Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusUbuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.UBUNTU_USN-1876-1.NASL
HistoryJun 16, 2013 - 12:00 a.m.

Ubuntu 10.04 LTS : linux vulnerabilities (USN-1876-1)

2013-06-1600:00:00
Ubuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
12
JSON

Andrew Honig reported a flaw in the way KVM (Kernel-based Virtual Machine) emulated the IOAPIC. A privileged guest user could exploit this flaw to read host memory or cause a denial of service (crash the host). (CVE-2013-1798)

An information leak was discovered in the Linux kernel’s rcvmsg path for ATM (Asynchronous Transfer Mode). A local user could exploit this flaw to examine potentially sensitive information from the kernel’s stack memory. (CVE-2013-3222)

An information leak was discovered in the Linux kernel’s recvmsg path for ax25 address family. A local user could exploit this flaw to examine potentially sensitive information from the kernel’s stack memory. (CVE-2013-3223)

An information leak was discovered in the Linux kernel’s recvmsg path for the bluetooth address family. A local user could exploit this flaw to examine potentially sensitive information from the kernel’s stack memory. (CVE-2013-3224)

An information leak was discovered in the Linux kernel’s bluetooth rfcomm protocol support. A local user could exploit this flaw to examine potentially sensitive information from the kernel’s stack memory. (CVE-2013-3225)

An information leak was discovered in the Linux kernel’s IRDA (infrared) support subsystem. A local user could exploit this flaw to examine potentially sensitive information from the kernel’s stack memory. (CVE-2013-3228)

An information leak was discovered in the Linux kernel’s s390 - z/VM support. A local user could exploit this flaw to examine potentially sensitive information from the kernel’s stack memory. (CVE-2013-3229)

An information leak was discovered in the Linux kernel’s llc (Logical Link Layer 2) support. A local user could exploit this flaw to examine potentially sensitive information from the kernel’s stack memory.
(CVE-2013-3231)

An information leak was discovered in the Linux kernel’s receive message handling for the netrom address family. A local user could exploit this flaw to obtain sensitive information from the kernel’s stack memory. (CVE-2013-3232)

An information leak was discovered in the Linux kernel’s Rose X.25 protocol layer. A local user could exploit this flaw to examine potentially sensitive information from the kernel’s stack memory.
(CVE-2013-3234)

An information leak was discovered in the Linux kernel’s TIPC (Transparent Inter Process Communication) protocol implementation. A local user could exploit this flaw to examine potentially sensitive information from the kernel’s stack memory. (CVE-2013-3235).

Note that Tenable Network Security has extracted the preceding description block directly from the Ubuntu security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

#
# (C) Tenable Network Security, Inc.
#
# The descriptive text and package checks in this plugin were
# extracted from Ubuntu Security Notice USN-1876-1. The text 
# itself is copyright (C) Canonical, Inc. See 
# <http://www.ubuntu.com/usn/>. Ubuntu(R) is a registered 
# trademark of Canonical, Inc.
#

include("compat.inc");

if (description)
{
  script_id(66900);
  script_version("1.10");
  script_cvs_date("Date: 2019/09/19 12:54:29");

  script_cve_id("CVE-2013-1798", "CVE-2013-3222", "CVE-2013-3223", "CVE-2013-3224", "CVE-2013-3225", "CVE-2013-3228", "CVE-2013-3229", "CVE-2013-3231", "CVE-2013-3232", "CVE-2013-3234", "CVE-2013-3235");
  script_bugtraq_id(58604);
  script_xref(name:"USN", value:"1876-1");

  script_name(english:"Ubuntu 10.04 LTS : linux vulnerabilities (USN-1876-1)");
  script_summary(english:"Checks dpkg output for updated packages.");

  script_set_attribute(
    attribute:"synopsis", 
    value:
"The remote Ubuntu host is missing one or more security-related
patches."
  );
  script_set_attribute(
    attribute:"description", 
    value:
"Andrew Honig reported a flaw in the way KVM (Kernel-based Virtual
Machine) emulated the IOAPIC. A privileged guest user could exploit
this flaw to read host memory or cause a denial of service (crash the
host). (CVE-2013-1798)

An information leak was discovered in the Linux kernel's rcvmsg path
for ATM (Asynchronous Transfer Mode). A local user could exploit this
flaw to examine potentially sensitive information from the kernel's
stack memory. (CVE-2013-3222)

An information leak was discovered in the Linux kernel's recvmsg path
for ax25 address family. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3223)

An information leak was discovered in the Linux kernel's recvmsg path
for the bluetooth address family. A local user could exploit this flaw
to examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3224)

An information leak was discovered in the Linux kernel's bluetooth
rfcomm protocol support. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3225)

An information leak was discovered in the Linux kernel's IRDA
(infrared) support subsystem. A local user could exploit this flaw to
examine potentially sensitive information from the kernel's stack
memory. (CVE-2013-3228)

