Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.EULEROS_SA-2024-1569.NASL
HistoryMay 09, 2024 - 12:00 a.m.

EulerOS 2.0 SP10 : grub2 (EulerOS-SA-2024-1569)

2024-05-0900:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
5
euleros
grub2
vulnerability
grubenv
filesystem

7.5 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

16.0%

JSON

According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities :

  • A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set- bootflag will create a temporary file with the new grubenv content and rename it to the original grubenv file. If the program is killed before the rename operation, the temporary file will not be removed and may fill the filesystem when invoked multiple times, resulting in a filesystem out of free inodes or blocks.
    (CVE-2024-1048)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##

include('compat.inc');

if (description)
{
  script_id(195279);
  script_version("1.0");
  script_set_attribute(attribute:"plugin_modification_date", value:"2024/05/09");

  script_cve_id("CVE-2024-1048");

  script_name(english:"EulerOS 2.0 SP10 : grub2 (EulerOS-SA-2024-1569)");

  script_set_attribute(attribute:"synopsis", value:
"The remote EulerOS host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"According to the versions of the grub2 packages installed, the EulerOS installation on the remote host is affected by
the following vulnerabilities :

  - A flaw was found in the grub2-set-bootflag utility of grub2. After the fix of CVE-2019-14865, grub2-set-
    bootflag will create a temporary file with the new grubenv content and rename it to the original grubenv
    file. If the program is killed before the rename operation, the temporary file will not be removed and may
    fill the filesystem when invoked multiple times, resulting in a filesystem out of free inodes or blocks.
    (CVE-2024-1048)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security
advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional
issues.");
  # https://developer.huaweicloud.com/ict/en/site-euleros/euleros/security-advisories/EulerOS-SA-2024-1569
  script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?1c2e6e31");
  script_set_attribute(attribute:"solution", value:
"Update the affected grub2 packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:L");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2024-1048");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"vuln_publication_date", value:"2024/02/06");
  script_set_attribute(attribute:"patch_publication_date", value:"2024/05/09");
  script_set_attribute(attribute:"plugin_publication_date", value:"2024/05/09");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-efi-aa64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-efi-aa64-modules");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-tools-extra");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:huawei:euleros:grub2-tools-minimal");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:huawei:euleros:2.0");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Huawei Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/EulerOS/release", "Host/EulerOS/rpm-list", "Host/EulerOS/sp");
  script_exclude_keys("Host/EulerOS/uvp_version");

  exit(0);
}

include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var _release = get_kb_item("Host/EulerOS/release");
if (isnull(_release) || _release !~ "^EulerOS") audit(AUDIT_OS_NOT, "EulerOS");
var uvp = get_kb_item("Host/EulerOS/uvp_version");
if (_release !~ "^EulerOS release 2\.0(\D|$)") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP10");

var sp = get_kb_item("Host/EulerOS/sp");
if (isnull(sp) || sp !~ "^(10)$") audit(AUDIT_OS_NOT, "EulerOS 2.0 SP10");

if (!empty_or_null(uvp)) audit(AUDIT_OS_NOT, "EulerOS 2.0 SP10", "EulerOS UVP " + uvp);

if (!get_kb_item("Host/EulerOS/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "aarch64" >!< cpu && "x86" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "EulerOS", cpu);

var flag = 0;

var pkgs = [
  "grub2-common-2.04-16.h48.eulerosv2r10",
  "grub2-efi-aa64-2.04-16.h48.eulerosv2r10",
  "grub2-efi-aa64-modules-2.04-16.h48.eulerosv2r10",
  "grub2-tools-2.04-16.h48.eulerosv2r10",
  "grub2-tools-extra-2.04-16.h48.eulerosv2r10",
  "grub2-tools-minimal-2.04-16.h48.eulerosv2r10"
];

foreach (var pkg in pkgs)
  if (rpm_check(release:"EulerOS-2.0", sp:"10", reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_NOTE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "grub2");
}
VendorProductVersionCPE
huaweieulerosgrub2-toolsp-cpe:/a:huawei:euleros:grub2-tools
huaweieulerosgrub2-efi-aa64p-cpe:/a:huawei:euleros:grub2-efi-aa64
huaweieulerosgrub2-tools-extrap-cpe:/a:huawei:euleros:grub2-tools-extra
huaweieulerosgrub2-efi-aa64-modulesp-cpe:/a:huawei:euleros:grub2-efi-aa64-modules
huaweieulerosgrub2-tools-minimalp-cpe:/a:huawei:euleros:grub2-tools-minimal
huaweieulerosgrub2-commonp-cpe:/a:huawei:euleros:grub2-common
huaweieuleros2.0cpe:/o:huawei:euleros:2.0

