sign in sign up
<<
Home , GNU Binutils, Poppler (software)

Skybox Appliance Release Notes

9.0.800

CentOS release 7.6.1818 (Core)

Proprietary and Confidential to Skybox Security. © 2019 Skybox Security, Inc. All rights reserved. Due to continued product development, the information contained in this document may change without notice. The information and intellectual property contained herein are confidential and remain the exclusive intellectual property of Skybox Security. If you find any problems in the documentation, please report them to us in writing. Skybox Security does not warrant that this document is error-free. No part of this publication may be reproduced, stored in a retrieval system, or transmitted in any form or by any means—electronic, mechanical, photocopying, recording, or otherwise—without the prior written permission of Skybox Security. Skybox®, Skybox® Security, Skybox Firewall Assurance, Skybox Network Assurance, Skybox Vulnerability Control, Skybox Threat Manager, Skybox Change Manager, Skybox Appliance 5500/6000/7000/8000/8050, and the Skybox Security logo are either registered trademarks or trademarks of Skybox Security, Inc., in the United States and/or other countries. All other trademarks are the property of their respective owners.

Contact information Contact Skybox using the form on our website or by emailing [email protected] Customers and partners can contact Skybox technical support via the Skybox Support portal

Contents

Introduction ...... 4

Updates and new features ...... 5

Fixed vulnerabilities ...... 6

Skybox version 9.0.800 3

Chapter 1

Introduction

This document includes information about Skybox Appliance for Skybox version 9.0.800, including a list of updates and new features, and a list of fixed vulnerabilities. Unless otherwise noted, the information in this document is relevant to all Skybox Appliances, including virtual Appliances.

Skybox version 9.0.800 4

Chapter 2

Updates and new features

Version 9.0.800 is a maintenance release with no new features. SSH hardening Starting in version 9.0.600, security hardening was added to prevent local users from logging in via SSH.

The following lines were added to /etc/ssh/sshd_config: › AllowUsers root skyboxview › AllowGroups root skyboxview Firmware updates for Skybox Appliances Before doing any of the following updates on Skybox non-virtual Appliances, it is recommended that you check whether your firmware needs updating. › updates › ISO updates from version 9.0.6xx (or below) to version 9.0.8xx (or above) › Clean installation of 9.0.8xx or above onto an old Appliance Detailed information is available in all the quick start guides, in the Firmware updates for Skybox Appliance section.

Skybox version 9.0.800 5

Chapter 3

Fixed vulnerabilities

The following vulnerabilities were found and fixed for version 9.0.800:

CVE SBV-ID Exploit Severity Description Status CVE-2018-10001 SBV-82864 No Critical Curl 7.12.3 - 7.58.0 Remote DoS 20 Exploit or Other Unspecified Impact in FTP URL Handling - CVE-2018-1000120 CVE-2015-9262 SBV-91814 No Critical X.org libXcursor Exploit CVE-2018-14681 SBV-98708 No Critical libmspack Exploit CVE-2018-17456 SBV-92796 Exploit Critical Git Remote Unspecified Available Vulnerability - CVE-2018-17456 CVE-2018-15688 SBV-92859 No Critical Remote Code Execution Exploit or DoS Vulnerability - CVE-2018-15688 CVE-2018-16395 SBV-93897 No Critical Ruby Remote Unspecified Exploit Vulnerability in OpenSSL::X509::Name - CVE-2018-16395 CVE-2018-18311 SBV-95961 No Critical Perl Remote Buffer Overflow Exploit Vulnerability - CVE-2018-18311 CVE-2018-11236 SBV-86927 No Critical GNU GLibC 2.27 and Earlier Exploit Remote Code Execution Vulnerability - CVE-2018-11236 CVE-2018-12910 SBV-99220 No Critical GNOME Libsoup Remote Exploit Unspecified Vulnerability - CVE-2018-12910 CVE-2018-6485 SBV-82809 No Critical GNU GLibC Remote Heap Exploit Corruption Vulnerability - CVE-2018-6485 CVE-2018-10001 SBV-82920 No Critical Curl 7.20.0 - 7.58.0 Remote DoS 22 Exploit or Information Disclosure Vulnerability in RSTP+RTP Handling - CVE-2018-1000122 CVE-2018-10003 SBV-85612 No Critical cURL Remote Information 01 Exploit Disclosure or DoS Vulnerability - CVE-2018-1000301 CVE-2019-3857 SBV-99198 No High libssh2 Integer Overflow and Exploit Out-of-Bounds Write- CVE-2019-3857

