_libtiff_centos3_i386.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_CESA-2010_0520_libtiff_centos3_i386.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,107 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# CentOS Update for libtiff CESA-2010:0520 centos3 i386
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(880411);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"6.8");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "CESA", value: "2010:0520");
+ script_cve_id("CVE-2010-1411", "CVE-2010-2598");
+ script_name("CentOS Update for libtiff CESA-2010:0520 centos3 i386");
+ desc = "
+
+ Vulnerability Insight:
+ The libtiff packages contain a library of functions for manipulating Tagged
+ Image File Format (TIFF) files.
+
+ Multiple integer overflow flaws, leading to a buffer overflow, were
+ discovered in libtiff. An attacker could use these flaws to create a
+ specially-crafted TIFF file that, when opened, would cause an application
+ linked against libtiff to crash or, possibly, execute arbitrary code.
+ (CVE-2010-1411)
+
+ An input validation flaw was discovered in libtiff. An attacker could use
+ this flaw to create a specially-crafted TIFF file that, when opened, would
+ cause an application linked against libtiff to crash. (CVE-2010-2598)
+
+ Red Hat would like to thank Apple Product Security for responsibly
+ reporting the CVE-2010-1411 flaw, who credit Kevin Finisterre of
+ digitalmunition.com for the discovery of the issue.
+
+ All libtiff users are advised to upgrade to these updated packages, which
+ contain backported patches to resolve these issues. All running
+ applications linked against libtiff must be restarted for this update to
+ take effect.
+
+
+ Affected Software/OS:
+ libtiff on CentOS 3
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.centos.org/pipermail/centos-announce/2010-August/016916.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of libtiff");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "CentOS3")
+{
+
+ if(isrpmvuln(pkg:"libtiff", rpm:"libtiff~3.5.7~34.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libtiff-devel", rpm:"libtiff-devel~3.5.7~34.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_CESA-2010_0534_libpng10_centos3_i386.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_CESA-2010_0534_libpng10_centos3_i386.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_CESA-2010_0534_libpng10_centos3_i386.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,129 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# CentOS Update for libpng10 CESA-2010:0534 centos3 i386
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(880409);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"7.8");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "CESA", value: "2010:0534");
+ script_cve_id("CVE-2009-2042", "CVE-2010-0205", "CVE-2010-1205", "CVE-2010-2249");
+ script_name("CentOS Update for libpng10 CESA-2010:0534 centos3 i386");
+ desc = "
+
+ Vulnerability Insight:
+ The libpng packages contain a library of functions for creating and
+ manipulating PNG (Portable Network Graphics) image format files.
+
+ A memory corruption flaw was found in the way applications, using the
+ libpng library and its progressive reading method, decoded certain PNG
+ images. An attacker could create a specially-crafted PNG image that, when
+ opened, could cause an application using libpng to crash or, potentially,
+ execute arbitrary code with the privileges of the user running the
+ application. (CVE-2010-1205)
+
+ A denial of service flaw was found in the way applications using the libpng
+ library decoded PNG images that have certain, highly compressed ancillary
+ chunks. An attacker could create a specially-crafted PNG image that could
+ cause an application using libpng to consume excessive amounts of memory
+ and CPU time, and possibly crash. (CVE-2010-0205)
+
+ A memory leak flaw was found in the way applications using the libpng
+ library decoded PNG images that use the Physical Scale (sCAL) extension. An
+ attacker could create a specially-crafted PNG image that could cause an
+ application using libpng to exhaust all available memory and possibly crash
+ or exit. (CVE-2010-2249)
+
+ A sensitive information disclosure flaw was found in the way applications
+ using the libpng library processed 1-bit interlaced PNG images. An attacker
+ could create a specially-crafted PNG image that could cause an application
+ using libpng to disclose uninitialized memory. (CVE-2009-2042)
+
+ Users of libpng and libpng10 should upgrade to these updated packages,
+ which contain backported patches to correct these issues. All running
+ applications using libpng or libpng10 must be restarted for the update to
+ take effect.
+
+
+ Affected Software/OS:
+ libpng10 on CentOS 3
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.centos.org/pipermail/centos-announce/2010-August/016918.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of libpng10");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "CentOS3")
+{
+
+ if(isrpmvuln(pkg:"libpng10", rpm:"libpng10~1.0.13~21", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libpng10-devel", rpm:"libpng10-devel~1.0.13~21", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libpng", rpm:"libpng~1.2.2~30", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libpng-devel", rpm:"libpng-devel~1.2.2~30", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_CESA-2010_0546_seamonkey_centos3_i386.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_CESA-2010_0546_seamonkey_centos3_i386.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_CESA-2010_0546_seamonkey_centos3_i386.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,160 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# CentOS Update for seamonkey CESA-2010:0546 centos3 i386
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(880410);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"9.3");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "CESA", value: "2010:0546");
+ script_cve_id("CVE-2010-1205", "CVE-2010-1211", "CVE-2010-1214", "CVE-2010-2751", "CVE-2010-2753", "CVE-2010-2754");
+ script_name("CentOS Update for seamonkey CESA-2010:0546 centos3 i386");
+ desc = "
+
+ Vulnerability Insight:
+ SeaMonkey is an open source web browser, email and newsgroup client, IRC
+ chat client, and HTML editor.
+
+ Several flaws were found in the processing of malformed web content. A web
+ page containing malicious content could cause SeaMonkey to crash or,
+ potentially, execute arbitrary code with the privileges of the user running
+ SeaMonkey. (CVE-2010-1211, CVE-2010-2753, CVE-2010-1214)
+
+ A memory corruption flaw was found in the way SeaMonkey decoded certain PNG
+ images. An attacker could create a specially-crafted PNG image that, when
+ opened, could cause SeaMonkey to crash or, potentially, execute arbitrary
+ code with the privileges of the user running SeaMonkey. (CVE-2010-1205)
+
+ A same-origin policy bypass flaw was found in SeaMonkey. An attacker could
+ create a malicious web page that, when viewed by a victim, could steal
+ private data from a different website the victim has loaded with SeaMonkey.
+ (CVE-2010-2754)
+
+ A flaw was found in the way SeaMonkey displayed the location bar when
+ visiting a secure web page. A malicious server could use this flaw to
+ present data that appears to originate from a secure server, even though it
+ does not. (CVE-2010-2751)
+
+ All SeaMonkey users should upgrade to these updated packages, which correct
+ these issues. After installing the update, SeaMonkey must be restarted for
+ the changes to take effect.
+
+
+ Affected Software/OS:
+ seamonkey on CentOS 3
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.centos.org/pipermail/centos-announce/2010-August/016924.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of seamonkey");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "CentOS3")
+{
+
+ if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-chat", rpm:"seamonkey-chat~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-devel", rpm:"seamonkey-devel~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-dom-inspector", rpm:"seamonkey-dom-inspector~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-js-debugger", rpm:"seamonkey-js-debugger~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-mail", rpm:"seamonkey-mail~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nspr", rpm:"seamonkey-nspr~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nspr-devel", rpm:"seamonkey-nspr-devel~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nss", rpm:"seamonkey-nss~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nss-devel", rpm:"seamonkey-nss-devel~1.0.9~0.57.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_CESA-2010_0557_seamonkey_centos3_i386.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_CESA-2010_0557_seamonkey_centos3_i386.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_CESA-2010_0557_seamonkey_centos3_i386.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,145 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# CentOS Update for seamonkey CESA-2010:0557 centos3 i386
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(880405);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"10.0");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "CESA", value: "2010:0557");
+ script_cve_id("CVE-2010-2755");
+ script_name("CentOS Update for seamonkey CESA-2010:0557 centos3 i386");
+ desc = "
+
+ Vulnerability Insight:
+ SeaMonkey is an open source web browser, email and newsgroup client, IRC
+ chat client, and HTML editor.