Related

prion 2
openvas 12
ubuntucve 2
nessus 20
cve 2
amazon 2
cvelist 2
debiancve 2
nvd 2
redhatcve 2
oraclelinux 4
redhat 3
fedora 3
mageia 1
redos 1
osv 2
almalinux 2
prion
prion
Design/Logic Flaw
2024-02-06 18:15:00
Default configuration
2019-11-29 10:15:00
openvas
openvas
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2024-1799)
2024-06-03 00:00:00
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2024-1787)
2024-06-03 00:00:00
Huawei EulerOS: Security Advisory for grub2 (EulerOS-SA-2024-1591)
2024-05-10 00:00:00
ubuntucve
ubuntucve
CVE-2024-1048
2024-02-06 00:00:00
CVE-2019-14865
2019-11-29 00:00:00
nessus
nessus
Amazon Linux 2 : grub2 (ALAS-2024-2499)
2024-03-18 00:00:00
EulerOS 2.0 SP10 : grub2 (EulerOS-SA-2024-1591)
2024-05-09 00:00:00
Fedora 39 : grub2 (2024-097eb22907)
2024-03-11 00:00:00
cve
cve
CVE-2024-1048
2024-02-06 18:15:59
CVE-2019-14865
2019-11-29 10:15:12
amazon
amazon
Low: grub2
2024-03-13 20:26:00
Medium: grub2
2021-07-14 20:30:00
cvelist
cvelist
CVE-2024-1048 Grub2: grub2-set-bootflag can be abused by local (pseudo-)users
2024-02-06 17:30:35
CVE-2019-14865
2019-11-29 09:50:12
debiancve
debiancve
CVE-2024-1048
2024-02-06 18:15:59
CVE-2019-14865
2019-11-29 10:15:12
nvd
nvd
CVE-2024-1048
2024-02-06 18:15:59
CVE-2019-14865
2019-11-29 10:15:12
redhatcve
redhatcve
CVE-2024-1048
2024-02-06 17:30:15
CVE-2019-14865
2019-11-26 03:47:55
oraclelinux
oraclelinux
grub2 security update
2019-12-17 00:00:00
grub2 security update
2020-02-07 00:00:00
grub2 security update
2024-05-03 00:00:00
redhat
redhat
(RHSA-2020:0335) Moderate: grub2 security update
2020-02-04 12:38:47
(RHSA-2024:2456) Moderate: grub2 security update
2024-04-30 06:15:45
(RHSA-2024:3184) Moderate: grub2 security update
2024-05-22 06:35:52
fedora
fedora
[SECURITY] Fedora 31 Update: grub2-2.02-103.fc31
2019-11-29 00:55:14
[SECURITY] Fedora 39 Update: grub2-2.06-118.fc39
2024-03-11 01:37:08
[SECURITY] Fedora 38 Update: grub2-2.06-116.fc38
2024-03-21 01:28:23
mageia
mageia
Updated grub2 packages fix security vulnerabilities
2024-03-28 06:52:55
redos
redos
ROS-20240410-11
2024-04-10 00:00:00
osv
osv
Moderate: grub2 security update
2024-05-22 00:00:00
Moderate: grub2 security update
2024-04-30 00:00:00
almalinux
almalinux
Moderate: grub2 security update
2024-04-30 00:00:00
Moderate: grub2 security update
2024-05-22 00:00:00

7.5 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

16.0%

JSON
Related for EULEROS_SA-2024-1569.NASL
prion2openvas12ubuntucve2nessus20cve2amazon2cvelist2debiancve2nvd2redhatcve2oraclelinux4redhat3fedora3mageia1redos1osv2almalinux2