Fedora Core 4 : kernel-2.6.14-1.1653_FC4 (2005-1138)

🗓️ 15 Dec 2005 00:00:00Reported by TenableType

Fedora Core 4 kernel-2.6.14-1.1653_FC4 security updat

Reporter	Title	Published	Views	Family All 10
CVE	CVE-2005-3808	25 Nov 200521:00	–	cve
Cvelist	CVE-2005-3808	25 Nov 200521:00	–	cvelist
EUVD	EUVD-2005-3803	7 Oct 202500:30	–	euvd
Tenable Nessus	Mandrake Linux Security Advisory : kernel (MDKSA-2006:018)	22 Jan 200600:00	–	nessus
Tenable Nessus	SUSE-SA:2006:006: kernel	10 Feb 200600:00	–	nessus
Tenable Nessus	Ubuntu 4.10 / 5.04 / 5.10 : linux-source-2.6.8.1/-2.6.10/-2.6.12 vulnerabilities (USN-231-1)	21 Jan 200600:00	–	nessus
NVD	CVE-2005-3808	25 Nov 200521:03	–	nvd
SUSE CVE	SUSE CVE-2005-3808	15 Feb 202306:16	–	susecve
UbuntuCve	CVE-2005-3808	25 Nov 200521:03	–	ubuntucve
Ubuntu	USN-231-1: Linux kernel vulnerabilities	23 Dec 200500:16	–	ubuntu

Source	Link
nessus	www.nessus.org/u
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2005-1138.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(20306);
  script_version("1.13");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2005-3808");
  script_xref(name:"FEDORA", value:"2005-1138");

  script_name(english:"Fedora Core 4 : kernel-2.6.14-1.1653_FC4 (2005-1138)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora Core host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update fixes several minor security related issues.

A problem was discovered where users could reprogram keys, leaving
'traps' for the next user of a console. The ability has been
restricted to root.

A 32 bit integer overflow was discovered in the
invalidate_inode_pages2() function which could lead to a local denial
of service attack.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # https://lists.fedoraproject.org/pipermail/announce/2005-December/001650.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?1ce8d468"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-smp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-smp-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:4");

  script_set_attribute(attribute:"patch_publication_date", value:"2005/12/13");
  script_set_attribute(attribute:"plugin_publication_date", value:"2005/12/15");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2005-2021 Tenable Network Security, Inc.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^4([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 4.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC4", reference:"kernel-2.6.14-1.1653_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-debuginfo-2.6.14-1.1653_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-devel-2.6.14-1.1653_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-doc-2.6.14-1.1653_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-smp-2.6.14-1.1653_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-smp-devel-2.6.14-1.1653_FC4")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-debuginfo / kernel-devel / kernel-doc / kernel-smp / etc");
}

11 Jan 2021 00:00Current

5.5Medium risk

Vulners AI Score5.5

CVSS 24.9

EPSS0.00201