Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.NEWSTART_CGSL_NS-SA-2023-0057_KERNEL.NASL
HistoryDec 27, 2023 - 12:00 a.m.

NewStart CGSL MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2023-0057)

2023-12-2700:00:00
This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
10
newstart cgsl
main 5.04
kernel
multiple vulnerabilities
use-after-free
heap out-of-bounds write
memory corruption
privilege escalation
arbitrary code execution

8.3 High

AI Score

Confidence

High

JSON

The remote NewStart CGSL host, running version MAIN 5.04, has kernel packages installed that are affected by multiple vulnerabilities:

  • In the Linux kernel before 5.6.1, drivers/media/usb/gspca/xirlink_cit.c (aka the Xirlink camera USB driver) mishandles invalid descriptors, aka CID-a246b4d54770. (CVE-2020-11668)

  • A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root privileges from unprivileged processes. The highest threat from this vulnerability is to data confidentiality and integrity. (CVE-2020-14386)

  • There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common function in drivers/tty/n_tty.c. (CVE-2020-8648)

  • A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c.
    This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name space (CVE-2021-22555)

  • BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c. (CVE-2021-29154)

  • net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI controller. (CVE-2021-32399)

  • The Linux kernel before 5.11.14 has a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. This leads to writing an arbitrary value. (CVE-2021-33033)

  • In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an hci_chan, aka CID-5c4c8c954409. This leads to writing an arbitrary value. (CVE-2021-33034)

  • A flaw was found in the Routing decision classifier in the Linux kernel’s Traffic Control networking subsystem in the way it handled changing of classification filters, leading to a use-after-free condition.
    This flaw allows unprivileged local users to escalate their privileges on the system. The highest threat from this vulnerability is to confidentiality, integrity, as well as system availability. (CVE-2021-3715)

  • arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e. (CVE-2021-37576)

  • A random memory access flaw was found in the Linux kernel’s GPU i915 kernel driver functionality in the way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or escalate their privileges on the system. (CVE-2022-0330)

  • A vulnerability was found in the Linux kernel’s cgroup_release_agent_write in the kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.
    (CVE-2022-0492)

Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from ZTE advisory NS-SA-2023-0057. The text
# itself is copyright (C) ZTE, Inc.
##

include('compat.inc');

if (description)
{
  script_id(187322);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2023/12/28");

  script_cve_id(
    "CVE-2020-8648",
    "CVE-2020-11668",
    "CVE-2020-14386",
    "CVE-2021-3715",
    "CVE-2021-22555",
    "CVE-2021-29154",
    "CVE-2021-32399",
    "CVE-2021-33033",
    "CVE-2021-33034",
    "CVE-2021-37576",
    "CVE-2022-0330",
    "CVE-2022-0492"
  );

  script_name(english:"NewStart CGSL MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2023-0057)");

  script_set_attribute(attribute:"synopsis", value:
"The remote NewStart CGSL host is affected by multiple vulnerabilities.");
  script_set_attribute(attribute:"description", value:
"The remote NewStart CGSL host, running version MAIN 5.04, has kernel packages installed that are affected by multiple
vulnerabilities:

  - In the Linux kernel before 5.6.1, drivers/media/usb/gspca/xirlink_cit.c (aka the Xirlink camera USB
    driver) mishandles invalid descriptors, aka CID-a246b4d54770. (CVE-2020-11668)

  - A flaw was found in the Linux kernel before 5.9-rc4. Memory corruption can be exploited to gain root
    privileges from unprivileged processes. The highest threat from this vulnerability is to data
    confidentiality and integrity. (CVE-2020-14386)

  - There is a use-after-free vulnerability in the Linux kernel through 5.5.2 in the n_tty_receive_buf_common
    function in drivers/tty/n_tty.c. (CVE-2020-8648)

  - A heap out-of-bounds write affecting Linux since v2.6.19-rc1 was discovered in net/netfilter/x_tables.c.
    This allows an attacker to gain privileges or cause a DoS (via heap memory corruption) through user name
    space (CVE-2021-22555)

  - BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements,
    allowing them to execute arbitrary code within the kernel context. This affects
    arch/x86/net/bpf_jit_comp.c and arch/x86/net/bpf_jit_comp32.c. (CVE-2021-29154)

