Lucene search
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2012-0150.NASLHistoryFeb 21, 2012 - 12:00 a.m.
RHEL 5 : kernel (RHSA-2012:0150)
2012-02-2100:00:00
This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
36
Updated kernel packages that fix one security issue, address several hundred bugs, and add numerous enhancements are now available as part of the ongoing support and maintenance of Red Hat Enterprise Linux version 5. This is the eighth regular update.
The Red Hat Security Response Team has rated this update as having moderate security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available from the CVE link in the References section.
The kernel packages contain the Linux kernel, the core of any Linux operating system.
This update fixes the following security issue :
- A flaw was found in the way the Linux kernelβs Event Poll (epoll) subsystem handled large, nested epoll structures. A local, unprivileged user could use this flaw to cause a denial of service.
(CVE-2011-1083, Moderate)
Red Hat would like to thank Nelson Elhage for reporting this issue.
These updated kernel packages include a number of bug fixes and enhancements. Space precludes documenting all of these changes in this advisory. Users are directed to the Red Hat Enterprise Linux 5.8 Technical Notes, linked to in the References, for information on the most significant of these changes.
All Red Hat Enterprise Linux 5 users are advised to install these updated packages, which correct these issues and add these enhancements. The system must be rebooted for this update to take effect.
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2012:0150. The text
# itself is copyright (C) Red Hat, Inc.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(58052);
script_version("1.22");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2011-1083");
script_bugtraq_id(46630);
script_xref(name:"RHSA", value:"2012:0150");
script_name(english:"RHEL 5 : kernel (RHSA-2012:0150)");
script_summary(english:"Checks the rpm output for the updated packages");
script_set_attribute(
attribute:"synopsis",
value:"The remote Red Hat host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"Updated kernel packages that fix one security issue, address several
hundred bugs, and add numerous enhancements are now available as part
of the ongoing support and maintenance of Red Hat Enterprise Linux
version 5. This is the eighth regular update.
The Red Hat Security Response Team has rated this update as having
moderate security impact. A Common Vulnerability Scoring System (CVSS)
base score, which gives a detailed severity rating, is available from
the CVE link in the References section.
The kernel packages contain the Linux kernel, the core of any Linux
operating system.
This update fixes the following security issue :
* A flaw was found in the way the Linux kernel's Event Poll (epoll)
subsystem handled large, nested epoll structures. A local,
unprivileged user could use this flaw to cause a denial of service.
(CVE-2011-1083, Moderate)
Red Hat would like to thank Nelson Elhage for reporting this issue.
These updated kernel packages include a number of bug fixes and
enhancements. Space precludes documenting all of these changes in this
advisory. Users are directed to the Red Hat Enterprise Linux 5.8
Technical Notes, linked to in the References, for information on the
most significant of these changes.
All Red Hat Enterprise Linux 5 users are advised to install these
updated packages, which correct these issues and add these
enhancements. The system must be rebooted for this update to take
effect."
);
# https://docs.redhat.com/docs/en-US/Red_Hat_Enterprise_Linux/5/html/
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?056c0c27"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/errata/RHSA-2012:0150"
);
script_set_attribute(
attribute:"see_also",
value:"https://access.redhat.com/security/cve/cve-2011-1083"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:N/I:N/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-PAE");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-PAE-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-PAE-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debuginfo-common");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-doc");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-kdump");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-xen");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-xen-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:5");
script_set_attribute(attribute:"vuln_publication_date", value:"2011/04/04");
script_set_attribute(attribute:"patch_publication_date", value:"2012/02/21");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/02/21");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2012-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Red Hat Local Security Checks");
script_dependencies("ssh_get_info.nasl", "linux_alt_patch_detect.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");
include("ksplice.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^5([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 5.x", "Red Hat " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);
if (get_one_kb_item("Host/ksplice/kernel-cves"))
{
rm_kb_item(name:"Host/uptrack-uname-r");
cve_list = make_list("CVE-2011-1083");
if (ksplice_cves_check(cve_list))
{
audit(AUDIT_PATCH_INSTALLED, "KSplice hotfix for RHSA-2012:0150");
}
else
{
__rpm_report = ksplice_reporting_text();
}
}
yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo))
{
rhsa = "RHSA-2012:0150";
yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
if (!empty_or_null(yum_report))
