Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.SL_20190314_KERNEL_ON_SL7_X.NASL
HistoryMar 18, 2019 - 12:00 a.m.

Scientific Linux Security Update : kernel on SL7.x x86_64 (20190314)

2019-03-1800:00:00
This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
JSON

Security Fix(es) :

  • kernel: Memory corruption due to incorrect socket cloning (CVE-2018-9568)

  • kernel: Unprivileged users able to inspect kernel stacks of arbitrary tasks (CVE-2018-17972)

  • kernel: Faulty computation of numberic bounds in the BPF verifier (CVE-2018-18445)

Bug Fix(es) and Enhancement(s) :

  • kernel fuse invalidates cached attributes during reads

  • [NetApp-FC-NVMe] SL7.6: nvme reset gets hung indefinitely

  • Memory reclaim deadlock calling __sock_create() after memalloc_noio_save()

  • hardened usercopy is causing crash

  • Backport: xfrm: policy: init locks early

  • AWS m5 instance type loses NVMe mounted volumes [was:
    Unable to Mount StatefulSet PV in AWS EBS]

  • SL 7.6 running on a VirtualBox guest with a GUI has a mouse problem

  • Kernel bug report in cgroups on heavily contested 3.10 node

  • [PCIe] SHPC probe crash on Non-ACPI/Non-SHPC ports

  • [Cavium 7.7 Feat] qla2xxx: Update to latest upstream.

  • Regression in lpfc and the CNE1000 (BE2 FCoE) adapters that no longer initialize

  • [csiostor] call trace after command: modprobe csiostor

  • libceph: fall back to sendmsg for slab pages

  • Deadlock between stop_one_cpu_nowait() and stop_two_cpus()

  • Soft lockups occur when the sd driver passes a device size of 1 sector to string_get_size()

  • [SL7.7] BUG: unable to handle kernel paging request at ffffffffffffffff

  • SL7.6 - powerpc/pseries: Disable CPU hotplug across migrations / powerpc/rtas: Fix a potential race between CPU-Offline & Migration (LPM)

  • blk-mq: fix corruption with direct issue

  • [SL7][patch] iscsi driver can block reboot/shutdown

  • [DELL EMC 7.6 BUG] Unable to create-namespace over Dell NVDIMM-N

  • efi_bgrt_init fails to ioremap error during boot

  • Unable to mount a share on kernel- 3.10.0-957.el7. The share can be mounted on kernel-3.10.0-862.14.4.el7

  • System crash with RIP nfs_readpage_async+0x43 – BUG:
    unable to handle kernel NULL pointer dereference

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text is (C) Scientific Linux.
#

include("compat.inc");

if (description)
{
  script_id(122887);
  script_version("1.3");
  script_set_attribute(attribute:"plugin_modification_date", value:"2020/02/24");

  script_cve_id("CVE-2018-17972", "CVE-2018-18445", "CVE-2018-9568");

  script_name(english:"Scientific Linux Security Update : kernel on SL7.x x86_64 (20190314)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Scientific Linux host is missing one or more security
updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Security Fix(es) :

  - kernel: Memory corruption due to incorrect socket
    cloning (CVE-2018-9568)

  - kernel: Unprivileged users able to inspect kernel stacks
    of arbitrary tasks (CVE-2018-17972)

  - kernel: Faulty computation of numberic bounds in the BPF
    verifier (CVE-2018-18445)

Bug Fix(es) and Enhancement(s) :

  - kernel fuse invalidates cached attributes during reads

  - [NetApp-FC-NVMe] SL7.6: nvme reset gets hung
    indefinitely

  - Memory reclaim deadlock calling __sock_create() after
    memalloc_noio_save()

  - hardened usercopy is causing crash

  - Backport: xfrm: policy: init locks early

  - AWS m5 instance type loses NVMe mounted volumes [was:
    Unable to Mount StatefulSet PV in AWS EBS]

  - SL 7.6 running on a VirtualBox guest with a GUI has a
    mouse problem

  - Kernel bug report in cgroups on heavily contested 3.10
    node

  - [PCIe] SHPC probe crash on Non-ACPI/Non-SHPC ports

  - [Cavium 7.7 Feat] qla2xxx: Update to latest upstream.