  - net/bluetooth/hci_request.c in the Linux kernel through 5.12.2 has a race condition for removal of the HCI
    controller. (CVE-2021-32399)

  - The Linux kernel before 5.11.14 has a use-after-free in cipso_v4_genopt in net/ipv4/cipso_ipv4.c because
    the CIPSO and CALIPSO refcounting for the DOI definitions is mishandled, aka CID-ad5d07f4a9cd. This leads
    to writing an arbitrary value. (CVE-2021-33033)

  - In the Linux kernel before 5.12.4, net/bluetooth/hci_event.c has a use-after-free when destroying an
    hci_chan, aka CID-5c4c8c954409. This leads to writing an arbitrary value. (CVE-2021-33034)

  - A flaw was found in the Routing decision classifier in the Linux kernel's Traffic Control networking
    subsystem in the way it handled changing of classification filters, leading to a use-after-free condition.
    This flaw allows unprivileged local users to escalate their privileges on the system. The highest threat
    from this vulnerability is to confidentiality, integrity, as well as system availability. (CVE-2021-3715)

  - arch/powerpc/kvm/book3s_rtas.c in the Linux kernel through 5.13.5 on the powerpc platform allows KVM guest
    OS users to cause host OS memory corruption via rtas_args.nargs, aka CID-f62f3c20647e. (CVE-2021-37576)

  - A random memory access flaw was found in the Linux kernel's GPU i915 kernel driver functionality in the
    way a user may run malicious code on the GPU. This flaw allows a local user to crash the system or
    escalate their privileges on the system. (CVE-2022-0330)

  - A vulnerability was found in the Linux kernel's cgroup_release_agent_write in the
    kernel/cgroup/cgroup-v1.c function. This flaw, under certain circumstances, allows the use of the cgroups
    v1 release_agent feature to escalate privileges and bypass the namespace isolation unexpectedly.
    (CVE-2022-0492)

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/notice/NS-SA-2023-0057");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2020-11668");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2020-14386");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2020-8648");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2021-22555");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2021-29154");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2021-32399");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2021-33033");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2021-33034");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2021-3715");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2021-37576");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2022-0330");
  script_set_attribute(attribute:"see_also", value:"https://security.gd-linux.com/info/CVE-2022-0492");
  script_set_attribute(attribute:"solution", value:
"Upgrade the vulnerable CGSL kernel packages. Note that updated packages may not be available yet. Please contact ZTE for
more information.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2021-37576");
  script_set_attribute(attribute:"cvss3_score_source", value:"CVE-2022-0492");

  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"metasploit_name", value:'Netfilter x_tables Heap OOB Write Privilege Escalation');
  script_set_attribute(attribute:"exploit_framework_metasploit", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:"CANVAS");

  script_set_attribute(attribute:"vuln_publication_date", value:"2020/02/06");
  script_set_attribute(attribute:"patch_publication_date", value:"2023/05/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2023/12/27");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-abi-whitelists");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-debug");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-debug-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-debug-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-debuginfo-common-x86_64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-sign-keys");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-tools-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:kernel-tools-libs-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:perf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:perf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:python-perf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:zte:cgsl_main:python-perf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:zte:cgsl_main:5");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"NewStart CGSL Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2023 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/ZTE-CGSL/release", "Host/ZTE-CGSL/rpm-list", "Host/cpu");

  exit(0);
}

include('rpm.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);

var os_release = get_kb_item('Host/ZTE-CGSL/release');
if (isnull(os_release) || os_release !~ "^CGSL (MAIN|CORE)") audit(AUDIT_OS_NOT, 'NewStart Carrier Grade Server Linux');

if (os_release !~ "CGSL MAIN 5.04")
  audit(AUDIT_OS_NOT, 'NewStart CGSL MAIN 5.04');

if (!get_kb_item('Host/ZTE-CGSL/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'NewStart Carrier Grade Server Linux', cpu);

var flag = 0;

var pkgs = {
  'CGSL MAIN 5.04': [
    'kernel-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-abi-whitelists-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-debug-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-debug-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-debug-devel-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-debuginfo-common-x86_64-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-devel-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-headers-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-sign-keys-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-tools-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-tools-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-tools-libs-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'kernel-tools-libs-devel-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'perf-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'perf-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'python-perf-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e',
    'python-perf-debuginfo-3.10.0-693.21.1.el7.cgslv5_4.55.1066.25.g072393e'
  ]
};
var pkg_list = pkgs[os_release];

