Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2019-1968.NASL
HistoryAug 12, 2019 - 12:00 a.m.

RHEL 7 : Virtualization Manager (RHSA-2019:1968)

2019-08-1200:00:00
This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
28
JSON

An update for qemu-kvm-rhev is now available for Red Hat Virtualization for Red Hat Virtualization Host 7.

Red Hat Product Security has rated this update as having a Important security impact. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link (s) in the References section.

KVM (Kernel-based Virtual Machine) is a full virtualization solution for Linux on a variety of architectures. The qemu-kvm-rhev packages provide the user-space component for running virtual machines that use KVM in environments managed by Red Hat products.

Security Fix(es) :

  • CVE-2018-20815 QEMU: device_tree: heap buffer overflow while loading device tree blob

  • CVE-2019-6778 QEMU: slirp: heap buffer overflow in tcp_em

This update fixes the following bug :

  • 1705364 RHV VM pauses when ‘dd’ issued inside guest to a direct lun configured as virtio-scsi with scsi-passthrough

Users of qemu-kvm are advised to upgrade to these updated packages.
After installing this update, shut down all running virtual machines.
Once all virtual machines have shut down, start them again for this update to take effect.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from Red Hat Security Advisory RHSA-2019:1968. The text 
# itself is copyright (C) Red Hat, Inc.
#

include("compat.inc");

if (description)
{
  script_id(127640);
  script_version("1.7");
  script_cvs_date("Date: 2020/01/06");

  script_cve_id("CVE-2018-20815", "CVE-2019-6778");
  script_xref(name:"RHSA", value:"2019:1968");

  script_name(english:"RHEL 7 : Virtualization Manager (RHSA-2019:1968)");
  script_summary(english:"Checks the rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote Red Hat host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"An update for qemu-kvm-rhev is now available for Red Hat
Virtualization for Red Hat Virtualization Host 7.

Red Hat Product Security has rated this update as having a Important
security impact. A Common Vulnerability Scoring System (CVSS) base
score, which gives a detailed severity rating, is available for each
vulnerability from the CVE link (s) in the References section.

KVM (Kernel-based Virtual Machine) is a full virtualization solution
for Linux on a variety of architectures. The qemu-kvm-rhev packages
provide the user-space component for running virtual machines that use
KVM in environments managed by Red Hat products.

Security Fix(es) :

* CVE-2018-20815 QEMU: device_tree: heap buffer overflow while loading
device tree blob

* CVE-2019-6778 QEMU: slirp: heap buffer overflow in tcp_em

This update fixes the following bug :

* 1705364 RHV VM pauses when 'dd' issued inside guest to a direct lun
configured as virtio-scsi with scsi-passthrough

Users of qemu-kvm are advised to upgrade to these updated packages.
After installing this update, shut down all running virtual machines.
Once all virtual machines have shut down, start them again for this
update to take effect."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/errata/RHSA-2019:1968"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2018-20815"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://access.redhat.com/security/cve/cve-2019-6778"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:qemu-img-rhev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:qemu-kvm-common-rhev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:qemu-kvm-rhev");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:qemu-kvm-rhev-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:qemu-kvm-tools-rhev");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:7");

  script_set_attribute(attribute:"vuln_publication_date", value:"2019/03/21");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/07/30");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/08/12");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Red Hat Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Red Hat" >!< release) audit(AUDIT_OS_NOT, "Red Hat");
os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Red Hat");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Red Hat 7.x", "Red Hat " + os_ver);

if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$" && "s390" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Red Hat", cpu);
if ("x86_64" >!< cpu) audit(AUDIT_ARCH_NOT, "x86_64", cpu);

yum_updateinfo = get_kb_item("Host/RedHat/yum-updateinfo");
if (!empty_or_null(yum_updateinfo)) 
{
  rhsa = "RHSA-2019:1968";
  yum_report = redhat_generate_yum_updateinfo_report(rhsa:rhsa);
  if (!empty_or_null(yum_report))
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : yum_report 
    );
    exit(0);
  }
  else
  {
    audit_message = "affected by Red Hat security advisory " + rhsa;
    audit(AUDIT_OS_NOT, audit_message);
  }
}
else
{
  flag = 0;
  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"qemu-img-rhev-2.12.0-18.el7_6.7")) flag++;
  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"qemu-kvm-common-rhev-2.12.0-18.el7_6.7")) flag++;
  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"qemu-kvm-rhev-2.12.0-18.el7_6.7")) flag++;
  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"qemu-kvm-rhev-debuginfo-2.12.0-18.el7_6.7")) flag++;
  if (rpm_check(release:"RHEL7", cpu:"x86_64", reference:"qemu-kvm-tools-rhev-2.12.0-18.el7_6.7")) flag++;