+
+ An invalid free flaw was found in SeaMonkey's plugin handler. Malicious web
+ content could result in an invalid memory pointer being freed, causing
+ SeaMonkey to crash or, potentially, execute arbitrary code with the
+ privileges of the user running SeaMonkey. (CVE-2010-2755)
+
+ All SeaMonkey users should upgrade to these updated packages, which correct
+ this issue. After installing the update, SeaMonkey must be restarted for
+ the changes to take effect.
+
+
+ Affected Software/OS:
+ seamonkey on CentOS 3
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.centos.org/pipermail/centos-announce/2010-August/016926.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of seamonkey");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "CentOS3")
+{
+
+ if(isrpmvuln(pkg:"seamonkey", rpm:"seamonkey~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-chat", rpm:"seamonkey-chat~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-devel", rpm:"seamonkey-devel~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-dom-inspector", rpm:"seamonkey-dom-inspector~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-js-debugger", rpm:"seamonkey-js-debugger~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-mail", rpm:"seamonkey-mail~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nspr", rpm:"seamonkey-nspr~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nspr-devel", rpm:"seamonkey-nspr-devel~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nss", rpm:"seamonkey-nss~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"seamonkey-nss-devel", rpm:"seamonkey-nss-devel~1.0.9~0.58.el3.centos3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_CESA-2010_0577_freetype_centos3_i386.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_CESA-2010_0577_freetype_centos3_i386.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_CESA-2010_0577_freetype_centos3_i386.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,123 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# CentOS Update for freetype CESA-2010:0577 centos3 i386
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(880403);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "CESA", value: "2010:0577");
+ script_cve_id("CVE-2010-2500", "CVE-2010-2527", "CVE-2010-2541");
+ script_name("CentOS Update for freetype CESA-2010:0577 centos3 i386");
+ desc = "
+
+ Vulnerability Insight:
+ FreeType is a free, high-quality, portable font engine that can open and
+ manage font files. It also loads, hints, and renders individual glyphs
+ efficiently. These packages provide both the FreeType 1 and FreeType 2 font
+ engines.
+
+ An integer overflow flaw was found in the way the FreeType font engine
+ processed font files. If a user loaded a carefully-crafted font file with
+ an application linked against FreeType, it could cause the application to
+ crash or, possibly, execute arbitrary code with the privileges of the user
+ running the application. (CVE-2010-2500)
+
+ Several buffer overflow flaws were found in the FreeType demo applications.
+ If a user loaded a carefully-crafted font file with a demo application, it
+ could cause the application to crash or, possibly, execute arbitrary code
+ with the privileges of the user running the application. (CVE-2010-2527,
+ CVE-2010-2541)
+
+ Red Hat would like to thank Robert Swiecki of the Google Security Team for
+ the discovery of the CVE-2010-2500 and CVE-2010-2527 issues.
+
+ Note: All of the issues in this erratum only affect the FreeType 2 font
+ engine.
+
+ Users are advised to upgrade to these updated packages, which contain
+ backported patches to correct these issues. The X server must be restarted
+ (log out, then log back in) for this update to take effect.
+
+
+ Affected Software/OS:
+ freetype on CentOS 3
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.centos.org/pipermail/centos-announce/2010-August/016920.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of freetype");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "CentOS3")
+{
+
+ if(isrpmvuln(pkg:"freetype", rpm:"freetype~2.1.4~15.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"freetype-devel", rpm:"freetype-devel~2.1.4~15.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"freetype-demos", rpm:"freetype-demos~2.1.4~15.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"freetype-utils", rpm:"freetype-utils~2.1.4~15.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_CESA-2010_0607_freetype_centos3_i386.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_CESA-2010_0607_freetype_centos3_i386.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_CESA-2010_0607_freetype_centos3_i386.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,120 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# CentOS Update for freetype CESA-2010:0607 centos3 i386
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(880406);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"9.3");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "CESA", value: "2010:0607");
+ script_cve_id("CVE-2010-1797");
+ script_name("CentOS Update for freetype CESA-2010:0607 centos3 i386");
+ desc = "
+
+ Vulnerability Insight:
+ FreeType is a free, high-quality, portable font engine that can open and
+ manage font files. It also loads, hints, and renders individual glyphs
+ efficiently. The freetype packages for Red Hat Enterprise Linux 3 and 4
+ provide both the FreeType 1 and FreeType 2 font engines. The freetype
+ packages for Red Hat Enterprise Linux 5 provide only the FreeType 2 font
+ engine.
+
+ Two stack overflow flaws were found in the way the FreeType font engine
+ processed certain Compact Font Format (CFF) character strings (opcodes). If
+ a user loaded a specially-crafted font file with an application linked
+ against FreeType, it could cause the application to crash or, possibly,
+ execute arbitrary code with the privileges of the user running the
+ application. (CVE-2010-1797)
+
+ Red Hat would like to thank Braden Thomas of the Apple Product Security
+ team for reporting these issues.
+
+ Note: CVE-2010-1797 only affects the FreeType 2 font engine.
+
+ Users are advised to upgrade to these updated packages, which contain a
+ backported patch to correct these issues. The X server must be restarted
+ (log out, then log back in) for this update to take effect.
+
+
+ Affected Software/OS:
+ freetype on CentOS 3
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.centos.org/pipermail/centos-announce/2010-August/016922.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of freetype");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("CentOS Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "CentOS3")
+{
+
+ if(isrpmvuln(pkg:"freetype", rpm:"freetype~2.1.4~16.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"freetype-devel", rpm:"freetype-devel~2.1.4~16.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"freetype-demos", rpm:"freetype-demos~2.1.4~16.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"freetype-utils", rpm:"freetype-utils~2.1.4~16.el3", rls:"CentOS3"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_11143_mipv6-daemon_fc12.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_11143_mipv6-daemon_fc12.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_11143_mipv6-daemon_fc12.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,82 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for mipv6-daemon FEDORA-2010-11143
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862320);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"10.0");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "FEDORA", value: "2010-11143");
+ script_cve_id("CVE-2010-2522", "CVE-2010-2523");
+ script_name("Fedora Update for mipv6-daemon FEDORA-2010-11143");
+ desc = "
+
+ Vulnerability Insight:
+ The mobile IPv6 daemon allows nodes to remain
+ reachable while moving around in the IPv6 Internet.
+
+
+ Affected Software/OS:
+ mipv6-daemon on Fedora 12
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045496.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of mipv6-daemon");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC12")
+{
+
+ if(isrpmvuln(pkg:"mipv6-daemon", rpm:"mipv6-daemon~0.4~5.fc12", rls:"FC12"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_11152_mipv6-daemon_fc13.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_11152_mipv6-daemon_fc13.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_11152_mipv6-daemon_fc13.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,82 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for mipv6-daemon FEDORA-2010-11152
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862327);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"10.0");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "FEDORA", value: "2010-11152");
+ script_cve_id("CVE-2010-2522", "CVE-2010-2523");
+ script_name("Fedora Update for mipv6-daemon FEDORA-2010-11152");
+ desc = "
+
+ Vulnerability Insight:
+ The mobile IPv6 daemon allows nodes to remain
+ reachable while moving around in the IPv6 Internet.
