Lucene search
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.REDHAT-RHSA-2024-0113.NASLHistoryJan 10, 2024 - 12:00 a.m.
RHEL 8 : kernel (RHSA-2024:0113)
2024-01-1000:00:00
This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
16
redhat enterprise linux
kernel
vulnerabilities
privilege escalation
denial of service
information disclosure
use-after-free
array indexing
side channel
speculative execution
local user
netfilter
amd cpus
vmwgfx driver
cve-2022-36402
cve-2023-20569
cve-2023-2162
cve-2023-42753
cve-2023-4622
cve-2023-5633
rhsa-2024:0113
nessus
self-reported version
8.2 High
AI Score
Confidence
Low
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:0113 advisory.
-
kernel: vmwgfx: integer overflow in vmwgfx_execbuf.c (CVE-2022-36402)
-
kernel: UAF during login when accessing the shost ipaddress (CVE-2023-2162)
-
kernel: use after free in unix_stream_sendpage (CVE-2023-4622)
-
kernel: vmwgfx: reference count issue leads to use-after-free in surface handling (CVE-2023-5633)
-
hw amd: Return Address Predictor vulnerability leading to information disclosure (CVE-2023-20569)
-
kernel: netfilter: potential slab-out-of-bound access due to integer underflow (CVE-2023-42753)
Note that Nessus has not tested for these issues but has instead relied only on the application’s self-reported version number.
#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Red Hat Security Advisory RHSA-2024:0113. The text
# itself is copyright (C) Red Hat, Inc.
##
include('compat.inc');
if (description)
{
script_id(187898);
script_version("1.2");
script_set_attribute(attribute:"plugin_modification_date", value:"2024/04/28");
script_cve_id(
"CVE-2022-36402",
"CVE-2023-2162",
"CVE-2023-4622",
"CVE-2023-5633",
"CVE-2023-20569",
"CVE-2023-42753"
);
script_xref(name:"RHSA", value:"2024:0113");
script_name(english:"RHEL 8 : kernel (RHSA-2024:0113)");
script_set_attribute(attribute:"synopsis", value:
"The remote Red Hat host is missing one or more security updates for kernel.");
script_set_attribute(attribute:"description", value:
"The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as
referenced in the RHSA-2024:0113 advisory.
- kernel: vmwgfx: integer overflow in vmwgfx_execbuf.c (CVE-2022-36402)
- kernel: UAF during login when accessing the shost ipaddress (CVE-2023-2162)
- kernel: use after free in unix_stream_sendpage (CVE-2023-4622)
- kernel: vmwgfx: reference count issue leads to use-after-free in surface handling (CVE-2023-5633)
- hw amd: Return Address Predictor vulnerability leading to information disclosure (CVE-2023-20569)
- kernel: netfilter: potential slab-out-of-bound access due to integer underflow (CVE-2023-42753)
Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version
number.");
# https://access.redhat.com/security/data/csaf/v2/advisories/2024/rhsa-2024_0113.json
script_set_attribute(attribute:"see_also", value:"http://www.nessus.org/u?ffc652b6");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/errata/RHSA-2024:0113");
script_set_attribute(attribute:"see_also", value:"https://access.redhat.com/security/updates/classification/#important");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2187773");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2207625");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2237760");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2239843");
script_set_attribute(attribute:"see_also", value:"https://bugzilla.redhat.com/show_bug.cgi?id=2245663");
script_set_attribute(attribute:"solution", value:
"Update the RHEL kernel package based on the guidance in RHSA-2024:0113.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:S/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:P/RL:O/RC:C");
script_set_attribute(attribute:"cvss_score_source", value:"CVE-2023-5633");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_cwe_id(190, 416, 787);
script_set_attribute(attribute:"vendor_severity", value:"Important");
script_set_attribute(attribute:"vuln_publication_date", value:"2023/03/17");
script_set_attribute(attribute:"patch_publication_date", value:"2024/01/10");
