Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-1507-1.NASL
HistoryJul 17, 2012 - 12:00 a.m.

Ubuntu 8.04 LTS : linux vulnerabilities (USN-1507-1)

2012-07-1700:00:00
Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
27

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON

A flaw was found in the Linux kernel’s KVM (Kernel Virtual Machine) virtual cpu setup. An unprivileged local user could exploit this flaw to crash the system leading to a denial of service. (CVE-2012-1601)

An error was found in the Linux kernel’s IPv6 netfilter when connection tracking is enabled. A remote attacker could exploit this flaw to crash a system if it is using IPv6 with the nf_contrack_ipv6 kernel module loaded. (CVE-2012-2744).

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-1507-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include("compat.inc");

if (description)
{
  script_id(59985);
  script_version("1.11");
  script_cvs_date("Date: 2019/09/19 12:54:28");

  script_cve_id("CVE-2012-1601", "CVE-2012-2744");
  script_bugtraq_id(53488, 54367);
  script_xref(name:"USN", value:"1507-1");

  script_name(english:"Ubuntu 8.04 LTS : linux vulnerabilities (USN-1507-1)");
  script_summary(english:"Checks dpkg output for updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Ubuntu host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"A flaw was found in the Linux kernel's KVM (Kernel Virtual Machine)
virtual cpu setup. An unprivileged local user could exploit this flaw
to crash the system leading to a denial of service. (CVE-2012-1601)

An error was found in the Linux kernel's IPv6 netfilter when
connection tracking is enabled. A remote attacker could exploit this
flaw to crash a system if it is using IPv6 with the nf_contrack_ipv6
kernel module loaded. (CVE-2012-2744).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/1507-1/"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpiacompat");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-openvz");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-rt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-xen");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:8.04:-:lts");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/05/17");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/07/16");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/07/17");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl", "linux_alt_patch_detect.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("ksplice.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(8\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 8.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

if (get_one_kb_item("Host/ksplice/kernel-cves"))
{
  rm_kb_item(name:"Host/uptrack-uname-r");
  cve_list = make_list("CVE-2012-1601", "CVE-2012-2744");
  if (ksplice_cves_check(cve_list))
  {
    audit(AUDIT_PATCH_INSTALLED, "KSplice hotfix for USN-1507-1");
  }
  else
  {
    _ubuntu_report = ksplice_reporting_text();
  }
}

flag = 0;

if (ubuntu_check(osver:"8.04", pkgname:"linux-image-2.6.24-32-386", pkgver:"2.6.24-32.104")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"linux-image-2.6.24-32-generic", pkgver:"2.6.24-32.104")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"linux-image-2.6.24-32-lpia", pkgver:"2.6.24-32.104")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"linux-image-2.6.24-32-lpiacompat", pkgver:"2.6.24-32.104")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"linux-image-2.6.24-32-openvz", pkgver:"2.6.24-32.104")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"linux-image-2.6.24-32-rt", pkgver:"2.6.24-32.104")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"linux-image-2.6.24-32-server", pkgver:"2.6.24-32.104")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"linux-image-2.6.24-32-virtual", pkgver:"2.6.24-32.104")) flag++;
if (ubuntu_check(osver:"8.04", pkgname:"linux-image-2.6.24-32-xen", pkgver:"2.6.24-32.104")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_HOLE,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "linux-image-2.6-386 / linux-image-2.6-generic / etc");
}
VendorProductVersionCPE
canonicalubuntu_linuxlinux-image-2.6-386p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386
canonicalubuntu_linuxlinux-image-2.6-genericp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic
canonicalubuntu_linuxlinux-image-2.6-lpiap-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia
canonicalubuntu_linuxlinux-image-2.6-lpiacompatp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpiacompat
canonicalubuntu_linuxlinux-image-2.6-openvzp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-openvz
canonicalubuntu_linuxlinux-image-2.6-rtp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-rt
canonicalubuntu_linuxlinux-image-2.6-serverp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server
canonicalubuntu_linuxlinux-image-2.6-virtualp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual
canonicalubuntu_linuxlinux-image-2.6-xenp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-xen
canonicalubuntu_linux8.04cpe:/o:canonical:ubuntu_linux:8.04:-:lts

