Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2008-2021 Tenable Network Security, Inc.SUSE_KERNEL-4987.NASL
HistoryFeb 14, 2008 - 12:00 a.m.

openSUSE 10 Security Update : kernel (kernel-4987)

2008-02-1400:00:00
This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.
www.tenable.com
16
JSON

This kernel update fixes the following security problems :

  • CVE-2008-0600: A local privilege escalation was found in the vmsplice_pipe system call, which could be used by local attackers to gain root access.

  • CVE-2007-6151: The isdn_ioctl function in isdn_common.c allowed local users to cause a denial of service via a crafted ioctl struct in which iocts is not null terminated, which triggers a buffer overflow.

#%NASL_MIN_LEVEL 70300

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update kernel-4987.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(31090);
  script_version("1.14");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2007-6151", "CVE-2008-0600");

  script_name(english:"openSUSE 10 Security Update : kernel (kernel-4987)");
  script_summary(english:"Check for the kernel-4987 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This kernel update fixes the following security problems :

  - CVE-2008-0600: A local privilege escalation was found in
    the vmsplice_pipe system call, which could be used by
    local attackers to gain root access.

  - CVE-2007-6151: The isdn_ioctl function in isdn_common.c
    allowed local users to cause a denial of service via a
    crafted ioctl struct in which iocts is not null
    terminated, which triggers a buffer overflow."
  );
  script_set_attribute(
    attribute:"solution", 
    value:"Update the affected kernel packages."
  );
  script_set_cvss_base_vector("CVSS2#AV:L/AC:L/Au:N/C:C/I:C/A:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");
  script_set_attribute(attribute:"exploit_framework_core", value:"true");
  script_set_attribute(attribute:"exploited_by_malware", value:"true");
  script_set_attribute(attribute:"exploit_framework_canvas", value:"true");
  script_set_attribute(attribute:"canvas_package", value:'CANVAS');
  script_cwe_id(94, 119);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-bigsmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-default");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-kdump");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-source");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-syms");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-xen");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:kernel-xenpae");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:10.2");

  script_set_attribute(attribute:"patch_publication_date", value:"2008/02/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2008/02/14");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2008-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE10\.2)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "10.2", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE10.2", reference:"kernel-bigsmp-2.6.18.8-0.9") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"kernel-default-2.6.18.8-0.9") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"kernel-kdump-2.6.18.8-0.9") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"kernel-source-2.6.18.8-0.9") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"kernel-syms-2.6.18.8-0.9") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"kernel-xen-2.6.18.8-0.9") ) flag++;
if ( rpm_check(release:"SUSE10.2", reference:"kernel-xenpae-2.6.18.8-0.9") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
  else security_hole(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "kernel-bigsmp / kernel-default / kernel-kdump / kernel-source / etc");
}
VendorProductVersionCPE
novellopensusekernel-bigsmpp-cpe:/a:novell:opensuse:kernel-bigsmp
novellopensusekernel-defaultp-cpe:/a:novell:opensuse:kernel-default
novellopensusekernel-kdumpp-cpe:/a:novell:opensuse:kernel-kdump
novellopensusekernel-sourcep-cpe:/a:novell:opensuse:kernel-source
novellopensusekernel-symsp-cpe:/a:novell:opensuse:kernel-syms
novellopensusekernel-xenp-cpe:/a:novell:opensuse:kernel-xen
novellopensusekernel-xenpaep-cpe:/a:novell:opensuse:kernel-xenpae
novellopensuse10.2cpe:/o:novell:opensuse:10.2

Related

suse 5
openvas 73
prion 2
ubuntucve 2
cve 2
nessus 34
canvas 1
fedora 7
f5 2
ubuntu 3
centos 4
redhat 5
veracode 1
oraclelinux 4
seebug 1
debian 6
osv 5
slackware 1
securityvulns 2
vmware 2
suse
suse
local privilege escalation in kernel
2008-02-12 13:43:48
remote denial of service in kernel
2008-03-28 14:11:32
local privilege escalation in kernel-rt
2008-03-06 17:51:13
openvas
openvas
SuSE Update for kernel SUSE-SA:2008:007
2009-01-23 00:00:00
RedHat Update for kernel RHSA-2008:0129-01
2009-03-06 00:00:00
Ubuntu: Security Advisory (USN-577-1)
2009-03-23 00:00:00
prion
prion
Buffer overflow
2007-12-15 01:46:00
Null pointer dereference
2008-02-12 21:00:00
ubuntucve
ubuntucve
CVE-2007-6151
2007-12-15 00:00:00
CVE-2008-0600
2008-02-12 00:00:00
cve
cve
CVE-2007-6151
2007-12-15 01:46:00
CVE-2008-0600
2008-02-12 21:00:00
nessus
nessus
OracleVM 2.1 : kernel (OVMSA-2008-2002)
2014-11-26 00:00:00
Fedora 7 : kernel-xen-2.6-2.6.21-7.fc7 (2008-1629)
2008-02-14 00:00:00
RHEL 5 : kernel (RHSA-2008:0129)
2008-02-14 00:00:00
canvas
canvas
Immunity Canvas: VMSPLICE
2008-02-12 21:00:00
fedora
fedora
[SECURITY] Fedora 7 Update: kernel-xen-2.6-2.6.21-7.fc7
2008-02-13 05:16:54
[SECURITY] Fedora 8 Update: kernel-xen-2.6-2.6.21-2957.fc8
2008-02-13 04:48:35
[SECURITY] Fedora 8 Update: kernel-2.6.25.6-27.fc8
2008-06-20 19:05:23
f5
f5
SOL8425 - Linux Kernel Vulnerability - CVE-2008-0600
2008-02-14 00:00:00
Linux Kernel Vulnerability - CVE-2008-0600
2008-02-15 03:00:00
ubuntu
ubuntu
Linux kernel vulnerability
2008-02-12 00:00:00
Linux kernel vulnerabilities
2008-02-14 00:00:00
Linux kernel vulnerabilities
2008-02-04 00:00:00
centos
centos
kernel security update
2008-02-13 03:27:15
kernel security update
2008-02-04 17:59:19
kernel security update
2008-05-07 14:58:01
redhat
redhat
(RHSA-2008:0129) Important: kernel security update
2008-02-12 00:00:00
(RHSA-2008:0055) Important: kernel security and bug fix update
2008-01-31 00:00:00
(RHSA-2008:0211) Important: kernel security and bug fix update
2008-05-07 00:00:00
veracode
veracode
Privilege Escalation
2020-04-10 00:19:52
oraclelinux
oraclelinux
Important: kernel security update
2008-02-13 00:00:00
Important: kernel security and bug fix update
2008-02-01 00:00:00
kernel security and bug fix update
2008-05-07 00:00:00
seebug
seebug
Linux Kernel vmsplice_to_pipe()本地权限提升漏洞
2008-02-22 00:00:00
debian
debian
[SECURITY] [DSA 1494-2] New linux-2.6 packages fix privilege escalation
2008-02-13 06:28:43
[SECURITY] [DSA 1494-1] New linux-2.6 packages fix privilege escalation
2008-02-11 13:58:54
[SECURITY] [DSA 1479-1] New Linux 2.6.18 packages fix several vulnerabilities
2008-01-29 18:10:45
osv
osv
linux-2.6 - privilege escalation
2008-02-11 00:00:00
linux-2.6
2008-01-29 00:00:00
kernelimage-2.4.27 - several issues
2008-02-22 00:00:00
slackware
slackware
[slackware-security] kernel exploit fix
2008-02-12 02:00:01
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2008-02-12 00:00:00
[Full-disclosure] [SECURITY] [DSA 1494-1] New linux-2.6 packages fix privilege escalation
2008-02-11 00:00:00
vmware
vmware
Updated ESX service console packages for Samba and vmnix
2008-07-28 00:00:00
Updated ESX service console packages for Samba and vmnix
2008-07-28 00:00:00
JSON
Related for SUSE_KERNEL-4987.NASL
suse5openvas73prion2ubuntucve2cve2nessus34canvas1fedora7f52ubuntu3centos4redhat5veracode1oraclelinux4seebug1debian6osv5slackware1securityvulns2vmware2