Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2023-2631.NASL
HistoryAug 08, 2023 - 12:00 a.m.

EulerOS 2.0 SP9 : kernel (EulerOS-SA-2023-2631)

2023-08-0800:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
5
euleros
kernel
use-after-free vulnerability
ext4 filesystem
privileged local user
system crash
undefined behaviors
cve-2023-2513
JSON

According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  • A use-after-free vulnerability was found in the Linux kernel’s ext4 filesystem in the way it handled the extra inode size for extended attributes. This flaw could allow a privileged local user to cause a system crash or other undefined behaviors. (CVE-2023-2513)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(179515);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/08/08");

  script_cve_id("CVE-2023-2513");

  script_name(english:"EulerOS 2.0 SP9 : kernel (EulerOS-SA-2023-2631)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the kernel packages installed, the EulerOS installation on the remote host is affected by
the following vulnerabilities :

  - A use-after-free vulnerability was found in the Linux kernel's ext4 filesystem in the way it handled the
    extra inode size for extended attributes. This flaw could allow a privileged local user to cause a system
    crash or other undefined behaviors. (CVE-2023-2513)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security
advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional
issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2023-2631
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?5be94419");
  script_set_attribute(attribute:"solution", value:
"Update the affected kernel packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:M/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-2513");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2023/05/08");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/08/08");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/08/08");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:kernel-tools-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:python3-perf");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
  script_exclude_keys("Host/EulerOS/uvp_version");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var _release = get_kb_item("Host/EulerOS/release");
if (isnull(_release) || _release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
var uvp = get_kb_item("Host/EulerOS/uvp_version");
if (_release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP9");

var sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(9)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP9");

if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP9", "EulerOS UVP " + uvp);

if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu && "x86" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);
if ("aarch64" >!< cpu) audit(AUDIT_ARCH_NOT, "aarch64", cpu);

var flag = 0;

var pkgs = [
  "kernel-4.19.90-vhulk2103.1.0.h911.eulerosv2r9",
  "kernel-tools-4.19.90-vhulk2103.1.0.h911.eulerosv2r9",
  "kernel-tools-libs-4.19.90-vhulk2103.1.0.h911.eulerosv2r9",
  "python3-perf-4.19.90-vhulk2103.1.0.h911.eulerosv2r9"
];

foreach (var pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", sp:"9", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel");
}
VendorProductVersionCPE
huaweieuleroskernelp-cpe:/a:huawei:euleros:kernel
huaweieuleroskernel-toolsp-cpe:/a:huawei:euleros:kernel-tools
huaweieuleroskernel-tools-libsp-cpe:/a:huawei:euleros:kernel-tools-libs
huaweieulerospython3-perfp-cpe:/a:huawei:euleros:python3-perf
huaweieuleros2.0cpe:/o:huawei:euleros:2.0

Related

cbl_mariner 3
cvelist 1
openvas 14
nessus 36
redhatcve 1
debiancve 1
ubuntucve 1
cve 1
prion 1
amazon 2
virtuozzo 2
oraclelinux 2
osv 2
ubuntu 1
photon 2
redhat 10
ibm 4
almalinux 1
cbl_mariner
cbl_mariner
CVE-2023-2513 affecting package kernel 5.10.179.1-1
2023-06-13 20:02:41
CVE-2023-2513 affecting package kernel for versions less than 5.15.112.1-1
2023-06-02 21:37:28
CVE-2023-2513 affecting package hyperv-daemons 5.10.177.1-1
2023-05-25 17:55:45
cvelist
cvelist
CVE-2023-2513
2023-05-08 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2631)
2023-08-08 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2601)
2023-08-08 00:00:00
Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2023-2974)
2023-10-13 00:00:00
nessus
nessus
CBL Mariner 2.0 Security Update: hyperv-daemons / kernel (CVE-2023-2513)
2023-06-05 00:00:00
EulerOS 2.0 SP9 : kernel (EulerOS-SA-2023-2601)
2023-08-08 00:00:00
EulerOS Virtualization 2.9.1 : kernel (EulerOS-SA-2023-2974)
2024-01-16 00:00:00
redhatcve
redhatcve
CVE-2023-2513
2023-05-04 10:21:26
debiancve
debiancve
CVE-2023-2513
2023-05-08 21:15:11
ubuntucve
ubuntucve
CVE-2023-2513
2023-05-08 00:00:00
cve
cve
CVE-2023-2513
2023-05-08 21:15:11
prion
prion
Design/Logic Flaw
2023-05-08 21:15:00
amazon
amazon
Medium: kernel
2023-05-11 18:00:00
Medium: kernel
2023-05-11 17:49:00
virtuozzo
virtuozzo
[Important] [Security] Virtuozzo ReadyKernel Patch 157.3 for Virtuozzo Hybrid Server 7.5
2023-07-06 00:00:00
[Important] [Security] Virtuozzo ReadyKernel Patch 161.0 for Virtuozzo Hybrid Server 7.5
2023-09-20 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2023-10-03 00:00:00
kernel security, bug fix, and enhancement update
2023-11-17 00:00:00
osv
osv
linux, linux-aws, linux-kvm, linux-lts-xenial vulnerabilities
2023-07-26 15:54:27
Important: kernel security, bug fix, and enhancement update
2023-11-14 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2023-07-26 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2023-3.0-0585
2023-05-24 00:00:00
Important Photon OS Security Update - PHSA-2023-4.0-0406
2023-06-09 00:00:00
redhat
redhat
(RHSA-2023:7478) Important: OpenShift Container Platform 4.11.54 security and extras update
2023-11-29 00:41:11
(RHSA-2023:7479) Important: OpenShift Container Platform 4.11.54 bug fix and security update
2023-11-29 01:35:44
(RHSA-2023:2148) Important: kernel-rt security and bug fix update
2023-05-09 05:01:55
ibm
ibm
Security Bulletin: Vulnerabilities in Linux Kernel and Apache Axis can affect IBM Storage Protect Plus
2024-01-31 12:00:02
Security Bulletin: Vulnerabilities in Linux Kernel might affect IBM Spectrum Copy Data Management
2024-01-12 16:32:54
Security Bulletin: Multiple Vulnerabilities in CloudPak for AIOps
2023-12-18 18:02:34
almalinux
almalinux
Important: kernel security, bug fix, and enhancement update
2023-11-14 00:00:00
JSON
Related for EULEROS_SA-2023-2631.NASL
cbl_mariner3cvelist1openvas14nessus36redhatcve1debiancve1ubuntucve1cve1prion1amazon2virtuozzo2oraclelinux2osv2ubuntu1photon2redhat10ibm4almalinux1