Lucene search
This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_11_1_XEN-201004-100220.NASLHistoryMay 26, 2010 - 12:00 a.m.
openSUSE Security Update : xen-201004 (openSUSE-SU-2010:0293-1)
2010-05-2600:00:00
This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
47.1%
Collective Xen 2010/04 Update, containing fixes for the following issues :
bnc#576832 - pygrub, reiserfs: Fix on-disk structure definition bnc#537370 - Xen on SLES 11 does not boot - endless loop in ATA detection bnc#561912 - xend leaks memory bnc#564750 - Keyboard Caps Lock key works abnormal under SLES11 xen guest OS. bnc#548443 - keymap setting not preserved bnc#555152 - ‘NAME’ column in xentop (SLES11) output limited to 10 characters unlike SLES10 bnc#553631 - L3:
diskpart will not run on windows 2008 bnc#548852 - DL585G2 - plug-in PCI cards fail in IO-APIC mode bnc#529195
- xend: disallow ! as a sxp separator bnc#550397 - xend:
bootable flag of VBD not always of type int bnc#545470 - Xen vifname parameter is ignored when using type=ioemu in guest configuration file bnc#541945 - xm create -x command does not work in SLES 10 SP2 or SLES 11 bnc#542525 - VUL-1: xen pygrub vulnerability bnc#481592 and fate#306125 - Virtual machines are not able to boot from CD to allow upgrade to OES2SP1 (sle10 bug) bnc#553633 - Update breaks menu access keys in virt-viewer and still misses some key sequences. (sle10 bug) fate#306720: xen: virt-manager cdrom handling.
bnc#547590 - L3: virt-manager is unable of displaying VNC console on remote hosts bnc#572691 - libvird segfaults when trying to create a kvm guest bnc#573748 - L3: Virsh gives error Device 51712 not connected after updating libvirt modules bnc#548438 - libcmpiutil / libvirt-cim does not properly handle CIM_ prefixed bnc#513921 - Xen doesn’t work get an eror when starting the install processes or starting a pervious installed DomU bnc#526855 - Cannot set MAC address for PV guest in vm-install
#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update xen-201004-2445.
#
# The text description of this plugin is (C) SUSE LLC.
#
include('deprecated_nasl_level.inc');
include('compat.inc');
if (description)
{
script_id(46729);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");
script_cve_id("CVE-2009-3525");
script_name(english:"openSUSE Security Update : xen-201004 (openSUSE-SU-2010:0293-1)");
script_summary(english:"Check for the xen-201004-2445 patch");
script_set_attribute(
attribute:"synopsis",
value:"The remote openSUSE host is missing a security update."
);
script_set_attribute(
attribute:"description",
value:
"Collective Xen 2010/04 Update, containing fixes for the following
issues :
bnc#576832 - pygrub, reiserfs: Fix on-disk structure definition
bnc#537370 - Xen on SLES 11 does not boot - endless loop in ATA
detection bnc#561912 - xend leaks memory bnc#564750 - Keyboard Caps
Lock key works abnormal under SLES11 xen guest OS. bnc#548443 - keymap
setting not preserved bnc#555152 - 'NAME' column in xentop (SLES11)
output limited to 10 characters unlike SLES10 bnc#553631 - L3:
diskpart will not run on windows 2008 bnc#548852 - DL585G2 - plug-in
PCI cards fail in IO-APIC mode bnc#529195
- xend: disallow ! as a sxp separator bnc#550397 - xend:
bootable flag of VBD not always of type int bnc#545470 -
Xen vifname parameter is ignored when using type=ioemu
in guest configuration file bnc#541945 - xm create -x
command does not work in SLES 10 SP2 or SLES 11
bnc#542525 - VUL-1: xen pygrub vulnerability bnc#481592
and fate#306125 - Virtual machines are not able to boot
from CD to allow upgrade to OES2SP1 (sle10 bug)
bnc#553633 - Update breaks menu access keys in
virt-viewer and still misses some key sequences. (sle10
bug) fate#306720: xen: virt-manager cdrom handling.
bnc#547590 - L3: virt-manager is unable of displaying
VNC console on remote hosts bnc#572691 - libvird
segfaults when trying to create a kvm guest bnc#573748 -
L3: Virsh gives error Device 51712 not connected after
updating libvirt modules bnc#548438 - libcmpiutil /
libvirt-cim does not properly handle CIM_ prefixed
bnc#513921 - Xen doesn't work get an eror when starting
the install processes or starting a pervious installed
DomU bnc#526855 - Cannot set MAC address for PV guest in
vm-install"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=481592"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=529195"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=537370"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=541945"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=542525"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=545470"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=547590"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=548438"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=548443"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=548852"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=550397"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=553631"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=553633"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=555152"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=561912"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=564750"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=572691"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=573748"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.novell.com/show_bug.cgi?id=576832"
);
script_set_attribute(
attribute:"see_also",
value:"https://lists.opensuse.org/opensuse-updates/2010-05/msg00028.html"
);
script_set_attribute(
attribute:"solution",
value:"Update the affected xen-201004 packages."
