Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2007-482.NASL
HistoryMay 02, 2007 - 12:00 a.m.

Fedora Core 6 : kernel-2.6.20-1.2948.fc6 (2007-482)

2007-05-0200:00:00
This script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
34
JSON

Linux kernel 2.6.20.7 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.7 Previous kernel had most of this update already applied.

Linux kernel 2.6.20.8 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.8 Fixes CVE-2007-1861

Linux kernel 2.6.20.9 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.9 Fixes CVE-2007-2242

Linux kernel 2.6.20.10 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.10 Fixes two bugs introduced by the two previous updates.

CVE-2007-1861: The netlink protocol has an infinite recursion bug that allows users to cause a kernel crash.

CVE-2007-2242: The IPv6 protocol allows remote attackers to cause a denial of service via crafted IPv6 type 0 route headers (IPV6_RTHDR_TYPE_0) that create network amplification between two routers.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2007-482.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(25127);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_xref(name:"FEDORA", value:"2007-482");

  script_name(english:"Fedora Core 6 : kernel-2.6.20-1.2948.fc6 (2007-482)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora Core host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Linux kernel 2.6.20.7
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.7
Previous kernel had most of this update already applied.

Linux kernel 2.6.20.8
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.8 Fixes
CVE-2007-1861

Linux kernel 2.6.20.9
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.9 Fixes
CVE-2007-2242

Linux kernel 2.6.20.10
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.10 Fixes
two bugs introduced by the two previous updates.

CVE-2007-1861: The netlink protocol has an infinite recursion bug that
allows users to cause a kernel crash.

CVE-2007-2242: The IPv6 protocol allows remote attackers to cause a
denial of service via crafted IPv6 type 0 route headers
(IPV6_RTHDR_TYPE_0) that create network amplification between two
routers.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.10
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?f5172e87"
  );
  # http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.7
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?4b3c59b9"
  );
  # http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.8
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?91256654"
  );
  # http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.20.9
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?d03cf455"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2007-May/001700.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?f2e5bff0"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_attribute(attribute:"risk_factor", value:"High");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-debug");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-debug-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-debug-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-PAE-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debug");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debug-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debug-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-debuginfo-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-kdump");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-kdump-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-kdump-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-xen");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-xen-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel-xen-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora_core:6");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/05/01");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/05/02");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 6.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC6", reference:"kernel-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-debug-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-debug-debuginfo-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-debug-devel-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-debuginfo-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", cpu:"i386", reference:"kernel-PAE-devel-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debug-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debug-debuginfo-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debug-devel-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debuginfo-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-debuginfo-common-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-devel-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-doc-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-headers-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-kdump-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-kdump-debuginfo-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-kdump-devel-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-xen-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-xen-debuginfo-2.6.20-1.2948.fc6")) flag++;
if (rpm_check(release:"FC6", reference:"kernel-xen-devel-2.6.20-1.2948.fc6")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-PAE / kernel-PAE-debug / kernel-PAE-debug-debuginfo / etc");
}
VendorProductVersionCPE
fedoraprojectfedorakernelp-cpe:/a:fedoraproject:fedora:kernel
fedoraprojectfedorakernel-paep-cpe:/a:fedoraproject:fedora:kernel-pae
fedoraprojectfedorakernel-pae-debugp-cpe:/a:fedoraproject:fedora:kernel-pae-debug
fedoraprojectfedorakernel-pae-debug-debuginfop-cpe:/a:fedoraproject:fedora:kernel-pae-debug-debuginfo
fedoraprojectfedorakernel-pae-debug-develp-cpe:/a:fedoraproject:fedora:kernel-pae-debug-devel
fedoraprojectfedorakernel-pae-debuginfop-cpe:/a:fedoraproject:fedora:kernel-pae-debuginfo
fedoraprojectfedorakernel-pae-develp-cpe:/a:fedoraproject:fedora:kernel-pae-devel
fedoraprojectfedorakernel-debugp-cpe:/a:fedoraproject:fedora:kernel-debug
fedoraprojectfedorakernel-debug-debuginfop-cpe:/a:fedoraproject:fedora:kernel-debug-debuginfo
fedoraprojectfedorakernel-debug-develp-cpe:/a:fedoraproject:fedora:kernel-debug-devel
Rows per page:
1-10 of 221

