Lucene search
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2018-1243.NASLHistorySep 18, 2018 - 12:00 a.m.
EulerOS Virtualization 2.5.0 : systemd (EulerOS-SA-2018-1243)
2018-09-1800:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
According to the version of the systemd packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability :
- In systemd prior to 234 a race condition exists between .mount and .automount units such that automount requests from kernel may not be serviced by systemd resulting in kernel holding the mountpoint and any processes that try to use said mount will hang. A race condition like this may lead to denial of service, until mount points are unmounted.(CVE-2018-1049)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(117552);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id(
"CVE-2018-1049"
);
script_name(english:"EulerOS Virtualization 2.5.0 : systemd (EulerOS-SA-2018-1243)");
script_summary(english:"Checks the rpm output for the updated package.");
script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing a security update.");
script_set_attribute(attribute:"description", value:
"According to the version of the systemd packages installed, the
EulerOS Virtualization installation on the remote host is affected by
the following vulnerability :
- In systemd prior to 234 a race condition exists between
.mount and .automount units such that automount
requests from kernel may not be serviced by systemd
resulting in kernel holding the mountpoint and any
processes that try to use said mount will hang. A race
condition like this may lead to denial of service,
until mount points are unmounted.(CVE-2018-1049)
Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
# https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2018-1243
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?90e3b87e");
script_set_attribute(attribute:"solution", value:
"Update the affected systemd package.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:M/Au:N/C:N/I:N/A:P");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_attribute(attribute:"patch_publication_date", value:"2018/07/22");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/09/18");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd-networkd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd-python");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd-resolved");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:systemd-sysv");
script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:2.5.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Huawei Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "2.5.0") audit(AUDIT_OS_NOT, "EulerOS Virtualization 2.5.0");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);
flag = 0;
pkgs = ["systemd-219-19.11.h27",
"systemd-libs-219-19.11.h27",
"systemd-networkd-219-19.11.h27",
"systemd-python-219-19.11.h27",
"systemd-resolved-219-19.11.h27",
"systemd-sysv-219-19.11.h27"];
foreach (pkg in pkgs)
if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "systemd");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| huawei | euleros | systemd | p-cpe:/a:huawei:euleros:systemd |
| huawei | euleros | systemd-libs | p-cpe:/a:huawei:euleros:systemd-libs |
| huawei | euleros | systemd-networkd | p-cpe:/a:huawei:euleros:systemd-networkd |
| huawei | euleros | systemd-python | p-cpe:/a:huawei:euleros:systemd-python |
| huawei | euleros | systemd-resolved | p-cpe:/a:huawei:euleros:systemd-resolved |
| huawei | euleros | systemd-sysv | p-cpe:/a:huawei:euleros:systemd-sysv |
| huawei | euleros | uvp | cpe:/o:huawei:euleros:uvp:2.5.0 |
Related
nessus
nessus
Photon OS 2.0: Systemd PHSA-2018-2.0-0076
2019-02-07 00:00:00
Amazon Linux 2 : systemd (ALAS-2018-961)
2018-04-18 00:00:00
Photon OS 1.0: Systemd PHSA-2018-1.0-0167
2019-02-07 00:00:00
debiancve
debiancve
CVE-2018-1049
2018-02-16 21:29:00
redhat
redhat
(RHSA-2018:0260) Moderate: systemd security update
2018-01-31 16:20:21
veracode
veracode
Denial Of Service (DoS)
2019-01-15 09:21:46
ibm
ibm
cve
cve
CVE-2018-1049
2018-02-16 21:29:00
osv
osv
CVE-2018-1049
2018-02-16 21:29:00
systemd - security update
2018-11-19 00:00:00
oraclelinux
oraclelinux
systemd security update
2018-01-31 00:00:00
prion
prion
Race condition
2018-02-16 21:29:00
openvas
openvas
Mageia: Security Advisory (MGASA-2018-0094)
2022-01-28 00:00:00
Huawei EulerOS: Security Advisory for systemd (EulerOS-SA-2018-1243)
2020-01-23 00:00:00
CentOS Update for libgudev1-219-42.el7_ CESA-2018:0260 centos7
2018-02-02 00:00:00
ubuntucve
ubuntucve
CVE-2018-1049
2018-01-17 00:00:00
redhatcve
redhatcve
CVE-2018-1049
2018-01-16 17:19:23
cvelist
cvelist
CVE-2018-1049
2018-02-16 00:00:00
mageia
mageia
Updated systemd packages fix security vulnerability
2018-01-25 01:37:59
centos
centos
libgudev1, systemd security update
2018-02-01 23:43:31
amazon
amazon
Medium: systemd
2018-02-20 21:44:00
ubuntu
ubuntu
systemd vulnerabilities
2018-02-05 00:00:00
photon
photon
debian
debian
[SECURITY] [DLA 1580-1] systemd security update
2018-11-19 23:43:02
rosalinux
rosalinux
Advisory ROSA-SA-2021-1982
2021-07-02 18:13:58
Related for EULEROS_SA-2018-1243.NASL