Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2021 Tenable Network Security, Inc.OPENSUSE-2015-435.NASL
HistoryJun 23, 2015 - 12:00 a.m.

openSUSE Security Update : xen (openSUSE-2015-435)

2015-06-2300:00:00
This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.
www.tenable.com
10
JSON

Xen was updated to fix eight vulnerabilities.

The following vulnerabilities were fixed :

  • CVE-2015-2751: Certain domctl operations may be abused to lock up the host (XSA-127 boo#922709)

  • CVE-2015-4103: Potential unintended writes to host MSI message data field via qemu (XSA-128) (boo#931625)

  • CVE-2015-4104: PCI MSI mask bits inadvertently exposed to guests (XSA-129) (boo#931626)

  • CVE-2015-4105: Guest triggerable qemu MSI-X pass-through error messages (XSA-130) (boo#931627)

  • CVE-2015-4106: Unmediated PCI register access in qemu (XSA-131) (boo#931628)

  • CVE-2015-4163: GNTTABOP_swap_grant_ref operation misbehavior (XSA-134) (boo#932790)

  • CVE-2015-3209: heap overflow in qemu pcnet controller allowing guest to host escape (XSA-135) (boo#932770)

  • CVE-2015-4164: DoS through iret hypercall handler (XSA-136) (boo#932996)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2015-435.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(84334);
  script_version("2.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2015-2751", "CVE-2015-3209", "CVE-2015-4103", "CVE-2015-4104", "CVE-2015-4105", "CVE-2015-4106", "CVE-2015-4163", "CVE-2015-4164");

  script_name(english:"openSUSE Security Update : xen (openSUSE-2015-435)");
  script_summary(english:"Check for the openSUSE-2015-435 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Xen was updated to fix eight vulnerabilities.

The following vulnerabilities were fixed :

  - CVE-2015-2751: Certain domctl operations may be abused
    to lock up the host (XSA-127 boo#922709)

  - CVE-2015-4103: Potential unintended writes to host MSI
    message data field via qemu (XSA-128) (boo#931625)

  - CVE-2015-4104: PCI MSI mask bits inadvertently exposed
    to guests (XSA-129) (boo#931626)

  - CVE-2015-4105: Guest triggerable qemu MSI-X pass-through
    error messages (XSA-130) (boo#931627)

  - CVE-2015-4106: Unmediated PCI register access in qemu
    (XSA-131) (boo#931628)

  - CVE-2015-4163: GNTTABOP_swap_grant_ref operation
    misbehavior (XSA-134) (boo#932790)

  - CVE-2015-3209: heap overflow in qemu pcnet controller
    allowing guest to host escape (XSA-135) (boo#932770)

  - CVE-2015-4164: DoS through iret hypercall handler
    (XSA-136) (boo#932996)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=922709"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=931625"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=931626"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=931627"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=931628"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=932770"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=932790"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=932996"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected xen packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-doc-html");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-default");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-default-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-desktop");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-desktop-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-pae");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-pae-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-libs-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-libs-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-libs-debuginfo-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools-domU");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools-domU-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-xend-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-xend-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:13.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2015/06/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/06/23");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE13\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "13.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE13.1", reference:"xen-debugsource-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-devel-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-kmp-default-4.3.4_05_k3.11.10_29-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-kmp-default-debuginfo-4.3.4_05_k3.11.10_29-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-kmp-desktop-4.3.4_05_k3.11.10_29-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-kmp-desktop-debuginfo-4.3.4_05_k3.11.10_29-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-kmp-pae-4.3.4_05_k3.11.10_29-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-kmp-pae-debuginfo-4.3.4_05_k3.11.10_29-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-libs-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-libs-debuginfo-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-tools-domU-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", reference:"xen-tools-domU-debuginfo-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"xen-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"xen-doc-html-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"xen-libs-32bit-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"xen-libs-debuginfo-32bit-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"xen-tools-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"xen-tools-debuginfo-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"xen-xend-tools-4.3.4_05-47.1") ) flag++;
if ( rpm_check(release:"SUSE13.1", cpu:"x86_64", reference:"xen-xend-tools-debuginfo-4.3.4_05-47.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "xen-debugsource / xen-devel / xen-kmp-default / etc");
}
VendorProductVersionCPE
novellopensusexenp-cpe:/a:novell:opensuse:xen
novellopensusexen-debugsourcep-cpe:/a:novell:opensuse:xen-debugsource
novellopensusexen-develp-cpe:/a:novell:opensuse:xen-devel
novellopensusexen-doc-htmlp-cpe:/a:novell:opensuse:xen-doc-html
novellopensusexen-kmp-defaultp-cpe:/a:novell:opensuse:xen-kmp-default
novellopensusexen-kmp-default-debuginfop-cpe:/a:novell:opensuse:xen-kmp-default-debuginfo
novellopensusexen-kmp-desktopp-cpe:/a:novell:opensuse:xen-kmp-desktop
novellopensusexen-kmp-desktop-debuginfop-cpe:/a:novell:opensuse:xen-kmp-desktop-debuginfo
novellopensusexen-kmp-paep-cpe:/a:novell:opensuse:xen-kmp-pae
novellopensusexen-kmp-pae-debuginfop-cpe:/a:novell:opensuse:xen-kmp-pae-debuginfo
Rows per page:
1-10 of 211

