Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20140325_KERNEL_ON_SL6_X.NASL
HistoryMar 26, 2014 - 12:00 a.m.

Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20140325)

2014-03-2600:00:00
This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
33
JSON

  • A flaw was found in the way the get_rx_bufs() function in the vhost_net implementation in the Linux kernel handled error conditions reported by the vhost_get_vq_desc() function. A privileged guest user could use this flaw to crash the host. (CVE-2014-0055, Important)

  • A flaw was found in the way the Linux kernel processed an authenticated COOKIE_ECHO chunk during the initialization of an SCTP connection. A remote attacker could use this flaw to crash the system by initiating a specially crafted SCTP handshake in order to trigger a NULL pointer dereference on the system. (CVE-2014-0101, Important)

  • A flaw was found in the way the Linux kernel’s CIFS implementation handled uncached write operations with specially crafted iovec structures. An unprivileged local user with access to a CIFS share could use this flaw to crash the system, leak kernel memory, or, potentially, escalate their privileges on the system. Note: the default cache settings for CIFS mounts on Scientific Linux 6 prohibit a successful exploitation of this issue. (CVE-2014-0069, Moderate)

  • A heap-based buffer overflow flaw was found in the Linux kernel’s cdc- wdm driver, used for USB CDC WCM device management. An attacker with physical access to a system could use this flaw to cause a denial of service or, potentially, escalate their privileges. (CVE-2013-1860, Low)

The system must be rebooted for this update to take effect.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(73200);
  script_version("1.6");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2013-1860", "CVE-2014-0055", "CVE-2014-0069", "CVE-2014-0101");

  script_name(english:"Scientific Linux Security Update : kernel on SL6.x i386/x86_64 (20140325)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis",
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description",
    value:
"* A flaw was found in the way the get_rx_bufs() function in the
vhost_net implementation in the Linux kernel handled error conditions
reported by the vhost_get_vq_desc() function. A privileged guest user
could use this flaw to crash the host. (CVE-2014-0055, Important)

* A flaw was found in the way the Linux kernel processed an
authenticated COOKIE_ECHO chunk during the initialization of an SCTP
connection. A remote attacker could use this flaw to crash the system
by initiating a specially crafted SCTP handshake in order to trigger a
NULL pointer dereference on the system. (CVE-2014-0101, Important)

* A flaw was found in the way the Linux kernel's CIFS implementation
handled uncached write operations with specially crafted iovec
structures. An unprivileged local user with access to a CIFS share
could use this flaw to crash the system, leak kernel memory, or,
potentially, escalate their privileges on the system. Note: the
default cache settings for CIFS mounts on Scientific Linux 6 prohibit
a successful exploitation of this issue. (CVE-2014-0069, Moderate)

* A heap-based buffer overflow flaw was found in the Linux kernel's
cdc- wdm driver, used for USB CDC WCM device management. An attacker
with physical access to a system could use this flaw to cause a denial
of service or, potentially, escalate their privileges. (CVE-2013-1860,
Low)

The system must be rebooted for this update to take effect."
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1403&L=scientific-linux-errata&T=0&P=2449
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?6ae65dfb"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-abi-whitelists");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debug");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debug-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debug-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo-common-i686");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo-common-x86_64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-firmware");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:perf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:perf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:python-perf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:python-perf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/03/22");
  script_set_attribute(attribute:"patch_publication_date", value:"2014/03/25");
  script_set_attribute(attribute:"plugin_publication_date", value:"2014/03/26");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2014-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^6([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 6.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL6", reference:"kernel-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-abi-whitelists-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-debug-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-debug-debuginfo-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-debug-devel-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-debuginfo-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", cpu:"i386", reference:"kernel-debuginfo-common-i686-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", cpu:"x86_64", reference:"kernel-debuginfo-common-x86_64-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-devel-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-doc-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-firmware-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"kernel-headers-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"perf-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"perf-debuginfo-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"python-perf-2.6.32-431.11.2.el6")) flag++;
if (rpm_check(release:"SL6", reference:"python-perf-debuginfo-2.6.32-431.11.2.el6")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel / kernel-abi-whitelists / kernel-debug / etc");
}
VendorProductVersionCPE
fermilabscientific_linuxkernelp-cpe:/a:fermilab:scientific_linux:kernel
fermilabscientific_linuxkernel-abi-whitelistsp-cpe:/a:fermilab:scientific_linux:kernel-abi-whitelists
fermilabscientific_linuxkernel-debugp-cpe:/a:fermilab:scientific_linux:kernel-debug
fermilabscientific_linuxkernel-debug-debuginfop-cpe:/a:fermilab:scientific_linux:kernel-debug-debuginfo
fermilabscientific_linuxkernel-debug-develp-cpe:/a:fermilab:scientific_linux:kernel-debug-devel
fermilabscientific_linuxkernel-debuginfop-cpe:/a:fermilab:scientific_linux:kernel-debuginfo
fermilabscientific_linuxkernel-debuginfo-common-i686p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo-common-i686
fermilabscientific_linuxkernel-debuginfo-common-x86_64p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo-common-x86_64
fermilabscientific_linuxkernel-develp-cpe:/a:fermilab:scientific_linux:kernel-devel
fermilabscientific_linuxkernel-docp-cpe:/a:fermilab:scientific_linux:kernel-doc
Rows per page:
1-10 of 171

