Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-2090.NASL
HistoryJan 31, 2020 - 12:00 a.m.

Debian DLA-2090-1 : qemu security update

2020-01-3100:00:00
This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25

6.8 Medium

AI Score

Confidence

High

JSON

tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0, mismanag es memory, as demonstrated by IRC DCC commands in EMU_IRC.
This can cause a heap-based buffer overflow or other out-of-bounds acces s which can lead to a DoS or potential execute arbitrary code.

For Debian 8 ‘Jessie’, this problem has been fixed in version 1:2.1+dfsg-12+deb8u13.

We recommend that you upgrade your qemu packages.

NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-2090-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(133366);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/03/28");

  script_cve_id("CVE-2020-7039");

  script_name(english:"Debian DLA-2090-1 : qemu security update");

  script_set_attribute(attribute:"synopsis", value:
"The remote Debian host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"tcp_emu in tcp_subr.c in libslirp 4.1.0, as used in QEMU 4.2.0,
mismanag es memory, as demonstrated by IRC DCC commands in EMU_IRC.
This can cause a heap-based buffer overflow or other out-of-bounds
acces s which can lead to a DoS or potential execute arbitrary code.

For Debian 8 'Jessie', this problem has been fixed in version
1:2.1+dfsg-12+deb8u13.

We recommend that you upgrade your qemu packages.

NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues.");
  script_set_attribute(attribute:"see_also", value:"https://lists.debian.org/debian-lts-announce/2020/01/msg00036.html");
  script_set_attribute(attribute:"see_also", value:"https://packages.debian.org/source/jessie/qemu");
  script_set_attribute(attribute:"solution", value:
"Upgrade the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2020-7039");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2020/01/16");
  script_set_attribute(attribute:"patch_publication_date", value:"2020/01/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2020/01/31");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-guest-agent");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-kvm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-system");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-system-arm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-system-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-system-mips");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-system-misc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-system-ppc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-system-sparc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-system-x86");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-user");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-user-binfmt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-user-static");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-utils");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:8.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Debian Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2020-2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("debian_package.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);


flag = 0;
if (deb_check(release:"8.0", prefix:"qemu", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-guest-agent", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-kvm", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-system", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-system-arm", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-system-common", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-system-mips", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-system-misc", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-system-ppc", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-system-sparc", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-system-x86", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-user", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-user-binfmt", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-user-static", reference:"1:2.1+dfsg-12+deb8u13")) flag++;
if (deb_check(release:"8.0", prefix:"qemu-utils", reference:"1:2.1+dfsg-12+deb8u13")) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:deb_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
debiandebian_linuxqemup-cpe:/a:debian:debian_linux:qemu
debiandebian_linuxqemu-guest-agentp-cpe:/a:debian:debian_linux:qemu-guest-agent
debiandebian_linuxqemu-kvmp-cpe:/a:debian:debian_linux:qemu-kvm
debiandebian_linuxqemu-systemp-cpe:/a:debian:debian_linux:qemu-system
debiandebian_linuxqemu-system-armp-cpe:/a:debian:debian_linux:qemu-system-arm
debiandebian_linuxqemu-system-commonp-cpe:/a:debian:debian_linux:qemu-system-common
debiandebian_linuxqemu-system-mipsp-cpe:/a:debian:debian_linux:qemu-system-mips
debiandebian_linuxqemu-system-miscp-cpe:/a:debian:debian_linux:qemu-system-misc
debiandebian_linuxqemu-system-ppcp-cpe:/a:debian:debian_linux:qemu-system-ppc
debiandebian_linuxqemu-system-sparcp-cpe:/a:debian:debian_linux:qemu-system-sparc
Rows per page:
1-10 of 161

