Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2013-2021 Tenable Network Security, Inc.REDHAT-RHSA-2009-0021.NASL
HistoryJan 24, 2013 - 12:00 a.m.

RHEL 5 : kernel (RHSA-2009:0021)

2013-01-2400:00:00
This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.
www.tenable.com
12
JSON

Updated kernel packages that resolve several security issues are now available for Red Hat Enterprise Linux 5.2 Extended Update Support.

This update has been rated as having important security impact by the Red Hat Security Response Team.

The kernel packages contain the Linux kernel, the core of any Linux operating system.

This update includes backported fixes for four security issues. These issues only affected users of Red Hat Enterprise Linux 5.2 Extended Update Support as they have already been addressed for users of Red Hat Enterprise Linux 5 in the 5.3 update, RHSA-2009:0225.

In accordance with the support policy, future security updates to Red Hat Enterprise Linux 5.2 Extended Update Support will only include issues of critical security impact.

  • when fput() was called to close a socket, the __scm_destroy() function in the Linux kernel could make indirect recursive calls to itself. This could, potentially, lead to a denial of service issue.
    (CVE-2008-5029, Important)

  • the sendmsg() function in the Linux kernel did not block during UNIX socket garbage collection. This could, potentially, lead to a local denial of service. (CVE-2008-5300, Important)

  • a flaw was found in the Asynchronous Transfer Mode (ATM) subsystem.
    A local, unprivileged user could use the flaw to listen on the same socket more than once, possibly causing a denial of service.
    (CVE-2008-5079, Important)

  • a race condition was found in the Linux kernel ‘inotify’ watch removal and umount implementation. This could allow a local, unprivileged user to cause a privilege escalation or a denial of service. (CVE-2008-5182, Important)

Users should upgrade to these updated packages, which contain backported patches to correct these issues. Note: for this update to take effect, the system must be rebooted.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2009:0021. The text 
# itself is copyright (C) Red Hat, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(63871);
  script_version("1.10");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2008-5029", "CVE-2008-5079", "CVE-2008-5182", "CVE-2008-5300");
  script_xref(name:"RHSA", value:"2009:0021");

  script_name(english:"RHEL 5 : kernel (RHSA-2009:0021)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated kernel packages that resolve several security issues are now
available for Red Hat Enterprise Linux 5.2 Extended Update Support.

This update has been rated as having important security impact by the
Red Hat Security Response Team.

The kernel packages contain the Linux kernel, the core of any Linux
operating system.

This update includes backported fixes for four security issues. These
issues only affected users of Red Hat Enterprise Linux 5.2 Extended
Update Support as they have already been addressed for users of Red
Hat Enterprise Linux 5 in the 5.3 update, RHSA-2009:0225.

In accordance with the support policy, future security updates to Red
Hat Enterprise Linux 5.2 Extended Update Support will only include
issues of critical security impact.

* when fput() was called to close a socket, the __scm_destroy()
function in the Linux kernel could make indirect recursive calls to
itself. This could, potentially, lead to a denial of service issue.
(CVE-2008-5029, Important)

* the sendmsg() function in the Linux kernel did not block during UNIX
socket garbage collection. This could, potentially, lead to a local
denial of service. (CVE-2008-5300, Important)

* a flaw was found in the Asynchronous Transfer Mode (ATM) subsystem.
A local, unprivileged user could use the flaw to listen on the same
socket more than once, possibly causing a denial of service.
(CVE-2008-5079, Important)

* a race condition was found in the Linux kernel 'inotify' watch
removal and umount implementation. This could allow a local,
unprivileged user to cause a privilege escalation or a denial of
service. (CVE-2008-5182, Important)

