Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

MiracleLinux 4 : ibutils-1.5.7-8.AXS4, libibverbs-1.1.7-1.AXS4, libmlx4-1.0.5-4.AXS4.1, librdmacm-1.0.17-1.AXS4, mpit (AXSA:2014-192:01)

🗓️ 19 Jan 2026 00:00:00Reported by TenableType 
nessus
 nessus🔗 www.tenable.com👁 2 Views

MiracleLinux 4 host has multiple vulnerabilities per AXSA:2014-192:01 affecting networking and MPI packages.

Related
Refs
Code
ReporterTitlePublishedViews
Family
Amazon		Medium: openmpi
11 Dec 201300:00
amazon
Tenable Nessus		Amazon Linux AMI : openmpi (ALAS-2013-256)
14 Dec 201300:00
nessus
Tenable Nessus		CentOS 6 : ibutils / infinipath-psm / libibverbs / libmlx4 / librdmacm / mpitests / mstflint / etc (CESA-2013:1661)
12 Nov 201400:00
nessus
Tenable Nessus		Fedora 17 : librdmacm-1.0.17-0.gitc6bfc1c.1.fc17 (2012-19892)
17 Dec 201200:00
nessus
Tenable Nessus		Fedora 18 : librdmacm-1.0.17-0.gitc6bfc1c.1.fc18 (2012-19964)
14 Jan 201300:00
nessus
Tenable Nessus		Oracle Linux 6 : rdma / stack (ELSA-2013-1661)
27 Nov 201300:00
nessus
Tenable Nessus		RHEL 6 : RDMA stack (RHSA-2013:1661)
21 Nov 201300:00
nessus
Tenable Nessus		RHEL 5 : ibutils (Unpatched Vulnerability)
3 Jun 202400:00
nessus
Tenable Nessus		Scientific Linux Security Update : RDMA stack on SL6.x i386/x86_64 (20131121)
10 Dec 201300:00
nessus
Tenable Nessus		Oracle Solaris Third-Party Patch Update : ibutils (cve_2013_2561_link_following)
19 Jan 201500:00
nessus
Rows per page
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# Miracle Linux Security Advisory AXSA:2014-192:01.
##

include('compat.inc');

if (description)
{
  script_id(291517);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/19");

  script_cve_id("CVE-2012-4516", "CVE-2013-2561");

  script_name(english:"MiracleLinux 4 : ibutils-1.5.7-8.AXS4, libibverbs-1.1.7-1.AXS4, libmlx4-1.0.5-4.AXS4.1, librdmacm-1.0.17-1.AXS4, mpit (AXSA:2014-192:01)");

  script_set_attribute(attribute:"synopsis", value:
"The remote MiracleLinux host is missing one or more security updates.");
  script_set_attribute(attribute:"description", value:
"The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the
AXSA:2014-192:01 advisory.

    ibutils: provides IB network and path diagnostics.
     infinipath-psm: The PSM Messaging API, or PSM API, is QLogic's low-level user-level communications
    interface for the Truescale family of products. PSM users are enabled with mechanisms necessary to
    implement higher level communications interfaces in parallel environments.
     libibverbs: libibverbs is a library that allows userspace processes to use RDMA verbs as described in
    the InfiniBand Architecture Specification and the RDMA Protocol Verbs Specification. This includes direct
    hardware access from userspace to InfiniBand/iWARP adapters (kernel bypass) for fast path operations. For
    this library to be useful, a device-specific plug-in module should also be installed.
     libmlx4: libmlx4 provides a device-specific userspace driver for Mellanox ConnectX HCAs for use with the
    libibverbs library.
     librdmacm: librdmacm provides a userspace RDMA Communication Managment API.
     mpitests: This package provides debug information for package mpitests. Debug information is useful when
    developing applications that use this package or when debugging this package.
     mstflint: This package contains a burning tool for Mellanox manufactured HCA cards. It also provides
    access to the relevant source code.
     openmpi: Open MPI is an open source, freely available implementation of both the MPI-1 and MPI-2
    standards, combining technologies and resources from several other projects (FT-MPI, LA-MPI, LAM/MPI, and
    PACX-MPI) in order to build the best MPI library available. A completely new MPI-2 compliant
    implementation, Open MPI offers advantages for system and software vendors, application developers, and
    computer science researchers. For more information, see http://www.open-mpi.org/ .
     perftest: Perftest is a collection of simple test programs designed to utilize RDMA communications and
    provide performance numbers over those RDMA connections. It does not work on normal TCP/IP networks, only
    on RDMA networks.
     qperf: Measure socket and RDMA performance.
     rdma: User space initialization scripts for the kernel InfiniBand/iWARP drivers
    Security issues fixed with this release:
     CVE-2012-4516
    librdmacm 1.0.16, when ibacm.port is not specified, connects to port 6125, which allows remote attackers
    to specify the address resolution information for the application via a malicious ib_acm service.
     CVE-2013-2561
    OpenFabrics ibutils 1.5.7 allows local users to overwrite arbitrary files via a symlink attack on (1)
    ibdiagnet.db, (2) ibdiagnet.fdbs, (3) ibdiagnet_ibis.log, (4) ibdiagnet.log, (5) ibdiagnet.lst, (6)
    ibdiagnet.mcfdbs, (7) ibdiagnet.pkey, (8) ibdiagnet.psl, (9) ibdiagnet.slvl, or (10) ibdiagnet.sm in
    /tmp/.

