Lucene search
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.FEDORA_2023-D88521BFC5.NASLHistoryNov 07, 2023 - 12:00 a.m.
Fedora 39 : clevis-pin-tpm2 / greetd / keyring-ima-signer / libkrun / etc (2023-d88521bfc5)
2023-11-0700:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
7
fedora 39
clevis-pin-tpm2
vulnerability
h2-0.2.4
denial of service
cpu usage
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
6.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
40.6%
The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the FEDORA-2023-d88521bfc5 advisory.
- An issue was discovered in hyper v0.13.7. h2-0.2.4 Stream stacking occurs when the H2 component processes HTTP2 RST_STREAM frames. As a result, the memory and CPU usage are high which can lead to a Denial of Service (DoS). (CVE-2023-26964)
Note that Nessus has not tested for this issue but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
##
# The descriptive text and package checks in this plugin were
# extracted from Fedora Security Advisory FEDORA-2023-d88521bfc5
#
include('compat.inc');
if (description)
{
script_id(185189);
script_version("1.0");
script_set_attribute(attribute:"plugin_modification_date", value:"2023/11/07");
script_cve_id("CVE-2023-26964");
script_xref(name:"FEDORA", value:"2023-d88521bfc5");
script_name(english:"Fedora 39 : clevis-pin-tpm2 / greetd / keyring-ima-signer / libkrun / etc (2023-d88521bfc5)");
script_set_attribute(attribute:"synopsis", value:
"The remote Fedora host is missing one or more security updates.");
script_set_attribute(attribute:"description", value:
"The remote Fedora 39 host has packages installed that are affected by a vulnerability as referenced in the
FEDORA-2023-d88521bfc5 advisory.
- An issue was discovered in hyper v0.13.7. h2-0.2.4 Stream stacking occurs when the H2 component processes
HTTP2 RST_STREAM frames. As a result, the memory and CPU usage are high which can lead to a Denial of
Service (DoS). (CVE-2023-26964)
Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
script_set_attribute(attribute:"see_also", value:"https://bodhi.fedoraproject.org/updates/FEDORA-2023-d88521bfc5");
script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-26964");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/04/11");
script_set_attribute(attribute:"patch_publication_date", value:"2023/05/04");
script_set_attribute(attribute:"plugin_publication_date", value:"2023/11/07");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:fedoraproject:fedora:39");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:clevis-pin-tpm2");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:greetd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:keyring-ima-signer");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:libkrun");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:mirrorlist-server");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:nispor");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:nmstate");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-afterburn");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-below");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-bodhi-cli");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-cargo-c");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-coreos-installer");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-fedora-update-feedback");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-git-delta");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-gst-plugin-reqwest");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-pore");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-rpm-sequoia");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-sequoia-octopus-librnp");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-sequoia-policy-config");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-sequoia-sq");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-sevctl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-tealdeer");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fedoraproject:fedora:rust-ybaas");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Fedora Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");
exit(0);
}
include('rpm.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Fedora' >!< os_release) audit(AUDIT_OS_NOT, 'Fedora');
var os_ver = pregmatch(pattern: "Fedora.*release ([0-9]+)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Fedora');
os_ver = os_ver[1];
if (! preg(pattern:"^39([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, 'Fedora 39', 'Fedora ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Fedora', cpu);
var pkgs = [
