Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2019-1027.NASLHistoryFeb 14, 2019 - 12:00 a.m.
EulerOS 2.0 SP3 : kernel (EulerOS-SA-2019-1027)
2019-02-1400:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
47
According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :
-
An issue was discovered in the Linux kernel before 4.18.6. An information leak in cdrom_ioctl_drive_status in drivers/cdrom/cdrom.c could be used by local attackers to read kernel memory because a cast from unsigned long to int interferes with bounds checking.(CVE-2018-16658)
-
In the Linux kernel before 4.17, a local attacker able to set attributes on an xfs filesystem could make this filesystem non-operational until the next mount by triggering an unchecked error condition during an xfs attribute change, because xfs_attr_shortform_addname in fs/xfs/libxfs/xfs_attr.c mishandles ATTR_REPLACE operations with conversion of an attr from short to long form.(CVE-2018-18690)
-
A security flaw was found in the Linux kernel in drivers/tty/n_tty.c which allows local attackers (ones who are able to access pseudo terminals) to lock them up and block further usage of any pseudo terminal devices due to an EXTPROC versus ICANON confusion in TIOCINQ handler.(CVE-2018-18386)
Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(122174);
script_version("1.6");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");
script_cve_id(
"CVE-2018-16658",
"CVE-2018-18386",
"CVE-2018-18690"
);
script_name(english:"EulerOS 2.0 SP3 : kernel (EulerOS-SA-2019-1027)");
script_summary(english:"Checks the rpm output for the updated packages.");
script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing multiple security updates.");
script_set_attribute(attribute:"description", value:
"According to the versions of the kernel packages installed, the
EulerOS installation on the remote host is affected by the following
vulnerabilities :
- An issue was discovered in the Linux kernel before
4.18.6. An information leak in cdrom_ioctl_drive_status
in drivers/cdrom/cdrom.c could be used by local
attackers to read kernel memory because a cast from
unsigned long to int interferes with bounds
checking.(CVE-2018-16658)
- In the Linux kernel before 4.17, a local attacker able
to set attributes on an xfs filesystem could make this
filesystem non-operational until the next mount by
triggering an unchecked error condition during an xfs
attribute change, because xfs_attr_shortform_addname in
fs/xfs/libxfs/xfs_attr.c mishandles ATTR_REPLACE
operations with conversion of an attr from short to
long form.(CVE-2018-18690)
- A security flaw was found in the Linux kernel in
drivers/tty/n_tty.c which allows local attackers (ones
who are able to access pseudo terminals) to lock them
up and block further usage of any pseudo terminal
devices due to an EXTPROC versus ICANON confusion in
TIOCINQ handler.(CVE-2018-18386)
Note that Tenable Network Security has extracted the preceding
description block directly from the EulerOS security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues.");
# https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2019-1027
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1fdeb710");
script_set_attribute(attribute:"solution", value:
"Update the affected kernel packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:P/I:N/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2018-16658");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"patch_publication_date", value:"2019/01/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/02/14");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-debuginfo-common-x86_64");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:python-perf");
script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Huawei Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
script_exclude_keys("Host/EulerOS/uvp_version");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/EulerOS/release");
if (isnull(release) || release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
if (release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0");
sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(3)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP3");
uvp = get_kb_item("Host/EulerOS/uvp_version");
if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP3", "EulerOS UVP " + uvp);