Users should upgrade to these updated packages, which contain
backported patches to correct these issues. Note: for this update to
take effect, the system must be rebooted."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.redhat.com/security/data/cve/CVE-2008-5029.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.redhat.com/security/data/cve/CVE-2008-5079.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.redhat.com/security/data/cve/CVE-2008-5182.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.redhat.com/security/data/cve/CVE-2008-5300.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://rhn.redhat.com/errata/RHSA-2009-0021.html"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_cwe_id(362, 399);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-PAE");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-kdump");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-xen");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:5.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2009/02/24");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/01/24");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2013-2021 Tenable Network Security, Inc.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

flag = 0;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"i686", reference:"kernel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"s390x", reference:"kernel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"x86_64", reference:"kernel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"i686", reference:"kernel-PAE-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"i686", reference:"kernel-PAE-devel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"i686", reference:"kernel-debug-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"s390x", reference:"kernel-debug-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"x86_64", reference:"kernel-debug-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"i686", reference:"kernel-debug-devel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"s390x", reference:"kernel-debug-devel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"x86_64", reference:"kernel-debug-devel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"i686", reference:"kernel-devel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"s390x", reference:"kernel-devel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"x86_64", reference:"kernel-devel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", reference:"kernel-doc-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"i386", reference:"kernel-headers-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"s390x", reference:"kernel-headers-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"x86_64", reference:"kernel-headers-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"s390x", reference:"kernel-kdump-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"s390x", reference:"kernel-kdump-devel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"i686", reference:"kernel-xen-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"x86_64", reference:"kernel-xen-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"i686", reference:"kernel-xen-devel-2.6.18-92.1.24.el5")) flag++;
if (rpm_check(release:"RHEL5", sp:"2", cpu:"x86_64", reference:"kernel-xen-devel-2.6.18-92.1.24.el5")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
redhatenterprise_linuxkernelp-cpe:/a:redhat:enterprise_linux:kernel
redhatenterprise_linuxkernel-paep-cpe:/a:redhat:enterprise_linux:kernel-pae
redhatenterprise_linuxkernel-pae-develp-cpe:/a:redhat:enterprise_linux:kernel-pae-devel
redhatenterprise_linuxkernel-debugp-cpe:/a:redhat:enterprise_linux:kernel-debug
redhatenterprise_linuxkernel-debug-develp-cpe:/a:redhat:enterprise_linux:kernel-debug-devel
redhatenterprise_linuxkernel-develp-cpe:/a:redhat:enterprise_linux:kernel-devel
redhatenterprise_linuxkernel-docp-cpe:/a:redhat:enterprise_linux:kernel-doc
redhatenterprise_linuxkernel-headersp-cpe:/a:redhat:enterprise_linux:kernel-headers
redhatenterprise_linuxkernel-kdumpp-cpe:/a:redhat:enterprise_linux:kernel-kdump
redhatenterprise_linuxkernel-kdump-develp-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel
Rows per page:
1-10 of 131