Related

openvas 62
ubuntu 10
seebug 2
prion 2
cvelist 2
nessus 33
nvd 2
cve 2
redhat 5
ubuntucve 2
debiancve 1
centos 3
oraclelinux 6
securityvulns 2
debian 1
osv 1
suse 3
fedora 12
openvas
openvas
Ubuntu Update for linux USN-1507-1
2012-07-19 00:00:00
Ubuntu: Security Advisory (USN-1507-1)
2012-07-19 00:00:00
RedHat Update for kernel RHSA-2012:1064-01
2012-07-16 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2012-07-17 00:00:00
Linux kernel (OMAP4) vulnerabilities
2012-05-31 00:00:00
Linux kernel vulnerabilities
2012-05-21 00:00:00
seebug
seebug
Linux Kernel IPv6 'nf_ct_frag6_reasm()'θΏœη¨‹ζ‹’η»ζœεŠ‘ζΌζ΄ž
2012-07-11 00:00:00
Linux Kernel KVM 'kvm_apic_accept_pic_intr()'ε‡½ζ•°ζœ¬εœ°ζ‹’η»ζœεŠ‘ζœεŠ‘
2012-05-15 00:00:00
prion
prion
Null pointer dereference
2012-08-09 10:29:00
Null pointer dereference
2012-05-17 11:00:00
cvelist
cvelist
CVE-2012-2744
2012-08-09 10:00:00
CVE-2012-1601
2012-05-17 10:00:00
nessus
nessus
RHEL 6 : kernel (RHSA-2012:1148)
2013-01-24 00:00:00
RHEL 6 : kernel (RHSA-2012:1114)
2013-01-24 00:00:00
Oracle Linux 6 : kernel (ELSA-2012-1064)
2013-07-12 00:00:00
nvd
nvd
CVE-2012-2744
2012-08-09 10:29:46
CVE-2012-1601
2012-05-17 11:00:37
cve
cve
CVE-2012-2744
2012-08-09 10:29:46
CVE-2012-1601
2012-05-17 11:00:37
redhat
redhat
(RHSA-2012:1148) Important: kernel security update
2012-08-07 00:00:00
(RHSA-2012:1064) Important: kernel security and bug fix update
2012-07-10 00:00:00
(RHSA-2012:1129) Important: kernel security and bug fix update
2012-07-31 00:00:00
ubuntucve
ubuntucve
CVE-2012-2744
2012-07-10 00:00:00
CVE-2012-1601
2012-03-29 00:00:00
debiancve
debiancve
CVE-2012-2744
2012-08-09 10:29:46
centos
centos
kernel, perf, python security update
2012-07-10 17:40:45
kmod, kvm security update
2012-05-21 16:43:32
kernel, perf, python security update
2012-05-16 09:19:09
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security update
2012-05-16 00:00:00
kvm security and bug fix update
2012-05-21 00:00:00
kernel security and bug fix update
2012-07-10 00:00:00
securityvulns
securityvulns
Linux kernel multiple security vulnerabilities
2012-05-24 00:00:00
[SECURITY] [DSA 2469-1] linux-2.6 security update
2012-05-14 00:00:00
debian
debian
[SECURITY] [DSA 2469-1] linux-2.6 security update
2012-05-10 15:56:44
osv
osv
linux-2.6 - several
2012-05-10 00:00:00
suse
suse
Security update for Linux kernel (important)
2012-10-24 09:08:54
kernel: security and bugfix update (important)
2013-06-10 17:23:00
Security update for Linux kernel (important)
2013-05-14 14:04:45
fedora
fedora
[SECURITY] Fedora 16 Update: kernel-3.3.5-2.fc16
2012-05-13 01:51:03
[SECURITY] Fedora 16 Update: kernel-3.3.2-6.fc16
2012-04-24 14:55:12
[SECURITY] Fedora 16 Update: kernel-3.3.7-1.fc16
2012-05-27 01:50:50

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

JSON
Related for UBUNTU_USN-1507-1.NASL
openvas62ubuntu10seebug2prion2cvelist2nessus33nvd2cve2redhat5ubuntucve2debiancve1centos3oraclelinux6securityvulns2debian1osv1suse3fedora12