Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2011-0842.NASL
HistoryJun 01, 2011 - 12:00 a.m.

RHEL 6 : systemtap (RHSA-2011:0842)

2011-06-0100:00:00
This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18
JSON

Updated systemtap packages that fix two security issues are now available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

SystemTap is an instrumentation system for systems running the Linux kernel, version 2.6. Developers can write scripts to collect data on the operation of the system.

Two divide-by-zero flaws were found in the way SystemTap handled malformed debugging information in DWARF format. When SystemTap unprivileged mode was enabled, an unprivileged user in the stapusr group could use these flaws to crash the system. Additionally, a privileged user (root, or a member of the stapdev group) could trigger these flaws when tricked into instrumenting a specially crafted ELF binary, even when unprivileged mode was not enabled. (CVE-2011-1769, CVE-2011-1781)

SystemTap users should upgrade to these updated packages, which contain a backported patch to correct these issues.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2011:0842. The text 
# itself is copyright (C) Red Hat, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(54930);
  script_version("1.18");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2011-1769", "CVE-2011-1781");
  script_bugtraq_id(47934);
  script_xref(name:"RHSA", value:"2011:0842");

  script_name(english:"RHEL 6 : systemtap (RHSA-2011:0842)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Updated systemtap packages that fix two security issues are now
available for Red Hat Enterprise Linux 6.

The Red Hat Security Response Team has rated this update as having
moderate security impact. Common Vulnerability Scoring System (CVSS)
base scores, which give detailed severity ratings, are available for
each vulnerability from the CVE links in the References section.

SystemTap is an instrumentation system for systems running the Linux
kernel, version 2.6. Developers can write scripts to collect data on
the operation of the system.

Two divide-by-zero flaws were found in the way SystemTap handled
malformed debugging information in DWARF format. When SystemTap
unprivileged mode was enabled, an unprivileged user in the stapusr
group could use these flaws to crash the system. Additionally, a
privileged user (root, or a member of the stapdev group) could trigger
these flaws when tricked into instrumenting a specially crafted ELF
binary, even when unprivileged mode was not enabled. (CVE-2011-1769,
CVE-2011-1781)

SystemTap users should upgrade to these updated packages, which
contain a backported patch to correct these issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2011-1769"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2011-1781"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2011:0842"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:H/Au:N/C:N/I:N/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:ND/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:systemtap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:systemtap-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:systemtap-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:systemtap-grapher");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:systemtap-initscript");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:systemtap-runtime");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:systemtap-sdt-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:systemtap-server");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:systemtap-testsuite");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:6.1");

  script_set_attribute(attribute:"vuln_publication_date", value:"2011/08/29");
  script_set_attribute(attribute:"patch_publication_date", value:"2011/05/31");
  script_set_attribute(attribute:"plugin_publication_date", value:"2011/06/01");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2011-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 6.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2011:0842";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_NOTE,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_check(release:"RHEL6", cpu:"i686", reference:"systemtap-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"systemtap-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"systemtap-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"i686", reference:"systemtap-client-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"systemtap-client-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"systemtap-client-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", reference:"systemtap-debuginfo-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"i686", reference:"systemtap-grapher-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"systemtap-grapher-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"systemtap-grapher-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"i686", reference:"systemtap-initscript-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"systemtap-initscript-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"systemtap-initscript-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"i686", reference:"systemtap-runtime-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"systemtap-runtime-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"systemtap-runtime-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", reference:"systemtap-sdt-devel-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"i686", reference:"systemtap-server-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"systemtap-server-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"systemtap-server-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"i686", reference:"systemtap-testsuite-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"s390x", reference:"systemtap-testsuite-1.4-6.el6_1.1")) flag++;

  if (rpm_check(release:"RHEL6", cpu:"x86_64", reference:"systemtap-testsuite-1.4-6.el6_1.1")) flag++;


