Lucene search
K

Amazon Linux 2023 : bpftool, kernel6.12, kernel6.12-modules-extra (ALAS2023-2025-1052)

🗓️ 10 Jul 2025 00:00:00Reported by TenableType 
nessus
 nessus
🔗 www.tenable.com👁 6 Views

Amazon Linux 2023 addresses multiple vulnerabilities in Linux kernel as per ALAS2023-2025-1052 advisory.

Related
Refs
Code
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux 2023 Security Advisory ALAS2023-2025-1052.
##

include('compat.inc');

if (description)
{
  script_id(241773);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/02/13");

  script_cve_id(
    "CVE-2025-38000",
    "CVE-2025-38003",
    "CVE-2025-38004",
    "CVE-2025-38031",
    "CVE-2025-38033",
    "CVE-2025-38034",
    "CVE-2025-38037",
    "CVE-2025-38038",
    "CVE-2025-38039",
    "CVE-2025-38040",
    "CVE-2025-38043",
    "CVE-2025-38047",
    "CVE-2025-38048",
    "CVE-2025-38051",
    "CVE-2025-38055",
    "CVE-2025-38057",
    "CVE-2025-38058",
    "CVE-2025-38059",
    "CVE-2025-38060",
    "CVE-2025-38062",
    "CVE-2025-38063",
    "CVE-2025-38066",
    "CVE-2025-38068",
    "CVE-2025-38071",
    "CVE-2025-38072",
    "CVE-2025-38075",
    "CVE-2025-38079",
    "CVE-2025-38097"
  );

  script_name(english:"Amazon Linux 2023 : bpftool, kernel6.12, kernel6.12-modules-extra (ALAS2023-2025-1052)");

  script_set_attribute(attribute:"synopsis", value:
"The remote Amazon Linux 2023 host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2025-1052 advisory.

    In the Linux kernel, the following vulnerability has been resolved:

    sch_hfsc: Fix qlen accounting bug when using peek in hfsc_enqueue() (CVE-2025-38000)

    In the Linux kernel, the following vulnerability has been resolved:

    can: bcm: add missing rcu read protection for procfs content (CVE-2025-38003)

    In the Linux kernel, the following vulnerability has been resolved:

    can: bcm: add locking for bcm_op runtime updates (CVE-2025-38004)

    In the Linux kernel, the following vulnerability has been resolved:

    padata: do not leak refcount in reorder_work (CVE-2025-38031)

    In the Linux kernel, the following vulnerability has been resolved:

    x86/Kconfig: make CFI_AUTO_DEFAULT depend on !RUST or Rust >= 1.88 (CVE-2025-38033)

    In the Linux kernel, the following vulnerability has been resolved:

    btrfs: correct the order of prelim_ref arguments in btrfs__prelim_ref (CVE-2025-38034)

    In the Linux kernel, the following vulnerability has been resolved:

    vxlan: Annotate FDB data races (CVE-2025-38037)

    In the Linux kernel, the following vulnerability has been resolved:

    cpufreq: amd-pstate: Remove unnecessary driver_lock in set_boost (CVE-2025-38038)

    In the Linux kernel, the following vulnerability has been resolved:

    net/mlx5e: Avoid WARN_ON when configuring MQPRIO with HTB offload enabled (CVE-2025-38039)

    In the Linux kernel, the following vulnerability has been resolved:

    serial: mctrl_gpio: split disable_ms into sync and no_sync APIs (CVE-2025-38040)

    In the Linux kernel, the following vulnerability has been resolved:

    firmware: arm_ffa: Set dma_mask for ffa devices (CVE-2025-38043)

    In the Linux kernel, the following vulnerability has been resolved:

    x86/fred: Fix system hang during S4 resume with FRED enabled (CVE-2025-38047)

    In the Linux kernel, the following vulnerability has been resolved:

    virtio_ring: Fix data race by tagging event_triggered as racy for KCSAN (CVE-2025-38048)

    In the Linux kernel, the following vulnerability has been resolved:

    smb: client: Fix use-after-free in cifs_fill_dirent (CVE-2025-38051)

    In the Linux kernel, the following vulnerability has been resolved:

    perf/x86/intel: Fix segfault with PEBS-via-PT with sample_freq (CVE-2025-38055)

    In the Linux kernel, the following vulnerability has been resolved:

    espintcp: fix skb leaks (CVE-2025-38057)

    In the Linux kernel, the following vulnerability has been resolved:

    __legitimize_mnt(): check for MNT_SYNC_UMOUNT should be under mount_lock (CVE-2025-38058)

    In the Linux kernel, the following vulnerability has been resolved:

    btrfs: avoid NULL pointer dereference if no valid csum tree (CVE-2025-38059)