  - Regression in lpfc and the CNE1000 (BE2 FCoE) adapters
    that no longer initialize

  - [csiostor] call trace after command: modprobe csiostor

  - libceph: fall back to sendmsg for slab pages

  - Deadlock between stop_one_cpu_nowait() and
    stop_two_cpus()

  - Soft lockups occur when the sd driver passes a device
    size of 1 sector to string_get_size()

  - [SL7.7] BUG: unable to handle kernel paging request at
    ffffffffffffffff

  - SL7.6 - powerpc/pseries: Disable CPU hotplug across
    migrations / powerpc/rtas: Fix a potential race between
    CPU-Offline & Migration (LPM)

  - blk-mq: fix corruption with direct issue

  - [SL7][patch] iscsi driver can block reboot/shutdown

  - [DELL EMC 7.6 BUG] Unable to create-namespace over Dell
    NVDIMM-N

  - efi_bgrt_init fails to ioremap error during boot

  - Unable to mount a share on kernel- 3.10.0-957.el7. The
    share can be mounted on kernel-3.10.0-862.14.4.el7

  - System crash with RIP nfs_readpage_async+0x43 -- BUG:
    unable to handle kernel NULL pointer dereference"
  );
  # https://listserv.fnal.gov/scripts/wa.exe?A2=ind1903&L=SCIENTIFIC-LINUX-ERRATA&P=6389
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?a3da7026"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:bpftool");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-abi-whitelists");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debug");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debug-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debug-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo-common-x86_64");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-headers");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-tools-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-tools-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:kernel-tools-libs-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:perf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:perf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:python-perf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:fermilab:scientific_linux:python-perf-debuginfo");
  script_set_attribute(attribute:"cpe", value:"x-cpe:/o:fermilab:scientific_linux");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/10/03");
  script_set_attribute(attribute:"patch_publication_date", value:"2019/03/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2019/03/18");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2019-2020 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Scientific Linux Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/RedHat/release", "Host/RedHat/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("misc_func.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/RedHat/release");
if (isnull(release) || "Scientific Linux " >!< release) audit(AUDIT_HOST_NOT, "running Scientific Linux");
os_ver = pregmatch(pattern: "Scientific Linux.*release ([0-9]+(\.[0-9]+)?)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "Scientific Linux");
os_ver = os_ver[1];
if (! preg(pattern:"^7([^0-9]|$)", string:os_ver)) audit(AUDIT_OS_NOT, "Scientific Linux 7.x", "Scientific Linux " + os_ver);
if (!get_kb_item("Host/RedHat/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu >!< "x86_64" && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Scientific Linux", cpu);


flag = 0;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"bpftool-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", reference:"kernel-abi-whitelists-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-debug-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-debug-debuginfo-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-debug-devel-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-debuginfo-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-debuginfo-common-x86_64-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-devel-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", reference:"kernel-doc-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-headers-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-tools-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-tools-debuginfo-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-tools-libs-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"kernel-tools-libs-devel-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"perf-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"perf-debuginfo-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"python-perf-3.10.0-957.10.1.el7")) flag++;
if (rpm_check(release:"SL7", cpu:"x86_64", reference:"python-perf-debuginfo-3.10.0-957.10.1.el7")) flag++;


