Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.ALA_ALAS-2012-133.NASL
HistorySep 04, 2013 - 12:00 a.m.

Amazon Linux AMI : kernel (ALAS-2012-133)

2013-09-0400:00:00
This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
JSON

An integer overflow flaw was found in the i915_gem_do_execbuffer() function in the Intel i915 driver in the Linux kernel. A local, unprivileged user could use this flaw to cause a denial of service.
This issue only affected 32-bit systems. (CVE-2012-2384 , Moderate)

A memory leak flaw was found in the way the Linux kernel’s memory subsystem handled resource clean up in the mmap() failure path when the MAP_HUGETLB flag was set. A local, unprivileged user could use this flaw to cause a denial of service. (CVE-2012-2390 , Moderate)

A race condition was found in the way access to inet->opt ip_options was synchronized in the Linux kernel’s TCP/IP protocol suite implementation. Depending on the network facing applications running on the system, a remote attacker could possibly trigger this flaw to cause a denial of service. A local, unprivileged user could use this flaw to cause a denial of service regardless of the applications the system runs. (CVE-2012-3552 , Moderate)

A flaw was found in the way the Linux kernel’s dl2k driver, used by certain D-Link Gigabit Ethernet adapters, restricted IOCTLs. A local, unprivileged user could use this flaw to issue potentially harmful IOCTLs, which could cause Ethernet adapters using the dl2k driver to malfunction (for example, losing network connectivity). (CVE-2012-2313 , Low)

A flaw was found in the way the msg_namelen variable in the rds_recvmsg() function of the Linux kernel’s Reliable Datagram Sockets (RDS) protocol implementation was initialized. A local, unprivileged user could use this flaw to leak kernel stack memory to user-space.
(CVE-2012-3430 , Low)

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux AMI Security Advisory ALAS-2012-133.
#

include("compat.inc");

if (description)
{
  script_id(69623);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2020/08/03");

  script_cve_id("CVE-2012-2313", "CVE-2012-2384", "CVE-2012-2390", "CVE-2012-3430", "CVE-2012-3552");
  script_xref(name:"ALAS", value:"2012-133");
  script_xref(name:"RHSA", value:"2012:1304");

  script_name(english:"Amazon Linux AMI : kernel (ALAS-2012-133)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis",
    value:"The remote Amazon Linux AMI host is missing a security update."
  );
  script_set_attribute(
    attribute:"description",
    value:
"An integer overflow flaw was found in the i915_gem_do_execbuffer()
function in the Intel i915 driver in the Linux kernel. A local,
unprivileged user could use this flaw to cause a denial of service.
This issue only affected 32-bit systems. (CVE-2012-2384 , Moderate)

A memory leak flaw was found in the way the Linux kernel's memory
subsystem handled resource clean up in the mmap() failure path when
the MAP_HUGETLB flag was set. A local, unprivileged user could use
this flaw to cause a denial of service. (CVE-2012-2390 , Moderate)

A race condition was found in the way access to inet->opt ip_options
was synchronized in the Linux kernel's TCP/IP protocol suite
implementation. Depending on the network facing applications running
on the system, a remote attacker could possibly trigger this flaw to
cause a denial of service. A local, unprivileged user could use this
flaw to cause a denial of service regardless of the applications the
system runs. (CVE-2012-3552 , Moderate)

A flaw was found in the way the Linux kernel's dl2k driver, used by
certain D-Link Gigabit Ethernet adapters, restricted IOCTLs. A local,
unprivileged user could use this flaw to issue potentially harmful
IOCTLs, which could cause Ethernet adapters using the dl2k driver to
malfunction (for example, losing network connectivity). (CVE-2012-2313
, Low)

