Detections
Analytics
SUSE SLED15 / SLES15 Security Update : elfutils (SUSE-SU-2019:1486-1)
critical Nessus Plugin ID 125921
Language:
Synopsis
The remote SUSE host is missing one or more security updates.Description
This update for elfutils fixes the following issues :Security issues fixed :
CVE-2017-7607: Fixed a heap-based buffer overflow in handle_gnu_hash (bsc#1033084)
CVE-2017-7608: Fixed a heap-based buffer overflow in ebl_object_note_type_name() (bsc#1033085)
CVE-2017-7609: Fixed a memory allocation failure in
__libelf_decompress (bsc#1033086)
CVE-2017-7610: Fixed a heap-based buffer overflow in check_group (bsc#1033087)
CVE-2017-7611: Fixed a denial of service via a crafted ELF file (bsc#1033088)
CVE-2017-7612: Fixed a denial of service in check_sysv_hash() via a crafted ELF file (bsc#1033089)
CVE-2017-7613: Fixed denial of service caused by the missing validation of the number of sections and the number of segments in a crafted ELF file (bsc#1033090)
CVE-2018-16062: Fixed a heap-buffer overflow in /elfutils/libdw/dwarf_getaranges.c:156 (bsc#1106390)
CVE-2018-16402: Fixed a denial of service/double free on an attempt to decompress the same section twice (bsc#1107066)
CVE-2018-16403: Fixed a heap buffer overflow in readelf (bsc#1107067)
CVE-2018-18310: Fixed an invalid address read problem in dwfl_segment_report_module.c (bsc#1111973)
CVE-2018-18520: Fixed bad handling of ar files inside are files (bsc#1112726)
CVE-2018-18521: Fixed a denial of service vulnerabilities in the function arlib_add_symbols() used by eu-ranlib (bsc#1112723)
CVE-2019-7150: dwfl_segment_report_module doesn't check whether the dyn data read from core file is truncated (bsc#1123685)
CVE-2019-7665: NT_PLATFORM core file note should be a zero terminated string (bsc#1125007)
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
Solution
To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or 'zypper patch'.Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Module for Open Buildservice Development Tools 15-SP1:zypper in -t patch SUSE-SLE-Module-Development-Tools-OBS-15-SP1-2019-1486=1
SUSE Linux Enterprise Module for Basesystem 15-SP1:zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP1-2019-1486=1
SUSE Linux Enterprise Module for Basesystem 15:zypper in -t patch SUSE-SLE-Module-Basesystem-15-2019-1486=1
See Also
https://bugzilla.suse.com/show_bug.cgi?id=1033084
https://bugzilla.suse.com/show_bug.cgi?id=1033085
https://bugzilla.suse.com/show_bug.cgi?id=1033086
https://bugzilla.suse.com/show_bug.cgi?id=1033087
https://bugzilla.suse.com/show_bug.cgi?id=1033088
https://bugzilla.suse.com/show_bug.cgi?id=1033089
https://bugzilla.suse.com/show_bug.cgi?id=1033090
https://bugzilla.suse.com/show_bug.cgi?id=1106390
https://bugzilla.suse.com/show_bug.cgi?id=1107066
https://bugzilla.suse.com/show_bug.cgi?id=1107067
https://bugzilla.suse.com/show_bug.cgi?id=1111973
https://bugzilla.suse.com/show_bug.cgi?id=1112723
https://bugzilla.suse.com/show_bug.cgi?id=1112726
https://bugzilla.suse.com/show_bug.cgi?id=1123685
https://bugzilla.suse.com/show_bug.cgi?id=1125007
https://www.suse.com/security/cve/CVE-2017-7607/
https://www.suse.com/security/cve/CVE-2017-7608/
https://www.suse.com/security/cve/CVE-2017-7609/
https://www.suse.com/security/cve/CVE-2017-7610/
https://www.suse.com/security/cve/CVE-2017-7611/
https://www.suse.com/security/cve/CVE-2017-7612/
https://www.suse.com/security/cve/CVE-2017-7613/
https://www.suse.com/security/cve/CVE-2018-16062/
https://www.suse.com/security/cve/CVE-2018-16402/
https://www.suse.com/security/cve/CVE-2018-16403/
https://www.suse.com/security/cve/CVE-2018-18310/
https://www.suse.com/security/cve/CVE-2018-18520/
https://www.suse.com/security/cve/CVE-2018-18521/
https://www.suse.com/security/cve/CVE-2019-7150/
Plugin Details
Severity: Critical
ID: 125921
File Name: suse_SU-2019-1486-1.nasl
Version: 1.4
Type: local
Agent: unix
Family: SuSE Local Security Checks
Published: 6/14/2019
Updated: 1/13/2021
Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 6.7
CVSS v2
Risk Factor: High
Base Score: 7.5
Temporal Score: 5.5
Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS v3
Risk Factor: Critical
Base Score: 9.8
Temporal Score: 8.5
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: p-cpe:/a:novell:suse_linux:elfutils, p-cpe:/a:novell:suse_linux:elfutils-debuginfo, p-cpe:/a:novell:suse_linux:elfutils-debugsource, p-cpe:/a:novell:suse_linux:libasm-devel, p-cpe:/a:novell:suse_linux:libasm1, p-cpe:/a:novell:suse_linux:libasm1-32bit-debuginfo, p-cpe:/a:novell:suse_linux:libasm1-debuginfo, p-cpe:/a:novell:suse_linux:libdw-devel, p-cpe:/a:novell:suse_linux:libdw1, p-cpe:/a:novell:suse_linux:libdw1-32bit-debuginfo, p-cpe:/a:novell:suse_linux:libdw1-debuginfo, p-cpe:/a:novell:suse_linux:libebl-devel, p-cpe:/a:novell:suse_linux:libebl-plugins, p-cpe:/a:novell:suse_linux:libebl-plugins-32bit-debuginfo, p-cpe:/a:novell:suse_linux:libebl-plugins-debuginfo, p-cpe:/a:novell:suse_linux:libelf-devel, p-cpe:/a:novell:suse_linux:libelf1, p-cpe:/a:novell:suse_linux:libelf1-32bit-debuginfo, p-cpe:/a:novell:suse_linux:libelf1-debuginfo, cpe:/o:novell:suse_linux:15
Required KB Items: Host/local_checks_enabled, Host/cpu, Host/SuSE/release, Host/SuSE/rpm-list
Exploit Ease: No known exploits are available
Patch Publication Date: 6/13/2019
Vulnerability Publication Date: 4/9/2017
Reference Information
CVE: CVE-2017-7607, CVE-2017-7608, CVE-2017-7609, CVE-2017-7610, CVE-2017-7611, CVE-2017-7612, CVE-2017-7613, CVE-2018-16062, CVE-2018-16402, CVE-2018-16403, CVE-2018-18310, CVE-2018-18520, CVE-2018-18521, CVE-2019-7150, CVE-2019-7665