Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2016-1007.NASL
HistoryMay 01, 2017 - 12:00 a.m.

EulerOS 2.0 SP1 : kernel (EulerOS-SA-2016-1007)

2017-05-0100:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13
JSON

According to the version of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerability :

  • It was found that the fix for CVE-2015-1805 incorrectly kept buffer offset and buffer length in sync on a failed atomic read, potentially resulting in a pipe buffer state corruption. A local, unprivileged user could use this flaw to crash the system or leak kernel memory to user space. (CVE-2016-0774i1/4%0

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(99770);
  script_version("1.15");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id(
    "CVE-2016-0774"
  );

  script_name(english:"EulerOS 2.0 SP1 : kernel (EulerOS-SA-2016-1007)");
  script_summary(english:"Checks the rpm output for the updated package.");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the version of the kernel packages installed, the
EulerOS installation on the remote host is affected by the following
vulnerability :

  - It was found that the fix for CVE-2015-1805 incorrectly
    kept buffer offset and buffer length in sync on a
    failed atomic read, potentially resulting in a pipe
    buffer state corruption. A local, unprivileged user
    could use this flaw to crash the system or leak kernel
    memory to user space. (CVE-2016-0774i1/4%0

Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2016-1007
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1ad1d39c");
  script_set_attribute(attribute:"solution", value:
"Update the affected kernel package.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");

  script_set_attribute(attribute:"patch_publication_date", value:"2016/03/21");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/05/01");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-debug");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-debuginfo-common-x86_64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:perf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:python-perf");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
  script_exclude_keys("Host/EulerOS/uvp_version");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");

sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(1)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP1");

uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP1", "EulerOS UVP " + uvp);

if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);

flag = 0;

pkgs = ["kernel-3.10.0-229.20.1.45",
        "kernel-debug-3.10.0-229.20.1.45",
        "kernel-debuginfo-3.10.0-229.20.1.45",
        "kernel-debuginfo-common-x86_64-3.10.0-229.20.1.45",
        "kernel-devel-3.10.0-229.20.1.45",
        "kernel-headers-3.10.0-229.20.1.45",
        "kernel-tools-3.10.0-229.20.1.45",
        "kernel-tools-libs-3.10.0-229.20.1.45",
        "perf-3.10.0-229.20.1.45",
        "python-perf-3.10.0-229.20.1.45"];

foreach (pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", sp:"1", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel");
}
VendorProductVersionCPE
huaweieuleroskernelp-cpe:/a:huawei:euleros:kernel
huaweieuleroskernel-debugp-cpe:/a:huawei:euleros:kernel-debug
huaweieuleroskernel-debuginfop-cpe:/a:huawei:euleros:kernel-debuginfo
huaweieuleroskernel-debuginfo-common-x86_64p-cpe:/a:huawei:euleros:kernel-debuginfo-common-x86_64
huaweieuleroskernel-develp-cpe:/a:huawei:euleros:kernel-devel
huaweieuleroskernel-headersp-cpe:/a:huawei:euleros:kernel-headers
huaweieuleroskernel-toolsp-cpe:/a:huawei:euleros:kernel-tools
huaweieuleroskernel-tools-libsp-cpe:/a:huawei:euleros:kernel-tools-libs
huaweieulerosperfp-cpe:/a:huawei:euleros:perf
huaweieulerospython-perfp-cpe:/a:huawei:euleros:python-perf
Rows per page:
1-10 of 111

