Lucene search
Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-1606-1.NASLHistoryOct 12, 2012 - 12:00 a.m.
Ubuntu 10.04 LTS : linux vulnerabilities (USN-1606-1)
2012-10-1200:00:00
Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
31
A flaw was found in how the Linux kernelβs KVM (Kernel-based Virtual Machine) subsystem handled MSI (Message Signaled Interrupts). A local unprivileged user could exploit this flaw to cause a denial of service or potentially elevate privileges. (CVE-2012-2137)
A flaw was found in how the Linux kernel passed the replacement session keyring to a child process. An unprivileged local user could exploit this flaw to cause a denial of service (panic).
(CVE-2012-2745).
Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-1606-1. The text
# itself is copyright (C) Canonical, Inc. See
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered
# trademark of Canonical, Inc.
#
include("compat.inc");
if (description)
{
script_id(62513);
script_version("1.12");
script_cvs_date("Date: 2019/09/19 12:54:28");
script_cve_id("CVE-2012-2137", "CVE-2012-2745");
script_bugtraq_id(54063, 54365);
script_xref(name:"USN", value:"1606-1");
script_name(english:"Ubuntu 10.04 LTS : linux vulnerabilities (USN-1606-1)");
script_summary(english:"Checks dpkg output for updated packages.");
script_set_attribute(
attribute:"synopsis",
value:
"The remote Ubuntu host is missing one or more security-related
patches."
);
script_set_attribute(
attribute:"description",
value:
"A flaw was found in how the Linux kernel's KVM (Kernel-based Virtual
Machine) subsystem handled MSI (Message Signaled Interrupts). A local
unprivileged user could exploit this flaw to cause a denial of service
or potentially elevate privileges. (CVE-2012-2137)
A flaw was found in how the Linux kernel passed the replacement
session keyring to a child process. An unprivileged local user could
exploit this flaw to cause a denial of service (panic).
(CVE-2012-2745).
Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
);
script_set_attribute(
attribute:"see_also",
value:"https://usn.ubuntu.com/1606-1/"
);
script_set_attribute(attribute:"solution", value:"Update the affected packages.");
script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
script_set_attribute(attribute:"exploit_available", value:"false");
script_set_attribute(attribute:"plugin_type", value:"local");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile");
script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual");
script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:10.04:-:lts");
script_set_attribute(attribute:"vuln_publication_date", value:"2012/08/09");
script_set_attribute(attribute:"patch_publication_date", value:"2012/10/11");
script_set_attribute(attribute:"plugin_publication_date", value:"2012/10/12");
script_set_attribute(attribute:"generated_plugin", value:"current");
script_end_attributes();
script_category(ACT_GATHER_INFO);
script_copyright(english:"Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
script_family(english:"Ubuntu Local Security Checks");
script_dependencies("ssh_get_info.nasl", "linux_alt_patch_detect.nasl");
script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");
exit(0);
}
include("audit.inc");
include("ubuntu.inc");
include("ksplice.inc");
if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(10\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 10.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);
cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);
if (get_one_kb_item("Host/ksplice/kernel-cves"))
{
rm_kb_item(name:"Host/uptrack-uname-r");
cve_list = make_list("CVE-2012-2137", "CVE-2012-2745");
if (ksplice_cves_check(cve_list))
{
audit(AUDIT_PATCH_INSTALLED, "KSplice hotfix for USN-1606-1");
}
else
{
_ubuntu_report = ksplice_reporting_text();
}
}
