Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2016-2021 Tenable Network Security, Inc.OPENSUSE-2016-1451.NASL
HistoryDec 13, 2016 - 12:00 a.m.

openSUSE Security Update : qemu (openSUSE-2016-1451)

2016-12-1300:00:00
This script is Copyright (C) 2016-2021 Tenable Network Security, Inc.
www.tenable.com
18
JSON

This update for qemu fixes the following issues :

  • Patch queue updated from https://gitlab.suse.de/virtualization/qemu.git SLE12-SP1

  • Change package post script udevadm trigger calls to be device specific (bsc#1002116)

  • Address various security/stability issues

  • Fix OOB access in xlnx.xpx-ethernetlite emulation (CVE-2016-7161 bsc#1001151)

  • Fix OOB access in VMware SVGA emulation (CVE-2016-7170 bsc#998516)

  • Fix DOS in USB xHCI emulation (CVE-2016-7466 bsc#1000345)

  • Fix DOS in Vmware pv scsi interface (CVE-2016-7421 bsc#999661)

  • Fix DOS in ColdFire Fast Ethernet Controller emulation (CVE-2016-7908 bsc#1002550)

  • Fix DOS in USB xHCI emulation (CVE-2016-8576 bsc#1003878)

  • Fix DOS in virtio-9pfs (CVE-2016-8578 bsc#1003894)

  • Fix DOS in virtio-9pfs (CVE-2016-9105 bsc#1007494)

  • Fix DOS in virtio-9pfs (CVE-2016-8577 bsc#1003893)

  • Plug data leak in virtio-9pfs interface (CVE-2016-9103 bsc#1007454)

  • Fix DOS in virtio-9pfs interface (CVE-2016-9102 bsc#1007450)

  • Fix DOS in virtio-9pfs (CVE-2016-9106 bsc#1007495)

  • Fix DOS in 16550A UART emulation (CVE-2016-8669 bsc#1004707)

  • Fix DOS in PC-Net II emulation (CVE-2016-7909 bsc#1002557)

  • Fix DOS in PRO100 emulation (CVE-2016-9101 bsc#1007391)

  • Fix DOS in RTL8139 emulation (CVE-2016-8910 bsc#1006538)

  • Fix DOS in Intel HDA controller emulation (CVE-2016-8909 bsc#1006536)

  • Fix DOS in virtio-9pfs (CVE-2016-9104 bsc#1007493)

  • Fix DOS in JAZZ RC4030 emulation (CVE-2016-8667 bsc#1004702)

  • Fix case of disk corruption with migration due to improper internal state tracking (bsc#996524)

This update was imported from the SUSE:SLE-12-SP1:Update update project.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2016-1451.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(95757);
  script_version("3.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2016-7161", "CVE-2016-7170", "CVE-2016-7421", "CVE-2016-7466", "CVE-2016-7908", "CVE-2016-7909", "CVE-2016-8576", "CVE-2016-8577", "CVE-2016-8578", "CVE-2016-8667", "CVE-2016-8669", "CVE-2016-8909", "CVE-2016-8910", "CVE-2016-9101", "CVE-2016-9102", "CVE-2016-9103", "CVE-2016-9104", "CVE-2016-9105", "CVE-2016-9106");

  script_name(english:"openSUSE Security Update : qemu (openSUSE-2016-1451)");
  script_summary(english:"Check for the openSUSE-2016-1451 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update for qemu fixes the following issues :

  - Patch queue updated from
    https://gitlab.suse.de/virtualization/qemu.git SLE12-SP1

  - Change package post script udevadm trigger calls to be
    device specific (bsc#1002116)

  - Address various security/stability issues

  - Fix OOB access in xlnx.xpx-ethernetlite emulation
    (CVE-2016-7161 bsc#1001151)

  - Fix OOB access in VMware SVGA emulation (CVE-2016-7170
    bsc#998516)

  - Fix DOS in USB xHCI emulation (CVE-2016-7466
    bsc#1000345)

  - Fix DOS in Vmware pv scsi interface (CVE-2016-7421
    bsc#999661)

  - Fix DOS in ColdFire Fast Ethernet Controller emulation
    (CVE-2016-7908 bsc#1002550)

  - Fix DOS in USB xHCI emulation (CVE-2016-8576
    bsc#1003878)