if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "bpftool / kernel / kernel-abi-whitelists / kernel-debug / etc");
}
VendorProductVersionCPE
fermilabscientific_linuxbpftoolp-cpe:/a:fermilab:scientific_linux:bpftool
fermilabscientific_linuxkernelp-cpe:/a:fermilab:scientific_linux:kernel
fermilabscientific_linuxkernel-abi-whitelistsp-cpe:/a:fermilab:scientific_linux:kernel-abi-whitelists
fermilabscientific_linuxkernel-debugp-cpe:/a:fermilab:scientific_linux:kernel-debug
fermilabscientific_linuxkernel-debug-debuginfop-cpe:/a:fermilab:scientific_linux:kernel-debug-debuginfo
fermilabscientific_linuxkernel-debug-develp-cpe:/a:fermilab:scientific_linux:kernel-debug-devel
fermilabscientific_linuxkernel-debuginfop-cpe:/a:fermilab:scientific_linux:kernel-debuginfo
fermilabscientific_linuxkernel-debuginfo-common-x86_64p-cpe:/a:fermilab:scientific_linux:kernel-debuginfo-common-x86_64
fermilabscientific_linuxkernel-develp-cpe:/a:fermilab:scientific_linux:kernel-devel
fermilabscientific_linuxkernel-docp-cpe:/a:fermilab:scientific_linux:kernel-doc
Rows per page:
1-10 of 201

