Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2017-8DB9C497F9.NASL
HistoryJan 15, 2018 - 12:00 a.m.

Fedora 27 : 2:qemu (2017-8db9c497f9)

2018-01-1500:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
13

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.007 Low

EPSS

Percentile

80.5%

JSON

  • Fix ppc64 KVM failure (bz #1501936)

    • CVE-2017-15038: 9p: information disclosure when reading extended attributes (bz #1499111)

    • CVE-2017-15268: potential memory exhaustion via websock connection to VNC (bz #1496882)

qemu-pr-helper didn’t work due to a change in the libmultipath/libmpathpersist APIs exposed by device-mapper-multipath-devel. This has been fixed now. Other small changes to the qemu-pr-helper service are included.

Backport qemu-pr-helper from QEMU 2.11. This daemon allows unprivileged users (who have access to the daemon) to use persistent reservation commands on both regular disks and multipath block devices.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Fedora Security Advisory FEDORA-2017-8db9c497f9.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(105928);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2017-15038", "CVE-2017-15268");
  script_xref(name:"FEDORA", value:"2017-8db9c497f9");

  script_name(english:"Fedora 27 : 2:qemu (2017-8db9c497f9)");
  script_summary(english:"Checks rpm output for the updated package.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Fedora host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"  - Fix ppc64 KVM failure (bz #1501936)

  - CVE-2017-15038: 9p: information disclosure when reading
    extended attributes (bz #1499111)

  - CVE-2017-15268: potential memory exhaustion via websock
    connection to VNC (bz #1496882)

----

qemu-pr-helper didn't work due to a change in the
libmultipath/libmpathpersist APIs exposed by
device-mapper-multipath-devel. This has been fixed now. Other small
changes to the qemu-pr-helper service are included.

----

Backport qemu-pr-helper from QEMU 2.11. This daemon allows
unprivileged users (who have access to the daemon) to use persistent
reservation commands on both regular disks and multipath block
devices.

Note that Tenable Network Security has extracted the preceding
description block directly from the Fedora update system website.
Tenable has attempted to automatically clean and format it as much as
possible without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bodhi.fedoraproject.org/updates/FEDORA-2017-8db9c497f9"
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected 2:qemu package."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:2:qemu");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:27");

  script_set_attribute(attribute:"vuln_publication_date", value:"2017/10/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2017/11/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/01/15");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Fedora Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Fedora" >!< release) audit(AUDIT_OS_NOT, "Fedora");
os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Fedora");
os_ver = os_ver[1];
if (! preg(pattern:"^27([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Fedora 27", "Fedora " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);


cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Fedora", cpu);


flag = 0;
if (rpm_check(release:"FC27", reference:"qemu-2.10.1-1.fc27", epoch:"2")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "2:qemu");
}
VendorProductVersionCPE
fedoraprojectfedora2p-cpe:/a:fedoraproject:fedora:2:qemu
fedoraprojectfedora27cpe:/o:fedoraproject:fedora:27

Related

fedora 5
openvas 23
redhatcve 2
osv 6
cvelist 2
nvd 2
veracode 2
prion 2
cve 2
debiancve 2
ubuntucve 2
nessus 31
debian 5
suse 8
ubuntu 2
centos 1
redhat 3
amazon 2
oraclelinux 6
fedora
fedora
[SECURITY] Fedora 27 Update: qemu-2.10.1-1.fc27
2017-11-11 13:46:42
[SECURITY] Fedora 27 Update: qemu-2.10.1-1.fc27
2017-11-11 03:30:22
[SECURITY] Fedora 27 Update: qemu-2.10.1-4.fc27
2018-07-06 15:45:59
openvas
openvas
Fedora Update for qemu FEDORA-2018-9f02e5ed7b
2018-07-07 00:00:00
Fedora Update for qemu FEDORA-2017-9149114fba
2017-11-08 00:00:00
Debian: Security Advisory (DLA-1129-1)
2018-02-06 00:00:00
redhatcve
redhatcve
CVE-2017-15268
2017-10-12 20:49:03
CVE-2017-15038
2020-01-02 03:41:54
osv
osv
CVE-2017-15038
2017-10-10 01:30:22
CVE-2017-15268
2017-10-12 15:29:00
qemu - security update
2017-10-08 00:00:00
cvelist
cvelist
CVE-2017-15038
2017-10-09 14:00:00
CVE-2017-15268
2017-10-12 15:00:00
nvd
nvd
CVE-2017-15038
2017-10-10 01:30:22
CVE-2017-15268
2017-10-12 15:29:00
veracode
veracode
Denial Of Service (DoS)
2019-05-16 02:53:05
Information Disclosure
2020-09-21 06:19:52
prion
prion
Memory corruption
2017-10-12 15:29:00
Race condition
2017-10-10 01:30:00
cve
cve
CVE-2017-15268
2017-10-12 15:29:00
CVE-2017-15038
2017-10-10 01:30:22
debiancve
debiancve
CVE-2017-15038
2017-10-10 01:30:22
CVE-2017-15268
2017-10-12 15:29:00
ubuntucve
ubuntucve
CVE-2017-15268
2017-10-12 00:00:00
CVE-2017-15038
2017-10-09 00:00:00
nessus
nessus
Fedora 26 : 2:qemu (2017-9149114fba)
2017-11-08 00:00:00
Debian DLA-1129-1 : qemu security update
2017-10-09 00:00:00
openSUSE Security Update : qemu (openSUSE-2017-1248)
2017-11-07 00:00:00
debian
debian
[SECURITY] [DLA 1128-1] qemu-kvm security update
2017-10-08 16:45:42
[SECURITY] [DLA 1129-1] qemu security update
2017-10-08 20:20:29
[SECURITY] [DSA 4213-1] qemu security update
2018-05-29 21:25:45
suse
suse
Security update for qemu (important)
2017-11-03 00:08:15
Security update for qemu (important)
2017-11-07 06:09:17
Security update for qemu (important)
2017-11-07 06:12:01
ubuntu
ubuntu
QEMU regression
2018-03-05 00:00:00
QEMU vulnerabilities
2018-02-20 00:00:00
centos
centos
qemu security update
2018-04-26 17:50:14
redhat
redhat
(RHSA-2018:0816) Low: qemu-kvm security, bug fix, and enhancement update
2018-04-10 05:01:42
(RHSA-2018:1104) Important: qemu-kvm-rhev security, bug fix, and enhancement update
2018-04-10 18:43:01
(RHSA-2018:1113) Moderate: qemu-kvm-rhev security and bug fix update
2018-04-11 17:35:52
amazon
amazon
Important: qemu-kvm
2018-06-07 23:41:00
Important: qemu-kvm
2018-06-08 18:29:00
oraclelinux
oraclelinux
qemu-kvm security, bug fix, and enhancement update
2018-04-16 00:00:00
qemu security update
2018-11-20 00:00:00
qemu security update
2018-11-28 00:00:00

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.007 Low

EPSS

Percentile

80.5%

JSON
Related for FEDORA_2017-8DB9C497F9.NASL
fedora5openvas23redhatcve2osv6cvelist2nvd2veracode2prion2cve2debiancve2ubuntucve2nessus31debian5suse8ubuntu2centos1redhat3amazon2oraclelinux6