An information leak was discovered in the Linux kernel's s390 - z/VM
support. A local user could exploit this flaw to examine potentially
sensitive information from the kernel's stack memory. (CVE-2013-3229)

An information leak was discovered in the Linux kernel's llc (Logical
Link Layer 2) support. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3231)

An information leak was discovered in the Linux kernel's receive
message handling for the netrom address family. A local user could
exploit this flaw to obtain sensitive information from the kernel's
stack memory. (CVE-2013-3232)

An information leak was discovered in the Linux kernel's Rose X.25
protocol layer. A local user could exploit this flaw to examine
potentially sensitive information from the kernel's stack memory.
(CVE-2013-3234)

An information leak was discovered in the Linux kernel's TIPC
(Transparent Inter Process Communication) protocol implementation. A
local user could exploit this flaw to examine potentially sensitive
information from the kernel's stack memory. (CVE-2013-3235).

Note that Tenable Network Security has extracted the preceding
description block directly from the Ubuntu security advisory. Tenable
has attempted to automatically clean and format it as much as possible
without introducing additional issues."
  );
  script_set_attribute(
    attribute:"see_also",
    value:"https://usn.ubuntu.com/1876-1/"
  );
  script_set_attribute(attribute:"solution", value:"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:A/AC:H/Au:N/C:C/I:N/A:C");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:canonical:ubuntu_linux:10.04:-:lts");

  script_set_attribute(attribute:"vuln_publication_date", value:"2013/03/22");
  script_set_attribute(attribute:"patch_publication_date", value:"2013/06/14");
  script_set_attribute(attribute:"plugin_publication_date", value:"2013/06/16");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_copyright(english:"Ubuntu Security Notice (C) 2013-2019 Canonical, Inc. / NASL script (C) 2013-2019 and is owned by Tenable, Inc. or an Affiliate thereof.");
  script_family(english:"Ubuntu Local Security Checks");

  script_dependencies("ssh_get_info.nasl", "linux_alt_patch_detect.nasl");
  script_require_keys("Host/cpu", "Host/Ubuntu", "Host/Ubuntu/release", "Host/Debian/dpkg-l");

  exit(0);
}


include("audit.inc");
include("ubuntu.inc");
include("ksplice.inc");

if ( ! get_kb_item("Host/local_checks_enabled") ) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
release = get_kb_item("Host/Ubuntu/release");
if ( isnull(release) ) audit(AUDIT_OS_NOT, "Ubuntu");
release = chomp(release);
if (! preg(pattern:"^(10\.04)$", string:release)) audit(AUDIT_OS_NOT, "Ubuntu 10.04", "Ubuntu " + release);
if ( ! get_kb_item("Host/Debian/dpkg-l") ) audit(AUDIT_PACKAGE_LIST_MISSING);

cpu = get_kb_item("Host/cpu");
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ("x86_64" >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, "Ubuntu", cpu);

if (get_one_kb_item("Host/ksplice/kernel-cves"))
{
  rm_kb_item(name:"Host/uptrack-uname-r");
  cve_list = make_list("CVE-2013-1798", "CVE-2013-3222", "CVE-2013-3223", "CVE-2013-3224", "CVE-2013-3225", "CVE-2013-3228", "CVE-2013-3229", "CVE-2013-3231", "CVE-2013-3232", "CVE-2013-3234", "CVE-2013-3235");
  if (ksplice_cves_check(cve_list))
  {
    audit(AUDIT_PATCH_INSTALLED, "KSplice hotfix for USN-1876-1");
  }
  else
  {
    _ubuntu_report = ksplice_reporting_text();
  }
}

flag = 0;

if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-48-386", pkgver:"2.6.32-48.110")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-48-generic", pkgver:"2.6.32-48.110")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-48-generic-pae", pkgver:"2.6.32-48.110")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-48-lpia", pkgver:"2.6.32-48.110")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-48-preempt", pkgver:"2.6.32-48.110")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-48-server", pkgver:"2.6.32-48.110")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-48-versatile", pkgver:"2.6.32-48.110")) flag++;
if (ubuntu_check(osver:"10.04", pkgname:"linux-image-2.6.32-48-virtual", pkgver:"2.6.32-48.110")) flag++;

if (flag)
{
  security_report_v4(
    port       : 0,
    severity   : SECURITY_WARNING,
    extra      : ubuntu_report_get()
  );
  exit(0);
}
else
{
  tested = ubuntu_pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, "linux-image-2.6-386 / linux-image-2.6-generic / etc");
}
VendorProductVersionCPE
canonicalubuntu_linuxlinux-image-2.6-386p-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-386
canonicalubuntu_linuxlinux-image-2.6-genericp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic
canonicalubuntu_linuxlinux-image-2.6-generic-paep-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-generic-pae
canonicalubuntu_linuxlinux-image-2.6-lpiap-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-lpia
canonicalubuntu_linuxlinux-image-2.6-preemptp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-preempt
canonicalubuntu_linuxlinux-image-2.6-serverp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-server
canonicalubuntu_linuxlinux-image-2.6-versatilep-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-versatile
canonicalubuntu_linuxlinux-image-2.6-virtualp-cpe:/a:canonical:ubuntu_linux:linux-image-2.6-virtual
canonicalubuntu_linux10.04cpe:/o:canonical:ubuntu_linux:10.04:-:lts

