Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2008-11593.NASL
HistoryApr 23, 2009 - 12:00 a.m.

Fedora 10 : kernel-2.6.27.9-159.fc10 (2008-11593)

2009-04-2300:00:00
This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18
JSON

Update kernel from version 2.6.27.7 to 2.6.27.9:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.8 http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.9 Also includes three critical fixes scheduled for 2.6.27.10 Update applesmc driver to latest upstream version. (Adds module autoloading.) Update ALSA audio drivers to version 1.0.18a. (See www.alsa-project.org for details.) Security fixes: CVE-2008-5079 in 2.6.27.9 CVE-2008-5182 in 2.6.27.8 CVE-2008-5300 in 2.6.27.8

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory 2008-11593.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(37568);
  script_version("1.16");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");

  script_cve_id("CVE-2008-5079", "CVE-2008-5182", "CVE-2008-5300");
  script_xref(name:"FEDORA", value:"2008-11593");

  script_name(english:"Fedora 10 : kernel-2.6.27.9-159.fc10 (2008-11593)");
  script_summary(english:"Checks rpm output for the updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Update kernel from version 2.6.27.7 to 2.6.27.9:
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.8
http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.9 Also
includes three critical fixes scheduled for 2.6.27.10 Update applesmc
driver to latest upstream version. (Adds module autoloading.) Update
ALSA audio drivers to version 1.0.18a. (See www.alsa-project.org for
details.) Security fixes: CVE-2008-5079 in 2.6.27.9 CVE-2008-5182 in
2.6.27.8 CVE-2008-5300 in 2.6.27.8

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  # http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.8
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?8f8e56b1"
  );
  # http://www.kernel.org/pub/linux/kernel/v2.6/ChangeLog-2.6.27.9
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?7612a49a"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=472325"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=473259"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.redhat.com/show_bug.cgi?id=473696"
  );
  # https://lists.fedoraproject.org/pipermail/package-announce/2008-December/018236.html
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?83188a85"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected kernel package."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_cwe_id(362, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:10");

  script_set_attribute(attribute:"patch_publication_date", value:"2008/12/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2009/04/23");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2009-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^10([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 10.x", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);

flag = 0;
if (rpm_check(release:"FC10", reference:"kernel-2.6.27.9-159.fc10")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel");
}
VendorProductVersionCPE
fedoraprojectfedorakernelp-cpe:/a:fedoraproject:fedora:kernel
fedoraprojectfedora10cpe:/o:fedoraproject:fedora:10

Related

openvas 62
fedora 14
nessus 25
redhat 5
securityvulns 4
ubuntu 2
veracode 3
prion 3
suse 4
cve 3
ubuntucve 3
exploitpack 1
seebug 2
osv 3
exploitdb 1
debian 3
oraclelinux 3
centos 2
vmware 1
openvas
openvas
Fedora Update for kernel FEDORA-2008-11593
2009-02-13 00:00:00
Fedora Update for kernel FEDORA-2008-11593
2009-02-13 00:00:00
Oracle: Security Advisory (ELSA-2009-0225)
2015-10-08 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: kernel-2.6.27.9-159.fc10
2008-12-24 18:45:37
[SECURITY] Fedora 9 Update: kernel-2.6.27.9-73.fc9
2008-12-24 18:47:55
[SECURITY] Fedora 10 Update: kernel-2.6.27.12-170.2.5.fc10
2009-01-27 01:48:27
nessus
nessus
Fedora 9 : kernel-2.6.27.9-73.fc9 (2008-11618)
2008-12-26 00:00:00
Oracle Linux 5 : Oracle / Enterprise / Linux / 5.3 / kernel (ELSA-2009-0225)
2023-09-07 00:00:00
RHEL 5 : kernel (RHSA-2009:0225)
2009-01-21 00:00:00
redhat
redhat
(RHSA-2009:0021) Important: kernel security update
2009-02-24 00:00:00
(RHSA-2009:0225) Important: Red Hat Enterprise Linux 5.3 kernel security and bug fix update
2009-01-20 00:00:00
(RHSA-2009:0053) Important: kernel-rt security and bug fix update
2009-02-04 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2008-12-29 00:00:00
Linux kernel multiple security vulnerabilities
2009-01-31 00:00:00
CVE-2008-5079: multiple listen&#40;&#41;s on same socket corrupts the vcc table
2008-12-09 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2009-01-29 00:00:00
Linux kernel vulnerabilities
2009-01-29 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:29:30
Denial Of Service (DoS)
2020-04-10 00:29:30
Denial Of Service (DoS)
2020-04-10 00:29:29
prion
prion
Race condition
2008-11-21 02:30:00
Design/Logic Flaw
2008-12-09 00:30:00
Design/Logic Flaw
2008-12-01 17:30:00
suse
suse
local privilege escalation in kernel
2009-01-29 16:12:11
local privilege escalation in kernel-debug
2009-01-20 17:01:02
local privilege escalation in kernel
2009-01-21 20:06:24
cve
cve
CVE-2008-5182
2008-11-21 02:30:00
CVE-2008-5079
2008-12-09 00:30:00
CVE-2008-5300
2008-12-01 17:30:00
ubuntucve
ubuntucve
CVE-2008-5182
2008-11-21 00:00:00
CVE-2008-5079
2008-12-09 00:00:00
CVE-2008-5300
2008-12-01 00:00:00
exploitpack
exploitpack
Linux Kernel 2.6.27.8 - ATMSVC Local Denial of Service
2008-12-10 00:00:00
seebug
seebug
Linux Kernel <= 2.6.27.8 - ATMSVC Local Denial of Service Exploit
2014-07-01 00:00:00
Linux Kernel &lt;= 2.6.27.8 ATMSVC Local Denial of Service Exploit
2008-12-11 00:00:00
osv
osv
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2008-12-15 00:00:00
linux-2.6.24 - several vulnerabilities
2008-12-04 00:00:00
linux-2.6.24 - several vulnerabilities
2009-05-02 00:00:00
exploitdb
exploitdb
Linux Kernel 2.6.27.8 - ATMSVC Local Denial of Service
2008-12-10 00:00:00
debian
debian
[SECURITY] [DSA 1687-1] New Linux 2.6.18 packages fix several vulnerabilities
2008-12-15 21:33:39
[SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities
2008-12-04 17:59:11
[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities
2009-05-02 18:33:03
oraclelinux
oraclelinux
Oracle Enterprise Linux 5.3 kernel security and bug fix update
2009-01-27 00:00:00
kernel security and bug fix update
2009-01-15 00:00:00
kernel security and bug fix update
2009-11-04 00:00:00
centos
centos
kernel security update
2009-01-15 13:41:46
kernel security update
2009-11-04 00:55:32
vmware
vmware
ESX 3.5 third party update for Service Console kernel
2010-06-24 00:00:00
JSON
Related for FEDORA_2008-11593.NASL
openvas62fedora14nessus25redhat5securityvulns4ubuntu2veracode3prion3suse4cve3ubuntucve3exploitpack1seebug2osv3exploitdb1debian3oraclelinux3centos2vmware1