foreach (pkg in pkg_list)
  if (rpm_check(release:'ZTE ' + os_release, reference:pkg)) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'kernel');
}
VendorProductVersionCPE
ztecgsl_mainkernel-tools-debuginfop-cpe:/a:zte:cgsl_main:kernel-tools-debuginfo
ztecgsl_mainkernel-tools-libsp-cpe:/a:zte:cgsl_main:kernel-tools-libs
ztecgsl_mainkernel-abi-whitelistsp-cpe:/a:zte:cgsl_main:kernel-abi-whitelists
ztecgsl_mainkernelp-cpe:/a:zte:cgsl_main:kernel
ztecgsl_mainkernel-debugp-cpe:/a:zte:cgsl_main:kernel-debug
ztecgsl_mainkernel-headersp-cpe:/a:zte:cgsl_main:kernel-headers
ztecgsl_main5cpe:/o:zte:cgsl_main:5
ztecgsl_mainkernel-debug-develp-cpe:/a:zte:cgsl_main:kernel-debug-devel
ztecgsl_mainkernel-tools-libs-develp-cpe:/a:zte:cgsl_main:kernel-tools-libs-devel
ztecgsl_mainkernel-debug-debuginfop-cpe:/a:zte:cgsl_main:kernel-debug-debuginfo
Rows per page:
1-10 of 191