Skybox version 9.0.800 6

Chapter 3 Fixed vulnerabilities

CVE-2018-10858 SBV-89522 No High Samba Remote Unspecified Exploit Vulnerability - CVE-2018-10858 CVE-2019-3863 SBV-99204 No High libssh2 Memory Out-of-Bounds Exploit Write due to Integer Overflow in User Authenicate Keyboard Interactive - CVE-2019-3863 CVE-2018-14682 SBV-98710 No High libmspack Exploit CVE-2019-3855 SBV-99172 No High libssh2 Remote Unspecified Exploit Vulnerability in Transport Read - CVE-2019-3855 CVE-2019-3856 SBV-99173 No High libssh2 Remote Code Execution Exploit Vulnerability in Keyboard Interactive Handling - CVE-2019-3856 CVE-2018-1139 SBV-89521 No High Samba Remote Security Bypass Exploit Vulnerability - CVE-2018-1139 CVE-2018-10906 SBV-91245 Exploit High FUSE Local Denial of Service or Available Unspecified Vulnerability - CVE-2018-10906 CVE-2018-11237 SBV-88810 Exploit High GNU GLibC Available CVE-2018-14665 SBV-92852 Exploite High X.org Server Local Escalation of d In The Privileges Vulnerability - Wild CVE-2018-14665 CVE-2018-16864 SBV-96299 Exploit High Systemd Local DoS Vulnerability in Available Journald - CVE-2018-16864 CVE-2004-0230 SBV-04179 Exploit High [MS06-064, MS05-019, Available cisco-sa-20040420-tcp-ios] Multiple Vendor TCP DoS CVE-2018-7643 SBV-82950 No High GNU Binutils Remote DoS Exploit Vulnerability - CVE-2018-7643 CVE-2017-16997 SBV-90267 No High GNU GLibC 2.19 - 2.26 Allows Exploit Privilege Escalation via Trojan Horse - CVE-2017-16997 CVE-2018-7208 SBV-83073 No High GNU Binutils Remote DoS or Exploit Unspecified Vulnerability - CVE-2018-7208 CVE-2018-16865 SBV-96305 Exploit High Systemd Local Memory Corruption Available Vulnerability via Stack Clash - CVE-2018-16865 CVE-2017-10000 SBV-85746 No High JasPer 2.0.12 Remote DoS 50 Exploit Vulnerability - CVE-2017-1000050 CVE-2018-1060 SBV-86841 No High Python Remote DoS Vulnerability - Exploit CVE-2018-1060 CVE-2018-10852 SBV-87055 No High SSSD Remote Information Exploit Disclosure Vulnerability - CVE-2018-10852

Skybox version 9.0.800 7

Skybox Appliance Release Notes

CVE-2018-5742 SBV-97216 No High Bind Remote DoS Vulnerability Exploit Vulnerability - CVE-2018-5742 CVE-2018-7642 SBV-82327 Exploit High GNU Binutils 2.30 Remote DoS Available Vulnerability in Aout_32_swap_std_reloc_out - CVE-2018-7642 CVE-2018-14680 SBV-98707 No High libmspack Exploit CVE-2018-14679 SBV-98703 No High libmspack Exploit CVE-2018-1061 SBV-86847 No High Python Remote DoS Vulnerability - Exploit CVE-2018-1061 CVE-2018-0732 SBV-86615 No High OpenSSL Remote DoS Exploit Vulnerability - CVE-2018-0732 CVE-2018-10001 SBV-82865 No High Curl 7.21.0 - 7.58.0 DoS 21 Exploit Vulnerability in LDAP Code - CVE-2018-1000121 CVE-2016-9396 SBV-77652 No High JasPer Remote DoS Vulnerability - Exploit CVE-2016-9396 CVE-2019-6133 SBV-97317 No Medium Polkit 0.115 Local Authorization Exploit Hijacking Vulnerability - CVE-2019-6133 CVE-2018-10768 SBV-88599 No Medium Kristian Hogsberg Poppler Remote Exploit DoS Vulnerability - CVE-2018-10768 CVE-2018-0494 SBV-85207 Exploit Medium GNU Available CVE-2018-14526 SBV-89266 No Medium wpa_supplicant 2.0 - 2.6 Remote Exploit Information Disclosure and DoS Vulnerability - CVE-2018-14526 CVE-2018-13033 SBV-89730 No Medium GNU Binutils 2.30 Remote DoS Exploit Vulnerability - CVE-2018-13033 CVE-2018-10733 SBV-86425 No Medium GNOME libgxps 0.3.0 Remote DoS Exploit Vulnerability - CVE-2018-10733 CVE-2018-10767 SBV-86661 No Medium GNOME libgxps <=0.3.0 Remote Exploit DoS Vulnerability - CVE-2018-10767 CVE-2018-13988 SBV-90538 No Medium Poppler Remote DoS Vulnerability Exploit - CVE-2018-13988 CVE-2018-10373 SBV-86432 No Medium GNU Binutils 2.30 Remote DoS Exploit Vulnerability - CVE-2018-10373 CVE-2018-0739 SBV-83154 No Medium OpenSSL 1.0.2b - 1.0.2n and Exploit 1.1.0 - 1.1.0g Remote DoS Vulnerability - CVE-2018-0739 CVE-2018-10845 SBV-89684 No Medium GnuTLS Implementation of Exploit HMAC-SHA-384 Remote Weak Encryption Vulnerability - CVE-2018-10845