script_set_attribute(attribute:"plugin_publication_date", value:"2024/01/10");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"cpe:/o:redhat:enterprise_linux:8");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:bpftool");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-cross-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-headers");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-tools-libs-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-core");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:kernel-zfcpdump-modules-extra");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:perf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:redhat:enterprise_linux:python3-perf");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_family(english:"Red Hat Local Security Checks");
script_copyright(english:"This script is Copyright (C) 2024 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_dependencies("ssh_get_info.nasl", "redhat_repos.nasl", "linux_alt_patch_detect.nasl");
script_require_keys("Host/local_checks_enabled", "Host/RedHat/release", "Host/RedHat/rpm-list", "Host/cpu");
exit(0);
}
include('rpm.inc');
include('rhel.inc');
include('ksplice.inc');
if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_release = get_kb_item('Host/RedHat/release');
if (isnull(os_release) || 'Red Hat' >!< os_release) audit(AUDIT_OS_NOT, 'Red Hat');
var os_ver = pregmatch(pattern: "Red Hat Enterprise Linux.*release ([0-9]+(\.[0-9]+)?)", string:os_release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, 'Red Hat');
os_ver = os_ver[1];
if (!rhel_check_release(operator: 'ge', os_version: os_ver, rhel_version: '8')) audit(AUDIT_OS_NOT, 'Red Hat 8.x', 'Red Hat ' + os_ver);
if (!get_kb_item('Host/RedHat/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);
var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('x86_64' >!< cpu && cpu !~ "^i[3-6]86$" && 's390' >!< cpu && 'aarch64' >!< cpu && 'ppc' >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'Red Hat', cpu);
if (get_one_kb_item('Host/ksplice/kernel-cves'))
{
rm_kb_item(name:'Host/uptrack-uname-r');
var cve_list = make_list('CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753');
if (ksplice_cves_check(cve_list))
{
audit(AUDIT_PATCH_INSTALLED, 'KSplice hotfix for RHSA-2024:0113');
}
else
{
__rpm_report = ksplice_reporting_text();
}
}
var constraints = [
{
'repo_relative_urls': [
'content/dist/rhel8/8.10/aarch64/baseos/debug',
'content/dist/rhel8/8.10/aarch64/baseos/os',
'content/dist/rhel8/8.10/aarch64/baseos/source/SRPMS',
'content/dist/rhel8/8.10/aarch64/codeready-builder/debug',
'content/dist/rhel8/8.10/aarch64/codeready-builder/os',
'content/dist/rhel8/8.10/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.10/ppc64le/baseos/debug',
'content/dist/rhel8/8.10/ppc64le/baseos/os',
'content/dist/rhel8/8.10/ppc64le/baseos/source/SRPMS',
'content/dist/rhel8/8.10/ppc64le/codeready-builder/debug',
'content/dist/rhel8/8.10/ppc64le/codeready-builder/os',
'content/dist/rhel8/8.10/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.10/s390x/baseos/debug',
'content/dist/rhel8/8.10/s390x/baseos/os',
'content/dist/rhel8/8.10/s390x/baseos/source/SRPMS',
'content/dist/rhel8/8.10/s390x/codeready-builder/debug',
'content/dist/rhel8/8.10/s390x/codeready-builder/os',
'content/dist/rhel8/8.10/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.10/x86_64/baseos/debug',
'content/dist/rhel8/8.10/x86_64/baseos/os',
'content/dist/rhel8/8.10/x86_64/baseos/source/SRPMS',
'content/dist/rhel8/8.10/x86_64/codeready-builder/debug',
'content/dist/rhel8/8.10/x86_64/codeready-builder/os',
'content/dist/rhel8/8.10/x86_64/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.6/aarch64/baseos/debug',
'content/dist/rhel8/8.6/aarch64/baseos/os',
'content/dist/rhel8/8.6/aarch64/baseos/source/SRPMS',
'content/dist/rhel8/8.6/aarch64/codeready-builder/debug',
'content/dist/rhel8/8.6/aarch64/codeready-builder/os',
'content/dist/rhel8/8.6/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.6/ppc64le/baseos/debug',
'content/dist/rhel8/8.6/ppc64le/baseos/os',
'content/dist/rhel8/8.6/ppc64le/baseos/source/SRPMS',
'content/dist/rhel8/8.6/ppc64le/codeready-builder/debug',
'content/dist/rhel8/8.6/ppc64le/codeready-builder/os',
'content/dist/rhel8/8.6/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.6/s390x/baseos/debug',
'content/dist/rhel8/8.6/s390x/baseos/os',