Related

osv 12
nessus 57
redhat 15
almalinux 3
cve 1
ubuntucve 1
redhatcve 1
cbl_mariner 1
centos 2
debian 4
openvas 10
prion 1
veracode 1
f5 1
rocky 3
debiancve 1
ubuntu 2
amazon 3
oraclelinux 6
archlinux 1
gentoo 1
suse 1
osv
osv
qemu - security update
2020-01-31 00:00:00
CVE-2020-7039
2020-01-16 23:15:12
Important: container-tools:1.0 security update
2020-04-07 12:58:09
nessus
nessus
RHEL 7 : qemu-kvm (RHSA-2020:1116)
2020-03-31 00:00:00
Oracle Linux 7 : qemu-kvm (ELSA-2020-1116)
2023-09-07 00:00:00
CentOS 8 : container-tools:1.0 (CESA-2020:1360)
2021-02-01 00:00:00
redhat
redhat
(RHSA-2020:1360) Important: container-tools:1.0 security update
2020-04-07 12:58:09
(RHSA-2020:1344) Important: virt:rhel security update
2020-04-07 07:11:21
(RHSA-2020:1116) Important: qemu-kvm security, bug fix, and enhancement update
2020-03-31 09:21:00
almalinux
almalinux
Important: container-tools:1.0 security update
2020-04-07 12:58:09
Important: container-tools:rhel8 security, bug fix, and enhancement update
2020-02-04 11:39:46
Important: virt:rhel security and bug fix update
2020-04-07 12:58:04
cve
cve
CVE-2020-7039
2020-01-16 23:15:00
ubuntucve
ubuntucve
CVE-2020-7039
2020-01-16 00:00:00
redhatcve
redhatcve
CVE-2020-7039
2020-01-16 08:09:06
cbl_mariner
cbl_mariner
CVE-2020-7039 affecting package qemu-kvm 4.2.0-48
2020-11-05 04:21:31
centos
centos
qemu security update
2020-04-08 19:11:28
qemu security update
2020-03-10 20:44:03
debian
debian
[SECURITY] [DLA 2076-1] slirp security update
2020-01-26 21:43:12
[SECURITY] [DLA 2090-1] qemu security update
2020-01-31 01:14:40
[SECURITY] [DLA 2551-1] slirp security update
2021-02-09 20:56:45
openvas
openvas
Debian LTS: Security Advisory for slirp (DLA-2076-1)
2020-01-27 00:00:00
Debian LTS: Security Advisory for qemu (DLA-2090-1)
2020-01-31 00:00:00
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2020-1688)
2020-06-26 00:00:00
prion
prion
Heap overflow
2020-01-16 23:15:00
veracode
veracode
Arbitrary Code Execution
2020-06-02 03:15:00
f5
f5
K18684657 : QEMU 4.2.0 vulnerability CVE-2020-7039
2021-01-21 00:00:00
rocky
rocky
container-tools:1.0 security update
2020-04-07 12:58:09
container-tools:rhel8 security, bug fix, and enhancement update
2020-02-04 11:39:46
virt:rhel security and bug fix update
2020-04-07 12:58:04
debiancve
debiancve
CVE-2020-7039
2020-01-16 23:15:00
ubuntu
ubuntu
SLiRP vulnerabilities
2020-11-12 00:00:00
QEMU vulnerabilities
2020-02-18 00:00:00
amazon
amazon
Important: qemu
2020-03-23 16:27:00
Important: qemu-kvm
2020-07-27 23:58:00
Important: qemu-kvm
2020-07-14 20:27:00
oraclelinux
oraclelinux
virt:ol security and bug fix update
2020-04-15 00:00:00
qemu-kvm security update
2020-03-10 00:00:00
qemu-kvm security, bug fix, and enhancement update
2020-04-06 00:00:00
archlinux
archlinux
[ASA-202005-6] qemu: multiple issues
2020-05-07 00:00:00
gentoo
gentoo
QEMU: Multiple vulnerabilities
2020-05-12 00:00:00
suse
suse
Security update for qemu (important)
2020-04-07 00:00:00

6.8 Medium

AI Score

Confidence

High

JSON
Related for DEBIAN_DLA-2090.NASL
osv12nessus57redhat15almalinux3cve1ubuntucve1redhatcve1cbl_mariner1centos2debian4openvas10prion1veracode1f51rocky3debiancve1ubuntu2amazon3oraclelinux6archlinux1gentoo1suse1