Lucene search
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.ORACLEVM_OVMSA-2016-0041.NASLHistoryApr 01, 2016 - 12:00 a.m.
OracleVM 3.4 : kernel-uek (OVMSA-2016-0041)
2016-04-0100:00:00
This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
28.1%
The remote OracleVM system is missing necessary patches to address critical security updates :
-
rebuild bumping release
-
x86/iopl/64: properly context-switch IOPL on Xen PV (Andy Lutomirski) [Orabug: 22997978] (CVE-2016-3157)
-
fs/hugetlbfs/inode.c: fix bugs in hugetlb_vmtruncate_list (Mike Kravetz) [Orabug:
22667863] -
rebuild bumping release
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The package checks in this plugin were extracted from OracleVM
# Security Advisory OVMSA-2016-0041.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(90298);
script_version("2.10");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/04");
script_cve_id("CVE-2016-3157");
script_name(english:"OracleVM 3.4 : kernel-uek (OVMSA-2016-0041)");
script_summary(english:"Checks the RPM output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote OracleVM host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"The remote OracleVM system is missing necessary patches to address
critical security updates :
- rebuild bumping release
- x86/iopl/64: properly context-switch IOPL on Xen PV
(Andy Lutomirski) [Orabug: 22997978] (CVE-2016-3157)
- fs/hugetlbfs/inode.c: fix bugs in
hugetlb_vmtruncate_list (Mike Kravetz) [Orabug:
22667863]
- rebuild bumping release"
);
# https://oss.oracle.com/pipermail/oraclevm-errata/2016-March/000452.html
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?3f949646"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected kernel-uek / kernel-uek-firmware packages."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:vm:kernel-uek");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:oracle:vm:kernel-uek-firmware");
script_set_attribute(attribute:"cpe", value:"cpe:/o:oracle:vm_server:3.4");
script_set_attribute(attribute:"vuln_publication_date", value:"2016/04/12");
script_set_attribute(attribute:"patch_publication_date", value:"2016/03/29");
script_set_attribute(attribute:"plugin_publication_date", value:"2016/04/01");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2016-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"OracleVM Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/OracleVM/release", "Host/OracleVM/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/OracleVM/release");
if (isnull(release) || "OVS" >!< release) audit(AUDIT_OS_NOT, "OracleVM");
if (! preg(pattern:"^OVS" + "3\.4" + "(\.[0-9]|$)", string:release)) audit(AUDIT_OS_NOT, "OracleVM 3.4", "OracleVM " + release);
if (!get_kb_item("Host/OracleVM/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "OracleVM", cpu);
if ("x86_64" >!< cpu) audit(AUDIT_ARCH_NOT, "x86_64", cpu);
flag = 0;
if (rpm_check(release:"OVS3.4", reference:"kernel-uek-4.1.12-32.2.3.el6uek")) flag++;
if (rpm_check(release:"OVS3.4", reference:"kernel-uek-firmware-4.1.12-32.2.3.el6uek")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel-uek / kernel-uek-firmware");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| oracle | vm | kernel-uek | p-cpe:/a:oracle:vm:kernel-uek |
| oracle | vm | kernel-uek-firmware | p-cpe:/a:oracle:vm:kernel-uek-firmware |
| oracle | vm_server | 3.4 | cpe:/o:oracle:vm_server:3.4 |
Related
cve
cve
CVE-2016-3157
2016-04-12 16:59:02
ubuntucve
ubuntucve
CVE-2016-3157
2016-04-12 00:00:00
cvelist
cvelist
CVE-2016-3157
2016-04-12 16:00:00
nvd
nvd
CVE-2016-3157
2016-04-12 16:59:02
prion
prion
Design/Logic Flaw
2016-04-12 16:59:00
xen
xen
I/O port access privilege escalation in x86-64 Linux
2016-03-16 19:00:00
debiancve
debiancve
CVE-2016-3157
2016-04-12 16:59:02
oraclelinux
oraclelinux
kernel-uek security update
2016-03-28 00:00:00
Unbreakable Enterprise kernel security update
2016-12-21 00:00:00
Unbreakable Enterprise kernel security update
2016-12-21 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2016-3529)
2016-03-31 00:00:00
Amazon Linux: Security Advisory (ALAS-2016-669)
2016-03-17 00:00:00
Ubuntu: Security Advisory (USN-2969-1)
2016-05-10 00:00:00
nessus
nessus
OracleVM 3.3 : Unbreakable / etc (OVMSA-2016-0180)
2016-12-22 00:00:00
Oracle Linux 6 / 7 : Unbreakable Enterprise kernel (ELSA-2016-3656)
2016-12-22 00:00:00
Oracle Linux 6 / 7 : kernel-uek (ELSA-2016-3529)
2016-04-01 00:00:00
amazon
amazon
Medium: kernel
2016-03-16 16:30:00
fedora
fedora
[SECURITY] Fedora 23 Update: kernel-4.4.6-301.fc23
2016-04-08 15:55:57
[SECURITY] Fedora 22 Update: kernel-4.4.6-201.fc22
2016-04-08 20:25:32
[SECURITY] Fedora 24 Update: kernel-4.5.0-302.fc24
2016-04-02 15:56:50
ubuntu
ubuntu
Linux kernel (Utopic HWE) vulnerabilities
2016-05-09 00:00:00
Linux kernel (Wily HWE) vulnerabilities
2016-05-09 00:00:00
Linux kernel vulnerabilities
2016-05-09 00:00:00
cloudfoundry
cloudfoundry
USN-2970-1 Linux kernel (Vivid HWE) vulnerabilities | Cloud Foundry
2016-06-03 00:00:00
debian
debian
[SECURITY] [DLA 516-1] linux security update
2016-06-17 12:12:11
[SECURITY] [DSA 3607-1] linux security update
2016-06-28 09:56:48
[SECURITY] [DSA 3607-1] linux security update
2016-06-28 09:56:48
osv
osv
linux - security update
2016-06-17 00:00:00
linux - security update
2016-06-28 00:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
CVSS3
7.8
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS
0.001
Percentile
28.1%
Related for ORACLEVM_OVMSA-2016-0041.NASL