Detections
Analytics

RHEL 7 : firewalld (RHSA-2016:2597)

medium Nessus Plugin ID 94560

Language:

Synopsis

The remote Red Hat host is missing a security update.

Description

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2016:2597 advisory.

 firewalld is a firewall service daemon that provides a dynamic customizable firewall with a D-Bus interface.

 The following packages have been upgraded to a newer upstream version: firewalld (0.4.3.2). (BZ#1302802)

 Security Fix(es):

 * A flaw was found in the way firewalld allowed certain firewall configurations to be modified by unauthenticated users. Any locally logged in user could use this flaw to tamper or change firewall settings. (CVE-2016-5410)

 Additional Changes:

 For detailed information on changes in this release, see the Red Hat Enterprise Linux 7.3 Release Notes linked from the References section.

Tenable has extracted the preceding description block directly from the Red Hat Enterprise Linux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number.

Solution

Update the affected packages.

See Also

https://bugzilla.redhat.com/show_bug.cgi?id=1367038

https://bugzilla.redhat.com/show_bug.cgi?id=1368949

https://bugzilla.redhat.com/show_bug.cgi?id=1371116

https://bugzilla.redhat.com/show_bug.cgi?id=1373260

https://bugzilla.redhat.com/show_bug.cgi?id=1374799

http://www.nessus.org/u?4165441c

http://www.nessus.org/u?c8975fc5

https://access.redhat.com/errata/RHSA-2016:2597

https://access.redhat.com/security/updates/classification/#moderate

https://bugzilla.redhat.com/show_bug.cgi?id=1066037

https://bugzilla.redhat.com/show_bug.cgi?id=1136801

https://bugzilla.redhat.com/show_bug.cgi?id=1147500

https://bugzilla.redhat.com/show_bug.cgi?id=1147951

https://bugzilla.redhat.com/show_bug.cgi?id=1219717

https://bugzilla.redhat.com/show_bug.cgi?id=1220196

https://bugzilla.redhat.com/show_bug.cgi?id=1220467

https://bugzilla.redhat.com/show_bug.cgi?id=1237242

https://bugzilla.redhat.com/show_bug.cgi?id=1273296

https://bugzilla.redhat.com/show_bug.cgi?id=1273888

https://bugzilla.redhat.com/show_bug.cgi?id=1281416

https://bugzilla.redhat.com/show_bug.cgi?id=1285769

https://bugzilla.redhat.com/show_bug.cgi?id=1292926

https://bugzilla.redhat.com/show_bug.cgi?id=1296573

https://bugzilla.redhat.com/show_bug.cgi?id=1301573

https://bugzilla.redhat.com/show_bug.cgi?id=1302802

https://bugzilla.redhat.com/show_bug.cgi?id=1303026

https://bugzilla.redhat.com/show_bug.cgi?id=1305434

https://bugzilla.redhat.com/show_bug.cgi?id=1313023

https://bugzilla.redhat.com/show_bug.cgi?id=1313845

https://bugzilla.redhat.com/show_bug.cgi?id=1325335

https://bugzilla.redhat.com/show_bug.cgi?id=1326130

https://bugzilla.redhat.com/show_bug.cgi?id=1326462

https://bugzilla.redhat.com/show_bug.cgi?id=1347530

https://bugzilla.redhat.com/show_bug.cgi?id=1349903

https://bugzilla.redhat.com/show_bug.cgi?id=1357050

https://bugzilla.redhat.com/show_bug.cgi?id=1360135

https://bugzilla.redhat.com/show_bug.cgi?id=1360894

https://bugzilla.redhat.com/show_bug.cgi?id=1361669

https://bugzilla.redhat.com/show_bug.cgi?id=1365198

Plugin Details

Severity: Medium

ID: 94560

File Name: redhat-RHSA-2016-2597.nasl

Version: 2.15

Type: local

Agent: unix

Published: 11/4/2016

Updated: 11/4/2024

Supported Sensors: Frictionless Assessment AWS, Frictionless Assessment Azure, Frictionless Assessment Agent, Nessus Agent, Agentless Assessment, Continuous Assessment, Nessus

Risk Information

VPR

Risk Factor: Low

Score: 3.6

Vendor

Vendor Severity: Moderate

CVSS v2

Risk Factor: Low

Base Score: 2.1

Temporal Score: 1.6

Vector: CVSS2#AV:L/AC:L/Au:N/C:N/I:P/A:N

CVSS Score Source: CVE-2016-5410

CVSS v3

Risk Factor: Medium

Base Score: 5.5

Temporal Score: 4.8

Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: p-cpe:/a:redhat:enterprise_linux:firewalld-filesystem, p-cpe:/a:redhat:enterprise_linux:firewalld, p-cpe:/a:redhat:enterprise_linux:python-firewall, p-cpe:/a:redhat:enterprise_linux:firewall-applet, cpe:/o:redhat:enterprise_linux:7, p-cpe:/a:redhat:enterprise_linux:firewall-config

Required KB Items: Host/local_checks_enabled, Host/RedHat/release, Host/RedHat/rpm-list, Host/cpu

Exploit Ease: No known exploits are available

Patch Publication Date: 11/3/2016

Vulnerability Publication Date: 4/19/2017

Reference Information

CVE: CVE-2016-5410

CWE: 306

RHSA: 2016:2597