Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2018 Tenable Network Security, Inc.ALA_ALAS-2015-491.NASL
HistoryMar 17, 2015 - 12:00 a.m.

Amazon Linux AMI : kernel (ALAS-2015-491)

2015-03-1700:00:00
This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.
www.tenable.com
15
JSON

It was reported that stack address is not properly randomized on some 64 bit architectures due to an integer overflow. The stack entropy of the processes is reduced by four.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Amazon Linux AMI Security Advisory ALAS-2015-491.
#

include("compat.inc");

if (description)
{
  script_id(81827);
  script_version("1.2");
  script_cvs_date("Date: 2018/04/18 15:09:35");

  script_cve_id("CVE-2015-1593");
  script_xref(name:"ALAS", value:"2015-491");

  script_name(english:"Amazon Linux AMI : kernel (ALAS-2015-491)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Amazon Linux AMI host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"It was reported that stack address is not properly randomized on some
64 bit architectures due to an integer overflow. The stack entropy of
the processes is reduced by four."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://alas.aws.amazon.com/ALAS-2015-491.html"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"Run 'yum clean all' followed by 'yum update kernel' to update your
system. You will need to reboot your system in order for the new
kernel to be running."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-debuginfo-common-i686");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-debuginfo-common-x86_64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:kernel-tools-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:perf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:amazon:linux:perf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:amazon:linux");

  script_set_attribute(attribute:"patch_publication_date", value:"2015/03/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/03/17");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2018 Tenable Network Security, Inc.");
  script_family(english:"Amazon Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/AmazonLinux/release", "Host/AmazonLinux/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/AmazonLinux/release");
if (isnull(release) || !strlen(release)) audit(AUDIT_OS_NOT, "Amazon Linux");
os_ver = pregmatch(pattern: "^AL(A|\d)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Amazon Linux");
os_ver = os_ver[1];
if (os_ver != "A")
{
  if (os_ver == 'A') os_ver = 'AMI';
  audit(AUDIT_OS_NOT, "Amazon Linux AMI", "Amazon Linux " + os_ver);
}

if (!get_kb_item("Host/AmazonLinux/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (rpm_check(release:"ALA", reference:"kernel-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-debuginfo-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", cpu:"i686", reference:"kernel-debuginfo-common-i686-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", cpu:"x86_64", reference:"kernel-debuginfo-common-x86_64-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-devel-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-doc-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-headers-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-tools-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-tools-debuginfo-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"kernel-tools-devel-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"perf-3.14.35-28.38.amzn1")) flag++;
if (rpm_check(release:"ALA", reference:"perf-debuginfo-3.14.35-28.38.amzn1")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-debuginfo / kernel-debuginfo-common-i686 / etc");
}
VendorProductVersionCPE
amazonlinuxkernelp-cpe:/a:amazon:linux:kernel
amazonlinuxkernel-debuginfop-cpe:/a:amazon:linux:kernel-debuginfo
amazonlinuxkernel-debuginfo-common-i686p-cpe:/a:amazon:linux:kernel-debuginfo-common-i686
amazonlinuxkernel-debuginfo-common-x86_64p-cpe:/a:amazon:linux:kernel-debuginfo-common-x86_64
amazonlinuxkernel-develp-cpe:/a:amazon:linux:kernel-devel
amazonlinuxkernel-docp-cpe:/a:amazon:linux:kernel-doc
amazonlinuxkernel-headersp-cpe:/a:amazon:linux:kernel-headers
amazonlinuxkernel-toolsp-cpe:/a:amazon:linux:kernel-tools
amazonlinuxkernel-tools-debuginfop-cpe:/a:amazon:linux:kernel-tools-debuginfo
amazonlinuxkernel-tools-develp-cpe:/a:amazon:linux:kernel-tools-devel
Rows per page:
1-10 of 131

