EulerOS Virtualization 3.0.6.0 : python2 (EulerOS-SA-2024-1697)

critical Nessus Plugin ID 197282

Synopsis

The remote EulerOS Virtualization host is missing multiple security updates.

Description

According to the versions of the python2 packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :

- A use-after-free exists in Python through 3.9 via heappushpop in heapq. (CVE-2022-48560)

- An XML External Entity (XXE) issue was discovered in Python through 3.9.1. The plistlib module no longer accepts entity declarations in XML plist files to avoid XML vulnerabilities. (CVE-2022-48565)

- An issue was discovered in compare_digest in Lib/hmac.py in Python through 3.9.1. Constant-time-defeating optimisations were possible in the accumulator variable in hmac.compare_digest. (CVE-2022-48566)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Solution

Update the affected python2 packages.

See Also

http://www.nessus.org/u?a3e69ced

Plugin Details

Severity: Critical

ID: 197282

File Name: EulerOS_SA-2024-1697.nasl

Version: 1.0

Type: local

Published: 5/17/2024

Updated: 5/17/2024

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS Score Source: CVE-2022-48565

CVSS v3

Risk Factor: Critical

Base Score: 9.8

Temporal Score: 8.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:P/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:huawei:euleros:python2-devel, p-cpe:/a:huawei:euleros:python2-test, p-cpe:/a:huawei:euleros:python-unversioned-command, cpe:/o:huawei:euleros:uvp:3.0.6.0, p-cpe:/a:huawei:euleros:python2, p-cpe:/a:huawei:euleros:python2-libs

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/EulerOS/release, Host/EulerOS/rpm-list, Host/EulerOS/uvp_version

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 5/17/2024

Vulnerability Publication Date: 7/31/2020

Reference Information

CVE: CVE-2022-48560, CVE-2022-48565, CVE-2022-48566