+
+
+ Affected Software/OS:
+ mipv6-daemon on Fedora 13
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045524.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of mipv6-daemon");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC13")
+{
+
+ if(isrpmvuln(pkg:"mipv6-daemon", rpm:"mipv6-daemon~0.4~5.fc13", rls:"FC13"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_11325_ghostscript_fc13.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_11325_ghostscript_fc13.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_11325_ghostscript_fc13.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,93 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for ghostscript FEDORA-2010-11325
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862328);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"7.5");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "FEDORA", value: "2010-11325");
+ script_cve_id("CVE-2010-1628");
+ script_name("Fedora Update for ghostscript FEDORA-2010-11325");
+ desc = "
+
+ Vulnerability Insight:
+ Ghostscript is a set of software that provides a PostScript
+ interpreter, a set of C procedures (the Ghostscript library, which
+ implements the graphics capabilities in the PostScript language) and
+ an interpreter for Portable Document Format (PDF) files. Ghostscript
+ translates PostScript code into many common, bitmapped formats, like
+ those understood by your printer or screen. Ghostscript is normally
+ used to display PostScript files and to print PostScript files to
+ non-PostScript printers.
+
+ If you need to display PostScript files or print them to
+ non-PostScript printers, you should install ghostscript. If you
+ install ghostscript, you also need to install the ghostscript-fonts
+ package.
+
+
+ Affected Software/OS:
+ ghostscript on Fedora 13
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045500.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of ghostscript");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC13")
+{
+
+ if(isrpmvuln(pkg:"ghostscript", rpm:"ghostscript~8.71~10.fc13", rls:"FC13"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_11376_ghostscript_fc12.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_11376_ghostscript_fc12.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_11376_ghostscript_fc12.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,93 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for ghostscript FEDORA-2010-11376
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862322);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"9.3");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "FEDORA", value: "2010-11376");
+ script_cve_id("CVE-2010-1628", "CVE-2009-4270");
+ script_name("Fedora Update for ghostscript FEDORA-2010-11376");
+ desc = "
+
+ Vulnerability Insight:
+ Ghostscript is a set of software that provides a PostScript
+ interpreter, a set of C procedures (the Ghostscript library, which
+ implements the graphics capabilities in the PostScript language) and
+ an interpreter for Portable Document Format (PDF) files. Ghostscript
+ translates PostScript code into many common, bitmapped formats, like
+ those understood by your printer or screen. Ghostscript is normally
+ used to display PostScript files and to print PostScript files to
+ non-PostScript printers.
+
+ If you need to display PostScript files or print them to
+ non-PostScript printers, you should install ghostscript. If you
+ install ghostscript, you also need to install the ghostscript-fonts
+ package.
+
+
+ Affected Software/OS:
+ ghostscript on Fedora 12
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045568.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of ghostscript");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC12")
+{
+
+ if(isrpmvuln(pkg:"ghostscript", rpm:"ghostscript~8.71~7.fc12", rls:"FC12"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_11382_gnupg2_fc12.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_11382_gnupg2_fc12.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_11382_gnupg2_fc12.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,96 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for gnupg2 FEDORA-2010-11382
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862319);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "FEDORA", value: "2010-11382");
+ script_name("Fedora Update for gnupg2 FEDORA-2010-11382");
+ desc = "
+
+ Vulnerability Insight:
+ GnuPG is GNU's tool for secure communication and data storage. It can
+ be used to encrypt data and to create digital signatures. It includes
+ an advanced key management facility and is compliant with the proposed
+ OpenPGP Internet standard as described in RFC2440 and the S/MIME
+ standard as described by several RFCs.
+
+ GnuPG 2.0 is the stable version of GnuPG integrating support for
+ OpenPGP and S/MIME. It does not conflict with an installed 1.x
+ OpenPGP-only version.
+
+ GnuPG 2.0 is a newer version of GnuPG with additional support for
+ S/MIME. It has a different design philosophy that splits
+ functionality up into several modules. Both versions may be installed
+ simultaneously without any conflict (gpg is called gpg2 in GnuPG 2).
+ In fact, the gpg version from GnuPG 1.x is able to make use of the
+ gpg-agent as included in GnuPG 2 and allows for seamless passphrase
+ caching. The advantage of GnupG 1.x is its smaller size and no
+ dependency on other modules at run and build time.
+
+
+ Affected Software/OS:
+ gnupg2 on Fedora 12
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045878.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of gnupg2");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC12")
+{
+
+ if(isrpmvuln(pkg:"gnupg2", rpm:"gnupg2~2.0.13~2.fc12", rls:"FC12"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_12252_iputils_fc12.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_12252_iputils_fc12.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_12252_iputils_fc12.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,84 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for iputils FEDORA-2010-12252
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862324);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"5.0");
+ script_tag(name:"risk_factor", value:"Medium");
+ script_xref(name: "FEDORA", value: "2010-12252");
+ script_cve_id("CVE-2010-2529");
+ script_name("Fedora Update for iputils FEDORA-2010-12252");
+ desc = "
+
+ Vulnerability Insight:
+ The iputils package contains basic utilities for monitoring a network,
+ including ping. The ping command sends a series of ICMP protocol
+ ECHO_REQUEST packets to a specified network host to discover whether
+ the target machine is alive and receiving network traffic.
+
+
+ Affected Software/OS:
+ iputils on Fedora 12
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045560.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of iputils");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC12")
+{
+
+ if(isrpmvuln(pkg:"iputils", rpm:"iputils~20071127~12.fc12", rls:"FC12"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_12256_freeciv_fc13.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_12256_freeciv_fc13.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_12256_freeciv_fc13.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,85 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for freeciv FEDORA-2010-12256
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862321);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"10.0");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "FEDORA", value: "2010-12256");
+ script_cve_id("CVE-2010-2445");
+ script_name("Fedora Update for freeciv FEDORA-2010-12256");
+ desc = "
+
+ Vulnerability Insight:
+ Freeciv is a turn-based, multi-player, X based strategy game. Freeciv
+ is generally comparable to, and has compatible rules with, the
+ Civilization II(R) game by Microprose(R). In Freeciv, each player is
+ the leader of a civilization, and is competing with the other players
+ in order to become the leader of the greatest civilization.
+
+
+ Affected Software/OS:
+ freeciv on Fedora 13
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045953.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of freeciv");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC13")
+{
+
+ if(isrpmvuln(pkg:"freeciv", rpm:"freeciv~2.2.2~1.fc13", rls:"FC13"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_12262_freeciv_fc12.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_12262_freeciv_fc12.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_12262_freeciv_fc12.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,85 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for freeciv FEDORA-2010-12262
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862325);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"10.0");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "FEDORA", value: "2010-12262");
+ script_cve_id("CVE-2010-2445");
+ script_name("Fedora Update for freeciv FEDORA-2010-12262");
+ desc = "
+
+ Vulnerability Insight:
+ Freeciv is a turn-based, multi-player, X based strategy game. Freeciv
+ is generally comparable to, and has compatible rules with, the
+ Civilization II(R) game by Microprose(R). In Freeciv, each player is
+ the leader of a civilization, and is competing with the other players
+ in order to become the leader of the greatest civilization.
+
+
+ Affected Software/OS:
+ freeciv on Fedora 12
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045854.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of freeciv");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC12")
+{
+
+ if(isrpmvuln(pkg:"freeciv", rpm:"freeciv~2.2.2~1.fc12", rls:"FC12"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_13129_sunbird_fc13.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_13129_sunbird_fc13.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_13129_sunbird_fc13.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,81 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for sunbird FEDORA-2010-13129
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862326);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "FEDORA", value: "2010-13129");
+ script_name("Fedora Update for sunbird FEDORA-2010-13129");
+ desc = "
+
+ Vulnerability Insight:
+ Mozilla Sunbird is a cross-platform calendar application, built upon
+ Mozilla Toolkit. It brings Mozilla-style ease-of-use to your
+ calendar, without tying you to a particular storage solution.
+
+
+ Affected Software/OS:
+ sunbird on Fedora 13
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045926.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of sunbird");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC13")
+{
+
+ if(isrpmvuln(pkg:"sunbird", rpm:"sunbird~1.0~0.27.b2pre.fc13", rls:"FC13"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_fedora_2010_13129_thunderbird_fc13.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_fedora_2010_13129_thunderbird_fc13.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_fedora_2010_13129_thunderbird_fc13.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,79 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Fedora Update for thunderbird FEDORA-2010-13129
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(862323);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "FEDORA", value: "2010-13129");
+ script_name("Fedora Update for thunderbird FEDORA-2010-13129");
+ desc = "
+
+ Vulnerability Insight:
+ Mozilla Thunderbird is a standalone mail and newsgroup client.
+
+
+ Affected Software/OS:
+ thunderbird on Fedora 13
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045927.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of thunderbird");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Fedora Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "FC13")
+{
+
+ if(isrpmvuln(pkg:"thunderbird", rpm:"thunderbird~3.1.2~1.fc13", rls:"FC13"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_151.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_151.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_151.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,272 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Mandriva Update for libmikmod MDVSA-2010:151 (libmikmod)
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(831130);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"9.3");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "MDVSA", value: "2010:151");
+ script_cve_id("CVE-2009-3995", "CVE-2009-3996", "CVE-2010-2546", "CVE-2010-2971");
+ script_name("Mandriva Update for libmikmod MDVSA-2010:151 (libmikmod)");
+ desc = "
+
+ Vulnerability Insight:
+
+ A vulnerability has been discovered and corrected in libmikmod:
+
+ Multiple heap-based buffer overflows might allow remote attackers
+ to execute arbitrary code via (1) crafted samples or (2) crafted
+ instrument definitions in an Impulse Tracker file (CVE-2009-3995).
+
+ Packages for 2008.0 and 2009.0 are provided as of the Extended
+ Maintenance Program. Please visit this link to learn more:
+ http://store.mandriva.com/product_info.php?cPath=149&products_id=490
+
+ The updated packages have been patched to correct this issue.
+
+ Affected Software/OS:
+ libmikmod on Mandriva Linux 2008.0,
+ Mandriva Linux 2008.0/X86_64,
+ Mandriva Linux 2009.0,
+ Mandriva Linux 2009.0/X86_64,
+ Mandriva Linux 2009.1,
+ Mandriva Linux 2009.1/X86_64,
+ Mandriva Linux 2010.0,
+ Mandriva Linux 2010.0/X86_64,
+ Mandriva Enterprise Server 5,
+ Mandriva Enterprise Server 5/X86_64
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.mandriva.com/security-announce/2010-08/msg00009.php
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of libmikmod");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Mandrake Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "MNDK_2008.0")
+{
+
+ if(isrpmvuln(pkg:"libmikmod2", rpm:"libmikmod2~3.1.11a~8.2mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod-devel", rpm:"libmikmod-devel~3.1.11a~8.2mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod", rpm:"libmikmod~3.1.11a~8.2mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod2", rpm:"lib64mikmod2~3.1.11a~8.2mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod-devel", rpm:"lib64mikmod-devel~3.1.11a~8.2mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_mes5")
+{
+
+ if(isrpmvuln(pkg:"libmikmod3", rpm:"libmikmod3~3.2.0~0.beta2.2.2mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod-devel", rpm:"libmikmod-devel~3.2.0~0.beta2.2.2mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod", rpm:"libmikmod~3.2.0~0.beta2.2.2mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod3", rpm:"lib64mikmod3~3.2.0~0.beta2.2.2mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod-devel", rpm:"lib64mikmod-devel~3.2.0~0.beta2.2.2mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_2010.0")
+{
+
+ if(isrpmvuln(pkg:"libmikmod3", rpm:"libmikmod3~3.2.0~0.beta2.6.1mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod-devel", rpm:"libmikmod-devel~3.2.0~0.beta2.6.1mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod", rpm:"libmikmod~3.2.0~0.beta2.6.1mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod3", rpm:"lib64mikmod3~3.2.0~0.beta2.6.1mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod-devel", rpm:"lib64mikmod-devel~3.2.0~0.beta2.6.1mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_2009.1")
+{
+
+ if(isrpmvuln(pkg:"libmikmod3", rpm:"libmikmod3~3.2.0~0.beta2.3.1mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod-devel", rpm:"libmikmod-devel~3.2.0~0.beta2.3.1mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod", rpm:"libmikmod~3.2.0~0.beta2.3.1mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod3", rpm:"lib64mikmod3~3.2.0~0.beta2.3.1mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod-devel", rpm:"lib64mikmod-devel~3.2.0~0.beta2.3.1mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_2009.0")
+{
+
+ if(isrpmvuln(pkg:"libmikmod3", rpm:"libmikmod3~3.2.0~0.beta2.2.2mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod-devel", rpm:"libmikmod-devel~3.2.0~0.beta2.2.2mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"libmikmod", rpm:"libmikmod~3.2.0~0.beta2.2.2mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod3", rpm:"lib64mikmod3~3.2.0~0.beta2.2.2mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"lib64mikmod-devel", rpm:"lib64mikmod-devel~3.2.0~0.beta2.2.2mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_152.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_152.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_152.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,536 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Mandriva Update for apache MDVSA-2010:152 (apache)
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(831131);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"5.0");
+ script_tag(name:"risk_factor", value:"Medium");
+ script_xref(name: "MDVSA", value: "2010:152");
+ script_cve_id("CVE-2010-1452");
+ script_name("Mandriva Update for apache MDVSA-2010:152 (apache)");
+ desc = "
+
+ Vulnerability Insight:
+
+ A vulnerabilitiy has been found and corrected in apache:
+
+ The mod_cache and mod_dav modules in the Apache HTTP Server 2.2.x
+ before 2.2.16 allow remote attackers to cause a denial of service
+ (process crash) via a request that lacks a path (CVE-2010-1452).
+
+ Packages for 2008.0 are provided as of the Extended Maintenance
+ Program. Please visit this link to learn more:
+ http://store.mandriva.com/product_info.php?cPath=149&products_id=490
+
+ The updated packages have been patched to correct this issue.