'content/dist/rhel8/8.6/s390x/baseos/source/SRPMS',
'content/dist/rhel8/8.6/s390x/codeready-builder/debug',
'content/dist/rhel8/8.6/s390x/codeready-builder/os',
'content/dist/rhel8/8.6/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.6/x86_64/baseos/debug',
'content/dist/rhel8/8.6/x86_64/baseos/os',
'content/dist/rhel8/8.6/x86_64/baseos/source/SRPMS',
'content/dist/rhel8/8.6/x86_64/codeready-builder/debug',
'content/dist/rhel8/8.6/x86_64/codeready-builder/os',
'content/dist/rhel8/8.6/x86_64/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.8/aarch64/baseos/debug',
'content/dist/rhel8/8.8/aarch64/baseos/os',
'content/dist/rhel8/8.8/aarch64/baseos/source/SRPMS',
'content/dist/rhel8/8.8/aarch64/codeready-builder/debug',
'content/dist/rhel8/8.8/aarch64/codeready-builder/os',
'content/dist/rhel8/8.8/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.8/ppc64le/baseos/debug',
'content/dist/rhel8/8.8/ppc64le/baseos/os',
'content/dist/rhel8/8.8/ppc64le/baseos/source/SRPMS',
'content/dist/rhel8/8.8/ppc64le/codeready-builder/debug',
'content/dist/rhel8/8.8/ppc64le/codeready-builder/os',
'content/dist/rhel8/8.8/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.8/s390x/baseos/debug',
'content/dist/rhel8/8.8/s390x/baseos/os',
'content/dist/rhel8/8.8/s390x/baseos/source/SRPMS',
'content/dist/rhel8/8.8/s390x/codeready-builder/debug',
'content/dist/rhel8/8.8/s390x/codeready-builder/os',
'content/dist/rhel8/8.8/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.8/x86_64/baseos/debug',
'content/dist/rhel8/8.8/x86_64/baseos/os',
'content/dist/rhel8/8.8/x86_64/baseos/source/SRPMS',
'content/dist/rhel8/8.8/x86_64/codeready-builder/debug',
'content/dist/rhel8/8.8/x86_64/codeready-builder/os',
'content/dist/rhel8/8.8/x86_64/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.9/aarch64/baseos/debug',
'content/dist/rhel8/8.9/aarch64/baseos/os',
'content/dist/rhel8/8.9/aarch64/baseos/source/SRPMS',
'content/dist/rhel8/8.9/aarch64/codeready-builder/debug',
'content/dist/rhel8/8.9/aarch64/codeready-builder/os',
'content/dist/rhel8/8.9/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.9/ppc64le/baseos/debug',
'content/dist/rhel8/8.9/ppc64le/baseos/os',
'content/dist/rhel8/8.9/ppc64le/baseos/source/SRPMS',
'content/dist/rhel8/8.9/ppc64le/codeready-builder/debug',
'content/dist/rhel8/8.9/ppc64le/codeready-builder/os',
'content/dist/rhel8/8.9/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.9/s390x/baseos/debug',
'content/dist/rhel8/8.9/s390x/baseos/os',
'content/dist/rhel8/8.9/s390x/baseos/source/SRPMS',
'content/dist/rhel8/8.9/s390x/codeready-builder/debug',
'content/dist/rhel8/8.9/s390x/codeready-builder/os',
'content/dist/rhel8/8.9/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel8/8.9/x86_64/baseos/debug',
'content/dist/rhel8/8.9/x86_64/baseos/os',
'content/dist/rhel8/8.9/x86_64/baseos/source/SRPMS',
'content/dist/rhel8/8.9/x86_64/codeready-builder/debug',
'content/dist/rhel8/8.9/x86_64/codeready-builder/os',
'content/dist/rhel8/8.9/x86_64/codeready-builder/source/SRPMS',
'content/dist/rhel8/8/aarch64/baseos/debug',
'content/dist/rhel8/8/aarch64/baseos/os',
'content/dist/rhel8/8/aarch64/baseos/source/SRPMS',
'content/dist/rhel8/8/aarch64/codeready-builder/debug',
'content/dist/rhel8/8/aarch64/codeready-builder/os',
'content/dist/rhel8/8/aarch64/codeready-builder/source/SRPMS',
'content/dist/rhel8/8/ppc64le/baseos/debug',
'content/dist/rhel8/8/ppc64le/baseos/os',
'content/dist/rhel8/8/ppc64le/baseos/source/SRPMS',
'content/dist/rhel8/8/ppc64le/codeready-builder/debug',
'content/dist/rhel8/8/ppc64le/codeready-builder/os',
'content/dist/rhel8/8/ppc64le/codeready-builder/source/SRPMS',
'content/dist/rhel8/8/s390x/baseos/debug',
'content/dist/rhel8/8/s390x/baseos/os',
'content/dist/rhel8/8/s390x/baseos/source/SRPMS',
'content/dist/rhel8/8/s390x/codeready-builder/debug',
'content/dist/rhel8/8/s390x/codeready-builder/os',
'content/dist/rhel8/8/s390x/codeready-builder/source/SRPMS',
'content/dist/rhel8/8/x86_64/baseos/debug',
'content/dist/rhel8/8/x86_64/baseos/os',
'content/dist/rhel8/8/x86_64/baseos/source/SRPMS',
'content/dist/rhel8/8/x86_64/codeready-builder/debug',
'content/dist/rhel8/8/x86_64/codeready-builder/os',