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : yum_report
);
exit(0);
}
else
{
audit_message = "affected by Red Hat security advisory " + rhsa;
audit(AUDIT_OS_NOT, audit_message);
}
}
else
{
flag = 0;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-PAE-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-PAE-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-PAE-devel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-debug-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-debug-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-debug-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-debug-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-debug-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-debug-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-debug-devel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-debug-devel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-debug-devel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-debuginfo-common-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-debuginfo-common-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-debuginfo-common-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-devel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-devel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-devel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", reference:"kernel-doc-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i386", reference:"kernel-headers-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-headers-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-headers-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-kdump-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-kdump-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"s390x", reference:"kernel-kdump-devel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-xen-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-xen-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-xen-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-xen-debuginfo-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"i686", reference:"kernel-xen-devel-2.6.18-308.el5")) flag++;
if (rpm_check(release:"RHEL5", cpu:"x86_64", reference:"kernel-xen-devel-2.6.18-308.el5")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : rpm_report_get() + redhat_report_package_caveat()
);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-PAE / kernel-PAE-debuginfo / kernel-PAE-devel / etc");
}
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | kernel-kdump-devel | p-cpe:/a:redhat:enterprise_linux:kernel-kdump-devel |
| redhat | enterprise_linux | kernel-xen | p-cpe:/a:redhat:enterprise_linux:kernel-xen |
| redhat | enterprise_linux | kernel-xen-debuginfo | p-cpe:/a:redhat:enterprise_linux:kernel-xen-debuginfo |
| redhat | enterprise_linux | kernel-xen-devel | p-cpe:/a:redhat:enterprise_linux:kernel-xen-devel |
| redhat | enterprise_linux | 5 | cpe:/o:redhat:enterprise_linux:5 |
| redhat | enterprise_linux | kernel | p-cpe:/a:redhat:enterprise_linux:kernel |
| redhat | enterprise_linux | kernel-pae | p-cpe:/a:redhat:enterprise_linux:kernel-pae |
| redhat | enterprise_linux | kernel-pae-debuginfo | p-cpe:/a:redhat:enterprise_linux:kernel-pae-debuginfo |
| redhat | enterprise_linux | kernel-pae-devel | p-cpe:/a:redhat:enterprise_linux:kernel-pae-devel |
| redhat | enterprise_linux | kernel-debug | p-cpe:/a:redhat:enterprise_linux:kernel-debug |
Related
veracode
veracode
Denial Of Service (DoS)
2019-01-15 08:50:47
Denial Of Service (DoS)
2019-05-02 04:41:57
cve
cve
CVE-2011-1083
2011-04-04 12:27:00
CVE-2012-3375
2012-10-03 11:02:00
nessus
nessus
Oracle Linux 5 : ELSA-2012-0150-1: / Oracle / Linux / 5.8 / kernel (ELSA-2012-01501)
2023-09-07 00:00:00
Oracle Linux 5 : kernel (ELSA-2012-0150)
2013-07-12 00:00:00
Oracle Linux 5 : ELSA-2012-1061-1: / kernel (ELSA-2012-10611)
2023-09-07 00:00:00
prion
prion
Privilege escalation
2011-04-04 12:27:00
Code injection
2012-10-03 11:02:00
oraclelinux
oraclelinux
1
2012-03-01 00:00:00
Unbreakable Enterprise kernel Security update
2012-07-17 00:00:00
Unbreakable Enterprise kernel Security update
2012-07-16 00:00:00
redhat
redhat
(RHSA-2012:0150) Moderate: Red Hat Enterprise Linux 5.8 kernel update
2012-02-21 00:00:00
(RHSA-2012:1129) Important: kernel security and bug fix update
2012-07-31 00:00:00
(RHSA-2012:1061) Moderate: kernel security and bug fix update
2012-07-10 00:00:00
ubuntucve
ubuntucve
CVE-2011-1083
2011-04-04 00:00:00
CVE-2012-3375
2012-07-04 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2012-0150-1)
2015-10-06 00:00:00
CentOS Update for kernel CESA-2012:1061 centos5
2012-07-30 00:00:00
RedHat Update for Red Hat Enterprise Linux 6 kernel RHSA-2012:0862-04
2012-06-22 00:00:00
seebug
seebug
Linux Kernel epoll Subsystem βeventpoll.cβε€δΈͺζ¬ε°ζη»ζε‘ζΌζ΄
2012-02-22 00:00:00
debiancve
debiancve
CVE-2012-3375
2012-10-03 11:02:00
centos
centos
kernel security update
2012-07-10 16:58:44
kernel, perf, python security update
2012-07-10 17:23:49
amazon
amazon
Medium: kernel
2012-07-05 16:19:00
Medium: kernel
2011-11-19 01:22:00
securityvulns
securityvulns
Linux kernel multiple DoS conditions
2011-06-02 00:00:00
[USN-1141-1] Linux kernel vulnerabilities
2011-06-02 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: kernel-2.6.41.1-1.fc15
2011-11-17 23:29:35
[SECURITY] Fedora 15 Update: kernel-2.6.41.4-1.fc15
2011-12-10 19:51:33
[SECURITY] Fedora 15 Update: kernel-2.6.41.9-1.fc15
2012-01-15 19:59:13
suse
suse
Security update for Linux kernel (important)
2012-05-14 16:08:28
Security update for Linux kernel (important)
2012-04-23 22:08:26
kernel update for SLE11 SP2 (important)
2012-04-26 20:08:43
Related for REDHAT-RHSA-2012-0150.NASL