Related

nessus 55
f5 4
cve 2
ubuntucve 2
openvas 34
prion 2
redhat 14
centos 5
oraclelinux 11
debiancve 2
osv 5
debian 7
threatpost 3
androidsecurity 3
android 2
veracode 6
ubuntu 8
thn 3
securityvulns 2
suse 23
amazon 1
googleprojectzero 1
ibm 1
lenovo 1
nessus
nessus
RHEL 6 : kernel (RHSA-2016:0617)
2016-04-13 00:00:00
RHEL 6 : kernel (RHSA-2016:0494)
2016-03-23 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3528)
2016-03-25 00:00:00
f5
f5
K08440897 : Linux kernel vulnerability CVE-2016-0774
2016-07-13 00:00:00
K17458 : Linux kernel vulnerability CVE-2015-1805
2015-10-19 00:00:00
SOL17458 - Linux kernel vulnerability CVE-2015-1805
2015-10-19 00:00:00
cve
cve
CVE-2016-0774
2016-04-27 17:59:00
CVE-2015-1805
2015-08-08 10:59:00
ubuntucve
ubuntucve
CVE-2016-0774
2016-04-27 00:00:00
CVE-2015-1805
2015-06-03 00:00:00
openvas
openvas
CentOS Update for kernel CESA-2016:0494 centos6
2016-03-24 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2016-1007)
2020-01-23 00:00:00
RedHat Update for kernel RHSA-2016:0494-01
2016-03-23 00:00:00
prion
prion
Design/Logic Flaw
2016-04-27 17:59:00
Design/Logic Flaw
2015-08-08 10:59:00
redhat
redhat
(RHSA-2016:0494) Moderate: kernel security, bug fix, and enhancement update
2016-03-22 00:00:00
(RHSA-2016:0617) Moderate: kernel security and bug fix update
2016-04-12 00:00:00
(RHSA-2016:0103) Important: kernel security, bug fix, and enhancement update
2016-02-02 16:05:39
centos
centos
kernel, perf, python security update
2016-03-23 13:20:33
kernel security update
2015-06-03 01:55:17
kernel, perf, python security update
2015-06-10 09:06:44
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2016-03-23 00:00:00
kernel security and bug fix update
2015-06-02 00:00:00
kernel security and bug fix update
2015-06-03 00:00:00
debiancve
debiancve
CVE-2016-0774
2016-04-27 17:59:00
CVE-2015-1805
2015-08-08 10:59:00
osv
osv
linux-2.6 - security update
2016-02-29 00:00:00
linux - security update
2015-06-18 00:00:00
linux - security update
2016-03-03 00:00:00
debian
debian
[SECURITY] [DLA 439-1] linux-2.6 security update
2016-02-29 18:43:11
[SECURITY] [DSA 3290-1] linux security update
2015-06-18 06:58:51
[SECURITY] [DSA 3290-1] linux security update
2015-06-18 06:58:51
threatpost
threatpost
Android Rooting Application Emergency Patch
2016-03-23 07:00:46
April 2016 Google Android Nexus Security Bulletin
2016-04-04 14:00:22
Google Detects and Boots Tizi Spyware Off Google Play
2017-11-28 12:40:09
androidsecurity
androidsecurity
Android Security Advisory&hairsp;—&hairsp;2016-03-18
2016-03-18 00:00:00
Android Security Bulletin—May 2016
2016-05-02 00:00:00
Nexus Security Bulletin—April 2016
2016-04-04 00:00:00
android
android
pipe inatomic
2015-06-06 00:00:00
CVE-2015-1805
2016-04-02 00:00:00
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:06:06
Memory Corruption
2019-05-02 05:39:39
Sensitive Information Leakage
2019-05-02 05:39:40
ubuntu
ubuntu
Linux kernel (OMAP4) vulnerabilities
2015-07-23 00:00:00
Linux kernel vulnerabilities
2015-07-23 00:00:00
Linux kernel vulnerabilities
2015-07-23 00:00:00
thn
thn
First Android Malware Found Exploiting Dirty COW Linux Flaw to Gain Root Privileges
2017-09-26 02:52:00
This New Android Malware Can Gain Root Access to Your Smartphones
2021-10-29 13:48:00
Google Detects Android Spyware That Spies On WhatsApp, Skype Calls
2017-11-27 22:29:00
securityvulns
securityvulns
[SECURITY] [DSA 3290-1] linux security update
2015-06-21 00:00:00
Linux kernel security vulnerabilities
2015-06-21 00:00:00
suse
suse
Live patch for the Linux Kernel (important)
2015-09-04 12:15:30
Security update for Linux Kernel Live Patch 11 (important)
2016-04-14 17:10:58
Security update for Linux Kernel Live Patch 7 (important)
2016-04-14 20:07:59
amazon
amazon
Medium: kernel
2015-07-22 10:00:00
googleprojectzero
googleprojectzero
In-the-Wild Series: Android Exploits
2021-01-12 00:00:00
ibm
ibm
Security Bulletin: PowerKVM is affected by Linux Kernel vulnerabilities (multiple CVEs)
2018-06-18 01:28:49
lenovo
lenovo
AMI MegaRAC SP-X BMC Vulnerabilities - Lenovo Support US
2020-04-13 19:22:04
JSON
Related for EULEROS_SA-2016-1007.NASL
nessus55f54cve2ubuntucve2openvas34prion2redhat14centos5oraclelinux11debiancve2osv5debian7threatpost3androidsecurity3android2veracode6ubuntu8thn3securityvulns2suse23amazon1googleprojectzero1ibm1lenovo1