Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2021 Tenable Network Security, Inc.SUSE_XEN-4854.NASL
HistoryDec 24, 2007 - 12:00 a.m.

openSUSE 10 Security Update : xen (xen-4854)

2007-12-2400:00:00
This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.
www.tenable.com
10
JSON

This update fixes various Xen issues.

Two security problems were fixed: CVE-2007-5906: Xen allowed virtual guest system users to cause a denial of service (hypervisor crash) by using a debug register (DR7) to set certain breakpoints.

CVE-2007-5907: Xen 3.1.1 does not prevent modification of the CR4 TSC from applications, which allows pv guests to cause a denial of service (crash).

Also the following bugs were fixed: 279062: Timer ISR/1: Time went backwards 286859: Fix booting from SAN 310279: Kernel Panic while booting Xen 338486: xen fails to start when option ‘irq= [ <value> ]’ is given in domU config

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from openSUSE Security Update xen-4854.
#
# The text description of this plugin is (C) SUSE LLC.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(29792);
  script_version("1.9");
  script_set_attribute(attribute:"plugin_modification_date", value:"2021/01/14");

  script_cve_id("CVE-2007-5906", "CVE-2007-5907");

  script_name(english:"openSUSE 10 Security Update : xen (xen-4854)");
  script_summary(english:"Check for the xen-4854 patch");

  script_set_attribute(
    attribute:"synopsis", 
    value:"The remote openSUSE host is missing a security update."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"This update fixes various Xen issues.

Two security problems were fixed: CVE-2007-5906: Xen allowed virtual
guest system users to cause a denial of service (hypervisor crash) by
using a debug register (DR7) to set certain breakpoints.

CVE-2007-5907: Xen 3.1.1 does not prevent modification of the CR4 TSC
from applications, which allows pv guests to cause a denial of service
(crash).

Also the following bugs were fixed: 279062: Timer ISR/1: Time went
backwards 286859: Fix booting from SAN 310279: Kernel Panic while
booting Xen 338486: xen fails to start when option 'irq= [ <value> ]'
is given in domU config"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected xen packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:N/I:N/A:C");
  script_cwe_id(264);

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-doc-html");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-doc-pdf");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-libs");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools-domU");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:novell:opensuse:xen-tools-ioemu");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:novell:opensuse:10.3");

  script_set_attribute(attribute:"patch_publication_date", value:"2007/12/20");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/12/24");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"This script is Copyright (C) 2007-2021 Tenable Network Security, Inc.");
  script_family(english:"SuSE Local Security Checks");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/SuSE/release", "Host/SuSE/rpm-list", "Host/cpu");

  exit(0);
}


include("audit.inc");
include("global_settings.inc");
include("rpm.inc");

if (!get_kb_item("Host/local_checks_enabled")) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/SuSE/release");
if (isnull(release) || release =~ "^(SLED|SLES)") audit(AUDIT_OS_NOT, "openSUSE");
if (release !~ "^(SUSE10\.3)$") audit(AUDIT_OS_RELEASE_NOT, "openSUSE", "10.3", release);
if (!get_kb_item("Host/SuSE/rpm-list")) audit(AUDIT_PACKAGE_LIST_MISSING);

ourarch = get_kb_item("Host/cpu");
if (!ourarch) audit(AUDIT_UNKNOWN_ARCH);
if (ourarch !~ "^(i586|i686|x86_64)$") audit(AUDIT_ARCH_NOT, "i586 / i686 / x86_64", ourarch);

flag = 0;

if ( rpm_check(release:"SUSE10.3", reference:"xen-3.1.0_15042-51.3") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"xen-devel-3.1.0_15042-51.3") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"xen-doc-html-3.1.0_15042-51.3") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"xen-doc-pdf-3.1.0_15042-51.3") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"xen-libs-3.1.0_15042-51.3") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"xen-tools-3.1.0_15042-51.3") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"xen-tools-domU-3.1.0_15042-51.3") ) flag++;
if ( rpm_check(release:"SUSE10.3", reference:"xen-tools-ioemu-3.1.0_15042-51.3") ) flag++;

if (flag)
{
  if (report_verbosity > 0) security_warning(port:0, extra:rpm_report_get());
  else security_warning(0);
  exit(0);
}
else
{
  tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "xen / xen-devel / xen-doc-html / xen-doc-pdf / xen-libs / xen-tools / etc");
}
VendorProductVersionCPE
novellopensusexenp-cpe:/a:novell:opensuse:xen
novellopensusexen-develp-cpe:/a:novell:opensuse:xen-devel
novellopensusexen-doc-htmlp-cpe:/a:novell:opensuse:xen-doc-html
novellopensusexen-doc-pdfp-cpe:/a:novell:opensuse:xen-doc-pdf
novellopensusexen-libsp-cpe:/a:novell:opensuse:xen-libs
novellopensusexen-toolsp-cpe:/a:novell:opensuse:xen-tools
novellopensusexen-tools-domup-cpe:/a:novell:opensuse:xen-tools-domu
novellopensusexen-tools-ioemup-cpe:/a:novell:opensuse:xen-tools-ioemu
novellopensuse10.3cpe:/o:novell:opensuse:10.3

Related

nessus 7
veracode 2
ubuntucve 2
prion 2
cve 2
oraclelinux 3
openvas 4
centos 1
redhat 1
nessus
nessus
openSUSE 10 Security Update : xen (xen-4901)
2008-01-14 00:00:00
SuSE 10 Security Update : xen (ZYPP Patch Number 4766)
2007-12-24 00:00:00
openSUSE 10 Security Update : xen (xen-4764)
2008-01-08 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:23:22
Denial Of Service (DoS)
2020-04-10 00:27:59
ubuntucve
ubuntucve
CVE-2007-5906
2007-11-09 00:00:00
CVE-2007-5907
2007-11-09 00:00:00
prion
prion
Design/Logic Flaw
2007-11-09 19:46:00
Code injection
2007-11-09 19:46:00
cve
cve
CVE-2007-5906
2007-11-09 19:46:00
CVE-2007-5907
2007-11-09 19:46:00
oraclelinux
oraclelinux
kernel security and bug fix update
2008-12-17 00:00:00
kernel security and bug fix update
2008-11-05 00:00:00
Oracle Enterprise Linux 5.3 kernel security and bug fix update
2009-01-27 00:00:00
openvas
openvas
Oracle: Security Advisory (ELSA-2008-1017)
2015-10-08 00:00:00
Oracle: Security Advisory (ELSA-2008-0957)
2015-10-08 00:00:00
RedHat Update for kernel RHSA-2008:0957-02
2009-03-06 00:00:00
centos
centos
kernel security update
2008-11-05 16:01:40
redhat
redhat
(RHSA-2008:0957) Important: kernel security and bug fix update
2008-11-04 00:00:00
JSON
Related for SUSE_XEN-4854.NASL
nessus7veracode2ubuntucve2prion2cve2oraclelinux3openvas4centos1redhat1