Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-1607-1.NASL
HistoryOct 12, 2012 - 12:00 a.m.

Ubuntu 11.10 : linux vulnerabilities (USN-1607-1)

2012-10-1200:00:00
Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
18
JSON

Vadim Ponomarev discovered a flaw in the Linux kernel causing a reference leak when PID namespaces are used. A remote attacker could exploit this flaw causing a denial of service. (CVE-2012-2127)

A flaw was found in how the Linux kernel’s KVM (Kernel-based Virtual Machine) subsystem handled MSI (Message Signaled Interrupts). A local unprivileged user could exploit this flaw to cause a denial of service or potentially elevate privileges. (CVE-2012-2137).

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-1607-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include("compat.inc");

if (description)
{
  script_id(62514);
  script_version("1.11");
  script_cvs_date("Date: 2019/09/19 12:54:28");

  script_cve_id("CVE-2012-2127", "CVE-2012-2137");
  script_bugtraq_id(54063, 55774);
  script_xref(name:"USN", value:"1607-1");

  script_name(english:"Ubuntu 11.10 : linux vulnerabilities (USN-1607-1)");
  script_summary(english:"Checks dpkg output for updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Ubuntu host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Vadim Ponomarev discovered a flaw in the Linux kernel causing a
reference leak when PID namespaces are used. A remote attacker could
exploit this flaw causing a denial of service. (CVE-2012-2127)

A flaw was found in how the Linux kernel's KVM (Kernel-based Virtual
Machine) subsystem handled MSI (Message Signaled Interrupts). A local
unprivileged user could exploit this flaw to cause a denial of service
or potentially elevate privileges. (CVE-2012-2137).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/1607-1/"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:C/I:C/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:F/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"Exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"true");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic-pae");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-server");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-virtual");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:11.10");

  script_set_attribute(attribute:"vuln_publication_date", value:"2012/06/21");
  script_set_attribute(attribute:"patch_publication_date", value:"2012/10/11");
  script_set_attribute(attribute:"plugin_publication_date", value:"2012/10/12");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2012-2019 Canonical, Inc. / NASL script (C) 2012-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl", "linux_alt_patch_detect.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("ksplice.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(11\.10)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 11.10", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

if (get_one_kb_item("Host/ksplice/kernel-cves"))
{
  rm_kb_item(name:"Host/uptrack-uname-r");
  cve_list = make_list("CVE-2012-2127", "CVE-2012-2137");
  if (ksplice_cves_check(cve_list))
  {
    audit(AUDIT_PATCH_INSTALLED, "KSplice hotfix for USN-1607-1");
  }
  else
  {
    _ubuntu_report = ksplice_reporting_text();
  }
}

flag = 0;

if (ubuntu_check(osver:"11.10", pkgname:"linux-image-3.0.0-26-generic", pkgver:"3.0.0-26.43")) flag++;
if (ubuntu_check(osver:"11.10", pkgname:"linux-image-3.0.0-26-generic-pae", pkgver:"3.0.0-26.43")) flag++;
if (ubuntu_check(osver:"11.10", pkgname:"linux-image-3.0.0-26-server", pkgver:"3.0.0-26.43")) flag++;
if (ubuntu_check(osver:"11.10", pkgname:"linux-image-3.0.0-26-virtual", pkgver:"3.0.0-26.43")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "linux-image-3.0-generic / linux-image-3.0-generic-pae / etc");
}
VendorProductVersionCPE
canonicalubuntu_linuxlinux-image-3.0-genericp-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic
canonicalubuntu_linuxlinux-image-3.0-generic-paep-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-generic-pae
canonicalubuntu_linuxlinux-image-3.0-serverp-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-server
canonicalubuntu_linuxlinux-image-3.0-virtualp-cpe:/a:canonical:ubuntu_linux:linux-image-3.0-virtual
canonicalubuntu_linux11.10cpe:/o:canonical:ubuntu_linux:11.10

Related

nessus 16
openvas 26
ubuntu 6
prion 2
cvelist 2
debiancve 1
ubuntucve 2
cve 2
seebug 1
suse 5
oraclelinux 4
securityvulns 5
redhat 1
centos 1
nessus
nessus
Ubuntu 10.04 LTS : linux-lts-backport-oneiric vulnerabilities (USN-1594-1)
2012-10-04 00:00:00
USN-1609-1 : linux-ti-omap4 vulnerability
2012-10-15 00:00:00
Ubuntu 10.04 LTS : linux vulnerabilities (USN-1606-1)
2012-10-12 00:00:00
openvas
openvas
Ubuntu Update for linux-lts-backport-oneiric USN-1594-1
2012-10-05 00:00:00
Ubuntu Update for linux USN-1607-1
2012-10-12 00:00:00
Ubuntu: Security Advisory (USN-1607-1)
2012-10-12 00:00:00
ubuntu
ubuntu
Linux kernel vulnerabilities
2012-10-11 00:00:00
Linux kernel (Oneiric backport) vulnerabilities
2012-10-03 00:00:00
Linux kernel (OMAP4) vulnerability
2012-10-12 00:00:00
prion
prion
Code injection
2012-06-21 23:55:00
Buffer overflow
2013-01-22 23:55:00
cvelist
cvelist
CVE-2012-2127
2012-06-21 23:00:00
CVE-2012-2137
2013-01-22 23:00:00
debiancve
debiancve
CVE-2012-2137
2013-01-22 23:55:00
ubuntucve
ubuntucve
CVE-2012-2127
2012-06-21 00:00:00
CVE-2012-2137
2012-06-18 00:00:00
cve
cve
CVE-2012-2137
2013-01-22 23:55:00
CVE-2012-2127
2012-06-21 23:55:00
seebug
seebug
Linux kernel 2.6.x KVM 'kvm_set_irq()'ε‡½ζ•°ζœ¬εœ°ηΌ“ε†²εŒΊζΊ’ε‡ΊζΌζ΄ž
2012-06-26 00:00:00
suse
suse
kernel update for SLE11 SP2 (important)
2012-06-02 02:08:32
kernel: security and bugfix update (important)
2013-06-10 17:23:00
Security update for Linux kernel (important)
2013-05-07 21:04:31
oraclelinux
oraclelinux
Unbreakable Enterprise kernel security and bugfix update
2012-06-20 00:00:00
kernel security and bug fix update
2012-06-18 00:00:00
Unbreakable Enterprise kernel security and bugfix update
2012-06-28 00:00:00
securityvulns
securityvulns
[USN-1529-1] Linux kernel vulnerabilities
2012-08-13 00:00:00
Linux kernel multiple security vulnerabilities
2012-08-13 00:00:00
[security bulletin] HPSBGN02970 rev.1 - HP Rapid Deployment Pack &#40;RDP&#41; or HP Insight Control Server Deployment, Multiple Remote Vulnerabilities affecting Confidentiality, Integrity and Availability
2014-03-27 00:00:00
redhat
redhat
(RHSA-2012:0743) Important: kernel security and bug fix update
2012-06-18 00:00:00
centos
centos
kernel, perf, python security update
2012-06-19 10:27:24
JSON
Related for UBUNTU_USN-1607-1.NASL
nessus16openvas26ubuntu6prion2cvelist2debiancve1ubuntucve2cve2seebug1suse5oraclelinux4securityvulns5redhat1centos1