Lucene search
This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.FEDORA_2006-423.NASLHistoryApr 21, 2006 - 12:00 a.m.
Fedora Core 4 : kernel-2.6.16-1.2096_FC4 (2006-423)
2006-04-2100:00:00
This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.
www.tenable.com
34
This update includes a number of security issues that have been fixed upstream over the last week or so.
i386/x86-64: Fix x87 information leak between processes (CVE-2006-1056) ip_route_input panic fix (CVE-2006-1525) fix MADV_REMOVE vulnerability (CVE-2006-1524) shmat: stop mprotect from giving write permission to a readonly attachment (CVE-2006-1524) Fix MPBL0010 driver insecure sysfs permissions x86_64: When user could have changed RIP always force IRET (CVE-2006-0744) Fix RCU signal handling Keys: Fix oops when adding key to non-keyring (CVE-2006-1522) sysfs: zero terminate sysfs write buffers (CVE-2006-1055)
It also includes various other fixes from the -stable tree. Full changelogs are available from :
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.9 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.8 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.7 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.6 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.5 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.4 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.3 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.2
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory 2006-423.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(21253);
script_version("1.17");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_cve_id("CVE-2006-0744", "CVE-2006-1055", "CVE-2006-1056", "CVE-2006-1522", "CVE-2006-1524", "CVE-2006-1525");
script_xref(name:"FEDORA", value:"2006-423");
script_name(english:"Fedora Core 4 : kernel-2.6.16-1.2096_FC4 (2006-423)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Fedora Core host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"This update includes a number of security issues that have been fixed
upstream over the last week or so.
i386/x86-64: Fix x87 information leak between processes
(CVE-2006-1056) ip_route_input panic fix (CVE-2006-1525) fix
MADV_REMOVE vulnerability (CVE-2006-1524) shmat: stop mprotect from
giving write permission to a readonly attachment (CVE-2006-1524) Fix
MPBL0010 driver insecure sysfs permissions x86_64: When user could
have changed RIP always force IRET (CVE-2006-0744) Fix RCU signal
handling Keys: Fix oops when adding key to non-keyring (CVE-2006-1522)
sysfs: zero terminate sysfs write buffers (CVE-2006-1055)
It also includes various other fixes from the -stable tree. Full
changelogs are available from :
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.9
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.8
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.7
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.6
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.5
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.4
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.3
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.2
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.2"
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.3"
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.4"
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.5"
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.6"
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.7"
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.8"
);
script_set_attribute(
attribute:"see_also",
value:"http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.9"
);
# https://lists.fedoraproject.org/pipermail/announce/2006-April/002128.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?9ec807f2"
);
# https://lists.fedoraproject.org/pipermail/announce/2006-April/002129.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?b1f77789"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C");
script_cwe_id(20);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-smp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-smp-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:4");
script_set_attribute(attribute:"patch_publication_date", value:"2006/04/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2006/04/21");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2006-2021 Tenable Network Security, Inc.");
script_family(english:"Fedora Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^4([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 4.x", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC4", reference:"kernel-2.6.16-1.2096_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-debuginfo-2.6.16-1.2096_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-devel-2.6.16-1.2096_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-doc-2.6.16-1.2096_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-smp-2.6.16-1.2096_FC4")) flag++;
if (rpm_check(release:"FC4", reference:"kernel-smp-devel-2.6.16-1.2096_FC4")) flag++;
if (flag)
{
if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
else security_warning(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-debuginfo / kernel-devel / kernel-doc / kernel-smp / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fedoraproject | fedora | kernel | p-cpe:/a:fedoraproject:fedora:kernel |
| fedoraproject | fedora | kernel-debuginfo | p-cpe:/a:fedoraproject:fedora:kernel-debuginfo |
| fedoraproject | fedora | kernel-devel | p-cpe:/a:fedoraproject:fedora:kernel-devel |
| fedoraproject | fedora | kernel-doc | p-cpe:/a:fedoraproject:fedora:kernel-doc |
| fedoraproject | fedora | kernel-smp | p-cpe:/a:fedoraproject:fedora:kernel-smp |
| fedoraproject | fedora | kernel-smp-devel | p-cpe:/a:fedoraproject:fedora:kernel-smp-devel |
| fedoraproject | fedora_core | 4 | cpe:/o:fedoraproject:fedora_core:4 |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-0744
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1055
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1056
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1522
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1524
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-1525
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.2
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.3
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.4
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.5
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.6
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.7
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.8
www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.16.9
www.nessus.org/u?9ec807f2
www.nessus.org/u?b1f77789
Related
nessus
nessus
Fedora Core 5 : kernel-2.6.16-1.2096_FC5 (2006-421)
2006-04-21 00:00:00
Mandrake Linux Security Advisory : kernel (MDKSA-2006:086)
2006-05-19 00:00:00
OracleVM 3.0 : xen (OVMSA-2012-0020)
2014-11-26 00:00:00
securityvulns
securityvulns
ChangeLog-2.6.16.8
2006-04-19 00:00:00
ChangeLog-2.6.16.3
2006-04-12 00:00:00
VMSA-2006-0009 - VMware ESX Server 3.0.0 AMD fxsave/restore issue
2006-11-14 00:00:00
ubuntucve
ubuntucve
prion
prion
Design/Logic Flaw
2006-04-19 18:18:00
Out-of-bounds
2006-04-05 17:04:00
Code injection
2006-04-10 20:02:00
cve
cve
threatpost
threatpost
Intel Processor SYSRET Vulnerability Affecting Some 64-Bit Systems
2012-06-18 19:14:58
openvas
openvas
FreeBSD Security Advisory (FreeBSD-SA-06:14.fpu.asc)
2008-09-04 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-06:14.fpu.asc)
2008-09-04 00:00:00
Ubuntu: Security Advisory (USN-302-1)
2022-08-26 00:00:00
freebsd
freebsd
FreeBSD -- FPU information disclosure
2006-04-19 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-06:14.fpu
2006-04-19 00:00:00
suse
suse
remote denial of service in kernel
2006-05-31 15:47:21
local privilege escalation in kernel
2006-08-11 14:25:01
local privilege escalation in kernel
2006-07-26 14:31:45
debiancve
debiancve
CVE-2013-2076
2013-08-28 21:55:00
xen
xen
Information leak on XSAVE/XRSTOR capable AMD CPUs
2013-06-03 12:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2006-05-04 00:00:00
Linux kernel vulnerabilities
2006-06-15 00:00:00
redhat
redhat
(RHSA-2006:0493) kernel security update
2006-05-24 00:00:00
(RHSA-2006:0579) kernel security update
2006-07-13 00:00:00
centos
centos
kernel security update
2006-07-20 16:09:23
kernel security update
2006-05-24 16:31:10
kernel security update
2006-07-17 05:19:27
debian
debian
cert
cert
osv
osv
kernel-source-2.4.27 - several vulnerabilities
2006-06-14 00:00:00
kernel-source-2.6.8 - several vulnerabilities
2006-06-27 00:00:00
vmware
vmware
Related for FEDORA_2006-423.NASL