Lucene search
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2018-1261.NASLHistorySep 18, 2018 - 12:00 a.m.
EulerOS Virtualization 2.5.1 : kernel (EulerOS-SA-2018-1261)
2018-09-1800:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
24
According to the versions of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :
-
A vulnerability was found in the Linux kernel’s kernel/events/core.c:perf_cpu_time_max_percent_handler( ) function. Local privileged users could exploit this flaw to cause a denial of service due to integer overflow or possibly have unspecified other impact.(CVE-2017-18255)
-
The code in the drivers/scsi/libsas/sas_scsi_host.c file in the Linux kernel allow a physically proximate attacker to cause a memory leak in the ATA command queue and, thus, denial of service by triggering certain failure conditions.(CVE-2018-10021)
-
The kernel_wait4 function in kernel/exit.c in the Linux kernel, when an unspecified architecture and compiler is used, might allow local users to cause a denial of service by triggering an attempted use of the -INT_MIN value.(CVE-2018-10087)
-
A an integer overflow vulnerability was discovered in the Linux kernel, from version 3.4 through 4.15, in the drivers/gpu/drm/udl/udl_fb.c:udl_fb_mmap() function. An attacker with access to the udldrmfb driver could exploit this to obtain full read and write permissions on kernel physical pages, resulting in a code execution in kernel space.(CVE-2018-8781)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(117570);
script_version("1.7");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id(
"CVE-2017-18255",
"CVE-2018-10021",
"CVE-2018-10087",
"CVE-2018-8781"
);
script_name(english:"EulerOS Virtualization 2.5.1 : kernel (EulerOS-SA-2018-1261)");
script_summary(english:"Checks the rpm output for the updated packages.");
script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing multiple security
updates.");
script_set_attribute(attribute:"description", value:
"According to the versions of the kernel packages installed, the
EulerOS Virtualization installation on the remote host is affected by
the following vulnerabilities :
- A vulnerability was found in the Linux kernel's
kernel/events/core.c:perf_cpu_time_max_percent_handler(
) function. Local privileged users could exploit this
flaw to cause a denial of service due to integer
overflow or possibly have unspecified other
impact.(CVE-2017-18255)
- The code in the drivers/scsi/libsas/sas_scsi_host.c
file in the Linux kernel allow a physically proximate
attacker to cause a memory leak in the ATA command
queue and, thus, denial of service by triggering
certain failure conditions.(CVE-2018-10021)
- The kernel_wait4 function in kernel/exit.c in the Linux
kernel, when an unspecified architecture and compiler
is used, might allow local users to cause a denial of
service by triggering an attempted use of the -INT_MIN
value.(CVE-2018-10087)
- A an integer overflow vulnerability was discovered in
the Linux kernel, from version 3.4 through 4.15, in the
drivers/gpu/drm/udl/udl_fb.c:udl_fb_mmap() function. An
attacker with access to the udldrmfb driver could
exploit this to obtain full read and write permissions
on kernel physical pages, resulting in a code execution
in kernel space.(CVE-2018-8781)
Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
# https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2018-1261
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?d55bb07d");
script_set_attribute(attribute:"solution", value:
"Update the affected kernel packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_attribute(attribute:"patch_publication_date", value:"2018/07/25");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/09/18");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools-libs-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:2.5.1");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Huawei Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "2.5.1") audit(AUDIT_OS_NOT, "EulerOS Virtualization 2.5.1");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);
flag = 0;
pkgs = ["kernel-3.10.0-514.44.5.10_31",
"kernel-devel-3.10.0-514.44.5.10_31",
"kernel-headers-3.10.0-514.44.5.10_31",
"kernel-tools-3.10.0-514.44.5.10_31",
"kernel-tools-libs-3.10.0-514.44.5.10_31",
"kernel-tools-libs-devel-3.10.0-514.44.5.10_31"];
foreach (pkg in pkgs)
if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| huawei | euleros | kernel | p-cpe:/a:huawei:euleros:kernel |
| huawei | euleros | kernel-devel | p-cpe:/a:huawei:euleros:kernel-devel |
| huawei | euleros | kernel-headers | p-cpe:/a:huawei:euleros:kernel-headers |
| huawei | euleros | kernel-tools | p-cpe:/a:huawei:euleros:kernel-tools |
| huawei | euleros | kernel-tools-libs | p-cpe:/a:huawei:euleros:kernel-tools-libs |
| huawei | euleros | kernel-tools-libs-devel | p-cpe:/a:huawei:euleros:kernel-tools-libs-devel |
| huawei | euleros | uvp | cpe:/o:huawei:euleros:uvp:2.5.1 |
Related
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2018-1261)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2018-1196)
2020-01-23 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2018-1132)
2020-01-23 00:00:00
nessus
nessus
EulerOS 2.0 SP3 : kernel (EulerOS-SA-2018-1196)
2018-07-03 00:00:00
EulerOS 2.0 SP1 : kernel (EulerOS-SA-2018-1132)
2018-05-29 00:00:00
Photon OS 1.0: Linux PHSA-2018-1.0-0133 (deprecated)
2018-08-17 00:00:00
ubuntucve
ubuntucve
cve
cve
redhatcve
redhatcve
prion
prion
Integer overflow
2018-03-31 17:29:00
Design/Logic Flaw
2018-04-11 17:29:00
Integer overflow
2018-04-23 19:29:00
photon
photon
debiancve
debiancve
ubuntu
ubuntu
Linux kernel (Xenial HWE) vulnerabilities
2018-07-02 00:00:00
Linux kernel vulnerabilities
2018-07-02 00:00:00
Linux kernel vulnerabilities
2018-06-12 00:00:00
f5
f5
K25835344 : Linux kernel vulnerability CVE-2018-8781
2018-05-14 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-05-16 03:18:38
cloudfoundry
cloudfoundry
USN-3696-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2018-07-10 00:00:00
zdt
zdt
Kubernetes - (Authenticated) Arbitrary Requests Exploit
2018-12-24 00:00:00
Kubernetes - (Unauthenticated) Arbitrary Requests Exploit
2018-12-24 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2018-05-09 00:14:28
Security update for the Linux Kernel (important)
2018-05-24 21:06:58
Security update for the Linux Kernel (important)
2018-05-11 21:10:59
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2018-09-04 00:00:00
Unbreakable Enterprise kernel security update
2018-07-17 00:00:00
Unbreakable Enterprise kernel security update
2019-01-03 00:00:00
debian
debian
[SECURITY] [DLA 1423-1] linux-4.9 new package
2018-07-18 15:37:11
osv
osv
linux-4.9 - security update
2018-07-14 00:00:00
ics
ics
Mobile Industrial Robots Vehicles and MiR Fleet Software
2021-10-07 12:00:00
Related for EULEROS_SA-2018-1261.NASL