  if (flag)
  {
    security_report_v4(
      port       : 0,
      severity   : SECURITY_HOLE,
      extra      : rpm_report_get() + redhat_report_package_caveat()
    );
    exit(0);
  }
  else
  {
    tested = pkg_tests_get();
    if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
    else audit(AUDIT_PACKAGE_NOT_INSTALLED, "qemu-img-rhev / qemu-kvm-common-rhev / qemu-kvm-rhev / etc");
  }
}
VendorProductVersionCPE
redhatenterprise_linuxqemu-img-rhevp-cpe:/a:redhat:enterprise_linux:qemu-img-rhev
redhatenterprise_linuxqemu-kvm-common-rhevp-cpe:/a:redhat:enterprise_linux:qemu-kvm-common-rhev
redhatenterprise_linuxqemu-kvm-rhevp-cpe:/a:redhat:enterprise_linux:qemu-kvm-rhev
redhatenterprise_linuxqemu-kvm-rhev-debuginfop-cpe:/a:redhat:enterprise_linux:qemu-kvm-rhev-debuginfo
redhatenterprise_linuxqemu-kvm-tools-rhevp-cpe:/a:redhat:enterprise_linux:qemu-kvm-tools-rhev
redhatenterprise_linux7cpe:/o:redhat:enterprise_linux:7

Related

redhat 11
nessus 78
prion 2
debiancve 2
redhatcve 2
openvas 28
osv 6
cve 2
veracode 2
ubuntucve 2
f5 1
centos 2
oraclelinux 10
gentoo 1
debian 4
suse 8
amazon 1
fedora 5
ubuntu 2
redhat
redhat
(RHSA-2019:1968) Important: qemu-kvm-rhev security and bug fix update
2019-07-30 10:30:29
(RHSA-2019:1881) Important: qemu-kvm-ma security and bug fix update
2019-07-29 12:48:27
(RHSA-2019:1723) Important: qemu-kvm-rhev security update
2019-07-09 20:41:09
nessus
nessus
Scientific Linux Security Update : qemu-kvm on SL7.x x86_64 (20190729)
2019-08-12 00:00:00
RHEL 7 : qemu-kvm-ma (RHSA-2019:1881)
2019-08-12 00:00:00
EulerOS 2.0 SP8 : qemu (EulerOS-SA-2020-1029)
2020-01-02 00:00:00
prion
prion
Buffer overflow
2019-05-31 22:29:00
Heap overflow
2019-03-21 16:01:00
debiancve
debiancve
CVE-2018-20815
2019-05-31 22:29:00
CVE-2019-6778
2019-03-21 16:01:00
redhatcve
redhatcve
CVE-2018-20815
2019-10-10 05:41:46
CVE-2019-6778
2019-01-24 18:19:37
openvas
openvas
Huawei EulerOS: Security Advisory for qemu (EulerOS-SA-2020-1029)
2020-01-23 00:00:00
CentOS Update for qemu-img CESA-2019:1883 centos7
2019-08-01 00:00:00
Debian Security Advisory DSA 4506-1 (qemu - security update)
2019-08-27 00:00:00
osv
osv
CVE-2018-20815
2019-05-31 22:29:00
CVE-2019-6778
2019-03-21 16:01:10
qemu - security update
2019-08-24 00:00:00
cve
cve
CVE-2018-20815
2019-05-31 22:29:00
CVE-2019-6778
2019-03-21 16:01:00
veracode
veracode
Buffer Overflow
2019-07-08 00:07:31
Arbitrary Code Execution
2019-08-05 00:16:19
ubuntucve
ubuntucve
CVE-2018-20815
2018-12-31 00:00:00
CVE-2019-6778
2019-01-25 00:00:00
f5
f5
K17520069 : QEMU 3.0.0 heap-based buffer overflow CVE-2019-6778
2020-12-21 00:00:00
centos
centos
qemu security update
2019-07-31 13:40:38
qemu security update
2019-09-27 12:14:41
oraclelinux
oraclelinux
qemu-kvm security update
2019-07-30 00:00:00
qemu security update
2019-05-14 00:00:00
qemu-kvm security, bug fix, and enhancement update
2019-08-13 00:00:00
gentoo
gentoo
QEMU: Multiple vulnerabilities
2019-04-24 00:00:00
debian
debian
[SECURITY] [DSA 4506-1] qemu security update
2019-08-24 09:55:59
[SECURITY] [DLA 1694-1] qemu security update
2019-02-28 08:42:29
[SECURITY] [DLA 1781-1] qemu security update
2019-05-09 18:42:13
suse
suse
Security update for podman, slirp4netns and libcontainers-common (moderate)
2019-09-02 00:00:00
Security update for qemu (important)
2019-04-25 00:00:00
Security update for xen (important)
2019-05-20 00:00:00
amazon
amazon
Important: qemu
2019-07-18 17:45:00
fedora
fedora
[SECURITY] Fedora 30 Update: qemu-3.1.0-6.fc30
2019-03-28 17:41:26
[SECURITY] Fedora 30 Update: qemu-3.1.0-9.fc30
2019-07-09 00:56:39
[SECURITY] Fedora 29 Update: qemu-3.0.1-4.fc29
2019-07-09 02:25:09
ubuntu
ubuntu
QEMU update
2019-05-14 00:00:00
QEMU vulnerabilities
2019-03-27 00:00:00
JSON
Related for REDHAT-RHSA-2019-1968.NASL
redhat11nessus78prion2debiancve2redhatcve2openvas28osv6cve2veracode2ubuntucve2f51centos2oraclelinux10gentoo1debian4suse8amazon1fedora5ubuntu2