Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2017-1319.NASL
HistoryDec 07, 2017 - 12:00 a.m.

EulerOS 2.0 SP2 : kernel (EulerOS-SA-2017-1319)

2017-12-0700:00:00
This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18
JSON

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  • A flaw was found in the processing of incoming L2CAP bluetooth commands. Uninitialized stack variables can be sent to an attacker leaking data in kernel address space.(CVE-2017-1000410)

  • The qmi_wwan_bind function in drivers/net/usb/qmi_wwan.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (divide-by-zero error and system crash) or possibly have unspecified other impact via a crafted USB device.(CVE-2017-16650)

  • The usbnet_generic_cdc_bind function in drivers/net/usb/cdc_ether.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (divide-by-zero error and system crash) or possibly have unspecified other impact via a crafted USB device.(CVE-2017-16649)

  • The ims_pcu_get_cdc_union_desc function in drivers/input/misc/ims-pcu.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (ims_pcu_parse_cdc_data out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.(CVE-2017-16645)

  • The hdpvr_probe function in drivers/media/usb/hdpvr/hdpvr-core.c in the Linux kernel through 4.13.11 allows local users to cause a denial of service (improper error handling and system crash) or possibly have unspecified other impact via a crafted USB device.(CVE-2017-16644)

  • The parse_hid_report_descriptor function in drivers/input/tablet/gtco.c in the Linux kernel before 4.13.11 allows local users to cause a denial of service (out-of-bounds read and system crash) or possibly have unspecified other impact via a crafted USB device.(CVE-2017-16643)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(105047);
  script_version("3.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id(
    "CVE-2017-1000410",
    "CVE-2017-16643",
    "CVE-2017-16644",
    "CVE-2017-16645",
    "CVE-2017-16649",
    "CVE-2017-16650"
  );

  script_name(english:"EulerOS 2.0 SP2 : kernel (EulerOS-SA-2017-1319)");
  script_summary(english:"Checks the rpm output for the updated packages.");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing multiple security updates.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the kernel packages installed, the
EulerOS installation on the remote host is affected by the following
vulnerabilities :

  - A flaw was found in the processing of incoming L2CAP
    bluetooth commands. Uninitialized stack variables can
    be sent to an attacker leaking data in kernel address
    space.(CVE-2017-1000410)

  - The qmi_wwan_bind function in
    drivers/net/usb/qmi_wwan.c in the Linux kernel through
    4.13.11 allows local users to cause a denial of service
    (divide-by-zero error and system crash) or possibly
    have unspecified other impact via a crafted USB
    device.(CVE-2017-16650)

  - The usbnet_generic_cdc_bind function in
    drivers/net/usb/cdc_ether.c in the Linux kernel through
    4.13.11 allows local users to cause a denial of service
    (divide-by-zero error and system crash) or possibly
    have unspecified other impact via a crafted USB
    device.(CVE-2017-16649)

  - The ims_pcu_get_cdc_union_desc function in
    drivers/input/misc/ims-pcu.c in the Linux kernel
    through 4.13.11 allows local users to cause a denial of
    service (ims_pcu_parse_cdc_data out-of-bounds read and
    system crash) or possibly have unspecified other impact
    via a crafted USB device.(CVE-2017-16645)

  - The hdpvr_probe function in
    drivers/media/usb/hdpvr/hdpvr-core.c in the Linux
    kernel through 4.13.11 allows local users to cause a
    denial of service (improper error handling and system
    crash) or possibly have unspecified other impact via a
    crafted USB device.(CVE-2017-16644)

  - The parse_hid_report_descriptor function in
    drivers/input/tablet/gtco.c in the Linux kernel before
    4.13.11 allows local users to cause a denial of service
    (out-of-bounds read and system crash) or possibly have
    unspecified other impact via a crafted USB
    device.(CVE-2017-16643)

Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2017-1319
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1b266419");
  script_set_attribute(attribute:"solution", value:
"Update the affected kernel packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:P/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");

  script_set_attribute(attribute:"patch_publication_date", value:"2017/12/07");
  script_set_attribute(attribute:"plugin_publication_date", value:"2017/12/07");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-debug");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-debug-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-debuginfo-common-x86_64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:perf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:python-perf");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2017-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
  script_exclude_keys("Host/EulerOS/uvp_version");

  exit(0);
}

include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");

sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(2)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP2");

uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP2", "EulerOS UVP " + uvp);

if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);

flag = 0;

pkgs = ["kernel-3.10.0-327.59.59.46.h35",
        "kernel-debug-3.10.0-327.59.59.46.h35",
        "kernel-debug-devel-3.10.0-327.59.59.46.h35",
        "kernel-debuginfo-3.10.0-327.59.59.46.h35",
        "kernel-debuginfo-common-x86_64-3.10.0-327.59.59.46.h35",
        "kernel-devel-3.10.0-327.59.59.46.h35",
        "kernel-headers-3.10.0-327.59.59.46.h35",
        "kernel-tools-3.10.0-327.59.59.46.h35",
        "kernel-tools-libs-3.10.0-327.59.59.46.h35",
        "perf-3.10.0-327.59.59.46.h35",
        "python-perf-3.10.0-327.59.59.46.h35"];

foreach (pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", sp:"2", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel");
}
VendorProductVersionCPE
huaweieuleroskernelp-cpe:/a:huawei:euleros:kernel
huaweieuleroskernel-debugp-cpe:/a:huawei:euleros:kernel-debug
huaweieuleroskernel-debug-develp-cpe:/a:huawei:euleros:kernel-debug-devel
huaweieuleroskernel-debuginfop-cpe:/a:huawei:euleros:kernel-debuginfo
huaweieuleroskernel-debuginfo-common-x86_64p-cpe:/a:huawei:euleros:kernel-debuginfo-common-x86_64
huaweieuleroskernel-develp-cpe:/a:huawei:euleros:kernel-devel
huaweieuleroskernel-headersp-cpe:/a:huawei:euleros:kernel-headers
huaweieuleroskernel-toolsp-cpe:/a:huawei:euleros:kernel-tools
huaweieuleroskernel-tools-libsp-cpe:/a:huawei:euleros:kernel-tools-libs
huaweieulerosperfp-cpe:/a:huawei:euleros:perf
Rows per page:
1-10 of 121

