Lucene search
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.DEBIAN_DLA-678.NASLHistoryOct 26, 2016 - 12:00 a.m.
Debian DLA-678-1 : qemu security update
2016-10-2600:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
Multiple vulnerabilities have been found in QEMU :
CVE-2016-8576
Quick Emulator (Qemu) built with the USB xHCI controller emulation support is vulnerable to an infinite loop issue. It could occur while processing USB command ring in ‘xhci_ring_fetch’.
CVE-2016-8577
Quick Emulator (Qemu) built with the virtio-9p back-end support is vulnerable to a memory leakage issue. It could occur while doing a I/O read operation in v9fs_read() routine.
CVE-2016-8578
Quick Emulator (Qemu) built with the virtio-9p back-end support is vulnerable to a NULL pointer dereference issue. It could occur while doing an I/O vector unmarshalling operation in v9fs_iov_vunmarshal() routine.
CVE-2016-8669
Quick Emulator (Qemu) built with the 16550A UART emulation support is vulnerable to a divide by zero issue. It could occur while updating serial device parameters in ‘serial_update_parameters’.
For Debian 7 ‘Wheezy’, these problems have been fixed in version 1.1.2+dfsg-6+deb7u17.
We recommend that you upgrade your qemu packages.
NOTE: Tenable Network Security has extracted the preceding description block directly from the DLA security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Debian Security Advisory DLA-678-1. The text
# itself is copyright (C) Software in the Public Interest, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(94257);
script_version("1.10");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2016-8576", "CVE-2016-8577", "CVE-2016-8578", "CVE-2016-8669");
script_name(english:"Debian DLA-678-1 : qemu security update");
script_summary(english:"Checks dpkg output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Debian host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Multiple vulnerabilities have been found in QEMU :
CVE-2016-8576
Quick Emulator (Qemu) built with the USB xHCI controller emulation
support is vulnerable to an infinite loop issue. It could occur while
processing USB command ring in 'xhci_ring_fetch'.
CVE-2016-8577
Quick Emulator (Qemu) built with the virtio-9p back-end support is
vulnerable to a memory leakage issue. It could occur while doing a I/O
read operation in v9fs_read() routine.
CVE-2016-8578
Quick Emulator (Qemu) built with the virtio-9p back-end support is
vulnerable to a NULL pointer dereference issue. It could occur while
doing an I/O vector unmarshalling operation in v9fs_iov_vunmarshal()
routine.
CVE-2016-8669
Quick Emulator (Qemu) built with the 16550A UART emulation support is
vulnerable to a divide by zero issue. It could occur while updating
serial device parameters in 'serial_update_parameters'.
For Debian 7 'Wheezy', these problems have been fixed in version
1.1.2+dfsg-6+deb7u17.
We recommend that you upgrade your qemu packages.
NOTE: Tenable Network Security has extracted the preceding description
block directly from the DLA security advisory. Tenable has attempted
to automatically clean and format it as much as possible without
introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://lists.debian.org/debian-lts-announce/2016/10/msg00032.html"
);
script_set_attribute(
attribute:"see_also",
value:"https://packages.debian.org/source/wheezy/qemu"
);
script_set_attribute(attribute:"solution", value:"Upgrade the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:N/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:C/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-keymaps");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-system");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-user");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-user-static");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:debian:debian_linux:qemu-utils");
script_set_attribute(attribute:"cpe", value:"cpe:/o:debian:debian_linux:7.0");