Related

amazon 1
cvelist 1
prion 1
ubuntucve 1
f5 2
openvas 42
cve 1
debiancve 1
oraclelinux 6
nessus 36
securityvulns 3
ubuntu 6
redhat 5
centos 2
veracode 5
mageia 3
osv 2
debian 2
suse 4
fedora 14
androidsecurity 1
amazon
amazon
Low: kernel
2015-03-13 02:34:00
cvelist
cvelist
CVE-2015-1593
2015-03-16 10:00:00
prion
prion
Stack overflow
2015-03-16 10:59:00
ubuntucve
ubuntucve
CVE-2015-1593
2015-03-16 00:00:00
f5
f5
SOL17244 - Linux kernel vulnerability CVE-2015-1593
2015-09-08 00:00:00
K17244 : Linux kernel vulnerability CVE-2015-1593
2015-09-08 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2015-491)
2015-09-08 00:00:00
Oracle: Security Advisory (ELSA-2015-3047)
2015-10-06 00:00:00
Oracle: Security Advisory (ELSA-2015-3046)
2015-10-06 00:00:00
cve
cve
CVE-2015-1593
2015-03-16 10:59:00
debiancve
debiancve
CVE-2015-1593
2015-03-16 10:59:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2015-06-24 00:00:00
Unbreakable Enterprise kernel security update
2015-06-24 00:00:00
Unbreakable Enterprise kernel security update
2015-06-24 00:00:00
nessus
nessus
OracleVM 3.3 : kernel-uek (OVMSA-2015-0072)
2015-06-25 00:00:00
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2015-3046)
2015-06-25 00:00:00
Oracle Linux 5 / 6 : Unbreakable Enterprise kernel (ELSA-2015-3047)
2015-06-26 00:00:00
securityvulns
securityvulns
[USN-2565-1] Linux kernel vulnerabilities
2015-04-13 00:00:00
[SECURITY] [DSA 3170-1] linux security update
2015-03-07 00:00:00
Linux kernel multiple security vulnerabilities
2015-03-15 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2015-04-08 00:00:00
Linux kernel (OMAP4) vulnerabilities
2015-04-08 00:00:00
Linux kernel (Utopic HWE) vulnerabilities
2015-04-09 00:00:00
redhat
redhat
(RHSA-2015:1221) Moderate: kernel security, bug fix, and enhancement update
2015-07-14 00:00:00
(RHSA-2015:1139) Important: kernel-rt security, bug fix, and enhancement update
2015-05-20 10:22:57
(RHSA-2015:1137) Important: kernel security and bug fix update
2015-06-23 00:00:00
centos
centos
kernel, perf, python security update
2015-07-15 15:04:33
kernel, perf, python security update
2015-06-24 03:36:55
veracode
veracode
Privilege Escalation
2019-05-02 05:39:47
Denial Of Service (DoS)
2019-05-02 05:39:40
Memory Corruption
2019-05-02 05:39:39
mageia
mageia
Updated kernel-linus package fixes security vulnerabilities
2015-05-01 00:57:25
Updated kernel package fixes security vulnerabilities
2015-05-01 00:57:25
Updated kernel-tmb packages fix security vulnerabilities
2015-05-13 18:54:07
osv
osv
linux - security update
2015-02-23 00:00:00
linux-2.6 - security update
2015-02-18 00:00:00
debian
debian
[SECURITY] [DLA 155-1] linux-2.6 security update
2015-02-18 23:22:33
[SECURITY] [DSA 3170-1] linux security update
2015-02-23 17:43:08
suse
suse
Security update for the Linux Kernel (important)
2015-04-13 14:17:21
Security update for Linux Kernel (important)
2015-04-13 14:04:48
Security update for Real Time Linux Kernel (important)
2015-04-20 21:05:00
fedora
fedora
[SECURITY] Fedora 21 Update: kernel-3.18.8-201.fc21
2015-03-09 08:17:35
[SECURITY] Fedora 21 Update: kernel-3.19.1-201.fc21
2015-03-21 05:01:11
[SECURITY] Fedora 21 Update: kernel-3.19.2-201.fc21
2015-03-29 04:31:39
androidsecurity
androidsecurity
Android Security Bulletinβ€”August 2016
2016-08-01 00:00:00
JSON
Related for ALA_ALAS-2015-491.NASL
amazon1cvelist1prion1ubuntucve1f52openvas42cve1debiancve1oraclelinux6nessus36securityvulns3ubuntu6redhat5centos2veracode5mageia3osv2debian2suse4fedora14androidsecurity1