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://tsn.miraclelinux.com/en/node/4691");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:N/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2013-2561");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"vendor_severity", value:"High");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/10/12");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/04/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/01/19");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:ibutils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:ibutils-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:infinipath-psm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:libibverbs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:libibverbs-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:libibverbs-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:libmlx4");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:librdmacm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:librdmacm-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:librdmacm-utils");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:mpitests-mvapich");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:mpitests-mvapich2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:mpitests-openmpi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:mstflint");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:openmpi");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:openmpi-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:perftest");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:qperf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rdma");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:miracle:linux:4");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Miracle Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/MiracleLinux/release", "Host/MiracleLinux/rpm-list", "Host/cpu");

  exit(0);
}


include('rpm2.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_product = get_kb_item('installed_os/local/SSH/0/product');
if (isnull(os_product) || 'MIRACLE LINUX' >!< os_product) audit(AUDIT_OS_NOT, 'MIRACLE LINUX');
var os_version = get_kb_item('installed_os/local/SSH/0/version');
if (isnull(os_version)) audit(AUDIT_UNKNOWN_APP_VER, 'MIRACLE LINUX');
if (! preg(pattern:"^4([^0-9]|$)", string:os_version)) audit(AUDIT_OS_NOT, 'MiracleLinux 4.x', 'MIRACLE LINUX ' + os_version);

if (!get_kb_item('Host/MiracleLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('aarch64' >!< cpu && 'ppc' >!< cpu && 's390' >!< cpu && 'x86_64' >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'MIRACLE LINUX', cpu);

var constraints = [
  {
    'release': '4',
    'pkgs': [
      {'reference':'ibutils-1.5.7-8.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'ibutils-1.5.7-8.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'ibutils-libs-1.5.7-8.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'ibutils-libs-1.5.7-8.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'infinipath-psm-3.0.1-115.1015_open.2.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'libibverbs-1.1.7-1.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'libibverbs-1.1.7-1.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'libibverbs-devel-1.1.7-1.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'libibverbs-devel-1.1.7-1.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'libibverbs-utils-1.1.7-1.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'libibverbs-utils-1.1.7-1.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'libmlx4-1.0.5-4.AXS4.1', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'libmlx4-1.0.5-4.AXS4.1', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'librdmacm-1.0.17-1.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'librdmacm-1.0.17-1.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'librdmacm-devel-1.0.17-1.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'librdmacm-devel-1.0.17-1.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'librdmacm-utils-1.0.17-1.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'librdmacm-utils-1.0.17-1.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'mpitests-mvapich-3.2-9.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'mpitests-mvapich-3.2-9.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'mpitests-mvapich2-3.2-9.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'mpitests-mvapich2-3.2-9.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'mpitests-openmpi-3.2-9.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'mpitests-openmpi-3.2-9.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'mstflint-3.0-0.6.g6961daa.1.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'mstflint-3.0-0.6.g6961daa.1.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'openmpi-1.5.4-2.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'openmpi-1.5.4-2.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'openmpi-devel-1.5.4-2.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'openmpi-devel-1.5.4-2.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'perftest-2.0-2.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'perftest-2.0-2.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'qperf-0.4.9-1.AXS4', 'cpu':'i686', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'qperf-0.4.9-1.AXS4', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rdma-3.10-3.AXS4', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'}
    ]
  }
];

var os_release = get_one_kb_item('installed_os/local/SSH/0/release');
var os_sp = get_one_kb_item('Host/*/minor_release');

var flag = 0;
var reference;
var sp;
var _cpu;
var el_string;
var rpm_spec_vers_cmp;
var epoch;
var allowmaj;
var exists_check;
var cves;
foreach var constraint ( constraints ) {
  # Check that the target release is equal to the affected release
  if (!empty_or_null(constraint['release'])){
    if (constraint['release'] != os_release) continue;
  }
  if (!empty_or_null(constraint['sp'])){
    if (constraint['sp'] != os_sp) continue;
  }
  foreach var pkg ( constraint['pkgs'] ) {
    reference = NULL;
    sp = NULL;
    _cpu = NULL;
    el_string = NULL;
    rpm_spec_vers_cmp = NULL;
    epoch = NULL;
    allowmaj = NULL;
    exists_check = NULL;
    cves = NULL;
    if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
    if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
    if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
    if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
    if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
    if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
    if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
    if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
    if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
    if (reference &&
        ## (no known rpm to check OR known rpm_exists)
        (!exists_check || rpm_exists(rpm:exists_check)) &&
        rpm_check(sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
  }
}
if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'ibutils / ibutils-libs / infinipath-psm / libibverbs / etc');
}

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
19 Jan 2026 00:00Current
5.8Medium risk
Vulners AI Score5.8
CVSS 26.3
EPSS0.00396
miraclelinux fourvulnerable packagesibutilslibibverbslibmlx4librdmacmmpitestsmstflintopenmpiinfinipath psm
2