Oracle Linux 8 : glibc (ELSA-2020-4444)

Medium Nessus Plugin ID 142780

New! Vulnerability Priority Rating (VPR)

Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it's different from CVSS.

VPR Score: 6.7

Synopsis

The remote Oracle Linux host is missing one or more security updates.

Description

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-4444 advisory.

 - A use-after-free vulnerability introduced in glibc upstream version 2.14 was found in the way the tilde expansion was carried out. Directory paths containing an initial tilde followed by a valid username were affected by this issue. A local attacker could exploit this flaw by creating a specially crafted path that, when processed by the glob function, would potentially lead to arbitrary code execution. This was fixed in version 2.32. (CVE-2020-1752)

 - An out-of-bounds write vulnerability was found in glibc before 2.31 when handling signal trampolines on PowerPC. Specifically, the backtrace function did not properly check the array bounds when storing the frame address, resulting in a denial of service or potential code execution. The highest threat from this vulnerability is to system availability. (CVE-2020-1751)

 - The GNU C Library (aka glibc or libc6) before 2.32 could overflow an on-stack buffer during range reduction if an input to an 80-bit long double function contains a non-canonical bit pattern, a seen when passing a 0x5d414141414141410000 value to sinl on x86 targets. This is related to sysdeps/ieee754/ldbl-96/e_rem_pio2l.c. (CVE-2020-10029)

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://linux.oracle.com/errata/ELSA-2020-4444.html