A flaw was found in the way the msg_namelen variable in the
rds_recvmsg() function of the Linux kernel's Reliable Datagram Sockets
(RDS) protocol implementation was initialized. A local, unprivileged
user could use this flaw to leak kernel stack memory to user-space.
(CVE-2012-3430 , Low)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://alas.aws.amazon.com/ALAS-2012-133.html"
  );
  script_set_attribute(
    attribute:"solution",
    value:
"Run 'yum update kernel' to update your system. You will need to reboot
your system in order for the new kernel to be running."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-debuginfo-common-i686");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-debuginfo-common-x86_64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/06/13");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/09/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/09/04");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Amazon Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "A")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux AMI", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (rpm_check(release:"ALA", reference:"kernel-3.2.30-49.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-debuginfo-3.2.30-49.59.amzn1")) flag++;
if (rpm_check(release:"ALA", cpu:"i686", reference:"kernel-debuginfo-common-i686-3.2.30-49.59.amzn1")) flag++;
if (rpm_check(release:"ALA", cpu:"x86_64", reference:"kernel-debuginfo-common-x86_64-3.2.30-49.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-devel-3.2.30-49.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-doc-3.2.30-49.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-headers-3.2.30-49.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-tools-3.2.30-49.59.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-tools-debuginfo-3.2.30-49.59.amzn1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-debuginfo / kernel-debuginfo-common-i686 / etc");
}
VendorProductVersionCPE
amazonlinuxkernel-toolsp-cpe:/a:amazon:linux:kernel-tools
amazonlinuxkernel-tools-debuginfop-cpe:/a:amazon:linux:kernel-tools-debuginfo
amazonlinuxcpe:/o:amazon:linux
amazonlinuxkernelp-cpe:/a:amazon:linux:kernel
amazonlinuxkernel-debuginfop-cpe:/a:amazon:linux:kernel-debuginfo
amazonlinuxkernel-debuginfo-common-i686p-cpe:/a:amazon:linux:kernel-debuginfo-common-i686
amazonlinuxkernel-debuginfo-common-x86_64p-cpe:/a:amazon:linux:kernel-debuginfo-common-x86_64
amazonlinuxkernel-develp-cpe:/a:amazon:linux:kernel-devel
amazonlinuxkernel-docp-cpe:/a:amazon:linux:kernel-doc
amazonlinuxkernel-headersp-cpe:/a:amazon:linux:kernel-headers

Related

openvas 69
centos 3
nessus 54
amazon 3
oraclelinux 7
redhat 8
cve 6
veracode 3
prion 6
debiancve 5
seebug 1
ubuntucve 6
ubuntu 23
securityvulns 5
openvas
openvas
RedHat Update for kernel RHSA-2012:1304-01
2012-09-27 00:00:00
Amazon Linux: Security Advisory (ALAS-2012-133)
2015-09-08 00:00:00
RedHat Update for kernel RHSA-2012:1304-01
2012-09-27 00:00:00
centos
centos
kernel, perf, python security update
2012-09-26 01:59:30
kernel security update
2012-08-22 02:56:42
kernel security update
2012-10-03 11:39:10
nessus
nessus
Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20120925)
2012-09-27 00:00:00
RHEL 6 : kernel (RHSA-2012:1304)
2012-09-26 00:00:00
CentOS 6 : kernel (CESA-2012:1304)
2012-09-27 00:00:00
amazon
amazon
Medium: kernel
2012-10-08 10:43:00
Medium: kernel
2012-08-21 21:04:00
Low: kernel
2012-05-21 16:47:00
oraclelinux
oraclelinux
kernel security and bug fix update
2012-09-25 00:00:00
Unbreakable Enterprise kernel security update
2012-09-27 00:00:00
Unbreakable Enterprise kernel Security update
2012-09-27 00:00:00
redhat
redhat
(RHSA-2012:1304) Moderate: kernel security and bug fix update
2012-09-25 00:00:00
(RHSA-2012:1589) Low: kernel security and bug fix update
2012-12-18 00:00:00
(RHSA-2012:1481) Low: kernel security and bug fix update
2012-11-20 00:00:00
cve
cve
CVE-2012-3430
2012-10-03 11:02:00
CVE-2012-2313
2012-06-13 10:24:00
CVE-2012-2390
2012-06-13 10:24:00
veracode
veracode
Information Disclosure
2019-05-02 04:41:23
Denial Of Service (DoS)
2019-01-15 08:55:32
Denial Of Service (DoS)
2019-05-02 04:42:42
prion
prion
Design/Logic Flaw
2012-06-13 10:24:00
Memory corruption
2012-06-13 10:24:00
Sql injection
2012-10-03 11:02:00
debiancve
debiancve
CVE-2012-3430
2012-10-03 11:02:00
CVE-2012-2313
2012-06-13 10:24:00
CVE-2012-2390
2012-06-13 10:24:00
seebug
seebug
Linux kernel 2.6.x 'rds_recvmsg()'函数本地信息泄露漏洞
2012-07-27 00:00:00
ubuntucve
ubuntucve
CVE-2012-3430
2012-07-27 00:00:00
CVE-2012-2313
2012-05-14 00:00:00
CVE-2012-2390
2012-06-13 00:00:00
ubuntu
ubuntu
Linux kernel (OMAP4) vulnerability
2012-07-17 00:00:00
Linux kernel vulnerability
2012-07-23 00:00:00
Linux kernel (OMAP4) vulnerabilities
2012-06-13 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2012-07-09 00:00:00
[USN-1473-1] Linux kernel vulnerabilities
2012-07-09 00:00:00
[USN-1488-1] Linux kernel vulnerabilities
2012-07-09 00:00:00
JSON
Related for ALA_ALAS-2012-133.NASL
openvas69centos3nessus54amazon3oraclelinux7redhat8cve6veracode3prion6debiancve5seebug1ubuntucve6ubuntu23securityvulns5