References

Related

nessus 80
oraclelinux 5
redhat 27
openvas 14
centos 2
cvelist 5
photon 3
redhatcve 6
ubuntu 4
osv 1
githubexploit 3
amazon 2
rocky 2
debiancve 4
veracode 5
prion 5
suse 1
ubuntucve 4
cbl_mariner 7
fedora 4
f5 4
cloudfoundry 1
cve 4
metasploit 1
cloudlinux 2
ibm 1
packetstorm 1
zdt 1
nessus
nessus
NewStart CGSL MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2023-0058)
2023-12-27 00:00:00
NewStart CGSL CORE 5.04 / MAIN 5.04 : kernel Multiple Vulnerabilities (NS-SA-2022-0020)
2022-05-10 00:00:00
NewStart CGSL MAIN 5.05 : kernel Multiple Vulnerabilities (NS-SA-2022-0047)
2022-05-09 00:00:00
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2021-07-12 00:00:00
Unbreakable Enterprise kernel-container security update
2021-07-12 00:00:00
kernel security and bug fix update
2021-07-21 00:00:00
redhat
redhat
(RHSA-2021:3522) Important: kernel security and bug fix update
2021-09-14 08:03:53
(RHSA-2021:3725) Important: kernel security and bug fix update
2021-10-05 07:22:39
(RHSA-2021:3328) Important: kernel-rt security and bug fix update
2021-08-31 07:45:27
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2021:2042-1)
2021-06-20 00:00:00
CentOS: Security Advisory for bpftool (CESA-2021:2725)
2021-07-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2021:2060-1)
2021-06-20 00:00:00
centos
centos
bpftool, kernel, perf, python security update
2021-08-31 21:19:47
bpftool, kernel, perf, python security update
2021-07-22 13:52:55
cvelist
cvelist
CVE-2020-11668
2020-04-09 20:13:02
CVE-2020-14386
2020-09-16 12:48:12
CVE-2021-33033
2021-05-14 22:57:17
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-2.0-0282
2020-09-12 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0323
2020-09-11 00:00:00
Important Photon OS Security Update - PHSA-2020-0140
2020-09-13 00:00:00
redhatcve
redhatcve
CVE-2020-14386
2020-09-07 05:48:46
CVE-2021-33033
2021-05-19 00:27:57
CVE-2020-11668
2020-04-16 13:03:37
ubuntu
ubuntu
Linux kernel vulnerability
2020-09-08 00:00:00
Kernel Live Patch Security Notice
2020-09-10 00:00:00
Linux kernel vulnerability
2021-08-12 00:00:00
osv
osv
linux, linux-aws, linux-aws-5.3, linux-aws-5.4, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-azure-5.4, linux-gcp, linux-gcp-4.15, linux-gcp-5.4, linux-gke-4.15, linux-gke-5.0, linux-gke-5.3, linux-hwe, linux-hwe-5.4, linux-kvm, linux-oem, linux-oem-osp1, linux-oracle, linux-oracle-5.4, linux-raspi, linux-raspi-5.4, linux-raspi2, linux-raspi2-5.3, linux-snapdragon vulnerability
2020-09-08 07:20:05
githubexploit
githubexploit
Exploit for Out-of-bounds Write in Linux Linux Kernel
2020-09-17 21:25:18
Exploit for Out-of-bounds Write in Linux Linux Kernel
2021-07-16 19:12:57
Exploit for Out-of-bounds Write in Linux Linux Kernel
2023-08-05 18:56:18
amazon
amazon
Important: kernel
2020-09-03 21:53:00
Important: kernel
2020-09-03 21:45:00
rocky
rocky
kernel-rt security and bug fix update
2022-03-11 02:24:05
kernel security, bug fix, and enhancement update
2022-03-11 02:26:54
debiancve
debiancve
CVE-2020-14386
2020-09-16 13:15:00
CVE-2021-33033
2021-05-14 23:15:00
CVE-2020-11668
2020-04-09 21:15:00
veracode
veracode
Privilege Escalation
2020-09-21 06:28:18
Privilege Escalation
2021-06-06 10:38:33
Denial Of Service (DoS)
2021-09-09 16:22:43
prion
prion
Memory corruption
2020-09-16 13:15:00
Design/Logic Flaw
2021-05-14 23:15:00
Memory corruption
2021-07-26 22:15:00
suse
suse
Security update for the Linux Kernel (important)
2020-09-08 00:00:00
ubuntucve
ubuntucve
CVE-2020-14386
2020-09-04 00:00:00
CVE-2021-33033
2021-05-14 00:00:00
CVE-2021-37576
2021-07-26 00:00:00
cbl_mariner
cbl_mariner
CVE-2020-14386 affecting package kernel 5.4.91-6
2021-03-03 03:44:27
CVE-2021-33033 affecting package kernel 5.10.189.1-1
2021-09-09 15:03:26
CVE-2021-33033 affecting package kernel for versions less than 5.10.78.1-1
2022-04-09 06:52:47
fedora
fedora
[SECURITY] Fedora 32 Update: kernel-5.8.7-200.fc32
2020-09-10 17:32:35
[SECURITY] Fedora 33 Update: kernel-5.8.7-300.fc33
2020-09-25 17:17:26
[SECURITY] Fedora 34 Update: kernel-5.13.6-200.fc34
2021-08-02 01:05:51
f5
f5
K58523450 : Linux kernel vulnerability CVE-2020-14386
2021-04-07 00:00:00
K06524534 : Linux kernel vulnerability CVE-2021-22555
2022-07-07 00:00:00
K39029022 : Linux kernel vulnerability CVE-2021-37576
2022-01-20 00:00:00
cloudfoundry
cloudfoundry
USN-4489-1: Linux kernel vulnerability | Cloud Foundry
2020-09-24 00:00:00
cve
cve
CVE-2020-14386
2020-09-16 13:15:00
CVE-2020-11668
2020-04-09 21:15:00
CVE-2021-37576
2021-07-26 22:15:00
metasploit
metasploit
Netfilter x_tables Heap OOB Write Privilege Escalation
2021-10-04 15:48:23
cloudlinux
cloudlinux
Fix of CVE: CVE-2021-22555
2021-09-21 22:04:54
Fix of CVE: CVE-2021-22555
2021-09-21 22:05:12
ibm
ibm
Security Bulletin: Vulnerability in Linux Kernel affects IBM Integrated Analytics System.
2022-02-17 12:30:50
packetstorm
packetstorm
Netfilter x_tables Heap Out-Of-Bounds Write / Privilege Escalation
2021-10-07 00:00:00
zdt
zdt
Netfilter x_tables Heap Out-Of-Bounds Write / Privilege Escalation Exploit
2021-10-07 00:00:00

8.3 High

AI Score

Confidence

High

JSON
Related for NEWSTART_CGSL_NS-SA-2023-0057_KERNEL.NASL
nessus80oraclelinux5redhat27openvas14centos2cvelist5photon3redhatcve6ubuntu4osv1githubexploit3amazon2rocky2debiancve4veracode5prion5suse1ubuntucve4cbl_mariner7fedora4f54cloudfoundry1cve4metasploit1cloudlinux2ibm1packetstorm1zdt1