    In the Linux kernel, the following vulnerability has been resolved:

    bpf: copy_verifier_state() should copy 'loop_entry' field (CVE-2025-38060)

    In the Linux kernel, the following vulnerability has been resolved:

    genirq/msi: Store the IOMMU IOVA directly in msi_desc instead of iommu_cookie (CVE-2025-38062)

    In the Linux kernel, the following vulnerability has been resolved:

    dm: fix unconditional IO throttle caused by REQ_PREFLUSH (CVE-2025-38063)

    In the Linux kernel, the following vulnerability has been resolved:

    dm cache: prevent BUG_ON by blocking retries on failed device resumes (CVE-2025-38066)

    In the Linux kernel, the following vulnerability has been resolved:

    crypto: lzo - Fix compression buffer overrun (CVE-2025-38068)

    In the Linux kernel, the following vulnerability has been resolved:

    x86/mm: Check return value from memblock_phys_alloc_range() (CVE-2025-38071)

    In the Linux kernel, the following vulnerability has been resolved:

    libnvdimm/labels: Fix divide error in nd_label_data_init() (CVE-2025-38072)

    In the Linux kernel, the following vulnerability has been resolved:

    block: fix race between set_blocksize and read paths (CVE-2025-38073)

    In the Linux kernel, the following vulnerability has been resolved:

    scsi: target: iscsi: Fix timeout on deleted connection (CVE-2025-38075)

    In the Linux kernel, the following vulnerability has been resolved:

    crypto: algif_hash - fix double free in hash_accept (CVE-2025-38079)

    In the Linux kernel, the following vulnerability has been resolved:

    espintcp: remove encap socket caching to avoid reference leak (CVE-2025-38097)

Tenable has extracted the preceding description block directly from the tested product security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com//AL2023/ALAS2023-2025-1052.html");
  script_set_attribute(attribute:"see_also", value:"https://alas.aws.amazon.com/faqs.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38000.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38003.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38004.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38031.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38033.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38034.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38037.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38038.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38039.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38040.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38043.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38047.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38048.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38051.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38055.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38057.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38058.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38059.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38060.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38062.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38063.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38066.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38068.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38071.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38072.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38073.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38075.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38079.html");
  script_set_attribute(attribute:"see_also", value:"https://explore.alas.aws.amazon.com/CVE-2025-38097.html");
  script_set_attribute(attribute:"solution", value:
"Run 'dnf update kernel6.12 --releasever 2023.8.20250707' or
  or 'dnf update --advisory ALAS2023-2025-1052 --releasever 2023.8.20250707' to update your system.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2025-38079");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2025/06/06");
  script_set_attribute(attribute:"patch_publication_date", value:"2025/07/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2025/07/10");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:bpftool");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:bpftool-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-libbpf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-libbpf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-libbpf-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-libbpf-static");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-livepatch-6.12.31-35.92");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-modules-extra-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-tools-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel6.12");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel6.12-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel6.12-debuginfo-common-aarch64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel6.12-debuginfo-common-x86_64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel6.12-modules-extra");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:perf6.12");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:perf6.12-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python3-perf6.12");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:python3-perf6.12-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux:2023");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Amazon Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2025-2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("kpatch.nasl", "ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}

include("rpm.inc");
include("hotfixes.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var alas_release = get_kb_item("Host/AmazonLinux/release");
if (isnull(alas_release) || !strlen(alas_release)) audit(AUDIT_OS_NOT, "Amazon Linux");
var os_ver = pregmatch(pattern: "^AL(A|\d+|-\d+)", string:alas_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "-2023")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux 2023", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

if (get_one_kb_item("Host/kpatch/kernel-cves"))
{
  var cve_list = make_list("CVE-2025-38000", "CVE-2025-38003", "CVE-2025-38004", "CVE-2025-38031", "CVE-2025-38033", "CVE-2025-38034", "CVE-2025-38037", "CVE-2025-38038", "CVE-2025-38039", "CVE-2025-38040", "CVE-2025-38043", "CVE-2025-38047", "CVE-2025-38048", "CVE-2025-38051", "CVE-2025-38055", "CVE-2025-38057", "CVE-2025-38058", "CVE-2025-38059", "CVE-2025-38060", "CVE-2025-38062", "CVE-2025-38063", "CVE-2025-38066", "CVE-2025-38068", "CVE-2025-38071", "CVE-2025-38072", "CVE-2025-38073", "CVE-2025-38075", "CVE-2025-38079", "CVE-2025-38097");
  if (hotfix_cves_check(cve_list))
  {
    audit(AUDIT_PATCH_INSTALLED, "kpatch hotfix for ALAS2023-2025-1052");
  }
  else
  {
    __rpm_report = hotfix_reporting_text();
  }
}