  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_NOTE,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "systemtap / systemtap-client / systemtap-debuginfo / etc");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxsystemtapp-cpe:/a:redhat:enterprise_linux:systemtap
redhatenterprise_linuxsystemtap-clientp-cpe:/a:redhat:enterprise_linux:systemtap-client
redhatenterprise_linuxsystemtap-debuginfop-cpe:/a:redhat:enterprise_linux:systemtap-debuginfo
redhatenterprise_linuxsystemtap-grapherp-cpe:/a:redhat:enterprise_linux:systemtap-grapher
redhatenterprise_linuxsystemtap-initscriptp-cpe:/a:redhat:enterprise_linux:systemtap-initscript
redhatenterprise_linuxsystemtap-runtimep-cpe:/a:redhat:enterprise_linux:systemtap-runtime
redhatenterprise_linuxsystemtap-sdt-develp-cpe:/a:redhat:enterprise_linux:systemtap-sdt-devel
redhatenterprise_linuxsystemtap-serverp-cpe:/a:redhat:enterprise_linux:systemtap-server
redhatenterprise_linuxsystemtap-testsuitep-cpe:/a:redhat:enterprise_linux:systemtap-testsuite
redhatenterprise_linux6cpe:/o:redhat:enterprise_linux:6
Rows per page:
1-10 of 111

Related

nessus 11
openvas 16
fedora 3
redhat 2
securityvulns 2
oraclelinux 2
veracode 2
cve 2
cvelist 2
prion 2
ubuntucve 2
debiancve 2
centos 1
nessus
nessus
Oracle Linux 5 : systemtap (ELSA-2011-0841)
2013-07-12 00:00:00
Fedora 15 : systemtap-1.4-9.fc15 (2011-7314)
2011-05-27 00:00:00
Scientific Linux Security Update : systemtap on SL6.x i386/x86_64
2012-08-01 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2011-0842)
2015-10-06 00:00:00
RedHat Update for systemtap RHSA-2011:0842-01
2012-06-06 00:00:00
RedHat Update for systemtap RHSA-2011:0842-01
2012-06-06 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: systemtap-1.4-9.fc15
2011-05-26 21:53:51
[SECURITY] Fedora 14 Update: systemtap-1.4-6.fc14
2011-05-26 21:53:38
[SECURITY] Fedora 13 Update: systemtap-1.4-6.fc13
2011-05-26 21:57:10
redhat
redhat
(RHSA-2011:0842) Moderate: systemtap security update
2011-05-31 00:00:00
(RHSA-2011:0841) Moderate: systemtap security update
2011-05-31 00:00:00
securityvulns
securityvulns
SystemTap DoS
2011-10-20 00:00:00
[ MDVSA-2011:155 ] systemtap
2011-10-20 00:00:00
oraclelinux
oraclelinux
systemtap security update
2011-06-01 00:00:00
systemtap security update
2011-05-31 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:02:47
Denial Of Service (DoS)
2020-04-10 00:59:31
cve
cve
CVE-2011-1781
2011-08-29 21:55:00
CVE-2011-1769
2011-08-29 21:55:00
cvelist
cvelist
CVE-2011-1781
2011-08-29 21:00:00
CVE-2011-1769
2011-08-29 21:00:00
prion
prion
Denial of service
2011-08-29 21:55:00
Denial of service
2011-08-29 21:55:00
ubuntucve
ubuntucve
CVE-2011-1781
2011-08-29 00:00:00
CVE-2011-1769
2011-08-29 00:00:00
debiancve
debiancve
CVE-2011-1781
2011-08-29 21:55:00
CVE-2011-1769
2011-08-29 21:55:00
centos
centos
systemtap security update
2011-05-31 17:05:06
JSON
Related for REDHAT-RHSA-2011-0842.NASL
nessus11openvas16fedora3redhat2securityvulns2oraclelinux2veracode2cve2cvelist2prion2ubuntucve2debiancve2centos1