flag = 0;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-44-386", pkgver:"2.6.32-44.98")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-44-generic", pkgver:"2.6.32-44.98")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-44-generic-pae", pkgver:"2.6.32-44.98")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-44-lpia", pkgver:"2.6.32-44.98")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-44-preempt", pkgver:"2.6.32-44.98")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-44-server", pkgver:"2.6.32-44.98")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-44-versatile", pkgver:"2.6.32-44.98")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-44-virtual", pkgver:"2.6.32-44.98")) flag++;
if (flag)
{
security_report_v4(
port : 0,
severity : SECURITY_WARNING,
extra : ubuntu_report_get()
);
exit(0);
}
else
{
tested = ubuntu_pkg_tests_get();
if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
else audit(AUDIT_PACKAGE_NOT_INSTALLED, "linux-image-2.6-386 / linux-image-2.6-generic / etc");
}
| Vendor | Product | Version | CPE |
|---|---|---|---|
| canonical | ubuntu_linux | linux-image-2.6-386 | p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386 |
| canonical | ubuntu_linux | linux-image-2.6-generic | p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic |
| canonical | ubuntu_linux | linux-image-2.6-generic-pae | p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae |
| canonical | ubuntu_linux | linux-image-2.6-lpia | p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia |
| canonical | ubuntu_linux | linux-image-2.6-preempt | p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt |
| canonical | ubuntu_linux | linux-image-2.6-server | p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server |
| canonical | ubuntu_linux | linux-image-2.6-versatile | p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile |
| canonical | ubuntu_linux | linux-image-2.6-virtual | p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual |
| canonical | ubuntu_linux | 10.04 | cpe:/o:canonical:ubuntu_linux:10.04:-:lts |
Related
openvas
openvas
Ubuntu Update for linux USN-1606-1
2012-10-12 00:00:00
Ubuntu: Security Advisory (USN-1606-1)
2012-10-12 00:00:00
Ubuntu Update for linux-ti-omap4 USN-1609-1
2012-10-16 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2012-10-11 00:00:00
Linux kernel (EC2) vulnerability
2012-10-05 00:00:00
Linux kernel (OMAP4) vulnerability
2012-10-12 00:00:00
ubuntucve
ubuntucve
CVE-2012-2137
2012-06-18 00:00:00
CVE-2012-2745
2012-08-09 00:00:00
prion
prion
Design/Logic Flaw
2012-08-09 10:29:00
Buffer overflow
2013-01-22 23:55:00
nessus
nessus
USN-1609-1 : linux-ti-omap4 vulnerability
2012-10-15 00:00:00
Ubuntu 10.04 LTS : linux-ec2 vulnerability (USN-1597-1)
2012-10-05 00:00:00
debiancve
debiancve
CVE-2012-2137
2013-01-22 23:55:00
CVE-2012-2745
2012-08-09 10:29:00
cvelist
cvelist
CVE-2012-2137
2013-01-22 23:00:00
CVE-2012-2745
2012-08-09 10:00:00
seebug
seebug
Linux kernel 2.6.x KVM 'kvm_set_irq()'ε½ζ°ζ¬ε°ηΌε²εΊζΊ’εΊζΌζ΄
2012-06-26 00:00:00
cve
cve
CVE-2012-2137
2013-01-22 23:55:00
CVE-2012-2745
2012-08-09 10:29:00
redhat
redhat
(RHSA-2012:1064) Important: kernel security and bug fix update
2012-07-10 00:00:00
(RHSA-2012:0743) Important: kernel security and bug fix update
2012-06-18 00:00:00
oraclelinux
oraclelinux
kernel security and bug fix update
2012-07-10 00:00:00
Unbreakable Enterprise kernel Security update
2012-07-17 00:00:00
Unbreakable Enterprise kernel Security update
2012-07-16 00:00:00
centos
centos
kernel, perf, python security update
2012-07-10 17:40:45
kernel, perf, python security update
2012-06-19 10:27:24
securityvulns
securityvulns
[USN-1567-1] Linux kernel vulnerabilities
2012-09-18 00:00:00
Linux kernel multiple security vulnerabilities
2012-09-18 00:00:00
[USN-1529-1] Linux kernel vulnerabilities
2012-08-13 00:00:00
suse
suse
kernel: security and bugfix update (important)
2013-03-05 18:04:24
kernel: security and bugfix update (important)
2013-06-10 17:23:00
Security update for Linux kernel (important)
2013-05-08 05:04:26
Related for UBUNTU_USN-1606-1.NASL