Lucene search
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.SUSE_SU-2019-1269-1.NASLHistoryMay 17, 2019 - 12:00 a.m.
SUSE SLES12 Security Update : qemu (SUSE-SU-2019:1269-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)
2019-05-1700:00:00
This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
14
This update for qemu fixes the following issues :
Following security issues were fixed :
CVE-2019-9824: Fixed an information leak in slirp (bsc#1129622)
CVE-2018-20815: Fix DOS possibility in device tree processing (bsc#1130675)
CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091: Added x86 cpu feature ‘md-clear’ (bsc#1111331)
Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from SUSE update advisory SUSE-SU-2019:1269-1.
# The text itself is copyright (C) SUSE.
#
include("compat.inc");
if (description)
{
script_id(125248);
script_version("1.5");
script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/13");
script_cve_id("CVE-2018-12126", "CVE-2018-12127", "CVE-2018-12130", "CVE-2018-20815", "CVE-2019-11091", "CVE-2019-9824");
script_name(english:"SUSE SLES12 Security Update : qemu (SUSE-SU-2019:1269-1) (MDSUM/RIDL) (MFBDS/RIDL/ZombieLoad) (MLPDS/RIDL) (MSBDS/Fallout)");
script_summary(english:"Checks rpm output for the updated packages.");
script_set_attribute(
attribute:"synopsis",
value:"The remote SUSE host is missing one or more security updates."
);
script_set_attribute(
attribute:"description",
value:
"This update for qemu fixes the following issues :
Following security issues were fixed :
CVE-2019-9824: Fixed an information leak in slirp (bsc#1129622)
CVE-2018-20815: Fix DOS possibility in device tree processing
(bsc#1130675)
CVE-2018-12126 CVE-2018-12127 CVE-2018-12130 CVE-2019-11091: Added x86
cpu feature 'md-clear' (bsc#1111331)
Note that Tenable Network Security has extracted the preceding
description block directly from the SUSE security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1111331"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1129622"
);
script_set_attribute(
attribute:"see_also",
value:"https://bugzilla.suse.com/show_bug.cgi?id=1130675"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2018-12126/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2018-12127/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2018-12130/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2018-20815/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2019-11091/"
);
script_set_attribute(
attribute:"see_also",
value:"https://www.suse.com/security/cve/CVE-2019-9824/"
);
# https://www.suse.com/support/update/announcement/2019/suse-su-20191269-1/
script_set_attribute(
attribute:"see_also",
value:"http://www.nessus.org/u?7056ce14"
);
script_set_attribute(
attribute:"solution",
value:
"To install this SUSE Security Update use the SUSE recommended
installation methods like YaST online_update or 'zypper patch'.
Alternatively you can run the command listed for your product :
SUSE Linux Enterprise Server for SAP 12-SP1:zypper in -t patch
SUSE-SLE-SAP-12-SP1-2019-1269=1
SUSE Linux Enterprise Server 12-SP1-LTSS:zypper in -t patch
SUSE-SLE-SERVER-12-SP1-2019-1269=1"
);
script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-block-curl");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-block-curl-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-block-rbd");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-block-rbd-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-debugsource");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-guest-agent");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-guest-agent-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-kvm");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-lang");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-s390");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-s390-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-tools");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-tools-debuginfo");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:suse_linux:qemu-x86");