+
+ Affected Software/OS:
+ apache on Mandriva Linux 2008.0,
+ Mandriva Linux 2008.0/X86_64,
+ Mandriva Linux 2009.1,
+ Mandriva Linux 2009.1/X86_64,
+ Mandriva Linux 2010.0,
+ Mandriva Linux 2010.0/X86_64
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.mandriva.com/security-announce/2010-08/msg00010.php
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of apache");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Mandrake Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "MNDK_2008.0")
+{
+
+ if(isrpmvuln(pkg:"apache-base", rpm:"apache-base~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-devel", rpm:"apache-devel~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-htcacheclean", rpm:"apache-htcacheclean~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_authn_dbd", rpm:"apache-mod_authn_dbd~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_cache", rpm:"apache-mod_cache~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dav", rpm:"apache-mod_dav~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dbd", rpm:"apache-mod_dbd~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_deflate", rpm:"apache-mod_deflate~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_disk_cache", rpm:"apache-mod_disk_cache~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_file_cache", rpm:"apache-mod_file_cache~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ldap", rpm:"apache-mod_ldap~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_mem_cache", rpm:"apache-mod_mem_cache~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy", rpm:"apache-mod_proxy~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy_ajp", rpm:"apache-mod_proxy_ajp~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ssl", rpm:"apache-mod_ssl~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-modules", rpm:"apache-modules~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_userdir", rpm:"apache-mod_userdir~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-event", rpm:"apache-mpm-event~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-itk", rpm:"apache-mpm-itk~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-prefork", rpm:"apache-mpm-prefork~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-worker", rpm:"apache-mpm-worker~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-source", rpm:"apache-source~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache", rpm:"apache~2.2.6~8.6mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_2010.0")
+{
+
+ if(isrpmvuln(pkg:"apache-base", rpm:"apache-base~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-devel", rpm:"apache-devel~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-htcacheclean", rpm:"apache-htcacheclean~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_authn_dbd", rpm:"apache-mod_authn_dbd~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_cache", rpm:"apache-mod_cache~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dav", rpm:"apache-mod_dav~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dbd", rpm:"apache-mod_dbd~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_deflate", rpm:"apache-mod_deflate~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_disk_cache", rpm:"apache-mod_disk_cache~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_file_cache", rpm:"apache-mod_file_cache~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ldap", rpm:"apache-mod_ldap~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_mem_cache", rpm:"apache-mod_mem_cache~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy", rpm:"apache-mod_proxy~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy_ajp", rpm:"apache-mod_proxy_ajp~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy_scgi", rpm:"apache-mod_proxy_scgi~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ssl", rpm:"apache-mod_ssl~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-modules", rpm:"apache-modules~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_userdir", rpm:"apache-mod_userdir~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-event", rpm:"apache-mpm-event~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-itk", rpm:"apache-mpm-itk~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-peruser", rpm:"apache-mpm-peruser~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-prefork", rpm:"apache-mpm-prefork~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-worker", rpm:"apache-mpm-worker~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-source", rpm:"apache-source~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache", rpm:"apache~2.2.14~1.5mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_2009.1")
+{
+
+ if(isrpmvuln(pkg:"apache-base", rpm:"apache-base~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-devel", rpm:"apache-devel~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-htcacheclean", rpm:"apache-htcacheclean~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_authn_dbd", rpm:"apache-mod_authn_dbd~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_cache", rpm:"apache-mod_cache~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dav", rpm:"apache-mod_dav~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dbd", rpm:"apache-mod_dbd~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_deflate", rpm:"apache-mod_deflate~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_disk_cache", rpm:"apache-mod_disk_cache~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_file_cache", rpm:"apache-mod_file_cache~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ldap", rpm:"apache-mod_ldap~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_mem_cache", rpm:"apache-mod_mem_cache~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy", rpm:"apache-mod_proxy~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy_ajp", rpm:"apache-mod_proxy_ajp~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ssl", rpm:"apache-mod_ssl~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-modules", rpm:"apache-modules~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_userdir", rpm:"apache-mod_userdir~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-event", rpm:"apache-mpm-event~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-itk", rpm:"apache-mpm-itk~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-peruser", rpm:"apache-mpm-peruser~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-prefork", rpm:"apache-mpm-prefork~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-worker", rpm:"apache-mpm-worker~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-source", rpm:"apache-source~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache", rpm:"apache~2.2.11~10.10mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_153.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_153.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_153.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,391 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Mandriva Update for apache MDVSA-2010:153 (apache)
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(831132);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"5.0");
+ script_tag(name:"risk_factor", value:"Medium");
+ script_xref(name: "MDVSA", value: "2010:153");
+ script_cve_id("CVE-2010-1452", "CVE-2010-2068", "CVE-2010-2791");
+ script_name("Mandriva Update for apache MDVSA-2010:153 (apache)");
+ desc = "
+
+ Vulnerability Insight:
+
+ Multiple vulnerabilities has been found and corrected in apache:
+
+ The mod_cache and mod_dav modules in the Apache HTTP Server 2.2.x
+ before 2.2.16 allow remote attackers to cause a denial of service
+ (process crash) via a request that lacks a path (CVE-2010-1452).
+
+ mod_proxy in httpd in Apache HTTP Server 2.2.9, when running on Unix,
+ does not close the backend connection if a timeout occurs when reading
+ a response from a persistent connection, which allows remote attackers
+ to obtain a potentially sensitive response intended for a different
+ client in opportunistic circumstances via a normal HTTP request.
+ NOTE: this is the same issue as CVE-2010-2068, but for a different
+ OS and set of affected versions (CVE-2010-2791).
+
+ Packages for 2009.0 are provided as of the Extended Maintenance
+ Program. Please visit this link to learn more:
+ http://store.mandriva.com/product_info.php?cPath=149&products_id=490
+
+ The updated packages have been patched to correct these issues.
+
+ Affected Software/OS:
+ apache on Mandriva Linux 2009.0,
+ Mandriva Linux 2009.0/X86_64,
+ Mandriva Enterprise Server 5,
+ Mandriva Enterprise Server 5/X86_64
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.mandriva.com/security-announce/2010-08/msg00011.php
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of apache");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Mandrake Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "MNDK_mes5")
+{
+
+ if(isrpmvuln(pkg:"apache-base", rpm:"apache-base~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-devel", rpm:"apache-devel~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-htcacheclean", rpm:"apache-htcacheclean~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_authn_dbd", rpm:"apache-mod_authn_dbd~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_cache", rpm:"apache-mod_cache~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dav", rpm:"apache-mod_dav~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dbd", rpm:"apache-mod_dbd~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_deflate", rpm:"apache-mod_deflate~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_disk_cache", rpm:"apache-mod_disk_cache~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_file_cache", rpm:"apache-mod_file_cache~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ldap", rpm:"apache-mod_ldap~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_mem_cache", rpm:"apache-mod_mem_cache~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy", rpm:"apache-mod_proxy~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy_ajp", rpm:"apache-mod_proxy_ajp~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ssl", rpm:"apache-mod_ssl~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-modules", rpm:"apache-modules~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_userdir", rpm:"apache-mod_userdir~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-event", rpm:"apache-mpm-event~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-itk", rpm:"apache-mpm-itk~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-peruser", rpm:"apache-mpm-peruser~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-prefork", rpm:"apache-mpm-prefork~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-worker", rpm:"apache-mpm-worker~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-source", rpm:"apache-source~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache", rpm:"apache~2.2.9~12.10mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_2009.0")
+{
+
+ if(isrpmvuln(pkg:"apache-base", rpm:"apache-base~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-devel", rpm:"apache-devel~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-htcacheclean", rpm:"apache-htcacheclean~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_authn_dbd", rpm:"apache-mod_authn_dbd~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_cache", rpm:"apache-mod_cache~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dav", rpm:"apache-mod_dav~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_dbd", rpm:"apache-mod_dbd~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_deflate", rpm:"apache-mod_deflate~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_disk_cache", rpm:"apache-mod_disk_cache~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_file_cache", rpm:"apache-mod_file_cache~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ldap", rpm:"apache-mod_ldap~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_mem_cache", rpm:"apache-mod_mem_cache~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy", rpm:"apache-mod_proxy~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_proxy_ajp", rpm:"apache-mod_proxy_ajp~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_ssl", rpm:"apache-mod_ssl~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-modules", rpm:"apache-modules~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mod_userdir", rpm:"apache-mod_userdir~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-event", rpm:"apache-mpm-event~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-itk", rpm:"apache-mpm-itk~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-peruser", rpm:"apache-mpm-peruser~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-prefork", rpm:"apache-mpm-prefork~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-mpm-worker", rpm:"apache-mpm-worker~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache-source", rpm:"apache-source~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isrpmvuln(pkg:"apache", rpm:"apache~2.2.9~12.10mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_154.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_154.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_mandriva_MDVSA_2010_154.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,160 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Mandriva Update for cabextract MDVSA-2010:154 (cabextract)
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(831129);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"5.1");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "MDVSA", value: "2010:154");
+ script_cve_id("CVE-2010-2800", "CVE-2010-2801");
+ script_name("Mandriva Update for cabextract MDVSA-2010:154 (cabextract)");
+ desc = "
+
+ Vulnerability Insight:
+
+ Multiple vulnerabilities has been found and corrected in cabextract:
+
+ The MS-ZIP decompressor in cabextract before 1.3 allows remote
+ attackers to cause a denial of service (infinite loop) via a malformed
+ MSZIP archive in a .cab file during a test or extract action, related
+ to the libmspack library (CVE-2010-2800).
