Security update for CVE-2011-2905 Additionally, includes other fixes from 3.0.1, 3.0.2 and 3.0.3rc1. Also numerous fixes for bugs reported via bugzilla.
Rebase to 3.0. Version reports as 2.6.40 for compatibility with older userspace.
Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory 2011-11019.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(55892);
script_version("1.12");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/11");
script_bugtraq_id(49140);
script_xref(name:"FEDORA", value:"2011-11019");
script_name(english:"Fedora 15 : kernel-2.6.40.3-0.fc15 (2011-11019)");
script_summary(english:"Checks rpm output for the updated package.");
script_set_attribute(
attribute:"synopsis",
value:"The remote Fedora host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Security update for CVE-2011-2905 Additionally, includes other fixes
from 3.0.1, 3.0.2 and 3.0.3rc1. Also numerous fixes for bugs reported
via bugzilla.
Rebase to 3.0. Version reports as 2.6.40 for compatibility with older
userspace.
Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=690930"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=708314"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=708868"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=710551"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=712527"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=712528"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=712531"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=712532"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=712534"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=712823"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=714165"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=714332"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=714333"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=714847"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=714850"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=717501"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=717621"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=720054"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=720128"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=720594"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=720771"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=722472"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=727680"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=727796"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=728044"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=728379"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=728872"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=729269"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=729340"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.redhat.com/show_bug.cgi?id=729363"
);
# https://lists.fedoraproject.org/pipermail/package-announce/2011-August/063890.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?1d1b802b"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected kernel package."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:H/Au:N/C:N/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:kernel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:15");
script_set_attribute(attribute:"patch_publication_date", value:"2011/08/17");
script_set_attribute(attribute:"plugin_publication_date", value:"2011/08/18");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Fedora Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = eregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! ereg(pattern:"^15([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 15.x", "Fedora " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);
flag = 0;
if (rpm_check(release:"FC15", reference:"kernel-2.6.40.3-0.fc15")) flag++;
if (flag)
{
if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
else security_note(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel");
}
Vendor | Product | Version | CPE |
---|---|---|---|
fedoraproject | fedora | kernel | p-cpe:/a:fedoraproject:fedora:kernel |
fedoraproject | fedora | 15 | cpe:/o:fedoraproject:fedora:15 |
www.nessus.org/u?1d1b802b
bugzilla.redhat.com/show_bug.cgi?id=690930
bugzilla.redhat.com/show_bug.cgi?id=708314
bugzilla.redhat.com/show_bug.cgi?id=708868
bugzilla.redhat.com/show_bug.cgi?id=710551
bugzilla.redhat.com/show_bug.cgi?id=712527
bugzilla.redhat.com/show_bug.cgi?id=712528
bugzilla.redhat.com/show_bug.cgi?id=712531
bugzilla.redhat.com/show_bug.cgi?id=712532
bugzilla.redhat.com/show_bug.cgi?id=712534
bugzilla.redhat.com/show_bug.cgi?id=712823
bugzilla.redhat.com/show_bug.cgi?id=714165
bugzilla.redhat.com/show_bug.cgi?id=714332
bugzilla.redhat.com/show_bug.cgi?id=714333
bugzilla.redhat.com/show_bug.cgi?id=714847
bugzilla.redhat.com/show_bug.cgi?id=714850
bugzilla.redhat.com/show_bug.cgi?id=717501
bugzilla.redhat.com/show_bug.cgi?id=717621
bugzilla.redhat.com/show_bug.cgi?id=720054
bugzilla.redhat.com/show_bug.cgi?id=720128
bugzilla.redhat.com/show_bug.cgi?id=720594
bugzilla.redhat.com/show_bug.cgi?id=720771
bugzilla.redhat.com/show_bug.cgi?id=722472
bugzilla.redhat.com/show_bug.cgi?id=727680
bugzilla.redhat.com/show_bug.cgi?id=727796
bugzilla.redhat.com/show_bug.cgi?id=728044
bugzilla.redhat.com/show_bug.cgi?id=728379
bugzilla.redhat.com/show_bug.cgi?id=728872
bugzilla.redhat.com/show_bug.cgi?id=729269
bugzilla.redhat.com/show_bug.cgi?id=729340
bugzilla.redhat.com/show_bug.cgi?id=729363