Related

openvas 72
redhat 6
nessus 27
fedora 14
cve 4
prion 4
ubuntucve 4
suse 5
securityvulns 7
ubuntu 3
osv 3
veracode 4
exploitpack 1
seebug 3
debian 3
exploitdb 1
oraclelinux 3
centos 2
vmware 1
openvas
openvas
RedHat Security Advisory RHSA-2009:0021
2009-03-02 00:00:00
Oracle: Security Advisory (ELSA-2009-0225)
2015-10-08 00:00:00
RedHat Security Advisory RHSA-2009:0021
2009-03-02 00:00:00
redhat
redhat
(RHSA-2009:0021) Important: kernel security update
2009-02-24 00:00:00
(RHSA-2009:0225) Important: Red Hat Enterprise Linux 5.3 kernel security and bug fix update
2009-01-20 00:00:00
(RHSA-2009:0053) Important: kernel-rt security and bug fix update
2009-02-04 00:00:00
nessus
nessus
Oracle Linux 5 : Oracle / Enterprise / Linux / 5.3 / kernel (ELSA-2009-0225)
2023-09-07 00:00:00
RHEL 5 : kernel (RHSA-2009:0225)
2009-01-21 00:00:00
Fedora 10 : kernel-2.6.27.9-159.fc10 (2008-11593)
2009-04-23 00:00:00
fedora
fedora
[SECURITY] Fedora 10 Update: kernel-2.6.27.9-159.fc10
2008-12-24 18:45:37
[SECURITY] Fedora 9 Update: kernel-2.6.27.9-73.fc9
2008-12-24 18:47:55
[SECURITY] Fedora 10 Update: kernel-2.6.27.12-170.2.5.fc10
2009-01-27 01:48:27
cve
cve
CVE-2008-5300
2008-12-01 17:30:00
CVE-2008-5182
2008-11-21 02:30:00
CVE-2008-5079
2008-12-09 00:30:00
prion
prion
Design/Logic Flaw
2008-12-01 17:30:00
Race condition
2008-11-21 02:30:00
Design/Logic Flaw
2008-11-10 16:15:00
ubuntucve
ubuntucve
CVE-2008-5300
2008-12-01 00:00:00
CVE-2008-5182
2008-11-21 00:00:00
CVE-2008-5079
2008-12-09 00:00:00
suse
suse
local privilege escalation in kernel
2009-01-29 16:12:11
local privilege escalation in kernel
2009-01-21 20:06:24
local privilege escalation in kernel-debug
2009-01-20 17:01:02
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2008-12-29 00:00:00
Linux kernel multiple security vulnerabilities
2009-01-31 00:00:00
CVE-2008-5079: multiple listen&#40;&#41;s on same socket corrupts the vcc table
2008-12-09 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2009-01-29 00:00:00
Linux kernel vulnerabilities
2009-01-29 00:00:00
Linux kernel vulnerabilities
2008-11-27 00:00:00
osv
osv
fai-kernels linux-2.6 user-mode-linux - several vulnerabilities
2008-12-15 00:00:00
linux-2.6.24 - several vulnerabilities
2008-12-04 00:00:00
linux-2.6.24 - several vulnerabilities
2009-05-02 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:29:30
Denial Of Service (DoS)
2020-04-10 00:29:30
Denial Of Service (DoS)
2020-04-10 00:29:29
exploitpack
exploitpack
Linux Kernel 2.6.27.8 - ATMSVC Local Denial of Service
2008-12-10 00:00:00
seebug
seebug
Linux Kernel <= 2.6.27.8 - ATMSVC Local Denial of Service Exploit
2014-07-01 00:00:00
Linux Kernel __scm_destroy()本地拒绝服务漏洞
2008-11-12 00:00:00
Linux Kernel &lt;= 2.6.27.8 ATMSVC Local Denial of Service Exploit
2008-12-11 00:00:00
debian
debian
[SECURITY] [DSA 1687-1] New Linux 2.6.18 packages fix several vulnerabilities
2008-12-15 21:33:39
[SECURITY] [DSA 1681-1] New Linux 2.6.24 packages fix several vulnerabilities
2008-12-04 17:59:11
[SECURITY] [DSA 1787-1] New Linux 2.6.24 packages fix several vulnerabilities
2009-05-02 18:33:03
exploitdb
exploitdb
Linux Kernel 2.6.27.8 - ATMSVC Local Denial of Service
2008-12-10 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2009-01-15 00:00:00
kernel security and bug fix update
2009-11-04 00:00:00
Oracle Enterprise Linux 5.3 kernel security and bug fix update
2009-01-27 00:00:00
centos
centos
kernel security update
2009-01-15 13:41:46
kernel security update
2009-11-04 00:55:32
vmware
vmware
ESX 3.5 third party update for Service Console kernel
2010-06-24 00:00:00
JSON
Related for REDHAT-RHSA-2009-0021.NASL
openvas72redhat6nessus27fedora14cve4prion4ubuntucve4suse5securityvulns7ubuntu3osv3veracode4exploitpack1seebug3debian3exploitdb1oraclelinux3centos2vmware1