+
+ Integer signedness error in the Quantum decompressor in cabextract
+ before 1.3, when archive test mode is used, allows user-assisted
+ remote attackers to cause a denial of service (application crash)
+ or possibly execute arbitrary code via a crafted Quantum archive in
+ a .cab file, related to the libmspack library (CVE-2010-2801).
+
+ Packages for 2009.0 are provided as of the Extended Maintenance
+ Program. Please visit this link to learn more:
+ http://store.mandriva.com/product_info.php?cPath=149&products_id=490
+
+ The updated packages provides cabextract 1.3 which is not vulnerable
+ to these issues.
+
+ Affected Software/OS:
+ cabextract on Mandriva Linux 2008.0,
+ Mandriva Linux 2008.0/X86_64,
+ Mandriva Linux 2009.0,
+ Mandriva Linux 2009.0/X86_64,
+ Mandriva Linux 2009.1,
+ Mandriva Linux 2009.1/X86_64,
+ Mandriva Linux 2010.0,
+ Mandriva Linux 2010.0/X86_64,
+ Mandriva Enterprise Server 5,
+ Mandriva Enterprise Server 5/X86_64
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ http://lists.mandriva.com/security-announce/2010-08/msg00012.php
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of cabextract");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Mandrake Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-rpm.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "MNDK_2008.0")
+{
+
+ if(isrpmvuln(pkg:"cabextract", rpm:"cabextract~1.3~0.1mdv2008.0", rls:"MNDK_2008.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_mes5")
+{
+
+ if(isrpmvuln(pkg:"cabextract", rpm:"cabextract~1.3~0.1mdvmes5.1", rls:"MNDK_mes5"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_2010.0")
+{
+
+ if(isrpmvuln(pkg:"cabextract", rpm:"cabextract~1.3~0.1mdv2010.0", rls:"MNDK_2010.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_2009.1")
+{
+
+ if(isrpmvuln(pkg:"cabextract", rpm:"cabextract~1.3~0.1mdv2009.1", rls:"MNDK_2009.1"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "MNDK_2009.0")
+{
+
+ if(isrpmvuln(pkg:"cabextract", rpm:"cabextract~1.3~0.1mdv2009.0", rls:"MNDK_2009.0"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_ubuntu_USN_971_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_ubuntu_USN_971_1.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_ubuntu_USN_971_1.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,292 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Ubuntu Update for openjdk-6 vulnerabilities USN-971-1
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(840483);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "USN", value: "971-1");
+ script_cve_id("CVE-2010-2548", "CVE-2010-2783");
+ script_name("Ubuntu Update for openjdk-6 vulnerabilities USN-971-1");
+ desc = "
+
+ Vulnerability Insight:
+
+ It was discovered that the IcedTea plugin did not correctly check certain
+ accesses. If a user or automated system were tricked into running a
+ specially crafted Java applet, a remote attacker could read arbitrary
+ files with user privileges, leading to a loss of privacy. (CVE-2010-2548,
+ CVE-2010-2783)
+
+ Affected Software/OS:
+ openjdk-6 vulnerabilities on Ubuntu 9.04 ,
+ Ubuntu 9.10 ,
+ Ubuntu 10.04 LTS
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ https://lists.ubuntu.com/archives/ubuntu-security-announce/2010-August/001140.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of openjdk-6 vulnerabilities");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Ubuntu Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-deb.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "UBUNTU9.10")
+{
+
+ if(isdpkgvuln(pkg:"icedtea-6-jre-cacao", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"icedtea6-plugin", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-dbg", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-demo", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jdk", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre-headless", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre-zero", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-doc", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre-lib", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-source", ver:"6b18-1.8.1-0ubuntu1~9.10.1", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU10.04 LTS")
+{
+
+ if(isdpkgvuln(pkg:"icedtea-6-jre-cacao", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"icedtea6-plugin", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-dbg", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-demo", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jdk", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre-headless", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre-zero", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-doc", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre-lib", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-source", ver:"6b18-1.8.1-0ubuntu1", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU9.04")
+{
+
+ if(isdpkgvuln(pkg:"icedtea-6-jre-cacao", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"icedtea6-plugin", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-dbg", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-demo", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jdk", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre-headless", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre-zero", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-doc", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-jre-lib", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"openjdk-6-source", ver:"6b18-1.8.1-0ubuntu1~9.04.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_ubuntu_USN_972_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_ubuntu_USN_972_1.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_ubuntu_USN_972_1.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,230 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Ubuntu Update for freetype vulnerabilities USN-972-1
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(840480);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"9.3");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "USN", value: "972-1");
+ script_cve_id("CVE-2010-1797", "CVE-2010-2541", "CVE-2010-2805", "CVE-2010-2806", "CVE-2010-2807", "CVE-2010-2808");
+ script_name("Ubuntu Update for freetype vulnerabilities USN-972-1");
+ desc = "
+
+ Vulnerability Insight:
+
+ It was discovered that FreeType did not correctly handle certain malformed
+ font files. If a user were tricked into using a specially crafted font
+ file, a remote attacker could cause FreeType to crash or possibly execute
+ arbitrary code with user privileges.