Related

redhat 12
centos 3
nessus 80
oraclelinux 9
openvas 32
ibm 3
ubuntu 12
veracode 3
cve 3
debiancve 3
redhatcve 3
prion 3
ubuntucve 3
f5 2
archlinux 2
virtuozzo 5
fedora 7
googleprojectzero 2
amazon 2
mageia 3
cloudfoundry 3
suse 3
photon 1
redhat
redhat
(RHSA-2019:0514) Important: kernel-rt security and bug fix update
2019-03-12 16:33:04
(RHSA-2019:0512) Important: kernel security, bug fix, and enhancement update
2019-03-13 20:35:29
(RHSA-2019:4056) Important: kernel security update
2019-12-03 07:55:12
centos
centos
bpftool, kernel, perf, python security update
2019-03-19 14:31:04
kernel, perf, python security update
2019-09-17 22:02:45
kernel, perf, python security update
2019-08-16 21:55:43
nessus
nessus
RHEL 7 : kernel-rt (RHSA-2019:0514)
2019-03-14 00:00:00
Oracle Linux 7 : kernel (ELSA-2019-0512)
2019-03-15 00:00:00
CentOS 7 : kernel (CESA-2019:0512)
2019-03-20 00:00:00
oraclelinux
oraclelinux
kernel security, bug fix, and enhancement update
2019-03-13 00:00:00
Unbreakable Enterprise kernel security update
2019-03-12 00:00:00
Unbreakable Enterprise kernel security update
2019-02-06 00:00:00
openvas
openvas
CentOS Update for kernel CESA-2019:0512 centos7
2019-03-21 00:00:00
Ubuntu Update for linux USN-3880-1
2019-02-05 00:00:00
Fedora Update for kernel-headers FEDORA-2018-ec3bf1b228
2019-05-07 00:00:00
ibm
ibm
Security Bulletin: IBM QRadar Network Security is affected by Linux kernel vulnerabilities (CVE-2019-7221, CVE-2019-6974, CVE-2018-17972, CVE-2018-9568)
2019-06-27 08:45:01
Security Bulletin: IBM Security QRadar Packet Capture is vulnerable to Using Components with Known Vulnerabilities
2020-10-28 17:16:55
Security Bulletin: Vulnerabilities in the Linux Kernel affect PowerKVM
2019-05-17 16:05:02
ubuntu
ubuntu
Linux kernel vulnerabilities
2019-02-04 00:00:00
Linux kernel (Trusty HWE) vulnerabilities
2019-02-04 00:00:00
Linux kernel (AWS) vulnerabilities
2018-11-30 00:00:00
veracode
veracode
Out-Of-Bounds Read
2019-05-16 03:58:18
Privilege Escalation
2019-05-16 03:58:18
Information Disclosure
2019-05-16 03:58:18
cve
cve
CVE-2018-18445
2018-10-17 19:29:00
CVE-2018-9568
2018-12-06 14:29:00
CVE-2018-17972
2018-10-03 22:29:00
debiancve
debiancve
CVE-2018-18445
2018-10-17 19:29:00
CVE-2018-17972
2018-10-03 22:29:00
CVE-2018-9568
2018-12-06 14:29:00
redhatcve
redhatcve
CVE-2018-18445
2020-04-01 14:07:09
CVE-2018-9568
2020-04-06 23:05:01
CVE-2018-17972
2020-04-08 22:15:56
prion
prion
Design/Logic Flaw
2018-10-17 19:29:00
Stack overflow
2018-10-03 22:29:00
Type confusion
2018-12-06 14:29:00
ubuntucve
ubuntucve
CVE-2018-18445
2018-10-17 00:00:00
CVE-2018-9568
2018-12-06 00:00:00
CVE-2018-17972
2018-10-03 00:00:00
f5
f5
K38456756 : Kernel vulnerability CVE-2018-18445
2019-04-08 00:00:00
K27673650 : Linux kernel vulnerability CVE-2018-17972
2019-02-12 00:00:00
archlinux
archlinux
[ASA-201811-2] linux-lts: denial of service
2018-11-01 00:00:00
[ASA-201811-1] linux: denial of service
2018-11-01 00:00:00
virtuozzo
virtuozzo
Important kernel security update: Virtuozzo ReadyKernel patch 68.2 for Virtuozzo 7.0.4 HF3 to 7.0.8 HF1
2018-12-17 00:00:00
Important kernel security update: New kernel 2.6.32-042stab134.8 for Virtuozzo Containers for Linux 4.7, Server Bare Metal 5.0
2018-12-12 00:00:00
Important kernel security update: New kernel 2.6.32-042stab134.8; Virtuozzo 6.0 Update 12 Hotfix 35 (6.0.12-3729)
2018-12-12 00:00:00
fedora
fedora
[SECURITY] Fedora 29 Update: kernel-4.18.13-300.fc29
2018-10-30 17:45:14
[SECURITY] Fedora 27 Update: kernel-headers-4.18.13-100.fc27
2018-10-16 12:10:24
[SECURITY] Fedora 28 Update: kernel-headers-4.18.13-200.fc28
2018-10-14 23:43:25
googleprojectzero
googleprojectzero
Mitigations are attack surface, too
2020-02-12 00:00:00
In-the-Wild Series: Android Exploits
2021-01-12 00:00:00
amazon
amazon
Important: kernel
2018-11-05 19:47:00
Medium: kernel
2018-11-07 21:58:00
mageia
mageia
Updated kernel packages fix security vulnerabilities
2018-10-27 12:45:46
Updated kernel-tmb packages fix security vulnerabilities
2018-10-27 12:45:46
Updated kernel-linus packages fix security vulnerabilities
2018-10-27 12:45:46
cloudfoundry
cloudfoundry
USN-3847-2: Linux kernel (HWE) vulnerabilities | Cloud Foundry
2019-01-24 00:00:00
USN-3821-2: Linux kernel (Xenial HWE) vulnerabilities | Cloud Foundry
2018-11-20 00:00:00
USN-3871-4: Linux kernel (HWE) vulnerabilities | Cloud Foundry
2019-02-15 00:00:00
suse
suse
Security update for the Linux Kernel (important)
2018-11-07 21:11:37
Security update for the Linux Kernel (important)
2019-02-06 00:00:00
Security update for the Linux Kernel (important)
2019-01-18 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2018-0190
2018-09-25 00:00:00
JSON
Related for SL_20190314_KERNEL_ON_SL7_X.NASL
redhat12centos3nessus80oraclelinux9openvas32ibm3ubuntu12veracode3cve3debiancve3redhatcve3prion3ubuntucve3f52archlinux2virtuozzo5fedora7googleprojectzero2amazon2mageia3cloudfoundry3suse3photon1