Skybox version 9.0.800 8

Chapter 3 Fixed vulnerabilities

CVE-2018-10844 SBV-89683 No Medium GnuTLS Implementation of Exploit HMAC-SHA-256 Remote Weak Encryption Vulnerability - CVE-2018-10844 CVE-2018-10846 SBV-89685 No Medium GnuTLS Local Weak Encryption Exploit Vulnerability - CVE-2018-10846 CVE-2018-0737 SBV-84300 No Medium OpenSSL Private Key Recovery Exploit Vulnerability - CVE-2018-0737 CVE-2018-10372 SBV-86670 No Medium GNU Binutils 2.30 Remote DoS Exploit Vulnerability - CVE-2018-10372 CVE-2019-6454 SBV-98108 No Medium systemd (PID1) Local DoS via Exploit D-Bus Message - CVE-2019-6454 CVE-2017-18267 SBV-88594 No Medium Kristian Hogsberg Poppler Exploit <=0.64.0 Remote DoS Vulnerability - CVE-2017-18267 CVE-2018-7569 SBV-83068 No Medium GNU Binutils Remote DoS Exploit Vulnerability - CVE-2018-7569 CVE-2018-10535 SBV-86669 No Medium GNU Binutils 2.30 Remote DoS Exploit Vulnerability - CVE-2018-10535 CVE-2018-10534 SBV-86668 No Medium GNU Binutils 2.30 Remote DoS Exploit Vulnerability - CVE-2018-10534 CVE-2018-8945 SBV-84919 No Medium GNU Binutils Remote DoS Exploit Vulnerability - CVE-2018-8945 CVE-2018-7568 SBV-83067 No Medium GNU Binutils Remote DoS Exploit Vulnerability - CVE-2018-7568 CVE-2017-3735 SBV-75478 No Medium OpenSSL Out-of-Bounds Read Exploit Vulnerability - CVE-2017-3735 CVE-2018-10000 SBV-80902 No Medium libcurl Remote Information 07 Exploit Disclosure Vulnerability - CVE-2018-1000007 CVE-2018-1113 SBV-96977 No Medium Setup Local Security Exploit Bypass Vulnerability - CVE-2018-1113 CVE-2018-0495 SBV-87174 No Medium OpenSSL Local Information Exploit Disclosure Vulnerability - CVE-2018-0495 CVE-2018-5729 SBV-83499 No Medium MIT Kerberos 5 Remote Exploit Restrictions Bypass Vulnerability - CVE-2018-5729 CVE-2018-0495 SBV-87175 No Medium Mozilla Network Security Services Exploit (NSS) Local Information Disclosure Vulnerability - CVE-2018-0495 CVE-2018-5730 SBV-83501 No Low MIT Kerberos 5 Remote Exploit Restrictions Bypass Vulnerability - CVE-2018-5730 CVE-2019-3815 SBV-97166 No Low Systemd Local DoS Vulnerability in Exploit Journald - CVE-2019-3815

Skybox version 9.0.800 9

Skybox Appliance Release Notes

CVE-2018-5407 SBV-95187 Exploit Low OpenSSL Local Information Available Disclosure via Timing Side Channel Attack - CVE-2018-5407 CVE-2018-1050 SBV-82659 No Low Samba 4 Remote DoS Exploit Vulnerability in RPC Spoolss Service - CVE-2018-1050

Skybox version 9.0.800 10