+
+ Affected Software/OS:
+ freetype vulnerabilities on Ubuntu 6.06 LTS ,
+ Ubuntu 8.04 LTS ,
+ Ubuntu 9.04 ,
+ Ubuntu 9.10 ,
+ Ubuntu 10.04 LTS
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ https://lists.ubuntu.com/archives/ubuntu-security-announce/2010-August/001141.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of freetype vulnerabilities");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Ubuntu Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-deb.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "UBUNTU9.10")
+{
+
+ if(isdpkgvuln(pkg:"libfreetype6-dev", ver:"2.3.9-5ubuntu0.2", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6", ver:"2.3.9-5ubuntu0.2", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"freetype2-demos", ver:"2.3.9-5ubuntu0.2", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6-udeb", ver:"2.3.9-5ubuntu0.2", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU6.06 LTS")
+{
+
+ if(isdpkgvuln(pkg:"libfreetype6-dev", ver:"2.1.10-1ubuntu2.8", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6", ver:"2.1.10-1ubuntu2.8", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"freetype2-demos", ver:"2.1.10-1ubuntu2.8", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6-udeb", ver:"2.1.10-1ubuntu2.8", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU10.04 LTS")
+{
+
+ if(isdpkgvuln(pkg:"libfreetype6-dev", ver:"2.3.11-1ubuntu2.2", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6", ver:"2.3.11-1ubuntu2.2", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"freetype2-demos", ver:"2.3.11-1ubuntu2.2", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6-udeb", ver:"2.3.11-1ubuntu2.2", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU9.04")
+{
+
+ if(isdpkgvuln(pkg:"libfreetype6-dev", ver:"2.3.9-4ubuntu0.3", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6", ver:"2.3.9-4ubuntu0.3", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"freetype2-demos", ver:"2.3.9-4ubuntu0.3", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6-udeb", ver:"2.3.9-4ubuntu0.3", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU8.04 LTS")
+{
+
+ if(isdpkgvuln(pkg:"libfreetype6-dev", ver:"2.3.5-1ubuntu4.8.04.4", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6", ver:"2.3.5-1ubuntu4.8.04.4", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"freetype2-demos", ver:"2.3.5-1ubuntu4.8.04.4", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"libfreetype6-udeb", ver:"2.3.5-1ubuntu4.8.04.4", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_ubuntu_USN_973_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_ubuntu_USN_973_1.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_ubuntu_USN_973_1.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,238 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Ubuntu Update for koffice vulnerabilities USN-973-1
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(840481);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"cvss_base", value:"10.0");
+ script_tag(name:"risk_factor", value:"Critical");
+ script_xref(name: "USN", value: "973-1");
+ script_cve_id("CVE-2009-0146", "CVE-2009-0147", "CVE-2009-0165", "CVE-2009-0166", "CVE-2009-0195", "CVE-2009-0799", "CVE-2009-0800", "CVE-2009-1179", "CVE-2009-1180", "CVE-2009-1181", "CVE-2009-3606", "CVE-2009-3608", "CVE-2009-3609");
+ script_name("Ubuntu Update for koffice vulnerabilities USN-973-1");
+ desc = "
+
+ Vulnerability Insight:
+
+ Will Dormann, Alin Rad Pop, Braden Thomas, and Drew Yao discovered that the
+ Xpdf used in KOffice contained multiple security issues in its JBIG2
+ decoder. If a user or automated system were tricked into opening a crafted
+ PDF file, an attacker could cause a denial of service or execute arbitrary
+ code with privileges of the user invoking the program. (CVE-2009-0146,
+ CVE-2009-0147, CVE-2009-0166, CVE-2009-0799, CVE-2009-0800, CVE-2009-1179,
+ CVE-2009-1180, CVE-2009-1181)
+
+ It was discovered that the Xpdf used in KOffice contained multiple security
+ issues when parsing malformed PDF documents. If a user or automated system
+ were tricked into opening a crafted PDF file, an attacker could cause a
+ denial of service or execute arbitrary code with privileges of the user
+ invoking the program. (CVE-2009-3606, CVE-2009-3608, CVE-2009-3609)
+
+ KOffice in Ubuntu 9.04 uses a very old version of Xpdf to import PDFs into
+ KWord. Upstream KDE no longer supports PDF import in KOffice and as a
+ result it was dropped in Ubuntu 9.10. While an attempt was made to fix the
+ above issues, the maintenance burden for supporting this very old version
+ of Xpdf outweighed its utility, and PDF import is now also disabled in
+ Ubuntu 9.04.
+
+ Affected Software/OS:
+ koffice vulnerabilities on Ubuntu 9.04
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ https://lists.ubuntu.com/archives/ubuntu-security-announce/2010-August/001142.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of koffice vulnerabilities");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Ubuntu Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-deb.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "UBUNTU9.04")
+{
+
+ if(isdpkgvuln(pkg:"karbon", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kchart", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kexi", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kformula", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kivio", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"koffice-dbg", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"koffice-dev", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"koffice-libs", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"koshell", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kplato", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kpresenter", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"krita", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kspread", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kthesaurus", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kugar", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kword", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kivio-data", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"koffice-data", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"koffice-doc-html", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"koffice-doc", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"koffice", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kpresenter-data", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"krita-data", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kword-data", ver:"1.6.3-7ubuntu6.1", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
Added: trunk/openvas-plugins/scripts/gb_ubuntu_USN_974_1.nasl
===================================================================
--- trunk/openvas-plugins/scripts/gb_ubuntu_USN_974_1.nasl 2010-08-20 12:51:27 UTC (rev 8862)
+++ trunk/openvas-plugins/scripts/gb_ubuntu_USN_974_1.nasl 2010-08-20 12:57:11 UTC (rev 8863)
@@ -0,0 +1,2022 @@
+###############################################################################
+# OpenVAS Vulnerability Test
+#
+# Ubuntu Update for Linux kernel vulnerabilities USN-974-1
+#
+# Authors:
+# System Generated Check
+#
+# Copyright:
+# Copyright (c) 2010 Greenbone Networks GmbH, http://www.greenbone.net
+#
+# This program is free software; you can redistribute it and/or modify
+# it under the terms of the GNU General Public License version 2
+# (or any later version), as published by the Free Software Foundation.
+#
+# This program is distributed in the hope that it will be useful,
+# but WITHOUT ANY WARRANTY; without even the implied warranty of
+# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+# GNU General Public License for more details.
+#
+# You should have received a copy of the GNU General Public License
+# along with this program; if not, write to the Free Software
+# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
+###############################################################################
+
+if(description)
+{
+ script_id(840482);
+ script_version("$Revision$: 1.0");
+ script_tag(name:"risk_factor", value:"High");
+ script_xref(name: "USN", value: "974-1");
+ script_cve_id("CVE-2010-2240", "CVE-2010-2803", "CVE-2010-2959");
+ script_name("Ubuntu Update for Linux kernel vulnerabilities USN-974-1");
+ desc = "
+
+ Vulnerability Insight:
+
+ Gael Delalleu, Rafal Wojtczuk, and Brad Spengler discovered that the memory
+ manager did not properly handle when applications grow stacks into adjacent
+ memory regions. A local attacker could exploit this to gain control of
+ certain applications, potentially leading to privilege escalation, as
+ demonstrated in attacks against the X server. (CVE-2010-2240)
+
+ Kees Cook discovered that under certain situations the ioctl subsystem for
+ DRM did not properly sanitize its arguments. A local attacker could exploit
+ this to read previously freed kernel memory, leading to a loss of privacy.
