Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.OPENSUSE-2018-1530.NASL
HistoryDec 13, 2018 - 12:00 a.m.

openSUSE Security Update : xen (openSUSE-2018-1530)

2018-12-1300:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
33
JSON

This update for xen fixes the following issues :

Security issues fixed :

  • CVE-2018-18849: Fixed an out of bounds memory access issue was found in the LSI53C895A SCSI Host Bus Adapter emulation while writing a message in lsi_do_msgin (bsc#1114423).

  • CVE-2018-18883: Fixed a NULL pointer dereference that could have been triggered by nested VT-x that where not properly restricted (XSA-278)(bsc#1114405).

  • CVE-2018-19965: Fixed denial of service issue from attempting to use INVPCID with a non-canonical addresses (XSA-279)(bsc#1115045).

  • CVE-2018-19966: Fixed issue introduced by XSA-240 that could have caused conflicts with shadow paging (XSA-280)(bsc#1115047).

  • CVE-2018-19961 CVE-2018-19962: Fixed insufficient TLB flushing / improper large page mappings with AMD IOMMUs (XSA-275)(bsc#1115040).

Non-security issues fixed :

  • Added upstream bug fixes (bsc#1027519).

This update was imported from the SUSE:SLE-12-SP3:Update update project.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update openSUSE-2018-1530.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(119642);
  script_version("1.5");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/19");

  script_cve_id("CVE-2018-18849", "CVE-2018-18883", "CVE-2018-19961", "CVE-2018-19962", "CVE-2018-19965", "CVE-2018-19966");

  script_name(english:"openSUSE Security Update : xen (openSUSE-2018-1530)");
  script_summary(english:"Check for the openSUSE-2018-1530 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update for xen fixes the following issues :

Security issues fixed :

  - CVE-2018-18849: Fixed an out of bounds memory access
    issue was found in the LSI53C895A SCSI Host Bus Adapter
    emulation while writing a message in lsi_do_msgin
    (bsc#1114423).

  - CVE-2018-18883: Fixed a NULL pointer dereference that
    could have been triggered by nested VT-x that where not
    properly restricted (XSA-278)(bsc#1114405).

  - CVE-2018-19965: Fixed denial of service issue from
    attempting to use INVPCID with a non-canonical addresses
    (XSA-279)(bsc#1115045).

  - CVE-2018-19966: Fixed issue introduced by XSA-240 that
    could have caused conflicts with shadow paging
    (XSA-280)(bsc#1115047).

  - CVE-2018-19961 CVE-2018-19962: Fixed insufficient TLB
    flushing / improper large page mappings with AMD IOMMUs
    (XSA-275)(bsc#1115040).

Non-security issues fixed :

  - Added upstream bug fixes (bsc#1027519).

This update was imported from the SUSE:SLE-12-SP3:Update update
project."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1027519"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1108940"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1114405"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1114423"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1115040"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1115045"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.opensuse.org/show_bug.cgi?id=1115047"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected xen packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-doc-html");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-libs-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools-domU");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools-domU-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:42.3");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/11/01");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/12/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/12/13");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE42\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "42.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(x86_64)$") audit(AUDIT_ARCH_NOT, "x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE42.3", reference:"xen-4.9.3_03-34.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"xen-debugsource-4.9.3_03-34.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"xen-devel-4.9.3_03-34.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"xen-doc-html-4.9.3_03-34.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"xen-libs-4.9.3_03-34.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"xen-libs-debuginfo-4.9.3_03-34.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"xen-tools-4.9.3_03-34.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"xen-tools-debuginfo-4.9.3_03-34.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"xen-tools-domU-4.9.3_03-34.1") ) flag++;
if ( rpm_check(release:"SUSE42.3", reference:"xen-tools-domU-debuginfo-4.9.3_03-34.1") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "xen / xen-debugsource / xen-devel / xen-doc-html / xen-libs / etc");
}
VendorProductVersionCPE
novellopensusexenp-cpe:/a:novell:opensuse:xen
novellopensusexen-debugsourcep-cpe:/a:novell:opensuse:xen-debugsource
novellopensusexen-develp-cpe:/a:novell:opensuse:xen-devel
novellopensusexen-doc-htmlp-cpe:/a:novell:opensuse:xen-doc-html
novellopensusexen-libsp-cpe:/a:novell:opensuse:xen-libs
novellopensusexen-libs-debuginfop-cpe:/a:novell:opensuse:xen-libs-debuginfo
novellopensusexen-toolsp-cpe:/a:novell:opensuse:xen-tools
novellopensusexen-tools-debuginfop-cpe:/a:novell:opensuse:xen-tools-debuginfo
novellopensusexen-tools-domup-cpe:/a:novell:opensuse:xen-tools-domu
novellopensusexen-tools-domu-debuginfop-cpe:/a:novell:opensuse:xen-tools-domu-debuginfo
Rows per page:
1-10 of 111

