Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2015-2021 Tenable Network Security, Inc.SUSE_11_KVM-LIBVIRT-201412-150123.NASL
HistoryFeb 24, 2015 - 12:00 a.m.

SuSE 11.3 Security Update : kvm and libvirt (SAT Patch Number 10222)

2015-02-2400:00:00
This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.
www.tenable.com
23
JSON

This collective update for KVM and libvirt provides fixes for security and non-security issues.

kvm :

  • Fix NULL pointer dereference because of uninitialized UDP socket. (bsc#897654, CVE-2014-3640)

  • Fix performance degradation after migration.
    (bsc#878350)

  • Fix potential image corruption due to missing FIEMAP_FLAG_SYNC flag in FS_IOC_FIEMAP ioctl.
    (bsc#908381)

  • Add validate hex properties for qdev. (bsc#852397)

  • Add boot option to do strict boot (bsc#900084)

  • Add query-command-line-options QMP command. (bsc#899144)

  • Fix incorrect return value of migrate_cancel.
    (bsc#843074)

  • Fix insufficient parameter validation during ram load.
    (bsc#905097, CVE-2014-7840)

  • Fix insufficient blit region checks in qemu/cirrus.
    (bsc#907805, CVE-2014-8106) libvirt :

  • Fix security hole with migratable flag in dumpxml.
    (bsc#904176, CVE-2014-7823)

  • Fix domain deadlock. (bsc#899484, CVE-2014-3657)

  • Use correct definition when looking up disk in qemu blkiotune. (bsc#897783, CVE-2014-3633)

  • Fix undefined symbol when starting virtlockd.
    (bsc#910145)

  • Add ‘-boot strict’ to qemu’s commandline whenever possible. (bsc#900084)

  • Add support for ‘reboot-timeout’ in qemu. (bsc#899144)

  • Increase QEMU’s monitor timeout to 30sec. (bsc#911742)

  • Allow setting QEMU’s migration max downtime any time.
    (bsc#879665)

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were  
# extracted from SuSE 11 update information. The text itself is
# copyright (C) Novell, Inc.
#

if (NASL_LEVEL < 3000) exit(0);

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(81480);
  script_version("1.2");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/06");

  script_cve_id("CVE-2014-3633", "CVE-2014-3640", "CVE-2014-3657", "CVE-2014-7823", "CVE-2014-7840", "CVE-2014-8106");

  script_name(english:"SuSE 11.3 Security Update : kvm and libvirt (SAT Patch Number 10222)");
  script_summary(english:"Checks rpm output for the updated packages");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SuSE 11 host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This collective update for KVM and libvirt provides fixes for security
and non-security issues.

kvm :

  - Fix NULL pointer dereference because of uninitialized
    UDP socket. (bsc#897654, CVE-2014-3640)

  - Fix performance degradation after migration.
    (bsc#878350)

  - Fix potential image corruption due to missing
    FIEMAP_FLAG_SYNC flag in FS_IOC_FIEMAP ioctl.
    (bsc#908381)

  - Add validate hex properties for qdev. (bsc#852397)

  - Add boot option to do strict boot (bsc#900084)

  - Add query-command-line-options QMP command. (bsc#899144)

  - Fix incorrect return value of migrate_cancel.
    (bsc#843074)

  - Fix insufficient parameter validation during ram load.
    (bsc#905097, CVE-2014-7840)

  - Fix insufficient blit region checks in qemu/cirrus.
    (bsc#907805, CVE-2014-8106) libvirt :

  - Fix security hole with migratable flag in dumpxml.
    (bsc#904176, CVE-2014-7823)

  - Fix domain deadlock. (bsc#899484, CVE-2014-3657)

  - Use correct definition when looking up disk in qemu
    blkiotune. (bsc#897783, CVE-2014-3633)

  - Fix undefined symbol when starting virtlockd.
    (bsc#910145)

  - Add '-boot strict' to qemu's commandline whenever
    possible. (bsc#900084)

  - Add support for 'reboot-timeout' in qemu. (bsc#899144)

  - Increase QEMU's monitor timeout to 30sec. (bsc#911742)

  - Allow setting QEMU's migration max downtime any time.
    (bsc#879665)"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=843074"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=852397"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=878350"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=879665"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=897654"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=897783"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=899144"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=899484"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=900084"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=904176"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=905097"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=907805"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=908381"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=910145"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.novell.com/show_bug.cgi?id=911742"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-3633.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-3640.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-3657.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-7823.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-7840.html"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"http://support.novell.com/security/cve/CVE-2014-8106.html"
  );
  script_set_attribute(attribute:"solution", value:"Apply SAT patch number 10222.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:kvm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libvirt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libvirt-client");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libvirt-client-32bit");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libvirt-doc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libvirt-lock-sanlock");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:11:libvirt-python");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:11");

  script_set_attribute(attribute:"patch_publication_date", value:"2015/01/23");
  script_set_attribute(attribute:"plugin_publication_date", value:"2015/02/24");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2015-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)11") audit(AUDIT_OS_NOT, "SuSE 11");
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SuSE 11", cpu);

pl = get_kb_item("Host/SuSE/patchlevel");
if (isnull(pl) || int(pl) != 3) audit(AUDIT_OS_NOT, "SuSE 11.3");


flag = 0;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"kvm-1.4.2-0.21.4")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"libvirt-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"libvirt-client-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"libvirt-doc-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"i586", reference:"libvirt-python-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"kvm-1.4.2-0.21.4")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libvirt-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libvirt-client-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libvirt-client-32bit-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libvirt-doc-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLED11", sp:3, cpu:"x86_64", reference:"libvirt-python-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"i586", reference:"kvm-1.4.2-0.21.4")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"i586", reference:"libvirt-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"i586", reference:"libvirt-client-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"i586", reference:"libvirt-doc-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"i586", reference:"libvirt-lock-sanlock-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"i586", reference:"libvirt-python-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"kvm-1.4.2-0.21.4")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"libvirt-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"libvirt-client-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"libvirt-client-32bit-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"libvirt-doc-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"libvirt-lock-sanlock-1.0.5.9-0.19.3")) flag++;
if (rpm_check(release:"SLES11", sp:3, cpu:"x86_64", reference:"libvirt-python-1.0.5.9-0.19.3")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else audit(AUDIT_HOST_NOT, "affected");
VendorProductVersionCPE
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:kvm
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libvirt
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libvirt-client
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libvirt-client-32bit
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libvirt-doc
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libvirt-lock-sanlock
novellsuse_linux11p-cpe:/a:novell:suse_linux:11:libvirt-python
novellsuse_linux11cpe:/o:novell:suse_linux:11

References

Related

openvas 48
nessus 48
oraclelinux 6
redhat 10
centos 5
mageia 3
securityvulns 7
altlinux 2
fedora 10
gentoo 3
veracode 7
cvelist 6
cve 6
debiancve 6
prion 6
ubuntucve 7
debian 4
archlinux 1
f5 4
osv 10
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2015:0357-1)
2021-06-09 00:00:00
CentOS Update for libvirt CESA-2014:1873 centos6
2014-11-20 00:00:00
Oracle: Security Advisory (ELSA-2014-1873)
2015-10-06 00:00:00
nessus
nessus
SuSE 11.3 Security Update : kvm and libvirt (SAT Patch Number 10222)
2015-02-24 00:00:00
Fedora 20 : libvirt-1.1.3.8-1.fc20 (2014-15228)
2014-11-24 00:00:00
RHEL 6 : libvirt (RHSA-2014:1873)
2014-11-19 00:00:00
oraclelinux
oraclelinux
libvirt security and bug fix update
2014-11-18 00:00:00
libvirt security and bug fix update
2014-10-01 00:00:00
libvirt security, bug fix, and enhancement update
2015-03-11 00:00:00
redhat
redhat
(RHSA-2014:1873) Moderate: libvirt security and bug fix update
2014-11-18 00:00:00
(RHSA-2015:0349) Important: qemu-kvm security, bug fix, and enhancement update
2015-03-05 00:00:00
(RHSA-2015:0624) Important: qemu-kvm-rhev security, bug fix, and enhancement update
2015-03-05 09:19:16
centos
centos
libvirt security update
2014-11-18 18:46:17
libcacard, qemu security update
2015-03-17 13:29:43
libvirt security update
2014-10-03 18:13:17
mageia
mageia
Updated qemu packages fix security vulnerabilities
2014-12-13 23:16:05
Updated libvirt packages fix security vulnerbilities
2014-10-07 13:22:51
Updated libvirt packages fix security vulnerability
2014-11-21 15:44:16
securityvulns
securityvulns
libvirt information leakage
2014-11-24 00:00:00
[USN-2404-1] libvirt vulnerabilities
2014-11-24 00:00:00
[ MDVSA-2014:195 ] libvirt
2014-10-05 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 8 package libvirt version 1.2.9-alt1
2014-10-03 00:00:00
Security fix for the ALT Linux 8 package libvirt version 1.2.11-alt1
2014-12-18 00:00:00
fedora
fedora
[SECURITY] Fedora 21 Update: qemu-2.1.3-5.fc21
2015-04-13 07:05:24
[SECURITY] Fedora 21 Update: qemu-2.1.3-7.fc21
2015-05-17 06:38:09
[SECURITY] Fedora 20 Update: libvirt-1.1.3.8-1.fc20
2014-11-22 12:37:22
gentoo
gentoo
QEMU: Multiple Vulnerabilities
2014-12-24 00:00:00
QEMU: Multiple Vulnerabilities
2014-12-08 00:00:00
libvirt: Multiple vulnerabilities
2014-12-08 00:00:00
veracode
veracode
Arbitrary Code Execution
2019-05-02 05:12:35
Arbitrary Code Execution
2019-01-15 09:05:03
Out-Of-Bounds Read
2018-08-13 08:43:30
cvelist
cvelist
CVE-2014-7840
2014-12-12 15:00:00
CVE-2014-7823
2014-11-13 15:00:00
CVE-2014-3633
2014-10-06 14:00:00
cve
cve
CVE-2014-7840
2014-12-12 15:59:08
CVE-2014-8106
2014-12-08 16:59:01
CVE-2014-7823
2014-11-13 21:32:04
debiancve
debiancve
CVE-2014-7840
2014-12-12 15:59:08
CVE-2014-3633
2014-10-06 14:55:10
CVE-2014-7823
2014-11-13 21:32:04
prion
prion
Design/Logic Flaw
2014-12-12 15:59:00
Out-of-bounds
2014-10-06 14:55:00
Code injection
2014-11-13 21:32:00
ubuntucve
ubuntucve
CVE-2014-7840
2014-11-14 00:00:00
CVE-2014-7823
2014-11-05 00:00:00
CVE-2014-3633
2014-09-19 00:00:00
debian
debian
[SECURITY] [DSA 3087-1] qemu security update
2014-12-04 13:44:23
[SECURITY] [DSA 3088-1] qemu-kvm security update
2014-12-04 13:44:52
[SECURITY] [DSA 3038-1] libvirt security update
2014-09-27 15:52:33
archlinux
archlinux
libvirt: out-of-bounds read access
2014-09-29 00:00:00
f5
f5
K16117 : Multiple libvirt vulnerabilities
2015-02-12 00:00:00
SOL16117 - Multiple libvirt vulnerabilities
2015-02-12 00:00:00
SOL63519101 - Multiple QEMU vulnerabilities
2016-02-16 00:00:00
osv
osv
CVE-2020-10701
2021-05-27 19:15:07
CVE-2020-12430
2020-04-28 20:15:12
CVE-2018-6764
2018-02-23 17:29:00
JSON
Related for SUSE_11_KVM-LIBVIRT-201412-150123.NASL
openvas48nessus48oraclelinux6redhat10centos5mageia3securityvulns7altlinux2fedora10gentoo3veracode7cvelist6cve6debiancve6prion6ubuntucve7debian4archlinux1f54osv10