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
script_cwe_id(264);
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libcmpiutil");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libcmpiutil-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libvirt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libvirt-cim");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libvirt-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:libvirt-python");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:virt-manager");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:virt-viewer");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:vm-install");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-devel");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-doc-html");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-doc-pdf");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-debug");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-default");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-pae");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-kmp-trace");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-libs");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-libs-32bit");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools-domU");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:11.1");
script_set_attribute(attribute:"patch_publication_date", value:"2010/02/20");
script_set_attribute(attribute:"plugin_publication_date", value:"2010/05/26");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2010-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE11\.1)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "11.1", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);
flag = 0;
if ( rpm_check(release:"SUSE11.1", reference:"libcmpiutil-0.5-15.18.1") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"libcmpiutil-devel-0.5-15.18.1") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"libvirt-0.4.6-11.16.26") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"libvirt-cim-0.5.2-4.22.92") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"libvirt-devel-0.4.6-11.16.26") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"libvirt-python-0.4.6-11.16.26") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"virt-manager-0.5.3-64.26.26") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"virt-viewer-0.0.3-3.30.27") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"vm-install-0.3.27-0.1.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-3.3.1_18546_24-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-devel-3.3.1_18546_24-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-doc-html-3.3.1_18546_24-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-doc-pdf-3.3.1_18546_24-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-kmp-debug-3.3.1_18546_24_2.6.27.45_0.2-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-kmp-default-3.3.1_18546_24_2.6.27.45_0.2-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-kmp-pae-3.3.1_18546_24_2.6.27.45_0.2-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-kmp-trace-3.3.1_18546_24_2.6.27.45_0.2-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-libs-3.3.1_18546_24-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-tools-3.3.1_18546_24-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", reference:"xen-tools-domU-3.3.1_18546_24-0.4.13") ) flag++;
if ( rpm_check(release:"SUSE11.1", cpu:"x86_64", reference:"xen-libs-32bit-3.3.1_18546_24-0.4.13") ) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "Xen");
}
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-3525
bugzilla.novell.com/show_bug.cgi?id=481592
bugzilla.novell.com/show_bug.cgi?id=529195
bugzilla.novell.com/show_bug.cgi?id=537370
bugzilla.novell.com/show_bug.cgi?id=541945
bugzilla.novell.com/show_bug.cgi?id=542525
bugzilla.novell.com/show_bug.cgi?id=545470
bugzilla.novell.com/show_bug.cgi?id=547590
bugzilla.novell.com/show_bug.cgi?id=548438
bugzilla.novell.com/show_bug.cgi?id=548443
bugzilla.novell.com/show_bug.cgi?id=548852
bugzilla.novell.com/show_bug.cgi?id=550397
bugzilla.novell.com/show_bug.cgi?id=553631
bugzilla.novell.com/show_bug.cgi?id=553633
bugzilla.novell.com/show_bug.cgi?id=555152
bugzilla.novell.com/show_bug.cgi?id=561912
bugzilla.novell.com/show_bug.cgi?id=564750
bugzilla.novell.com/show_bug.cgi?id=572691
bugzilla.novell.com/show_bug.cgi?id=573748
bugzilla.novell.com/show_bug.cgi?id=576832
lists.opensuse.org/opensuse-updates/2010-05/msg00028.html
Related
cvelist
cvelist
CVE-2009-3525
2009-10-05 19:00:00
openvas
openvas
CentOS Update for xen CESA-2009:1472 centos5 i386
2011-08-09 00:00:00
RedHat Security Advisory RHSA-2009:1472
2009-10-06 00:00:00
Oracle: Security Advisory (ELSA-2009-1472)
2015-10-08 00:00:00
cve
cve
CVE-2009-3525
2009-10-05 19:30:00
nessus
nessus
Scientific Linux Security Update : xen on SL5.x i386/x86_64
2012-08-01 00:00:00
SuSE 11 Security Update : Xen (SAT Patch Number 2230)
2010-12-02 00:00:00
RHEL 5 : xen (RHSA-2009:1472)
2009-10-02 00:00:00
ubuntucve
ubuntucve
CVE-2009-3525
2009-10-05 00:00:00
oraclelinux
oraclelinux
xen security and bug fix update
2009-10-01 00:00:00
prion
prion
Design/Logic Flaw
2009-10-05 19:30:00
veracode
veracode
Privilege Escalation
2020-04-10 00:38:08
centos
centos
xen security update
2009-10-30 14:44:02
redhat
redhat
(RHSA-2009:1472) Moderate: xen security and bug fix update
2009-10-01 00:00:00
nvd
nvd
CVE-2009-3525
2009-10-05 19:30:00
exploitdb
exploitdb
Xen 3.x - pygrub Local Authentication Bypass
2009-09-25 00:00:00
CVSS2
7.2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.001
Percentile
47.1%
Related for SUSE_11_1_XEN-201004-100220.NASL