Related

suse 5
openvas 41
nessus 42
osv 10
debian 4
fedora 15
citrix 2
xen 4
redhatcve 6
cve 6
prion 6
debiancve 6
ubuntucve 6
veracode 1
oraclelinux 6
ibm 1
ubuntu 1
suse
suse
Security update for xen (important)
2018-12-13 03:17:36
Security update for xen (important)
2018-12-29 15:11:23
Security update for xen (important)
2019-04-17 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2018:4070-1)
2021-04-19 00:00:00
openSUSE: Security Advisory for xen (openSUSE-SU-2018:4111-1)
2018-12-13 00:00:00
SUSE: Security Advisory (SUSE-SU-2019:0020-1)
2021-04-19 00:00:00
nessus
nessus
SUSE SLED12 / SLES12 Security Update : xen (SUSE-SU-2018:4070-1)
2018-12-13 00:00:00
SUSE SLES12 Security Update : xen (SUSE-SU-2019:0020-1)
2019-01-07 00:00:00
Debian DLA-1949-1 : xen security update
2019-10-09 00:00:00
osv
osv
xen - security update
2019-01-14 00:00:00
xen - security update
2019-10-08 00:00:00
CVE-2018-19961
2018-12-08 04:29:00
debian
debian
[SECURITY] [DLA 1949-1] xen security update
2019-10-08 12:40:59
[SECURITY] [DSA 4369-1] xen security update
2019-01-14 22:09:42
[SECURITY] [DLA 1781-1] qemu security update
2019-05-09 18:42:13
fedora
fedora
[SECURITY] Fedora 29 Update: xen-4.11.1-4.fc29
2019-03-12 22:20:11
[SECURITY] Fedora 29 Update: xen-4.11.1-6.fc29
2019-07-02 02:30:55
[SECURITY] Fedora 29 Update: xen-4.11.1-5.fc29
2019-05-30 17:27:30
citrix
citrix
Citrix XenServer Security Update
2018-11-20 05:00:00
CVE-2018-18883 - Citrix XenServer Security Update
2018-10-26 04:00:00
xen
xen
insufficient TLB flushing / improper large page mappings with AMD IOMMUs
2018-11-20 12:00:00
x86: Nested VT-x usable even when disabled
2018-10-24 21:11:00
Fix for XSA-240 conflicts with shadow paging
2018-11-20 12:00:00
redhatcve
redhatcve
CVE-2018-19962
2018-12-13 11:11:33
CVE-2018-19961
2018-12-13 11:11:02
CVE-2018-18883
2018-11-01 12:50:06
cve
cve
CVE-2018-18883
2018-11-01 00:29:00
CVE-2018-19961
2018-12-08 04:29:00
CVE-2018-19962
2018-12-08 04:29:00
prion
prion
Design/Logic Flaw
2018-12-08 04:29:00
Null pointer dereference
2018-11-01 00:29:00
Design/Logic Flaw
2018-12-08 04:29:00
debiancve
debiancve
CVE-2018-19962
2018-12-08 04:29:00
CVE-2018-19961
2018-12-08 04:29:00
CVE-2018-18883
2018-11-01 00:29:00
ubuntucve
ubuntucve
CVE-2018-18883
2018-11-01 00:00:00
CVE-2018-19962
2018-12-08 00:00:00
CVE-2018-19961
2018-12-08 00:00:00
veracode
veracode
Out Of Bound Access
2020-09-21 06:21:22
oraclelinux
oraclelinux
qemu security update
2019-01-28 00:00:00
qemu security update
2018-12-21 00:00:00
qemu security update
2018-12-21 00:00:00
ibm
ibm
Security Bulletin: Vyatta 5600 vRouter Software Patches - Release 1801-v
2019-04-18 16:40:01
ubuntu
ubuntu
QEMU vulnerabilities
2018-11-26 00:00:00
JSON
Related for OPENSUSE-2018-1530.NASL
suse5openvas41nessus42osv10debian4fedora15citrix2xen4redhatcve6cve6prion6debiancve6ubuntucve6veracode1oraclelinux6ibm1ubuntu1