  - Fix DOS in virtio-9pfs (CVE-2016-8578 bsc#1003894)

  - Fix DOS in virtio-9pfs (CVE-2016-9105 bsc#1007494)

  - Fix DOS in virtio-9pfs (CVE-2016-8577 bsc#1003893)

  - Plug data leak in virtio-9pfs interface (CVE-2016-9103
    bsc#1007454)

  - Fix DOS in virtio-9pfs interface (CVE-2016-9102
    bsc#1007450)

  - Fix DOS in virtio-9pfs (CVE-2016-9106 bsc#1007495)

  - Fix DOS in 16550A UART emulation (CVE-2016-8669
    bsc#1004707)

  - Fix DOS in PC-Net II emulation (CVE-2016-7909
    bsc#1002557)

  - Fix DOS in PRO100 emulation (CVE-2016-9101 bsc#1007391)

  - Fix DOS in RTL8139 emulation (CVE-2016-8910 bsc#1006538)

  - Fix DOS in Intel HDA controller emulation (CVE-2016-8909
    bsc#1006536)

  - Fix DOS in virtio-9pfs (CVE-2016-9104 bsc#1007493)

  - Fix DOS in JAZZ RC4030 emulation (CVE-2016-8667
    bsc#1004702)

  - Fix case of disk corruption with migration due to
    improper internal state tracking (bsc#996524)

This update was imported from the SUSE:SLE-12-SP1:Update update
project."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1000345"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1001151"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1002116"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1002550"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1002557"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1003878"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1003893"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1003894"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1004702"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1004707"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1006536"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1006538"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1007391"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1007450"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1007454"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1007493"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1007494"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1007495"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=996524"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=998516"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=999661"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://gitlab.suse.de/virtualization/qemu.git"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected qemu packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-arm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-arm-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-curl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-curl-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-rbd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-block-rbd-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-extra");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-extra-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-guest-agent");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-guest-agent-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ipxe");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-kvm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-lang");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-linux-user");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-linux-user-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-linux-user-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ppc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-ppc-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-s390");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-s390-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-seabios");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-sgabios");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-testsuite");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-vgabios");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-x86");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:qemu-x86-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.1");

  script_set_attribute(attribute:"patch_publication_date", value:"2016/12/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2016/12/13");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2016-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE42\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "42.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE42.1", reference:"qemu-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-arm-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-arm-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-block-curl-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-block-curl-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-debugsource-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-extra-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-extra-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-guest-agent-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-guest-agent-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-ipxe-1.0.0-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-kvm-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-lang-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-linux-user-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-linux-user-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-linux-user-debugsource-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-ppc-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-ppc-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-s390-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-s390-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-seabios-1.8.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-sgabios-8-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-tools-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-tools-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-vgabios-1.8.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-x86-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", reference:"qemu-x86-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", cpu:"x86_64", reference:"qemu-block-rbd-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", cpu:"x86_64", reference:"qemu-block-rbd-debuginfo-2.3.1-22.1") ) flag++;
if ( rpm_check(release:"SUSE42.1", cpu:"x86_64", reference:"qemu-testsuite-2.3.1-22.2") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "qemu-linux-user / qemu-linux-user-debuginfo / etc");
}
VendorProductVersionCPE
novellopensuseqemu-block-curl-debuginfop-cpe:/a:novell:opensuse:qemu-block-curl-debuginfo
novellopensuseqemu-block-rbdp-cpe:/a:novell:opensuse:qemu-block-rbd
novellopensuseqemu-block-rbd-debuginfop-cpe:/a:novell:opensuse:qemu-block-rbd-debuginfo
novellopensuseqemu-debugsourcep-cpe:/a:novell:opensuse:qemu-debugsource
novellopensuseqemu-extrap-cpe:/a:novell:opensuse:qemu-extra
novellopensuseqemu-extra-debuginfop-cpe:/a:novell:opensuse:qemu-extra-debuginfo
novellopensuseqemu-guest-agentp-cpe:/a:novell:opensuse:qemu-guest-agent
novellopensuseqemu-guest-agent-debuginfop-cpe:/a:novell:opensuse:qemu-guest-agent-debuginfo
novellopensuseqemu-ipxep-cpe:/a:novell:opensuse:qemu-ipxe
novellopensuseqemu-kvmp-cpe:/a:novell:opensuse:qemu-kvm
Rows per page:
1-10 of 311