if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_ARCH_NOT, "i686 / x86_64", cpu);
flag = 0;
pkgs = ["kernel-3.10.0-514.44.5.10.h158",
"kernel-debuginfo-3.10.0-514.44.5.10.h158",
"kernel-debuginfo-common-x86_64-3.10.0-514.44.5.10.h158",
"kernel-devel-3.10.0-514.44.5.10.h158",
"kernel-headers-3.10.0-514.44.5.10.h158",
"kernel-tools-3.10.0-514.44.5.10.h158",
"kernel-tools-libs-3.10.0-514.44.5.10.h158",
"perf-3.10.0-514.44.5.10.h158",
"python-perf-3.10.0-514.44.5.10.h158"];
foreach (pkg in pkgs)
if (rpm_check(release:"EulerOS-2.0", sp:"3", reference:pkg)) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_NOTE,
extra : rpm_report_get()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| huawei | euleros | kernel | p-cpe:/a:huawei:euleros:kernel |
| huawei | euleros | kernel-debuginfo | p-cpe:/a:huawei:euleros:kernel-debuginfo |
| huawei | euleros | kernel-debuginfo-common-x86_64 | p-cpe:/a:huawei:euleros:kernel-debuginfo-common-x86_64 |
| huawei | euleros | kernel-devel | p-cpe:/a:huawei:euleros:kernel-devel |
| huawei | euleros | kernel-headers | p-cpe:/a:huawei:euleros:kernel-headers |
| huawei | euleros | kernel-tools | p-cpe:/a:huawei:euleros:kernel-tools |
| huawei | euleros | kernel-tools-libs | p-cpe:/a:huawei:euleros:kernel-tools-libs |
| huawei | euleros | perf | p-cpe:/a:huawei:euleros:perf |
| huawei | euleros | python-perf | p-cpe:/a:huawei:euleros:python-perf |
| huawei | euleros | 2.0 | cpe:/o:huawei:euleros:2.0 |
Related
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2019-1027)
2020-01-23 00:00:00
openSUSE: Security Advisory for kernel (openSUSE-SU-2018:3817-1)
2018-11-21 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:3689-1)
2021-04-19 00:00:00
nessus
nessus
openSUSE Security Update : the Linux Kernel (openSUSE-2018-1427)
2018-11-21 00:00:00
SUSE SLED12 / SLES12 Security Update : kernel (SUSE-SU-2018:3689-1)
2018-11-11 00:00:00
SUSE SLES12 Security Update : kernel (SUSE-SU-2018:3772-1)
2018-11-16 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2018-11-20 21:08:45
Security update for the Linux Kernel (important)
2018-11-07 21:11:37
Security update for the Linux Kernel (important)
2018-09-16 15:07:35
redhatcve
redhatcve
prion
prion
Design/Logic Flaw
2018-10-26 18:29:00
Type confusion
2018-10-17 20:29:00
Out-of-bounds
2018-09-07 14:29:00
f5
f5
K28280935 : Linux kernel vulnerability CVE-2018-18386
2019-01-31 00:00:00
K40523020 : Linux kernel vulnerability CVE-2018-16658
2019-01-31 00:00:00
K11165942 : Linux kernel vulnerability CVE-2018-18710
2019-01-21 00:00:00
debiancve
debiancve
ubuntucve
ubuntucve
cve
cve
veracode
veracode
Denial Of Service (DoS)
2019-05-16 03:18:37
Information Disclosure
2019-08-08 00:07:16
fedora
fedora
[SECURITY] Fedora 28 Update: kernel-headers-4.18.7-200.fc28
2018-09-14 23:14:35
[SECURITY] Fedora 28 Update: kernel-tools-4.18.7-200.fc28
2018-09-14 23:14:36
ubuntu
ubuntu
Linux kernel (Trusty HWE) vulnerabilities
2018-12-20 00:00:00
Linux kernel vulnerabilities
2018-12-20 00:00:00
Linux kernel vulnerabilities
2018-12-20 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2018-12-11 00:00:00
Unbreakable Enterprise kernel security update
2018-09-26 00:00:00
Unbreakable Enterprise kernel security update
2018-11-28 00:00:00
amazon
amazon
Important: kernel
2018-10-08 22:12:00
Important: kernel
2018-10-03 02:57:00
cloudfoundry
cloudfoundry
USN-3848-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2019-01-24 00:00:00
USN-3820-2: Linux kernel (HWE) vulnerabilities | Cloud Foundry
2018-11-20 00:00:00
USN-3797-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2018-10-25 00:00:00
redhat
redhat
(RHSA-2019:0831) Important: kernel-alt security and bug fix update
2019-04-23 12:37:36
photon
photon
Important Photon OS Security Update - PHSA-2018-0190
2018-09-25 00:00:00
Important Photon OS Security Update - PHSA-2018-0101
2018-10-10 00:00:00
Important Photon OS Security Update - PHSA-2019-0122
2019-01-09 00:00:00
debian
debian
[SECURITY] [DSA 4308-1] linux security update
2018-10-01 15:21:20
[SECURITY] [DLA 1531-1] linux-4.9 security update
2018-10-03 23:59:07
[SECURITY] [DSA 4308-1] linux security update
2018-10-01 15:21:20
osv
osv
linux - security update
2018-10-01 00:00:00
linux-4.9 - security update
2018-10-03 00:00:00
Related for EULEROS_SA-2019-1027.NASL