Related

openvas 20
fedora 2
nessus 17
securityvulns 4
ubuntucve 2
cve 3
prion 3
veracode 2
freebsd 1
freebsd_advisory 1
cert 1
redhat 1
centos 1
osv 1
debian 1
ubuntu 3
oraclelinux 1
suse 3
openvas
openvas
Fedora Update for kernel FEDORA-2007-482
2009-02-27 00:00:00
Fedora Update for kernel FEDORA-2007-482
2009-02-27 00:00:00
FreeBSD Security Advisory (FreeBSD-SA-07:03.ipv6.asc)
2008-09-04 00:00:00
fedora
fedora
[SECURITY] Fedora Core 6 Update: kernel-2.6.20-1.2948.fc6
2007-05-01 16:21:51
[SECURITY] Fedora Core 5 Update: kernel-2.6.20-1.2316.fc5
2007-05-01 16:32:15
nessus
nessus
Fedora Core 5 : kernel-2.6.20-1.2316.fc5 (2007-483)
2007-05-02 00:00:00
Mac OS X 10.4.x < 10.4.10 IPv6 Type 0 Route Headers DoS
2007-06-21 00:00:00
Scientific Linux Security Update : kernel on SL5.x i386/x86_64
2012-08-01 00:00:00
securityvulns
securityvulns
FreeBSD Security Advisory FreeBSD-SA-07:03.ipv6
2007-04-27 00:00:00
Linux netlink DoS
2007-05-09 00:00:00
Linux and BSD based Unix system IPv6 traffic amplification
2007-04-27 00:00:00
ubuntucve
ubuntucve
CVE-2007-2242
2007-04-25 00:00:00
CVE-2007-1861
2007-05-07 00:00:00
cve
cve
CVE-2007-2242
2007-04-25 16:19:00
CVE-2007-1861
2007-05-07 19:19:00
CVE-2007-2436
2007-05-02 10:19:00
prion
prion
Code injection
2007-04-25 16:19:00
Stack overflow
2007-05-07 19:19:00
Design/Logic Flaw
2007-05-02 10:19:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:18:32
Denial Of Service (DoS)
2020-04-10 00:18:29
freebsd
freebsd
FreeBSD -- IPv6 Routing Header 0 is dangerous
2007-04-26 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-07:03.ipv6
2007-04-26 00:00:00
cert
cert
IPv6 Type 0 Route Headers allow sender to control routing
2007-06-01 00:00:00
redhat
redhat
(RHSA-2007:0347) Important: kernel security and bug fix update
2007-05-16 00:00:00
centos
centos
kernel security update
2007-05-20 02:21:06
osv
osv
linux-2.6
2007-05-13 00:00:00
debian
debian
[SECURITY] [DSA 1289-1] New Linux 2.6.18 packages fix several vulnerabilities
2007-05-13 11:33:16
ubuntu
ubuntu
Linux kernel vulnerabilities
2007-07-18 00:00:00
Linux kernel vulnerabilities
2007-08-31 00:00:00
Linux kernel vulnerabilities
2007-07-19 00:00:00
oraclelinux
oraclelinux
Important: kernel security and bug fix update
2007-06-26 00:00:00
suse
suse
remote denial of service in kernel
2007-07-09 14:31:09
remote denial of service in kernel
2007-09-06 17:18:55
local privilege escalation in kernel
2008-02-07 11:18:53
JSON
Related for FEDORA_2007-482.NASL
openvas20fedora2nessus17securityvulns4ubuntucve2cve3prion3veracode2freebsd1freebsd_advisory1cert1redhat1centos1osv1debian1ubuntu3oraclelinux1suse3