script_set_attribute(attribute:"patch_publication_date", value:"2016/10/25");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/10/26");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Debian Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/Debian/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("debian_package.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
if (!get_kb_item("Host/Debian/release")) audit(AUDIT_OS_NOT, "Debian");
if (!get_kb_item("Host/Debian/dpkg-l")) audit(AUDIT_PACKAGE_LIST_MISSING);
flag = 0;
if (deb_check(release:"7.0", prefix:"qemu", reference:"1.1.2+dfsg-6+deb7u17")) flag++;
if (deb_check(release:"7.0", prefix:"qemu-keymaps", reference:"1.1.2+dfsg-6+deb7u17")) flag++;
if (deb_check(release:"7.0", prefix:"qemu-system", reference:"1.1.2+dfsg-6+deb7u17")) flag++;
if (deb_check(release:"7.0", prefix:"qemu-user", reference:"1.1.2+dfsg-6+deb7u17")) flag++;
if (deb_check(release:"7.0", prefix:"qemu-user-static", reference:"1.1.2+dfsg-6+deb7u17")) flag++;
if (deb_check(release:"7.0", prefix:"qemu-utils", reference:"1.1.2+dfsg-6+deb7u17")) flag++;
if (flag)
{
if (report_verbosity > 0) security_note(port:0, extra:deb_report_get());
else security_note(0);
exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
| Vendor | Product | Version | CPE |
|---|---|---|---|
| debian | debian_linux | qemu | p-cpe:/a:debian:debian_linux:qemu |
| debian | debian_linux | qemu-keymaps | p-cpe:/a:debian:debian_linux:qemu-keymaps |
| debian | debian_linux | qemu-system | p-cpe:/a:debian:debian_linux:qemu-system |
| debian | debian_linux | qemu-user | p-cpe:/a:debian:debian_linux:qemu-user |
| debian | debian_linux | qemu-user-static | p-cpe:/a:debian:debian_linux:qemu-user-static |
| debian | debian_linux | qemu-utils | p-cpe:/a:debian:debian_linux:qemu-utils |
| debian | debian_linux | 7.0 | cpe:/o:debian:debian_linux:7.0 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8576
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8577
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8578
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-8669
lists.debian.org/debian-lts-announce/2016/10/msg00032.html
packages.debian.org/source/wheezy/qemu
Related
openvas
openvas
Debian: Security Advisory (DLA-678-1)
2023-03-08 00:00:00
Debian: Security Advisory (DLA-679-1)
2023-03-08 00:00:00
Fedora Update for xen FEDORA-2016-0d1a8ee35b
2016-12-02 00:00:00
osv
osv
qemu - security update
2016-10-25 00:00:00
qemu-kvm - security update
2016-10-25 00:00:00
CVE-2016-8576
2016-11-04 21:59:00
debian
debian
[SECURITY] [DLA 678-1] qemu security update
2016-10-25 20:20:36
[SECURITY] [DLA 679-1] qemu-kvm security update
2016-10-25 20:22:31
[SECURITY] [DLA 1599-1] qemu security update
2018-11-30 14:28:56
nessus
nessus
Debian DLA-679-1 : qemu-kvm security update
2016-10-26 00:00:00
Fedora 23 : xen (2016-da6b1d277b)
2016-11-11 00:00:00
Fedora 24 : xen (2016-0d1a8ee35b)
2016-11-10 00:00:00
cvelist
cvelist
cve
cve
fedora
fedora
[SECURITY] Fedora 24 Update: xen-4.6.3-7.fc24
2016-11-10 03:33:10
[SECURITY] Fedora 25 Update: xen-4.7.0-7.fc25
2016-11-19 21:36:03
[SECURITY] Fedora 23 Update: xen-4.5.5-3.fc23
2016-11-10 15:54:47
ubuntucve
ubuntucve
ibm
ibm
Security Bulletin: Vulnerabilities in QEMU affect PowerKVM
2018-06-18 01:34:46
Security Bulletin: Vulnerabilities in Qemu affect PowerKVM
2018-06-18 01:35:35
veracode
veracode
Denial Of Service (DoS)
2019-05-02 06:36:19
Denial Of Service (DoS) Through Divide By Zero
2019-05-02 06:36:20
prion
prion
Cross site request forgery (csrf)
2016-11-04 21:59:00
Null pointer dereference
2016-11-04 21:59:00
Memory corruption
2016-11-04 21:59:00
debiancve
debiancve
redhatcve
redhatcve
alpinelinux
alpinelinux
suse
suse
Security update for kvm (important)
2016-11-24 18:10:22
Security update for qemu (important)
2016-11-29 14:07:08
Security update for qemu (important)
2016-12-02 21:06:55
gentoo
gentoo
QEMU: Multiple vulnerabilities
2016-11-18 00:00:00
ubuntu
ubuntu
QEMU vulnerabilities
2016-11-09 00:00:00
QEMU vulnerabilities
2017-04-20 00:00:00
redhat
redhat
(RHSA-2017:2392) Important: qemu-kvm-rhev security, bug fix, and enhancement update
2017-08-01 15:48:43
(RHSA-2017:2408) Moderate: qemu-kvm-rhev security and bug fix update
2017-08-01 20:47:32
Related for DEBIAN_DLA-678.NASL