Related

openvas 43
nessus 54
fedora 11
oraclelinux 10
amazon 1
prion 6
redhatcve 6
cve 6
ubuntucve 6
debiancve 6
f5 1
veracode 1
osv 4
cloudfoundry 3
ubuntu 16
mageia 4
suse 10
photon 2
redhat 3
debian 2
centos 1
ibm 1
virtuozzo 2
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2017-1319)
2020-01-23 00:00:00
Fedora Update for kernel FEDORA-2017-92a0ae09aa
2017-12-04 00:00:00
Fedora Update for kernel FEDORA-2017-905bb449bc
2017-12-04 00:00:00
nessus
nessus
Fedora 25 : kernel (2017-905bb449bc)
2017-12-04 00:00:00
Fedora 27 : kernel (2017-92a0ae09aa)
2018-01-15 00:00:00
Fedora 26 : kernel (2017-f9f3d80442)
2017-12-01 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: kernel-4.13.16-100.fc25
2017-12-02 08:03:57
[SECURITY] Fedora 26 Update: kernel-4.13.16-200.fc26
2017-12-01 03:45:23
[SECURITY] Fedora 27 Update: kernel-4.13.16-300.fc27
2017-12-01 09:06:53
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2018-04-26 00:00:00
Unbreakable Enterprise kernel security update
2019-05-16 00:00:00
kernel security and bug fix update
2018-05-08 00:00:00
amazon
amazon
Important: kernel
2017-12-21 00:02:00
prion
prion
Design/Logic Flaw
2017-11-07 23:29:00
Out-of-bounds
2017-11-07 23:29:00
Out-of-bounds
2017-11-07 23:29:00
redhatcve
redhatcve
CVE-2017-16643
2017-11-22 10:49:56
CVE-2017-1000410
2019-10-11 15:57:30
CVE-2017-16649
2017-11-22 11:50:09
cve
cve
CVE-2017-16645
2017-11-07 23:29:00
CVE-2017-16643
2017-11-07 23:29:00
CVE-2017-16650
2017-11-07 23:29:00
ubuntucve
ubuntucve
CVE-2017-16645
2017-11-07 00:00:00
CVE-2017-16649
2017-11-07 00:00:00
CVE-2017-16650
2017-11-07 00:00:00
debiancve
debiancve
CVE-2017-16643
2017-11-07 23:29:00
CVE-2017-16649
2017-11-07 23:29:00
CVE-2017-16645
2017-11-07 23:29:00
f5
f5
K58928452 : Kernel vulnerability CVE-2017-1000410
2020-12-17 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 09:21:39
osv
osv
CVE-2017-1000410
2017-12-07 19:29:00
linux - security update
2017-12-23 00:00:00
linux - security update
2017-12-09 00:00:00
cloudfoundry
cloudfoundry
USN-3509-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2017-12-08 00:00:00
USN-3509-4: Linux kernel (Xenial HWE) regression | Cloud Foundry
2017-12-16 00:00:00
USN-3619-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2018-05-02 00:00:00
ubuntu
ubuntu
Linux kernel regression
2017-12-15 00:00:00
Linux kernel (Xenial HWE) vulnerabilities
2017-12-07 00:00:00
Linux kernel vulnerabilities
2017-12-07 00:00:00
mageia
mageia
Updated kernel-tmb packages fix security vulnerabilities
2018-02-16 00:17:42
Updated kernel packages fix security vulnerabilities
2018-02-05 22:12:45
Updated kernel-linus packages fix security vulnerabilities
2018-02-16 00:17:42
suse
suse
Security update for the Linux Kernel (important)
2017-12-08 18:11:43
Security update for the Linux Kernel (important)
2017-12-04 15:07:06
Security update for the Linux Kernel (important)
2017-12-21 18:10:22
photon
photon
Critical Photon OS Security Update - PHSA-2017-0005
2017-12-07 00:00:00
Critical Photon OS Security Update - PHSA-2017-0091
2017-12-08 00:00:00
redhat
redhat
(RHSA-2018:1170) Important: kernel-rt security and bug fix update
2018-04-17 14:55:13
(RHSA-2018:1319) Important: kernel security and bug fix update
2018-05-08 17:59:26
(RHSA-2018:1130) Important: kernel security and bug fix update
2018-04-17 14:31:22
debian
debian
[SECURITY] [DSA 4073-1] linux security update
2017-12-23 20:13:29
[SECURITY] [DLA 1200-1] linux security update
2017-12-10 22:07:05
centos
centos
kernel, perf, python security update
2018-05-10 01:00:09
ibm
ibm
Security Bulletin: Vulnerabilities in Kernel affect Power Hardware Management Console
2021-09-22 23:05:38
virtuozzo
virtuozzo
Important kernel security update: CVE-2017-5754 and other; new kernel 2.6.32-042stab129.1 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0
2018-05-14 00:00:00
Kernel security update: CVE-2017-5754 and other; new kernel 2.6.32-042stab129.1, Virtuozzo 6.0 Update 12 Hotfix 23 (6.0.12-3703)
2018-05-14 00:00:00
JSON
Related for EULEROS_SA-2017-1319.NASL
openvas43nessus54fedora11oraclelinux10amazon1prion6redhatcve6cve6ubuntucve6debiancve6f51veracode1osv4cloudfoundry3ubuntu16mageia4suse10photon2redhat3debian2centos1ibm1virtuozzo2