Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2018-2478-1.NASL
HistoryAug 23, 2018 - 12:00 a.m.

SUSE SLED12 / SLES12 Security Update : ceph (SUSE-SU-2018:2478-1)

2018-08-2300:00:00
This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
25
JSON

This update for ceph fixes the following issues :

  • Update to version 12.2.7-420-gc0ef85b854 :

  • luminous: osd: eternal stuck PG in ‘unfound_recovery’ (bsc#1094932)

  • bluestore: db.slow used when db is not full (bsc#1092874)

  • CVE-2018-10861: Ensure that ceph-mon does perform authorization on all OSD pool ops (bsc#1099162).

  • CVE-2018-1129: cephx signature check bypass (bsc#1096748).

  • CVE-2018-1128: cephx protocol was vulnerable to replay attack (bsc#1096748).

Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2018:2478-1.
# The text itself is copyright (C) SUSE.
#

include("compat.inc");

if (description)
{
  script_id(112079);
  script_version("1.4");
  script_cvs_date("Date: 2019/09/10 13:51:48");

  script_cve_id("CVE-2018-10861", "CVE-2018-1128", "CVE-2018-1129");

  script_name(english:"SUSE SLED12 / SLES12 Security Update : ceph (SUSE-SU-2018:2478-1)");
  script_summary(english:"Checks rpm output for the updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote SUSE host is missing one or more security updates."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update for ceph fixes the following issues :

  - Update to version 12.2.7-420-gc0ef85b854 :

    - https://ceph.com/releases/12-2-7-luminous-released/

  - luminous: osd: eternal stuck PG in 'unfound_recovery'
    (bsc#1094932)

  - bluestore: db.slow used when db is not full
    (bsc#1092874)

  - CVE-2018-10861: Ensure that ceph-mon does perform
    authorization on all OSD pool ops (bsc#1099162).

  - CVE-2018-1129: cephx signature check bypass
    (bsc#1096748).

  - CVE-2018-1128: cephx protocol was vulnerable to replay
    attack (bsc#1096748).

Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1092874"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1094932"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1096748"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://bugzilla.suse.com/show_bug.cgi?id=1099162"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://ceph.com/releases/12-2-7-luminous-released/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-10861/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-1128/"
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://www.suse.com/security/cve/CVE-2018-1129/"
  );
  # https://www.suse.com/support/update/announcement/2018/suse-su-20182478-1/
  script_set_attribute(
    attribute:"see_also",
    value:"http://www.nessus.org/u?454e1918"
  );
  script_set_attribute(
    attribute:"solution", 
    value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.

Alternatively you can run the command listed for your product :

SUSE Linux Enterprise Software Development Kit 12-SP3:zypper in -t
patch SUSE-SLE-SDK-12-SP3-2018-1494=1

SUSE Linux Enterprise Server 12-SP3:zypper in -t patch
SUSE-SLE-SERVER-12-SP3-2018-1494=1

SUSE Linux Enterprise Desktop 12-SP3:zypper in -t patch
SUSE-SLE-DESKTOP-12-SP3-2018-1494=1

SUSE CaaS Platform ALL :

To install this update, use the SUSE CaaS Platform Velum dashboard. It
will inform you if it detects new updates and let you then trigger
updating of the complete cluster in a controlled way.

SUSE CaaS Platform 3.0 :

To install this update, use the SUSE CaaS Platform Velum dashboard. It
will inform you if it detects new updates and let you then trigger
updating of the complete cluster in a controlled way."
  );
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:S/C:N/I:P/A:P");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ceph-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ceph-common-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:ceph-debugsource");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcephfs2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libcephfs2-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librados2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librados2-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libradosstriper1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:libradosstriper1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librbd1");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librbd1-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librgw2");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:librgw2-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:python-cephfs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:python-cephfs-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:python-rados");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:python-rados-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:python-rbd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:python-rbd-debuginfo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:python-rgw");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:python-rgw-debuginfo");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");

  script_set_attribute(attribute:"vuln_publication_date", value:"2018/07/10");
  script_set_attribute(attribute:"patch_publication_date", value:"2018/08/03");
  script_set_attribute(attribute:"plugin_publication_date", value:"2018/08/23");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2018-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");


if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLED12|SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLED12 / SLES12", "SUSE " + os_ver);

if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);

sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(3)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP3", os_ver + " SP" + sp);
if (os_ver == "SLED12" && (! preg(pattern:"^(3)$", string:sp))) audit(AUDIT_OS_NOT, "SLED12 SP3", os_ver + " SP" + sp);


flag = 0;
if (rpm_check(release:"SLES12", sp:"3", reference:"ceph-common-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"ceph-common-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"ceph-debugsource-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libcephfs2-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libcephfs2-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"librados2-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"librados2-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libradosstriper1-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"libradosstriper1-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"librbd1-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"librbd1-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"librgw2-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"librgw2-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"python-cephfs-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"python-cephfs-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"python-rados-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"python-rados-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"python-rbd-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"python-rbd-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"python-rgw-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLES12", sp:"3", reference:"python-rgw-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"ceph-common-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"ceph-common-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"ceph-debugsource-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libcephfs2-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libcephfs2-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"librados2-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"librados2-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libradosstriper1-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"libradosstriper1-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"librbd1-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"librbd1-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"librgw2-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"librgw2-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"python-cephfs-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"python-cephfs-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"python-rados-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"python-rados-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"python-rbd-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"python-rbd-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"python-rgw-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;
if (rpm_check(release:"SLED12", sp:"3", cpu:"x86_64", reference:"python-rgw-debuginfo-12.2.7+git.1531910353.c0ef85b854-2.12.1")) flag++;