var pkgs = [
    {'reference':'bpftool-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'bpftool-6.12.'},
    {'reference':'bpftool-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'bpftool-6.12.'},
    {'reference':'bpftool-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'bpftool-debuginfo-6.12.'},
    {'reference':'bpftool-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'bpftool-debuginfo-6.12.'},
    {'reference':'kernel-devel-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-devel-6.12.'},
    {'reference':'kernel-devel-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-devel-6.12.'},
    {'reference':'kernel-headers-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-headers-6.12.'},
    {'reference':'kernel-headers-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-headers-6.12.'},
    {'reference':'kernel-libbpf-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-libbpf-6.12.'},
    {'reference':'kernel-libbpf-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-libbpf-6.12.'},
    {'reference':'kernel-libbpf-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-libbpf-debuginfo-6.12.'},
    {'reference':'kernel-libbpf-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-libbpf-debuginfo-6.12.'},
    {'reference':'kernel-libbpf-devel-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-libbpf-devel-6.12.'},
    {'reference':'kernel-libbpf-devel-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-libbpf-devel-6.12.'},
    {'reference':'kernel-libbpf-static-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-libbpf-static-6.12.'},
    {'reference':'kernel-libbpf-static-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-libbpf-static-6.12.'},
    {'reference':'kernel-livepatch-6.12.31-35.92-1.0-0.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-livepatch-6.12.31-35.92-1.0-0.'},
    {'reference':'kernel-livepatch-6.12.31-35.92-1.0-0.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-livepatch-6.12.31-35.92-1.0-0.'},
    {'reference':'kernel-modules-extra-common-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-modules-extra-common-6.12.'},
    {'reference':'kernel-modules-extra-common-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-modules-extra-common-6.12.'},
    {'reference':'kernel-tools-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-6.12.'},
    {'reference':'kernel-tools-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-6.12.'},
    {'reference':'kernel-tools-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-debuginfo-6.12.'},
    {'reference':'kernel-tools-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-debuginfo-6.12.'},
    {'reference':'kernel-tools-devel-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-devel-6.12.'},
    {'reference':'kernel-tools-devel-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel-tools-devel-6.12.'},
    {'reference':'kernel6.12-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel6.12-6.12.'},
    {'reference':'kernel6.12-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel6.12-6.12.'},
    {'reference':'kernel6.12-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel6.12-debuginfo-6.12.'},
    {'reference':'kernel6.12-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel6.12-debuginfo-6.12.'},
    {'reference':'kernel6.12-debuginfo-common-aarch64-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel6.12-debuginfo-common-aarch64-6.12.'},
    {'reference':'kernel6.12-debuginfo-common-x86_64-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel6.12-debuginfo-common-x86_64-6.12.'},
    {'reference':'kernel6.12-modules-extra-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel6.12-modules-extra-6.12.'},
    {'reference':'kernel6.12-modules-extra-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'kernel6.12-modules-extra-6.12.'},
    {'reference':'perf6.12-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'perf6.12-6.12.'},
    {'reference':'perf6.12-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'perf6.12-6.12.'},
    {'reference':'perf6.12-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'perf6.12-debuginfo-6.12.'},
    {'reference':'perf6.12-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'perf6.12-debuginfo-6.12.'},
    {'reference':'python3-perf6.12-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'python3-perf6.12-6.12.'},
    {'reference':'python3-perf6.12-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'python3-perf6.12-6.12.'},
    {'reference':'python3-perf6.12-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'aarch64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'python3-perf6.12-debuginfo-6.12.'},
    {'reference':'python3-perf6.12-debuginfo-6.12.31-35.92.amzn2023', 'cpu':'x86_64', 'release':'AL-2023', 'rpm_spec_vers_cmp':TRUE, 'exists_check':'python3-perf6.12-debuginfo-6.12.'}
];

var flag = 0;
foreach var package_array ( pkgs ) {
  var reference = NULL;
  var _release = NULL;
  var sp = NULL;
  var _cpu = NULL;
  var el_string = NULL;
  var rpm_spec_vers_cmp = NULL;
  var epoch = NULL;
  var allowmaj = NULL;
  var exists_check = NULL;
  var cves = NULL;
  if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
  if (!empty_or_null(package_array['release'])) _release = package_array['release'];
  if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
  if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
  if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
  if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
  if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
  if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
  if (!empty_or_null(package_array['exists_check'])) exists_check = package_array['exists_check'];
  if (!empty_or_null(package_array['cves'])) cves = package_array['cves'];
  if (reference && _release && (!exists_check || rpm_exists(release:_release, rpm:exists_check))) {
    if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
  }
}

if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bpftool / bpftool-debuginfo / kernel-devel / etc");
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation