Lucene search
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2018-1503-1.NASLHistoryJun 06, 2018 - 12:00 a.m.
SUSE SLES12 Security Update : oracleasm kmp (SUSE-SU-2018:1503-1) (Spectre)
2018-06-0600:00:00
This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
98
This update provides rebuilt kernel modules for SUSE Linux Enterprise 12 SP3 products with retpoline enablement to address Spectre Variant 2 (CVE-2017-5715 bsc#1068032). Following modules have been rebuilt :
-
drbd
-
oracleasm
-
crash
-
lttng-modules
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2018:1503-1.
# The text itself is copyright (C) SUSE.
#
include("compat.inc");
if (description)
{
script_id(110339);
script_version("1.8");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/04/15");
script_cve_id("CVE-2017-5715");
script_xref(name:"IAVA", value:"2018-A-0020");
script_name(english:"SUSE SLES12 Security Update : oracleasm kmp (SUSE-SU-2018:1503-1) (Spectre)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"This update provides rebuilt kernel modules for SUSE Linux Enterprise
12 SP3 products with retpoline enablement to address Spectre Variant 2
(CVE-2017-5715 bsc#1068032). Following modules have been rebuilt :
- drbd
- oracleasm
- crash
- lttng-modules
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1068032"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2017-5715/"
);
# https://www.suse.com/support/update/announcement/2018/suse-su-20181503-1/
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?63e6b6d4"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Software Development Kit 12-SP3:zypper in -t
patch SUSE-SLE-SDK-12-SP3-2018-1027=1
SUSE Linux Enterprise Server 12-SP3:zypper in -t patch
SUSE-SLE-SERVER-12-SP3-2018-1027=1
SUSE Linux Enterprise High Availability 12-SP3:zypper in -t patch
SUSE-SLE-HA-12-SP3-2018-1027=1"
);
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:P/I:N/A:N");
script_set_cvss_temporal_vector("CVSS2#E:H/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N");
script_set_cvss3_temporal_vector("CVSS:3.0/E:H/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
script_set_attribute(attribute:"exploit_available", value:"true");
script_set_attribute(attribute:"exploited_by_malware", value:"true");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:crash");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:crash-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:crash-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:crash-kmp-default");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:crash-kmp-default-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:lttng-modules");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:lttng-modules-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:lttng-modules-kmp-default");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:lttng-modules-kmp-default-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:oracleasm-kmp-default");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:oracleasm-kmp-default-debuginfo");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
script_set_attribute(attribute:"vuln_publication_date", value:"2018/01/04");
script_set_attribute(attribute:"patch_publication_date", value:"2018/06/05");
script_set_attribute(attribute:"plugin_publication_date", value:"2018/06/06");
script_set_attribute(attribute:"in_the_news", value:"true");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_set_attribute(attribute:"stig_severity", value:"I");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2018-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES12", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(3)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP3", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"lttng-modules-2.7.1-8.2.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"lttng-modules-debugsource-2.7.1-8.2.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"lttng-modules-kmp-default-2.7.1_k4.4.131_94.29-8.2.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", cpu:"x86_64", reference:"lttng-modules-kmp-default-debuginfo-2.7.1_k4.4.131_94.29-8.2.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"crash-7.1.8-4.8.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"crash-debuginfo-7.1.8-4.8.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"crash-debugsource-7.1.8-4.8.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"crash-kmp-default-7.1.8_k4.4.131_94.29-4.8.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"crash-kmp-default-debuginfo-7.1.8_k4.4.131_94.29-4.8.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"oracleasm-kmp-default-2.0.8_k4.4.131_94.29-3.8.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"oracleasm-kmp-default-debuginfo-2.0.8_k4.4.131_94.29-3.8.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_note(port:0, extra:rpm_report_get());