'content/dist/rhel8/8/x86_64/codeready-builder/source/SRPMS'
],
'pkgs': [
{'reference':'bpftool-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-core-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-cross-headers-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-debug-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-debug-core-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-debug-devel-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-debug-modules-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-debug-modules-extra-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-devel-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-headers-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402']},
{'reference':'kernel-modules-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-modules-extra-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-tools-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-tools-libs-4.18.0-513.11.1.el8_9', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-tools-libs-4.18.0-513.11.1.el8_9', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-tools-libs-4.18.0-513.11.1.el8_9', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-tools-libs-devel-4.18.0-513.11.1.el8_9', 'cpu':'aarch64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-tools-libs-devel-4.18.0-513.11.1.el8_9', 'cpu':'ppc64le', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-tools-libs-devel-4.18.0-513.11.1.el8_9', 'cpu':'x86_64', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-zfcpdump-4.18.0-513.11.1.el8_9', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-zfcpdump-core-4.18.0-513.11.1.el8_9', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-zfcpdump-devel-4.18.0-513.11.1.el8_9', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-zfcpdump-modules-4.18.0-513.11.1.el8_9', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'kernel-zfcpdump-modules-extra-4.18.0-513.11.1.el8_9', 'cpu':'s390x', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'perf-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']},
{'reference':'python3-perf-4.18.0-513.11.1.el8_9', 'release':'8', 'rpm_spec_vers_cmp':TRUE, 'cves':['CVE-2022-36402', 'CVE-2023-2162', 'CVE-2023-4622', 'CVE-2023-5633', 'CVE-2023-20569', 'CVE-2023-42753']}
]
}
];
var applicable_repo_urls = rhel_determine_applicable_repository_urls(constraints:constraints);
if(applicable_repo_urls == RHEL_REPOS_NO_OVERLAP_MESSAGE) exit(0, RHEL_REPO_NOT_ENABLED);
var flag = 0;
foreach var constraint_array ( constraints ) {
var repo_relative_urls = NULL;
if (!empty_or_null(constraint_array['repo_relative_urls'])) repo_relative_urls = constraint_array['repo_relative_urls'];
foreach var pkg ( constraint_array['pkgs'] ) {
var reference = NULL;
var _release = NULL;
var sp = NULL;
var _cpu = NULL;
var el_string = NULL;
var rpm_spec_vers_cmp = NULL;
var epoch = NULL;
var allowmaj = NULL;
var exists_check = NULL;
var cves = NULL;
if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
if (!empty_or_null(pkg['release'])) _release = 'RHEL' + pkg['release'];
if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
if (reference &&
_release &&
rhel_decide_repo_relative_url_check(required_repo_url_list:repo_relative_urls) &&
(applicable_repo_urls || (!exists_check || rpm_exists(release:_release, rpm:exists_check))) &&
rpm_check(release:_release, sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
}
}
if (flag)
{
var extra = NULL;
if (isnull(applicable_repo_urls) || !applicable_repo_urls) extra = rpm_report_get() + redhat_report_repo_caveat();
else extra = rpm_report_get();
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : extra
);
exit(0);
}
else
{
var tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'bpftool / kernel / kernel-core / kernel-cross-headers / etc');
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| redhat | enterprise_linux | 8 | cpe:/o:redhat:enterprise_linux:8 |
| redhat | enterprise_linux | bpftool | p-cpe:/a:redhat:enterprise_linux:bpftool |
| redhat | enterprise_linux | kernel | p-cpe:/a:redhat:enterprise_linux:kernel |
| redhat | enterprise_linux | kernel-core | p-cpe:/a:redhat:enterprise_linux:kernel-core |
| redhat | enterprise_linux | kernel-cross-headers | p-cpe:/a:redhat:enterprise_linux:kernel-cross-headers |