Related

openvas 64
ubuntu 11
nessus 33
suse 7
securityvulns 2
debian 2
osv 2
redhat 6
centos 3
oraclelinux 6
amazon 2
fedora 11
debiancve 11
cve 11
ubuntucve 11
prion 11
veracode 4
seebug 1
altlinux 1
openvas
openvas
Ubuntu Update for linux USN-1876-1
2013-06-18 00:00:00
Ubuntu Update for linux USN-1876-1
2013-06-18 00:00:00
Ubuntu Update for linux-ec2 USN-1877-1
2013-06-18 00:00:00
ubuntu
ubuntu
Linux kernel (EC2) vulnerabilities
2013-06-14 00:00:00
Linux kernel vulnerabilities
2013-06-14 00:00:00
Linux kernel vulnerabilities
2013-06-14 00:00:00
nessus
nessus
Ubuntu 10.04 LTS : linux-ec2 vulnerabilities (USN-1877-1)
2013-06-16 00:00:00
SuSE 11.2 Security Update : Linux kernel (SAT Patch Numbers 7811 / 7813 / 7814)
2013-06-18 00:00:00
Ubuntu 12.04 LTS : linux vulnerabilities (USN-1878-1)
2013-06-16 00:00:00
suse
suse
Security update for Linux kernel (important)
2013-06-17 23:04:15
kernel update for SLE11 SP2 (important)
2013-06-17 15:04:14
Security update for Linux kernel (important)
2013-06-18 15:04:11
securityvulns
securityvulns
[USN-1878-1] Linux kernel vulnerabilities
2013-06-17 00:00:00
Linux kernel security vulnerabilities
2013-07-15 00:00:00
debian
debian
[SECURITY] [DSA 2669-1] linux security update
2013-05-16 02:48:53
[SECURITY] [DSA 2668-1] linux-2.6 security update
2013-05-14 19:14:29
osv
osv
linux - several
2013-05-15 00:00:00
linux-2.6 - several
2013-05-14 00:00:00
redhat
redhat
(RHSA-2013:1034) Low: kernel security and bug fix update
2013-07-10 00:00:00
(RHSA-2013:1051) Moderate: kernel security and bug fix update
2013-07-16 00:00:00
(RHSA-2013:1080) Moderate: kernel security and bug fix update
2013-07-16 00:00:00
centos
centos
kernel security update
2013-07-10 15:50:41
kernel, perf, python security update
2013-07-17 04:56:29
kmod, kvm security update
2013-04-10 03:55:37
oraclelinux
oraclelinux
kernel security and bug fix update
2013-07-10 00:00:00
kernel security and bug fix update
2013-07-10 00:00:00
unbreakable enterprise kernel security update
2013-07-18 00:00:00
amazon
amazon
Medium: kernel
2013-06-11 22:45:00
Medium: kernel
2013-08-13 21:32:00
fedora
fedora
[SECURITY] Fedora 18 Update: kernel-3.8.8-203.fc18
2013-04-27 00:09:52
[SECURITY] Fedora 18 Update: kernel-3.9.5-201.fc18
2013-06-13 06:05:52
[SECURITY] Fedora 18 Update: kernel-3.9.9-201.fc18
2013-07-12 03:11:58
debiancve
debiancve
CVE-2013-3224
2013-04-22 11:41:00
CVE-2013-3229
2013-04-22 11:41:00
CVE-2013-3222
2013-04-22 11:41:00
cve
cve
CVE-2013-3229
2013-04-22 11:41:00
CVE-2013-3225
2013-04-22 11:41:00
CVE-2013-3224
2013-04-22 11:41:00
ubuntucve
ubuntucve
CVE-2013-3229
2013-04-22 00:00:00
CVE-2013-3222
2013-04-22 00:00:00
CVE-2013-3232
2013-04-22 00:00:00
prion
prion
Design/Logic Flaw
2013-04-22 11:41:00
Design/Logic Flaw
2013-04-22 11:41:00
Design/Logic Flaw
2013-04-22 11:41:00
veracode
veracode
Information Disclosure
2019-05-02 04:54:57
Information Disclosure
2019-05-02 04:54:57
Information Disclosure
2019-05-02 04:54:57
seebug
seebug
Linux Kernel KVM 拒绝服务漏洞(CVE-2013-1798)
2013-03-24 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 7 package kernel-image-el-def version 2.6.32-alt9
2013-07-17 00:00:00
JSON
Related for UBUNTU_USN-1876-1.NASL
openvas64ubuntu11nessus33suse7securityvulns2debian2osv2redhat6centos3oraclelinux6amazon2fedora11debiancve11cve11ubuntucve11prion11veracode4seebug1altlinux1