References

Related

openvas 13
suse 13
nessus 30
debian 7
osv 16
fedora 7
gentoo 1
ibm 2
ubuntu 1
cve 18
ubuntucve 19
debiancve 18
redhatcve 18
prion 18
alpinelinux 11
veracode 6
cbl_mariner 1
openvas
openvas
openSUSE: Security Advisory for qemu (openSUSE-SU-2016:3103-1)
2016-12-13 00:00:00
Fedora Update for xen FEDORA-2016-da6b1d277b
2016-12-02 00:00:00
Fedora Update for xen FEDORA-2016-0d1a8ee35b
2016-12-02 00:00:00
suse
suse
Security update for qemu (important)
2016-12-12 19:18:29
Security update for kvm (important)
2016-11-24 18:10:22
Security update for qemu (important)
2016-12-02 21:06:55
nessus
nessus
SUSE SLED12 / SLES12 Security Update : qemu (SUSE-SU-2016:2988-1)
2016-12-05 00:00:00
SUSE SLES11 Security Update : kvm (SUSE-SU-2016:2902-1)
2016-11-25 00:00:00
SUSE SLES12 Security Update : qemu (SUSE-SU-2016:2936-1)
2016-11-29 00:00:00
debian
debian
[SECURITY] [DLA 698-1] qemu security update
2016-11-03 14:43:45
[SECURITY] [DLA 678-1] qemu security update
2016-10-25 20:20:15
[SECURITY] [DLA 679-1] qemu-kvm security update
2016-10-25 20:22:03
osv
osv
qemu - security update
2016-11-03 00:00:00
qemu-kvm - security update
2016-10-30 00:00:00
qemu - security update
2016-10-25 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: xen-4.7.0-7.fc25
2016-11-19 21:36:03
[SECURITY] Fedora 23 Update: xen-4.5.5-3.fc23
2016-11-10 15:54:47
[SECURITY] Fedora 24 Update: xen-4.6.3-7.fc24
2016-11-10 03:33:10
gentoo
gentoo
QEMU: Multiple vulnerabilities
2016-11-18 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in QEMU affect PowerKVM
2018-06-18 01:34:46
Security Bulletin: Vulnerabilities in Qemu affect PowerKVM
2018-06-18 01:35:35
ubuntu
ubuntu
QEMU vulnerabilities
2016-11-09 00:00:00
cve
cve
CVE-2016-8667
2016-11-04 21:59:00
CVE-2016-9104
2016-12-09 22:59:00
CVE-2016-9106
2016-12-09 22:59:00
ubuntucve
ubuntucve
CVE-2016-8909
2016-11-04 00:00:00
CVE-2016-9105
2016-10-31 00:00:00
CVE-2016-8667
2016-11-04 00:00:00
debiancve
debiancve
CVE-2016-9106
2016-12-09 22:59:00
CVE-2016-7466
2016-12-10 00:59:00
CVE-2016-8667
2016-11-04 21:59:00
redhatcve
redhatcve
CVE-2016-8667
2016-10-17 07:47:20
CVE-2016-9105
2016-10-31 14:48:06
CVE-2016-9102
2016-10-31 15:17:37
prion
prion
Memory corruption
2016-12-09 22:59:00
Memory corruption
2016-12-09 22:59:00
Denial of service
2016-11-04 21:59:00
alpinelinux
alpinelinux
CVE-2016-9105
2016-12-09 22:59:00
CVE-2016-9101
2016-12-09 22:59:00
CVE-2016-9103
2016-12-09 22:59:00
veracode
veracode
Denial Of Service (DoS)
2020-09-21 06:34:00
Denial Of Service (DoS)
2019-05-02 06:36:19
Denial Of Service (DoS)
2019-05-02 06:36:20
cbl_mariner
cbl_mariner
CVE-2016-7161 affecting package qemu-kvm 4.2.0-13
2020-10-08 18:09:57
JSON
Related for OPENSUSE-2016-1451.NASL
openvas13suse13nessus30debian7osv16fedora7gentoo1ibm2ubuntu1cve18ubuntucve19debiancve18redhatcve18prion18alpinelinux11veracode6cbl_mariner1