Related

openvas 50
nessus 50
securityvulns 3
suse 14
osv 3
debian 5
fedora 11
ubuntu 1
mageia 2
ubuntucve 8
cve 8
prion 8
xen 8
freebsd 8
debiancve 8
oraclelinux 2
centos 2
redhat 4
veracode 1
gentoo 2
kaspersky 1
openvas
openvas
openSUSE: Security Advisory for xen (openSUSE-SU-2015:1094-1)
2015-06-23 00:00:00
SUSE: Security Advisory (SUSE-SU-2015:1157-1)
2021-06-09 00:00:00
SUSE: Security Advisory for xen (SUSE-SU-2015:1042-1)
2015-10-16 00:00:00
nessus
nessus
SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2015:1042-1)
2015-06-12 00:00:00
SUSE SLED11 / SLES11 Security Update : Xen (SUSE-SU-2015:1045-1)
2015-06-15 00:00:00
Fedora 20 : xen-4.3.4-6.fc20 (2015-9965)
2015-06-25 00:00:00
securityvulns
securityvulns
[SECURITY] [DSA 3286-1] xen security update
2015-06-21 00:00:00
libvirt / qemu / Xen multiple security vulnerabilities
2015-06-21 00:00:00
[USN-2630-1] QEMU vulnerabilities
2015-06-13 00:00:00
suse
suse
Security update for Xen (important)
2015-06-11 20:04:58
Security update for Xen (important)
2015-06-29 15:05:16
Security update for xen (important)
2015-06-22 14:04:51
osv
osv
xen - security update
2015-06-13 00:00:00
qemu - security update
2015-06-13 00:00:00
qemu-kvm - security update
2015-06-13 00:00:00
debian
debian
[SECURITY] [DSA 3286-1] xen security update
2015-06-13 14:13:09
[SECURITY] [DSA 3284-1] qemu security update
2015-06-12 22:50:58
[SECURITY] [DSA 3284-1] qemu security update
2015-06-12 22:50:58
fedora
fedora
[SECURITY] Fedora 22 Update: xen-4.5.0-11.fc22
2015-06-24 16:01:05
[SECURITY] Fedora 22 Update: xen-4.5.1-2.fc22
2015-07-19 01:58:20
[SECURITY] Fedora 22 Update: xen-4.5.1-5.fc22
2015-08-12 06:57:38
ubuntu
ubuntu
QEMU vulnerabilities
2015-06-10 00:00:00
mageia
mageia
Updated qemu package fixes security vulnerability
2015-08-11 23:22:53
Updated xen packages fix security vulnerabilities
2016-03-07 14:20:30
ubuntucve
ubuntucve
CVE-2015-4106
2015-06-03 00:00:00
CVE-2015-2751
2015-04-01 00:00:00
CVE-2015-4103
2015-06-03 00:00:00
cve
cve
CVE-2015-4106
2015-06-03 20:59:00
CVE-2015-4105
2015-06-03 20:59:00
CVE-2015-2751
2015-04-01 14:59:00
prion
prion
Code injection
2015-06-03 20:59:00
Design/Logic Flaw
2015-06-03 20:59:00
Design/Logic Flaw
2015-04-01 14:59:00
xen
xen
Potential unintended writes to host MSI message data field via qemu
2015-06-02 12:00:00
Guest triggerable qemu MSI-X pass-through error messages
2015-06-02 12:00:00
Certain domctl operations may be abused to lock up the host
2015-03-31 12:00:00
freebsd
freebsd
xen-kernel -- vulnerability in the iret hypercall handler
2015-06-11 00:00:00
xen-kernel -- Certain domctl operations may be abused to lock up the host
2015-03-31 00:00:00
xen-tools -- Guest triggerable qemu MSI-X pass-through error messages
2015-06-02 00:00:00
debiancve
debiancve
CVE-2015-4105
2015-06-03 20:59:00
CVE-2015-4103
2015-06-03 20:59:00
CVE-2015-2751
2015-04-01 14:59:00
oraclelinux
oraclelinux
kvm security update
2015-06-25 00:00:00
qemu-kvm security update
2015-06-10 00:00:00
centos
centos
qemu security update
2015-06-10 15:32:54
kmod, kvm security update
2015-06-26 12:05:54
redhat
redhat
(RHSA-2015:1089) Important: qemu-kvm-rhev security update
2015-06-10 14:50:31
(RHSA-2015:1088) Important: qemu-kvm-rhev security update
2015-06-10 00:00:00
(RHSA-2015:1087) Important: qemu-kvm security update
2015-06-10 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 09:06:09
gentoo
gentoo
QEMU: Arbitrary code execution
2015-10-31 00:00:00
Xen: Multiple vulnerabilities
2016-04-05 00:00:00
kaspersky
kaspersky
KLA10527 Multiple vulnerabilities in different versions of Xen
2015-04-01 00:00:00
JSON
Related for OPENSUSE-2015-435.NASL
openvas50nessus50securityvulns3suse14osv3debian5fedora11ubuntu1mageia2ubuntucve8cve8prion8xen8freebsd8debiancve8oraclelinux2centos2redhat4veracode1gentoo2kaspersky1