else security_note(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "oracleasm kmp");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | crash | p-cpe:/a:novell:suse_linux:crash |
| novell | suse_linux | crash-debuginfo | p-cpe:/a:novell:suse_linux:crash-debuginfo |
| novell | suse_linux | crash-debugsource | p-cpe:/a:novell:suse_linux:crash-debugsource |
| novell | suse_linux | crash-kmp-default | p-cpe:/a:novell:suse_linux:crash-kmp-default |
| novell | suse_linux | crash-kmp-default-debuginfo | p-cpe:/a:novell:suse_linux:crash-kmp-default-debuginfo |
| novell | suse_linux | lttng-modules | p-cpe:/a:novell:suse_linux:lttng-modules |
| novell | suse_linux | lttng-modules-debugsource | p-cpe:/a:novell:suse_linux:lttng-modules-debugsource |
| novell | suse_linux | lttng-modules-kmp-default | p-cpe:/a:novell:suse_linux:lttng-modules-kmp-default |
| novell | suse_linux | lttng-modules-kmp-default-debuginfo | p-cpe:/a:novell:suse_linux:lttng-modules-kmp-default-debuginfo |
| novell | suse_linux | oracleasm-kmp-default | p-cpe:/a:novell:suse_linux:oracleasm-kmp-default |
Related
nessus
nessus
RHEL 6 : libvirt (RHSA-2018:0112) (Spectre)
2018-01-23 00:00:00
Ubuntu 14.04 LTS / 16.04 LTS : QEMU update (USN-3560-1)
2018-02-08 00:00:00
RHEL 7 : libvirt (RHSA-2018:0032) (Spectre)
2018-01-04 00:00:00
threatpost
threatpost
New Spectre-Level Flaw Targets Return Stack Buffer
2018-07-23 18:27:20
openvas
openvas
Debian LTS: Security Advisory for linux-tools (DLA-1349-1)
2018-04-17 00:00:00
Huawei EulerOS: Security Advisory for qemu-kvm (EulerOS-SA-2018-1014)
2020-01-23 00:00:00
RedHat Update for microcode_ctl RHSA-2018:0093-01
2018-01-17 00:00:00
suse
suse
Security update for ucode-intel (important)
2018-01-04 03:07:17
Security update for kernel-firmware (important)
2018-01-04 03:08:16
Security update for microcode_ctl (important)
2018-01-11 18:09:53
debian
debian
[SECURITY] [DLA 1362-1] gcc-4.9-backport new package
2018-04-25 16:19:40
[SECURITY] [DLA 1349-1] linux-tools security update
2018-04-16 22:31:08
[SECURITY] [DLA 2148-1] amd64-microcode security update
2020-03-20 19:56:36
amazon
amazon
Important: linux-firmware
2018-02-20 21:46:00
Important: qemu-kvm
2018-01-12 21:24:00
Important: microcode_ctl
2018-02-07 18:54:00
redhat
redhat
(RHSA-2018:0109) Important: libvirt security update
2018-01-22 10:05:55
(RHSA-2018:0050) Important: vdsm security update
2018-01-05 15:36:32
(RHSA-2018:0029) Important: libvirt security update
2018-01-04 19:31:42
mageia
mageia
Updated microcode packages fix security vulnerability
2018-05-29 22:41:14
Updated microcode packages fix security vulnerabilities
2018-01-13 17:28:36
Updated gcc packages fix security vulnerability
2018-02-08 14:30:47
centos
centos
microcode_ctl security update
2018-01-04 11:40:52
libvirt security update
2018-01-04 19:54:04
microcode_ctl security update
2018-01-17 14:59:21
oraclelinux
oraclelinux
libvirt security update
2018-01-05 00:00:00
microcode_ctl security update
2018-01-04 00:00:00
microcode_ctl security update
2018-01-21 00:00:00
osv
osv
CVE-2017-5715
2018-01-04 13:29:00
amd64-microcode - security update
2020-03-19 00:00:00
debiancve
debiancve
CVE-2017-5715
2018-01-04 13:29:00
ibm
ibm
vmware
vmware
thn
thn
New Exploit Bypasses Existing Spectre-V2 Mitigations in Intel, AMD, Arm CPUs
2022-03-10 14:29:00
cve
cve
CVE-2017-5715
2018-01-04 13:29:00
archlinux
archlinux
[ASA-201801-10] intel-ucode: access restriction bypass
2018-01-10 00:00:00
cloudfoundry
cloudfoundry
USN-3690-1: AMD Microcode update | Cloud Foundry
2018-07-19 00:00:00
ubuntu
ubuntu
Intel Microcode regression
2018-01-22 00:00:00
Linux kernel vulnerability
2018-03-09 00:00:00
AMD Microcode update
2018-06-20 00:00:00
Related for SUSE_SU-2018-1503-1.NASL