Related

openvas 64
altlinux 2
oraclelinux 5
nessus 43
redhat 6
centos 1
mageia 11
veracode 5
cve 4
seebug 2
debiancve 4
prion 4
ubuntucve 4
checkpoint_advisories 1
f5 2
amazon 3
cbl_mariner 1
ubuntu 20
securityvulns 4
fedora 7
suse 6
openvas
openvas
RedHat Update for kernel RHSA-2014:0328-01
2014-04-03 00:00:00
Oracle Linux Local Check: ELSA-2014-0328
2015-10-06 00:00:00
RedHat Update for kernel RHSA-2014:0328-01
2014-04-03 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt20
2014-03-26 00:00:00
Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt22
2014-05-09 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2014-03-25 00:00:00
unbreakable enterprise kernel security update
2014-03-26 00:00:00
unbreakable enterprise kernel security update
2014-03-26 00:00:00
nessus
nessus
Oracle Linux 6 : unbreakable enterprise kernel (ELSA-2014-3014)
2014-03-27 00:00:00
RHEL 6 : kernel (RHSA-2014:0328)
2014-03-26 00:00:00
Oracle Linux 6 : kernel (ELSA-2014-0328)
2014-03-26 00:00:00
redhat
redhat
(RHSA-2014:0328) Important: kernel security and bug fix update
2014-03-25 00:00:00
(RHSA-2014:0339) Important: rhev-hypervisor6 security update
2014-03-31 00:00:00
(RHSA-2014:0432) Important: kernel security and bug fix update
2014-04-24 00:00:00
centos
centos
kernel, perf, python security update
2014-03-25 21:39:34
mageia
mageia
Updated kernel-linus packages fixes multiple bugs and vulnerabilities
2014-05-09 01:51:33
Updated kernel-rt packages fixes multiple bugs and vulneraabilities
2014-05-09 01:55:53
Updated kernel packages fixes multiple bugs and vulnerabilities
2014-05-09 01:48:19
veracode
veracode
Arbitrary Code Execution
2019-05-02 04:54:56
Sensitive Information Disclosure
2019-05-02 04:57:44
Sensitive Information Disclosure
2019-05-02 04:57:44
cve
cve
CVE-2013-1860
2013-03-22 11:59:00
CVE-2014-0069
2014-02-28 06:18:00
CVE-2014-0101
2014-03-11 13:01:00
seebug
seebug
Linux Kernel 'cdc-wdm' USB设备驱动程序堆缓冲区溢出漏洞
2013-03-19 00:00:00
Linux kernel get_rx_bufs函数拒绝服务漏洞
2014-03-27 00:00:00
debiancve
debiancve
CVE-2013-1860
2013-03-22 11:59:00
CVE-2014-0055
2014-03-26 14:55:00
CVE-2014-0101
2014-03-11 13:01:00
prion
prion
Heap overflow
2013-03-22 11:59:00
Memory corruption
2014-02-28 06:18:00
Null pointer dereference
2014-03-11 13:01:00
ubuntucve
ubuntucve
CVE-2013-1860
2013-03-22 00:00:00
CVE-2014-0055
2014-03-26 00:00:00
CVE-2014-0069
2014-02-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Linux Kernel SCTP Handshake Denial of Service (CVE-2014-0101)
2014-12-08 00:00:00
f5
f5
K15317 : Linux kernel vulnerability CVE-2014-0101
2015-03-04 00:00:00
SOL15317 - Linux kernel vulnerability CVE-2014-0101
2014-06-05 00:00:00
amazon
amazon
Low: kernel
2014-03-24 23:39:00
Medium: kernel
2014-04-22 10:53:00
Medium: kernel
2014-02-26 14:26:00
cbl_mariner
cbl_mariner
CVE-2014-0069 affecting package kernel 5.15.148.2-1
2024-02-25 03:00:06
ubuntu
ubuntu
Linux kernel (EC2) vulnerabilities
2014-04-26 00:00:00
Linux kernel vulnerabilities
2014-04-26 00:00:00
Linux kernel vulnerabilities
2014-04-26 00:00:00
securityvulns
securityvulns
[USN-2173-1] Linux kernel vulnerabilities
2014-05-04 00:00:00
[USN-2179-1] Linux kernel vulnerabilities
2014-05-04 00:00:00
Linux kernel multiple security vulnerabilities
2014-05-29 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: kernel-3.13.8-200.fc20
2014-04-04 09:46:22
[SECURITY] Fedora 20 Update: kernel-3.13.9-200.fc20
2014-04-09 00:58:17
[SECURITY] Fedora 20 Update: kernel-3.13.5-202.fc20
2014-03-06 08:10:04
suse
suse
Security update for Linux Kernel (important)
2014-03-28 02:04:16
Security update for Linux kernel (important)
2014-04-16 01:05:16
kernel: security and bugfix update (important)
2014-05-19 14:04:14
JSON
Related for SL_20140325_KERNEL_ON_SL6_X.NASL
openvas64altlinux2oraclelinux5nessus43redhat6centos1mageia11veracode5cve4seebug2debiancve4prion4ubuntucve4checkpoint_advisories1f52amazon3cbl_mariner1ubuntu20securityvulns4fedora7suse6