script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:suse_linux:12");
script_set_attribute(attribute:"vuln_publication_date", value:"2019/05/30");
script_set_attribute(attribute:"patch_publication_date", value:"2019/05/16");
script_set_attribute(attribute:"plugin_publication_date", value:"2019/05/17");
script_set_attribute(attribute:"in_the_news", value:"true");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"This script is Copyright (C) 2019-2021 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"SuSE Local Security Checks");
script_dependencies("ssh_get_info.nasl");
script_require_keys("Host/local_checks_enabled", "Host/cpu", "Host/SuSE/release", "Host/SuSE/rpm-list");
exit(0);
}
include("audit.inc");
include("global_settings.inc");
include("rpm.inc");
if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release !~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "SUSE");
os_ver = pregmatch(pattern: "^(SLE(S|D)\d+)", string:release);
if (isnull(os_ver)) audit(AUDIT_UNKNOWN_APP_VER, "SUSE");
os_ver = os_ver[1];
if (! preg(pattern:"^(SLES12)$", string:os_ver)) audit(AUDIT_OS_NOT, "SUSE SLES12", "SUSE " + os_ver);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if (cpu !~ "^i[3-6]86$" && "x86_64" >!< cpu && "s390x" >!< cpu) audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "SUSE " + os_ver, cpu);
sp = get_kb_item("Host/SuSE/patchlevel");
if (isnull(sp)) sp = "0";
if (os_ver == "SLES12" && (! preg(pattern:"^(1)$", string:sp))) audit(AUDIT_OS_NOT, "SLES12 SP1", os_ver + " SP" + sp);
flag = 0;
if (rpm_check(release:"SLES12", sp:"1", cpu:"x86_64", reference:"qemu-block-rbd-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", cpu:"x86_64", reference:"qemu-block-rbd-debuginfo-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", cpu:"x86_64", reference:"qemu-x86-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", cpu:"s390x", reference:"qemu-s390-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", cpu:"s390x", reference:"qemu-s390-debuginfo-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-block-curl-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-block-curl-debuginfo-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-debugsource-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-guest-agent-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-guest-agent-debuginfo-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-kvm-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-lang-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-tools-2.3.1-33.23.1")) flag++;
if (rpm_check(release:"SLES12", sp:"1", reference:"qemu-tools-debuginfo-2.3.1-33.23.1")) flag++;
if (flag)
{
if (report_verbosity > 0) security_hole(port:0, extra:rpm_report_get());
else security_hole(0);
exit(0);
}
else
{
tested = pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "qemu");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| novell | suse_linux | qemu | p-cpe:/a:novell:suse_linux:qemu |
| novell | suse_linux | qemu-block-curl | p-cpe:/a:novell:suse_linux:qemu-block-curl |
| novell | suse_linux | qemu-block-curl-debuginfo | p-cpe:/a:novell:suse_linux:qemu-block-curl-debuginfo |
| novell | suse_linux | qemu-block-rbd | p-cpe:/a:novell:suse_linux:qemu-block-rbd |
| novell | suse_linux | qemu-block-rbd-debuginfo | p-cpe:/a:novell:suse_linux:qemu-block-rbd-debuginfo |
| novell | suse_linux | qemu-debugsource | p-cpe:/a:novell:suse_linux:qemu-debugsource |
| novell | suse_linux | qemu-guest-agent | p-cpe:/a:novell:suse_linux:qemu-guest-agent |
| novell | suse_linux | qemu-guest-agent-debuginfo | p-cpe:/a:novell:suse_linux:qemu-guest-agent-debuginfo |