if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "ceph");
}
VendorProductVersionCPE
novellsuse_linuxceph-commonp-cpe:/a:novell:suse_linux:ceph-common
novellsuse_linuxceph-common-debuginfop-cpe:/a:novell:suse_linux:ceph-common-debuginfo
novellsuse_linuxceph-debugsourcep-cpe:/a:novell:suse_linux:ceph-debugsource
novellsuse_linuxlibcephfs2p-cpe:/a:novell:suse_linux:libcephfs2
novellsuse_linuxlibcephfs2-debuginfop-cpe:/a:novell:suse_linux:libcephfs2-debuginfo
novellsuse_linuxlibrados2p-cpe:/a:novell:suse_linux:librados2
novellsuse_linuxlibrados2-debuginfop-cpe:/a:novell:suse_linux:librados2-debuginfo
novellsuse_linuxlibradosstriper1p-cpe:/a:novell:suse_linux:libradosstriper1
novellsuse_linuxlibradosstriper1-debuginfop-cpe:/a:novell:suse_linux:libradosstriper1-debuginfo
novellsuse_linuxlibrbd1p-cpe:/a:novell:suse_linux:librbd1
Rows per page:
1-10 of 221

Related

nessus 23
suse 4
redhat 4
fedora 2
openvas 24
osv 7
veracode 3
debiancve 4
cve 4
redhatcve 4
photon 3
prion 4
ubuntucve 4
debian 2
cbl_mariner 1
mageia 3
alpinelinux 1
ubuntu 1
archlinux 1
nessus
nessus
Fedora 28 : 1:ceph (2018-327707371e)
2019-01-03 00:00:00
RHEL 7 : Red Hat Ceph Storage 2.5 (RHSA-2018:2261)
2018-07-27 00:00:00
Fedora 27 : 1:ceph (2018-8738f5f4a7)
2018-08-07 00:00:00
suse
suse
Security update for ceph (important)
2018-08-10 03:07:22
Security update for ceph (moderate)
2019-04-28 00:00:00
Security update for the Linux Kernel (important)
2018-09-16 15:07:35
redhat
redhat
(RHSA-2018:2179) Moderate: Red Hat Ceph Storage 3.0 security and bug fix update
2018-07-11 18:20:07
(RHSA-2018:2177) Moderate: Red Hat Ceph Storage 3.0 security and bug fix update
2018-07-11 17:59:08
(RHSA-2018:2261) Moderate: Red Hat Ceph Storage 2.5 security, enhancement, and bug fix update
2018-07-25 16:00:56
fedora
fedora
[SECURITY] Fedora 27 Update: ceph-12.2.7-1.fc27
2018-08-07 00:12:20
[SECURITY] Fedora 28 Update: ceph-12.2.6-1.fc28
2018-07-18 18:32:39
openvas
openvas
openSUSE: Security Advisory for ceph (openSUSE-SU-2018:2283-1)
2018-08-10 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2478-1)
2021-04-19 00:00:00
SUSE: Security Advisory (SUSE-SU-2018:2193-1)
2021-06-09 00:00:00
osv
osv
ceph - security update
2018-11-13 00:00:00
CVE-2018-10861
2018-07-10 14:29:00
CVE-2018-1128
2018-07-10 14:29:00
veracode
veracode
Authorization Bypass
2019-01-15 09:24:15
Authentication Bypass
2019-05-16 03:10:37
Privilege Escalation
2019-05-16 03:10:37
debiancve
debiancve
CVE-2018-10861
2018-07-10 14:29:00
CVE-2018-1128
2018-07-10 14:29:00
CVE-2018-1129
2018-07-10 14:29:00
cve
cve
CVE-2018-10861
2018-07-10 14:29:00
CVE-2018-1128
2018-07-10 14:29:00
CVE-2018-1129
2018-07-10 14:29:00
redhatcve
redhatcve
CVE-2018-10861
2021-08-14 22:35:41
CVE-2018-1128
2018-07-09 17:18:47
CVE-2018-1129
2018-07-09 17:19:03
photon
photon
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2018-2.0-0104
2018-10-18 00:00:00
Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0159
2019-05-10 00:00:00
Critical Photon OS Security Update - PHSA-2019-0159
2019-05-10 00:00:00
prion
prion
Design/Logic Flaw
2018-07-10 14:29:00
Authentication flaw
2018-07-10 14:29:00
Design/Logic Flaw
2018-07-10 14:29:00
ubuntucve
ubuntucve
CVE-2018-10861
2018-07-10 00:00:00
CVE-2018-1129
2018-07-10 00:00:00
CVE-2018-1128
2018-07-10 00:00:00
debian
debian
[SECURITY] [DSA 4339-1] ceph security update
2018-11-13 21:48:36
[SECURITY] [DLA 1715-1] linux-4.9 security update
2019-03-15 22:45:15
cbl_mariner
cbl_mariner
CVE-2018-1129 affecting package ceph 16.2.10-3
2024-04-17 22:02:46
mageia
mageia
Updated kernel packages fix security vulnerabilities
2018-12-22 00:28:39
Updated kernel-linus packages fix security vulnerabilities
2019-02-21 02:50:36
Updated kernel-tmb packages fixes security vulnerabilities
2019-05-16 11:25:22
alpinelinux
alpinelinux
CVE-2020-25660
2020-11-23 22:15:00
ubuntu
ubuntu
Ceph vulnerabilities
2021-01-28 00:00:00
archlinux
archlinux
[ASA-202011-22] ceph: multiple issues
2020-11-26 00:00:00
JSON
Related for SUSE_SU-2018-2478-1.NASL
nessus23suse4redhat4fedora2openvas24osv7veracode3debiancve4cve4redhatcve4photon3prion4ubuntucve4debian2cbl_mariner1mageia3alpinelinux1ubuntu1archlinux1