| redhat | enterprise_linux | kernel-debug | p-cpe:/a:redhat:enterprise_linux:kernel-debug |
| redhat | enterprise_linux | kernel-debug-core | p-cpe:/a:redhat:enterprise_linux:kernel-debug-core |
| redhat | enterprise_linux | kernel-debug-devel | p-cpe:/a:redhat:enterprise_linux:kernel-debug-devel |
| redhat | enterprise_linux | kernel-debug-modules | p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules |
| redhat | enterprise_linux | kernel-debug-modules-extra | p-cpe:/a:redhat:enterprise_linux:kernel-debug-modules-extra |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-36402
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-20569
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-2162
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-42753
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-4622
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-5633
www.nessus.org/u?ffc652b6
access.redhat.com/errata/RHSA-2024:0113
access.redhat.com/security/updates/classification/#important
bugzilla.redhat.com/show_bug.cgi?id=2187773
bugzilla.redhat.com/show_bug.cgi?id=2207625
bugzilla.redhat.com/show_bug.cgi?id=2237760
bugzilla.redhat.com/show_bug.cgi?id=2239843
bugzilla.redhat.com/show_bug.cgi?id=2245663
Related
nessus
nessus
RHEL 8 : kernel-rt (RHSA-2024:0134)
2024-01-10 00:00:00
CentOS 8 : kernel (CESA-2024:0113)
2024-01-10 00:00:00
CentOS 8 : kernel-rt (CESA-2024:0134)
2024-01-10 00:00:00
redhat
redhat
(RHSA-2024:0134) Important: kernel-rt security update
2024-01-10 09:31:44
(RHSA-2024:0113) Important: kernel security update
2024-01-10 09:25:45
(RHSA-2024:0089) Important: kpatch-patch security update
2024-01-09 09:00:48
almalinux
almalinux
Important: kernel security update
2024-01-10 00:00:00
Moderate: linux-firmware security, bug fix, and enhancement update
2023-11-14 00:00:00
osv
osv
Important: kernel-rt security update
2024-01-12 19:57:11
Important: kernel security update
2024-01-10 00:00:00
linux-oem-6.1 vulnerabilities
2023-10-04 20:59:37
rocky
rocky
kernel-rt security update
2024-01-12 19:57:11
oraclelinux
oraclelinux
kernel security update
2024-01-11 00:00:00
Unbreakable Enterprise kernel security update
2023-10-17 00:00:00
linux-firmware security update
2023-08-08 00:00:00
ibm
ibm
openvas
openvas
Ubuntu: Security Advisory (USN-6415-1)
2023-10-05 00:00:00
openSUSE: Security Advisory for kernel (SUSE-SU-2023:3298-1)
2024-03-04 00:00:00
CentOS: Security Advisory for bpftool (CESA-2024:0346)
2024-03-05 00:00:00
cnvd
cnvd
Linux kernel input validation error vulnerability (CNVD-2022-69193)
2022-09-20 00:00:00
Linux kernel elevation of privilege vulnerability (CNVD-2023-70080)
2023-09-11 00:00:00
prion
prion
Integer overflow
2022-09-16 17:15:00
Information disclosure
2023-08-08 18:15:00
Design/Logic Flaw
2023-04-19 20:15:00
ubuntucve
ubuntucve
cbl_mariner
cbl_mariner
CVE-2023-5633 affecting package kernel for versions less than 5.15.153.1-1
2024-04-09 20:48:36
CVE-2023-2162 affecting package kernel 5.10.179.1-1
2023-06-13 20:02:41
CVE-2023-2162 affecting package kernel for versions less than 5.15.111.1-1
2023-05-25 09:38:10
debiancve
debiancve
ubuntu
ubuntu
Linux kernel (OEM) vulnerabilities
2023-10-04 00:00:00
AMD Microcode vulnerability
2023-08-30 00:00:00
cve
cve
redhatcve
redhatcve
xen
xen
x86/AMD: Speculative Return Stack Overflow
2023-08-08 15:53:00
cloudfoundry
cloudfoundry
USN-6319-1: AMD Microcode vulnerability | Cloud Foundry
2023-10-05 00:00:00
mscve
mscve
AMD: CVE-2023-20569 Return Address Predictor
2023-08-08 07:00:00
amd
amd
Return Address Security Bulletin
2023-08-08 00:00:00
hp
hp
AMD Client UEFI Firmware Return Address Security Update
2023-12-07 00:00:00
veracode
veracode
Information Disclosure
2023-08-13 09:11:17
centos
centos
photon
photon
Important Photon OS Security Update - PHSA-2023-5.0-0158
2023-11-28 00:00:00
debian
debian
[SECURITY] [DSA 5475-1] linux security update
2023-08-11 07:57:37
[SECURITY] [DLA 3525-1] linux-5.10 security update
2023-08-11 17:21:29
fedora
fedora
[SECURITY] Fedora 38 Update: kernel-6.4.9-200.fc38
2023-08-10 00:43:18
[SECURITY] Fedora 37 Update: kernel-6.4.9-100.fc37
2023-08-10 00:43:46
[SECURITY] Fedora 38 Update: xen-4.17.2-1.fc38
2023-08-16 01:22:32