| novell | suse_linux | qemu-kvm | p-cpe:/a:novell:suse_linux:qemu-kvm |
| novell | suse_linux | qemu-lang | p-cpe:/a:novell:suse_linux:qemu-lang |
References
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12126
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12127
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-12130
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-20815
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11091
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-9824
www.nessus.org/u?7056ce14
bugzilla.suse.com/show_bug.cgi?id=1111331
bugzilla.suse.com/show_bug.cgi?id=1129622
bugzilla.suse.com/show_bug.cgi?id=1130675
www.suse.com/security/cve/CVE-2018-12126/
www.suse.com/security/cve/CVE-2018-12127/
www.suse.com/security/cve/CVE-2018-12130/
www.suse.com/security/cve/CVE-2018-20815/
www.suse.com/security/cve/CVE-2019-11091/
www.suse.com/security/cve/CVE-2019-9824/
Related
nessus
nessus
suse
suse
Security update for xen (important)
2019-05-20 00:00:00
Security update for qemu (important)
2019-05-17 00:00:00
Security update for libvirt (important)
2019-06-03 00:00:00
openvas
openvas
openSUSE: Security Advisory for xen (openSUSE-SU-2019:1419-1)
2019-05-21 00:00:00
Ubuntu Update for qemu USN-3978-1
2019-05-15 00:00:00
openSUSE: Security Advisory for qemu (openSUSE-SU-2019:1405-1)
2019-05-18 00:00:00
ubuntu
ubuntu
QEMU update
2019-05-14 00:00:00
Intel Microcode update
2019-05-14 00:00:00
Linux kernel vulnerabilities
2019-05-15 00:00:00
fedora
fedora
[SECURITY] Fedora 30 Update: qemu-3.1.0-9.fc30
2019-07-09 00:56:39
[SECURITY] Fedora 30 Update: libvirt-5.1.0-5.fc30
2019-05-17 01:08:36
[SECURITY] Fedora 30 Update: xen-4.11.1-6.fc30
2019-07-01 01:09:24
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2019-05-14 00:00:00
Unbreakable Enterprise kernel security update
2019-05-14 00:00:00
Unbreakable Enterprise kernel security update
2019-05-14 00:00:00
lenovo
lenovo
threatpost
threatpost
Intel ZombieLoad Side-Channel Attack: 10 Takeaways
2019-05-15 16:48:11
Intel CPUs Impacted By New Class of Spectre-Like Attacks
2019-05-14 18:01:49
hp
hp
HPSBHF03618 rev. 8 - Intel Microarchitectural Data Sampling Security Updates
2019-05-14 00:00:00
ibm
ibm
debian
debian
[SECURITY] [DSA 4447-2] intel-microcode security update
2019-06-20 06:41:32
[SECURITY] [DSA 4444-1] linux security update
2019-05-14 21:17:39
[SECURITY] [DSA 4447-1] intel-microcode security update
2019-05-15 09:23:15
cloudfoundry
cloudfoundry
USN-3977-2: Intel Microcode update (AKA ZombieLoad Attack) | Cloud Foundry
2019-05-29 00:00:00
USN-3977-1: Intel Microcode update (AKA ZombieLoad Attack) | Cloud Foundry
2019-05-20 00:00:00
redhat
redhat
(RHSA-2019:1182) Important: libvirt security update
2019-05-14 18:08:34
(RHSA-2019:1176) Important: kernel-rt security update
2019-05-14 17:23:50
(RHSA-2019:1168) Important: kernel security update
2019-05-14 17:23:44
mageia
mageia
Updated microcode packages fix security vulnerabilities
2019-05-16 11:25:22
Updated kernel packages fix security vulnerability
2019-05-16 11:25:22
virtuozzo
virtuozzo
centos
centos
qemu security update
2019-05-15 15:40:19
bpftool, kernel, perf, python security update
2019-05-15 20:35:38
libvirt security update
2019-05-15 15:41:00
amazon
amazon
Important: kernel
2019-05-07 22:39:00
Important: kernel
2019-05-07 22:54:00
vmware
vmware
citrix
citrix
Citrix Hypervisor Security Update
2019-05-14 04:00:00
paloalto
paloalto
Information about Recent Intel Side Channel Vulnerabilities
2019-05-29 00:00:00
osv
osv
linux-4.9 - security update
2019-05-15 00:00:00
intel-microcode - security update
2019-05-15 00:00:00
intel
intel
Microarchitectural Data Sampling Advisory
2021-05-11 00:00:00
thn
thn
New Class of CPU Flaws Affect Almost Every Intel Processor Since 2011
2019-05-14 20:20:00
myhack58
myhack58
checkpoint_security
checkpoint_security
Related for SUSE_SU-2019-1269-1.NASL