Plugin Details

Severity: Medium

ID: 142780

File Name: oraclelinux_ELSA-2020-4444.nasl

Version: 1.3

Type: local

Agent: unix

Published: 2020/11/12

Updated: 2020/11/13

Dependencies: 12634

Risk Information

Risk Factor: Medium

VPR Score: 6.7

CVSS Score Source: CVE-2020-1751

CVSS v2.0

Base Score: 5.9

Temporal Score: 4.4

Vector: CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

CVSS v3.0

Base Score: 7

Temporal Score: 6.1

Vector: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:oracle:linux:8, p-cpe:/a:oracle:linux:compat-libpthread-nonshared, p-cpe:/a:oracle:linux:glibc, p-cpe:/a:oracle:linux:glibc-all-langpacks, p-cpe:/a:oracle:linux:glibc-benchtests, p-cpe:/a:oracle:linux:glibc-common, p-cpe:/a:oracle:linux:glibc-devel, p-cpe:/a:oracle:linux:glibc-headers, p-cpe:/a:oracle:linux:glibc-langpack-aa, p-cpe:/a:oracle:linux:glibc-langpack-af, p-cpe:/a:oracle:linux:glibc-langpack-agr, p-cpe:/a:oracle:linux:glibc-langpack-ak, p-cpe:/a:oracle:linux:glibc-langpack-am, p-cpe:/a:oracle:linux:glibc-langpack-an, p-cpe:/a:oracle:linux:glibc-langpack-anp, p-cpe:/a:oracle:linux:glibc-langpack-ar, p-cpe:/a:oracle:linux:glibc-langpack-as, p-cpe:/a:oracle:linux:glibc-langpack-ast, p-cpe:/a:oracle:linux:glibc-langpack-ayc, p-cpe:/a:oracle:linux:glibc-langpack-az, p-cpe:/a:oracle:linux:glibc-langpack-be, p-cpe:/a:oracle:linux:glibc-langpack-bem, p-cpe:/a:oracle:linux:glibc-langpack-ber, p-cpe:/a:oracle:linux:glibc-langpack-bg, p-cpe:/a:oracle:linux:glibc-langpack-bhb, p-cpe:/a:oracle:linux:glibc-langpack-bho, p-cpe:/a:oracle:linux:glibc-langpack-bi, p-cpe:/a:oracle:linux:glibc-langpack-bn, p-cpe:/a:oracle:linux:glibc-langpack-bo, p-cpe:/a:oracle:linux:glibc-langpack-br, p-cpe:/a:oracle:linux:glibc-langpack-brx, p-cpe:/a:oracle:linux:glibc-langpack-bs, p-cpe:/a:oracle:linux:glibc-langpack-byn, p-cpe:/a:oracle:linux:glibc-langpack-ca, p-cpe:/a:oracle:linux:glibc-langpack-ce, p-cpe:/a:oracle:linux:glibc-langpack-chr, p-cpe:/a:oracle:linux:glibc-langpack-cmn, p-cpe:/a:oracle:linux:glibc-langpack-crh, p-cpe:/a:oracle:linux:glibc-langpack-cs, p-cpe:/a:oracle:linux:glibc-langpack-csb, p-cpe:/a:oracle:linux:glibc-langpack-cv, p-cpe:/a:oracle:linux:glibc-langpack-cy, p-cpe:/a:oracle:linux:glibc-langpack-da, p-cpe:/a:oracle:linux:glibc-langpack-de, p-cpe:/a:oracle:linux:glibc-langpack-doi, p-cpe:/a:oracle:linux:glibc-langpack-dsb, p-cpe:/a:oracle:linux:glibc-langpack-dv, p-cpe:/a:oracle:linux:glibc-langpack-dz, p-cpe:/a:oracle:linux:glibc-langpack-el, p-cpe:/a:oracle:linux:glibc-langpack-en, p-cpe:/a:oracle:linux:glibc-langpack-eo, p-cpe:/a:oracle:linux:glibc-langpack-es, p-cpe:/a:oracle:linux:glibc-langpack-et, p-cpe:/a:oracle:linux:glibc-langpack-eu, p-cpe:/a:oracle:linux:glibc-langpack-fa, p-cpe:/a:oracle:linux:glibc-langpack-ff, p-cpe:/a:oracle:linux:glibc-langpack-fi, p-cpe:/a:oracle:linux:glibc-langpack-fil, p-cpe:/a:oracle:linux:glibc-langpack-fo, p-cpe:/a:oracle:linux:glibc-langpack-fr, p-cpe:/a:oracle:linux:glibc-langpack-fur, p-cpe:/a:oracle:linux:glibc-langpack-fy, p-cpe:/a:oracle:linux:glibc-langpack-ga, p-cpe:/a:oracle:linux:glibc-langpack-gd, p-cpe:/a:oracle:linux:glibc-langpack-gez, p-cpe:/a:oracle:linux:glibc-langpack-gl, p-cpe:/a:oracle:linux:glibc-langpack-gu, p-cpe:/a:oracle:linux:glibc-langpack-gv, p-cpe:/a:oracle:linux:glibc-langpack-ha, p-cpe:/a:oracle:linux:glibc-langpack-hak, p-cpe:/a:oracle:linux:glibc-langpack-he, p-cpe:/a:oracle:linux:glibc-langpack-hi, p-cpe:/a:oracle:linux:glibc-langpack-hif, p-cpe:/a:oracle:linux:glibc-langpack-hne, p-cpe:/a:oracle:linux:glibc-langpack-hr, p-cpe:/a:oracle:linux:glibc-langpack-hsb, p-cpe:/a:oracle:linux:glibc-langpack-ht, p-cpe:/a:oracle:linux:glibc-langpack-hu, p-cpe:/a:oracle:linux:glibc-langpack-hy, p-cpe:/a:oracle:linux:glibc-langpack-ia, p-cpe:/a:oracle:linux:glibc-langpack-id, p-cpe:/a:oracle:linux:glibc-langpack-ig, p-cpe:/a:oracle:linux:glibc-langpack-ik, p-cpe:/a:oracle:linux:glibc-langpack-is, p-cpe:/a:oracle:linux:glibc-langpack-it, p-cpe:/a:oracle:linux:glibc-langpack-iu, p-cpe:/a:oracle:linux:glibc-langpack-ja, p-cpe:/a:oracle:linux:glibc-langpack-ka, p-cpe:/a:oracle:linux:glibc-langpack-kab, p-cpe:/a:oracle:linux:glibc-langpack-kk, p-cpe:/a:oracle:linux:glibc-langpack-kl, p-cpe:/a:oracle:linux:glibc-langpack-km, p-cpe:/a:oracle:linux:glibc-langpack-kn, p-cpe:/a:oracle:linux:glibc-langpack-ko, p-cpe:/a:oracle:linux:glibc-langpack-kok, p-cpe:/a:oracle:linux:glibc-langpack-ks, p-cpe:/a:oracle:linux:glibc-langpack-ku, p-cpe:/a:oracle:linux:glibc-langpack-kw, p-cpe:/a:oracle:linux:glibc-langpack-ky, p-cpe:/a:oracle:linux:glibc-langpack-lb, p-cpe:/a:oracle:linux:glibc-langpack-lg, p-cpe:/a:oracle:linux:glibc-langpack-li, p-cpe:/a:oracle:linux:glibc-langpack-lij, p-cpe:/a:oracle:linux:glibc-langpack-ln, p-cpe:/a:oracle:linux:glibc-langpack-lo, p-cpe:/a:oracle:linux:glibc-langpack-lt, p-cpe:/a:oracle:linux:glibc-langpack-lv, p-cpe:/a:oracle:linux:glibc-langpack-lzh, p-cpe:/a:oracle:linux:glibc-langpack-mag, p-cpe:/a:oracle:linux:glibc-langpack-mai, p-cpe:/a:oracle:linux:glibc-langpack-mfe, p-cpe:/a:oracle:linux:glibc-langpack-mg, p-cpe:/a:oracle:linux:glibc-langpack-mhr, p-cpe:/a:oracle:linux:glibc-langpack-mi, p-cpe:/a:oracle:linux:glibc-langpack-miq, p-cpe:/a:oracle:linux:glibc-langpack-mjw, p-cpe:/a:oracle:linux:glibc-langpack-mk, p-cpe:/a:oracle:linux:glibc-langpack-ml, p-cpe:/a:oracle:linux:glibc-langpack-mn, p-cpe:/a:oracle:linux:glibc-langpack-mni, p-cpe:/a:oracle:linux:glibc-langpack-mr, p-cpe:/a:oracle:linux:glibc-langpack-ms, p-cpe:/a:oracle:linux:glibc-langpack-mt, p-cpe:/a:oracle:linux:glibc-langpack-my, p-cpe:/a:oracle:linux:glibc-langpack-nan, p-cpe:/a:oracle:linux:glibc-langpack-nb, p-cpe:/a:oracle:linux:glibc-langpack-nds, p-cpe:/a:oracle:linux:glibc-langpack-ne, p-cpe:/a:oracle:linux:glibc-langpack-nhn, p-cpe:/a:oracle:linux:glibc-langpack-niu, p-cpe:/a:oracle:linux:glibc-langpack-nl, p-cpe:/a:oracle:linux:glibc-langpack-nn, p-cpe:/a:oracle:linux:glibc-langpack-nr, p-cpe:/a:oracle:linux:glibc-langpack-nso, p-cpe:/a:oracle:linux:glibc-langpack-oc, p-cpe:/a:oracle:linux:glibc-langpack-om, p-cpe:/a:oracle:linux:glibc-langpack-or, p-cpe:/a:oracle:linux:glibc-langpack-os, p-cpe:/a:oracle:linux:glibc-langpack-pa, p-cpe:/a:oracle:linux:glibc-langpack-pap, p-cpe:/a:oracle:linux:glibc-langpack-pl, p-cpe:/a:oracle:linux:glibc-langpack-ps, p-cpe:/a:oracle:linux:glibc-langpack-pt, p-cpe:/a:oracle:linux:glibc-langpack-quz, p-cpe:/a:oracle:linux:glibc-langpack-raj, p-cpe:/a:oracle:linux:glibc-langpack-ro, p-cpe:/a:oracle:linux:glibc-langpack-ru, p-cpe:/a:oracle:linux:glibc-langpack-rw, p-cpe:/a:oracle:linux:glibc-langpack-sa, p-cpe:/a:oracle:linux:glibc-langpack-sah, p-cpe:/a:oracle:linux:glibc-langpack-sat, p-cpe:/a:oracle:linux:glibc-langpack-sc, p-cpe:/a:oracle:linux:glibc-langpack-sd, p-cpe:/a:oracle:linux:glibc-langpack-se, p-cpe:/a:oracle:linux:glibc-langpack-sgs, p-cpe:/a:oracle:linux:glibc-langpack-shn, p-cpe:/a:oracle:linux:glibc-langpack-shs, p-cpe:/a:oracle:linux:glibc-langpack-si, p-cpe:/a:oracle:linux:glibc-langpack-sid, p-cpe:/a:oracle:linux:glibc-langpack-sk, p-cpe:/a:oracle:linux:glibc-langpack-sl, p-cpe:/a:oracle:linux:glibc-langpack-sm, p-cpe:/a:oracle:linux:glibc-langpack-so, p-cpe:/a:oracle:linux:glibc-langpack-sq, p-cpe:/a:oracle:linux:glibc-langpack-sr, p-cpe:/a:oracle:linux:glibc-langpack-ss, p-cpe:/a:oracle:linux:glibc-langpack-st, p-cpe:/a:oracle:linux:glibc-langpack-sv, p-cpe:/a:oracle:linux:glibc-langpack-sw, p-cpe:/a:oracle:linux:glibc-langpack-szl, p-cpe:/a:oracle:linux:glibc-langpack-ta, p-cpe:/a:oracle:linux:glibc-langpack-tcy, p-cpe:/a:oracle:linux:glibc-langpack-te, p-cpe:/a:oracle:linux:glibc-langpack-tg, p-cpe:/a:oracle:linux:glibc-langpack-th, p-cpe:/a:oracle:linux:glibc-langpack-the, p-cpe:/a:oracle:linux:glibc-langpack-ti, p-cpe:/a:oracle:linux:glibc-langpack-tig, p-cpe:/a:oracle:linux:glibc-langpack-tk, p-cpe:/a:oracle:linux:glibc-langpack-tl, p-cpe:/a:oracle:linux:glibc-langpack-tn, p-cpe:/a:oracle:linux:glibc-langpack-to, p-cpe:/a:oracle:linux:glibc-langpack-tpi, p-cpe:/a:oracle:linux:glibc-langpack-tr, p-cpe:/a:oracle:linux:glibc-langpack-ts, p-cpe:/a:oracle:linux:glibc-langpack-tt, p-cpe:/a:oracle:linux:glibc-langpack-ug, p-cpe:/a:oracle:linux:glibc-langpack-uk, p-cpe:/a:oracle:linux:glibc-langpack-unm, p-cpe:/a:oracle:linux:glibc-langpack-ur, p-cpe:/a:oracle:linux:glibc-langpack-uz, p-cpe:/a:oracle:linux:glibc-langpack-ve, p-cpe:/a:oracle:linux:glibc-langpack-vi, p-cpe:/a:oracle:linux:glibc-langpack-wa, p-cpe:/a:oracle:linux:glibc-langpack-wae, p-cpe:/a:oracle:linux:glibc-langpack-wal, p-cpe:/a:oracle:linux:glibc-langpack-wo, p-cpe:/a:oracle:linux:glibc-langpack-xh, p-cpe:/a:oracle:linux:glibc-langpack-yi, p-cpe:/a:oracle:linux:glibc-langpack-yo, p-cpe:/a:oracle:linux:glibc-langpack-yue, p-cpe:/a:oracle:linux:glibc-langpack-yuw, p-cpe:/a:oracle:linux:glibc-langpack-zh, p-cpe:/a:oracle:linux:glibc-langpack-zu, p-cpe:/a:oracle:linux:glibc-locale-source, p-cpe:/a:oracle:linux:glibc-minimal-langpack, p-cpe:/a:oracle:linux:glibc-nss-devel, p-cpe:/a:oracle:linux:glibc-static, p-cpe:/a:oracle:linux:glibc-utils, p-cpe:/a:oracle:linux:libnsl, p-cpe:/a:oracle:linux:nscd, p-cpe:/a:oracle:linux:nss_db, p-cpe:/a:oracle:linux:nss_hesiod

Required KB Items: Host/OracleLinux, Host/RedHat/release, Host/RedHat/rpm-list, Host/local_checks_enabled

Exploit Ease: No known exploits are available

Patch Publication Date: 2020/11/10

Vulnerability Publication Date: 2020/03/04

Reference Information

CVE: CVE-2020-1751, CVE-2020-1752, CVE-2020-10029