Lucene search
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2018-1369.NASLHistoryNov 21, 2018 - 12:00 a.m.
EulerOS Virtualization 2.5.2 : kernel (EulerOS-SA-2018-1369)
2018-11-2100:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
24
According to the version of the kernel packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerability :
- The timer_create syscall implementation in kernel/time/posix-timers.c in the Linux kernel doesn’t properly validate the sigevent-i1/4zsigev_notify field, which leads to out-of-bounds access in the show_timer function.(CVE-2017-18344)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(119060);
script_version("1.9");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/04/08");
script_cve_id(
"CVE-2017-18344"
);
script_name(english:"EulerOS Virtualization 2.5.2 : kernel (EulerOS-SA-2018-1369)");
script_summary(english:"Checks the rpm output for the updated package.");
script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS Virtualization host is missing a security update.");
script_set_attribute(attribute:"description", value:
"According to the version of the kernel packages installed, the
EulerOS Virtualization installation on the remote host is affected by
the following vulnerability :
- The timer_create syscall implementation in
kernel/time/posix-timers.c in the Linux kernel doesn't
properly validate the sigevent-i1/4zsigev_notify field,
which leads to out-of-bounds access in the show_timer
function.(CVE-2017-18344)
Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
# https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2018-1369
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?db4e78e3");
script_set_attribute(attribute:"solution", value:
"Update the affected kernel package.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
script_set_attribute(attribute:"canvas_package", value:'CANVAS');
script_set_attribute(attribute:"patch_publication_date", value:"2018/11/04");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/11/21");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools-libs-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:uvp:2.5.2");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Huawei Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/uvp_version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (uvp != "2.5.2") audit(AUDIT_OS_NOT, "EulerOS Virtualization 2.5.2");
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);
flag = 0;
pkgs = ["kernel-3.10.0-514.44.5.10_103",
"kernel-devel-3.10.0-514.44.5.10_103",
"kernel-headers-3.10.0-514.44.5.10_103",
"kernel-tools-3.10.0-514.44.5.10_103",
"kernel-tools-libs-3.10.0-514.44.5.10_103",
"kernel-tools-libs-devel-3.10.0-514.44.5.10_103"];
foreach (pkg in pkgs)
if (rpm_check(release:"EulerOS-2.0", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_NOTE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| huawei | euleros | kernel | p-cpe:/a:huawei:euleros:kernel |
| huawei | euleros | kernel-devel | p-cpe:/a:huawei:euleros:kernel-devel |
| huawei | euleros | kernel-headers | p-cpe:/a:huawei:euleros:kernel-headers |
| huawei | euleros | kernel-tools | p-cpe:/a:huawei:euleros:kernel-tools |
| huawei | euleros | kernel-tools-libs | p-cpe:/a:huawei:euleros:kernel-tools-libs |
| huawei | euleros | kernel-tools-libs-devel | p-cpe:/a:huawei:euleros:kernel-tools-libs-devel |
| huawei | euleros | uvp | cpe:/o:huawei:euleros:uvp:2.5.2 |
Related
exploitpack
exploitpack
f5
f5
K07020416 : Linux kernel vulnerability CVE-2017-18344
2020-12-08 00:00:00
packetstorm
packetstorm
Linux Kernel 4.14.7 (Ubuntu 16.04 / CentOS 7) Arbitrary File Read
2018-08-09 00:00:00
nessus
nessus
Virtuozzo 7 : readykernel-patch (VZA-2018-050)
2018-08-07 00:00:00
Virtuozzo 7 : readykernel-patch (VZA-2018-052)
2018-08-10 00:00:00
F5 Networks BIG-IP : Linux kernel vulnerability (K07020416)
2021-07-08 00:00:00
redhatcve
redhatcve
CVE-2017-18344
2018-08-01 17:49:05
veracode
veracode
Information Disclosure
2019-01-15 09:26:26
canvas
canvas
Immunity Canvas: SHOW_TIMER_LEAK
2018-07-26 19:29:00
zdt
zdt
Linux Kernel 4.14.7 ( Ubuntu 16.04 / CentOS 7) Arbitrary File Read Exploit
2018-08-09 00:00:00
cve
cve
CVE-2017-18344
2018-07-26 19:29:00
osv
osv
CVE-2017-18344
2018-07-26 19:29:00
ubuntucve
ubuntucve
CVE-2017-18344
2018-07-26 00:00:00
virtuozzo
virtuozzo
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2018-1369)
2020-01-23 00:00:00
openSUSE: Security Advisory for kernel (openSUSE-SU-2018:2242-1)
2018-10-26 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2018-1360)
2020-01-23 00:00:00
prion
prion
Design/Logic Flaw
2018-07-26 19:29:00
debiancve
debiancve
CVE-2017-18344
2018-07-26 19:29:00
exploitdb
exploitdb
suse
suse
Security update for the Linux Kernel (important)
2018-08-07 21:10:43
Security update for the Linux Kernel (important)
2018-08-17 12:20:07
redhat
redhat
(RHSA-2018:3591) Important: kernel security and bug fix update
2018-11-13 16:57:42
(RHSA-2018:3459) Important: kernel security, bug fix, and enhancement update
2018-11-06 14:46:26
(RHSA-2018:3540) Important: kernel security, bug fix, and enhancement update
2018-11-13 15:40:59
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2018-09-13 00:00:00
Unbreakable Enterprise kernel security update
2018-08-14 00:00:00
Unbreakable Enterprise kernel security update
2018-09-10 00:00:00
ubuntu
ubuntu
Linux kernel (Trusty HWE) regressions
2018-08-21 00:00:00
Linux kernel vulnerabilities
2018-08-14 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2018-08-14 00:00:00
cloudlinux
cloudlinux
Fix of 13 CVEs
2022-04-21 21:21:15
photon
photon
Home
Download Photon OS
User Documentation
FAQ
Security Advisories
Related Information
Lightwave - PHSA-2018-1.0-0122
2018-04-05 00:00:00
Important Photon OS Security Update - PHSA-2018-0122
2018-04-05 00:00:00
Important Photon OS Security Update - PHSA-2019-0122
2019-01-09 00:00:00
ibm
ibm
mageia
mageia
kernel-linus update provides 4.14 series and fixes security vulnerabilities
2018-01-06 03:53:31
kernel update provides 4.14 series and fixes security vulnerabilities
2018-01-06 03:53:31
kernel-tmb update provides 4.14 series and fixes security vulnerabilities
2018-01-06 03:53:31
centos
centos
bpftool, kernel, perf, python security update
2018-11-15 18:40:28
Related for EULEROS_SA-2018-1369.NASL