{'reference':'clevis-pin-tpm2-0.5.2-5.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'greetd-0.9.0-4.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'keyring-ima-signer-0.1.0-9.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'libkrun-1.5.0-2.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'mirrorlist-server-3.0.6-6.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'nispor-1.2.10-4.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'nmstate-2.2.10-4.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-afterburn-5.4.0-3.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-below-0.6.3-4.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-bodhi-cli-2.1.0-2.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-cargo-c-0.9.12-4.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-coreos-installer-0.17.0-3.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-fedora-update-feedback-2.1.2-2.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-git-delta-0.13.0-5.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-gst-plugin-reqwest-0.10.4-2.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-pore-0.1.8-3.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-rpm-sequoia-1.4.0-2.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-sequoia-octopus-librnp-1.4.1-8.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-sequoia-policy-config-0.6.0-3.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-sequoia-sq-0.26.0-7.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-sevctl-0.3.2-4.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-tealdeer-1.6.1-2.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE},
{'reference':'rust-ybaas-0.0.10-7.fc39', 'release':'FC39', 'rpm_spec_vers_cmp':TRUE}
];
var flag = 0;
foreach package_array ( pkgs ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
if (!empty_or_null(package_array['reference'])) reference = package_array['reference'];
if (!empty_or_null(package_array['release'])) _release = package_array['release'];
if (!empty_or_null(package_array['sp'])) sp = package_array['sp'];
if (!empty_or_null(package_array['cpu'])) _cpu = package_array['cpu'];
if (!empty_or_null(package_array['el_string'])) el_string = package_array['el_string'];
if (!empty_or_null(package_array['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = package_array['rpm_spec_vers_cmp'];
if (!empty_or_null(package_array['epoch'])) epoch = package_array['epoch'];
if (!empty_or_null(package_array['allowmaj'])) allowmaj = package_array['allowmaj'];
if (reference && _release) {
if (rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj)) flag++;
}
}
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_HOLE,
extra : rpm_report_get()
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'clevis-pin-tpm2 / greetd / keyring-ima-signer / libkrun / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| fedoraproject | fedora | 39 | cpe:/o:fedoraproject:fedora:39 |
| fedoraproject | fedora | clevis-pin-tpm2 | p-cpe:/a:fedoraproject:fedora:clevis-pin-tpm2 |
| fedoraproject | fedora | greetd | p-cpe:/a:fedoraproject:fedora:greetd |
| fedoraproject | fedora | keyring-ima-signer | p-cpe:/a:fedoraproject:fedora:keyring-ima-signer |
| fedoraproject | fedora | libkrun | p-cpe:/a:fedoraproject:fedora:libkrun |
| fedoraproject | fedora | mirrorlist-server | p-cpe:/a:fedoraproject:fedora:mirrorlist-server |
| fedoraproject | fedora | nispor | p-cpe:/a:fedoraproject:fedora:nispor |
| fedoraproject | fedora | nmstate | p-cpe:/a:fedoraproject:fedora:nmstate |
| fedoraproject | fedora | rust-afterburn | p-cpe:/a:fedoraproject:fedora:rust-afterburn |
| fedoraproject | fedora | rust-below | p-cpe:/a:fedoraproject:fedora:rust-below |
Related
cve
cve
CVE-2023-26964
2023-04-11 14:15:07
fedora
fedora
[SECURITY] Fedora 38 Update: rust-afterburn-5.4.0-3.fc38
2023-05-07 01:24:28
[SECURITY] Fedora 38 Update: mirrorlist-server-3.0.6-6.fc38
2023-05-07 01:24:28
[SECURITY] Fedora 37 Update: nispor-1.2.10-4.fc37
2023-05-18 00:50:52
cbl_mariner
cbl_mariner
CVE-2023-26964 affecting package kata-containers for versions less than 3.2.0.azl0-1
2024-04-09 20:48:36
CVE-2023-26964 affecting package kata-containers for versions less than 3.2.0.azl0-2
2024-04-19 22:15:55
CVE-2023-26964 affecting package rpm-ostree for versions less than 2024.4-1
2024-04-19 22:15:55
openvas
openvas
Fedora: Security Advisory for rust-cargo-c (FEDORA-2023-cc21019773)
2023-05-08 00:00:00
Fedora: Security Advisory for rust-pore (FEDORA-2023-37ae269843)
2023-05-19 00:00:00
cvelist
cvelist
CVE-2023-26964
2023-04-11 00:00:00
rustsec
rustsec
Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)
2023-04-14 12:00:00
osv
osv
Resource exhaustion vulnerability in h2 may lead to Denial of Service (DoS)
2023-04-14 12:00:00
CVE-2023-26964
2023-04-11 14:15:07
h2 vulnerable to denial of service
2023-04-11 15:30:30
nessus
nessus
nvd
nvd
CVE-2023-26964
2023-04-11 14:15:07
ubuntucve
ubuntucve
CVE-2023-26964
2023-04-11 00:00:00
debiancve
debiancve
CVE-2023-26964
2023-04-11 14:15:07
prion
prion
Design/Logic Flaw
2023-04-11 14:15:00
github
github
h2 vulnerable to denial of service
2023-04-11 15:30:30
7.5 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
6.7 Medium
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
40.6%
Related for FEDORA_2023-D88521BFC5.NASL