+ (CVE-2010-2803)
+
+ Ben Hawkes discovered an integer overflow in the Controller Area Network
+ (CAN) subsystem when setting up frame content and filtering certain
+ messages. An attacker could send specially crafted CAN traffic to crash the
+ system or gain root privileges. (CVE-2010-2959)
+
+ Affected Software/OS:
+ Linux kernel vulnerabilities on Ubuntu 6.06 LTS ,
+ Ubuntu 8.04 LTS ,
+ Ubuntu 9.04 ,
+ Ubuntu 9.10 ,
+ Ubuntu 10.04 LTS
+
+ Fix: Please Install the Updated Packages.
+
+ References:
+ https://lists.ubuntu.com/archives/ubuntu-security-announce/2010-August/001143.html
+
+ ";
+
+ script_description(desc);
+ script_summary("Check for the Version of Linux kernel vulnerabilities");
+ script_category(ACT_GATHER_INFO);
+ script_copyright("Copyright (c) 2010 Greenbone Networks GmbH");
+ script_family("Ubuntu Local Security Checks");
+ script_dependencies("gather-package-list.nasl");
+ script_require_keys("ssh/login/release");
+ exit(0);
+}
+
+
+include("pkg-lib-deb.inc");
+include("revisions-lib.inc");
+
+release = get_kb_item("ssh/login/release");
+
+if(release == NULL){
+ exit(0);
+}
+
+if(release == "UBUNTU9.10")
+{
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.31-307-ec2", ver:"2.6.31-307.17", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.31-307-ec2", ver:"2.6.31-307.17", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.31-22-386", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.31-22-generic-pae", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.31-22-generic", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.31-22-386", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.31-22-generic-pae", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.31-22-generic", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.31-22-virtual", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-libc-dev", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-ec2-doc", ver:"2.6.31-307.17", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-ec2-source-2.6.31", ver:"2.6.31-307.17", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.31-307", ver:"2.6.31-307.17", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-doc", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.31-22", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-source-2.6.31", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"block-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"char-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"crypto-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fat-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fb-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"firewire-core-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"floppy-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-core-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-secondary-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"input-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"irda-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kernel-image-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"md-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"message-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"mouse-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nfs-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-pcmcia-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-shared-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-usb-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"parport-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pata-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-storage-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"plip-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ppp-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"sata-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"scsi-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"serial-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"storage-core-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"usb-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"virtio-modules-2.6.31-22-generic-di", ver:"2.6.31-22.63", rls:"UBUNTU9.10"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU6.06 LTS")
+{
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.15-55-386", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.15-55-686", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.15-55-k7", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.15-55-server-bigiron", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.15-55-server", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.15-55", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.15-55-386", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.15-55-686", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.15-55-k7", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.15-55-server-bigiron", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.15-55-server", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-doc-2.6.15", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-kernel-devel", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-source-2.6.15", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"acpi-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"cdrom-core-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"cdrom-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"crc-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ext2-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ext3-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fat-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fb-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"firewire-core-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"floppy-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ide-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"input-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ipv6-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"irda-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"jfs-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kernel-image-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"loop-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"md-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nfs-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-firmware-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-pcmcia-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-shared-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-usb-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ntfs-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"parport-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-storage-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"plip-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ppp-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"reiserfs-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"sata-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"scsi-core-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"scsi-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"serial-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"socket-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ufs-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"usb-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"usb-storage-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"xfs-modules-2.6.15-55-386-di", ver:"2.6.15-55.87", rls:"UBUNTU6.06 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU10.04 LTS")
+{
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.32-308-ec2", ver:"2.6.32-308.15", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.32-308-ec2", ver:"2.6.32-308.15", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.32-24-386", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.32-24-generic-pae", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.32-24-generic", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.32-24-386", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.32-24-generic-pae", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.32-24-generic", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.32-24-virtual", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-libc-dev", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-tools-2.6.32-24", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-ec2-doc", ver:"2.6.32-308.15", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-ec2-source-2.6.32", ver:"2.6.32-308.15", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.32-308", ver:"2.6.32-308.15", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-doc", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.32-24", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-source-2.6.32", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-tools-common", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"block-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"block-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"char-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"char-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"crypto-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"crypto-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fat-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fat-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fb-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fb-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"firewire-core-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"firewire-core-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"floppy-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"floppy-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-core-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-core-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-secondary-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-secondary-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"input-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"input-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"irda-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"irda-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kernel-image-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kernel-image-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"md-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"md-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"message-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"message-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"mouse-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"mouse-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nfs-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nfs-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-pcmcia-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-pcmcia-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-shared-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-shared-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-usb-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-usb-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"parport-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"parport-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pata-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pata-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-storage-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-storage-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"plip-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"plip-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ppp-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ppp-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"sata-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"sata-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"scsi-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"scsi-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"serial-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"serial-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"squashfs-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"squashfs-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"storage-core-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"storage-core-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"usb-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"usb-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"virtio-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"virtio-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"vlan-modules-2.6.32-24-generic-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"vlan-modules-2.6.32-24-generic-pae-di", ver:"2.6.32-24.41", rls:"UBUNTU10.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU9.04")
+{
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.28-19-generic", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.28-19-server", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.28-19-generic", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.28-19-server", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.28-19-virtual", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-libc-dev", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-doc-2.6.28", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.28-19", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-source-2.6.28", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"block-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"crypto-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fat-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fb-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"firewire-core-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"floppy-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-core-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-secondary-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"input-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"irda-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kernel-image-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"md-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"message-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"mouse-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nfs-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-pcmcia-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-shared-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-usb-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"parport-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pata-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-storage-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"plip-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ppp-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"sata-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"scsi-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"serial-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"storage-core-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"usb-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"virtio-modules-2.6.28-19-generic-di", ver:"2.6.28-19.64", rls:"UBUNTU9.04"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
+
+
+if(release == "UBUNTU8.04 LTS")
+{
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.24-28-386", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.24-28-generic", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.24-28-openvz", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.24-28-rt", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.24-28-server", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.24-28-virtual", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.24-28-xen", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.24-28-386", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.24-28-generic", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.24-28-server", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.24-28-virtual", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-debug-2.6.24-28-386", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-debug-2.6.24-28-generic", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-debug-2.6.24-28-server", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-debug-2.6.24-28-virtual", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-libc-dev", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.24-28-openvz", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.24-28-rt", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-image-2.6.24-28-xen", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-doc-2.6.24", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-headers-2.6.24-28", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-kernel-devel", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"linux-source-2.6.24", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"acpi-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"acpi-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"block-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"block-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"crypto-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"crypto-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fat-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fat-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fb-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fb-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"firewire-core-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"firewire-core-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"floppy-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"floppy-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-core-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-core-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-secondary-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"fs-secondary-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ide-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ide-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"input-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"input-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ipv6-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ipv6-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"irda-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"irda-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kernel-image-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"kernel-image-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"md-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"md-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"message-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"message-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nfs-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nfs-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-pcmcia-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-pcmcia-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-shared-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-shared-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-usb-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"nic-usb-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"parport-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"parport-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pata-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pata-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-storage-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"pcmcia-storage-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"plip-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"plip-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ppp-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"ppp-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"sata-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"sata-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"scsi-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"scsi-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"serial-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"serial-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"socket-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"socket-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"storage-core-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"storage-core-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"usb-modules-2.6.24-28-386-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ if(isdpkgvuln(pkg:"usb-modules-2.6.24-28-generic-di", ver:"2.6.24-28.75", rls:"UBUNTU8.04 LTS"))
+ {
+ security_hole(0);
+ exit(0);
+ }
+
+ exit(0);
+}
More information about the Openvas-commits
mailing list